-
Notifications
You must be signed in to change notification settings - Fork 15
/
Copy pathconfig.ts
247 lines (200 loc) · 9.25 KB
/
config.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
const ENV = process.env.NODE_ENV || "production";
const PORT = +(process.env.PORT || (ENV == "test" ? 9444 : 9443));
export default {
baseUrl: process.env.BASE_URL || `http://localhost:${PORT}`,
port: PORT,
// Delay in milliseconds between NDJSON row generation
throttle: 0,
// Max. number of fhir resources (lines) in one ndjson file
defaultPageSize: 10000,
// Pretend that we are creating files for 10 seconds
defaultWaitTime: 10,
// Default Token LifeTime in minutes
defaultTokenLifeTime: 15,
// The maximum number of files that can be downloaded
maxFiles: 150,
// How many rows to select (load into memory and then stream them one by one).
// The bigger the number the fewer sql queries will be executed but more
// memory will be needed to store those bigger chunks of data
rowsPerChunk: 500,
// In minutes! Files created after export are deleted after 60 minutes.
maxExportAge: 60,
jwtSecret: process.env.SECRET || "this-is-our-big-secret",
jobsPath: process.env.NODE_ENV === "test" ? __dirname + "/jobs/test" : __dirname + "/jobs",
supportedSigningAlgorithms: [
"HS256", "HS384", "HS512",
"RS256", "RS384", "RS512",
"ES256", "ES384", "ES512",
"PS256", "PS384", "PS512",
],
errors: {
"missing_parameter" : "Missing %s parameter",
"invalid_parameter" : "Invalid %s parameter",
"form_content_type_required" : "Invalid request content-type header (must be 'application/x-www-form-urlencoded')",
"sim_invalid_token" : "Simulated invalid token error",
"invalid_token" : "Invalid token: %s",
"missing_client_assertion_type" : "Missing client_assertion_type parameter",
"invalid_client_assertion_type" : "Invalid client_assertion_type parameter. Must be 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer'.",
"invalid_jti" : "Invalid 'jti' value",
"invalid_aud" : "Invalid token 'aud' value. Must be '%s'.",
"invalid_token_iss" : "The given iss '%s' does not match the registered client_id '%s'",
"token_expired_registration_token": "Registration token expired",
"invalid_registration_token" : "Invalid registration token: %s",
"invalid_client_details_token" : "Invalid client details token: %s",
"invalid_scope" : 'Invalid scope: "%s".',
"missing_scope" : "Empty scope",
"token_invalid_scope" : "Simulated invalid scope error",
"bad_grant_type" : "Unknown or missing grant_type parameter",
"file_expired" : 'The requested file "%s" is missing or expired',
"file_generation_failed" : "File generation failed",
"only_json_supported" : "Only the JSON format is supported",
"jku_not_whitelisted" : "The provided jku '%s' is different than the one used at registration time (%s)",
"__custom__" : "%s"
},
oauthErrors: { // errorName: defaultMessage
// The request is missing a required parameter, includes an
// unsupported parameter value (other than grant type),
// repeats a parameter, includes multiple credentials,
// utilizes more than one mechanism for authenticating the
// client, or is otherwise malformed.
"invalid_request": "Invalid request",
// Client authentication failed (e.g., unknown client, no
// client authentication included, or unsupported
// authentication method). The authorization server MAY
// return an HTTP 401 (Unauthorized) status code to indicate
// which HTTP authentication schemes are supported. If the
// client attempted to authenticate via the "Authorization"
// request header field, the authorization server MUST
// respond with an HTTP 401 (Unauthorized) status code and
// include the "WWW-Authenticate" response header field
// matching the authentication scheme used by the client.
"invalid_client": "Invalid client",
// The provided authorization grant (e.g., authorization
// code, resource owner credentials) or refresh token is
// invalid, expired, revoked, does not match the redirection
// URI used in the authorization request, or was issued to
// another client.
"invalid_grant": "Invalid grant",
// The authenticated client is not authorized to use this
// authorization grant type.
