====================================
Beneficiary FHIR Data (BFD) Server: The BFD Server is an internal backend system used at CMS to represent Medicare beneficiaries' demographic, enrollment, and claims data in FHIR format.
Drive innovation in data sharing so that beneficiaries and their healthcare partners have the data they need to make informed decisions about their healthcare.
Enable the CMS Enterprise to drive innovation in data sharing so that beneficiaries and their healthcare partners have the data they need to make informed decisions about their healthcare.
Provide a comprehensive, performant, and trustworthy platform to transform the way that the CMS enterprise shares and uses data.
This project is in the worldwide public domain. As stated in LICENSE:
This project is in the public domain within the United States, and copyright and related rights in the work worldwide are waived through the CC0 1.0 Universal public domain dedication.
All contributions to this project will be released under the CC0 dedication. By submitting a pull request, you are agreeing to comply with this waiver of copyright interest.
The following provide information on how to use BFD:
- Request Audit Headers: This document details the HTTP headers that should be included when calling BFD, to ensure that proper audit information is available to the BFD team.
- Request Options: This document details the request options that can be used when calling BFD.
The following provide information on how to develop BFD:
- Sample Data Sets: This document details the various sample/test data sets available for use with the Blue Button Data/backend systems.
Many of the automated tests associated with the Blue Button framework use AWS resources. Before running a build using Maven or importing projects into your Eclipse IDE, which will run a build automatically, please ensure the appropriate accounts and credentials are configured within your environment. This is necessary to prevent incurring unwanted charges on the wrong AWS account.
Below are links to detailed instructions on configuring your AWS credentials for your environment:
You will need to configure an SSH credential in order to clone the Blue Button repositories. Instructions are thoroughly documented on Github but for convenience here are the relevant links:
- Connecting to Github with SSH
- Generating a new SSH key and adding it to the ssh-agent
- Adding a new SSH key to your GitHub account
- Testing your SSH connection
Clone the repository:
mkdir -p ~/workspaces/bfd/
git clone [email protected]:CMSgov/beneficiary-fhir-data.git ~/workspaces/bfd/beneficiary-fhir-data.git
Requirements: Docker
Let's begin!
The instructions from here on should be run from the contributing directory located at /
To simply run tests or execute other tasks in the BFD bring up the docker containers.
Note: As a prerequisite, the bfd Docker environments need a few variables to be set in a file named .env placed within the /contributing directory. A sample file in the contributing directory has been added to serve as a starting point.
cp .env.sample .env
- (defaults to
..)BFD_DIRspecifies the directory on your host machine where you have cloned https://github.com/CMSgov/beneficiary-fhir-data - (defaults to
9954)BFD_PORTspecifies the host port to use when running the API locally - (defaults to
/app)BFD_MOUNT_POINTthe path within the service container where the beneficiary-fhir-data directory will be mounted. - (defaults to
./synthetic-data)SYNTHETIC_DATAspecifies a folder where you have the full set of synthetic rif files. - (defaults to
/synthetic-data)SYNTHETIC_DATA_MOUNT_POINTspecifies the folder in the bfd container where the data will be mounted
make up
This brings services up in the background and displays the logs from the bfd container. Once the logs show that that the system is started (this can take a minute or so depending on your machine) the logs can be exited with Ctrl+C.
Now the system can be interacted with. Here's an example of running tests for the bfd-server module.
docker-compose exec bfd bash
cd /app/apps/bfd-server
mvn verify
Run make up if no docker containers are running or make restart if they're already running.
The FHIR server should now be reachable from the browser at https://localhost:1337. In order for the FHIR server to trust your browser and return data, the client certificate at apps/bfd-server/dev/ssl-stores/client-trusted-keystore.pfx needs to be imported into the browser. The cert password is 'changeit'.
In Chrome this can be done at chrome://settings/certificates. In Firefox it can be done at about:preferences#privacy, there is a button at the bottom called "View Certificates" that should give the option to import one.
Note MacOS Users: To make this cert available to Chrome or Firefox you'll need to add this cert to the Keychain application.
First you'll want some synthetic data to load and work with. To fetch the synthetic data from a public S3 bucket:
make synthetic-data/*.rif
Tip: This will download to a folder within the contributing folder within the repo. Consider moving this synthetic data outside the repo and updating your .env file to point to this new location. It will save you some steps in the future.
To load some data for the BFD to return first apply the patches that allow the system to load local data:
Caution: Since this changes the code in the repository please keep in mind not to commit these changes and to be aware of them while making your own changes. Reverse them before you submit your changes.
make loadable
Then load the data
make load
This can take as long as an hour depending on your system.
