Click here to load reader

Sprint 158 Review / Sprint 159 Planning May 18 th – June 1 st 2015

  • View
    217

  • Download
    0

Embed Size (px)

Text of Sprint 158 Review / Sprint 159 Planning May 18 th – June 1 st 2015

  • Sprint 158 Review / Sprint 159 Planning May 18th June 1st 2015

  • Sprint Resource Pages For this sprint, visit: https://connectopensource.atlassian.net/wiki/display/NHINProgress/Sprint+158+Progress+SummaryFor next sprint, visit: https://connectopensource.atlassian.net/wiki/display/NHINProgress/Sprint+159+Progress+Summary

    For complete information on the CONNECT 4.4.1 release visit: https://connectopensource.atlassian.net/wiki/display/CONNECT4/4.4.X+Patches

    *

  • Sprint 158 Summary - Cumulative Flow*

  • Sprint 158 Summary Sprint StatisticsPoints committed = 21Initial points committed were 203 tickets added to Sprint 158 for 31 ticket was removed from Sprint 158 for 2Points remaining (unclosed) at end of sprint = 4Points completed in sprint (velocity) = 17*

  • Sprint 158 - Proposed ThemesDevelopment / Community Support X12 Auditing Development, Integration and TestingDevelopment cleanup and address any testing findingsComplete remaining testing both Batch & Real-timeSchedule demonstration to CMS & Complete DocumentationCloseout the Remaining Tasks Incorporating Automated Direct Testing in Regression Suite and CI processesExecute all Happy Path tests in an automated mannerResolve issues with automating negative test cases Complete Gateway property elements/attributes clean-upFinal clean-up of adapter propertiesUpdate documentationTechnical StoriesMigrate old Universal Client Code to Plugin Deploy CONNECT of WebLogic 12.1.3Address additional Fortify scan findings

    *

  • Sprint 158 - What We are Reporting TodayPartner and Community SupportPartner and Community Support CMS (4.2.1)CONN-1615 - Could not write attachment issue in CONNECT GatewayProvided initial analysis and asked follow up questions, awaiting response from CMS CONN-1603 - Deferred Response issue PolicyException (QA)Not able to recreate issue, suggested reconfigure server, awaiting verification of issue closure with CMS CONN-1587 - XDRAcknowledgement issue - added error in descriptionRequested additional information, awaiting response from CMSeHealth ExchangeCONN-1611 - Validate compatibility after new participant sub-nodes exposed on the EHEX validation UDDIFollow up with MedVA to get patient information for testing

    *

  • Sprint 158 - What We are Reporting TodayPartner and Community SupportPartner and Community Support DoD (4.3.1)CONN-1616 - Problems getting FIPS DB configured with CONNECT 4.3.1 on JBOSS EAP 6.3Performed analysis and determined issue with store type PKCS11, targeted fix for Sprint 159 CONN-1610 - Configuring CONNECT 4.4 datasource in JBoss Provided configuration information and closed ticketCONN-1609 - receiving NULL pointer exception on PD response due to a mission Conditions element Determined that the Conditions element wasnt a required element and shouldnt create an exception Required a code fix, implemented in Sprint 158

    *

  • Sprint 158 - What We are Reporting TodayPartner and Community SupportPartner and Community Support VA (4.2.2.2)CONN-1613 - VA Adapter platform upgrade issue from WebLogic 10.3.5 to 12.1.3Working with VA implementation team on issueGateway is working with 12.1.3 without issues CONN-1607 - Problem writing SAAJ model to streamAnalyzed information sent and requested more logsAwaiting response from VACONN-1606 - Question about SAML header content requirements concerning Resource ID and LivingSubjectID element Provided guidance about how the gateway handles these and associated use cases currently in production Awaiting confirmation from VA to close ticket CONN-1604 - Operational timeouts for PD and QDResponded back with timeout information, awaiting confirmation to close ticket

    *

  • Sprint 158 - What We are Reporting TodayPartner and Community SupportPartner and Community Support CMS and HIH SAML Assertion Issue (NIST Testing)Verified CONNECT is sending a compliant message per the specificationWorking with CMS on workflow and how Assertion ids are being sent over to the gateway from the adapterSSA (4.3.2) CONN-1602 - The Purpose Of Use HL7 Attributes Scoping IssueIssue seems to occur when exchanging with .NET implementations which differs from current EHEX positionPerformed additional research on whether supported versions of CONNECT are able to accept both qualified and unqualified SAML role and PurposeOfUse attributesMonitoring issue with Healtheway and Spec Factory

