Working branch (#4)

Author: VaishSiddharth

omod/pom.xml

@@ -51,6 +51,31 @@
 			<groupId>javax.servlet</groupId>
 			<artifactId>javax.servlet-api</artifactId>
 		</dependency>
+		<dependency>
+			<groupId>org.openmrs.module</groupId>
+			<artifactId>uiframework-api</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.openmrs.module</groupId>
+			<artifactId>appui-omod</artifactId>
+			<version>${appuiVersion}</version>
+			<type>jar</type>
+			<scope>provided</scope>
+			<exclusions>
+				<exclusion>
+					<artifactId>appui-api</artifactId>
+					<groupId>org.openmrs.module</groupId>
+				</exclusion>
+			</exclusions>
+		</dependency>
+
+		<dependency>
+			<groupId>org.openmrs.module</groupId>
+			<artifactId>appui-api</artifactId>
+			<classifier>tests</classifier>
+			<version>${appuiVersion}</version>
+			<scope>test</scope>
+		</dependency>
 	</dependencies>
 
 	<build>

omod/src/main/java/org/openmrs/module/smartonfhir/page/controller/FindPatientPageController.java

@@ -0,0 +1,45 @@
+/*
+ * This Source Code Form is subject to the terms of the Mozilla Public License,
+ * v. 2.0. If a copy of the MPL was not distributed with this file, You can
+ * obtain one at http://mozilla.org/MPL/2.0/. OpenMRS is also distributed under
+ * the terms of the Healthcare Disclaimer located at http://openmrs.org/license.
+ *
+ * Copyright (C) OpenMRS Inc. OpenMRS is a registered trademark and the OpenMRS
+ * graphic logo is a trademark of OpenMRS Inc.
+ */
+package org.openmrs.module.smartonfhir.page.controller;
+
+import org.openmrs.module.appframework.domain.AppDescriptor;
+import org.openmrs.module.appui.UiSessionContext;
+import org.openmrs.module.coreapps.helper.BreadcrumbHelper;
+import org.openmrs.ui.framework.UiUtils;
+import org.openmrs.ui.framework.page.PageModel;
+import org.springframework.web.bind.annotation.RequestParam;
+
+public class FindPatientPageController {
+	
+	/**
+	 * This page is built to be shared across multiple apps. To use it, you must pass an "app" request
+	 * parameter, which must be the id of an existing app that is an instance of
+	 * coreapps.template.findPatient
+	 *
+	 * @param model
+	 * @param app
+	 * @param sessionContext
+	 */
+	public void get(PageModel model, @RequestParam("app") AppDescriptor app, @RequestParam("token") String token,
+	        UiSessionContext sessionContext, UiUtils ui) {
+		System.out.println("in FindPatientPageController" + token);
+		model.addAttribute("afterSelectedUrl", app.getConfig().get("afterSelectedUrl").getTextValue() + "&token=" + token);
+		model.addAttribute("heading", app.getConfig().get("heading").getTextValue());
+		model.addAttribute("label", app.getConfig().get("label").getTextValue());
+		model.addAttribute("showLastViewedPatients", app.getConfig().get("showLastViewedPatients").getBooleanValue());
+		if (app.getConfig().get("registrationAppLink") == null) {
+			model.addAttribute("registrationAppLink", "");
+		} else {
+			model.addAttribute("registrationAppLink", app.getConfig().get("registrationAppLink").getTextValue());
+		}
+		BreadcrumbHelper.addBreadcrumbsIfDefinedInApp(app, model, ui);
+	}
+	
+}

