Support HomeMonitoring use case (#474)

Makefile

@@ -0,0 +1,36 @@
+.PHONY: dev
+
+run-generators: gen-api
+
+install-tools:
+	go install github.com/deepmap/oapi-codegen/v2/cmd/[email protected]
+
+gen-api:
+	npm run gen-api
+
+	oapi-codegen -generate types -package types -o domain/types/generated_types.go api/api.yaml
+	oapi-codegen -generate server -package api -o api/generated.go api/api.yaml
+	oapi-codegen -generate client,types -package auth \
+	  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
+	  -o nuts/client/auth/generated.go https://nuts-node.readthedocs.io/en/latest/_static/auth/v1.yaml
+	oapi-codegen -generate client,types -package common -exclude-schemas VerifiableCredential,VerifiablePresentation,DID,DIDDocument -generate types,skip-prune -o nuts/client/common/generated.go https://nuts-node.readthedocs.io/en/latest/_static/common/ssi_types.yaml
+	oapi-codegen -generate client,types -package discovery \
+	   -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
+	   -exclude-schemas SearchVCRequest,CredentialSubject \
+	   -o nuts/client/discovery/generated.go https://nuts-node.readthedocs.io/en/latest/_static/discovery/v1.yaml
+	oapi-codegen -generate client,types -package vcr \
+	   -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
+	   -exclude-schemas SearchVCRequest,CredentialSubject \
+	   -o nuts/client/vcr/generated.go https://nuts-node.readthedocs.io/en/latest/_static/vcr/vcr_v2.yaml
+	oapi-codegen -generate client,types -package didman \
+	  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
+	  -o nuts/client/didman/generated.go -exclude-schemas OrganizationSearchResult https://nuts-node.readthedocs.io/en/latest/_static/didman/v1.yaml
+	oapi-codegen -generate client,types -package vdr \
+	  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
+	  -o nuts/client/vdr/generated.go https://nuts-node.readthedocs.io/en/latest/_static/vdr/v1.yaml
+	oapi-codegen -generate client,types -package vdr_v2 \
+	  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
+	  -o nuts/client/vdr_v2/generated.go https://nuts-node.readthedocs.io/en/latest/_static/vdr/v2.yaml
+	oapi-codegen -generate client,types -package iam \
+	  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
+	  -o nuts/client/iam/generated.go https://nuts-node.readthedocs.io/en/latest/_static/auth/iam.yaml

README.md

@@ -43,30 +43,7 @@ go run . live
 
 The API and domain types are generated from the `api/api.yaml`.
 ```shell
-npm run gen-api
-
-oapi-codegen -generate types -package types -o domain/types/generated_types.go api/api.yaml
-oapi-codegen -generate server -package api -o api/generated.go api/api.yaml
-oapi-codegen -generate client,types -package auth \
-  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
-  -o nuts/client/auth/generated.go https://nuts-node.readthedocs.io/en/latest/_static/auth/v1.yaml
-oapi-codegen -generate client,types -package discovery \
-  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
-  -o nuts/client/discovery/generated.go https://nuts-node.readthedocs.io/en/latest/_static/discovery/v1.yaml  
-oapi-codegen -generate client,types -package iam \
-  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
-  -o nuts/client/iam/generated.go https://nuts-node.readthedocs.io/en/latest/_static/auth/iam.yaml  
-oapi-codegen -generate client,types -package common -exclude-schemas VerifiableCredential,VerifiablePresentation,DID,DIDDocument -generate types,skip-prune -o nuts/client/common/generated.go https://nuts-node.readthedocs.io/en/latest/_static/common/ssi_types.yaml
-oapi-codegen -generate client,types -package vcr \
-   -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
-   -exclude-schemas SearchVCRequest,CredentialSubject \
-   -o nuts/client/vcr/generated.go https://nuts-node.readthedocs.io/en/latest/_static/vcr/vcr_v2.yaml
-oapi-codegen -generate client,types -package didman \
-  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
-  -o nuts/client/didman/generated.go -exclude-schemas OrganizationSearchResult https://nuts-node.readthedocs.io/en/latest/_static/didman/v1.yaml
-oapi-codegen -generate client,types -package vdr \
-  -import-mapping='../common/ssi_types.yaml:github.com/nuts-foundation/nuts-demo-ehr/nuts/client/common' \
-  -o nuts/client/vdr/generated.go https://nuts-node.readthedocs.io/en/latest/_static/vdr/v1.yaml
+make gen-api
 ```
 
 ### Docker

api/acl.go

@@ -0,0 +1,20 @@
+package api
+
+import (
+	"github.com/labstack/echo/v4"
+	"net/http"
+)
+
+func (w Wrapper) GetACL(ctx echo.Context, tenantDID string, authorizedDID string) error {
+	authorizedResources, err := w.ACL.AuthorizedResources(ctx.Request().Context(), tenantDID, authorizedDID)
+	if err != nil {
+		return err
+	}
+
+	result := make(map[string][]string)
+	for _, resource := range authorizedResources {
+		result[resource.Resource] = append(result[resource.Resource], resource.Operation)
+	}
+
+	return ctx.JSON(http.StatusOK, result)
+}

