inferno_core 0.4.38 → 0.4.39

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e2af0569e09addd1d815e42110f9813a875037b66a67871af0441a149b38c818
-  data.tar.gz: 4b526226bac3009548c7e70b75b59dc77e9c800700eed13e13846d30cbc79161
+  metadata.gz: 1c569fc01e07576cb3aa512c37a69d730bc7b9848bd24ed95935b23a0d52759c
+  data.tar.gz: 41165f4f56dcf7c7e552ec0c391b868e5020feed0957f12d508489835a91d140
 SHA512:
-  metadata.gz: c0ab492c234d9a19ee06cca497a1e9714238bd1b7b0a2765b3647a49e0f3125a7a3b3f73e025e9741ec71b67c695d78258480d22aaf8974f8002b0354a0c0bdc
-  data.tar.gz: 241271ec1ef24731b06446dd442485fb8053f43504e3948a29077e26358b6b515102f41671336577c54b6705cb3858b7c59e0ac53819eadde5243ea98c16f8b2
+  metadata.gz: 03cb4fec0a859ba0967d891b62d4741b6a241839bce017ac0a9f212c06cabbec45e3d8c9464d8a75421c697c6e547af19e5bdbe8055ab7ea630344a781dfdf5e
+  data.tar.gz: ad2fc2e5f42777535e912e4bc8217f48d9d90babb074b071b7437fb3b987f4f8470f505f9e1bd29b1b893f7b6ccc36800145ad62fe82664188e0eab965b71cf5

data/lib/inferno/apps/cli/main.rb

@@ -27,20 +27,24 @@ module Inferno
              desc: 'Automatically restart Inferno when a file is changed.'
       def start
         Migration.new.run(Logger::INFO)
-        command = 'foreman start --env=/dev/null'
-        if `gem list -i foreman`.chomp == 'false'
-          puts "You must install foreman with 'gem install foreman' prior to running Inferno."
-        end
 
-        if options[:watch]
-          if `gem list -i rerun`.chomp == 'false'
-            puts "You must install 'rerun' with 'gem install rerun' to restart on file changes."
+        without_bundler do
+          command = 'foreman start --env=/dev/null'
+
+          if `gem list -i foreman`.chomp == 'false'
+            puts "You must install foreman with 'gem install foreman' prior to running Inferno."
           end
 
-          command = "rerun \"#{command}\" --background"
-        end
+          if options[:watch]
+            if `gem list -i rerun`.chomp == 'false'
+              puts "You must install 'rerun' with 'gem install rerun' to restart on file changes."
+            end
+
+            command = "rerun \"#{command}\" --background"
+          end
 
-        exec command
+          exec command
+        end
       end
 
       desc 'suites', 'List available test suites'
@@ -60,6 +64,19 @@ module Inferno
       def version
         puts "Inferno Core v#{Inferno::VERSION}"
       end
+
+      private
+
+      # https://github.com/rubocop/rubocop/issues/12571 - still affects Ruby 3.1 upto Rubocop 1.63
+      # rubocop:disable Naming/BlockForwarding
+      def without_bundler(&block)
+        if defined?(Bundler) && ENV['BUNDLE_GEMFILE']
+          Bundler.with_unbundled_env(&block)
+        else
+          yield
+        end
+      end
+      # rubocop:enable Naming/BlockForwarding
     end
   end
 end

data/lib/inferno/apps/cli/templates/lib/%library_name%.rb.tt

@@ -21,7 +21,7 @@ module <%= module_name %>
       oauth_credentials :credentials
     end
 
-    # All FHIR validation requsets will use this FHIR validator
+    # All FHIR validation requests will use this FHIR validator
     fhir_resource_validator do
       # igs 'identifier#version' # Use this method for published IGs/versions
       # igs 'igs/filename.tgz'   # Use this otherwise

