2022-08-22 18:51:46 -06:00
|
|
|
package web
|
|
|
|
|
|
|
|
import (
|
|
|
|
"fmt"
|
2022-08-22 19:11:00 -06:00
|
|
|
"github.com/fastenhealth/fastenhealth-onprem/backend/pkg/config"
|
|
|
|
"github.com/fastenhealth/fastenhealth-onprem/backend/pkg/web/handler"
|
|
|
|
"github.com/fastenhealth/fastenhealth-onprem/backend/pkg/web/middleware"
|
2022-08-22 18:51:46 -06:00
|
|
|
"github.com/gin-gonic/gin"
|
|
|
|
"github.com/sirupsen/logrus"
|
|
|
|
"net/http"
|
|
|
|
"strings"
|
|
|
|
)
|
|
|
|
|
|
|
|
type AppEngine struct {
|
|
|
|
Config config.Interface
|
|
|
|
Logger *logrus.Entry
|
|
|
|
}
|
|
|
|
|
|
|
|
func (ae *AppEngine) Setup(logger *logrus.Entry) *gin.Engine {
|
|
|
|
r := gin.New()
|
|
|
|
|
|
|
|
r.Use(middleware.LoggerMiddleware(logger))
|
2022-08-25 19:26:29 -06:00
|
|
|
r.Use(middleware.RepositoryMiddleware(ae.Config, logger))
|
2022-08-22 18:51:46 -06:00
|
|
|
r.Use(middleware.ConfigMiddleware(ae.Config))
|
|
|
|
r.Use(gin.Recovery())
|
|
|
|
|
|
|
|
basePath := ae.Config.GetString("web.listen.basepath")
|
|
|
|
logger.Debugf("basepath: %s", basePath)
|
|
|
|
|
|
|
|
base := r.Group(basePath)
|
|
|
|
{
|
|
|
|
api := base.Group("/api")
|
|
|
|
{
|
|
|
|
api.GET("/health", func(c *gin.Context) {
|
|
|
|
//TODO:
|
|
|
|
// check if the /web folder is populated.
|
|
|
|
// check if access to database
|
|
|
|
c.JSON(http.StatusOK, gin.H{
|
|
|
|
"success": true,
|
|
|
|
})
|
|
|
|
})
|
2022-09-11 21:59:13 -06:00
|
|
|
|
|
|
|
api.POST("/auth/signup", handler.AuthSignup)
|
2022-11-02 01:12:54 -06:00
|
|
|
api.POST("/auth/signin", handler.AuthSignin)
|
2022-12-02 20:40:58 -07:00
|
|
|
//
|
|
|
|
//r.Any("/database/*proxyPath", handler.CouchDBProxy)
|
|
|
|
//r.GET("/cors/*proxyPath", handler.CORSProxy)
|
|
|
|
//r.OPTIONS("/cors/*proxyPath", handler.CORSProxy)
|
2023-03-21 09:04:43 -06:00
|
|
|
api.GET("/glossary/code", handler.GlossarySearchByCode)
|
2022-10-09 10:34:57 -06:00
|
|
|
|
2022-12-02 20:40:58 -07:00
|
|
|
secure := api.Group("/secure").Use(middleware.RequireAuth())
|
|
|
|
{
|
|
|
|
secure.GET("/summary", handler.GetSummary)
|
|
|
|
|
|
|
|
secure.POST("/source", handler.CreateSource)
|
|
|
|
secure.POST("/source/manual", handler.CreateManualSource)
|
|
|
|
secure.GET("/source", handler.ListSource)
|
|
|
|
secure.GET("/source/:sourceId", handler.GetSource)
|
|
|
|
secure.POST("/source/:sourceId/sync", handler.SourceSync)
|
|
|
|
secure.GET("/source/:sourceId/summary", handler.GetSourceSummary)
|
2022-12-21 20:51:02 -07:00
|
|
|
secure.GET("/resource/fhir", handler.ListResourceFhir)
|
2023-04-22 23:08:58 -06:00
|
|
|
secure.GET("/resource/graph/:graphType", handler.GetResourceFhirGraph)
|
2022-12-02 20:40:58 -07:00
|
|
|