omod/src/main/java/org/openmrs/module/smartonfhir/web/filter/CORSFilter.java

@@ -0,0 +1,40 @@
+/*
+ * This Source Code Form is subject to the terms of the Mozilla Public License,
+ * v. 2.0. If a copy of the MPL was not distributed with this file, You can
+ * obtain one at http://mozilla.org/MPL/2.0/. OpenMRS is also distributed under
+ * the terms of the Healthcare Disclaimer located at http://openmrs.org/license.
+ *
+ * Copyright (C) OpenMRS Inc. OpenMRS is a registered trademark and the OpenMRS
+ * graphic logo is a trademark of OpenMRS Inc.
+ */
+package org.openmrs.module.smartonfhir.web.filter;
+
+import javax.servlet.FilterChain;
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import java.io.IOException;
+
+import org.springframework.web.filter.OncePerRequestFilter;
+
+/*
+ * Custom CORS filter
+ * To use this declare filter mapping in config.xml
+ */
+public class CORSFilter extends OncePerRequestFilter {
+	
+	@Override
+	protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain)
+	        throws ServletException, IOException {
+		// CORS "pre-flight" request
+		response.addHeader("Access-Control-Allow-Credentials", "true");
+		response.addHeader("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE");
+		response.addHeader("Access-Control-Allow-Headers", "Authorization");
+		response.addHeader("Access-Control-Allow-Headers", "Content-Type");
+		response.addHeader("Access-Control-Allow-Origin", "*");
+		response.addHeader("Access-Control-Max-Age", "1");
+		
+		filterChain.doFilter(request, response);
+	}
+}

omod/src/main/java/org/openmrs/module/smartonfhir/web/filter/SmartAuthenticationFilter.java

@@ -74,47 +74,51 @@ public void init(FilterConfig filterConfig) {
 	public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException {
 		if (req instanceof HttpServletRequest) {
 			final HttpServletRequest httpRequest = (HttpServletRequest) req;
-			if (httpRequest.getRequestedSessionId() != null) {
-				Context.logout();
-			}
-			
-			String authorization = httpRequest.getHeader("Authorization");
-			if (!Context.isAuthenticated() && (authorization == null || !authorization.startsWith("Basic"))) {
-				// KeycloakOIDCFilter does the actual request handling
-				super.doFilter(req, res, (rq, rs) -> {});
-				
-				if (res.isCommitted()) {
-					return;
+			//			if (false) {
+			if (!(httpRequest.getRequestURI().contains("/.well-known")
+			        || httpRequest.getRequestURI().contains("/metadata"))) {
+				if (httpRequest.getRequestedSessionId() != null) {
+					Context.logout();
 				}
 
-				if (httpRequest.getAttribute(KeycloakAccount.class.getName()) != null) {
-					OidcKeycloakAccount account = (OidcKeycloakAccount) httpRequest
-					        .getAttribute(KeycloakAccount.class.getName());
+				String authorization = httpRequest.getHeader("Authorization");
+				if (!Context.isAuthenticated() && (authorization == null || !authorization.startsWith("Basic"))) {
+					// KeycloakOIDCFilter does the actual request handling
+					super.doFilter(req, res, (rq, rs) -> {});
 
-					String userName = account.getKeycloakSecurityContext().getToken().getPreferredUsername();
-					Authenticated authenticated;
-					try {
-						authenticated = Context.authenticate(new SmartTokenCredentials(userName));
-					}
-					catch (ContextAuthenticationException e) {
-						HttpServletResponse httpResponse = (HttpServletResponse) res;
-						httpResponse.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Not authenticated");
+					if (res.isCommitted()) {
 						return;
 					}
 
