Develop Merge: Pre Connect-a-thon 26 #25
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Collaborator
JoeShook
commented
Apr 4, 2024
JoeShook
commented
- A new Udap.Proxy.Server example that turns your FHIR server into a UDAP enabled FHIR server.
- The Udap.Proxy.Server is the new https://fhirlabs.net/fhir/r4 fhir server endpoint. The backing FHIR server is a Google Cloud HealthCare FHIR Server.
- A new Udap.Smart.Metadata package for some experimenting I am doing with SMART. May add SMART on FHIR to my auth server going forward. Just not sure yet how I handle letting the Auth Server know about the launch parameter ahead of time. Back channel or Proxy Server or redirect dance?
- Refreshed the Udap.Auth.Server to support /authorize? errors accorging to rfc 6749. The server is back to passing all of the https://www.udap.org/UDAPTestTool/ server tests. Actually Test 16 is failing becuase the test tools is reusing the jti parameter for reated registrations thus triggering a replay block at Udap.Auth.Server. A bug has been filed and it will be fixed.
- TouchStone tests are also in good shape.
- I started to experiment with hosting UdapEd in a Maui Application. I have a lot of the UdapEd blazor app hosted inside of the Maui App and working. Windows and Android tested. Android does not auto discover intermediate certificates, so there would be a choice to make. Either add code to get the intermediary or as a convension always install the intermediary on the device just like you would do with the trust anchor certificate. The idea of this experiment is to go through the mechanics of building a CSR from a device, assuming that every instance of a device would need it's own client certificate. Last thing to note about UdapEd it that it is now hosted in a new repository to keep the Maui bits for compilation from slowing down this repo. See JoeShook/UdapEd
- The Maui experiment led to another technology I have been wanting to apply. It is called the RCL or Razor Class Library. You can take all your Razor Pages, Javascript and static content and centralize it in a project. This allows you to publish it as a NuGet packages. This worked good for centralizing the Blazor components that could then be shared with Blazor and Maui for the UdapEd project. But even better, now there is a Udap.Server.Ui package that contains all the Razor pages for the Udap.Auth.Server. Those pages are nothing more than the Duende example pages with a few UDAP specific pages. But the idea of packaging this up so you can just include it in your UDAP Auth Server is a nice feature that removes post manual configuration. It would be cool to rewrite all of these pages as Blazor Components with MudBlazor. Volunteers?
Bumps [Microsoft.NET.Test.Sdk](https://github.com/microsoft/vstest) from 17.8.0 to 17.9.0. - [Release notes](https://github.com/microsoft/vstest/releases) - [Changelog](https://github.com/microsoft/vstest/blob/main/docs/releases.md) - [Commits](microsoft/vstest@v17.8.0...v17.9.0) --- updated-dependencies: - dependency-name: Microsoft.NET.Test.Sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Psgl alloy db
…happening. Because I reference two web services in the UdapMetadata.Tests the appsettings.json that is copied to the bin started coming from WeatherApi rather than UdapMetadata.Tests. I just uniquely named the one I want to appsettings.FhirLabsApi.json for setting up my IUdapClient and dependent components.
…oft.NET.Test.Sdk-17.9.0 Bump Microsoft.NET.Test.Sdk from 17.8.0 to 17.9.0
Bumps [NSubstitute.Analyzers.CSharp](https://github.com/nsubstitute/NSubstitute.Analyzers) from 1.0.16 to 1.0.17. - [Changelog](https://github.com/nsubstitute/NSubstitute.Analyzers/blob/1.0.17/ReleaseNotes.md) - [Commits](nsubstitute/NSubstitute.Analyzers@1.0.16...1.0.17) --- updated-dependencies: - dependency-name: NSubstitute.Analyzers.CSharp dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>
…itute.Analyzers.CSharp-1.0.17 Bump NSubstitute.Analyzers.CSharp from 1.0.16 to 1.0.17
Bumps [Microsoft.AspNetCore.Components.WebAssembly.Server](https://github.com/dotnet/aspnetcore) from 8.0.1 to 8.0.2. - [Release notes](https://github.com/dotnet/aspnetcore/releases) - [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md) - [Commits](dotnet/aspnetcore@v8.0.1...v8.0.2) --- updated-dependencies: - dependency-name: Microsoft.AspNetCore.Components.WebAssembly.Server dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>
