Filter parameter
betrokkeneIdentificatie__vestiging__identificatie
onrol_list
operation was corrected tobetrokkeneIdentificatie__organisatorischeEenheid__identificatie
Added missing audittrail headers on some operations:
X-Audit-Toelichting
Renamed
X-NLX-Request-Application-Id
header toX-NLX-Logrecord-ID
.The previously documented headers were never emitted by NLX and specified at a time when this was not clear yet.
Dropped the
X-NLX-Request-User-Id
header - is was never emitted by NLX. You should use theuser_id
claim in the JWT instead.Added missing
rol__betrokkeneIdentificatie__organisatorischeEenheid__identificatie
filter tozaak_list
operationAdded
nullable: true
attributes to some resources. The behaviour of the API was already acceptingnull
, however the API schema did not reflect this:rol.betrokkeneIdentificatie.verblijfsadres
rol.betrokkeneIdentificatie.subVerblijfBuitenland
zaakobject.objectIdentificatie.adresAanduidingGrp
zaakobject.objectIdentificatie.isGehuisvestIn
zaakobject.objectIdentificatie.aanduidingWozObject
Dropped some
title
attributes that were generated from code rather than human-readable labels.
- Upgraded libraries:
- Django
- djangorestframework
- djangorestframework-camel-case
- drf-nested-routers
- drf-yasg
- vng-api-common
- Add
zaken.geforceerd-bijwerken
scope to allow fixing of data related to a closedZaak
(Issue 1537) - Fix documentation references in API schema description (Issue 1552)
- Add
maximaleVertrouwelijkheidaanduiding
filter parameter on Zaken endpoint (PR 1624) - Add filter parameters on Zaken endpoint to support werkvoorraad (PR 1625):
rol__betrokkeneType
rol__betrokkene
rol__omschrijvingGeneriek
rol__betrokkeneIdentificatie__natuurlijkPersoon__inpBsn
rol__betrokkeneIdentificatie__medewerker__identificatie
- If a
Zaak
is closed, data mutations to it are now blocked (unlesszaken.geforceerd-bijwerken
is used). Also extends to related objects (Issue 1537): ZaakInformatieObject
ZaakObject
Resultaat
KlantContact
Status
ZaakEigenschap
Rol
ZaakBesluit
- If a
API spec bugfix release. There are some fixes and clarifications in the API spec compared to 1.0.0. Additionally, some bugfixes without effect on the API spec have been carried out.
- Fix
Zaak
validations documentation: Zaak.zaaktype
is immutableZaak.zaaktype
is validated against ZTC API spec onzaak_create
- Fix
- Fix
ZaakEigenschap
validations documentation: ZaakEigenschap.eigenschap
must be a ZTCEigenschap
resourceZaakEigenschap.eigenschap
must belong toZaakEigenschap.zaak.zaaktype
- Fix
- Updated reference (commit hash) to ZTC API spec to use
- Validate uniqueness of
Status.zaak
andStatus.datumStatusGezet
- Cache the API spec
ZaakObject.object
validation calls now make authenticated calls (#133)- Implemented
brondatum
determination for: - afleidingswijze
gerelateerde_zaak
- afleidingswijze
vervaldatum_besluit
- afleidingswijze
- Implemented
tada: | Final 1.0.0 API spec release |
---|
Bugfixes in second release candidate
- Added missing query parameters to
ZaakObject
list - Added
KlantContact.zaak
query parameter - Added inline references to
Zaak.eigenschappen
- Fixes to GegevensGroep schema's, as they may often be
null
Zaak.zaaktype
must now be published (validation added)
Second release candidate.
A number of defects were found, so this contains a couple of breaking changes.
- Documented some fields being
null
when they're empty/unset: Zaak.einddatum
Zaak.status
Zaak.resultaat
- Documented some fields being
- Added documentation w/r to notifications to the API spec document itself. For provider implementations: this means you MUST send these notifications.
- Added two attributes to
KlantContact
: KlantContact.onderwerp
KlantContact.toelichting
- Added two attributes to
- Normalized enums to be only lower-cased alpha-numeric strings with underscores:
RolNietNatuurlijkPersoon.innRechtsvorm
ObjectInrichtingselement.type
ObjectKunstwerkdeel.type
ObjectWaterdeel.type
- Pagination added to the following resources (page size 100 by default):
Status
KlantContact
Resultaat
Rol
ZaakObject
- Fixed typo in audit trail
Wijzigingen
schema (wasWijzgingen
)
Release candidate tag
- Bumped to vng-api-common 1.0.0
- Bumped version numbers to 1.0.0-rc
Breaking changes release
- Made enums consistent - everything is snake_case now
Prepare for release candidate
- Added auth on
/api/v1/klantcontacten
- Build
develop
branch as well now, so that it can be deployed to a test environment - Added
indicatieMachtiging
attribute - Added filters to
ZaakObject
API Zaak.productenOfDiensten
is no longer a required field in the admin- Updated to latest drf-yasg and vng-api-common
- Added management command to update URL references after domain migration
- Scope
zaken.bijwerken
also allows you to createZaakObject
andZaakInformatieObject
now
- Reworked adres-fields from
Betrokkene
toAdres
model, instead of a text field - Made
Zaak.identificatie
,Zaak.zaaktype
andResultaat.resultaatType
immutable
Added a data migration to handle the flattened ZTC urls.
