go to post Scott Roth · Jun 4, 2024 Yup, same here. I have %ALL access, and still not being able to modify the Target of SEND. I tried all different options that I could think of changing in the Web Applications, but no luck. I opened a ticket with WRC. While I like the IF, THEN look and it is better than WHEN.. if I have to disable for now, I will leave that up to the team tomorrow.
go to post Scott Roth · Jun 4, 2024 Yeah, I think I am going to lean that way too, there is something security wise that is preventing me from editing the Target, but the documentation doesn't share any details about what it could be. I left per what the document says. I tried CompileAllNamespaces() and different options but still it is inconsistent on if I can edit it or not.
go to post Scott Roth · May 29, 2024 I fixed the Client setup to ensure that the Info URL looks correct, however still nothing is showing up in the FSLog from the Testing I am doing using the Testing tool on the HS.FHIRServer.Interop.HTTPOperation.
go to post Scott Roth · May 29, 2024 I am not seeing any information in ISCLOG based on the Testing call that is being made
go to post Scott Roth · May 24, 2024 The table in Exists needs to have " " around it as it is still a string.
go to post Scott Roth · May 24, 2024 There is a Schema issue, it is not liking the way you're grouping several segments together which is resulting in the error.
go to post Scott Roth · May 16, 2024 I know this is not using OAuth, but OAuth is just the Authentication method. When I attempt to do something similar to search Patient for identifier=OSUMRN|xxxxx I keep getting a 404 not found error. Nothing is showing up within the ISCLOG under %SYS globals. Is there anyway I can see the trace of making the calls to verify that the correct API's are being called in the correct format? What is the magic chant to get the ISCLOG to capture the information?
go to post Scott Roth · May 14, 2024 _SYSTEM, Admin, SuperUser, CSPSystem, HS_Services (if you are running HealthShare), IAM (if you are running the API module), _Ensemble, and _PUBLIC are all predefined system accounts built within InterSystems. You define the password for these accounts during the install process. Installing | HealthShare Health Connect 2024.1 (intersystems.com) They already have the necessary roles assigned to them.
go to post Scott Roth · May 14, 2024 _system password is normally defined when you install the instance. But if you did not I would try SYS as the password then change it of course.
go to post Scott Roth · May 9, 2024 When using a Code block, I find that I have to put a space in at the beginning of the code.
go to post Scott Roth · May 6, 2024 I had to change the Access Control Rule (setfacl) on each of the files/folders to allow my non-root user access to the files/folders, using setfacl.
go to post Scott Roth · May 6, 2024 Still no luck, it was suggested that I make sure the permissions were set correctly at the folder level /etc/, /etc/pki/, /etc/pki/tls/. Each had irisusr as the group but still receiving the Permission Denied error. Does anyone know what could be causing this?
go to post Scott Roth · Apr 26, 2024 I have a ticket in with WRC to help me figure out this issue because it is bugging the crap out of me I am trying to figure it out. I have updated the Owner, Group, Folder Permissions, and Permission at the file level. REDEBUG is returning.. TLS enabled versions, minimum: 16, maximum: 32 04/24/24-16:18:26:573 (2675888) 0 [Generic.Event] Cipher list for TLSv1.2 and below: ALL:!aNULL:!eNULL:!EXP:!SSLv2 04/24/24-16:18:26:573 (2675888) 0 [Generic.Event] Ciphersuites for TLSv1.3: TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256 04/24/24-16:18:26:573 (2675888) 0 [Generic.Event] Certificate file: /etc/pki/tls/certs/int-lxiris-vd01.pem 04/24/24-16:18:26:573 (2675888) 0 [Generic.Event] error:0200100D:system library:fopen:Permission denied 04/24/24-16:18:26:573 (2675888) 0 [Generic.Event] error:20074002:BIO routines:file_ctrl:system lib 04/24/24-16:18:26:573 (2675888) 0 [Generic.Event] error:140DC002:SSL routines:use_certificate_chain_file:system lib 04/24/24-16:18:26:573 (2675888) 0 [Generic.Event] When I call... set jwt = ##class(%SYS.OAuth2.Authorization).GetAccessTokenJWT(....) However, I use the same SSL/TLS configuration that uses /etc/pki/tls/certs/int-lxiris-vd01.pem in my LDAP authentication. I ran the following to verify the Certificate against the CA Authority [root@int-lxiris-vd01 certs]# openssl verify -verbose -CAfile /etc/pki/ca-trust/source/anchors/OSUWMC_CA.pem int-lxiris-vd01_osumc_edu.pem int-lxiris-vd01_osumc_edu.pem: OK Anyone have an idea on what might be going on? If there was a problem with the Certificate chain inside of /etc/pki/tls/certs/int-lxiris-vd01.pem wouldn't I have issues with LDAP Authentication? I tried deleting my user, and having the LDAP Authentication recreate it, and it did without any issues when I tried to sign in as my user. @Sean Klingensmith, I know you helped out in the past with a previous WRC ticket and Post. Any Idea on what might be going on?
go to post Scott Roth · Apr 25, 2024 Sessions normally are available closer to the date of the Summit. You should receive a notice when they are available to be Scheduled.
go to post Scott Roth · Apr 25, 2024 I noticed that this is now included in 2024.1, and there is documentation Production Validator | HealthShare Health Connect 2024.1 (intersystems.com) While I was able to help test the code, the code version I have is probably an older version. The Documentation mentions loading the code for the Production Validator and compiling it in the system. For me and others where can that updated Production Validator code be found? @James Bourette
go to post Scott Roth · Apr 23, 2024 I am being told the OAuth certificate has no chain behind it. it is a Self Signed Certificate/Key Pair. I changed the ownership of the files to irisusr:irisusr but I am still getting the same error message... "error reported 'error:0200100D:system library:fopen:Permission denied, error:20074002:BIO routines:file_ctrl:system lib, error:140DC002:SSL routines:use_certificate_chain_file:system lib' *" I am still thinking it is something wrong with the Cert/Private Key that was provided to me from the Application, am I wrong?
go to post Scott Roth · Apr 23, 2024 My real concern is... "error:0200100D:system library:fopen:Permission denied, error:20074002:BIO routines:file_ctrl:system lib, error:140DC002:SSL routines:use_certificate_chain_file:system lib",,,,,,,$lb(,"%SYS",$lb("e^Send+313^%Net.HttpRequest.1^1","e^Post+1^%Net.HttpRequest.1^1","e^GetAccessTokenJWT+44^%SYS.OAuth2.Authorization.1^1" is there an issue with my Certs?
go to post Scott Roth · Apr 22, 2024 ConvertDateTime works well... Ens.Util.FunctionSet (ENSLIB namespace) - InterSystems IRIS Data Platform 2024.1 - including private class members when you call it within a DTL you can specify the incoming and outgoing formats like ..."%d/%m/%Y", "%Y%m%d"
