Skip to content

Commit

Permalink
daily dir and audit snapshot
Browse files Browse the repository at this point in the history
  • Loading branch information
christianpaquin committed Jun 27, 2024
1 parent 4fcaca5 commit 65da7de
Show file tree
Hide file tree
Showing 2 changed files with 82 additions and 109 deletions.
61 changes: 34 additions & 27 deletions logs/daily_audit.json
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"directory": "https://raw.githubusercontent.com/the-commons-project/vci-directory/main/vci-issuers.json",
"auditTime": "2024-06-26T12:35:32Z",
"auditTime": "2024-06-27T12:34:22Z",
"issuerCount": 634,
"issuersWithErrors": [
{
Expand Down Expand Up @@ -348,9 +348,9 @@
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-GCM-SHA384",
"kexAlg": "ECDH, secp384r1, 384 bits",
"kexAlg": "ECDH, prime256v1, 256 bits",
"authAlg": "RSA",
"pubKeySize": "4096",
"pubKeySize": "2048",
"compression": "NONE"
},
"crls": [],
Expand Down Expand Up @@ -1084,7 +1084,7 @@
"keys": [],
"crls": [],
"errors": [
"RequestError: read ECONNRESET"
"RequestError: Client network socket disconnected before secure TLS connection was established"
]
},
{
Expand Down Expand Up @@ -1117,6 +1117,18 @@
"Issuer key endpoint's CORS 'access-control-allow-origin' header *, * does not match the requested origin"
]
},
{
"issuer": {
"iss": "https://wpprod.choa.org/FHIR_PRD/api/epic/2021/Security/Open/EcKeys/32001/SHC",
"name": "Children’s Healthcare of Atlanta",
"website": "https://mychart.choa.org/mychart/Authentication/Login?"
},
"keys": [],
"crls": [],
"errors": [
"TimeoutError: Timeout awaiting 'request' for 5000ms"
]
},
{
"issuer": {
"iss": "https://epicnsproxy.chop.edu/fhir/api/epic/2021/Security/Open/EcKeys/32001/SHC",
Expand Down Expand Up @@ -1173,28 +1185,10 @@
"name": "Driscoll Children’s Hospital",
"website": "https://mychart.dchstx.org/MyChart/Authentication/Login?"
},
"keys": [
{
"x": "AKT0TvVHpYpNN3NhWz5yeP9cJ1YC6tYVwXPG4qhf1uQ",
"y": "rko4yxzV6AkZ1ZuCxVFPsC6y3jli0LJeu4A56bhAxBk",
"kid": "nCwM-Wnp2Om2Whzqfbenxp67FnraMzPLqmTAzGfYpJM",
"use": "sig",
"kty": "EC",
"alg": "ES256",
"crv": "P-256"
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES128-GCM-SHA256",
"kexAlg": "ECDH, prime256v1, 256 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
},
"keys": [],
"crls": [],
"errors": [
"Issuer key endpoint does not contain a CORS 'access-control-allow-origin' header"
"RequestError: getaddrinfo ENOTFOUND fhir.dchstx.org"
]
},
{
Expand All @@ -1206,7 +1200,7 @@
"keys": [],
"crls": [],
"errors": [
"RequestError: write EPROTO 140180093265792:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n"
"RequestError: write EPROTO 140184518014848:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n"
]
}
],
Expand Down Expand Up @@ -1274,8 +1268,21 @@
"HCA National",
"West Tennessee Healthcare"
],
"previousAuditTime": "2024-06-25T12:34:03Z",
"previousAuditTime": "2024-06-26T12:35:32Z",
"newIssuerCount": 0,
"deletedIssuerCount": 0,
"removedKids": []
"removedKids": [
{
"iss": "https://wpprod.choa.org/FHIR_PRD/api/epic/2021/Security/Open/EcKeys/32001/SHC",
"kids": [
"Z6ZwpiIh4RokwFr2eaHgahvr335Ph8hGdgzDD4Oaxko"
]
},
{
"iss": "https://fhir.dchstx.org/FHIR-External/api/epic/2021/Security/Open/EcKeys/32001/SHC",
"kids": [
"nCwM-Wnp2Om2Whzqfbenxp67FnraMzPLqmTAzGfYpJM"
]
}
]
}
130 changes: 48 additions & 82 deletions logs/daily_dir_snapshot.json
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"directory": "https://raw.githubusercontent.com/the-commons-project/vci-directory/main/vci-issuers.json",
"time": "2024-06-26T12:35:32Z",
"time": "2024-06-27T12:34:22Z",
"issuerInfo": [
{
"issuer": {
Expand Down Expand Up @@ -487,6 +487,14 @@
"alg": "ES256"
}
],
"tlsDetails": {
"version": "TLSv1.3",
"cipher": "TLS_AES_128_GCM_SHA256",
"kexAlg": "X25519, 253 bits",
"authAlg": "RSA-PSS",
"pubKeySize": "2048",
"compression": "NONE"
},
"crls": [],
"errors": []
},
Expand Down Expand Up @@ -5459,14 +5467,6 @@
"crv": "P-256"
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-GCM-SHA384",
"kexAlg": "ECDH, secp384r1, 384 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
},
"crls": [],
"errors": []
},
Expand Down Expand Up @@ -9965,8 +9965,8 @@
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-SHA384",
"version": "TLSv1.3",
"cipher": "TLS_AES_256_GCM_SHA384",
"kexAlg": "ECDH, secp521r1, 521 bits",
"authAlg": "RSA-PSS",
"pubKeySize": "2048",