-					log.debug("The user '{}' was successfully authenticated as OpenMRS user {}", userName,
-					    authenticated.getUser());
-					
-					// attempt to remove access_token from the query string
-					Matcher m = ACCESS_TOKEN.matcher(httpRequest.getRequestURI());
-					if (m.matches()) {
-						httpRequest.getRequestDispatcher(m.replaceFirst("")).forward(req, res);
+					if (httpRequest.getAttribute(KeycloakAccount.class.getName()) != null) {
+						OidcKeycloakAccount account = (OidcKeycloakAccount) httpRequest
+						        .getAttribute(KeycloakAccount.class.getName());
+						
+						String userName = account.getKeycloakSecurityContext().getToken().getPreferredUsername();
+						Authenticated authenticated;
+						try {
+							authenticated = Context.authenticate(new SmartTokenCredentials(userName));
+						}
+						catch (ContextAuthenticationException e) {
+							HttpServletResponse httpResponse = (HttpServletResponse) res;
+							httpResponse.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Not authenticated");
+							return;
+						}
+						
+						log.debug("The user '{}' was successfully authenticated as OpenMRS user {}", userName,
+						    authenticated.getUser());
+						
+						// attempt to remove access_token from the query string
+						Matcher m = ACCESS_TOKEN.matcher(httpRequest.getRequestURI());
+						if (m.matches()) {
+							httpRequest.getRequestDispatcher(m.replaceFirst("")).forward(req, res);
+							return;
+						}
+					} else {
+						HttpServletResponse httpResponse = (HttpServletResponse) res;
+						httpResponse.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Not authenticated");
 						return;
 					}
-				} else {
-					HttpServletResponse httpResponse = (HttpServletResponse) res;
-					httpResponse.sendError(HttpServletResponse.SC_UNAUTHORIZED, "Not authenticated");
-					return;
 				}
 			}
 		}

omod/src/main/java/org/openmrs/module/smartonfhir/web/filter/SmartForwardingFilter.java

@@ -0,0 +1,53 @@
+/*
+ * This Source Code Form is subject to the terms of the Mozilla Public License,
+ * v. 2.0. If a copy of the MPL was not distributed with this file, You can
+ * obtain one at http://mozilla.org/MPL/2.0/. OpenMRS is also distributed under
+ * the terms of the Healthcare Disclaimer located at http://openmrs.org/license.
+ *
+ * Copyright (C) OpenMRS Inc. OpenMRS is a registered trademark and the OpenMRS
+ * graphic logo is a trademark of OpenMRS Inc.
+ */
+package org.openmrs.module.smartonfhir.web.filter;
+
+import javax.servlet.Filter;
+import javax.servlet.FilterChain;
+import javax.servlet.FilterConfig;
+import javax.servlet.ServletException;
+import javax.servlet.ServletRequest;
+import javax.servlet.ServletResponse;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import java.io.IOException;
+
+import lombok.extern.slf4j.Slf4j;
+
+@Slf4j
+public class SmartForwardingFilter implements Filter {
+	
+	@Override
+	public void init(FilterConfig filterConfig) {
+	}
+	
+	@Override
+	public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException {
+		if (req instanceof HttpServletRequest && res instanceof HttpServletResponse) {
+			HttpServletRequest request = (HttpServletRequest) req;
+			if (request.getRequestURI().contains("/.well-known") || request.getRequestURI().contains("/metadata")) {
+				req.getRequestDispatcher("/ms/smartConfig").forward(req, res);
+				return;
+			}
+			if (request.getRequestURI().contains("/smartPatientSelected")) {
+				req.getRequestDispatcher("/ms/smartPatientSelected").forward(req, res);
+				return;
+			}
+		}
+		
+		chain.doFilter(req, res);
+	}
+	
+	@Override
+	public void destroy() {
+		
+	}
+}

omod/src/main/java/org/openmrs/module/smartonfhir/web/servlet/SmartConfigServlet.java

@@ -14,6 +14,9 @@
 import javax.servlet.http.HttpServletResponse;
 
 import java.io.IOException;
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
 
 import org.codehaus.jackson.map.ObjectMapper;
 import org.openmrs.module.smartonfhir.web.SmartConformance;
@@ -26,8 +29,8 @@ public class SmartConfigServlet extends HttpServlet {
 
