-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #1 from HealthengineAU/INIT-1542
INIT-1542 Update practice consent authentication method process to mention practice-key header
- Loading branch information
Showing
4 changed files
with
29 additions
and
22 deletions.
There are no files selected for viewing
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -35,19 +35,20 @@ All interactions using the API key are conducted over HTTPS for security. | |
To gain access to a practice's Healthengine profile and data, the practice administrator must grant consent. | ||
|
||
This can be accomplished by the practice administrator following these steps: | ||
1. Contacting the Healthengine support team via phone at 1300 377 639 or email at [email protected] to enable access to the PMS API | ||
2. Visiting the Healthengine API Consumer Consent page within the [Healthengine Practice Admin](https://healthengine.com.au/appointment/admin) portal | ||
3. Clicking the 'Grant new consent' button and selecting your API consumer as the integration vendor | ||
1. Contacting the Healthengine support team via phone at 1300 377 639 or email at [email protected] to enable access to the PMS API | ||
2. Visiting the Healthengine API Consumer Consent page within the [Healthengine Practice Admin](https://healthengine.com.au/appointment/admin) portal | ||
3. Clicking the 'Grant new consent' button and selecting your API consumer as the integration vendor | ||
4. Retrieving the supplied practice ID and practice key on consent grant success | ||
|
||
![Granting consent via the practice admin integration consent page](../assets/quick-start-guide/grant-consent.png) | ||
|
||
Once consent is granted, you will need to provide a way for the practice to provide you with their Healthengine practice ID, which you can use to link it to a PMS account or location. | ||
Once consent is granted, you will need to provide a way for the practice to provide you with their Healthengine practice ID and practice key, which you can use to link the practice to a PMS account or location. | ||
|
||
--- | ||
|
||
## Syncing practice configuration | ||
|
||
Once a practice has granted your consent and has provided their practice ID, some initial configuration must be supplied before attempting to sync available appointments and bookings. | ||
Once a practice has granted you consent and has provided you their practice ID and practice key, some initial configuration must be supplied before attempting to sync available appointments and bookings. | ||
|
||
This configuration data should be transmitted both when a new Healthengine practice ID is associated with a PMS account or location and whenever there are updates to the corresponding data within the PMS. | ||
|
||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -6,7 +6,7 @@ info: | |
in order to allow booking of appointments. | ||
contact: | ||
email: [email protected] | ||
version: 1.6.0 | ||
version: 1.7.0 | ||
|
||
servers: | ||
- url: https://healthengine.com.au/pms-api/v1 | ||
|
@@ -685,7 +685,7 @@ paths: | |
post: | ||
tags: | ||
- configuration | ||
summary: Upload PMS appointment types snapshot | ||
summary: Upload PMS appointment types snapshot | ||
description: Upload a snapshot of supported PMS appointment types | ||
operationId: uploadPmsAppointmentTypes | ||
requestBody: | ||
|
@@ -1924,7 +1924,7 @@ components: | |
description: in seconds | ||
reason: | ||
type: string | ||
description: Reason entered by patient if requested in the booking form. It may contain multiple lines, each with additional data separated by newline characters. Usually add these in booking notes in the PMS. | ||
description: Reason entered by patient if requested in the booking form. It may contain multiple lines, each with additional data separated by newline characters. Usually add these in booking notes in the PMS. | ||
comments: | ||
type: string | ||
description: Currently hold the Healthengine appointment type | ||
|
@@ -2568,18 +2568,24 @@ components: | |
|
||
# 1) Define the security scheme type (HTTP bearer) | ||
securitySchemes: | ||
ApiKeyAuth: | ||
ApiKey: | ||
type: apiKey | ||
in: header | ||
name: api-key | ||
description: api-key header containing API key | ||
description: Consumer level API key | ||
PracticeId: | ||
type: apiKey | ||
in: header | ||
name: practice-id | ||
description: practice-id header containing Practice ID | ||
description: Practice id of consenting practice | ||
PracticeKey: | ||
type: apiKey | ||
in: header | ||
name: practice-key | ||
description: Practice key of consenting practice | ||
|
||
# 2) Apply the security globally to all operations | ||
security: | ||
- ApiKeyAuth: [] | ||
- ApiKey: [] | ||
PracticeId: [] | ||
PracticeKey: [] |