@medplum/core 2.0.32 → 2.1.1

package/dist/types/access.d.ts

@@ -1,9 +1,4 @@
 import { AccessPolicy, AccessPolicyResource, Resource, ResourceType } from '@medplum/fhirtypes';
-/**
- * Public resource types are in the "public" project.
- * They are available to all users.
- */
-export declare const publicResourceTypes: string[];
 /**
  * Protected resource types are in the "medplum" project.
  * Reading and writing is limited to the system account.

package/dist/types/bundle.d.ts

@@ -1,4 +1,4 @@
-import { Bundle } from '@medplum/fhirtypes';
+import { Bundle, Resource } from '@medplum/fhirtypes';
 /**
  * More on Bundles can be found here
  * http://hl7.org/fhir/R4/bundle.html
@@ -20,3 +20,13 @@ export declare function convertToTransactionBundle(bundle: Bundle): Bundle;
  * @returns Bundle of the same type, with Bundle.entry reordered
  */
 export declare function reorderBundle(bundle: Bundle): Bundle;
+/**
+ * Converts a resource with contained resources to a transaction bundle.
+ * This function is useful when creating a resource that contains other resources.
+ * Handles local references and topological sorting.
+ * @param resource The input resource which may or may not include contained resources.
+ * @returns A bundle with the input resource and all contained resources.
+ */
+export declare function convertContainedResourcesToBundle(resource: Resource & {
+    contained?: Resource[];
+}): Bundle;

