Merge pull request #8 from inferno-framework/FI-3759-update-ruby

FI-3759 Change input for validation module from credential string to FHIR Bundle hash input parameter

Author: yunwwang

README.md

@@ -1,7 +1,15 @@
 # Inferno Smart Health Card Test Kit
 
 This is an [Inferno](https://inferno-framework.github.io/) test kit
-for the SMART Health Cards Framework [v1.4.0](https://spec.smarthealth.cards/)
+for the SMART Health Cards Framework [v1.4.0](https://spec.smarthealth.cards/).
+
+The test kit currently tests the following requirements:
+- Download and validate a health card [via File Download](https://spec.smarthealth.cards/#via-file-download)
+- Download and validate a health card [via FHIR $health-cards-issue Operation](https://spec.smarthealth.cards/#via-fhir-health-cards-issue-operation)
+- Download and validate a health card [via QR Code](https://spec.smarthealth.cards/#via-qr-print-or-scan)
+
+The test kit does **NOT** test this requirement:
+- Download and validate a health card [via Deep Link](https://spec.smarthealth.cards/#via-deep-link)
 
 ## Instructions
 

lib/smart_health_cards_test_kit/metadata.rb

@@ -21,9 +21,12 @@ class Metadata < Inferno::TestKit
       These tests are intended to allow server implementers to perform checks of their server against SMART Health Cards Framework requrirements.
 
       The test kit currently tests the following requirements:
-      - Download and validate a health card via file download
-      - Download and validate a health card via FHIR $health-cards-issue operation
-      - Download and validate a health card via QR Code scanning
+      - Download and validate a health card [via File Download](https://spec.smarthealth.cards/#via-file-download)
+      - Download and validate a health card [via FHIR $health-cards-issue Operation](https://spec.smarthealth.cards/#via-fhir-health-cards-issue-operation)
+      - Download and validate a health card [via QR Code](https://spec.smarthealth.cards/#via-qr-print-or-scan)
+
+      The test kit does **NOT** test this requirement:
+      - Download and validate a health card [via Deep Link](https://spec.smarthealth.cards/#via-deep-link)
 
       See the test descriptions within the test kit for detail on the specific validations performed as part of testing these requirements.
 

lib/smart_health_cards_test_kit/shc_fhir_validation.rb

@@ -7,33 +7,19 @@ class SHCFHIRValidation < Inferno::Test
     description %(
       SMART Health Card payload SHALL be a valid FHIR Bundle resource
     )
-    input :credential_strings
-    output :fhir_bundles
+    input :fhir_bundles
 
     run do
+      skip_if fhir_bundles.blank?, 'No FHIR bundles received'
 
-      skip_if credential_strings.blank?, 'No Verifiable Credentials received'
-      bundle_array = []
+      assert_valid_json(fhir_bundles)
+      bundle_array = JSON.parse(fhir_bundles)
 
-      credential_strings.split(',').each do |credential|
-        jws = SmartHealthCardsTestKit::Utils::JWS.from_jws(credential)
-        payload = payload_from_jws(jws)
-
-        vc = payload['vc']
-        assert vc.is_a?(Hash), "Expected 'vc' claim to be a JSON object, but found #{vc.class}"
-
-        subject = vc['credentialSubject']
-        assert subject.is_a?(Hash), "Expected 'vc.credentialSubject' to be a JSON object, but found #{subject.class}"
-
-        raw_bundle = subject['fhirBundle']
-        assert raw_bundle.is_a?(Hash), "Expected 'vc.fhirBundle' to be a JSON object, but found #{raw_bundle.class}"
-
-        bundle = FHIR::Bundle.new(raw_bundle)
-        assert_valid_resource(resource: bundle)
-        bundle_array.append(bundle)
+      skip_if bundle_array.blank?, 'No FHIR bundles received'
 
