Replaced process, process step and action in errors with a unique coding for every type of error. Also removed exception messages from errors to prevent leaking any potentially critical information

Author: jaboehri

src/main/java/dev/dsf/bpe/CodeSystem.java

@@ -9,14 +9,19 @@ public enum ExecutionVariables
 	downloadResourceReference,
 	statusCode,
 	error,
+	errorLocal,
+	errorRemote,
 	errors,
+	errorsRemote,
 	downloadedBytes,
 	downloadedDuration,
 	targetEndpointIdentifier,
 	uploadedBytes,
 	uploadedDuration,
 	resourceDownloadError,
+	resourceDownloadErrorRemote,
 	resourceUploadError,
+	resourceUploadErrorRemote,
 	pingTaskId;
 
 	public String correlatedValue(String correlationKey)

src/main/java/dev/dsf/bpe/ExecutionVariables.java

@@ -52,8 +52,7 @@ public Map<String, List<String>> getFhirResourcesByProcessId()
 
 		var cPing = "fhir/CodeSystem/dsf-ping.xml";
 		var cPingStatus = "fhir/CodeSystem/dsf-ping-status.xml";
-		var cPingProcesses = "fhir/CodeSystem/dsf-ping-processes.xml";
-		var cPingProcessSteps = "fhir/CodeSystem/dsf-ping-process-steps.xml";
+		var cPingError = "fhir/CodeSystem/dsf-ping-error.xml";
 
 		var sPingStatus = "fhir/StructureDefinition/dsf-extension-ping-status.xml";
 		var sPing = "fhir/StructureDefinition/dsf-task-ping.xml";
@@ -72,18 +71,14 @@ public Map<String, List<String>> getFhirResourcesByProcessId()
 		var vPingUnits = "fhir/ValueSet/dsf-network-speed-units.xml";
 		var vPingStatus = "fhir/ValueSet/dsf-ping-status.xml";
 		var vPongStatus = "fhir/ValueSet/dsf-pong-status.xml";
-		var vPingProcesses = "fhir/ValueSet/dsf-ping-processes.xml";
-		var vPingProcessSteps = "fhir/ValueSet/dsf-ping-process-steps.xml";
 
-		return Map.of(
-				ConstantsPing.PROCESS_NAME_FULL_PING, Arrays.asList(aPing, cPing, cPingStatus, cPingProcesses,
-						cPingProcessSteps, sErrorExtension, sPingStatus, sStartPing, sPong, sCleanupPong, tStartPing,
-						vPing, vPingStatus, vPingUnits, vPingProcesses, vPingProcessSteps),
+		return Map.of(ConstantsPing.PROCESS_NAME_FULL_PING,
+				Arrays.asList(aPing, cPing, cPingStatus, cPingError, sErrorExtension, sPingStatus, sStartPing, sPong,
+						sCleanupPong, tStartPing, vPing, vPingStatus, vPingUnits),
 				ConstantsPing.PROCESS_NAME_FULL_PING_AUTOSTART,
 				Arrays.asList(aPingAutostart, cPing, sStartPingAutostart, sStopPingAutostart, tStartPingAutoStart,
 						tStopPingAutoStart, vPing),
-				ConstantsPing.PROCESS_NAME_FULL_PONG,
-				Arrays.asList(aPong, cPing, cPingStatus, cPingProcesses, cPingProcessSteps, sErrorExtension,
-						sPingStatus, sPing, vPing, vPongStatus, vPingUnits, vPingProcesses, vPingProcessSteps));
+				ConstantsPing.PROCESS_NAME_FULL_PONG, Arrays.asList(aPong, cPing, cPingStatus, cPingError,
+						sErrorExtension, sPingStatus, sPing, vPing, vPongStatus, vPingUnits));
 	}
 }

src/main/java/dev/dsf/bpe/PingProcessPluginDefinition.java

@@ -12,67 +12,43 @@
 import org.hl7.fhir.r4.model.Task;
 import org.hl7.fhir.r4.model.UrlType;
 
