/*******************************************************************************
* Open Behavioral Health Information Technology Architecture (OBHITA.org)
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions are met:
* * Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* * Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* * Neither the name of the <organization> nor the
* names of its contributors may be used to endorse or promote products
* derived from this software without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
* WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
* DISCLAIMED. IN NO EVENT SHALL <COPYRIGHT HOLDER> BE LIABLE FOR ANY
* DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
* (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
* ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
* SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
******************************************************************************/
package gov.samhsa.consent2share.si;
import static gov.samhsa.consent2share.si.audit.SIAuditVerb.POLREP_ADD_CONSENT;
import static gov.samhsa.consent2share.si.audit.SIPredicateKey.C2S_CONSENT_ID;
import static gov.samhsa.consent2share.si.audit.SIPredicateKey.C2S_PATIENT_ID;
import static gov.samhsa.consent2share.si.audit.SIPredicateKey.DOMAIN_ID;
import static gov.samhsa.consent2share.si.audit.SIPredicateKey.POLREP_VALID;
import static gov.samhsa.consent2share.si.audit.SIPredicateKey.POLREP_XACML_POLICY_ID;
import static gov.samhsa.consent2share.si.audit.SIPredicateKey.RESPONSE_STATUS;
import static gov.samhsa.consent2share.si.audit.SIPredicateKey.XACML_POLICY;
import static gov.samhsa.consent2share.si.audit.SIPredicateKey.XACML_POLICY_ID;
import gov.samhsa.acs.audit.PredicateKey;
import gov.samhsa.acs.polrep.client.PolRepRestClient;
import gov.samhsa.acs.polrep.client.dto.PolicyContentContainerDto;
import gov.samhsa.acs.polrep.client.dto.PolicyContentDto;
import gov.samhsa.acs.polrep.client.dto.PolicyMetadataContainerDto;
import java.util.Map;
import java.util.Optional;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.web.client.HttpStatusCodeException;
import ch.qos.logback.audit.AuditException;
/**
* The Class ConsentSignedMessageHandlerPolRep.
*/
public class ConsentSignedMessageHandlerPolRep extends
AbstractConsentMessageHandler {
/** The Constant FIRST_POLICY. */
private static final int FIRST_POLICY = 0;
/** The Constant SUCCESS. */
private static final String SUCCESS = "SUCCESS";
/** The pol rep client. */
@Autowired
private PolRepRestClient polRepClient;
/** The control bus service. */
@Autowired
private BusController controlBusService;
/** The notification publisher. */
@Autowired
private NotificationPublisher notificationPublisher;
/** The logger. */
private final Logger logger = LoggerFactory.getLogger(this.getClass());
/*
* (non-Javadoc)
*
* @see
* gov.samhsa.consent2share.si.AbstractConsentMessageHandler#handleMessage
* (java.lang.String)
*/
@Override
public String handleMessage(String data) throws Throwable {
final String messageId = generateMessageId();
logger.debug("Consent Signed Message Received: ConsentId "
+ new String(data));
final Long consentId = Long.parseLong(data);
// Get consent
final SignedConsentDto consentDto = consentGetter
.getSignedConsentDto(consentId);
// Save to Policy Repository
PolicyMetadataContainerDto response = null;
try {
final PolicyContentContainerDto request = new PolicyContentContainerDto(
new PolicyContentDto(consentDto.getXacmlCcd()));
response = polRepClient.addPolicies(request, false);
audit(messageId, consentDto, Optional.ofNullable(response),
Optional.empty());
} catch (final HttpStatusCodeException e) {
logger.error(
"Failed to save in policy repository with status code: "
+ e.getStatusCode().toString(), e);
audit(messageId, consentDto, Optional.ofNullable(response),
Optional.of(e));
throw e;
} catch (final Exception e) {
logger.error("Failed to save in policy repository", e);
throw e;
}
return "Saved in policy repository";
}
/**
* Audit.
*
* @param messageId
* the message id
* @param consentDto
* the consent dto
* @param response
* the response
* @param exception
* the exception
* @throws AuditException
* the audit exception
*/
private void audit(String messageId, SignedConsentDto consentDto,
Optional<PolicyMetadataContainerDto> response,
Optional<HttpStatusCodeException> exception) throws AuditException {
final Map<PredicateKey, String> predicateMap = auditService
.createPredicateMap();
predicateMap.put(C2S_CONSENT_ID, consentDto.getPcmConsentId());
predicateMap.put(C2S_PATIENT_ID,
Long.toString(consentDto.getPcmPatientId()));
predicateMap.put(DOMAIN_ID, domainId);
// if there is a successful response
response.ifPresent(resp -> {
predicateMap.put(RESPONSE_STATUS, SUCCESS);
predicateMap.put(POLREP_XACML_POLICY_ID,
resp.getPolicies().get(FIRST_POLICY).getId());
predicateMap.put(
POLREP_VALID,
Boolean.toString(resp.getPolicies().get(FIRST_POLICY)
.isValid()));
});
// if there is an exception
exception.ifPresent(e -> predicateMap.put(RESPONSE_STATUS, e
.getStatusCode().toString()));
predicateMap.put(XACML_POLICY_ID, consentDto.getXacmlCcdId());
predicateMap.put(XACML_POLICY, new String(consentDto.getXacmlCcd()));
auditService.audit(this, messageId, POLREP_ADD_CONSENT,
consentDto.getPatientMrn(), predicateMap);
}
}