+      bundle_array.each do |bundle|
+        assert_valid_resource(resource: FHIR::Bundle.new(bundle))
       end
-      output fhir_bundles: bundle_array
     end
   end
 end

lib/smart_health_cards_test_kit/shc_payload_verification.rb

@@ -33,11 +33,11 @@ class SHCPayloadVerification < Inferno::Test
           (e.g., `{"patient": {"reference": "resource:0"}}`)
     )
     input :credential_strings
-    output :decompressed_payloads
+    output :fhir_bundles
 
     run do
       skip_if credential_strings.blank?, 'No Verifiable Credentials received'
-      decompressed_payload_array = []
+      fhir_bundles = []
 
       credential_strings.split(',').each do |credential|
         jws = SmartHealthCardsTestKit::Utils::JWS.from_jws(credential)
@@ -79,6 +79,9 @@ class SHCPayloadVerification < Inferno::Test
                 "The following Bundle entry urls do not use short resource-scheme URIs: #{bad_urls.join(', ')}"
         end
 
+        # Have to make another copy of bundle to avoid being modified by the following codes
+        fhir_bundles.append(FHIR::Bundle.new(raw_bundle))
+
         bundle = FHIR::Bundle.new(raw_bundle)
         resources = bundle.entry.map(&:resource)
         bundle.entry.each { |entry| entry.resource = nil }
@@ -117,7 +120,8 @@ class SHCPayloadVerification < Inferno::Test
           end
         end
       end
-      output decompressed_payloads: decompressed_payload_array
+
+      output fhir_bundles: fhir_bundles.to_json
     end
   end
 end

lib/smart_health_cards_test_kit/smart_health_cards_test_suite.rb

@@ -19,25 +19,26 @@ class SmartHealthCardsTestSuite < Inferno::TestSuite
     id :smart_health_cards
     title 'SMART Health Cards'
     description %(
-      The US Core Test Kit tests systems for their conformance to the
+      The SMART Health Cards tests systems for their conformance to the
       [SMART Health Cards Framework v1.4.0](https://spec.smarthealth.cards/)
     )
 
     links [
       {
-        type: 'source_code',
-        label: 'Open Source',
-        url: 'https://github.com/inferno-framework/smart-health-cards-test-kit/'
+        label: 'Report Issue',
+        url: 'https://github.com/inferno-framework/smart-health-cards-test-kit/issues'
       },
       {
-        type: 'report_issue',
-        label: 'Report Issue',
-        url: 'https://github.com/inferno-framework/smart-health-cards-test-kit/issues/'
+        label: 'Open Source',
+        url: 'https://github.com/inferno-framework/smart-health-cards-test-kit'
       },
       {
-        type: 'download',
         label: 'Download',
-        url: 'https://github.com/inferno-framework/smart-health-cards-test-kit/releases/'
+        url: 'https://github.com/inferno-framework/smart-health-cards-test-kit/releases'
+      },
+      {
+        label: 'SMART Health Cards Framework',
+        url: 'https://spec.smarthealth.cards/'
       }
     ]
 

spec/smart_health_cards_test_kit/shc_fhir_validation_spec.rb

@@ -29,31 +29,116 @@ def run(runnable, inputs = {})
         sessionId: 'b8cf5547-1dc7-4714-a797-dc2347b93fe2'
       }
     end
+    let(:fhir_bundle_corrina_rowe) do
+      FHIR::Bundle.new(
+        type: 'collection',
+        entry: [
+          {
+            fullUrl: 'resource:0',
+            resource: FHIR::Patient.new(
+              name: [
+                {
+                  family: 'Rowe',
+                  given: ['Corrina']
+                }
+              ],
+              birthDate: '1971-12-06',
+              resourceType: 'Patient'
+            )
+          },
+          {
+            fullUrl: 'resource:1',
+            resource: FHIR::Immunization.new(
+              status: 'completed',
+              vaccineCode: {
+                coding: [
+                  {
+                    system: 'http://hl7.org/fhir/sid/cvx',
+                    code: '207'
+                  }
+                ]
+              },
+              patient: {
+                reference: 'resource:0'
+              },
+              occurrenceDateTime: '2025-02-05',
+              lotNumber: '1234567',
+              resourceType: 'Immunization'
+            )
+          }
+        ],
+        resourceType: 'Bundle'
+      )
+    end
+
+    let (:fhir_bundle_deanne_gleichner) do
+      FHIR::Bundle.new(
+        type: 'collection',
+        entry: [
+          {
+            fullUrl: 'resource:0',
+            resource: FHIR::Patient.new(
+              name: [
+                {
+                  family: 'Gleichner',
+                  given: [
+                    'Deanne'
+                  ]
+                }
+              ],
+              birthDate: '2007-04-11',
+              resourceType: 'Patient'
+            )
+          },
+          {
+            fullUrl: 'resource:1',
+            resource: FHIR::Immunization.new(
+              status: 'completed',
+              vaccineCode: {
+                coding: [
+                  {
+                    system: 'http://hl7.org/fhir/sid/cvx',
+                    code: '210'
+                  }
+                ]
+              },
+              patient: {
+                reference: 'resource:0'
+              },
+              occurrenceDateTime: '2025-02-04',
+              lotNumber: '1234567',
+              resourceType: 'Immunization'
+            )
+          }
+        ],
+        resourceType: 'Bundle'
+      )
+    end
 