-//todo: remove process and processStep + CodeSystems, make message never contain e.getMessage() becaus security
-// ping status codesystem should extend old ping status codesystem, map every possible error to a unique name in a new codesystem
-// that repaces process + processStep, display values should contain the exact text that is now contained in action
-// remove equals method
-public record ProcessError(CodeSystem.DsfPingProcesses.Code process, CodeSystem.DsfPingProcessSteps.Code processStep,
-		String action, String potentialFixUrl, String message) implements Serializable
+public record ProcessError(String process, CodeSystem.DsfPingError.Concept concept, String potentialFixUrl)
+		implements Serializable
 {
 	public static Extension toExtension(ProcessError error)
 	{
 		Objects.requireNonNull(error);
-		Objects.requireNonNull(error.action());
+		Objects.requireNonNull(error.concept());
 		Objects.requireNonNull(error.process());
-		Objects.requireNonNull(error.message());
-		Objects.requireNonNull(error.processStep());
 
 		Extension extension = new Extension();
 		extension.setUrl(ConstantsPing.STRUCTURE_DEFINITION_URL_EXTENSION_ERROR);
 
-		extension.addExtension().setUrl(ConstantsPing.EXTENSION_URL_PROCESS)
-				.setValue(new Coding(CodeSystem.DsfPingProcesses.URL, error.process().getValue(), null));
-		extension.addExtension().setUrl(ConstantsPing.EXTENSION_URL_PROCESS_STEP)
-				.setValue(new Coding(CodeSystem.DsfPingProcessSteps.URL, error.process().getValue(), null));
-		extension.addExtension().setUrl(ConstantsPing.EXTENSION_URL_ACTION).setValue(new StringType(error.action()));
+		extension.addExtension().setUrl(ConstantsPing.EXTENSION_URL_ERROR)
+				.setValue(new Coding().setSystem(CodeSystem.DsfPingError.URL).setCode(error.concept.getCode())
+						.setDisplay(error.concept.getDisplay()));
 		if (Objects.nonNull(error.potentialFixUrl))
 		{
 			extension.addExtension().setUrl(ConstantsPing.EXTENSION_URL_POTENTIAL_FIX)
 					.setValue(new UrlType(error.potentialFixUrl()));
 		}
-		extension.addExtension().setUrl(ConstantsPing.EXTENSION_URL_MESSAGE).setValue(new StringType(error.message()));
 
 		return extension;
 	}
 
-	public static ProcessError toError(Extension extension)
+	public static ProcessError toError(Extension extension, String process)
 	{
-		Extension processExtension = extension.getExtensionByUrl(ConstantsPing.EXTENSION_URL_PROCESS);
-		Objects.requireNonNull(processExtension);
-		String process = ((Coding) processExtension.getValue()).getCode();
-
-
-		Extension processStepExtension = extension.getExtensionByUrl(ConstantsPing.EXTENSION_URL_PROCESS_STEP);
-		Objects.requireNonNull(processStepExtension);
-		String processStep = ((Coding) processStepExtension.getValue()).getCode();
-
-		Extension actionExtension = extension.getExtensionByUrl(ConstantsPing.EXTENSION_URL_ACTION);
-		Objects.requireNonNull(actionExtension);
-		String action = ((StringType) actionExtension.getValue()).getValue();
+		Extension errorExtension = extension.getExtensionByUrl(ConstantsPing.EXTENSION_URL_ERROR);
+		Objects.requireNonNull(errorExtension);
+		CodeSystem.DsfPingError.Concept error = CodeSystem.DsfPingError.Concept
+				.fromCode(((Coding) errorExtension.getValue()).getCode());
 
 		Extension potentalFixUrlExtension = extension.getExtensionByUrl(ConstantsPing.EXTENSION_URL_POTENTIAL_FIX);
 		String potentialFixUrl = Objects.nonNull(potentalFixUrlExtension)
 				? ((UrlType) potentalFixUrlExtension.getValue()).getValue()
 				: null;
 
