# Onboard a Doctor in Training
## Role: Lead Employer

The lead employer is responsible for verifying GMC licences and issuing credentials needed by new doctors before they can begin specific placements. These include; dbs checks, mandatory training, occupational health and assigment credentials.

## Before running through this notebook you should run through the following notebook - [Part 5.1](http://localhost:8892/notebooks/Part%205.1%20-%20Initialising%20the%20Lead%20Employer%20Agent.ipynb).

## Or alternatively you can start at the beginning of the Doctors in Training flow [here](http://localhost:8889/lab/tree/Part%201%20-%20Getting%20Started.ipynb).



## 1. Initialise a controller for the Lead Employer

In [None]:
%autoawait
import time
import asyncio
from termcolor import colored,cprint

from aries_basic_controller.aries_controller import AriesAgentController
    
WEBHOOK_HOST = "0.0.0.0"
WEBHOOK_PORT = 8062
WEBHOOK_BASE = ""
ADMIN_URL = "http://lead-employer-agent:8061"

# Based on the aca-py agent you wish to control
agent_controller = AriesAgentController(admin_url=ADMIN_URL)

agent_controller.init_webhook_server(webhook_host=WEBHOOK_HOST, webhook_port=WEBHOOK_PORT,
                                       webhook_base=WEBHOOK_BASE)
    

## 2. Register Listeners

The handler should get called every time the controller receives a webhook with the topic issue_credential, printing out the payload. The agent calls to this webhook every time it receives an issue-credential protocol message from a credential.

In [None]:
loop = asyncio.get_event_loop()
loop.create_task(agent_controller.listen_webhooks())

def cred_handler(payload):
    print("Handle Credentials")
    exchange_id = payload['credential_exchange_id']
    state = payload['state']
    role = payload['role']
    attributes = payload['credential_proposal_dict']['credential_proposal']['attributes']
    print(f"Credential exchange {exchange_id}, role: {role}, state: {state}")
    print(f"Offering: {attributes}")
    
cred_listener = {
    "topic": "issue_credential",
    "handler": cred_handler
}

def connections_handler(payload):
    global STATE
    connection_id = payload["connection_id"]
    print("Connection message", payload, connection_id)
    STATE = payload['state']
    if STATE == 'active':
#         print('Connection {0} changed state to active'.format(connection_id))
        print(colored("Connection {0} changed state to active".format(connection_id), "red", attrs=["bold"]))


connection_listener = {
    "handler": connections_handler,
    "topic": "connections"
}

agent_controller.register_listeners([cred_listener,connection_listener], defaults=True)


## 3. Create a connection invitation to scan with the Mobile SSI Wallet

To make a connection with an identity holders wallet we must create a connection invitation and present the QR code to be scanned by the identity holders wallet. The identity holder scans this QR code and then can communicate with the agent through the exposed ngrok endpoint.

Once a connection is in an active state, the agent and the identity holders mobile wallet now have a secure pairwise relationship over which they can exchange verifiable credentials.

You must have a ssi wallet installed on your phone and connected to the Sovrin StagingNet for this to work.

### 3.1 Generate an invitation

In [None]:
# Create Invitation
invite = await agent_controller.connections.create_invitation()
connection_id = invite["connection_id"]
print("Connection ID", connection_id)
print("Invitation")
print(invite['invitation_url'])
inviteURL = invite['invitation_url']

### 3.2 Display as QrCode to be Scanned by SSI Wallet

In [None]:
import qrcode
# Link for connection invitation
input_data = inviteURL
# Creating an instance of qrcode
qr = qrcode.QRCode(
        version=1,
        box_size=10,
        border=5)

qr.add_data(input_data)
qr.make(fit=True)
img = qr.make_image(fill='black', back_color='white')
img.save('issuer_agent_invite_QRcode.png')

from IPython.display import Image
Image(width=400, filename='./issuer_agent_invite_QRcode.png')

