Medplum

Official

Overview Schema Related Servers Score Discussions

projectinit.test.ts•8.6 kB

// SPDX-FileCopyrightText: Copyright Orangebot, Inc. and Medplum contributors // SPDX-License-Identifier: Apache-2.0 import type { WithId } from '@medplum/core'; import { ContentType, createReference, isUUID } from '@medplum/core'; import type { Practitioner, Project } from '@medplum/fhirtypes'; import { randomUUID } from 'crypto'; import express from 'express'; import { pwnedPassword } from 'hibp'; import fetch from 'node-fetch'; import request from 'supertest'; import { initApp, shutdownApp } from '../../app'; import { createUser } from '../../auth/newuser'; import { loadTestConfig } from '../../config/loader'; import type { MedplumServerConfig } from '../../config/types'; import { initTestAuth, setupPwnedPasswordMock, setupRecaptchaMock, withTestContext } from '../../test.setup'; import { getSystemRepo } from '../repo'; jest.mock('hibp'); jest.mock('node-fetch'); const app = express(); describe('Project $init', () => { let config: MedplumServerConfig; beforeAll(async () => { config = await loadTestConfig(); await initApp(app, config); }); afterAll(async () => { await shutdownApp(); }); beforeEach(() => { (fetch as unknown as jest.Mock).mockClear(); (pwnedPassword as unknown as jest.Mock).mockClear(); setupPwnedPasswordMock(pwnedPassword as unknown as jest.Mock, 0); setupRecaptchaMock(fetch as unknown as jest.Mock, true); }); test('Success', async () => { const superAdminAccessToken = await initTestAuth({ superAdmin: true }); const projectName = 'Test Init Project ' + randomUUID(); const owner = await createUser({ email: randomUUID() + '@example.com', password: 'iaudhbrglkjhabdfligubhaedrg', firstName: projectName, lastName: 'Admin', }); const res = await request(app) .post(`/fhir/R4/Project/$init`) .set('Authorization', 'Bearer ' + superAdminAccessToken) .set('Content-Type', ContentType.FHIR_JSON) .set('X-Medplum', 'extended') .send({ resourceType: 'Parameters', parameter: [ { name: 'name', valueString: projectName, }, { name: 'owner', valueReference: createReference(owner), }, ], }); expect(res.status).toBe(201); const project = res.body as WithId<Project>; expect(project.id).toBeDefined(); expect(isUUID(project.id)).toBe(true); expect(project.owner).toStrictEqual(createReference(owner)); }); test('Requires project name', async () => { const superAdminAccessToken = await initTestAuth({ superAdmin: true }); const owner = await createUser({ email: randomUUID() + '@example.com', password: 'iaudhbrglkjhabdfligubhaedrg', firstName: 'The', lastName: 'Admin', }); const res = await request(app) .post(`/fhir/R4/Project/$init`) .set('Authorization', 'Bearer ' + superAdminAccessToken) .set('Content-Type', ContentType.FHIR_JSON) .set('X-Medplum', 'extended') .send({ resourceType: 'Parameters', parameter: [ { name: 'owner', valueReference: createReference(owner), }, ], }); expect(res.status).toBe(400); }); test('Requires owner to be User', async () => { const superAdminClientToken = await initTestAuth({ superAdmin: true }); expect(superAdminClientToken).toBeDefined(); const doc = await withTestContext(() => getSystemRepo().createResource<Practitioner>({ resourceType: 'Practitioner' }) ); const projectName = 'Test Init Project ' + randomUUID(); const res = await request(app) .post(`/fhir/R4/Project/$init`) .set('Authorization', 'Bearer ' + superAdminClientToken) .set('Content-Type', ContentType.FHIR_JSON) .set('X-Medplum', 'extended') .send({ resourceType: 'Parameters', parameter: [ { name: 'name', valueString: projectName, }, { name: 'owner', valueReference: createReference(doc), }, ], }); expect(res.status).toBe(400); }); test('Requires server User', async () => { const accessToken = await initTestAuth(); const projectName = 'Test Init Project ' + randomUUID(); const owner = await createUser({ email: randomUUID() + '@example.com', password: 'iaudhbrglkjhabdfligubhaedrg', firstName: 'Other Project', lastName: 'Member', projectId: randomUUID(), }); const res = await request(app) .post(`/fhir/R4/Project/$init`) .set('Authorization', 'Bearer ' + accessToken) .set('Content-Type', ContentType.FHIR_JSON) .set('X-Medplum', 'extended') .send({ resourceType: 'Parameters', parameter: [ { name: 'name', valueString: projectName, }, { name: 'owner', valueReference: createReference(owner), }, ], }); expect(res.status).toBe(400); }); test('Looks up existing user by email', async () => { const accessToken = await initTestAuth(); const ownerEmail = randomUUID() + '@example.com'; const projectName = 'Test Init Project ' + randomUUID(); const owner = await createUser({ email: ownerEmail, password: 'iaudhbrglkjhabdfligubhaedrg', firstName: 'Server', lastName: 'User', }); const res = await request(app) .post(`/fhir/R4/Project/$init`) .set('Authorization', 'Bearer ' + accessToken) .set('Content-Type', ContentType.FHIR_JSON) .set('X-Medplum', 'extended') .send({ resourceType: 'Parameters', parameter: [ { name: 'name', valueString: projectName, }, { name: 'ownerEmail', valueString: ownerEmail, }, ], }); expect(res.status).toBe(201); const project = res.body as Project; expect(project.owner).toStrictEqual(createReference(owner)); }); test('Creates new owner User from email', async () => { const accessToken = await initTestAuth(); const ownerEmail = randomUUID() + '@example.com'; const projectName = 'Test Init Project ' + randomUUID(); const res = await request(app) .post(`/fhir/R4/Project/$init`) .set('Authorization', 'Bearer ' + accessToken) .set('Content-Type', ContentType.FHIR_JSON) .set('X-Medplum', 'extended') .send({ resourceType: 'Parameters', parameter: [ { name: 'name', valueString: projectName, }, { name: 'ownerEmail', valueString: ownerEmail, }, ], }); expect(res.status).toBe(201); }); test('Defaults to no owner if unspecified', async () => { const accessToken = await initTestAuth(); const projectName = 'Test Init Project ' + randomUUID(); const res = await request(app) .post(`/fhir/R4/Project/$init`) .set('Authorization', 'Bearer ' + accessToken) .set('Content-Type', ContentType.FHIR_JSON) .set('X-Medplum', 'extended') .send({ resourceType: 'Parameters', parameter: [ { name: 'name', valueString: projectName, }, ], }); expect(res.status).toBe(201); const project = res.body as Project; expect(project.owner).toBeUndefined(); }); test('Specify defaultProjectSystemSetting', async () => { const originalDefaultProjectSystemSetting = config.defaultProjectSystemSetting; config.defaultProjectSystemSetting = [{ name: 'searchTokenColumns', valueBoolean: true }]; const accessToken = await initTestAuth(); const projectName = 'Test Init Project ' + randomUUID(); const res = await request(app) .post(`/fhir/R4/Project/$init`) .set('Authorization', 'Bearer ' + accessToken) .set('Content-Type', ContentType.FHIR_JSON) .set('X-Medplum', 'extended') .send({ resourceType: 'Parameters', parameter: [ { name: 'name', valueString: projectName, }, ], }); expect(res.status).toBe(201); const project = res.body as Project; expect(project.owner).toBeUndefined(); expect(project.systemSetting).toStrictEqual(config.defaultProjectSystemSetting); config.defaultProjectSystemSetting = originalDefaultProjectSystemSetting; }); });

Latest Blog Posts

What Is Context Bloat in MCP?
By Om-Shree-0709 on December 16, 2025.
mcp
Context Bloat
MCP Moves to the Linux Foundation: Neutral Stewardship for Agentic Infrastructure
By Om-Shree-0709 on December 15, 2025.
mcp
anthropic
Linux Foundation
Code Execution with MCP: Architecting Agentic Efficiency
By Om-Shree-0709 on December 14, 2025.
mcp
Token bloat

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/medplum/medplum'

If you have feedback or need assistance with the MCP directory API, please join our Discord server