...
| Code Block |
|---|
table.uuid('id').primary();
table.uuid('formVersionIdformId').references('id').inTable('form_version').notNullable().index();
table.string('namesubscribeEvent');
table.string('descriptionendpointUrl');
table.string('subscribeEvent'.notNullable();
table.string('endPointUrlendpointToken').notNullable();
table.string('endPointTokenkey').notNullable(); |
| Code Block |
|---|
id | formVersionId | |
...
subscribeEvent |
...
| endPointUrl |
...
|
...
| |
...
endPointToken |
...
| |
...
Key | createdBy | createdAt | updatedBy | updatedAt --------------------------------------+--------------------------------------+-----------------+---------------------------------------+-----------------+-----------------------------------+---------------+-------------------+-------------------------------+-----------+------------------------------- 05b52fd1-4c50-4b79-9099-a2cf87b34a8a | cbb49343-52be-4353-9db9-948a9b4a7d95 | |
...
|
...
|
...
form |
...
_submission | https://reqbin.com/echo/post/json | AbCdEf123456 | Authorization | 999-dev-seed-data | 2023-06-21 11:02:12.621903-07 | | 2023-06-21 11:02:12.621903-07 |
...
STRA - Thoughts:
I assume that STRA has been done on the API endpoints already
Passing sensitive data through a web restful request may not be necisarry if we just send the notification event soley with the id of the form submission. That way the endpoint would be notified only that an event occurred and then call back to the CHEFS API to retrieve the data.
I am open to discussing this further or creating STRA modifications on the GRANT system if we needed it for the entire form submission data to be passed. Each program area would most likely have it’s own sensitivity needs for what personal information is being passed.
New update to the Form Settings:
...