Medplum

Official

Overview Schema Related Servers Score Discussions

routes.ts•3.16 kB

// SPDX-FileCopyrightText: Copyright Orangebot, Inc. and Medplum contributors // SPDX-License-Identifier: Apache-2.0 import { badRequest, getStatus, isReference, normalizeErrorString, normalizeOperationOutcome, OperationOutcomeError, } from '@medplum/core'; import type { User } from '@medplum/fhirtypes'; import type { NextFunction, Request, RequestHandler, Response } from 'express'; import { Router } from 'express'; import { verifyProjectAdmin } from '../admin/utils'; import { getAuthenticatedContext } from '../context'; import { authenticateRequest } from '../oauth/middleware'; import { createScimUser, deleteScimUser, patchScimUser, readScimUser, searchScimUsers, updateScimUser } from './utils'; // SCIM // http://www.simplecloud.info/ export const scimRouter = Router(); scimRouter.use(authenticateRequest); scimRouter.use(verifyProjectAdmin); scimRouter.get( '/Users', scimWrap(async (req: Request, res: Response) => { const ctx = getAuthenticatedContext(); const result = await searchScimUsers(ctx.project, req.query as Record<string, string>); res.status(200).json(result); }) ); scimRouter.post( '/Users', scimWrap(async (req: Request, res: Response) => { const ctx = getAuthenticatedContext(); if (!isReference<User>(ctx.login.user, 'User')) { throw new OperationOutcomeError(badRequest('Disallowed login user type')); } const result = await createScimUser(ctx.login.user, ctx.project, req.body); res.status(201).json(result); }) ); scimRouter.get( '/Users/:id', scimWrap(async (req: Request, res: Response) => { const ctx = getAuthenticatedContext(); const result = await readScimUser(ctx.project, req.params.id); res.status(200).json(result); }) ); scimRouter.put( '/Users/:id', scimWrap(async (req: Request, res: Response) => { const ctx = getAuthenticatedContext(); const result = await updateScimUser(ctx.project, req.body); res.status(200).json(result); }) ); scimRouter.patch( '/Users/:id', scimWrap(async (req: Request, res: Response) => { const ctx = getAuthenticatedContext(); const result = await patchScimUser(ctx.project, req.params.id, req.body); res.status(200).json(result); }) ); scimRouter.delete( '/Users/:id', scimWrap(async (req: Request, res: Response) => { const ctx = getAuthenticatedContext(); await deleteScimUser(ctx.project, req.params.id); res.sendStatus(204); }) ); function scimWrap(callback: (req: Request, res: Response, next: NextFunction) => Promise<any>): RequestHandler { return function (req: Request, res: Response, next: NextFunction): void { callback(req, res, next).catch((err) => { sendScimError(res, err); next(); }); }; } function sendScimError(res: Response, err: unknown): void { const outcome = normalizeOperationOutcome(err); // SCIM 2.0 error response // See: https://datatracker.ietf.org/doc/html/rfc7644#section-3.12 res.status(getStatus(outcome)).json({ schemas: ['urn:ietf:params:scim:api:messages:2.0:Error'], status: getStatus(outcome).toString(), detail: normalizeErrorString(outcome), }); }

Latest Blog Posts

What Is Context Bloat in MCP?
By Om-Shree-0709 on December 16, 2025.
mcp
Context Bloat
MCP Moves to the Linux Foundation: Neutral Stewardship for Agentic Infrastructure
By Om-Shree-0709 on December 15, 2025.
mcp
anthropic
Linux Foundation
Code Execution with MCP: Architecting Agentic Efficiency
By Om-Shree-0709 on December 14, 2025.
mcp
Token bloat

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/medplum/medplum'

If you have feedback or need assistance with the MCP directory API, please join our Discord server