UNPKG

fhirclient

Version:

JavaScript client for Fast Healthcare Interoperability Resources

docs.smarthealthit.org/client-js/

smart-on-fhir/client-js

118 lines (117 loc) 5.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
import Client from "./Client"; import { SMART_KEY } from "./settings"; import { fhirclient } from "./types"; export { SMART_KEY as KEY }; /** * Fetches the well-known json file from the given base URL. * Note that the result is cached in memory (until the page is reloaded in the * browser) because it might have to be re-used by the client * @param baseUrl The base URL of the FHIR server */ export declare function fetchWellKnownJson(baseUrl?: string, requestOptions?: RequestInit): Promise<fhirclient.WellKnownSmartConfiguration>; /** * Given a FHIR server, returns an object with it's Oauth security endpoints * that we are interested in. This will try to find the info in both the * `CapabilityStatement` and the `.well-known/smart-configuration`. Whatever * Arrives first will be used and the other request will be aborted. * @param [baseUrl = "/"] Fhir server base URL */ export declare function getSecurityExtensions(baseUrl?: string, wellKnownRequestOptions?: RequestInit, conformanceRequestOptions?: RequestInit): Promise<fhirclient.OAuthSecurityExtensions>; /** * Starts the SMART Launch Sequence. * > **IMPORTANT**: * `authorize()` will end up redirecting you to the authorization server. * This means that you should not add anything to the returned promise chain. * Any code written directly after the authorize() call might not be executed * due to that redirect! * @param env * @param [params] */ export declare function authorize(env: fhirclient.Adapter, params?: fhirclient.AuthorizeParams | fhirclient.AuthorizeParams[]): Promise<string | void>; /** * Checks if called within a frame. Only works in browsers! * If the current window has a `parent` or `top` properties that refer to * another window, returns true. If trying to access `top` or `parent` throws an * error, returns true. Otherwise returns `false`. */ export declare function isInFrame(): boolean; /** * Checks if called within another window (popup or tab). Only works in browsers! * To consider itself called in a new window, this function verifies that: * 1. `self === top` (not in frame) * 2. `!!opener && opener !== self` The window has an opener * 3. `!!window.name` The window has a `name` set */ export declare function isInPopUp(): boolean; /** * Another window can send a "completeAuth" message to this one, making it to * navigate to e.data.url * @param e The message event */ export declare function onMessage(e: MessageEvent): void; /** * The ready function should only be called on the page that represents * the redirectUri. We typically land there after a redirect from the * authorization server, but this code will also be executed upon subsequent * navigation or page refresh. */ export declare function ready(env: fhirclient.Adapter, options?: fhirclient.ReadyOptions): Promise<Client>; /** * Builds the token request options. Does not make the request, just * creates it's configuration and returns it in a Promise. */ export declare function buildTokenRequest(env: fhirclient.Adapter, { code, state, clientPublicKeySetUrl, privateKey }: { /** * The `code` URL parameter received from the auth redirect */ code: string; /** * The app state */ state: fhirclient.ClientState; /** * If provided overrides the `clientPublicKeySetUrl` from the authorize * options (if any). Used for `jku` token header in case of asymmetric auth. */ clientPublicKeySetUrl?: string; /** * Can be a private JWK, or an object with alg, kid and key properties, * where `key` is an un-extractable private CryptoKey object. */ privateKey?: fhirclient.JWK | { key: CryptoKey; alg: "RS384" | "ES384"; kid: string; }; }): Promise<RequestInit>; /** * This function can be used when you want to handle everything in one page * (no launch endpoint needed). You can think of it as if it does: * ```js * authorize(options).then(ready) * ``` * * **Be careful with init()!** There are some details you need to be aware of: * * 1. It will only work if your launch_uri is the same as your redirect_uri. * While this should be valid, we can’t promise that every EHR will allow you * to register client with such settings. * 2. Internally, `init()` will be called twice. First it will redirect to the * EHR, then the EHR will redirect back to the page where init() will be * called again to complete the authorization. This is generally fine, * because the returned promise will only be resolved once, after the second * execution, but please also consider the following: * - You should wrap all your app’s code in a function that is only executed * after `init()` resolves! * - Since the page will be loaded twice, you must be careful if your code * has global side effects that can persist between page reloads * (for example writing to localStorage). * 3. For standalone launch, only use init in combination with offline_access * scope. Once the access_token expires, if you don’t have a refresh_token * there is no way to re-authorize properly. We detect that and delete the * expired access token, but it still means that the user will have to * refresh the page twice to re-authorize. * @param env The adapter * @param authorizeOptions The authorize options */ export declare function init(env: fhirclient.Adapter, authorizeOptions: fhirclient.AuthorizeParams, readyOptions?: fhirclient.ReadyOptions): Promise<Client | never>;