Skip to content

Ops tools #4783

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 27 commits into from
Oct 3, 2025
Merged

Ops tools #4783

merged 27 commits into from
Oct 3, 2025

Conversation

alistair-white-horne-tng
Copy link
Contributor

@alistair-white-horne-tng alistair-white-horne-tng commented Oct 2, 2025
edited
Loading

This branch is the combination of all of the ops tools' branches, to allow them to be merged into next simultaneously:

MAV-1686

Post-release tasks

  • Switch on feature flag ops_tools

@alistair-white-horne-tng alistair-white-horne-tng added this to the v4.6.0 milestone Oct 2, 2025
@alistair-white-horne-tng alistair-white-horne-tng requested a review from a team as a code owner October 2, 2025 16:58
@alistair-white-horne-tng alistair-white-horne-tng added operations Improving live support feature New functionality labels Oct 2, 2025
github-advanced-security[bot]
github-advanced-security bot found potential problems Oct 2, 2025
View reviewed changes
misaka
misaka approved these changes Oct 2, 2025
View reviewed changes
Copy link
Contributor

@misaka misaka left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

le'sgo!!!

murugapl and others added 23 commits October 3, 2025 15:52
@murugapl @benilovj
Create TimelineRecords module for patient event history visualisation
87cd28a 
Introduces a TimelineRecords class that collects and displays a chronological
view of patient-related events across multiple record types. Features configurable
detail display, audit trail integration, and privacy controls to ensure no PII
is exposed.
@murugapl @benilovj
Add timeline UI with configurable filters for patient events
f071224 
Implements a front-end interface for the TimelineRecords module with:
- Interactive filters for event types and detail levels
- Tabular timeline view with chronological grouping
- Controller and views in the Inspect::Timeline namespace
- Routes restricted to test environments only
- Comparison view to analyze events between patients
@murugapl @benilovj
Update sample_patient function to return nil when no comparison optio…
2abcb60 
…n is selected

Changed the default behavior of the sample_patient function to return nil when
no comparison option is provided, instead of raising an error.
Added a meaningful error message when an invalid comparison option is chosen.
@murugapl @benilovj
Add ability to show PII related information on the timeline
d45fb48 
A show_pii flag allows optional exclusion of personally-identifiable
information from the event details and audited changes relating to
a patient. This has been set to false by default in the controller,
but can be toggled on or off with a check box in the UI.
@murugapl @benilovj
Refactor timeline config
e9251bd 
Refactor details and audits config for TimelineRecords to make it mroe readable. The PII fields are separated and merged into the base fields to created "with_pii" variables
@alistair-white-horne-tng @benilovj
Improve graph_records.rb
461af24
@alistair-white-horne-tng @benilovj
Update functional test
5f27ba7
@alistair-white-horne-tng @benilovj
Add controller, route and view for the frontend
c27461f
@alistair-white-horne-tng @benilovj
Create feature test
f3535b9 
This checks that the correct endpoints exist/are hidden in certain environments
@alistair-white-horne-tng @benilovj
Add toggle for show_pii mode in the UI
be8208c
@samcoy3 @benilovj
Adjust display fields for new data structure
ba217da 
The data structure has changed notably since this code was initially
written. This now matches the new data structure.
@murugapl @benilovj
Add support user type to User model
f2488b1 
Add a support fallback role to the User model to enable controlled
access to ops tools.
@benilovj
Limit access to ops tools to support users only
1791b40 
This prevents any user without a "support" role from visiting
the inspect endpoint. Support users have to belong to certain
NHSE ODS code in CIS2, an appropriate support workgroup and CIS2 roles,
which gives them the appropriate access. Activity codes are also checked.
Support users cannot access any of the other endpoints in the service.
They will be redirected to an operational support dashboard in these
cases.
@benilovj
Remove production constraint on ops endpoints
d938d22 
With CIS2 support user logins andd authentication, we no longer need to constrain
the rendering of ops pages to non-prod envs only.
@samcoy3 @benilovj
Add function to authenticate ops users with PII access
c6124a6
@samcoy3 @benilovj
Restrict PII access to eligible ops users
f728014
@samcoy3 @benilovj
Enforce timeline PII access controls on frontend
b9ffecf
@samcoy3 @benilovj
Enforce graph PII access controls on frontend
97c901c
@samcoy3 @benilovj
Add feature tests for support access to tools
d2489dd
@samcoy3 @benilovj
Fix tests after rebase
e99ec30
@murugapl @benilovj
Add access logging for PII mode in timeline and graphs
3828495 
- Add new enum values to AccessLogEntry: timeline/graphs controllers and show_pii action
@samcoy3 @benilovj
Add column to access log to store request details
1fb8181 
- Add new request_details column to AccessLogEntry
@samcoy3 @benilovj
Log request details for PII accesses in timeline
cd46718 
- Log fields accessed during a request which accessed PII
- Log whether audits were enabled
- Create an access log if a patient is being compared in the timeline
  view, only if the compared patient is valid.
samcoy3 and others added 3 commits October 3, 2025 15:52
@samcoy3 @benilovj
Log PII access for graph view
5582534 
- Log PII access for all patients whose PII is present in the graph
- Restrict what counts as PII (location information and vaccine batch information is not on its own sufficient)
- Log additional information about main target of request
- Do not display additional IDs in the graph if the type corresponding to the ID is not in traversal tree
@samcoy3 @benilovj
Add unit tests for PII access logging
b57c265 
- Adds tests for the graph and timeline view for auditing PII access
@alistair-white-horne-tng @benilovj
Add feature flag for ops tools
bb4be45 
This will allow us to switch the operational tools on/off.
This should let us get the code into production much sooner,
and potentially allow an extended testing period if required.
misaka
misaka reviewed Oct 3, 2025
View reviewed changes
@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Oct 3, 2025

Quality Gate Passed Quality Gate passed

Issues
2 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@benilovj benilovj enabled auto-merge October 3, 2025 16:37
@benilovj benilovj merged commit e0bc033 into next Oct 3, 2025
16 of 17 checks passed
@benilovj benilovj deleted the ops-tools branch October 3, 2025 16:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@benilovj benilovj benilovj left review comments

@misaka misaka misaka approved these changes

Assignees
No one assigned
Labels
feature New functionality operations Improving live support
Projects
None yet
Milestone
v4.6.0
Development

Successfully merging this pull request may close these issues.
5 participants
@alistair-white-horne-tng @misaka @benilovj @murugapl @samcoy3