Ticket #96 : Support WS-HumanTask in CMMN

Author: habarthierry-hue

CaseManagement.sln

@@ -31,7 +31,7 @@ Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "CaseManagement.CMMN.SqlServ
 EndProject
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "01. Apis", "01. Apis", "{E33157EC-243C-4EA0-A60B-57F2C248CE53}"
 EndProject
-Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "01. CaseManagement", "01. CaseManagement", "{7452122A-3758-4AFD-BBC0-B3C576D12D80}"
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "01. CMMN", "01. CMMN", "{7452122A-3758-4AFD-BBC0-B3C576D12D80}"
 EndProject
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "04. Security", "04. Security", "{E5E1A1EB-90BC-4CB7-9893-75224AF27170}"
 EndProject

src/CaseManagement.BPMN.AspNetCore/Apis/ProcessInstancesController.cs

@@ -100,5 +100,25 @@ public async Task<IActionResult> MakeTransition(string id, [FromBody] MakeStateT
                 }, HttpStatusCode.NotFound, Request);
             }
         }
+
+        [HttpPost("{id}/complete/{eltId}")]
+        public async Task<IActionResult> Complete(string id, string eltId, [FromBody] MakeStateTransitionCommand stateTransitionCommand, CancellationToken token)
+        {
+            try
+            {
+                stateTransitionCommand.FlowNodeInstanceId = id;
+                stateTransitionCommand.FlowNodeElementInstanceId = eltId;
+                stateTransitionCommand.State = "COMPLETED";
+                await _mediator.Send(stateTransitionCommand, token);
+                return new OkResult();
+            }
+            catch (UnknownFlowInstanceException ex)
+            {
+                return this.ToError(new List<KeyValuePair<string, string>>
+                {
+                    new KeyValuePair<string, string>("bad_request", ex.Message)
+                }, HttpStatusCode.NotFound, Request);
+            }
+        }
     }
 }

src/CaseManagement.BPMN.Host/Startup.cs

@@ -63,6 +63,7 @@ public void ConfigureServices(IServiceCollection services)
             services.AddProcessJobServer(callbackServerOpts: opts =>
             {
                 opts.WSHumanTaskAPI = "http://localhost:60006";
+                opts.CallbackUrl = "http://localhost:60007/processinstances/{id}/complete/{eltId}";
             }).AddProcessFiles(files);
             services.AddSwaggerGen();
             services.Configure<ForwardedHeadersOptions>(options =>

src/CaseManagement.BPMN.SqlServer.Host/Startup.cs

@@ -73,6 +73,7 @@ public void ConfigureServices(IServiceCollection services)
             services.AddProcessJobServer(callbackServerOpts: opts =>
             {
                 opts.WSHumanTaskAPI = "http://localhost:60006";
+                opts.CallbackUrl = "http://localhost:60007/processinstances/{id}/complete/{eltId}";
             });
             services.AddBPMNStoreEF(opts =>
             {

src/CaseManagement.BPMN/BPMNServerOptions.cs

@@ -58,5 +58,6 @@ public BPMNServerOptions()
         public string ClientId { get; set; }
         public string ClientSecret { get; set; }
         public string OAuthTokenEndpoint { get; set; }
+        public string CallbackUrl { get; set; }
     }
 }

src/CaseManagement.BPMN/ProcessInstance/Processors/Activities/Handlers/WsHumanTaskHandler.cs

@@ -41,8 +41,6 @@ public async Task<ICollection<MessageToken>> Execute(BPMNExecutionContext execut
                 {
                     var operationParameters = new JObject
                     {
-                        { "flowNodeInstanceId", executionContext.Instance.AggregateId },
-                        { "flowNodeElementInstanceId", pointer.InstanceFlowNodeId },
                         { "nameIdentifier", executionContext.Instance.NameIdentifier }
                     };
                     var ctx = new ConditionalExpressionContext(pointer.Incoming);
@@ -60,6 +58,10 @@ public async Task<ICollection<MessageToken>> Execute(BPMNExecutionContext execut
                         }
                     }
 