secure.GET("/resource/fhir/:sourceId/:resourceId", handler.GetResourceFhir)
|
2023-01-10 20:23:47 -07:00
|
|
|
secure.POST("/resource/composition", handler.CreateResourceComposition)
|
2023-03-21 09:04:43 -06:00
|
|
|
|
2023-07-08 08:43:30 -06:00
|
|
|
secure.GET("/dashboards", handler.GetDashboard)
|
|
|
|
//secure.GET("/dashboard/:dashboardId", handler.GetDashboard)
|
|
|
|
|
|
|
|
secure.POST("/query", handler.QueryResourceFhir)
|
|
|
|
|
2022-12-02 20:40:58 -07:00
|
|
|
}
|
|
|
|
|
2022-12-21 20:51:02 -07:00
|
|
|
if ae.Config.GetBool("web.allow_unsafe_endpoints") {
|
|
|
|
//this endpoint lets us request data directly from the source api
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
ae.Logger.Warningf("\"web.allow_unsafe_endpoints\" mode enabled!! This enables developer functionality, including unauthenticated raw api requests")
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
ae.Logger.Warningln("***UNSAFE***")
|
|
|
|
unsafe := api.Group("/unsafe")
|
|
|
|
{
|
2023-05-05 10:06:33 -06:00
|
|
|
//http://localhost:9090/api/unsafe/testuser1/3508f8cf-6eb9-4e4b-8174-dd69a493a2b4/Patient/smart-1288992
|
2022-12-21 20:51:02 -07:00
|
|
|
unsafe.GET("/:username/:sourceId/*path", handler.UnsafeRequestSource)
|
2023-04-22 23:08:58 -06:00
|
|
|
unsafe.GET("/:username/graph/:graphType", handler.UnsafeResourceGraph)
|
2022-12-21 20:51:02 -07:00
|
|
|
|
|
|
|
}
|
2022-12-02 20:40:58 -07:00
|
|
|
}
|
2022-08-22 18:51:46 -06:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
//Static request routing
|
|
|
|
base.StaticFS("/web", http.Dir(ae.Config.GetString("web.src.frontend.path")))
|
|
|
|
|
|
|
|
//redirect base url to /web
|
|
|
|
base.GET("/", func(c *gin.Context) {
|
|
|
|
c.Redirect(http.StatusFound, basePath+"/web")
|
|
|
|
})
|
|
|
|
|
|
|
|
//catch-all, serve index page.
|
|
|
|
r.NoRoute(func(c *gin.Context) {
|
2022-09-14 20:59:16 -06:00
|
|
|
path := c.Request.URL.Path
|
2022-09-18 20:46:57 -06:00
|
|
|
if strings.HasPrefix(path, "/api") || strings.HasPrefix(path, "/api") {
|
2022-09-14 20:59:16 -06:00
|
|
|
c.JSON(http.StatusNotFound, gin.H{"success": false, "error": "404 endpoint not found"})
|
|
|
|
} else {
|
|
|
|
c.File(fmt.Sprintf("%s/index.html", ae.Config.GetString("web.src.frontend.path")))
|
|
|
|
}
|
2022-08-22 18:51:46 -06:00
|
|
|
})
|
|
|
|
return r
|
|
|
|
}
|
|
|
|
|
|
|
|
func (ae *AppEngine) Start() error {
|
|
|
|
//set the gin mode
|
|
|
|
gin.SetMode(gin.ReleaseMode)
|
|
|
|
if strings.ToLower(ae.Config.GetString("log.level")) == "debug" {
|
|
|
|
gin.SetMode(gin.DebugMode)
|
|
|
|
}
|
|
|
|
|
|
|
|
r := ae.Setup(ae.Logger)
|
|
|
|
|
|
|
|
return r.Run(fmt.Sprintf("%s:%s", ae.Config.GetString("web.listen.host"), ae.Config.GetString("web.listen.port")))
|
|
|
|
}
|