Expand Down Expand Up @@ -10441,9 +10441,9 @@
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-GCM-SHA384",
"kexAlg": "ECDH, secp384r1, 384 bits",
"kexAlg": "ECDH, prime256v1, 256 bits",
"authAlg": "RSA",
"pubKeySize": "4096",
"pubKeySize": "2048",
"compression": "NONE"
},
"crls": [],
Expand Down Expand Up @@ -10797,8 +10797,8 @@
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-SHA384",
"kexAlg": "ECDH, secp521r1, 521 bits",
"cipher": "DHE-RSA-AES256-GCM-SHA384",
"kexAlg": "DH, 2048 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
Expand Down Expand Up @@ -11068,10 +11068,10 @@
}
],
"tlsDetails": {
"version": "TLSv1.3",
"cipher": "TLS_AES_256_GCM_SHA384",
"kexAlg": "X25519, 253 bits",
"authAlg": "RSA-PSS",
"version": "TLSv1.2",
"cipher": "DHE-RSA-AES256-GCM-SHA384",
"kexAlg": "DH, 2048 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
},
Expand Down Expand Up @@ -11227,9 +11227,9 @@
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-GCM-SHA384",
"kexAlg": "ECDH, secp384r1, 384 bits",
"version": "TLSv1.3",
"cipher": "TLS_AES_256_GCM_SHA384",
"kexAlg": "X25519, 253 bits",
"authAlg": "RSA-PSS",
"pubKeySize": "2048",
"compression": "NONE"
Expand Down Expand Up @@ -13849,8 +13849,8 @@
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-SHA384",
"kexAlg": "ECDH, secp521r1, 521 bits",
"cipher": "ECDHE-RSA-AES256-GCM-SHA384",
"kexAlg": "ECDH, secp384r1, 384 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
Expand Down Expand Up @@ -14379,14 +14379,6 @@
"crv": "P-256"
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "DHE-RSA-AES256-GCM-SHA384",
"kexAlg": "DH, 2048 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
},
"crls": [],
"errors": []
},
Expand Down Expand Up @@ -16009,6 +16001,14 @@
"crv": "P-256"
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-SHA384",
"kexAlg": "ECDH, prime256v1, 256 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
},
"crls": [],
"errors": []
},
Expand Down Expand Up @@ -16465,14 +16465,6 @@
"crv": "P-256"
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-GCM-SHA384",
"kexAlg": "ECDH, prime256v1, 256 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
},
"crls": [],
"errors": []
},
Expand Down Expand Up @@ -17607,6 +17599,14 @@
"crv": "P-256"
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-SHA384",
"kexAlg": "ECDH, secp521r1, 521 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
},
"crls": [],
"errors": []
},
Expand Down Expand Up @@ -17931,7 +17931,7 @@
"keys": [],
"crls": [],
"errors": [
"RequestError: read ECONNRESET"
"RequestError: Client network socket disconnected before secure TLS connection was established"
]
},
{
Expand Down Expand Up @@ -18586,27 +18586,11 @@
"name": "Children’s Healthcare of Atlanta",
"website": "https://mychart.choa.org/mychart/Authentication/Login?"
},
"keys": [
{
"x": "HoM0ubbQpeZ7ePMP_OKFp1cyZ8XCF97qCacVCMuLY74",
"y": "9mH-z6D9SyC3_ZwZTXWksj6rN-0d3o2HQ5v2T-434x8",
"kid": "Z6ZwpiIh4RokwFr2eaHgahvr335Ph8hGdgzDD4Oaxko",
"use": "sig",
"kty": "EC",
"alg": "ES256",
"crv": "P-256"
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES256-GCM-SHA384",
"kexAlg": "ECDH, secp521r1, 521 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
},
"keys": [],
"crls": [],
"errors": []
"errors": [
"TimeoutError: Timeout awaiting 'request' for 5000ms"
]
},
{
"issuer": {
Expand Down Expand Up @@ -19229,28 +19213,10 @@
"name": "Driscoll Children’s Hospital",
"website": "https://mychart.dchstx.org/MyChart/Authentication/Login?"
},
"keys": [
{
"x": "AKT0TvVHpYpNN3NhWz5yeP9cJ1YC6tYVwXPG4qhf1uQ",
"y": "rko4yxzV6AkZ1ZuCxVFPsC6y3jli0LJeu4A56bhAxBk",
"kid": "nCwM-Wnp2Om2Whzqfbenxp67FnraMzPLqmTAzGfYpJM",
"use": "sig",
"kty": "EC",
"alg": "ES256",
"crv": "P-256"
}
],
"tlsDetails": {
"version": "TLSv1.2",
"cipher": "ECDHE-RSA-AES128-GCM-SHA256",
"kexAlg": "ECDH, prime256v1, 256 bits",
"authAlg": "RSA",
"pubKeySize": "2048",
"compression": "NONE"
},
"keys": [],
"crls": [],
"errors": [
"Issuer key endpoint does not contain a CORS 'access-control-allow-origin' header"
"RequestError: getaddrinfo ENOTFOUND fhir.dchstx.org"
]
},
{
Expand Down Expand Up @@ -19429,7 +19395,7 @@
"keys": [],
"crls": [],
"errors": [
"RequestError: write EPROTO 140180093265792:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n"
"RequestError: write EPROTO 140184518014848:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n"
]
},
{
Expand Down

0 comments on commit 65da7de

Please sign in to comment.