Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

Questions Reordered by Priority

Top Priority from Integration Perspective

  1. Should PubSub APIs be used for async API communication between Building Blocks? Ex: Registration BB consuming Pay BB Batch transfer API to disburse benefits to a list of beneficiaries.

  2. (15) Do you think that any of the documentation in Confluence and Gitbook and Github points to BB integration scenarios? Context: All flow/UML diagrams have missing actors for applications (sub-systems or the underlying service producing the REST API)

    1. Attempted Answer: Addressing remarks diagram shows an arrow between Information System A and a system for mapping protocol headers with the arrow labelled as Headers to be transformed. Can this be elabored?

  3. (16) If X-Callback-URL in Pay-BB API is not being passed by the Room (receiving the publish API call) to the underlying REST API, then how do we map the callback to the pushURL specified in the event type subscription call to SS04(Pay-BB)? There are no references to implementer documentation in the demo or in the documentation. The question is elaborated through the below diagram :-

    1. Attempted Answer: Addressing remarks diagram shows an arrow between Information System A and a system for mapping protocol headers with the arrow labelled as Headers to be transformed. Can this be elabored?

    2. Alternative attempted answer: Consume Get subscribtion API(IM BB API) for event type batch transfer from bulk processor or IMBB transformer service. Get the registered push URL and set it as a batch transfer callback URL config through a new API so that batch transaction x-callback-url header can be made
      non mandatory.

  4. (17)a) Is Sandbox team maintaining the Playground environment?
    b) What is the impact of playground environments being migrated?
    c) Can the team maintaining the Playground environment (having IMBB installed & configured as per the demo video) share the Postman environment file for IMBB or a list of URLs & the list of secrets for accessing UI, creating rooms, creating event types, etc?

  5. (1) Please confirm that the Owners in the diagram are ministries / registering institutions. Ex:- Registration BB publishing and PayBB subscribing. In the case of callback responses, isn't PayBB publishing and Registration BB subscribing. For this communication, is it fair to assume that both Registration BB and Pay BB has to create separate rooms?

    1. Definitive answer is outstanding.

    2. Attempted answer:
      Event Type creation with Message schema is part of Room creation and not part of subsystem creation. Rooms are linked to Subsystems through Managers. If BatchTransfer API is in a sub-system of Pay-BB member, the Manager for G2P-Pay Room links the room to the sub-system. Event Type Batch Transfer API is then inside the G2P-Pay room.

    3. Based on assumptions made from watching the video and reading documentation, SS2(REG-BB) is subscribing to BatchTransfer eventType with pushUrl specified. When SS2(REG-BB) request/event publishes to SS4/PAY-BB, then callback goes to that pushURL and a second room creation is not required. So both publishing messages and subscription to the BatchTransfer event type can be done by SS2(REG-BB).

    4. 1a: How would a different SS (ex: RegistrationBB, SS2) publish an event to Pay-BB/SS4? OR
      Is Sub-System(Service) Access shown in first video giving indirect access for one SS to publish events to a room of another SS?

      1. Attempted Answer: Yes, service access has less to do with rooms and more to do with sub-system with REST API access. Perhaps around 17:16 in the first video or not clearly shown in the video.

    5. 1b: How is PatientPortal Room (linked with a Manager from SS4 subsystem) being used in SS2

      1. Attempted Answer: Based on the assumptions from previous answer, these are done through sub-system(service) access which is indirectly linked to Rooms through Managers.

    6. 1c: Will Schema validation one day provide aggregated errors related to mandatory fields, field data type failures, field length validations?

    7. 1d: Would subscribing with pushURL get them the response from PayBB to RegBB?
      Attempted Answer: I don't think a separate room is required on RegBB for async callbacks from PayBB to RegBB.

    8. 1e (Promoted to top level question number 16): Refer Q16.

  6. Why specify REST API name once in Subsystem and do a similar step during EventType registration

    1. Attempted Answer: Event Type Schema is the request body schema where REST API defined in SubSystem is not related to message schema validation. If you publish a message that doesn't match with the schema, event is rejected.

  7. (4) Which API or configuration to use to subscribe to event type? We can't find these in published Service APIs.