     before do
       stub_request(:post, "https://example.com/validatorapi/validate")
         .to_return(status: 200, body: operation_outcome_success.to_json)
     end
 
-    #TODO: update text with specific bundle type
-    it 'passes if the JWS payload conforms to the FHIR Bundle profile' do
-      credential_strings = 'eyJ6aXAiOiJERUYiLCJhbGciOiJFUzI1NiIsImtpZCI6IjRIVWIyYXJ2aFRTWHNzRW9NczJHNVRvRHBzWXZzajdoNXdUXzN6TkV0dWcifQ.hVLLjtQwEPyX5pqHk5nMI0fggoQAwcIFzcFxOhMjx45sJ2JY5d9pJ7tktLuz5BLZrq6uqu57kM5BCa33fZmmygiuWuN8uWGMQQS6aqDM9hu22xd5nkUwCijvwV96hPLnXOaoznXc-ha58m0iuK3dm-UQhwPR3MYJM8o6O76KkV03aPmHe2k0nCIQFmvUXnL1bah-ofBBUtNK-wOtC5gStglLMiINt28HXStcZYMwSlFVQEZARPZCXohhUOq7VQSw6MxgBZYhgsdDINC8wwXLO6moDD5y62aesxxRh0y-ctEiNYDTRForSWbecx_6ZsddFrMszo9XtHeLpi_kjqTANEUvKsmeKHGe-8HNZrpeoccQ88iFkBrfmXrGCFNLfZ71uovz2K2DbtU-MfachnxSJ-tUjL-JQMyVkLMDTKcpgv5BFZFZbNCiDt2v8yGQEWKw81PweSe7hSLfxhkju0SrjP80dBXaEEK-2Ra7_fMEPlxP-VYM-a0YGqm5-ufgVe_KSC2C-9VwwYrtId4vpt26VLdNY9OEFRpf8pwV8yzUME-CV4r-xNH7_whz2nRYJ1I3JnUkYJ3Hjm0OBWPHReCT4D5XDu34mNvp2fvD_k_0_QU.-jNkrXCHlq75fLCGvD8_7eF4iQ-XYQT7uZyiZ1Fqa33-ZQA1-aVEk519JZYGMDdJpO-mVqIC20Xh9sBsD8COzg'
-      result = run(test, { file_download_url: url, url: url, credential_strings: credential_strings})
+    it 'passes if the input is an array with a single bundle conforms to the FHIR Bundle profile' do
+      fhir_bundles = [ fhir_bundle_corrina_rowe ].to_json
+      result = run(test, { file_download_url: url, url: url, fhir_bundles: fhir_bundles})
       expect(result.result).to eq('pass')
     end
 