-		Extension messageExtension = extension.getExtensionByUrl(ConstantsPing.EXTENSION_URL_MESSAGE);
-		Objects.requireNonNull(messageExtension);
-		String message = ((StringType) messageExtension.getValue()).getValue();
-
-		CodeSystem.DsfPingProcesses.Code processCode = CodeSystem.DsfPingProcesses.Code.ofValue(process);
-		CodeSystem.DsfPingProcessSteps.Code stepCode = CodeSystem.DsfPingProcessSteps.Code.ofValue(processStep);
-
-		return new ProcessError(processCode, stepCode, action, potentialFixUrl, message);
+		return new ProcessError(process, error, potentialFixUrl);
 	}
 
 	public static List<Task.TaskOutputComponent> toTaskOutput(List<ProcessError> errors)

src/main/java/dev/dsf/bpe/ProcessError.java

@@ -9,7 +9,7 @@
 import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.InitializingBean;
 
-import dev.dsf.bpe.CodeSystem;
+import dev.dsf.bpe.ConstantsPing;
 import dev.dsf.bpe.ProcessError;
 import dev.dsf.bpe.v1.ProcessPluginApi;
 import dev.dsf.bpe.v1.variables.Target;
@@ -72,7 +72,7 @@ protected String createMessage(Target target, ProcessError error)
 
 		if (error != null && error.process() != null)
 		{
-			if (CodeSystem.DsfPingProcesses.Code.PING.equals(error.process()))
+			if (ConstantsPing.PROCESS_NAME_PING.equals(error.process()))
 			{
 				b.append(api.getOrganizationProvider().getLocalOrganizationIdentifierValue().orElse("?"));
 				b.append('/');
@@ -101,13 +101,7 @@ protected String createMessage(Target target, ProcessError error)
 				b.append(": ");
 			}
 			b.append("\n\t");
-			b.append("Process: ").append(error.process());
-			b.append("\n\t");
-			b.append("Process step: ").append(error.processStep());
-			b.append("\n\t");
-			b.append("Action: ").append(error.action());
-			b.append("\n\t");
-			b.append("Message: ").append(error.message());
+			b.append("Description: ").append(error.concept().getDisplay());
 		}
 		else
 		{

src/main/java/dev/dsf/bpe/mail/AggregateErrorMailService.java

@@ -9,6 +9,7 @@
 import org.slf4j.LoggerFactory;
 
 import dev.dsf.bpe.CodeSystem;
+import dev.dsf.bpe.ConstantsPing;
 import dev.dsf.bpe.ExecutionVariables;
 import dev.dsf.bpe.ProcessError;
 import dev.dsf.bpe.util.task.SendTaskErrorConverter;
@@ -54,13 +55,12 @@ protected void handleSendTaskError(DelegateExecution execution, Variables variab
 			String errorMessage)
 	{
 		Target target = variables.getTarget();
-		ProcessError error = SendTaskErrorConverter.convert(exception,
-				"Sending cleanup message to " + target.getEndpointUrl());
+		ProcessError error = SendTaskErrorConverter.convertLocal(exception, false, ConstantsPing.PROCESS_NAME_PING);
 
 		execution.setVariableLocal(ExecutionVariables.error.name(), new ProcessErrorValueImpl(error));
 		execution.setVariableLocal(ExecutionVariables.statusCode.name(), CodeSystem.DsfPing.Code.ERROR.getValue());
 
-		logger.info("Request to {} resulted in error: {}", target.getEndpointUrl(), error.message());
+		logger.info("Request to {} resulted in error: {}", target.getEndpointUrl(), error.concept().getDisplay());
 	}
 