package/dist/types/client.d.ts

@@ -6,7 +6,7 @@ import { Hl7Message } from './hl7';
 import { ReadablePromise } from './readablepromise';
 import { ClientStorage } from './storage';
 import { IndexedStructureDefinition } from './types';
-import { ProfileResource } from './utils';
+import { CodeChallengeMethod, ProfileResource } from './utils';
 export declare const MEDPLUM_VERSION: string;
 /**
  * The MedplumClientOptions interface defines configuration options for MedplumClient.
@@ -27,6 +27,8 @@ export interface MedplumClientOptions {
      *
      * Default value is baseUrl + "/oauth2/authorize".
      *
+     * Can be specified as absolute URL or relative to baseUrl.
+     *
      * Use this if you want to use a separate OAuth server.
      */
     authorizeUrl?: string;
@@ -35,6 +37,8 @@ export interface MedplumClientOptions {
      *
      * Default value is "fhir/R4/".
      *
+     * Can be specified as absolute URL or relative to baseUrl.
+     *
      * Use this if you want to use a different path when connecting to a FHIR server.
      */
     fhirUrlPath?: string;
@@ -43,6 +47,8 @@ export interface MedplumClientOptions {
      *
      * Default value is baseUrl + "/oauth2/token".
      *
+     * Can be specified as absolute URL or relative to baseUrl.
+     *
      * Use this if you want to use a separate OAuth server.
      */
     tokenUrl?: string;
@@ -51,6 +57,8 @@ export interface MedplumClientOptions {
      *
      * Default value is baseUrl + "/oauth2/logout".
      *
+     * Can be specified as absolute URL or relative to baseUrl.
+     *
      * Use this if you want to use a separate OAuth server.
      */
     logoutUrl?: string;
@@ -108,14 +116,6 @@ export interface MedplumClientOptions {
      * For Node.js applications, consider the 'node-fetch' package.
      */
     fetch?: FetchLike;
-    /**
-     * The profile name.
-     *
-     * This is for handling multiple profiles to access different FHIR Servers
-     *
-     * If undefined, the default profile is "default".
-     */
-    profile?: string;
     /**
      * Storage implementation.
      *
@@ -170,6 +170,18 @@ export interface MedplumClientOptions {
      * For client side applications, consider redirecting to a sign in page.
      */
     onUnauthenticated?: () => void;
+    /**
+     * The default redirect behavior.
+     *
+     * The default behavior is to not follow redirects.
+     *
+     * Use "follow" to automatically follow redirects.
+     */
+    redirect?: RequestRedirect;
+    /**
+     * When the verbose flag is set, the client will log all requests and responses to the console.
+     */
+    verbose?: boolean;
 }
 export interface FetchLike {
     (url: string, options?: any): Promise<any>;
@@ -203,7 +215,7 @@ export interface BaseLoginRequest {
     readonly scope?: string;
     readonly nonce?: string;
     readonly codeChallenge?: string;
-    readonly codeChallengeMethod?: string;
+    readonly codeChallengeMethod?: CodeChallengeMethod;
     readonly googleClientId?: string;
     readonly launch?: string;
     readonly redirectUri?: string;
@@ -386,6 +398,14 @@ export declare enum OAuthTokenType {
     /** Indicates that the token is a base64url-encoded SAML 2.0 [OASIS.saml-core-2.0-os] assertion. */
     Saml2Token = "urn:ietf:params:oauth:token-type:saml2"
 }
+/**
+ * OAuth 2.0 Client Authentication Methods
+ * See: https://datatracker.ietf.org/doc/html/rfc7523#section-2.2
+ */
+export declare enum OAuthClientAssertionType {
+    /** Using JWTs for Client Authentication */
+    JwtBearer = "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
+}
 /**
  * The MedplumClient class provides a client for the Medplum FHIR server.
  *
@@ -438,6 +458,7 @@ export declare enum OAuthTokenType {
  *  </head>
  */
 export declare class MedplumClient extends EventTarget {
+    private readonly options;
     private readonly fetch;
     private readonly createPdfImpl?;
     private readonly storage;
@@ -478,6 +499,22 @@ export declare class MedplumClient extends EventTarget {
      * @returns The current authorize URL.
      */
     getAuthorizeUrl(): string;
+    /**
+     * Returns the current token URL.
+     * By default, this is set to `https://api.medplum.com/oauth2/token`.
+     * This can be overridden by setting the `tokenUrl` option when creating the client.
+     * @category HTTP
+     * @returns The current token URL.
+     */
+    getTokenUrl(): string;
+    /**
+     * Returns the current logout URL.
+     * By default, this is set to `https://api.medplum.com/oauth2/logout`.
+     * This can be overridden by setting the `logoutUrl` option when creating the client.
+     * @category HTTP
+     * @returns The current logout URL.
+     */
+    getLogoutUrl(): string;
     /**
      * Clears all auth state including local storage and session storage.
      * @category Authentication
@@ -1427,13 +1464,6 @@ export declare class MedplumClient extends EventTarget {
      * @category User Profile
      */
     getAccessPolicy(): AccessPolicy | undefined;
-    /**
-     * Translates/normalizes a URL so that it can be directly used with `MedplumClient.fetch`.
-     * Especially useful for translating `Binary/{id}` URLs to FHIR paths.
-     * @param url A valid URL within the `MedplumClient` context.
-     * @returns URL as a string that can be used with `MedplumClient.fetch`
-     */
-    normalizeFetchUrl(url: URL | string): string;
     /**
      * Downloads the URL as a blob. Can accept binary URLs in the form of `Binary/{id}` as well.
      * @category Read
@@ -1504,6 +1534,8 @@ export declare class MedplumClient extends EventTarget {
     private request;
     private parseResponse;
     private fetchWithRetry;
+    private logRequest;
+    private logResponse;
     private pollStatus;
     /**
      * Executes a batch of requests that were automatically batched together.
@@ -1543,7 +1575,7 @@ export declare class MedplumClient extends EventTarget {
      * @returns The PKCE code challenge details.
      */
     startPkce(): Promise<{
-        codeChallengeMethod: string;
+        codeChallengeMethod: CodeChallengeMethod;
         codeChallenge: string;
     }>;
     /**
@@ -1578,6 +1610,7 @@ export declare class MedplumClient extends EventTarget {
      * ```
      *
      * See: https://datatracker.ietf.org/doc/html/rfc6749#section-4.4
+     *
      * @category Authentication
      * @param clientId The client ID.
      * @param clientSecret The client secret.
@@ -1594,12 +1627,24 @@ export declare class MedplumClient extends EventTarget {
      * ```
      *
      * See: https://datatracker.ietf.org/doc/html/rfc7523#section-2.1
+     *
+     * @category Authentication
      * @param clientId The client ID.
      * @param assertion The JWT assertion.
      * @param scope The OAuth scope.
      * @returns Promise that resolves to the client profile.
      */
     startJwtBearerLogin(clientId: string, assertion: string, scope: string): Promise<ProfileResource>;
+    /**
+     * Starts a new OAuth2 JWT assertion flow.
+     *
+     * See: https://datatracker.ietf.org/doc/html/rfc7523#section-2.2
+     *
+     * @category Authentication
+     * @param jwt The JWT assertion.
+     * @returns Promise that resolves to the client profile.
+     */
+    startJwtAssertionLogin(jwt: string): Promise<ProfileResource>;
     /**
      * Sets the client ID and secret for basic auth.
      *

package/dist/types/config.d.ts

@@ -48,4 +48,10 @@ export interface MedplumInfraConfig {
             [key: string]: string;
         };
     }[];
+    cloudTrailAlarms?: {
+        logGroupName: string;
+        logGroupCreate?: boolean;
+        snsTopicArn?: string;
+        snsTopicName?: string;
+    };
 }

package/dist/types/index.d.ts

@@ -23,6 +23,7 @@ export * from './search/search';
 export * from './sftp';
 export * from './storage';
 export * from './types';
+export * from './typeschema/crawler';
 export * from './typeschema/types';
 export * from './typeschema/validation';
 export * from './utils';

package/dist/types/jwt.d.ts

@@ -1,3 +1,9 @@
+/**
+ * Returns true if the token is a JWT.
+ * @param token The potential JWT token.
+ * @returns True if the token is a JWT.
+ */
+export declare function isJwt(token: string): boolean;
 /**
  * Parses the JWT payload.
  * @param token JWT token.