Added support for all kinds of Zaakobjecten
.
Following the "Grenzen van het API landschap" design document,
the possible RGBZ/RSGB objects that can be related to a Zaak
have been
implemented.
Fixed a bug in the migrations
Small fixes:
- Fix changelog version
- Fix display of version information (git sha was missing)
Third release towards release candidate
- Included version information in Docker image, which is now displayed in the footer. Version info is the git sha and API version number.
- Enabled explicit OAS 3.x version test so that no more OAS 2.x is served
- Bumped to latest vng-api-common
- If no
Zaak.identificatie
is given, the generated identification is now more human-readable. - Added filter parameters on
betrokkeneIdentificatie
- Added document validation when closing a
Zaak
: all documents must be unlocked - Renamed identifying fields of
Rol.betrokkene
- Changed
Zaak.relevanteAndereZaken
from a list of URLs to a list of objects (url
+aardRelatie
) so that more meta information can be provided.
Second release towards release candidate
- Added filters to
Zaak
list endpoint:startdatum
variations (equal, greater then, etc.) - Added fixture loading to container start script
- Added more tests
- Added models for
Betrokkene
types - see "Grenzen van het API-Landschap" - Added polymorphism to
Betrokkene
serializer - Fixed a bug on ZIO deletion w/r to DRC validation
- Fixed docker image build
- Re-enabled validation of
ZaakBesluit.besluit
. Requires BRC >= 0.11.1
First release towards release candidate
- Added representation function to all models
- Fixed fetching
relevanteAndereZaken
with correct headers - Translated API docs
- Added
ZaakBesluit
to easily retrieve besluiten from theZaak
object. Relation is created by BRC. - Applied fixes to nested
GegevensGroep
-validation - Enabled config view to diagnose problems
- Bumped to Django 2.2 (LTS)
- Removed unused dependencies
- Moved relation information
ZaakInformatieObject
to ZRC. Relations are now created here instead of DRC, and are synced from ZRC to DRC. It is now a root resource instead of a subresource.
Authorizations V2 and audittrail release - breaking changes!
Reworked authorizations - authorizations are now retrieved from the authorizations component (AC) and need to be configured there. You can use the token tool for this.
Authorizations are now more fine-grained, scopes/maximum vertrouwelijkheidaanduiding apply to a
zaaktype
, which filters data at the source. Onlyzaken
of thezaaktype``s you're authorized for are returned. The same logic applies to related data, such as ``status
.Creation of
zaken
of azaaktype
you are not authorized for is no longer allowed (it results in an HTTP 403).Renamed scopes - the
zds.scopes
prefix is dropped.Added scope-based protection on resources/operations where they were missing
Improved URL-based reference validation
Added audittrails - actions are now logged in an audittrail and they can be retrieved for a
zaak
. Consumers need to/should:- include the
client_id
in the JWT (always needed) - include the
X-Audit-Toelichting
header - include the
user_id
claim in the JWT, or use theX-Nlx-Request-User-Id
header, which should uniquely identify the end-user (in combination with the application ID) - include the
user_representation
claim in the JWT for a human-readable representation of the end-user
- include the
Cleaned up some loose ends
- Bumped Jinja2 dep (security release)
- Improved accessibility in secret management [admin]
- Added a test case for complexere GeoJSON
- Implemented re-opening of
Zaken
& added a new scope
Fixed a bug when setting Zaak.opschorting.indicatie
to false
Fixed an issue with duration validation
Default value NRC api root fixed.
