Skip to content

1.7.0 - Simplified Configuration and Duplicate Resources Fix

Latest
Latest
Compare
Choose a tag to compare
@hhund hhund released this 22 Jan 15:24
v1.7.0
This tag was signed with the committer’s verified signature.
hhund Hauke Hund
GPG key ID: 15A40D58B4BF6C78
Learn about vigilant mode.
a470e4e
This commit was signed with the committer’s verified signature.
hhund Hauke Hund
GPG key ID: 15A40D58B4BF6C78
Learn about vigilant mode.

General remarks:

  • This is an update for the 1.x DSF and not compatible with 0.9.x and older versions developed at highmed/highmed-dsf.
  • To Update an existing 1.x installation, please see the 1.x -> 1.7.0 Upgrade Guide. Note: Upgrading to 1.7.0 requires additional work beyond updating the version number.
  • For a fresh deployment, follow the installation instructions.
  • With this release, library dependencies have been updated, a bug regarding duplicate FHIR resources fixed and a few features implemented to simplify the configuration.

Features:

  • The default organization bookmarks in the FHIR server UI have been updated to reflect parent organizations supported by the allow list management application.
  • New uniqueness criteria have been implemented for draft Task resources, enforcing unique resources based on identifiers.
  • The integrated list of valid media types (CodeSystem urn:ietf:bcp:13) has been updated to reflect all published types by the IANA and extended with the non standard mimetype application/x-ndjson.
  • Default trusted root certificate authorities, previously published as part of the install guide resources, have been moved into the docker images. This simplifies the setup for MII/NUM users and still leaves the existing options to set custom CAs. For more details, see the Default Root Certificates page. Note: If not explicitly configured, optional connections to the OIDC provider and mail server previously used the default certificate trust store of the Java Virtual Machine (JVM). The new default trusts a limited number of certificate authorities only and thus may need to be manually overridden.
  • The docker secrets reader has been extended to also work with environment variables ending in _SECRET enabling definition of these values via files. For additional information, see the Passwords and Secrets page.

Bug Fixes:

  • Duplicate ActivityDefinition resources (same url and version) prevent processes from being executed in version 1.6.0. If inserts into the FHIR server fail during BPE startup (for example due to read timeouts), duplicate metadata resources like ActivityDefinition from process plugins can be created if the BPE container restarts too fast. Constraint trigger based unique criteria have been implemented for the database in 1.7.0 to prevent duplicate resources. The default transaction isolation level for modifying transactions was changed from "repeatable read" to "read committed", enabling dirty reads needed to allow constraint triggers to see inserts/updates executed by parallel running transactions. Serial execution of constraint triggers is realized by using exclusive transaction level advisory locks before executing the constraint trigger function.

Docker containers for this release can be access via the GitHub Docker registry - ghcr.io:

Issues closed:

  • Extend Secrets Reader for Environment Variables Ending in _SECRET_FILE #261
  • Add Default Root CAs to Docker Images #259
  • Update CodeSystem urn:ietf:bcp:13 #256
  • Upgrade Dependencies maintenance #253
  • Update Default Organization Bookmark List #248
  • Duplicate ActivityDefinition Resources Prevent Processes From Being Executed #247
  • Start New Development Cycle #245

This release contains contributions from @hhund, @schwzr and @wetret.

Contributors

schwzr, wetret, and hhund
Assets 2
Loading