"unauthorized_client": "Unauthorized client",
// The authorization grant type is not supported by the
// authorization server.
"unsupported_grant_type": "Unsupported grant type",
// The requested scope is invalid, unknown, malformed, or
// exceeds the scope granted by the resource owner.
"invalid_scope": "Invalid scope"
},
// When the "_elements" parameter is used the values are concatenated to
// this array to ensure that required elements are always included.
// Can contain:
// - [element] to match against any resourceType
// - [ResourceType].[element] to mach within a specified resource type
// Note that items below are based on US Core or Argonaut R4 Profiles
requiredElements: [
"resourceType",
"id",
"AllergyIntolerance.patient",
"AllergyIntolerance.substance",
"AllergyIntolerance.status",
"CarePlan.text",
"CarePlan.subject",
"CarePlan.status",
"CarePlan.category",
"CareTeam.subject",
"CareTeam.status",
"CareTeam.category",
// Claim
"Condition.patient",
"Condition.code",
"Condition.category",
"Condition.clinicalStatus",
"Condition.verificationStatus",
"Device.type",
"Device.udicarrier",
"Device.patient",
"DiagnosticReport.status",
"DiagnosticReport.category",
"DiagnosticReport.code",
"DiagnosticReport.subject",
"DiagnosticReport.effectiveDateTime",
"DiagnosticReport.effectivePeriod",
"DiagnosticReport.issued",
"DiagnosticReport.performer",
"DiagnosticReport.result",
"DiagnosticReport.image",
"DiagnosticReport.presentedForm",
"DocumentReference.status",
"DocumentReference.type",
"DocumentReference.category",
"DocumentReference.subject",
"DocumentReference.content",
"Encounter.status",
"Encounter.class",
"Encounter.type",
"Encounter.subject",
// ExplanationOfBenefit
// Group
// ImagingStudy
"MedicationRequest.status",
"MedicationRequest.intent",
"MedicationRequest.medicationCodeableConcept",
"MedicationRequest.medicationReference",
"MedicationRequest.subject",
"MedicationRequest.authoredOn",
"MedicationRequest.requester",
"Organization.active",
"Organization.name",
"Practitioner.identifier",
"Practitioner.name",
"Observation.status",
"Observation.category",
"Observation.code",
"Observation.subject",
"Observation.valueQuantity",
"Observation.valueCodeableConcept",
"Observation.valueString",
"Observation.valueRange",
"Observation.valueRatio",
"Observation.valueSampledData",
"Observation.valueAttachment",
"Observation.valueTime",
"Observation.valueDateTime",
"Observation.valuePeriod",
"Observation.DataAbsentReason",
"Observation.effectiveDateTime",
"Observation.effectivePeriod",
"Observation.referenceRange",
"Immunization.status",
"Immunization.date",
"Immunization.vaccineCode",
"Immunization.patient",
"Immunization.wasNotGiven",
"Immunization.reported",
"Patient.identifier",
"Patient.name",
"Patient.gender",
"Procedure.patient",
"Procedure.status",
"Procedure.code",
"Procedure.performedDateTime",
"Procedure.performedPeriod",
],
// IMPORT ------------------------------------------------------------------
// Maximum NDJSON file line length (as number of characters)
ndjsonMaxLineLength: 5000000,
// How many downloads to run in parallel
maxParallelDownloads: 3,
// Only store the first 50 resources from each downloaded file
maxImportsPerResourceType: 50,
// Run database maintenance once a minute (set in milliseconds)
dbMaintenanceTickInterval: ENV == "test" ? 10 : 60 * 1000,
// Purge records older than 10 min (set in seconds). Also, any finished tasks
// will be kept for this duration and can be checked for status or canceled.
dbMaintenanceMaxRecordAge: ENV == "test" ? 1 : 10 * 60,
// If this is exceeded reply with 429 Too many requests (works per IP)
maxRequestsPerMinute: 30,
// If a client violates the maxRequestsPerMinute restriction for more than
// this duration (in seconds) the import session will be terminated
maxViolationDuration: ENV == "test" ? 0.1 : 60
};