Feat/put home jurisdiction updates #796

landonshumway-ia · 2025-05-06T18:45:01Z

Providers need the ability to select a new home jurisdiction in the system should they move. There are many complexities in determining what should happen to privilege records when this happens. This adds a new PUT endpoint that manages that logic.

Closes #467

Summary by CodeRabbit

New Features
- Added support for updating a provider's home jurisdiction via a new API endpoint with request/response models.
- Introduced a "currentHomeJurisdiction" field in provider records and API responses.
- Unified multiple provider user endpoints under a single API handler.
- Added detailed tracking of provider and privilege updates, including update history records.
Improvements
- Refactored provider and privilege data models to remove personal contact and address details.
- Enhanced eligibility and privilege status recalculations based on home jurisdiction and license status.
- Improved privilege renewal handling to remove deactivation status related to home jurisdiction changes.
- Centralized provider data access through structured classes for clarity and robustness.
- Reduced duplicate transaction detection window for credit card payments from 180 to 10 seconds.
Bug Fixes
- Fixed DynamoDB pagination handling for provider user records.
- Corrected privilege record expectations in tests related to renewals and deactivations.
Documentation
- Updated API schemas and test resources to reflect new "currentHomeJurisdiction" field and removal of deprecated fields like status and contact details.
- Added JSON schemas for home jurisdiction update requests and responses.
- Added detailed backend design documentation for privilege lifecycle and home jurisdiction change rules.
Tests
- Added extensive tests covering home jurisdiction updates, privilege status transitions, and provider update record creation.
- Expanded smoke tests to verify home jurisdiction change effects on privileges and eligibility.
- Improved test data generation and setup to align with updated data models and registration logic.
Chores
- Consolidated Lambda handlers for provider user endpoints.
- Enhanced test environment configuration to include all U.S. jurisdictions.
- Removed deprecated code and tests related to calculated status schemas.
- Removed obsolete home jurisdiction selection records and related code via migration.

coderabbitai · 2025-05-06T18:45:07Z

Walkthrough

This update introduces comprehensive support for managing provider home jurisdiction changes in the backend. It adds endpoint, schema, data model, and transactional logic to allow practitioners to manually change their home state, update privileges and eligibility accordingly, and track home jurisdiction history. Extensive refactoring, new tests, and schema updates are included.