package/dist/types/typeschema/crawler.d.ts

@@ -0,0 +1,12 @@
+import { Resource } from '@medplum/fhirtypes';
+import { TypedValue } from '../types';
+import { InternalTypeSchema } from './types';
+export interface ResourceVisitor {
+    onEnterObject?: (path: string, value: TypedValue, schema: InternalTypeSchema) => void;
+    onExitObject?: (path: string, value: TypedValue, schema: InternalTypeSchema) => void;
+    onEnterResource?: (path: string, value: TypedValue, schema: InternalTypeSchema) => void;
+    onExitResource?: (path: string, value: TypedValue, schema: InternalTypeSchema) => void;
+    visitProperty?: (parent: TypedValue, key: string, path: string, propertyValues: (TypedValue | TypedValue[] | undefined)[], schema: InternalTypeSchema) => void;
+}
+export declare function crawlResource(resource: Resource, visitor: ResourceVisitor, schema?: InternalTypeSchema, initialPath?: string): void;
+export declare function getNestedProperty(value: TypedValue, key: string): (TypedValue | TypedValue[] | undefined)[];

package/dist/types/typeschema/validation.d.ts

@@ -1,2 +1,25 @@
 import { Resource, StructureDefinition } from '@medplum/fhirtypes';
+export declare const fhirTypeToJsType: {
+    readonly base64Binary: "string";
+    readonly boolean: "boolean";
+    readonly canonical: "string";
+    readonly code: "string";
+    readonly date: "string";
+    readonly dateTime: "string";
+    readonly decimal: "number";
+    readonly id: "string";
+    readonly instant: "string";
+    readonly integer: "number";
+    readonly markdown: "string";
+    readonly oid: "string";
+    readonly positiveInt: "number";
+    readonly string: "string";
+    readonly time: "string";
+    readonly unsignedInt: "number";
+    readonly uri: "string";
+    readonly url: "string";
+    readonly uuid: "string";
+    readonly xhtml: "string";
+    readonly 'http://hl7.org/fhirpath/System.String': "string";
+};
 export declare function validate(resource: Resource, profile?: StructureDefinition): void;

package/dist/types/utils.d.ts

@@ -3,6 +3,11 @@ import { CodeableConcept, Extension, ObservationDefinition, ObservationDefinitio
  * @internal
  */
 export type ProfileResource = Patient | Practitioner | RelatedPerson;
+/**
+ * Allowed values for `code_challenge_method` in a PKCE exchange.
+ * @internal
+ */
+export type CodeChallengeMethod = 'plain' | 'S256';
 interface Code {
     code?: CodeableConcept;
 }
@@ -88,6 +93,12 @@ export declare function calculateAgeString(birthDateStr: string, endDateStr?: st
  * @returns Questionnaire answers mapped by link ID.
  */
 export declare function getQuestionnaireAnswers(response: QuestionnaireResponse): Record<string, QuestionnaireResponseItemAnswer>;
+/**
+ * Returns an array of  questionnaire answers as a map by link ID.
+ * @param response The questionnaire response resource.
+ * @returns Questionnaire answer arrays mapped by link ID.
+ */
+export declare function getAllQuestionnaireAnswers(response: QuestionnaireResponse): Record<string, QuestionnaireResponseItemAnswer[]>;
 /**
  * Returns the resource identifier for the given system.
  *
@@ -165,7 +176,7 @@ export declare function deepClone<T>(input: T): T;
  * @param input The input string.
  * @returns True if the input string matches the UUID format.
  */
-export declare function isUUID(input: string): boolean;
+export declare function isUUID(input: string): input is `${string}-${string}-${string}-${string}-${string}`;
 /**
  * Returns true if the input is an object.
  * @param obj The candidate object.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@medplum/core",
-  "version": "2.0.32",
+  "version": "2.1.1",
   "description": "Medplum TS/JS Library",
   "author": "Medplum <hello@medplum.com>",
   "license": "Apache-2.0",