data/lib/inferno/dsl/auth_info.rb

@@ -0,0 +1,174 @@
+require_relative '../entities/attributes'
+
+module Inferno
+  module DSL
+    # AuthInfo provide a user with a single input which contains the information
+    # needed for a fhir client to perform authorization and refresh an access
+    # token when necessary.
+    #
+    # AuthInfo supports the following `auth_type`:
+    # - `public` - client id only
+    # - `symmetric` - Symmetric confidential (i.e., with a static client id and
+    #   secret)
+    # - `asymmetric` - Symmetric confidential (i.e., a client id with a signed
+    #   JWT rather than a client secret)
+    # - `backend_services`
+    #
+    # When configuring an AuthInfo input, the invdidual fields are exposed as
+    # `components` in the input's options, and can be configured there similar
+    # to normal inputs.
+    #
+    # The AuthInfo input type supports two different modes in the UI. Different
+    # fields will be presented to the user dependengi on which mode is selected.
+    # - `auth` - This presents the inputs needed to perform authorization, and
+    #   is appropriate to use as an input to test groups which perform
+    #   authorization
+    # - `access` - This presents the inputs needed to access resources assuming
+    #   that authorization has already happened, and is appropriate to use as an
+    #   input to test groups which access resources using previously granted
+    #   authorization
+    #
+    # @example
+    # class AuthInfoExampleSuite < Inferno::TestSuite
+    #   input :url,
+    #         title: 'Base FHIR url'
+    #
+    #   group do
+    #     title 'Perform public authorization'
+    #     input :fhir_auth,
+    #           type: :auth_info,
+    #           options: {
+    #             mode: 'auth',
+    #             components: [
+    #               {
+    #                 name: :auth_type,
+    #                 default: 'public',
+    #                 locked: true
+    #               }
+    #             ]
+    #           }
+    #
+    #     # Some tests here to perform authorization
+    #   end
+    #
+    #   group do
+    #     title 'FHIR API Tests'
+    #     input :fhir_auth,
+    #           type: :auth_info,
+    #           options: {
+    #             mode: 'access'
+    #           }
+    #
+    #     fhir_client do
+    #       url :url
+    #       auth_info :fhir_auth # NOT YET IMPLEMENTED
+    #     end
+    #
+    #     # Some tests here to access FHIR API
+    #   end
+    # end
+    class AuthInfo
+      ATTRIBUTES = [
+        :auth_type,
+        :use_discovery,
+        :token_url,
+        :auth_url,
+        :requested_scopes,
+        :client_id,
+        :client_secret,
+        :redirect_url, # TODO: does this belong here?
+        :pkce_support,
+        :pkce_code_challenge_method,
+        :auth_request_method,
+        :encryption_algorithm,
+        :kid,
+        :jwks,
+        :access_token,
+        :refresh_token,
+        :issue_time,
+        :expires_in,
+        :name
+      ].freeze
+
+      include Entities::Attributes
+
+      attr_accessor :client
+
+      # @!attribute [rw] auth_type The type of authorization to be performed.
+      #   One of `public`, `symmetric`, `asymmetric`, or `backend_services`
+      # @!attribute [rw] token_url The url of the auth server's token endpoint
+      # @!attribute [rw] auth_url The url of the authorization endpoint
+      # @!attribute [rw] requested_scopes The scopes which will be requested
+      #   during authorization
+      # @!attribute [rw] client_id
+      # @!attribute [rw] client_secret
+      # @!attribute [rw] redirect_url
+      # @!attribute [rw] pkce_support Whether PKCE will be used during
+      #   authorization. Either `enabled` or `disabled`.
+      # @!attribute [rw] pkce_code_challenge_method Either `S256` (default) or
+      #   `plain`
+      # @!attribute [rw] auth_request_method The http method which will be used
+      #   to perform the request to the authorization endpoint. Either `get`
+      #   (default) or `post`
+      # @!attribute [rw] encryption_algorithm The encryption algorithm which
+      #   will be used to sign the JWT client credentials. Either `es384`
+      #   (default) or `rs384`
+      # @!attribute [rw] kid The key id for the keys to be used to sign the JWT
+      #   client credentials. When blank, the first key for the selected
+      #   encryption algorithm will be used
+      # @!attribute [rw] jwks A JWKS (including private keys) which will be used
+      #   instead of Inferno's default JWKS if provided
+      # @!attribute [rw] access_token
+      # @!attribute [rw] refresh_token
+      # @!attribute [rw] issue_time An iso8601 formatted string representing the
+      #   time the access token was issued
+      # @!attribute [rw] expires_in The lifetime of the access token in seconds
+      # @!attribute [rw] name
+
+      # @private
+      def initialize(raw_attributes_hash)
+        attributes_hash = raw_attributes_hash.symbolize_keys
+
+        invalid_keys = attributes_hash.keys - ATTRIBUTES
+
+        raise Exceptions::UnknownAttributeException.new(invalid_keys, self.class) if invalid_keys.present?
+
+        attributes_hash.each do |name, value|
+          value = DateTime.parse(value) if name == :issue_time && value.is_a?(String)
+
+          instance_variable_set(:"@#{name}", value)
+        end
+
+        self.issue_time = DateTime.now if access_token.present? && issue_time.blank?
+      end
+
+      # @private
+      def to_hash
+        self.class::ATTRIBUTES.each_with_object({}) do |attribute, hash|
+          value = send(attribute)
+          next if value.nil?
+
+          value = issue_time.iso8601 if attribute == :issue_time
+
+          hash[attribute] = value
+        end
+      end
+
+      # @private
+      def to_s
+        JSON.generate(to_hash)
+      end
+
+      # @private
+      def add_to_client(client)
+        # TODO
+        # client.auth = self
+        # self.client = client
+
+        # return unless access_token.present?
+
+        # client.set_bearer_token(access_token)
+      end
+    end
+  end
+end

data/lib/inferno/dsl/suite_endpoint.rb

@@ -289,7 +289,6 @@ module Inferno
           uri.query = env['rack.request.query_string'] if env['rack.request.query_string'].present?
           url = uri&.to_s
           verb = env['REQUEST_METHOD']
-          logger.info('get body')
           request_body = env['rack.input']
           request_body.rewind if env['rack.input'].respond_to? :rewind
           request_body = request_body.instance_of?(Puma::NullIO) ? nil : request_body.string