 	@Override

src/main/java/dev/dsf/bpe/message/CleanupPongMessage.java

@@ -13,6 +13,7 @@
 import org.slf4j.LoggerFactory;
 
 import dev.dsf.bpe.CodeSystem;
+import dev.dsf.bpe.ConstantsPing;
 import dev.dsf.bpe.ExecutionVariables;
 import dev.dsf.bpe.ProcessError;
 import dev.dsf.bpe.util.task.SendTaskErrorConverter;
@@ -78,13 +79,12 @@ protected void handleSendTaskError(DelegateExecution execution, Variables variab
 			String errorMessage)
 	{
 		Target target = variables.getTarget();
-		ProcessError error = SendTaskErrorConverter.convert(exception,
-				"Sending ping message to " + target.getEndpointUrl());
+		ProcessError error = SendTaskErrorConverter.convertLocal(exception, true, ConstantsPing.PROCESS_NAME_PING);
 
 		execution.setVariableLocal(ExecutionVariables.error.name(), new ProcessErrorValueImpl(error));
 		execution.setVariableLocal(ExecutionVariables.statusCode.name(), CodeSystem.DsfPing.Code.ERROR.getValue());
 
-		logger.info("Request to {} resulted in error: {}", target.getEndpointUrl(), error.message());
+		logger.info("Request to {} resulted in error: {}", target.getEndpointUrl(), error.concept().getDisplay());
 	}
 
 	@Override

src/main/java/dev/dsf/bpe/message/SendPingMessage.java

@@ -10,6 +10,7 @@
 import org.slf4j.LoggerFactory;
 
 import dev.dsf.bpe.CodeSystem;
+import dev.dsf.bpe.ConstantsPing;
 import dev.dsf.bpe.ExecutionVariables;
 import dev.dsf.bpe.ProcessError;
 import dev.dsf.bpe.ProcessErrors;
@@ -51,7 +52,7 @@ public void afterPropertiesSet() throws Exception
 	protected Stream<Task.ParameterComponent> getAdditionalInputParameters(DelegateExecution execution,
 			Variables variables)
 	{
-		ProcessErrors errorList = ErrorListUtils.getErrorList(execution);
+		ProcessErrors errorListRemote = ErrorListUtils.getErrorListRemote(execution);
 		long downloadResourceSizeBytes = variables.getLong(ExecutionVariables.downloadResourceSizeBytes.name());
 		if (downloadResourceSizeBytes >= 0)
 		{
@@ -72,12 +73,12 @@ protected Stream<Task.ParameterComponent> getAdditionalInputParameters(DelegateE
 
 			return Stream
 					.of(downloadedBytesParameter, downloadedDurationParameter, downloadedResourceReferenceParameter,
-							ErrorInputComponentGenerator.create(errorList.getEntries()).stream())
+							ErrorInputComponentGenerator.create(errorListRemote.getEntries()).stream())
 					.flatMap(stream -> stream);
 		}
 		else
 		{
-			return ErrorInputComponentGenerator.create(errorList.getEntries()).stream();
+			return ErrorInputComponentGenerator.create(errorListRemote.getEntries()).stream();
 		}
 	}
 
@@ -98,14 +99,13 @@ protected void handleSendTaskError(DelegateExecution execution, Variables variab
 		Target target = variables.getTarget();
 		Task startTask = variables.getStartTask();
 
-		ProcessError error = SendTaskErrorConverter.convert(exception,
-				"Sending pong message to " + target.getEndpointUrl());
+		ProcessError error = SendTaskErrorConverter.convertLocal(exception, true, ConstantsPing.PROCESS_NAME_PONG);
 
 		ErrorListUtils.add(error, execution);
 		PingStatusGenerator.updatePongStatusOutput(startTask, CodeSystem.DsfPingStatus.Code.ERROR);
 		variables.setString(ExecutionVariables.statusCode.name(), CodeSystem.DsfPing.Code.ERROR.getValue());
 		variables.updateTask(startTask);
 
-		logger.info("Request to {} resulted in error: {}", target.getEndpointUrl(), error.message());
+		logger.info("Request to {} resulted in error: {}", target.getEndpointUrl(), error.concept().getDisplay());
 	}
 }

src/main/java/dev/dsf/bpe/message/SendPongMessage.java

@@ -1,7 +1,6 @@
 package dev.dsf.bpe.service;
 
 import java.net.SocketTimeoutException;
-import java.util.Objects;
 
 import org.camunda.bpm.engine.delegate.DelegateExecution;
 import org.camunda.bpm.engine.delegate.Expression;
@@ -36,8 +35,7 @@ public void doExecute(DelegateExecution delegateExecution, Variables variables)
 	{
 		logger.debug("Cleaning up...");
 
