-
Notifications
You must be signed in to change notification settings - Fork 13
/
Copy pathI_Authorization_Insurant.yaml
91 lines (90 loc) · 3 KB
/
I_Authorization_Insurant.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
openapi: 3.0.3
info:
title: I_Authorization_Insurant - Transport token service
description: Retrieve signed transport token (jwt) for research data center and trust center.
contact:
name: gematik
email: [email protected]
version: 1.0.1
tags:
- name: TransportToken
description: Retrieve signed transport token (jwt) for research data center and trust center data exchange
paths:
'/transportToken/{hcid}/{kvnr}/{deviceId}':
get:
tags:
- TransportToken
description: Generate Transport token for trust center (VST) and research data center (FDZ)
operationId: getTransportToken
parameters:
- name: AuthenticationAssertion
in: header
description: The Authentication Assertion from the Authentication Service
required: true
schema:
$ref: '#/components/schemas/AuthenticationAssertionType'
- name: deviceId
in: path
description: The requesting clients device Id
required: true
schema:
$ref: '#/components/schemas/DeviceIdType'
- name: hcid
in: path
description: The Home community Id associated to the health record provider
required: true
schema:
$ref: '#/components/schemas/HomeCommunityIdType'
- name: kvnr
in: path
description: The KVNR identifyying the record
required: true
schema:
$ref: '#/components/schemas/KVNRType'
responses:
'200':
description: OK. Both token generated succesfully
content:
application/json:
schema:
$ref: '#/components/schemas/TransportTokenSetType'
'400':
description: bad request
'403':
description: forbidden. Request not allowed. Invalid authentication
'404':
description: not found. Addressed record not found
'412':
description: precondition failed. Device unknown for the adressed record
'500':
description: internal error
components:
schemas:
TransportTokenSetType:
type: object
properties:
tokenVst:
type: string
description: 'Transport token (trust center), claiming Arbeitsnummer (wn) and Lieferpseudonym (dp)'
tokenFdz:
type: string
description: 'Transport token (research data center), claiming Arbeitsnummer (wn)'
required:
- tokenVst
- tokenFdz
AuthenticationAssertionType:
description: Authentication assertion as provided by authentication service
type: string
format: byte
KVNRType:
type: string
description: The ID / KVNR of an insurant
pattern: '^[A-Z]{1}\d{9}$'
example: Z123456789
HomeCommunityIdType:
description: The Home community Id (OID) of a health record system
type: string
DeviceIdType:
description: 'The ID of a device, encoded as base64url'
type: string
format: base64url