This is a RESTful HL7® FHIR® API for the Personal Demographics Service.
It includes:
karate-tests/
- our functional e2e API tests implemented using the Karate framework. There is a separate readme for these tests at the momentspecification/
- an Open API Specification describing the endpoints, methods and messages exchanged by the API. Use it to generate interactive documentation; the contract between the API and its consumers.sandbox/
- a NodeJS application that implements a mock implementation of the service. Use it as a back-end service to the interactive documentation to illustrate interactions and concepts. It is not intended to provide an exhaustive/faithful environment suitable for full development and testing.scripts/
- utilities helpful to developers of this specification.apiproxy/
- the API proxy, which is deployed to our API platform hosted on Google Apigee Edge
Consumers of the API will find developer documentation on the NHS Digital Developer Hub.
This repo does not include the PDS FHIR API back-end. That is part of 'Core Spine' which is not currently open source.
Contributions to this project are welcome from anyone, providing that they conform to the guidelines for contribution and the community code of conduct.
This code is dual licensed under the MIT license and the OGL (Open Government License). Any new work added to this repository must conform to the conditions of these licenses. In particular this means that this project may not depend on GPL-licensed or AGPL-licensed libraries, as these would violate the terms of those libraries' licenses.
The contents of this repository are protected by Crown Copyright (C).
N.B. that some functionality requires environment variables to be set. Some of these are described lower down in the readme, whilst others can be found in the environment variables section of this confluence page
Windows users should install Windows Subsystem for Linux (WSL). Any distro is fine, though ubuntu/debian are recommended.
Install build requirements. This will make sure you don't hit any weird python issues later.
sudo apt update
sudo apt install make build-essential libssl-dev zlib1g-dev libbz2-dev libreadline-dev libsqlite3-dev wget curl llvm libncurses5-dev libncursesw5-dev xz-utils tk-dev libffi-dev liblzma-dev git net-tools python-openssl
If you get the error "Unable to locate package python-openssl", try
sudo apt install python3-openssl
Install pyenv using the code below and then follow their guide to integrate it with your terminal
curl https://pyenv.run | bash
exec $SHELL
If the command isn't working you can also try the instructions here.
Install python 3.8.2
pyenv install 3.8.2
Either set this as your global python (if this is not incompatible with your other projects),
pyenv global 3.8.2
or local to repository, if there is not a python-version file installed (you might have to raise a PR to add the file that's created).
pyenv local 3.8.2
python --version
Install poetry, then run 'poetry install' to install dependencies. Makes sure you change directory to this repo.
curl -sSL https://install.python-poetry.org | python3
poetry install
Install nvm & npn
curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.35.2/install.sh | bash
# Close and reopen your terminal window, or use 'exec $SHELL'
nvm install lts/iron
nvm use lts/iron
npm --version
Install Java
sudo apt install default-jre default-jdk
java -version
Install pytest
pip install -U pytest
sudo apt-get update
sudo apt-get install jq
Install shellcheck (we use this for linting .sh files)
sudo apt install shellcheck
Next open powershell and get the wsl ip (make sure wsl is running) The purpose of the following instructions is to enable you to use postman if you wish against the sandbox.
wsl hostname -i
Add a proxy and open the windows fire wall, replace [PORT] with the port you want to connect to.
connected address is the ip wsl is operating on (from wsl hostname -i
)
netsh interface portproxy add v4tov4 listenport=9000 listenaddress=0.0.0.0 connectport=[PORT] connectaddress=127.0.1.1
# Check it's been added
netsh interface portproxy show v4tov4
firewall -add port 9000
You can install some pre-commit hooks to ensure you can't commit invalid spec changes by accident. These are also run in CI, but it's useful to run them locally too.
make install-hooks
Various scripts and commands rely on environment variables being set. These are documented with the commands.
💡 Consider using direnv to manage your environment variables during development and maintaining your own .envrc
file - the values of these variables will be specific to you and/or sensitive.
There are make
commands that alias some of this functionality:
lint
-- Lints the spec and codepublish
-- Outputs the specification as a single file into thedist/
directoryserve
-- Serves a preview of the specification in human-readable formatgenerate-examples
-- generate example objects from the specificationvalidate
-- validate generated examples against FHIR R4
Run the install command if not ran already
make install
Then start the sandbox locally
make sandbox
To run local tests, use:
make test-sandbox
If a lot of the tests fail and the sandbox crashes with the error Cannot read properties of null (reading 'statusCode')
, you may not be using the correct version of node. Check the version being used by that instance of the terminal and run re-run 'nvm use lts/iron
' if required.
- openapi-lint resolves links and validates entire spec with the 'OpenAPI Resolve and Validate' command
- OpenAPI (Swagger) Editor provides sidebar navigation
- ESLint useful helper when you're working with JavaScript files
- openapi-yaml-mode provides syntax highlighting, completion, and path help
Redocly Beautiful API documentation loved by teams and API consumers. Brought to you by the open-source extraordinaires behind Redoc
Redocly does the lifting for the following npm scripts:
lint
-- Lints the definitionpublish
-- Outputs the specification as a single file into thedist/
directoryserve
-- Serves a preview of the specification in human-readable format
(Workflow detailed in a post on the developerjack blog.)
💡 The publish
command is useful when uploading to Apigee which requires the spec as a single file.
Swagger UI unfortunately doesn't correctly render $ref
s in examples, so use speccy serve
instead.
The Apigee portal will not automatically pull examples from schemas, you must specify them manually.
Patient Demographics Sandbox.postman_collection
must be kept in sync with the OAS and Sandbox manually.
Procedure:
- Log in to the Postman account
- Update requests
- Export the collection back into the repo
The link in personal-demographics.yaml
will get the most recent version of the collection.
Update the API Specification and derived documentation in the Portal.
make deploy-spec
with environment variables:
APIGEE_USERNAME
APIGEE_PASSWORD
APIGEE_SPEC_ID
APIGEE_PORTAL_API_ID
Redeploy the API Proxy and hosted Sandbox service.
make deploy-proxy
with environment variables:
APIGEE_USERNAME
APIGEE_PASSWORD
APIGEE_ORGANIZATION
APIGEE_ENVIRONMENTS
- Comma-separated list of environments to deploy to (e.g.test,prod
)APIGEE_APIPROXY
- Name of the API Proxy for deploymentAPIGEE_BASE_PATH
- The proxy's base path (must be unique)
💡 Specify your own API Proxy (with base path) for use during development.
Successful deployment of the API Proxy requires:
- Target Servers:
spine-demographics
: Gateway to PDS APIspine-demographics-int
Gateway to PDS INT API (Only avaliable for pull requests)identity-server
- Identity Provider's OAuth server
- An encrypted (for production) Key-Value Map named
pds-variables-encrypted
, containing:- Key:
NHSD-ASID
, Value: Accredited System ID (ASID) identifying the API Gateway
- Key:
- A Key-Value Map named
pds-variables
, containing:- Key:
jwks_path
, Value: Path onidentity-server
Target Server to JSON Web Key Set (JWKS)
- Key:
💡 For Sandbox-running environments (test
) these need to be present for successful deployment but can be set to empty/dummy values.