go to post Jeffrey Drumm · May 31, 2023 It's not clear from your post whether you're using any of the healthcare-related variants of the InterSystems suite. If you're using HealthShare, Health Connect or IRIS for Health, support is included for receiving HL7 messages and storing them via multiple mechanisms. TCP/IP MLLP, HTTP, and file based services are all supported natively. When configuring a Business Service to receive HL7 messages via TCP/IP MLLP, you would select the EnsLib.HL7.Service.TCPService class and configure the Message Schema Category to "2.5" or "2.5.1" depending on your specific HL7 version. You would also need to configure the port on which to receive the messages, the target Business Process or Operation to act on them, and possibly a few other settings. Messages received through that service will then be inserted into the Interoperability message store, regardless of HL7 message type; message headers are created to provide tracking/status information and the messages are databased. If your need is to index and retrieve those messages based on content (patient name, account number, gender, etc), there are additional steps to fetch the specific data elements needed from the messages themselves and populate associated fields in a database structure that addresses those needs. That's something you would need to design; you would populate it using interoperability production components tailored to your filtering requirements and database design.
go to post Jeffrey Drumm · May 26, 2023 In addition to checking the logs, you can configure ^MONMGR and you'll get emailed on a failover (or any other significant Caché/IRIS event). There's also ^%SYSMONMGR for notifications on other Caché/IRIS system-health events.
go to post Jeffrey Drumm · May 23, 2023 I think in some cases questions are simply seeds planted for the growth of stimulating exchanges of ideas. This is a topic I would find interesting, and I'm no newbie, nor am I an ISC employee. If the answers to this question don't interest you, there are other questions that can use your help 😉
go to post Jeffrey Drumm · May 22, 2023 Can you try the code I posted above, substituting appropriate paths/filenames in the calls to the LinkToFile() methods? Any file will do for the in stream, as long as file/directory permissions permit. This at least would tell us whether the issue is with the key file or the JWT you're attempting to encrypt. I've tried this on I4H 2023.1 and Health Connect 2021.1.2 and the RSASHASign() method has not failed to generate a signature unless the key was passphrase-protected or not readable (due to file ownership/permissions) by the process opening it.
go to post Jeffrey Drumm · May 22, 2023 Password-protecting the key won't prevent it from being read. Do you have access to openssl? If yes, try the following: $ openssl rsa -in <keyfile-name> -check -noout You should get "RSA key ok" if it's a good key and has no passphrase.
go to post Jeffrey Drumm · May 22, 2023 Is your key file passphrase-protected? I get the output you describe when the key is passphrase-protected and the passphrase is not supplied.
go to post Jeffrey Drumm · May 22, 2023 I just tried RSASHASign() myself and a signature was returned, using your call: Set in=##class(%Stream.FileCharacter).%New() Do in.LinkToFile("/home/jeff/sample.jwt") Set token=in.Read() Set key=##class(%Stream.FileCharacter).%New() Do key.LinkToFile("/home/jeff/sample.pem") Set secret=key.Read() Set sig=##class(%SYSTEM.Encryption).RSASHASign(512,token,secret) The return value will be the signature only, though, not a signed JWT. If you want the latter, see the ObjectToJWT() method in %OAuth2.JWT - InterSystems IRIS for Health 2021.1.
go to post Jeffrey Drumm · May 22, 2023 I believe your argument list is incorrect. The first argument should be a string containing the data to be signed. The second is the private key, also in the form of a string. If the key is passphrase-protected, the third argument should be a string containing the passphrase. SHA-1 is deprecated, by the way.
go to post Jeffrey Drumm · May 20, 2023 The reason this 2-year-old thread floated to the top is because I found it researching an issue I had encountered with EnsLib.HTTP.GenericService.. I wanted to "pass through" a status code I had set as a property of a response message in a business process. While a solution was buried in the thread, the OP claimed it did not work in his case. I'm not sure why; I used a slight variation of that solution with success and simply felt the variation was worth sharing.
go to post Jeffrey Drumm · May 20, 2023 Just in case someone stumbles into this thread looking for an answer (as I did) ... Assuming the vanilla, un-extended EnsLib.HTTP.GenericService is the service handling the request, any response it receives from a business process needs to be an EnsLib.HTTP.GenericMessage. %Net.HttpResponse is not needed, nor is a CSP layer required. The service requires that a stream is attached to the message; the stream doesn't need to contain anything. The response message is composed in the BP something like this: Set rstream = ##class(%Stream.GlobalCharacter).%New() // Optional body content Do rstream.Write("<HTML><HEAD>Uh oh.</HEAD><BODY><BR><STRONG>Error: Invalid Patient ID</STRONG></BODY></HTML>") // Provide a stream object, empty is fine Set response = ##class(EnsLib.HTTP.GenericMessage).%New(rstream) // This works as expected in I4H 2023.1 Do response.HTTPHeaders.SetAt("HTTP/1.1 400 Bad Request","StatusLine") // if you're providing a payload ... Do response.HTTPHeaders.SetAt("text/html; charset=utf-8","Content-Type") I've verified that it works as coded above, using curl: < HTTP/1.1 400 Bad Request < Content-Type: text/html; charset=utf-8 < Content-Length: 99 < * Connection #0 to host iristest.local left intact <HTML><HEAD>Uh oh.</HEAD><BODY><BR><STRONG>Error: Invalid Patient ID</STRONG></BODY></HTML>
go to post Jeffrey Drumm · May 18, 2023 If the individual segment transformations are common across all ADT DTLs, you could implement your DTLs with subtransforms (these work at the segment level). As long as the gross structure of the messages rarely changes, the maintenance is all done in segment DTLs.
go to post Jeffrey Drumm · May 18, 2023 As you suggested, git is likely the culprit. It has an option for handling line-endings; see Configuring Git to handle line endings - GitHub Docs.
go to post Jeffrey Drumm · May 17, 2023 With #2 (at least for me anyway), the issue seems to be related to running iris session when using the Windows version of ssh.exe (called from VS Code, configured in settings under node terminal.integrated.profiles.windows). Home and End work normally at the Linux shell prompt, but when running iris session the effect is that either key produces the same result as pressing the Enter key. The current command is executed and a new IRIS prompt is generated. It doesn't seem to be a VS Code problem so much as an ISC problem, at least on Windows.
go to post Jeffrey Drumm · May 17, 2023 This should work (no looping required): I'm using the parenthesis syntax with the Matches() function to locate a pattern of any number of punctuation characters (.P) followed by 8 numeric characters (8N) followed by any number of any character (.E). The parenthesis syntax returns the repeating values in the form "<><><20230512191543><>" where <> represents an empty iteration of the repeating field (and fortunately qualifies as a punctuation character).
go to post Jeffrey Drumm · May 17, 2023 And an upgrade, since the foreach action didn't exist in 2017.2 😉
go to post Jeffrey Drumm · May 16, 2023 According to a StackOverflow thread I just read, the connection url below is purported to work on Linux and authenticate with the MS JDBC driver: jdbc:sqlserver://[server]:[port];database=[db];trustServerCertificate=true;integratedSecurity=true;user=[user without domain];password=[pw];authenticationScheme=NTLM;domain=[domain];authentication=NotSpecified
go to post Jeffrey Drumm · May 5, 2023 Ok, answering my own question ... Ens.MonitorService calls the macro $$$SetHostMonitor() when the InactivityTimeout is reached, which does this: Set $$$EnsHostMonitorRoot($namespace,%host,%prop)=%val,$$$EnsHostMonitorRoot($namespace,%host,$$$eMonitorLastActivity)=$$$timeUTC And that certainly appears to be updating the LastActivity time.
go to post Jeffrey Drumm · May 3, 2023 ISCAgent is running on primary, alternate and arbiter? It has to be running on all 3. IRIS Windows installation by default will install ISCAgent but will not enable it for auto-start.
go to post Jeffrey Drumm · May 2, 2023 If you set the ENSLIB database to mount read/write, it will compile. I'm wondering if, after recompilation, it will work ...
go to post Jeffrey Drumm · May 1, 2023 I couldn't even get that class to compile until I set the ENSLIB database to mount R/W. And yes, I was attempting to compile it in a conventional "interoperability-enabled" namespace. That's on I4H 2022.2, fyi. Does it compile without error on your system?
