uwcirg · daniellrgn · Nov 13, 2024 · Nov 13, 2024 · Nov 13, 2024 · Nov 13, 2024
diff --git a/default.env b/default.env
@@ -41,6 +41,13 @@ VITE_VERSION_STRING=
 ### Variables with VITE_ prefix will be available to the client
 ###
 
+# Auth environment variables for user oidc idp
+#VITE_AUTH_URL=
+#VITE_AUTH_CLIENT_ID=
+#VITE_AUTH_REDIRECT_URI=
+#VITE_AUTH_SILENT_REDIRECT_URI=
+#VITE_AUTH_POST_LOGOUT_URI=
+
 # SMART on FHIR client id configurations:
 # Ensure that your development client is registered with the proper redirect uris
 VITE_EPIC_CLIENT_ID=

diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -16,6 +16,7 @@
 		"@sveltejs/adapter-auto": "^2.0.0",
 		"@sveltejs/adapter-static": "^2.0.0",
 		"@sveltejs/kit": "^1.5.0",
+		"base64url": "^3.0.1",
 		"prettier": "^2.8.0",
 		"prettier-plugin-svelte": "^2.8.1",
 		"svelte": "^3.55.1",
@@ -30,10 +31,11 @@
 		"@types/node": "^20.8.7",
 		"@types/pako": "^2.0.0",
 		"@types/qrcode": "^1.5.0",
-		"base64url": "^3.0.1",
 		"bootstrap": "^5.2.3",
+		"buffer": "^6.0.3",
 		"fhirclient": "^2.5.2",
 		"jose": "^4.11.4",
+		"oidc-client-ts": "^3.1.0",
 		"pako": "^2.1.0",
 		"qrcode": "^1.5.1",
 		"serve": "^14.2.0",

diff --git a/src/env.d.ts b/src/env.d.ts
@@ -1,6 +1,11 @@
 /// <reference types="vite/client" />
 
 interface ImportMetaEnv {
+    readonly VITE_AUTH_URL: string
+    readonly VITE_AUTH_CLIENT_ID: string
+    readonly VITE_AUTH_REDIRECT_URI: string
+    readonly VITE_AUTH_SILENT_REDIRECT_URI: string
+    readonly VITE_AUTH_POST_LOGOUT_URI: string
     readonly VITE_EPIC_HIMSS_CLIENT_ID: string
     readonly VITE_ECW_HIMSS_CLIENT_ID: string
     readonly VITE_EPIC_CLIENT_ID: string

diff --git a/src/hooks.server.ts b/src/hooks.server.ts
@@ -0,0 +1,30 @@
+import { redirect, type Handle } from '@sveltejs/kit';
+
+const public_paths = [
+  '/home',
+  '/ips'
+];
+
+function isPathAllowed(pathname: string) {
+  return public_paths.some((path) =>
+    path === pathname || pathname.startsWith(path)
+  );
+}
+
+export const handle: Handle = async ({ event, resolve }) => {
+
+  // Validate keycloak token
+  let authorized = false;
+  try {
+    authorized = true;
+  } catch (e) {
+    console.error(e);
+  }
+
+  if (!authorized && !isPathAllowed(event.url.pathname)) {
+    throw redirect(302, '/home');
+  }
+
+  const response = await resolve(event);
+  return response;
+};
diff --git a/src/lib/components/app/AddFile.svelte b/src/lib/components/app/AddFile.svelte
@@ -70,7 +70,7 @@
 
   let shcsToAdd: SHCFile[] = [];
   let singleIPS = true;
-  let patientName = "My";
+  let patientName = "";
   let patient: Patient | undefined;
 
   let label = 'Health Summary ' + new Date().toISOString().slice(0, 10);

diff --git a/src/lib/components/app/FetchUrl.svelte b/src/lib/components/app/FetchUrl.svelte
@@ -107,7 +107,7 @@
           color: rgb(50, 50, 50);"/>
       </div>
     </DropdownToggle>
-    <DropdownMenu style="width:100%">
+    <DropdownMenu style="max-height: 400px; width:100%; overflow:scroll">
       {#if Object.keys(PATIENT_IPS).length > 0}
         <DropdownItem header>Actual Patient Data (permitted for use)</DropdownItem>
         {#each Object.entries(PATIENT_IPS) as [title, url]}

