OIM authentication with OHIM

From IHRIS Wiki

Introduction

To secure Openinfoman,OpenHIM should be installed on the server that Openinfoman is running and then create channels inside OpenHIM as described below

Install OpenHIM and configure Openinfoman channels by following below steps

  1. To install OpenHIM,run below commands <source lang="bash"> $ sudo add-apt-repository ppa:openhie/release $ sudo apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv EA312927 $ sudo echo 'deb http://repo.mongodb.org/apt/ubuntu trusty/mongodb-org/3.2 multiverse' | sudo tee /etc/apt/sources.list.d/mongodb-org-3.2.list $ sudo apt-get update $ sudo apt-get install openhim-core-js openhim-console </source> For detailed instructions,you may refer to http://openhim.readthedocs.io/en/latest/getting-started.html
  2. Open OpenHIM and create one client to be used with OpenInfoMan to access the channel which will be created in the next step. The link to create client can be found on the left side of OpenHIM.Fill below important fields
    • Client ID
    • Client Name
    • Add New Role
      • Type the role name and press enter
    • Basic Auth Password
  3. Click the link labeled 'Channel' located at the left side of OpenHIM to create a channel
    • Basic Info
      1. Give this channel a name
    • Request Matching
      1. Which URL patterns will match this channel?
        • fill this field with /CSD||/static
        • Remember to uncheck the check box labeled Auto-add regex delimiters
      2. Select private for the field "Is this channel publically accessible or should client authentication be required?"
      3. Which clients should be able to access this channel?
        • Select the client we created in the previous step
    • Routes
      • Click 'Add New Route' button and fill below fields
        1. Route Name
        2. Primary Route
          • Select True
        3. Status
          • Select Enabled
        4. Host
          • Put the IP address for which OpenInfoMan is running
        5. Port
          • 8984
        6. Route Path and Route Path Transoform
          • leave blank
        7. Basic Authentication
          • Fill in the password to be used when accessing this channel/Openinfoman
        8. Click 'Set Route' to save this route
      • Click the 'Save Changes' button to save this channel.

OpenInfoMan Installation

  • Install Openinfoman with below steps <source lang='bash'> $ sudo add-apt-repository ppa:openhie/release $ sudo apt-get update $ sudo apt-get install openinfoman </source> type 'https://localhost:5000' when asked for 'Base URL' (replace localhost with the public IP for which OpenInfoMan is running). This will make OpenInfoMan accessible with an address https://localhost:5000/CSD
  • Now disable port 8984 from public access and make it accessible through localhost only.

NB: Username and Password filled when creating client in OpenHIM is the one that will be used to login to OpenInfoMan