    1. Answer: We have found the API in the demo.

    2. Follow up question 4b: Where can we find the IM-BB Postman Collection? There are several disconnects between shared Open API specifications and Postman collection and we would prefer to use the Postman collections in the demo video.

Tier 2 priority Questions

  1. (14) Where is the default helm chart which sets up all the components with sensible defaults for the GovStack usecase without a lot of steps embedded in CI?

    1. Attempted Answer: No such Helm chart exists at the moment.
      This repo (https://github.com/nortal/GovStack-IM-BB-SandBox-Deployment) consists of X-Road chart, X-Road SS chart and multiple charts for each separate PubSub components and couldn't find a parent chart combining all of these charts and configuring them with post-install K8s jobs.

  2. (3) If we agree on the exact room names and event type names with registration BB, then is there a need to do the optional discovery steps (list members, list rooms, list event types)? Or is the recommended way to find the room name and event type is by hitting the APIs instead of talking with other Building Blocks and waiting for their response?

    1. Outstanding. Reduced priority of the question to Tier 2.

Tier 3 priority ------

  1. Rooms UI cannot be accessed from CS UI and can be only accessed from Management UI. Is Management UI from CS or SS or both?

  2. 30:23 Which servers produces the Subscriber Mock pushURL API registered in subscriptions API?

  3. (12) How do we link an event type with an OpenAPI API which is part of a larger OpenAPI file?
    Outstanding

  4. Why create a fork of X-Road?

Questions solved by the Demo :-

  1. (2) a)Where can we find Room creation API / config steps?

    1. Attempted answer 2a: Based on the demo videos, major configurations are UI driven (or config driven) and there is NO plan to provide Room Creation APIs or Event Type / Message schema registration APIs. This essentially means we cannot write end to end integration tests and have to rely on already pre-configured continuously (throughout the year) accessible environments to make integration tests pass.

  2. From the perspective of X-Road both Management API and Messaging API will need to be registered as a subsystem and their API definition provided.

    1. So registration of Management and Messaging API was both from post-deployment configuration perspective and to provide a demo for implementer perspective.

  3. (5) Add subscription API looks like a room subscription API. Where is the event type ID? Is srcOperationId or dstOperationId the event type?

    1. Postman API shown in the demo solves this problem but we can't find the Postman collection.

  4. (6) Which API to use for publishing events?
    A: Postman API shown in the demo solves this problem but we can't find the Postman collection. 34:10

  5. (8) Shouldn't OCSP be setup and configured only by Sandbox team? If yes, how are things moving on this front?
    A: See demo video 11:58. If Sandbox moving to new Sandbox creates some sort of outage and we need to install IMBB stack in our cluster, all related questions will reopen.

  6. (9) Responder Cert - Shouldn't sandbox team create a certificate (by setting up CA, configuring OCSP) for Payment BB instead of us doing self signed certificate?
    A: See demo video 11:58 onwards.

  7. Previously Answered:
    (7) Check access rights - How to configure PayBB security server with the access rights for certain events? Assuming that this is not a responsibility of Central Server based on the diagram.
    Aleksander Response: Security Server has UI for assigning rights to services. You as Payment BB declare what applications can reach you. If you want to reach application X, then admin for X must allow this access.

  8. (10) OCSP Check requestor cert - Are there any steps or configurations that PayBB Security Server needs to do?
    Aleksander response: Not sure but I think that no.

  9. (11) Check document signature - Are there any steps or configurations that PayBB security server needs to do?Defining event type
    Aleksander Response: No

Q&A captured from the Demo Video

  1. Is TSA part of Central Server?

    1. TSA is part of Central Server Image.

  2. Are SubSystems services?

    1. Yes.

  3. What's a Member from GovStack perspective?

    1. Each BB is a Member.

  4. What's an anchor?

    1. Anchor is a secret for service accessibility.

  5. A room has multiple APIs so it can be considered as a set of APIs serving one use case.

    1. Example attempt :- G2P Batch Transfer Room can have batch transfer and channel transfer APIs.

  6. Is "Sandbox/org/client/test" the room name or test is the room name?
    Not sure. "Sandbox/org/client/test" is the room name. Patient Portal is a demo pre-existing room.

  • No labels