diff --git a/src/lib/components/app/HealthLink.svelte b/src/lib/components/app/HealthLink.svelte
@@ -113,9 +113,11 @@
   async function getUrl(shl: SHLAdminParams) {
     let shlMin = {
       id: shl.id,
+      url: shl.url,
       managementToken: shl.managementToken,
-      encryptionKey: shl.encryptionKey,
-      passcode: shl.passcode,
+      key: shl.key,
+      passcode: shl.passcode ?? "",
+      exp: shl.exp ?? 0,
       files: []
     }
     return await shlClient.toLink(shlMin);
@@ -133,10 +135,12 @@
   }
 
   async function deleteShl() {
-    shlClient.deleteShl(shl);
-    $shlStore = $shlStore.filter((l) => l.id !== shl.id);
-    toggle();
-    goto('/');
+    let success = await shlClient.deleteShl(shl);
+    if (success) {
+      $shlStore = await shlClient.getUserShls();
+      toggle();
+      goto('/');
+    }
   }
 
   async function addFile() {
@@ -145,11 +149,11 @@
 
   async function deleteFile(fileContent:string) {
     shl = await shlClient.deleteFile(shl, fileContent).then((shl) => {
-      let updatedFiles = shl.files.filter((f) => f.contentEncrypted !== fileContent);
+      let updatedFiles = shl.files.filter((f) => f.contentHash !== fileContent);
       shl.files = updatedFiles;
       return shl;
     });
-    $shlStore[$shlStore.findIndex(obj => obj.id === shl.id)] = shl;
+    $shlStore = await shlClient.getUserShls();
   }
 </script>
 {#if linkNotFound}
@@ -274,14 +278,8 @@
         color="primary"
         disabled={(shl.label || '') === (shlControlled.label || '')}
         on:click={async () => {
-          $shlStore = $shlStore.map((e) => {
-            if (e.id === shl.id) {
-              shl = { ...shl, label: shlControlled.label };
-              return shl;
-            } else {
-              return e;
-            }
-          });
+          await shlClient.resetShl({ ...shl, label: shlControlled.label });
+          $shlStore = await shlClient.getUserShls();
         }}>
         <Icon name="sticky" /> Update Label
       </Button>
@@ -310,9 +308,7 @@
         disabled={(shl.passcode || '') === (shlControlled.passcode || '')}
         on:click={async () => {
           await shlClient.resetShl({ ...shl, passcode: shlControlled.passcode });
-          $shlStore = $shlStore.map((e) =>
-            e.id === shl.id ? { ...shl, passcode: shlControlled.passcode } : e
-          );
+          $shlStore = await shlClient.getUserShls();
         }}><Icon name="lock" /> Update Passcode</Button>
       <Button size="sm" on:click={toggle} color="danger"><Icon name="trash3" /> Delete SMART Health Link</Button>
       <Modal isOpen={open} backdrop="static" {toggle}>
@@ -335,19 +331,19 @@
       {#if shl.files.length == 0}
         <p><em>No Summaries found</em></p>
       {/if}
-      {#each shl.files as file (file.contentEncrypted)}
+      {#each shl.files as file (file.contentHash)}
         <Card class="mb-2" color="light">
           <CardHeader>
             <Row class="align-items-center">
               <Col xs=6 class="align-items-center">
-                {#if file.date}
-                  <strong><Icon name="calendar"></Icon> {file.date}</strong>
+                {#if file.added}
+                  <strong><Icon name="calendar"></Icon> {file.added.split(' ')[0]}</strong>
                 {/if}
               </Col>
               <Col xs=6>
                 <Row class="justify-content-end">
                   <Button size="sm" color="danger" class="my-0 mx-1" style="width: fit-content" on:click={(e) => {
-                    deleteFile(file.contentEncrypted);
+                    deleteFile(file.contentHash);
                   }}>
                     <Icon name="trash3" />
                   </Button>