api/api.go

@@ -3,6 +3,8 @@ package api
 import (
 	"encoding/json"
 	"fmt"
+	"github.com/nuts-foundation/nuts-demo-ehr/domain"
+	"github.com/nuts-foundation/nuts-demo-ehr/domain/acl"
 	"github.com/nuts-foundation/nuts-demo-ehr/domain/fhir"
 	"net/http"
 	"strconv"
@@ -41,9 +43,8 @@ var _ ServerInterface = (*Wrapper)(nil)
 
 type Wrapper struct {
 	APIAuth                 *Auth
-	NutsAuth                nutsClient.Auth
-	NutsIam                 nutsClient.Iam
-	NutsDiscovery           nutsClient.Discovery
+	ACL                     *acl.Repository
+	NutsClient              *nutsClient.HTTPClient
 	CustomerRepository      customers.Repository
 	PatientRepository       patients.Repository
 	ReportRepository        reports.Repository
@@ -53,6 +54,7 @@ type Wrapper struct {
 	TransferSenderService   sender.TransferService
 	TransferReceiverService receiver.TransferService
 	TransferReceiverRepo    receiver.TransferRepository
+	ZorginzageService       domain.ZorginzageService
 	FHIRService             fhir.Service
 	EpisodeService          episode.Service
 	NotificationHandler     notification.Handler
@@ -115,7 +117,7 @@ func (w Wrapper) CreateAuthorizationRequest(ctx echo.Context) error {
 	if err != nil {
 		return ctx.JSON(http.StatusInternalServerError, errorResponse{err})
 	}
-	response, err := w.NutsIam.CreateAuthenticationRequest(*customer.Did)
+	response, err := w.NutsClient.CreateAuthenticationRequest(*customer.Did)
 	if err != nil {
 		return err
 	}
@@ -133,7 +135,7 @@ func (w Wrapper) GetOpenID4VPAuthenticationResult(ctx echo.Context, token string
 	//if err != nil {
 	//	return ctx.JSON(http.StatusInternalServerError, errorResponse{err})
 	//}
-	response, err := w.NutsIam.GetAuthenticationResult(token)
+	response, err := w.NutsClient.GetAuthenticationResult(token)
 	if err != nil {
 		return err
 	}
@@ -153,7 +155,7 @@ func (w Wrapper) AuthenticateWithIRMA(ctx echo.Context) error {
 	}
 
 	// forward to node
-	bytes, err := w.NutsAuth.CreateIrmaSession(*customer.Did)
+	bytes, err := w.NutsClient.CreateIrmaSession(*customer.Did)
 	if err != nil {
 		return err
 	}
@@ -171,7 +173,7 @@ func (w Wrapper) GetIRMAAuthenticationResult(ctx echo.Context, sessionToken stri
 	}
 
 	// forward to node
-	sessionStatus, err := w.NutsAuth.GetIrmaSessionResult(sessionToken)
+	sessionStatus, err := w.NutsClient.GetIrmaSessionResult(sessionToken)
 	if err != nil {
 		return err
 	}
@@ -183,7 +185,7 @@ func (w Wrapper) GetIRMAAuthenticationResult(ctx echo.Context, sessionToken stri
 	authSessionID, err := w.getSessionID(ctx)
 	if err != nil {
 		// No current session, create a new one. Introspect IRMA VP and extract properties for UserInfo.
-		userPresentation, err := w.NutsAuth.VerifyPresentation(*sessionStatus.VerifiablePresentation)
+		userPresentation, err := w.NutsClient.VerifyPresentation(*sessionStatus.VerifiablePresentation)
 		if err != nil {
 			return fmt.Errorf("unable to verify presentation: %w", err)
 		}
@@ -245,7 +247,7 @@ func (w Wrapper) AuthenticateWithEmployeeID(ctx echo.Context) error {
 			"familyName": session.UserInfo.FamilyName,
 		},
 	}
-	bytes, err := w.NutsAuth.CreateEmployeeIDSession(params)
+	bytes, err := w.NutsClient.CreateEmployeeIDSession(params)
 	if err != nil {
 		return err
 	}
@@ -268,7 +270,7 @@ func (w Wrapper) GetEmployeeIDAuthenticationResult(ctx echo.Context, sessionToke
 	authSessionID, _ := w.getSessionID(ctx) // can't fail
 
 	// forward to node
-	sessionStatus, err := w.NutsAuth.GetEmployeeIDSessionResult(sessionToken)
+	sessionStatus, err := w.NutsClient.GetEmployeeIDSessionResult(sessionToken)
 	if err != nil {
 		return err
 	}
@@ -306,7 +308,7 @@ func (w Wrapper) AuthenticateWithDummy(ctx echo.Context) error {
 		return ctx.JSON(http.StatusInternalServerError, errorResponse{err})
 	}
 
-	bytes, err := w.NutsAuth.CreateDummySession(*customer.Did)
+	bytes, err := w.NutsClient.CreateDummySession(*customer.Did)
 	if err != nil {
 		return err
 	}
@@ -338,7 +340,7 @@ func (w Wrapper) GetDummyAuthenticationResult(ctx echo.Context, sessionToken str
 	// for dummy, it takes a few request to get to status completed.
 	for i := 0; i < 4; i++ {
 		// forward to node
-		sessionResult, err = w.NutsAuth.GetDummySessionResult(sessionToken)
+		sessionResult, err = w.NutsClient.GetDummySessionResult(sessionToken)
 		if err != nil {
 			return err
 		}