ProjectMembership created with invalid user refere...
# supporth
hnoj.
11/01/2023, 8:54 PMHi, I'm trying to follow the guide for token exchange and am having some issues. As I was troubleshooting, I came to the aha moment -- I had no set an external id on the User or ProjectMembership.
So I go to check my user resource, however my instance seemingly has no users despite them being referenced by the project membership. This is where I am stumped.
- All project members were invited using the "invite new user" button in app.medplum.com , so I expect all necessary resources are created
- When I look at a ProjectMembership, I do see all the expected memberships, and I can see references to users uuids
- However, when i try to edit that membership in the UI, there is no user set so I cannot save any changes. (see attached screenshot)
- My /fhir/R4/User/ returns no results
- https://app.medplum.com/User shows no users
I tried inviting a new user but have the same issue. To try and hack my way around this, I also try to create a user resource directly in app.medplum.com but get a 403 returned.
Reading through the docs and the code @ server/src/admin/invite.ts , I'm not seeing anything obvious. Any ideas?
r
rahul1
11/02/2023, 5:15 AMHI @hnoj. , thanks for the thoughtful question.
So one important clarification:
- The User is a protected, system-level resource. This means that it won't be visible in the Medplum App. However, if you go to the JSON tab, you should see that the User property is set
- I believe that this fact is causing a bad interaction with our UI, causing that field to appear blank
rahul1
11/02/2023, 5:45 AMIt seems like this is a bug in our referential integrity logic. Because the User resource is hidden, the validation check on
ProjectMembership.userrahul1
11/02/2023, 5:45 AMI've filed a GH issue above
rahul1
11/02/2023, 5:46 AMUnfortunately, the workaround for now would be to disable "Check references on write", edit the external id, and then re-enavle
rahul1
11/02/2023, 5:48 AM@hnoj. I'd also love to understand your use case a bit more. Most of our customers don't opt into the reference checks, and I'd love to understand more about the requirements of your application
h
hnoj.
11/02/2023, 7:16 PM@rahul1 it looks like the same issue blocks your suggested workaround. I cannot edit the project to disable
checkReferencesOnWriteownerhnoj.
11/02/2023, 7:24 PMHappy to discuss in depth more, but the TLDR of use case was
- We are evaluating medplum, and started with translating a set of our data to fhir and syncing it to medplum. We wanted some guarantee of correctness to avoid "garbage in, garbage out"
- From our POV (w a nascent understanding of fhir best practives), A reference like
Practicioner/123r
rahul1
11/02/2023, 8:20 PMYes I do believe this is the right long-term choice, and I'm sorry about the rough edges you are encountering thusfar. I'll try to get an update on that ticket and report back to you
rahul1
11/02/2023, 8:20 PMIn the short term, I'd love to unblock you. I can use my own SuperAdmin priveledges to disable
checkReferencesOnWriteh
hnoj.
11/02/2023, 8:49 PMI saw https://github.com/medplum/medplum/pull/3207 was merged (and deployed? Idk how to check that, but it seems to have been deployed) and I can edit these fields in the UI now 👍
So I don't think I need your manual intervention now, but I really appreciate the offer! Big thanks to you & the team, its been impressive to see how fast y'all are at making these changes 🎉
r
rahul1
11/02/2023, 10:35 PMOh wow! I've been in meetings and the team fixed it while i wasn't looking. Awesome!
rahul1
11/02/2023, 10:39 PMThank you @cody
122 Views