+                    var jArr = new JArray();
+                    var link = _options.CallbackUrl.Replace("{id}", executionContext.Instance.AggregateId);
+                    link = link.Replace("{eltId}", pointer.InstanceFlowNodeId);
+                    jArr.Add(link);
                     var tokenResponse = await httpClient.RequestClientCredentialsTokenAsync(new ClientCredentialsTokenRequest
                     {
                         Address = _options.OAuthTokenEndpoint,
@@ -75,7 +77,8 @@ public async Task<ICollection<MessageToken>> Execute(BPMNExecutionContext execut
                     var obj = new JObject
                     {
                         { "humanTaskName", userTask.HumanTaskName },
-                        { "operationParameters", operationParameters }
+                        { "operationParameters", operationParameters },
+                        { "callbackUrls",  jArr }
                     };
                     var content = new StringContent(obj.ToString(), Encoding.UTF8, "application/json");
                     var request = new HttpRequestMessage

src/CaseManagement.CMMN.AspNetCore/Apis/CasePlanInstancesController.cs

@@ -10,6 +10,7 @@
 using System;
 using System.Collections.Generic;
 using System.Net;
+using System.Security.Claims;
 using System.Threading;
 using System.Threading.Tasks;
 
@@ -54,6 +55,8 @@ public async Task<IActionResult> Create([FromBody] CreateCaseInstanceCommand cre
         {
             try
             {
+                var nameIdentifier = User.GetClaims().GetUserNameIdentifier();
+                createCaseInstance.NameIdentifier = nameIdentifier;
                 var result = await _mediator.Send(createCaseInstance, token);
                 return new OkObjectResult(result);
             }
@@ -286,13 +289,15 @@ public async Task<IActionResult> Resume(string id, string elt, CancellationToken
             }
         }
 
-        [HttpGet("{id}/complete/{elt}")]
+        [HttpPost("{id}/complete/{elt}")]
         [Authorize("complete_caseplaninstance")]
-        public async Task<IActionResult> Complete(string id, string elt, CancellationToken token)
+        public async Task<IActionResult> Complete(string id, string elt, [FromBody] CompleteCommand command, CancellationToken token)
         {
             try
             {
-                await _mediator.Send(new CompleteCommand(id, elt), token);
+                command.CaseInstanceId = id;
+                command.CaseInstanceElementId = elt;
+                await _mediator.Send(command, token);
                 return new OkResult();
             }
             catch (UnknownCasePlanInstanceException)

src/CaseManagement.CMMN.Host/CaseManagement.CMMN.Host.csproj

@@ -17,6 +17,12 @@
     <ProjectReference Include="..\CaseManagement.CMMN.AspNetCore\CaseManagement.CMMN.AspNetCore.csproj" />
   </ItemGroup>
   <ItemGroup>
+    <None Update="Cmmns\claimCase.cmmn">
+      <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
+    </None>
+    <None Update="oauth_puk.txt">
+      <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
+    </None>
     <None Update="openid_puk.txt">
       <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
     </None>

src/CaseManagement.CMMN.Host/Cmmns/claimCase.cmmn

@@ -0,0 +1,33 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<cmmn:definitions xmlns:dc="http://www.omg.org/spec/CMMN/20151109/DC" xmlns:cmmndi="http://www.omg.org/spec/CMMN/20151109/CMMNDI" xmlns:cmmn="http://www.omg.org/spec/CMMN/20151109/MODEL" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:cmg="https://github.com/simpleidserver/CaseManagement" id="Definitions_0m2br72" targetNamespace="http://bpmn.io/schema/cmmn" exporter="cmmn-js (https://demo.bpmn.io/cmmn)" exporterVersion="0.19.2">
+<cmmn:case id="Case_0t7z7vp">
+  <cmmn:casePlanModel id="CasePlanModel_3394a428-486a-43f5-b491-7b31e417e0db" name="Claim case">
+    <cmmn:planItem id="PlanItem_0zl4ucq" name="Receive claim" definitionRef="Stage_1elok9z" />
+    <cmmn:stage id="Stage_1elok9z" name="Receive claim">
+      <cmmn:planItem id="PlanItem_1dphpiz" name="Capture claim details" definitionRef="HumanTask_1oeedji" />
+      <cmmn:humanTask id="HumanTask_1oeedji" cmg:formId="captureClaimDetails" cmg:implementation="##WsHumanTask">
+        <cmmn:extensionElements>
+          <cmg:parameters />
+        </cmmn:extensionElements>
+      </cmmn:humanTask>
+    </cmmn:stage>
+  </cmmn:casePlanModel>
+</cmmn:case>
+<cmmndi:CMMNDI>
+  <cmmndi:CMMNDiagram id="CMMNDiagram_1">
+    <cmmndi:Size width="500" height="500" />
+    <cmmndi:CMMNShape id="DI_CasePlanModel_3394a428-486a-43f5-b491-7b31e417e0db" cmmnElementRef="CasePlanModel_3394a428-486a-43f5-b491-7b31e417e0db">
+      <dc:Bounds x="155" y="99" width="537" height="209" />
+      <cmmndi:CMMNLabel />
+    </cmmndi:CMMNShape>
+    <cmmndi:CMMNShape id="PlanItem_1qbrgp3_di" cmmnElementRef="PlanItem_1dphpiz">
+      <dc:Bounds x="200" y="166" width="100" height="80" />
+      <cmmndi:CMMNLabel />
+    </cmmndi:CMMNShape>
+    <cmmndi:CMMNShape id="PlanItem_0zl4ucq_di" cmmnElementRef="PlanItem_0zl4ucq">
+      <dc:Bounds x="175" y="136" width="317" height="144" />
+      <cmmndi:CMMNLabel />
+    </cmmndi:CMMNShape>
+  </cmmndi:CMMNDiagram>
+</cmmndi:CMMNDI>
+</cmmn:definitions>