Bugfix in brondatum
calculations
API-lab release
- Improved homepage layout, using vng-api-common boilerplate
- Bumped to latest bugfix release of gemma-zds-client
- Fixed a bug preventing
ZaakInformatieObject
being created/deleted
Flattened the
kenmerken
in notifications sent from a list of objects with one key-value to a single object with multiple key-value pairs. Requires the NC to be at version 0.4.0 or higher.Old:
- {
- "kenmerken": [
{"key1": "value1"}, {"key2": "value2"},
]
}
New:
- {
- "kenmerken": {
"key1": "value1", "key2": "value2",
}
}
Zaak.archiefactiedatum
is now calculated when the final status is being set, instead of when theResultaat
is created. This effectively changes the order of operations needed:- First, set a
Resultaat
on aZaak
- Then, create an end-status for a
Zaak
to close theZaak
A
Zaak
cannot be closed if noResultaat
has been set.- First, set a
It is now no longer possible to modify a closed
Zaak
, unless you include the appropriate scope (SCOPE_ZAKEN_GEFORCEERD_BIJWERKEN
).
Fixed another vng-api-common notifications bug
Fixed notifications throwing 500 errors
Notifications resolve internal paths to resources, which had a bug when components are hosted on subpaths. This has been fixed in vng-api-common.
Added support for notifications
- Switched to vng-api-common, which is the rebrand of zds-schema
- Fixed CRS-parameters ending up in API spec for
DELETE
actions - Added django-solo to store configuration
- Added the notifications support
- NC configuration in database possible
- viewset mixins for API endpoints, to publish notifications
- callback endpoint available on
/api/v1/callbacks
, to receive notifications - management command
register_kanaal
available to register the exchange - added documentation page for kanalen/exchanges
Increased URL-length validation from 200 to 1000 characters
Fixed a bug where pagination parameters were incorrectly marked as invalid params.
Added pagination to the /zaken
endpoint
- Response body of
/zaken
and/zaken/_zoek
endpoints is now on object instead of a list. The list with results can be found in theresults
key. - Pagination defaults to a 100 objects, so to read all results, you'll have to
fetch the other pages and/or supply a bigger
page_size
parameter.
- Updated to security release of Django
- Included URL to the EUPL-1.2 License in the API documentation
Bugfix release
- Bumped gemma-zds-client via zds-schema
Bugfix release
- Fixed operation/scope mapping
Archiving feature release
Set the Resultaat
for a Zaak
to trigger the archiving machinery.
- Requires the ZTC to be configured correctly.
- Requires ZTC 0.9.0 or higher
- added
Resultaat
resource - added
Zaak.archiefnominatie
+ filter params - added
Zaak.archiefactiedatum
+ filter params - added
Zaak.archiefstatus
+ filter params - added
Zaak.resultaat
URL-reference - added read-only
Eigenschap.naam
(taken from ZTC) - added explicit
duration
format to duration fields
The following afleidingswijze``s for ``brondatum
are not implemented yet:
gerelateerde_zaak
ingangsdatum_besluit
vervaldatum_besluit
Documentation improvements
- #620 - better/added documentation for various resource operations
- Bumped to bugfix releases of Django and zds-schema
Modified data migration to set Zaak.vertrouwelijkheidaanduiding
based
on zaaktype so that corrupt data doesn't crash the migrations.
API maturity update
See VNG-Realisatie/gemma-zaken#673 for a more verbose description of the changes.
- Documentation improvements
- Fixed resetting
Zaak.einddatum
if a status other than the end-status is set after closing theZaak
(#660) - Added validation on related
Informatieobject``s when a ``Zaak
is being closed (#549) - Added more attributes (#549)
Zaak.productenOfDiensten
Zaak.publicatiedatum
Zaak.communicatiekanaal
Zaak.vertrouwelijkheidaanduiding
- always set, default derived fromZaak.zaaktype.vertrouwelijkheidaanduiding
Zaak.resultaattoelichting
Zaak.betalingsindicatie
Zaak.laatsteBetaaldatum
+ validation withZaak.betalingsindicatie
value (no value is allowed if payment is irrelevant)Zaak.verlenging
- which is a nested object.null
is accepted to leave the value empty. Pending change to calculateZaak.einddatumGepland
from this.Zaak.opschorting
added as nested objectZAAK.selectielijstklasse
added, should point to https://ref.tst.vng.cloud/referentielijsten APIZaak.hoofdzaak
andZaak.deelzaken
attributes + validation logic added.ZAAK.andereGerelateerdeZaken
- Bumped a bunch of library versions (zds-schema, gemma-zds-client)
- Improved help text of duration fields in the admin
- The
Content-Crs
header is now required for write-requests, and CRS-negotiation is performed on this. Update all create, update and partial update calls to include this header, even if you are not submitting geo data. (#639)
Bump Django and urllib
- urllib3<=1.22 has a CVE
- use latest patch release of Django 2.0
Small bugfixes
- Fixed validator using newer gemma-zds-client
- Added a name for the session cookie to preserve sessions on the same domain between components.
