Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Develop Merge: Pre Connect-a-thon 26 #462

Merged
merged 116 commits into from
Apr 4, 2024
Merged

Develop Merge: Pre Connect-a-thon 26 #462

merged 116 commits into from
Apr 4, 2024

Conversation

JoeShook
Copy link
Owner

@JoeShook JoeShook commented Apr 4, 2024

  • A new Udap.Proxy.Server example that turns your FHIR server into a UDAP enabled FHIR server.
  • The Udap.Proxy.Server is the new https://fhirlabs.net/fhir/r4 fhir server endpoint. The backing FHIR server is a Google Cloud HealthCare FHIR Server.
  • A new Udap.Smart.Metadata package for some experimenting I am doing with SMART. May add SMART on FHIR to my auth server going forward. Just not sure yet how I handle letting the Auth Server know about the launch parameter ahead of time. Back channel or Proxy Server or redirect dance?
  • Refreshed the Udap.Auth.Server to support /authorize? errors accorging to rfc 6749. The server is back to passing all of the https://www.udap.org/UDAPTestTool/ server tests. Actually Test 16 is failing becuase the test tools is reusing the jti parameter for reated registrations thus triggering a replay block at Udap.Auth.Server. A bug has been filed and it will be fixed.
  • TouchStone tests are also in good shape.
  • I started to experiment with hosting UdapEd in a Maui Application. I have a lot of the UdapEd blazor app hosted inside of the Maui App and working. Windows and Android tested. Android does not auto discover intermediate certificates, so there would be a choice to make. Either add code to get the intermediary or as a convension always install the intermediary on the device just like you would do with the trust anchor certificate. The idea of this experiment is to go through the mechanics of building a CSR from a device, assuming that every instance of a device would need it's own client certificate. Last thing to note about UdapEd it that it is now hosted in a new repository to keep the Maui bits for compilation from slowing down this repo. See JoeShook/UdapEd
  • The Maui experiment led to another technology I have been wanting to apply. It is called the RCL or Razor Class Library. You can take all your Razor Pages, Javascript and static content and centralize it in a project. This allows you to publish it as a NuGet packages. This worked good for centralizing the Blazor components that could then be shared with Blazor and Maui for the UdapEd project. But even better, now there is a Udap.Server.Ui package that contains all the Razor pages for the Udap.Auth.Server. Those pages are nothing more than the Duende example pages with a few UDAP specific pages. But the idea of packaging this up so you can just include it in your UDAP Auth Server is a nice feature that removes post manual configuration. It would be cool to rewrite all of these pages as Blazor Components with MudBlazor. Volunteers?

dependabot bot and others added 30 commits February 7, 2024 12:38
Bumps [Microsoft.NET.Test.Sdk](https://github.com/microsoft/vstest) from 17.8.0 to 17.9.0.
- [Release notes](https://github.com/microsoft/vstest/releases)
- [Changelog](https://github.com/microsoft/vstest/blob/main/docs/releases.md)
- [Commits](microsoft/vstest@v17.8.0...v17.9.0)

---
updated-dependencies:
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
…happening.

Because I reference two web services in the UdapMetadata.Tests the appsettings.json that is copied to the bin started coming from WeatherApi rather than UdapMetadata.Tests.  I just uniquely named the one I want to appsettings.FhirLabsApi.json for setting up my IUdapClient and dependent components.
…oft.NET.Test.Sdk-17.9.0

Bump Microsoft.NET.Test.Sdk from 17.8.0 to 17.9.0
Bumps [NSubstitute.Analyzers.CSharp](https://github.com/nsubstitute/NSubstitute.Analyzers) from 1.0.16 to 1.0.17.
- [Changelog](https://github.com/nsubstitute/NSubstitute.Analyzers/blob/1.0.17/ReleaseNotes.md)
- [Commits](nsubstitute/NSubstitute.Analyzers@1.0.16...1.0.17)

---
updated-dependencies:
- dependency-name: NSubstitute.Analyzers.CSharp
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
…itute.Analyzers.CSharp-1.0.17

Bump NSubstitute.Analyzers.CSharp from 1.0.16 to 1.0.17
Bumps [Microsoft.AspNetCore.Components.WebAssembly.Server](https://github.com/dotnet/aspnetcore) from 8.0.1 to 8.0.2.
- [Release notes](https://github.com/dotnet/aspnetcore/releases)
- [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md)
- [Commits](dotnet/aspnetcore@v8.0.1...v8.0.2)

---
updated-dependencies:
- dependency-name: Microsoft.AspNetCore.Components.WebAssembly.Server
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
…ion.Abstractions, Microsoft.Extensions.DependencyInjection.Abstractions and Microsoft.Extensions.Configuration

Bumps [Microsoft.Extensions.Http.Polly](https://github.com/dotnet/aspnetcore), [Microsoft.Extensions.Configuration.Abstractions](https://github.com/dotnet/runtime), Microsoft.Extensions.DependencyInjection.Abstractions and [Microsoft.Extensions.Configuration](https://github.com/dotnet/runtime). These dependencies needed to be updated together.