### 3.3 Check the connection is in the active state

In [None]:
import time

# print('Current state for ConnectionId {} is {}'.format(connection_id,STATE))
print(colored("Current state for ConnectionId {} is {}".format(connection_id,STATE), "magenta", attrs=["bold"]))
while STATE != 'active':
#     print('ConnectionId {0} is not in active state yet'.format(connection_id))
    print(colored("ConnectionId {0} is not in active state yet".format(connection_id), "yellow", attrs=["bold"]))
    trust_ping = await agent_controller.messaging.trust_ping(connection_id,'hello!')
#     print('Trust ping send to ConnectionId {0} to activate connection'.format(trust_ping))
    print(colored("Trust ping send to ConnectionId {0} to activate connection".format(trust_ping), "blue", attrs=["bold"]))
    time.sleep(5)
    
# print('ConnectionId: {0} is now active. Continue with notebook'.format(connection_id))
print(colored("ConnectionId: {0} is now active. Continue with notebook".format(connection_id), "green", attrs=["bold"]))


## 4. Request Proof Presentation

## 5a. Generate proof request

In [None]:
print("Request proof of Passport information")

#Set some variables

REVOCATION = False
SELF_ATTESTED = False
EXCHANGE_TRACING = False

req_attrs = [
    {"name": "PSS Given Names", "restrictions": []},
    {"name": "PSS Surname", "restrictions": []},
    {"name": "PSS Sex", "restrictions": []},
    {"name": "PSS Place of Birth", "restrictions": []},
    {"name": "PSS Date of Birth", "restrictions": []},
]

if REVOCATION:
    req_attrs.append(
        {
            "name": "skill",
            "restrictions": [{"schema_id": schema_id}],
            "non_revoked": {"to": int(time.time() - 1)},
        },
    )

if SELF_ATTESTED:
    # test self-attested claims
    req_attrs.append({"name": "country"},)

#Set predicates for Zero Knowledge Proofs
req_preds = []

indy_proof_request = {
    "name": "Proof of Passport Credential",
    "version": "1.0",
    "requested_attributes": {
        f"0_{req_attr['name']}_uuid":
        req_attr for req_attr in req_attrs
    },
    "requested_predicates": {
        f"0_{req_pred['name']}_GE_uuid":
        req_pred for req_pred in req_preds
    },
}

if REVOCATION:
    indy_proof_request["non_revoked"] = {"to": int(time.time())}

#proof_request = indy_proof_request
exchange_tracing_id = EXCHANGE_TRACING
proof_request_web_request = {
    "connection_id": connection_id,
    "proof_request": indy_proof_request,
    "trace": EXCHANGE_TRACING,
}

### 5b. Send the proof request to Doctor

Doctor is identified through the connection_id

In [None]:
response = await agent_controller.proofs.send_request(proof_request_web_request)
print(response)
presentation_exchange_id = response['presentation_exchange_id']
print("\n")
print(presentation_exchange_id)


## 5c. Verify proof presentation and populate credential template

This is checking the signatures on the credentials presented against the credential schema and definition id stored and resolvable on the ledger. It is a bit of a big complicated object, so we show the common pattern for breaking it down, checking it's verified and accessing the data that has been presented.

In [None]:
verify = await agent_controller.proofs.verify_presentation(presentation_exchange_id)

# print proof request verification status
print('Proof request state verified?: {} '.format(verify['state'] == 'verified'))


In [None]:
print(verify['presentation']['requested_proof']['self_attested_attrs'])

In [None]:
# access the revealed attributes and populate credential
credential_attributes = []
if len(verify['presentation']['requested_proof']['revealed_attrs']) > 0:
    for (name, val) in verify['presentation']['requested_proof']['revealed_attrs'].items():
        ## This is the actual data that you want. It's a little hidden
        print('Atribute name: {} Value: {}'.format(name,val['raw']))
        credential_attributes.append({"name":name, "value": val['raw']})
else:
    for (name, val) in verify['presentation']['requested_proof']['self_attested_attrs'].items():
        ## This is the actual data that you want. It's a little hidden
        print('Atribute name: {} Value: {}'.format(name,val))
        credential_attributes.append({"name":name, "value": val})
    