Changes

File(s)	Change Summary
`.../data_client.py`, `.../provider_record_util.py`	Major refactor: Introduces typed data classes for provider records, adds logic for handling home jurisdiction changes, privilege updates, transactional DynamoDB operations, and new helper methods for querying and updating provider data.
`.../schema/base_record.py`, `.../schema/license/api.py`	Removes deprecated calculated status schema and the `status` field from license response schema.
`.../schema/common.py`, `.../schema/fields.py`	Adds enums and fields for home jurisdiction status and update categories; introduces validation for new/unknown jurisdictions.
`.../schema/license/record.py`, `.../schema/provider/record.py`, `.../schema/privilege/record.py`	Refactors schemas to compute `licenseStatus` and `compactEligibility` directly; adds fields and logic for home jurisdiction change status and privilege deactivation. Adds provider update record schemas for tracking changes.
`.../schema/provider/__init__.py`, `.../schema/privilege/__init__.py`	Updates data classes: removes setters, adds new properties for home jurisdiction and privilege deactivation, introduces `ProviderUpdateData`.
`.../schema/home_jurisdiction/*`	Marks old home jurisdiction selection schema as deprecated with TODO comments; removes related classes and files.
`.../schema/license/__init__.py`	Adds `licenseStatus` property to `LicenseData`.
`.../common_test/test_constants.py`	Removes unused Cognito sub test constant.
`.../common_test/test_data_generator.py`	Adds helpers for loading/querying provider and privilege update records; updates provider generation for registration status and home jurisdiction.
`.../tests/unit/test_data_model/test_base_record.py`, `.../test_license.py`	Removes tests for deprecated status logic; updates tests to match new schema.
`.../test_provider.py`	Adds test for compact ineligibility when home jurisdiction does not match license jurisdiction.
`.../tests/function/test_data_client.py`	Refactors to use typed data classes; adds test for provider user records pagination.
`.../tests/function/test_data_model/test_user_client.py`	Updates tests to use explicit jurisdiction lists.
`.../tests/function/test_handlers/test_registration.py`	Adds test for provider update record creation during registration; updates for new registration marker.
`.../tests/function/test_handlers/test_provider_users.py`	Refactors to use unified handler; adds extensive tests for home jurisdiction change endpoint and logic.
`.../tests/function/test_handlers/test_ingest.py`	Refactors provider registration and home jurisdiction handling in tests.
`.../tests/function/test_handlers/test_provider_s3_events.py`	Switches to unified provider users handler.
`.../tests/function/test_handlers/test_public_lookup.py`	Updates expected fields for public provider responses.
`.../tests/function/test_data_model/test_provider_transformations.py`	Refactors to use new provider user records abstraction and updates expected data.
`.../purchases/handlers/privileges.py`	Refactors to use typed provider user records, updates privilege purchase and validation logic for home jurisdiction.
`.../purchases/tests/function/test_handlers/test_purchase_privileges.py`	Adds tests for privilege renewal after home jurisdiction change deactivation; updates privilege record handling.
`.../purchases/purchase_client.py`, `.../tests/unit/test_purchase_client.py`	Updates duplicate transaction window from 180s to 10s and corresponding test.
`.../provider-data-v1/handlers/provider_users.py`	Adds unified API handler for provider users endpoints; implements PUT for home jurisdiction change.
`.../provider-data-v1/handlers/registration.py`	Refactors registration logic for new provider data model and registration status.
`.../provider-data-v1/handlers/ingest.py`	Updates provider data handling to use new data classes and serialization.
`.../provider-data-v1/tests/function/__init__.py`	Refactors to use new provider user records methods.
`.../provider-data-v1/tests/function/test_handlers/test_ingest.py`	Refactors test setup for registration and home jurisdiction.
`.../provider-data-v1/tests/function/test_handlers/test_provider_users.py`	Adds comprehensive tests for home jurisdiction change endpoint and logic.
`.../provider-data-v1/tests/function/test_handlers/test_registration.py`	Adds test for provider update record creation.
`.../provider-data-v1/tests/function/test_data_model/test_provider_transformations.py`	Updates test to expect provider update record.
`.../stacks/api_stack/v1_api/api_model.py`	Adds request/response models for home jurisdiction change; removes deprecated fields from schemas.
`.../stacks/api_stack/v1_api/provider_users.py`	Consolidates multiple provider users handlers into one; adds integration for home jurisdiction change endpoint.
`.../tests/app/test_api/test_provider_users_api.py`	Updates tests to use unified handler; adds test for new endpoint.
`.../tests/resources/api/.json`, `.../tests/resources/snapshots/.json`	Updates test resource files and JSON schemas to remove deprecated fields and add current home jurisdiction.
`.../tests/smoke/home_jurisdiction_change_smoke_tests.py`	Adds smoke test for home jurisdiction change flow and privilege deactivation/reactivation.
`.../tests/smoke/purchasing_privileges_smoke_tests.py`	Adds option to skip privilege deletion in privilege purchasing smoke test.
`.../common/tests/__init__.py`, `.../provider-data-v1/tests/__init__.py`	Expands test environment jurisdictions to full US set.
`.../common/tests/function/__init__.py`, `.../purchases/tests/function/__init__.py`	Adds test data generator to test setup.

Sequence Diagram(s)

sequenceDiagram
    participant User
    participant API
    participant ProviderUsersHandler
    participant DataClient
    participant DynamoDB

    User->>API: PUT /v1/provider-users/me/home-jurisdiction
    API->>ProviderUsersHandler: Lambda invoke
    ProviderUsersHandler->>DataClient: update_provider_home_state_jurisdiction(compact, provider_id, selected_jurisdiction)
    DataClient->>DynamoDB: Query provider user records
    alt License exists in new jurisdiction
        DataClient->>DynamoDB: Update provider record with new license
        DataClient->>DynamoDB: Update privileges (move or deactivate as needed)
    else No license in new jurisdiction
        DataClient->>DynamoDB: Deactivate all privileges
        DataClient->>DynamoDB: Update provider record (ineligible)
    end
    DataClient->>DynamoDB: Create provider update record
    ProviderUsersHandler-->>API: 200 OK, {"message": "..."}
    API-->>User: Response

Assessment against linked issues

Objective (Issue)	Addressed	Explanation
Prevent home state change if no license in new jurisdiction (#467)	✅
Option only enabled when multiple licenses active (#467)	✅
Change must be manual, not automatic (#467)	✅
Keep existing privileges when switching to new home state (#467)	✅
Update privileges' expiration for new home state (#467)	✅
Auto-update personal info based on selected home state at registration (#467)	✅
Track home state selection history (#467)	✅

Possibly related PRs

Feat/split license statuses #681: The main PR's changes to data_client.py and related provider/license/privilege data models, including the introduction of new fields like licenseStatus, compactEligibility, and the renaming of persistedStatus to administratorSetStatus, directly relate to the retrieved PR Feat/split license statuses #681, which implements the split of license statuses into these distinct fields and updates the data model and logic accordingly.
Feat/add endpoints for uploading adverse actions for licenses and privileges #769: The main PR's additions of adverse action endpoints and data model support including new schema classes, data classes, and updates to provider record utilities are related to the retrieved PR Feat/add endpoints for uploading adverse actions for licenses and privileges #769 which adds adverse action features.
Feat/compact config endpoints #798: The main PR's addition of compact and jurisdiction configuration endpoints and related API Gateway integration is related to PR Feat/compact config endpoints #798 which implements these compact config endpoints.