src/CaseManagement.CMMN.Host/Startup.cs

@@ -31,6 +31,7 @@ public Startup(IHostingEnvironment env, IConfiguration configuration)
 
         public void ConfigureServices(IServiceCollection services)
         {
+            var files = Directory.EnumerateFiles(Path.Combine(Directory.GetCurrentDirectory(), "Cmmns"), "*.cmmn").ToList();
             services.AddMvc(opts => opts.EnableEndpointRouting = false).AddNewtonsoftJson();
             services.AddAuthentication(options =>
             {
@@ -53,7 +54,23 @@ public void ConfigureServices(IServiceCollection services)
                         "http://simpleidserver.northeurope.cloudapp.azure.com/openid"
                     }
                 };
-            });
+            })
+            .AddJwtBearer("OAuthScheme", options =>
+            {
+                options.TokenValidationParameters = new TokenValidationParameters
+                {
+                    IssuerSigningKey = ExtractKey("oauth_puk.txt"),
+                    ValidAudiences = new List<string>
+                    {
+                        "humanTaskClient"
+                    },
+                    ValidIssuers = new List<string>
+                    {
+                        "http://localhost:60001",
+                        "http://simpleidserver.northeurope.cloudapp.azure.com/oauth"
+                    }
+                };
+            }); ;
             services.AddAuthorization(policy =>
             {
                 // Case file
@@ -73,7 +90,31 @@ public void ConfigureServices(IServiceCollection services)
                 policy.AddPolicy("resume_caseplaninstance", p => p.RequireAuthenticatedUser());
                 policy.AddPolicy("terminate_caseplaninstance", p => p.RequireAuthenticatedUser());
                 policy.AddPolicy("activate_caseplaninstance", p => p.RequireAuthenticatedUser());
-                policy.AddPolicy("complete_caseplaninstance", p => p.RequireAuthenticatedUser());
+                policy.AddPolicy("complete_caseplaninstance", p => 
+                {
+                    p.AddAuthenticationSchemes("OAuthScheme");
+                    p.RequireAssertion(_ =>
+                    {
+                        if (_.User == null || _.User.Claims == null  || !_.User.Claims.Any())
+                        {
+                            return false;
+                        }
+
+                        var cl = _.User.Claims.FirstOrDefault(_ => _.Type == "scope" && _.Value == "complete_humantask");
+                        if (cl != null)
+                        {
+                            return true;
+                        }
+
+                        cl = _.User.Claims.FirstOrDefault(_ => _.Type == "sub");
+                        if (cl != null)
+                        {
+                            return true;
+                        }
+
+                        return false;
+                    });
+                });
                 // Case plan
                 policy.AddPolicy("get_caseplan", p => p.RequireAuthenticatedUser());
                 // Case worker task
@@ -84,7 +125,11 @@ public void ConfigureServices(IServiceCollection services)
                 .AllowAnyHeader()));
             services.AddHostedService<CMMNJobServerHostedService>();
             services.AddCaseApi();
-            services.AddCaseJobServer();
+            services.AddCaseJobServer(callback: opt =>
+            {
+                opt.CallbackUrl = "http://localhost:60005/case-plan-instances/{id}/complete/{eltId}";
+                opt.WSHumanTaskAPI = "http://localhost:60006";
+            }).AddDefinitions(files);
             services.AddSwaggerGen();
             services.Configure<ForwardedHeadersOptions>(options =>
             {