Clovertech

https web server using java ws-server (RESTful or RAW)

Clovertech Forums Cloverleaf https web server using java ws-server (RESTful or RAW)

Tagged: 

  • Creator
    Topic
  • July 14, 2022 at 4:04 pm #119852
    Alisa Kennedy
    Participant

      Has anyone configured Cloverleaf to accept https RESTful or RAW from PaceMate or another vendor?  This will be our first inbound using https, so looking for tips and cautions from anyone who has this working in production.  We are on version 20.1 on a cloud server.  Thanks in advance.

    • Creator
      Topic
    Viewing 3 reply threads
    • Author
      Replies
      • October 30, 2023 at 10:23 am #120948
        Tim Zwieg
        Participant

          Alisa were you able to get this configured?  We have a vendor KeyCare that wants to send messages to Cloverleaf using https.  I am trying to determine what it will take to accept https incoming messages as well.

          • October 30, 2023 at 11:09 am #120949
            Alisa Kennedy
            Participant

              Hi Tim, I’m reaching out to my teammate, John M., who setup the https for us.  John  worked with our IT Security team, vendor keys/certs, etc. to successfully setup the connection.

            • October 30, 2023 at 1:10 pm #120950
              Paul Stein
              Participant

                I have been able to do this both for different data types such as XML used for IHE transactions(CCDs) and receiving HL7 over webservices in leiu of a vpn(which is very much preferred, especially if they don’t agree to use Secure Courier).

                We used the Java/WS Server.

                Can you  provide a little more info on what the vendor is asking to do?

            • October 30, 2023 at 1:54 pm #120951
              Tim Zwieg
              Participant

                Paul, thanks for responding.  At this point what little I know from this vendor is that they do not or cannot create a tcp connection over a vpn.  They want to send DFT messages to me via https, and have cloverleaf manipulate these messages.  I have created outbound https connections, just not inbound connections

                 

              • October 31, 2023 at 9:39 am #120955
                John Mercogliano
                Participant

                  Tim, I’ve tried to post multiple times about our setup but the forum is giving me an error and not sure why.  If this posts, send me a request to jxmercog@sentara.com and I’ll send you info.

                  John Mercogliano
                  Sentara Healthcare
                  Hampton Roads, VA

                • October 31, 2023 at 1:46 pm #120956
                  John Mercogliano
                  Participant

                    Tim,
                    I based my connection off the ws_more_samples box(https://usspvlclovertch2.infor.com/forums/topic/cl-receive-post-api/). I used the path_trxid_server connection as my template. I only had to make cosmetic changes(port, context, tls)

                    For our company we use redshield to monitor all inbound traffic. Also we have setup an Azure application gateway as the gatekeeper in the dmz so we did not have to have our cloverleaf serve visiable to the world.

                    The application gateway has our public IP/DNS and routes traffic to our internal cloverleaf server by the context path we assigned. We currently have 3 vendors using this webserver.

                    For security we use whitelisting of the vendors IP and we act as the ca and provide the vendors with a client certificate for mTls auth. Both are handled by redshield but can also be handled by the application gateway.

                    John Mercogliano
                    Sentara Healthcare
                    Hampton Roads, VA

                • Author
                  Replies
                Viewing 3 reply threads
                • You must be logged in to reply to this topic.