…ion.Abstractions, Microsoft.Extensions.DependencyInjection.Abstractions and Microsoft.Extensions.Configuration Bumps [Microsoft.Extensions.Http.Polly](https://github.com/dotnet/aspnetcore), [Microsoft.Extensions.Configuration.Abstractions](https://github.com/dotnet/runtime), Microsoft.Extensions.DependencyInjection.Abstractions and [Microsoft.Extensions.Configuration](https://github.com/dotnet/runtime). These dependencies needed to be updated together. Updates `Microsoft.Extensions.Http.Polly` from 8.0.1 to 8.0.2 - [Release notes](https://github.com/dotnet/aspnetcore/releases) - [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md) - [Commits](dotnet/aspnetcore@v8.0.1...v8.0.2) Updates `Microsoft.Extensions.Configuration.Abstractions` from 2.1.0 to 8.0.0 - [Release notes](https://github.com/dotnet/runtime/releases) - [Commits](https://github.com/dotnet/runtime/commits/v8.0.0) Updates `Microsoft.Extensions.DependencyInjection.Abstractions` from 2.0.0 to 8.0.0 Updates `Microsoft.Extensions.Configuration` from 7.0.0 to 8.0.0 - [Release notes](https://github.com/dotnet/runtime/releases) - [Commits](dotnet/runtime@v7.0.0...v8.0.0) --- updated-dependencies: - dependency-name: Microsoft.Extensions.Http.Polly dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: Microsoft.Extensions.Configuration.Abstractions dependency-type: direct:production update-type: version-update:semver-major - dependency-name: Microsoft.Extensions.DependencyInjection.Abstractions dependency-type: direct:production update-type: version-update:semver-major - dependency-name: Microsoft.Extensions.Configuration dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps [dotnet-ef](https://github.com/dotnet/efcore) from 8.0.1 to 8.0.2. - [Release notes](https://github.com/dotnet/efcore/releases) - [Commits](dotnet/efcore@v8.0.1...v8.0.2) --- updated-dependencies: - dependency-name: dotnet-ef dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>
…Injection.Abstractions Bumps [Microsoft.Extensions.Options](https://github.com/dotnet/runtime) and Microsoft.Extensions.DependencyInjection.Abstractions. These dependencies needed to be updated together. Updates `Microsoft.Extensions.Options` from 8.0.1 to 8.0.2 - [Release notes](https://github.com/dotnet/runtime/releases) - [Commits](dotnet/runtime@v8.0.1...v8.0.2) Updates `Microsoft.Extensions.DependencyInjection.Abstractions` from 2.0.0 to 8.0.0 --- updated-dependencies: - dependency-name: Microsoft.Extensions.Options dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: Microsoft.Extensions.DependencyInjection.Abstractions dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
…tityModel.Tokens Bumps [Microsoft.AspNetCore.Authentication.JwtBearer](https://github.com/dotnet/aspnetcore) and Microsoft.IdentityModel.Tokens. These dependencies needed to be updated together. Updates `Microsoft.AspNetCore.Authentication.JwtBearer` from 8.0.1 to 8.0.2 - [Release notes](https://github.com/dotnet/aspnetcore/releases) - [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md) - [Commits](dotnet/aspnetcore@v8.0.1...v8.0.2) Updates `Microsoft.IdentityModel.Tokens` from 6.24.0 to 7.1.2 --- updated-dependencies: - dependency-name: Microsoft.AspNetCore.Authentication.JwtBearer dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: Microsoft.IdentityModel.Tokens dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
… project This is preparing for hosting a Maui Blazor app. So maybe the code can run on a desktop or device and a user can more securely use private certificates rather than uploading to a web site.
Not working but a good checkin spot.
Bumps [System.CommandLine](https://github.com/dotnet/command-line-api) from 2.0.0-beta4.24126.1 to 2.0.0-beta4.24201.1. - [Release notes](https://github.com/dotnet/command-line-api/releases) - [Changelog](https://github.com/dotnet/command-line-api/blob/main/docs/History.md) - [Commits](https://github.com/dotnet/command-line-api/commits) --- updated-dependencies: - dependency-name: System.CommandLine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>
It replaces the previous https://fhirlabs.net endpoint as a proxy in front of a GCP FHIR Server.
….CommandLine-2.0.0-beta4.24201.1 Bump System.CommandLine from 2.0.0-beta4.24126.1 to 2.0.0-beta4.24201.1
- Switching conformance tests to default to Hl7SecurityIG mode rather than UDAP mode for ServerSettings. - Removing HttpLogging from Udap.Auth.Server. Too noisy, and not sure it gives me anything I don't get already in GCP
This will allow it to respond 400 when no parameters exist for a /authorize call.
Back in line with RFC 6749 and udap.org UDAPTestTool. Will have to deploy and test to validate, but I think this is going in the right direction. Duende by default redirects to the server error page. This behavior isn't in pattern with UDAPTestTool and that is why the UdapAuthorizationResponseMiddleware component exists.
Bumps [Udap.Client](https://github.com/JoeShook/udap-dotnet) and Udap.Common. These dependencies needed to be updated together. Updates `Udap.Client` from 0.3.24 to 0.3.29 - [Commits](v0.3.24...v0.3.29) Updates `Udap.Common` from 0.3.24 to 0.3.29 --- updated-dependencies: - dependency-name: Udap.Client dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: Udap.Common dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>
…362a2ff522 Bump Udap.Client and Udap.Common
Moved from a default of RS256 and RS384 too and the additions of ES256 and ES384 default signing alogrithms.
Develop Merge: Pre Connect-a-thon 26
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.