Medplum

Official

Overview Schema Related Servers Score Discussions

config.ts•2.71 kB

// SPDX-FileCopyrightText: Copyright Orangebot, Inc. and Medplum contributors // SPDX-License-Identifier: Apache-2.0 import { GetSecretValueCommand, SecretsManagerClient } from '@aws-sdk/client-secrets-manager'; import type { Parameter } from '@aws-sdk/client-ssm'; import { GetParametersByPathCommand, SSMClient } from '@aws-sdk/client-ssm'; import { splitN } from '@medplum/core'; import type { MedplumServerConfig } from '../../config/types'; import { setValue } from '../../config/utils'; const DEFAULT_AWS_REGION = 'us-east-1'; /** * Loads configuration settings from AWS SSM Parameter Store. * @param path - The AWS SSM Parameter Store path prefix. * @returns The loaded configuration. */ export async function loadAwsConfig(path: string): Promise<MedplumServerConfig> { let region = DEFAULT_AWS_REGION; if (path.includes(':')) { [region, path] = splitN(path, ':', 2); } const client = new SSMClient({ region }); const config: Record<string, any> = {}; const parameters = [] as Parameter[]; let nextToken: string | undefined; do { const response = await client.send( new GetParametersByPathCommand({ Path: path, NextToken: nextToken, WithDecryption: true, }) ); if (response.Parameters) { parameters.push(...response.Parameters); } nextToken = response.NextToken; } while (nextToken); // Load special AWS Secrets Manager secrets first for (const param of parameters) { const key = (param.Name as string).replace(path, ''); const value = param.Value as string; if (key === 'DatabaseSecrets') { config['database'] = await loadAwsSecrets(region, value); } else if (key === 'ReaderDatabaseSecrets') { config['readonlyDatabase'] = await loadAwsSecrets(region, value); } else if (key === 'RedisSecrets') { config['redis'] = await loadAwsSecrets(region, value); } } // Then load other parameters, which may override the secrets for (const param of parameters) { const key = (param.Name as string).replace(path, ''); const value = param.Value as string; setValue(config, key, value); } return config as MedplumServerConfig; } /** * Returns the AWS Database Secret data as a JSON map. * @param region - The AWS region. * @param secretId - Secret ARN * @returns The secret data as a JSON map. */ async function loadAwsSecrets(region: string, secretId: string): Promise<Record<string, any> | undefined> { const client = new SecretsManagerClient({ region }); const result = await client.send(new GetSecretValueCommand({ SecretId: secretId })); if (!result.SecretString) { return undefined; } return JSON.parse(result.SecretString); }

Latest Blog Posts

What Is Context Bloat in MCP?
By Om-Shree-0709 on December 16, 2025.
mcp
Context Bloat
MCP Moves to the Linux Foundation: Neutral Stewardship for Agentic Infrastructure
By Om-Shree-0709 on December 15, 2025.
mcp
anthropic
Linux Foundation
Code Execution with MCP: Architecting Agentic Efficiency
By Om-Shree-0709 on December 14, 2025.
mcp
Token bloat

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/medplum/medplum'

If you have feedback or need assistance with the MCP directory API, please join our Discord server