# set credential attribute field names to match credential
credential_attributes[0]['name'] = "given_names"
credential_attributes[1]['name'] = "surname"
credential_attributes[2]['name'] = "gender"
credential_attributes[3]['name'] = "POB"
credential_attributes[4]['name'] = "DOB"



### 5.1 Retrieve stored `cred_def_id` and `schema_id`s

In [None]:
%store -r occ_health_schema_id
%store -r occ_health_cred_def_id
%store -r mandatory_training_schema_id
%store -r mandatory_training_cred_def_id
%store -r dbs_schema_id
%store -r dbs_cred_def_id
%store -r lead_emp_schema_id
%store -r lead_emp_cred_def_id

## 4 Issue a DBS Check Credential

This would be after first running one of course.

### 4.1 Populate the Training Program attributes to Issue to Doctor

This would typically be done through a face to face identity check.

The notebook will ask you to input all the relevant fields.

In [None]:
## populate from proof request response
forename = credential_attributes[0]['value']
surname = credential_attributes[1]['value']
gender = credential_attributes[2]['value']
placeofbirth = credential_attributes[3]['value']
dob = credential_attributes[4]['value']
othernames = ""

In [None]:
from datetime import date

today = str(date.today())
dbs_level = input("Please enter the level of DBS check requested: ")
position=input("Please enter the position the check was requested for: ")
adult_list=input("Check against the Adult's list: ")
child_list = input("Check against the Children's list: ")
police=input("Check against the Police Records: ")
education=input("Check against the Education Act: ")
relevant_info=input("Check against other relevant info: ")

employer=input("Please enter the name of the employer: ")
registered_body = input("Please enter the registered person/body: ")
countersignatory=input("Who is the countersignatory: ")
cert_num = input("What is the certificate reference number")

credential_attributes = [
     {"name": "DBS Surname","value": surname},
     {"name": "DBS Forename","value": forename},
     {"name": "DBS Other Names","value": othernames},
     {"name": "DBS Date of Birth","value": dob},
     {"name": "DBS Place of Birth","value": placeofbirth},
     {"name": "DBS Gender","value": gender},
     {"name": "DBS Date of Issue","value": today},
     {"name": "DBS Level of Check Requested","value": dbs_level},
     {"name": "DBS Position Check Applied For","value": position},
     {"name": "DBS Check Against Adult's List","value": adult_list},
     {"name": "DBS Check Against Children's List","value": child_list},
     {"name": "DBS Check Against Police Records","value": police},
     {"name": "DBS Check Information From Section 142 Education Act 2002","value": education},
     {"name": "DBS Check for Other Relevant Information","value": relevant_info},
     {"name": "DBS Name of Employer","value": employer},
     {"name": "DBS Registered Person/Body","value": registered_body},
     {"name": "DBS Countersignatory","value": countersignatory},
     {"name": "DBS Certificate Reference Number","value": cert_num},

]




print(credential_attributes)

## 4.2 Issue Training Program Credential

This sends a credential to the doctor's mobile wallet you just connected with.

In [None]:
record = await agent_controller.issuer.send_credential(connection_id, dbs_schema_id, dbs_cred_def_id, credential_attributes, trace=False)
record_id = record['credential_exchange_id']
state = record['state']
role = record['role']
print(f"Credential exchange {record_id}, role: {role}, state: {state}")


## 5. Issue Mandatory Training Credential

### 5.1 Populate the Mandatory Training Credential Attributes

This appears to be a terribly designed schema that makes it almost unusable. Are doctors ever going to complete all this training all at once? Why not break it up into the individual segments? Is this to save costs when writing too the ledger?