    *

  • Sprint 158 - What We are Reporting TodayPartner and Community SupportPartner and Community Support Continued community support for other adopters installing CONNECT and beginning their testing and validationThe two organizations implementing 4.4.1 passed eHealth Exchange certification testing without any gateway issuesCONN-1614 Direct Outbound Message Monitoring Issue when sending messages for SOAP edge protocolCONN-1612 - Worked with community member on JBoss installationCONN-1599 Document Retrieve issues between MedVA and VA, working with MedVA on possible network causeForums - Supporting community member with Direct configuration and setupForums - Null Pointer Exception when PD response get the sender's home community id from the optional element

    *

  • Sprint 158 - What We are Reporting TodayPartner and Community SupportCurrent Partner Supported Platforms

    *

    AgencyCONNECT VersionJVMApplication ServerServer PlatformDoD4.3.11.7WebSphere 8.5.5Red Hat Linux version 6.5 - 64 bitVA4.2.2.21.7WebLogic 12.1.1Red Hat Linux version 6.1 - 64 bitCMS4.2.11.7WebSphere 8.5Solaris Sparc 10 and x86SSA4.3.21.7WebSphere 8.5Sun Solaris Sparc 10

  • Sprint 158 - What We are Reporting TodayPartner and Community SupportCONNECT Critical Infrastructure Updates for post 4.5Java 7/JDK 1.7 Upgrade (Remove support for Java 6/ JDK 1.6)Recommendation from the DoD SCQC team multiple vulnerabilities are found in dependency scansSignificant performance improvements in newer releaseReduction in the cost of feature development not developing for two versions of Java to ensure functionality works and is supported by the less robust capabilities of Java 6/JDK 1.6 as well as Java 7/JDK 1.7Java 6/ JDK 1.6 is out of date, released almost 8 years ago (Release date: 2007-05-07) support is becoming increasingly difficultThis should be a straightforward matter as most the of the federal partners have upgraded their app servers to versions that support Java 7/JDK 1.7 Through the app server support of Java EE 6Only new development of features post 4.5 will be developed using Java 7/JDK 1.7

    *

  • Sprint 158 - What We are Reporting TodayPartner and Community SupportCONNECT Critical Infrastructure Updates for post 4.5 Apache CXF 3.0.4 UpgradeSecurity vulnerabilities and bugs are found in the current CXF version 2.7.3 used by CONNECT, these are addressed in version 3.0.4 The security and dependency scans have documented these issuesIncreased support for a wider variety of industry validation toolsSupport for additional use cases such as the latest Java Restful implementation (JAX-RS 2.0)Support for latest Java Bean Validation 1.1This upgrade will be minimally invasive, CXF is packaged as part of CONNECT and wont affect other applications in the partners environment The upgraded version will only be packaged with post 4.5 versions of CONNECT

    *

  • Sprint 158 - What We are Reporting TodayPost Release 4.4 Cleanup Technical User Stories Direct Testing Automation Update100% Positive Direct test cases automated and added to regression suite running nightly Includes inbound and outboundDirect configuration for Jenkins JBoss now polls the mail server Direct key-stores and database scripts to support test case automation have been created40% of Negative Direct test cases automated and added to the regression suite running nightlyCompleted generic and Trust AnchorsStill working to address some issues with automating test cases for key stores and trust bundles

    *

  • Sprint 158 - What We are Reporting TodayTechnical Improvements Technical User Stories Completed set up of a WebLogic 12.1.3 testing instanceInstalled CONNECT with the latest WebLogic version 12.1.3 in test environmentRan validation suite and ensure it all tests passedRan Direct testing (one inbound and one outbound) and ensured test cases passedRan AdminGUI smoke tests (ping utility, direct testing, add trust bundle, add anchor, browsing the pages)Documented environment information on wiki https://connectopensource.atlassian.net/wiki/x/mYHBMitigated "XML External Entity Injection" Fortify FindingFixed "Unreleased Resource: Streams" Fortify Finding, resolved and not showing up on subsequent scansUpdated justification at: 4.5 Fortify Documentation

    *

  • Sprint 158 - What We are Reporting TodayTechnical Improvements Technical User Stories Designed and developed Timeout by Transaction featureDesign approach information on wiki Design Approach Timeout by TransactionAdded assertion element to entity request and edited decorator to check configurable valueTested three different scenariosIf element has a positive value, timeouts at roughly that response timeOptional transactionTimeout element not included defaults to gateway.properties settingIf element has a value less than or equal to zero defaults to gateway.properties settingContinued with testing on other application serversCreate a new test case wiki page Transaction Timeout Testing

    *

  • Sprint 158 - What We are Reporting TodayX12 AuditingX12 CAQH CORE Auditing SupportAudit logging functionality for X12 Real-time transactionsAdded additional required elements to be logged Performed Pass-through X12 Audit Logging code cleanupCompleted X12 Batch Audit Logging for both response and request messagesDraft version of the NwHIN CAQH CORE X12 Document Submission Specification Available Include