Updates `Microsoft.Extensions.Http.Polly` from 8.0.1 to 8.0.2
- [Release notes](https://github.com/dotnet/aspnetcore/releases)
- [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md)
- [Commits](dotnet/aspnetcore@v8.0.1...v8.0.2)

Updates `Microsoft.Extensions.Configuration.Abstractions` from 2.1.0 to 8.0.0
- [Release notes](https://github.com/dotnet/runtime/releases)
- [Commits](https://github.com/dotnet/runtime/commits/v8.0.0)

Updates `Microsoft.Extensions.DependencyInjection.Abstractions` from 2.0.0 to 8.0.0

Updates `Microsoft.Extensions.Configuration` from 7.0.0 to 8.0.0
- [Release notes](https://github.com/dotnet/runtime/releases)
- [Commits](dotnet/runtime@v7.0.0...v8.0.0)

---
updated-dependencies:
- dependency-name: Microsoft.Extensions.Http.Polly
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: Microsoft.Extensions.Configuration.Abstractions
  dependency-type: direct:production
  update-type: version-update:semver-major
- dependency-name: Microsoft.Extensions.DependencyInjection.Abstractions
  dependency-type: direct:production
  update-type: version-update:semver-major
- dependency-name: Microsoft.Extensions.Configuration
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Bumps [dotnet-ef](https://github.com/dotnet/efcore) from 8.0.1 to 8.0.2.
- [Release notes](https://github.com/dotnet/efcore/releases)
- [Commits](dotnet/efcore@v8.0.1...v8.0.2)

---
updated-dependencies:
- dependency-name: dotnet-ef
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
…Injection.Abstractions

Bumps [Microsoft.Extensions.Options](https://github.com/dotnet/runtime) and Microsoft.Extensions.DependencyInjection.Abstractions. These dependencies needed to be updated together.

Updates `Microsoft.Extensions.Options` from 8.0.1 to 8.0.2
- [Release notes](https://github.com/dotnet/runtime/releases)
- [Commits](dotnet/runtime@v8.0.1...v8.0.2)

Updates `Microsoft.Extensions.DependencyInjection.Abstractions` from 2.0.0 to 8.0.0

---
updated-dependencies:
- dependency-name: Microsoft.Extensions.Options
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: Microsoft.Extensions.DependencyInjection.Abstractions
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
…tityModel.Tokens

Bumps [Microsoft.AspNetCore.Authentication.JwtBearer](https://github.com/dotnet/aspnetcore) and Microsoft.IdentityModel.Tokens. These dependencies needed to be updated together.

Updates `Microsoft.AspNetCore.Authentication.JwtBearer` from 8.0.1 to 8.0.2
- [Release notes](https://github.com/dotnet/aspnetcore/releases)
- [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md)
- [Commits](dotnet/aspnetcore@v8.0.1...v8.0.2)

Updates `Microsoft.IdentityModel.Tokens` from 6.24.0 to 7.1.2

---
updated-dependencies:
- dependency-name: Microsoft.AspNetCore.Authentication.JwtBearer
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: Microsoft.IdentityModel.Tokens
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
… project

This is preparing for hosting a Maui Blazor app.  So maybe the code can run on a desktop or device and a user can more securely use private certificates rather than uploading to a web site.
Not working but a good checkin spot.
JosephEShook and others added 20 commits March 24, 2024 10:59
Bumps [System.CommandLine](https://github.com/dotnet/command-line-api) from 2.0.0-beta4.24126.1 to 2.0.0-beta4.24201.1.
- [Release notes](https://github.com/dotnet/command-line-api/releases)
- [Changelog](https://github.com/dotnet/command-line-api/blob/main/docs/History.md)
- [Commits](https://github.com/dotnet/command-line-api/commits)

---
updated-dependencies:
- dependency-name: System.CommandLine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
It replaces the previous https://fhirlabs.net endpoint as a proxy in front of a GCP FHIR Server.
….CommandLine-2.0.0-beta4.24201.1

Bump System.CommandLine from 2.0.0-beta4.24126.1 to 2.0.0-beta4.24201.1
- Switching conformance tests to default to Hl7SecurityIG mode rather than UDAP mode for ServerSettings.
- Removing HttpLogging from Udap.Auth.Server.  Too noisy, and not sure it gives me anything I don't get already in GCP
This will allow it to respond 400 when no parameters exist for a /authorize call.
Back in line with RFC 6749 and udap.org UDAPTestTool.
Will have to deploy and test to validate, but I think this is going in the right direction.  Duende by default redirects to the server error page.  This behavior isn't in pattern with UDAPTestTool and that is why the UdapAuthorizationResponseMiddleware component exists.
Bumps [Udap.Client](https://github.com/JoeShook/udap-dotnet) and Udap.Common. These dependencies needed to be updated together.

Updates `Udap.Client` from 0.3.24 to 0.3.29
- [Commits](v0.3.24...v0.3.29)

Updates `Udap.Common` from 0.3.24 to 0.3.29

---
updated-dependencies:
- dependency-name: Udap.Client
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: Udap.Common
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
…362a2ff522

Bump Udap.Client and Udap.Common
Moved from a default of RS256 and RS384 too and the additions of ES256 and ES384 default signing alogrithms.
@JoeShook JoeShook merged commit ec436ef into main Apr 4, 2024
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants