Question Scott Roth · Nov 17, 2023 Testing OAuth2 I am attempting to setup my first OAuth2 client, as we are adventuring into the realm of making FHIR API calls to our EMR from HealthShare Health Connect. I have gone through and set up the Issuer Endpoint, and Client Configuration but now I want to test it and verify that the setup is correct. When I setup the Client Configuration, it would not allow me to use Discovery as it was saying I needed a "Client secret" but was not given one. So I set it up manually, thinking I hit all the information correctly. #OAuth2 #ObjectScript #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 2 2 0 226
Question Scott Roth · Nov 7, 2023 Pulling in Global into Settings within the Management Portal We are moving away from Delegated Authentication in which I stored a username and password for our LDAP in a GLOBAL to be called by ZAUTHENTICATE. Is there a way to pull in that GLOBAL into the LDAP Configuration within the Managment Portal instead of having to manually enter it? There seems to be an issue with Copy/Paste that the password isn't being set correctly when I use Copy/Paste. Else I just export/import the LDAP Configuration from 1 server to another and manually update the Certificate to point to the correct file. Thanks Scott #LDAP #System Administration #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 0 0 119
Question Scott Roth · Oct 27, 2023 Web Gateway version vs IRIS version Does the Version of the Web Gateway have to match the version of IRIS that is currently running? Or are they independent of each other since they are different components? I am looking to install the Web Gateway (non-PWS) as we move forward with securing our Management Portal and VS Code connections using TLS. Thanks Scott #Web Gateway #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 1 0 188
Question Scott Roth · Oct 26, 2023 Apache config from PWS to Web Gateway This is probably not the right place, but I don't know who I can reach out to... I am trying to configure an Apache/Web Gateway to our instance of IRIS so we are no longer using the built-in PWS. Can anyone point me in the right direction to configure Apache/Web Gateway to repoint http://<server name>:52773/... to the https://<server name>/... gateway so our users will not notice? How do I do this in Apache, do I need to modify httpd.conf or the ssl.conf file? What is the correct syntax... #Web Gateway #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 7 0 272
Question Scott Roth · Oct 20, 2023 Installation User Will it hurt anything if I disable the user that installed IRIS, within IRIS? Does this cause a problem with background processes running or with the restart? I know the _Ensemble user is used to start/stop/restart objects within IRIS, just didn't see anything in the documentation about the user that installed IRIS. Thanks Scott #Security #System Administration #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 1 0 138
Question Scott Roth · Oct 6, 2023 Unable into Web Gateway Management I recently started work on trying to Tighten Security in our Development Instance of IRIS that is running based on recommendations from our Audit as you might of seen from my other posts. I am currently trying to get into the Private Web Gateway Manager within IRIS as CSPSystem, but when I attempt to sign in nothing happens. I went through and reset the password in the CSP.ini and within IRIS for CSPSystem. I made sure it had the new GatewayRole per suggested #Security #System Administration #Web Gateway #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 2 0 237
Question Scott Roth · Oct 6, 2023 Locking down - Security Errors with _Ensemble I am trying to lock down security within our Development environment per requirements from a Security Audit that was done earlier this year. I need to try to limit access at a public level, access to cache users, and exposure. I installed IRIS with the Lockdown method, and have configured my web applications, services, resources, etc. When I go into my namespace, I am constantly presented with the following error when I try to start or stop an Object... #Access control #Security #System Administration #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 3 0 154
Question Scott Roth · Oct 4, 2023 Making IRIS Calls externally via scripting - Security We currently have a couple of Shell scripts we have written to EnableConfigItem from a Unix (Red Hat) command line, so we can control when a Service/Operation is running via the cron in Unix. We do this by calling :>iris session xxxxx using _system user. During our Security audit it was mentioned that we need to lock down some of the cache users. #System Administration #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 3 0 216
Question Scott Roth · Sep 7, 2023 Question about ISCAgent Config We are noticing some issues with the communication between our Arbiter and our servers. Looking at the following documentation to limit connections, and logging...https://docs.intersystems.com/irislatest/csp/docbook/DocBook.UI.Page.cls?KEY=GHA_mirror_set_config#GHA_mirror_set_agent_port if I am configuring the ISCAgent on the arbiter, would we set #Mirroring #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 1 3 0 196
Question Scott Roth · Sep 5, 2023 LDAP Authentication Help Currently we are using Delegated Authentication using ZAUTHENTICATE to look at the groups that are associated with a user and if it matches a role within IRIS, to assign the user to that role within IRIS. #LDAP #System Administration #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 5 0 330