-    it 'passes if a comma-separated list of VCs all contain JWS payloads that conform to the FHIR Bundle profile' do
-      credential_strings = 'eyJ6aXAiOiJERUYiLCJhbGciOiJFUzI1NiIsImtpZCI6IjRIVWIyYXJ2aFRTWHNzRW9NczJHNVRvRHBzWXZzajdoNXdUXzN6TkV0dWcifQ.hVLLjtQwEPyX5pqHk5nMI0fggoQAwcIFzcFxOhMjx45sJ2JY5d9pJ7tktLuz5BLZrq6uqu57kM5BCa33fZmmygiuWuN8uWGMQQS6aqDM9hu22xd5nkUwCijvwV96hPLnXOaoznXc-ha58m0iuK3dm-UQhwPR3MYJM8o6O76KkV03aPmHe2k0nCIQFmvUXnL1bah-ofBBUtNK-wOtC5gStglLMiINt28HXStcZYMwSlFVQEZARPZCXohhUOq7VQSw6MxgBZYhgsdDINC8wwXLO6moDD5y62aesxxRh0y-ctEiNYDTRForSWbecx_6ZsddFrMszo9XtHeLpi_kjqTANEUvKsmeKHGe-8HNZrpeoccQ88iFkBrfmXrGCFNLfZ71uovz2K2DbtU-MfachnxSJ-tUjL-JQMyVkLMDTKcpgv5BFZFZbNCiDt2v8yGQEWKw81PweSe7hSLfxhkju0SrjP80dBXaEEK-2Ra7_fMEPlxP-VYM-a0YGqm5-ufgVe_KSC2C-9VwwYrtId4vpt26VLdNY9OEFRpf8pwV8yzUME-CV4r-xNH7_whz2nRYJ1I3JnUkYJ3Hjm0OBWPHReCT4D5XDu34mNvp2fvD_k_0_QU.-jNkrXCHlq75fLCGvD8_7eF4iQ-XYQT7uZyiZ1Fqa33-ZQA1-aVEk519JZYGMDdJpO-mVqIC20Xh9sBsD8COzg,eyJ6aXAiOiJERUYiLCJhbGciOiJFUzI1NiIsImtpZCI6IjRIVWIyYXJ2aFRTWHNzRW9NczJHNVRvRHBzWXZzajdoNXdUXzN6TkV0dWcifQ.fZDBTsMwEET_ZbkmaUJatfURVT0jFbigHhxnWxs5drV2IoUq_866oUJCAt_WfjOe2SuYEECAjvEiFgvrlbTahyjqsiwhA9ecQFTruqrrzWa1zGBQIK4QxwuCeL_JAutCJylqlDbqQklqw8M85Glgm7855QfTVtt_GdN1vTOfMhrv4JiBImzRRSPtoW8-UMUU6aQNvSGFxAhYFmVRsWm6fepda_EnNihvLasSmQEb0chd2KG39pUsA4TB96RQpBXch2TgZIczKztjWQZ7EzQSY2czoEs7OXiSo4TjxEkbw1V2MqZfq-3jKi_X-a3s3fRlTvTM3TgITEn06-07_sTnCw.pYwsdxlzdXVhnPzO_YDlMXnSHHz88XA3A9bGuzutySq2v3tO5lOWsfsOQGhoWiH7LCtUNpoizX5GSi5cXVI19g'
-      result = run(test, { file_download_url: url, url: url, credential_strings: credential_strings})
-
+    it 'passes if the input is an array of multiple bundles that all conform to the FHIR Bundle profile' do
+      fhir_bundles = [
+        fhir_bundle_corrina_rowe,
+        fhir_bundle_deanne_gleichner
+    ].to_json
+      result = run(test, { file_download_url: url, url: url, fhir_bundles: fhir_bundles})
       expect(result.result).to eq('pass')
     end
 
-    it 'raises an error if the JWS payload does not conform to the FHIR Bundle profile' do
-      credential_strings = 'asdf'
-      expect {result = run(test, { file_download_url: url, url: url, credential_strings: credential_strings })}.to raise_error()
+    it 'skips if the no FHIR bundles received' do
+      result = run(test, { file_download_url: url, url: url, fhir_bundles: [].to_json})
+      expect(result.result).to eq('skip')
     end
 
   end
-
 end