Suggested reviewers

jlkravitz
isabeleliassen

Poem

In a warren of code, a rabbit did hop,
Changing home states with a skip and a hop.
Privileges shuffled, eligibility checked,
History tracked, no detail unchecked.
Now with a twitch of a whisker and schema so neat,
Practitioners' journeys are finally complete!
🐇✨

✨ Finishing Touches

📝 Generate Docstrings

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>, please review it.
- Explain this complex logic.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
- @coderabbitai explain this code block.
- @coderabbitai modularize this function.
PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
- @coderabbitai read src/utils.ts and explain its main purpose.
- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
- @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

@coderabbitai pause to pause the reviews on a PR.
@coderabbitai resume to resume the paused reviews.
@coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
@coderabbitai full review to do a full review from scratch and review all the files again.
@coderabbitai summary to regenerate the summary of the PR.
@coderabbitai generate docstrings to generate docstrings for this PR.
@coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
@coderabbitai resolve resolve all the CodeRabbit review comments.
@coderabbitai configuration to show the current CodeRabbit configuration for the repository.
@coderabbitai help to get help.

Other keywords and placeholders

Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (`.coderabbit.yaml`)

You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
Please see the configuration documentation for more information.
If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

This refactors the provider-users/me endpoints to all use the same lambda, to simplify the architecture.

This will allow us to track if the provider has moved to a jurisdiction that lacks a valid license.

- deactivating privilege if in same jurisdiction - copying over license data into provider record

… flow

also reverted change for catching cognito exception

coderabbitai

Actionable comments posted: 0

♻️ Duplicate comments (5)

backend/compact-connect/tests/smoke/home_jurisdiction_change_smoke_tests.py (1)

1-172: Fix formatting issues and improve error handling.

This smoke test provides excellent coverage of the home jurisdiction change flow, but there are formatting issues that need to be addressed.

The formatting issues (whitespace in blank lines, line length violations) identified in past reviews still need to be addressed. Additionally, consider adding more robust error handling around the HTTP requests with retry logic for better test reliability.

backend/compact-connect/lambdas/python/provider-data-v1/tests/function/test_handlers/test_provider_users.py (1)

687-698: ⚠️ Potential issue

Provider object is overwritten – capture the first provider or avoid shadowing

The variable test_provider_record is overwritten by the second call to _when_provider_has_one_license_and_privilege, causing later assertions to potentially reference the wrong provider data. Consider using distinct variable names or reusing the provider ID from the first call when creating additional licenses and privileges.
backend/compact-connect/lambdas/python/provider-data-v1/handlers/provider_users.py (2)
29-36: 🛠️ Refactor suggestion

Verify path matching logic – event["resource"] may not be stable across API types

event["resource"] is only guaranteed for REST-API integrations. For HTTP APIs the field might be requestContext["resourcePath"] or absent altogether. Consider normalizing the path lookup:
-    resource_path = event.get('resource')
+    resource_path = event.get('resource') or event['requestContext'].get('resourcePath')
88-94: 🛠️ Refactor suggestion

Harden request-body validation

event["body"] can be None, invalid JSON or missing the required "jurisdiction" key – all will currently raise generic exceptions that become 500s. Guard explicitly and return a 400 via CCInvalidRequestException.
-    event_body = json.loads(event['body'])
-    selected_jurisdiction = event_body['jurisdiction'].lower()
+    if event.get('body') is None:
+        raise CCInvalidRequestException('Request body is required')
+
+    try:
+        event_body = json.loads(event['body'])
+    except json.JSONDecodeError as exc:
+        raise CCInvalidRequestException('Malformed JSON in request body') from exc
+
+    selected_jurisdiction = event_body.get('jurisdiction')
+    if not selected_jurisdiction:
+        raise CCInvalidRequestException('Field "jurisdiction" is required')
+    selected_jurisdiction = selected_jurisdiction.lower()
backend/compact-connect/lambdas/python/common/cc_common/data_model/provider_record_util.py (1)
268-280: ⚠️ Potential issue

Handle missing provider record defensively

The method will raise an IndexError if no provider records are found when accessing provider_user_records[0]. Add a check for empty list before accessing the first element.