-		CodeSystem.DsfPingProcesses.Code process = getProcess((String) this.process.getValue(delegateExecution));
-		Objects.requireNonNull(process);
+		String process = (String) this.process.getValue(delegateExecution);
 
 		String downloadResourceId = new IdType(variables.getString(ExecutionVariables.downloadResourceReference.name()))
 				.getIdPart();
@@ -55,10 +53,11 @@ public void doExecute(DelegateExecution delegateExecution, Variables variables)
 			{
 				if (e.getCause() instanceof SocketTimeoutException)
 				{
-					ProcessError error = new ProcessError(process, CodeSystem.DsfPingProcessSteps.Code.CLEANUP,
-							ConstantsPing.CLEANUP_ERROR_ACTION, ConstantsPing.POTENTIAL_FIX_URL_READ_TIMEOUT,
-							e.getCause().getMessage());
+					ProcessError error = new ProcessError(process,
+							CodeSystem.DsfPingError.Concept.LOCAL_BINARY_DELETE_TIMEOUT,
+							ConstantsPing.POTENTIAL_FIX_URL_READ_TIMEOUT);
 					ErrorListUtils.add(error, delegateExecution);
+					logger.error(e.getCause().getMessage());
 				}
 				else
 				{
@@ -67,9 +66,7 @@ public void doExecute(DelegateExecution delegateExecution, Variables variables)
 			}
 			catch (WebApplicationException e)
 			{
-				ProcessError error = new ProcessError(process, CodeSystem.DsfPingProcessSteps.Code.CLEANUP,
-						ConstantsPing.CLEANUP_ERROR_ACTION, ConstantsPing.POTENTIAL_FIX_URL_ERROR_HTTP,
-						"Response from local DSF FHIR server: " + e.getResponse().getStatus());
+				ProcessError error = toProcessError(e, process);
 				ErrorListUtils.add(error, delegateExecution);
 			}
 		}
@@ -80,15 +77,29 @@ public void doExecute(DelegateExecution delegateExecution, Variables variables)
 		logger.debug("Cleanup complete.");
 	}
 
-	public void setProcess(org.camunda.bpm.engine.delegate.Expression process)
+	private ProcessError toProcessError(WebApplicationException e, String process)
 	{
-		this.process = process;
+		int status = e.getResponse().getStatus();
+		String message = "Response from local DSF FHIR server: " + status;
+		logger.error(message, e);
+
+		return switch (status)
+		{
+			case 401 -> new ProcessError(process, CodeSystem.DsfPingError.Concept.LOCAL_BINARY_DELETE_HTTP_401,
+					ConstantsPing.POTENTIAL_FIX_URL_ERROR_HTTP);
+			case 403 -> new ProcessError(process, CodeSystem.DsfPingError.Concept.LOCAL_BINARY_DELETE_HTTP_403,
+					ConstantsPing.POTENTIAL_FIX_URL_ERROR_HTTP);
+			case 500 -> new ProcessError(process, CodeSystem.DsfPingError.Concept.LOCAL_BINARY_DELETE_HTTP_500,
+					ConstantsPing.POTENTIAL_FIX_URL_ERROR_HTTP);
+			case 502 -> new ProcessError(process, CodeSystem.DsfPingError.Concept.LOCAL_BINARY_DELETE_HTTP_502,
+					ConstantsPing.POTENTIAL_FIX_URL_ERROR_HTTP);
+			default -> new ProcessError(process, CodeSystem.DsfPingError.Concept.LOCAL_BINARY_DELETE_HTTP_UNEXPECTED,
+					null);
+		};
 	}
 
-	private CodeSystem.DsfPingProcesses.Code getProcess(String process)
+	public void setProcess(Expression process)
 	{
-		if (process == null || process.isEmpty())
-			return null;
-		return CodeSystem.DsfPingProcesses.Code.ofValue(process);
+		this.process = process;
 	}
 }