Question Scott Roth · Aug 22, 2023 GetCredentials() within ZAUTHENTICATE My original ZAUTHENTICATE.mac to use Delegated sign on did not include GetCredentials(), however I am being told it probably should have it so I am eliminate an error I am seeing when trying to troubleshoot the ZAUTHENTICATION. I am trying to add the GetCredentials() from the documentation to the existing ZAUTHENTICATE.mac but I am getting an error #Access control #Security #System Administration #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 7 0 269
Question Scott Roth · Aug 9, 2023 How do I convert my JSON Response to an Ens.Response object with Lists of Arrays Still working on my first External REST API call, and I am struggling to find the exact answer I am looking for... I get a JSON response from my API call but I am not quite sure how to dynamically get the JSON response into the Ens.Response Object with its lists of Arrays that I have defined. set tSC = ..Adapter.SendFormDataArray(.tHTTPResposne,"POST",tHTTPRequest,,,tURL) #API #JSON #REST API #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 10 0 397
Question Scott Roth · Jul 25, 2023 REST API Request Logging I am working on my first REST operation to send a API Request to an internal server within our Network. I have finally got past the point of being able to connect using a SSL/TLS Configuration, but I am getting a ERROR <Ens>ErrHTTPStatus: Received non-OK status 403 from remote HTTP server: 'HTTP/1.1 403 Forbidden'. #API #JSON #Key Question #REST API #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 1 16 1 562
Question Scott Roth · Jul 25, 2023 EnsLib.JavaGateway.Service - Gateway Server failure timeout Recently I started moving some of our JDBC Gateway configurations over to using the Microsoft JDBC Gateway driver instead of using the jTDS open source driver. I have noticed since then that those Objects that are using Microsoft JDBC Driver are throwing a lot more errors than the jTDS driver ever did, which I can understand however I am puzzled that I keep running into an issue with the Java Gateway Service within the Interoperability engine. #Java #JDBC #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 1 0 212
Question Scott Roth · Jul 24, 2023 EnsLib.JavaGateway.Service - Seeing what is connected to it Is there a way problematically to see what Operations/Services are attached to a EnsLib.JavaGateway.Service and if there are issues with the EnsLib.JavaGateway.Service to stop/start those Services/Operations that might be attached to it? Thanks #Java #JDBC #Health Connect #InterSystems IRIS #InterSystems IRIS for Health 0 1 0 133
Question Scott Roth · Jul 21, 2023 SSL/TLS error return from SSL_read() First time setting up a SSL/TLS connection, and I am running into issues when I call it from within a Business Operation. I used openssl to generate a RSA 4096 SHA512 key/csr request for our Active Directory Certificate Service to generate a Certificate Chain for me to use within RedHat. I was able to connect to our Web Service server using a generic request from terminal, however when I try it from our Business Operation I am running into issues. I tested the SSL/TLS connection using the following commands from the terminal... DEVCLIN>set request=##class(%Net.HttpRequest).%New() #Business Operation #Red Hat Enterprise Linux (RHEL) #SSL #InterSystems IRIS 0 1 0 302
Question Scott Roth · Jul 20, 2023 ERROR #6085: Unable to write to socket with SSL/TLS configuration 'OSUWMC', error reported 'error:0909006C:PEM routines:get_name:no start line I am trying to setup our first SSL/TLS configuration so we can possibly connect to the EMR FHIR server to pull data into the Interoperability engine. I am running on Red Hat, and created and submitted a openssl CSR request to our Windows ADCS system. I used the following command to generate the key and CSR request to submit to Windows ADCS openssl req -new -sha512 -nodes -newkey rsa:4096 -keyout xxxxxxx.key -out xxxxxxxx.csr #Red Hat Enterprise Linux (RHEL) #SSL #InterSystems IRIS 0 1 0 326
Question Scott Roth · Jul 10, 2023 REST - ERROR #6097: Error '<READ>Read+28^%Net.HttpRequest.1' while using TCP/IP device '9999' Trying my first REST call operation to our internal EMR (Epic) server, and I am receiving "ERROR #6097: Error '<READ>Read+28^%Net.HttpRequest.1' while using TCP/IP device '9999'" when I attempt to test my operation. When I look up the General Error Messages for 6097 I am seeing...Error '%1' while using TCP/IP device $zu(189,1)='%2'. What does this mean? #API #Business Operation #REST API #InterSystems IRIS 0 1 0 452
Question Scott Roth · Jul 7, 2023 REST conversion from structure format to JSON I am playing around with trying to make an Epic REST API call from an operation, and from what I understood because the request has to be sent as POST, I need to send the request as JSON. However when I try taking the request and running %ToJSON against it for the payload to be created I am getting an error... #API #JSON #REST API #InterSystems IRIS 0 3 0 214
Question Scott Roth · Jul 6, 2023 REST Documentation Confusion I had attempted to create a REST Operation before but did not have success. As I am going through the Tutorials and Documentation everything references REST services, but I have a case where I want to create a REST Operation that makes Epic API calls against Interconnect. I have done SOAP operations before and we currently have one in our Production Namespace, but from what I understand SOAP has the wsdl which defines al the structures and etc, where REST does not. #API #Business Operation #FHIR #ObjectScript #Documentation #InterSystems IRIS 0 1 1 205