Apply this fix:
 def get_provider_record(self) -> ProviderData:
     """
     Get the provider record from a list of provider records.
     """
     provider_user_records = [
         ProviderData.from_database_record(record)
         for record in ProviderRecordUtility.get_records_of_type(self.provider_records, ProviderRecordType.PROVIDER)
     ]
+    if not provider_user_records:
+        raise CCInternalException('No provider record found for user')
     if len(provider_user_records) > 1:
         logger.error('Multiple provider records found', provider_id=provider_user_records[0].providerId)
         raise CCInternalException('Multiple top-level provider records found for user.')
     return provider_user_records[0]

🧹 Nitpick comments (3)

backend/compact-connect/lambdas/python/common/tests/function/test_data_client.py (1)
913-1002: Fix formatting issues identified by static analysis.

Multiple blank lines contain whitespace which should be removed for code cleanliness. The result variable assignment before return is also unnecessary.

Apply this diff to fix the formatting issues:
-        # Blank line contains whitespace (multiple locations)
+        # (remove whitespace from blank lines)
-        def mock_query(**kwargs):
-            # Force a small page size to ensure pagination
-            kwargs['Limit'] = 10
-            result = original_query(**kwargs)
-            return result
+        def mock_query(**kwargs):
+            # Force a small page size to ensure pagination
+            kwargs['Limit'] = 10
+            return original_query(**kwargs)
🧰 Tools

🪛 Ruff (0.11.9)

916-916: Blank line contains whitespace

Remove whitespace from blank line

(W293)

924-924: Blank line contains whitespace

Remove whitespace from blank line

(W293)

933-933: Blank line contains whitespace

Remove whitespace from blank line

(W293)

954-954: Blank line contains whitespace

Remove whitespace from blank line

(W293)

963-963: Blank line contains whitespace

Remove whitespace from blank line

(W293)

966-966: Blank line contains whitespace

Remove whitespace from blank line

(W293)

971-971: Unnecessary assignment to result before return statement

Remove unnecessary assignment

(RET504)

972-972: Blank line contains whitespace

Remove whitespace from blank line

(W293)

974-974: Blank line contains whitespace

Remove whitespace from blank line

(W293)

978-978: Blank line contains whitespace

Remove whitespace from blank line

(W293)

982-982: Blank line contains whitespace

Remove whitespace from blank line

(W293)

986-986: Blank line contains whitespace

Remove whitespace from blank line

(W293)

992-992: Blank line contains whitespace

Remove whitespace from blank line

(W293)

998-998: Blank line contains whitespace

Remove whitespace from blank line

(W293)
backend/compact-connect/lambdas/python/common/cc_common/data_model/data_client.py (2)
493-505: Consider extracting transaction batching logic to reduce duplication.

The same batching pattern for processing DynamoDB transactions in batches of 100 appears in 4 different methods. This violates the DRY principle.

Consider creating a helper method:
def _execute_transactions_in_batches(self, transactions: list[dict], batch_size: int = 100) -> None:
    """Execute DynamoDB transactions in batches to respect the 100 item limit."""
    for i in range(0, len(transactions), batch_size):
        batch = transactions[i : i + batch_size]
        if batch:
            self.config.dynamodb_client.transact_write_items(TransactItems=batch)
Then replace the duplicated code in all 4 locations with:
self._execute_transactions_in_batches(transactions)
Also applies to: 595-604, 1744-1750, 1891-1897

1314-1451: Comprehensive implementation of home jurisdiction update logic.

The method correctly implements all 6 business rules for updating provider home jurisdiction and handling privileges. The code is well-structured with appropriate helper methods and extensive logging for debugging.

The business logic is complex with many edge cases. Would you like me to help create additional test cases to ensure all scenarios are covered?

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 826a16c and d8ebe1c.

📒 Files selected for processing (9)

backend/compact-connect/lambdas/python/common/cc_common/data_model/data_client.py (19 hunks)
backend/compact-connect/lambdas/python/common/cc_common/data_model/provider_record_util.py (5 hunks)
backend/compact-connect/lambdas/python/common/cc_common/data_model/schema/common.py (3 hunks)
backend/compact-connect/lambdas/python/common/tests/function/test_data_client.py (12 hunks)
backend/compact-connect/lambdas/python/provider-data-v1/handlers/provider_users.py (3 hunks)
backend/compact-connect/lambdas/python/provider-data-v1/tests/function/test_handlers/test_provider_users.py (19 hunks)
backend/compact-connect/lambdas/python/purchases/handlers/privileges.py (4 hunks)
backend/compact-connect/tests/app/test_api/test_provider_users_api.py (6 hunks)
backend/compact-connect/tests/smoke/home_jurisdiction_change_smoke_tests.py (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (3)

backend/compact-connect/tests/app/test_api/test_provider_users_api.py
backend/compact-connect/lambdas/python/common/cc_common/data_model/schema/common.py
backend/compact-connect/lambdas/python/purchases/handlers/privileges.py

🧰 Additional context used

🪛 Ruff (0.11.9)

backend/compact-connect/lambdas/python/common/tests/function/test_data_client.py

916-916: Blank line contains whitespace