fix: handle include/revInclude correctly #92

rsmayda · 2022-09-12T10:39:57Z

Issue #, if available: #83

Description of changes:

Moving the logic of dealing with non-root resourceTypes returned from a search-type operation from filterOutUnusableScope to authorizeAndFilterReadResponse
Make hasSystemAccess more explicit
Improve test coverage

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

src/smartHandler.test.ts

kharbutli-meta · 2022-09-12T15:32:06Z

Other than the unit tests, were there any other tests run to verify functionality?

src/smartAuthorizationHelper.test.ts

ssvegaraju · 2022-09-12T15:37:31Z

src/smartHandler.ts

@@ -378,6 +392,7 @@ export class SMARTHandler implements Authorization {
                this.adminAccessTypes,
                fhirServiceBaseUrl,
                this.fhirVersion,
+                'write',


Do we not want to do the same validation as for read requests above here for write requests? I know the bug was mainly introduced with the search feature, but is there any chance it could be replicated for write through a Bundle or something?

Added more test to address this comment, let me know your thoughts

I think it looks good!

src/smartScopeHelper.test.ts

src/smartAuthorizationHelper.ts

kharbutli-meta · 2022-09-12T16:07:53Z

src/smartScopeHelper.ts

@@ -172,16 +172,5 @@ export function filterOutUnusableScope(
            ),
    );

-    // We should only return the scopes iff there is at least 1 valid scope for the given resourceType


Why are we removing this logic instead of updating it?

With the removal of search-type from this line

fhir-works-on-aws-authz-smart/src/smartScopeHelper.ts

Line 61 in 80b6907

if (resourceType === '*' || resourceType === reqResourceType) {

We will have the same behavior described in this comment

rsmayda · 2022-09-12T17:57:19Z

Other than the unit tests, were there any other tests run to verify functionality?

I was able to deploy and test locally

ssvegaraju

Lgtm

fix: handle include/revInclude correctly

46f7af9

rsmayda added the bug Something isn't working label Sep 12, 2022

rsmayda requested review from Bingjiling and ssvegaraju September 12, 2022 10:39

rsmayda requested a review from a team as a code owner September 12, 2022 10:39

github-actions bot added the size/m label Sep 12, 2022

rsmayda requested a review from kharbutli-meta September 12, 2022 10:51

Bingjiling reviewed Sep 12, 2022

View reviewed changes

src/smartHandler.test.ts Show resolved Hide resolved

rsmayda self-assigned this Sep 12, 2022

ssvegaraju reviewed Sep 12, 2022

View reviewed changes

kharbutli-meta reviewed Sep 12, 2022

View reviewed changes

fix: address PR comments

80b6907

ssvegaraju approved these changes Sep 12, 2022

View reviewed changes

kharbutli-meta approved these changes Sep 12, 2022

View reviewed changes

rsmayda merged commit 203bbc0 into mainline Sep 12, 2022

rsmayda deleted the abc branch September 12, 2022 18:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: handle include/revInclude correctly #92

fix: handle include/revInclude correctly #92

rsmayda commented Sep 12, 2022

kharbutli-meta commented Sep 12, 2022

ssvegaraju Sep 12, 2022

rsmayda Sep 12, 2022

ssvegaraju Sep 12, 2022

kharbutli-meta Sep 12, 2022

rsmayda Sep 12, 2022

rsmayda commented Sep 12, 2022

ssvegaraju left a comment

fix: handle include/revInclude correctly #92

fix: handle include/revInclude correctly #92

Conversation

rsmayda commented Sep 12, 2022

kharbutli-meta commented Sep 12, 2022

ssvegaraju Sep 12, 2022

Choose a reason for hiding this comment

rsmayda Sep 12, 2022

Choose a reason for hiding this comment

ssvegaraju Sep 12, 2022

Choose a reason for hiding this comment

kharbutli-meta Sep 12, 2022

Choose a reason for hiding this comment

rsmayda Sep 12, 2022

Choose a reason for hiding this comment

rsmayda commented Sep 12, 2022

ssvegaraju left a comment

Choose a reason for hiding this comment