 	public SmartConfigServlet() {
 		this.smartConformance = new SmartConformance();
-		smartConformance.setAuthorizationEndpoint("https://ehr.example.com/auth/authorize");
-		smartConformance.setTokenEndpoint("https://ehr.example.com/auth/token");
+		smartConformance.setAuthorizationEndpoint("http://localhost:8180/auth/realms/openmrs/protocol/openid-connect/auth");
+		smartConformance.setTokenEndpoint("http://localhost:8180/auth/realms/openmrs/protocol/openid-connect/token");
 		smartConformance.setTokenEndpointAuthMethodsSupported(new String[] { "client_secret_basic" });
 		smartConformance.setRegistrationEndpoint("https://ehr.example.com/auth/register");
 		smartConformance.setScopesSupported(
@@ -36,14 +39,70 @@ public SmartConfigServlet() {
 		smartConformance.setManagementEndpoint("https://ehr.example.com/user/manage");
 		smartConformance.setIntrospectionEndpoint("https://ehr.example.com/user/introspect");
 		smartConformance.setRevocationEndpoint("https://ehr.example.com/user/revoke");
-		smartConformance.setCapabilities(new String[] { "launch-ehr", "client-public", "client-confidential-symmetric",
-		        "context-ehr-patient", "sso-openid-connect" });
+		smartConformance.setCapabilities(new String[] { "launch-standalone", "launch-ehr", "client-public",
+		        "client-confidential-symmetric", "context-ehr-patient", "sso-openid-connect" });
 	}
 
 	public void doGet(HttpServletRequest req, HttpServletResponse res) throws IOException {
+		String fhirUri = "http://localhost:8080/openmrs/ws/fhir2/R3";
+		String authUri = "http://localhost:8180/auth/realms/openmrs/protocol/openid-connect/auth";
+		String tokenUri = "http://localhost:8180/auth/realms/openmrs/protocol/openid-connect/token";
+		
+		HashMap<String, Object> codingMap = new HashMap<>();
+		codingMap.put("system", "http://hl7.org/fhir/restful-security-service");
+		codingMap.put("code", "SMART-on-FHIR");
+		
+		List<HashMap<String, Object>> codingList = new ArrayList<>();
+		codingList.add(codingMap);
+		
+		HashMap<String, Object> serviceMap = new HashMap<>();
+		serviceMap.put("coding", codingList);
+		serviceMap.put("text", "OAuth2 using SMART-on-FHIR profile (see http://docs.smarthealthit.org)");
+		
+		List<HashMap<String, Object>> serviceList = new ArrayList<>();
+		serviceList.add(serviceMap);
+		
+		HashMap<String, Object> tokenMap = new HashMap<>();
+		tokenMap.put("url", "token");
+		tokenMap.put("valueUri", tokenUri);
+		
+		HashMap<String, Object> authorizeMap = new HashMap<>();
+		authorizeMap.put("url", "authorize");
+		authorizeMap.put("valueUri", authUri);
+		
+		HashMap<String, Object> fhirMap = new HashMap<>();
+		fhirMap.put("url", "fhir");
+		fhirMap.put("valueUri", fhirUri);
+		
+		List<HashMap<String, Object>> innerExtentionList = new ArrayList<>();
+		innerExtentionList.add(tokenMap);
+		innerExtentionList.add(authorizeMap);
+		innerExtentionList.add(fhirMap);
+		
+		HashMap<String, Object> extentionMap = new HashMap<>();
+		extentionMap.put("url", "http://fhir-registry.smarthealthit.org/StructureDefinition/oauth-uris");
+		extentionMap.put("extension", innerExtentionList);
+		
+		List<HashMap<String, Object>> extentionList = new ArrayList<>();
+		extentionList.add(extentionMap);
+		
+		HashMap<String, Object> securityMap = new HashMap<>();
+		securityMap.put("service", serviceList);
+		securityMap.put("extension", extentionList);
+		
+		HashMap<String, Object> restMap = new HashMap<>();
+		restMap.put("security", securityMap);
+		
+		List<HashMap<String, Object>> restList = new ArrayList<>();
+		restList.add(restMap);
+		
+		HashMap<String, Object> metadataMap = new HashMap<>();
+		metadataMap.put("resourceType", "Conformance");
+		metadataMap.put("rest", restList);
+		
 		res.setContentType("application/json");
 		res.setCharacterEncoding("UTF-8");
 		res.setStatus(200);
-		objectMapper.writeValue(res.getWriter(), smartConformance);
+		objectMapper.writeValue(res.getWriter(), metadataMap);
 	}
 }