- Added missing Api-Version header
- Added missing Location header to OAS
Client method signature fixed
Refs. #565 -- change URL reference to RSIN
Stap naar volwassenere API
- Update naar recente zds-schema versie
- HTTP 400 errors op onbekende/invalide filter-parameters
- Docker container beter te customizen via environment variables
De Authorization
headers is veranderd van formaat. In plaats van <jwt>
is het nu Bearer <jwt>
geworden.
DSO API-srategie fix
Foutberichten bevatten een type key. De waarde van deze key begint niet langer incorrect met "URI: ".
Autorisatie-feature release
- Scopes toegevoegd:
ZAKEN_CREATE
,STATUSSEN_TOEVOEGEN
,ZAKEN_ALLES_LEZEN
- Autorisatie-informatie toegevoegd aan API spec
- Auth/Autz via middleware en JWT toegevoegd
- Documentatie van scopes toegevoegd op
http://localhost:8000/ref/scopes/
- Maak authenticated calls naar ZTC
- JWT client/secret management toegevoegd
Door autorisatie toe te voegen zijn bestaande endpoints niet langer functioneel
zonder een geldige Authentication
header. Je kan de token issuer gebruiken
om geldige credentials te verkrijgen.
- dwing gebruik van timeze-aware datetimes af (hard error in dev)
- OAS 3.0 versie wordt nu geserveerd vanaf
/api/v1/schema/openapi.yaml?v=3
. Zonder?v=3
querystring krijg je nog steeds Swagger 2.0.
Added CORS-headers
Feature release: zaak afsluiten & status filteren
Zaak.einddatum
is alleen-lezen gewordenZaak.einddatum
wordt gezet indien de gezette status de eindstatus isStatus
list endpoint accepteert filters opzaak
enstatusType
Bugfix in bugfix release
- Commit vergeten te pushen voor: Docker image fixed: ontbrekende
swagger2openapi
zit nu in image.
Bugfix release i.v.m. zaakinformatieobjecten
zaakinformatieobject_destroy
operatie verwijderd. Deze bestaat ook niet in het DRC namelijk.zds-schema
versiebump - DNS errors worden nu HTTP 400 in plaats van HTTP 500 bij url-validatie.- Fix in
ZaakInformatieObject
serializer door het ontbreken van een detail URL. - Docker image fixed: ontbrekende
swagger2openapi
zit nu in image.
Deze release heeft backwards incompatible wijzigingen op gebied van zaakinformatieobjecten.
- licentiebestand toegevoegd (Boris van Hoytema <boris@publiccode.net>)
- toevoeging API resources documentatie (markdown uit API spec)
- correctie op error-response MIME-types
- #166 - expliciet zaak-informatieobject relatieresource toegevoegd, met validatie-implementaties
- nieuwe velden (waaronder
Kenmerken
) toegevoegd aan de ZAAK-resource (VNG-Realisatie/gemma-zaken#153) - DSO API-50: implementatie formaat van error-responses & documentatie ( VNG-Realisatie/gemma-zaken#130)
- Validatie (business logic) toegevoegd:
zaaktype
URL referentie moet een geldige URL zijn- strengere validatie wordt gradueel ingevoerd
- Uniciteit validator (combinatie
bronorganisatie
enidentificatie
) bouwt op generieke validator uitgemma-zaken-common
.
- Validatie toegevoegd op aantal initiators/coordinatoren voor een zaak
rolomschrijvingGeneriek
weggehaald- validatie op unieke ZAAK.``identificatie`` binnen een bronorganisatie
- Unit test toegevoegd voor VNG-Realisatie/gemma-zaken#163
- Hernoem
zaakidentificatie
->identificatie
cfr. de design decisions
Fixes in CI
README netjes gemaakt
Aanpassingen aan BETROKKENEn bij ZAAKen
- rol betrokkene is nu een referentie naar een andere resource via URL, mogelijks in een externe registratie (zoals BRP)
OrganisatorischeEenheid
verwijderd door bovenstaandestartdatum
,einddatum
eneinddatum_gepland
velden toegevoegdregistratiedatum
optioneel gemaakt, met een default van 'vandaag' indien niet opgegeven- Polymorfisme mechanischme toegevoegd voor betrokkenen en zaakobjecten
- Filter parameters toegevoegd
Fixes in OAS 3.0 schema op gebied van GeoJSON definities.
Dependency zds_schema
versie verhoogd, met een fix voor de required
key
in het OAS 3.0 schema.
Uitbreiding en aanpassingen API spec
- alle API url parameters zijn nu UUIDs in plaats van database primary keys
<resource>_list
operations toegevoegd (volgende release zal hiervoor nested resources gebruiken)
- Initial release.