Skip to content

Issue/177 dont require dev dsf fhir server organization thumbprint #376

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
hhund merged 11 commits into from
Oct 31, 2025
Merged

Issue/177 dont require dev dsf fhir server organization thumbprint #376

hhund merged 11 commits into from
Oct 31, 2025

Conversation

@jaboehri
Copy link
Collaborator

@jaboehri jaboehri commented Oct 23, 2025
edited
Loading

Closes #177

Changes

Add a method to dev/dsf/fhir/spring/config/PropertiesConfig.java which checks if DSF_DEV_FHIR_SERVER_ORGANIZATION_THUMBPRINT is set. If not set, compute the thumbprint value based on the client certificate provided by DSF_DEV_FHIR_CLIENT_CERTIFICATE and save it as a property. The method gets executed before Spring starts resolving ${...} placeholders.

How Was This Patch Tested?

  • Unit tests
  • Integration tests
  • Manual executed tests

Using the 3dic-ttp test setup:

Test without environment variable DSF_DEV_FHIR_SERVER_ORGANIZATION_THUMBPRINT
  1. docker compose down -v
  2. Remove DSF_DEV_FHIR_SERVER_ORGANIZATION_THUMBPRINT from docker-compose for dic3
  3. docker compose up -d dic3-fhir
  4. In the test setup directory: openssl x509 --in secrets/dic3.crt --noout --fingerprint --sha512
  5. Compare against the organization's thumbprint under https://dic3/fhir/Organization
  6. Thumbprints match
Test with environment variable DSF_DEV_FHIR_SERVER_ORGANIZATION_THUMBPRINT
  1. docker compose down -v
  2. Add DSF_DEV_FHIR_SERVER_ORGANIZATION_THUMBPRINT to docker-compose for dic3 with value '11111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111'
  3. docker compose up -d dic3-fhir
  4. Verify that the organization's thumbprint under https://dic3/fhir/Organization equals 11111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111
  5. Thumbprints match

@jaboehri
Fix typo
4054b18
@jaboehri
The organization thumbprint now gets computed from DSF_DEV_FHIR_CLIEN…
768a727 
…T_CERTIFICATE if the DSF_DEV_FHIR_SERVER_ORGANIZATION_THUMBPRINT is omitted in the configuration
@jaboehri jaboehri requested a review from hhund October 23, 2025 14:53
@jaboehri jaboehri self-assigned this Oct 23, 2025
@jaboehri jaboehri added the enhancement New feature or request label Oct 24, 2025
@jaboehri jaboehri added this to the 2.0.0 milestone Oct 24, 2025
@jaboehri jaboehri removed their assignment Oct 24, 2025
@jaboehri jaboehri linked an issue Oct 24, 2025 that may be closed by this pull request
Don't require DEV_DSF_FHIR_SERVER_ORGANIZATION_THUMBPRINT #177
Closed
@jaboehri jaboehri marked this pull request as ready for review October 31, 2025 13:37
@hhund hhund self-assigned this Oct 31, 2025
@hhund
removed thumbprint configs from test setups, renamed .env entries
f35b434 
Run "mvn dsf:generate-dev-setup-cert-files" to update generated .env
files.
@hhund hhund merged commit c9fc1f0 into develop_2 Oct 31, 2025
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hhund hhund hhund approved these changes

Assignees

@hhund hhund

Labels

enhancement New feature or request

Projects

None yet

Milestone

2.0.0

Development

Successfully merging this pull request may close these issues.

Don't require DEV_DSF_FHIR_SERVER_ORGANIZATION_THUMBPRINT

3 participants

@jaboehri @hhund