In [None]:
expiry_date = input("Please enter the expiry date for all training :")

credential_attributes=[
    {"name":"MNT Conflict Resolution Completed", "value": "True"},
     {"name":"MNT Conflict Resolution Expiry Date", "value": expiry_date},
     {"name":"MNT Equality and Diversity Completed", "value": "True"},
     {"name":"MNT Equality and Diversity Expiry Date", "value": expiry_date},
     {"name":"MNT Fire Safety Completed", "value": "True"},
     {"name":"MNT Fire Safety Expiry Date", "value": expiry_date},
     {"name":"MNT Health Safety and Welfare Completed", "value": "True"},
     {"name":"MNT Health Safety and Welfare Expiry Date", "value": expiry_date},
     {"name":"MNT Infection Prevention L1 Completed", "value": "True"},
     {"name":"MNT Infection Prevention L1 Expiry Date", "value": expiry_date},
     {"name":"MNT Infection Prevention L2 Completed", "value": "True"},
     {"name":"MNT Infection Prevention L2 Expiry Date", "value": expiry_date},
     {"name":"MNT Information Governance Completed", "value": "True"},
     {"name":"MNT Information Governance Expiry Date", "value": expiry_date},
     {"name":"MNT Moving and Handling L1 Completed", "value": "True"},
     {"name":"MNT Moving and Handling L1 Expiry Date", "value": expiry_date},
     {"name":"MNT Moving and Handling L2 Completed", "value": "True"},
     {"name":"MNT Moving and Handling L2 Expiry Date", "value": expiry_date},
     {"name":"MNT Basic Prevent Awareness Completed", "value": "True"},
     {"name":"MNT Basic Prevent Awareness Expiry Date", "value": expiry_date},
     {"name":"MNT Prevent Awareness Completed", "value": "True"},
     {"name":"MNT Prevent Awareness Expiry Date", "value": expiry_date},
     {"name":"MNT Resus L1 Completed", "value": "True"},
     {"name":"MNT Resus L1 Expiry Date", "value": expiry_date},
     {"name":"MNT Resus L2 Adult Completed", "value": "True"},
     {"name":"MNT Resus L2 Adult Expiry Date","value": expiry_date},
     {"name":"MNT Resus L2 Newborn Completed", "value": "True"},
     {"name":"MNT Resus L2 Newborn Expiry Date", "value": expiry_date},
     {"name": "MNT Resus L2 Paediatric Completed", "value": "True"},
     {"name":"MNT Resus L2 Paediatric Expiry Date", "value": expiry_date},
     {"name":"MNT Safeguarding Adults L1 Completed", "value": "True"},
     {"name":"MNT Safeguarding Adults L1 Expiry Date", "value": expiry_date},
     {"name":"MNT Safeguarding Adults L2 Completed", "value": "True"},
     {"name":"MNT Safeguarding Adults L2 Expiry Date", "value": expiry_date},
     {"name":"MNT Safeguarding Adults L3 Completed", "value": "True"},
     {"name":"MNT Safeguarding Adults L3 Expiry Date", "value": expiry_date},
     {"name":"MNT Safeguarding Children L1 Completed", "value": "True"},
     {"name":"MNT Safeguarding Children L1 Expiry Date", "value": expiry_date},
     {"name":"MNT Safeguarding Children L2 Completed", "value": "True"},
     {"name":"MNT Safeguarding Children L2 Expiry Date", "value": expiry_date},
     {"name":"MNT Safeguarding Children L3 Completed", "value": "True"},
     {"name":"MNT Safeguarding Children L3 Expiry Date", "value": expiry_date},
     {"name":"MNT Violence and Aggression Completed", "value": "True"},
     {"name":"MNT Violence and Aggression Expiry Date", "value": expiry_date}
]
print(credential_attributes)


### 5.3 Issue the Mandatory Training Credential 

In [None]:
record = await agent_controller.issuer.send_credential(connection_id, mandatory_training_schema_id, mandatory_training_cred_def_id, credential_attributes, trace=False)
record_id = record['credential_exchange_id']
state = record['state']
role = record['role']
print(f"Credential exchange {record_id}, role: {role}, state: {state}")