Once loaded going to a URL like https://localhost:1337/v1/fhir/Patient/-19990000000001?_format=json in your browser should show you some data.
An example of connecting http://github.com/cmsgov/bluebutton-web-server to the local BFD.
.env
BB20_CONTEXT=../../bluebutton-web-server
CERTSTORE=../../bb.dev/certstore
BFD_DIR=../
SYNTHETIC_DATA=./synthetic-data
docker-compose.bb2.yml
version: '3.3'
services:
bbdb:
image: postgres
environment:
- POSTGRES_DB=bluebutton
- POSTGRES_PASSWORD=toor
bb20:
build:
context: ${BB20_CONTEXT}
dockerfile: Dockerfile
command: python3 manage.py runserver 0.0.0.0:8000
environment:
- DJANGO_SETTINGS_MODULE=hhs_oauth_server.settings.dev
- DJANGO_FHIR_CERTSTORE=/certstore
- DATABASES_CUSTOM=postgres://postgres:toor@bbdb:5432/bluebutton
- OAUTHLIB_INSECURE_TRANSPORT=true
- DJANGO_DEFAULT_SAMPLE_FHIR_ID="20140000008325"
- DJANGO_SECURE_SESSION=False
- DJANGO_MEDICARE_LOGIN_URI=http://127.0.0.1:8080?scope=openid%20profile&client_id=bluebutton
- DJANGO_SLS_USERINFO_ENDPOINT=http://msls:8080/userinfo
- DJANGO_SLS_TOKEN_ENDPOINT=http://msls:8080/token
- FHIR_URL=https://bfd.local:9954/v1/fhir/
ports:
- "8000:8000"
links:
- "bfd:bfd.local"
volumes:
- ${BB20_CONTEXT}:/code
- ${CERTSTORE}:/certstore
depends_on:
- bbdb
The BlueButton 2 system also requires an Identity Provider
docker-compose.msls.yml
version: '3.3'
services:
msls:
build:
context: ../../bb.dev/msls
dockerfile: Dockerfile
command: msls
ports:
- "8080:8080"
Bringing these systems up together:
docker-compose -f docker-compose.yml -f docker-compose.bb2.yml -f docker-compose.msls.yml up -d
docker-compose -f docker-compose.bb2.yml exec bb2 ./docker-compose/migrate.sh
We work with sensitive information: do not put any PHI or PII in the public repo for BFD.
If you believe you’ve found or been made aware of a security vulnerability, please refer to the CMS Vulnerability Disclosure Policy (here is a link to the most recent version as of the time of this commit.
The following instructions are to be executed from within the Eclipse IDE application to ensure proper configuration.
Verify Eclipse is using the correct Java 8 JDK.
- Open Window > Preferences.
- Select Java > Installed JREs.
- If your JDK does not appear in the Installed JREs table add it by clicking the Add button, select Standard VM and locate your installation using the Directory... button.
- Ensure your JDK is selected in the Installed JREs table by checking the checkbox next to the JDK you wish to use.
If you're using Eclipse for development, you'll want to configure its preferences, as follows:
- Open Window > Preferences.
- Select Maven.
- Enable Download Artifact Sources.
- Enable Download Artifact JavaDoc.
- Select Maven > Annotation Processing.
- Enable the Automatically configure JDT APT option.
- Select Java > Code Style > Code Templates.
- Click Import... and select this project's eclipse-codetemplates.xml file.
- This configures the file, class, method, etc. comments on new items such that they match the existing style used in these projects.
- Enable the Automatically add comments for new methods and types option.
- Click Import... and select this project's eclipse-codetemplates.xml file.
- Select Java > Code Style > Formatter.
- Click Import... and select this project's eclipse-java-google-style.xml file.
- This configures the Eclipse autoformatter (
ctrl+shift+f) to (mostly) match the one used by the autoformatter that is applied during Maven builds. - The eclipse-java-google-style.xml file was originally acquired from here: https://github.com/google/styleguide/blob/gh-pages/eclipse-java-google-style.xml.
- This configures the Eclipse autoformatter (
- Click Import... and select this project's eclipse-java-google-style.xml file.
- Select Java > Editor > Save Actions.
- Enable the Perform the selected actions on save option.
- Enable the Format source code option.
- Click OK.
The repository can easily be added to your Eclipse workspace using the Import feature.
- Open File > Import....
- Select Existing Maven Projects.
- Specify the Root Directory using the Browse... button or by typing in a path:
~/workspaces/bfd/beneficiary-fhir-data.git. - Verify that it found the projects in the Projects table.
- Click Finish.
- The projects and packages you selected will now appear in the Project Explorer window.