## 6. Issue Occupational Health Credential

### 6.1 Populate the Occupational Health Attributes

In [None]:
today = str(date.today())

skin_test = input("Please enter the skin test result: ")
pox=input("Please enter the History of Ch. Pox or Shingles: ")
tb=input("Has the doctor ever had exposure to TB : ")
tb_treatment=input("Has the doctor ever been treated for TB : ")

chest = input("Please enter the result of a TB Chest X-Ray: ")
allergies = input("Does the doctor have any alergies: ")

credential_attributes = [
     {"name":"OCH DTP Imm. Date","value": today},
     {"name":"OCH DTP Serology Date","value": today},
     {"name":"OCH Hep B Imm. Course Date","value": today},
     {"name":"OCH Hep B Booster Date","value": today},
     {"name":"OCH Hep B sAg Serology Date","value": today},
     {"name":"OCH Hep B Ab Date","value": today},
     {"name":"OCH Hepatitis C Serology Date","value": today},
     {"name":"OCH MMR Foundation Shot 1 Date","value": today},
     {"name":"OCH MMR Foundation Shot 2 Date","value": today},
     {"name":"OCH Varicella Imm. Course Date","value": today},
     {"name":"OCH Varicella Ab Date","value": today},
     {"name":"OCH Measles Ab Date","value": today},
     {"name":"OCH Rubella Ab Date","value": today},
     {"name":"OCH HIV Serology Date","value": today},
     {"name":"OCH BCG Vacc. Date","value": today},
     {"name":"OCH TB Skin Test Result","value": skin_test},
     {"name":"OCH History of Ch. Pox or Shingles","value": pox},
     {"name":"OCH History of Exp. to TB (or ever investig.)","value": tb},
     {"name":"OCH Ever Treated for TB","value": tb_treatment},
     {"name":"OCH Chest X-Ray Outcome if Exp. to TB","value": chest},
     {"name":"OCH Allergies","value": allergies},

]
print(credential_attributes)

# 6.2 Issue the Training Placement Credential

In [None]:
record = await agent_controller.issuer.send_credential(connection_id, occ_health_schema_id, occ_health_cred_def_id, credential_attributes, trace=False)
record_id = record['credential_exchange_id']
state = record['state']
role = record['role']
print(f"Credential exchange {record_id}, role: {role}, state: {state}")

## 7. Issue the Doctor an Assignment Credential

## 7.1 Populate the Assigment attributes

In [None]:
emp_org = input("Enter the employing organisation for this assignment: ")
ods_code = input("Enter the employing organisation ODS Code:")
job_title = input("Enter the assignment job title: ")
start = input("Enter the assignment start date:")
end_date = input("Enter the assignment end date")
department = input("Enter the department:")
staff_group = input("Enter the staff group:")
role = input("Enter the job role:")
pay_band = input("Enter the assignment Pay Band:")
area = input("Enter the area of work:")
occ_code = input("Enter the Occupation Code:")
smartcard = input("Enter the smartcard number")

credential_attributes = [
     {"name":"LEA Employing Org","value": emp_org},
     {"name":"LEA Employing Org ODS Code","value": ods_code},
     {"name":"LEA Job Title","value": job_title},
     {"name":"LEA Start Date","value": start},
     {"name":"LEA Fixed Term Contract End Date","value": today},
     {"name":"LEA Department","value": department},
     {"name":"LEA Staff Group","value": staff_group},
     {"name":"LEA Job Role","value": role},
     {"name":"LEA Pay Band Afc","value": pay_band},
     {"name":"LEA Area Of Work","value": area},
     {"name":"LEA Occupation Code","value": occ_code},
     {"name":"LEA Smartcard Number","value": smartcard},
]

print(credential_attributes)

## 7.3 Issue the Lead Employer Assignment Credential

In [None]:
record = await agent_controller.issuer.send_credential(connection_id, lead_emp_schema_id, lead_emp_cred_def_id, credential_attributes, trace=False)
record_id = record['credential_exchange_id']
state = record['state']
role = record['role']
print(f"Credential exchange {record_id}, role: {role}, state: {state}")

## 7. End of Tutorial

Be sure to terminate the controller so you can run another tutorial.

In [None]:
response = await agent_controller.terminate()
print(response)

# You can now proceed to interact with the [Host Employer](http://127.0.0.1:8892)
