Thanks a lot for documenting this :)
Thanks a lot for documenting this :)
I’ve been running Unity on my Debian machine, and I’m pretty amazed by how well everything works, though it is not listed as an officially supported distro. It should also work for any other distro, Ubuntu, Fedora and the like.
The preferred way of installing Unity on Linux is by first installing Unity Hub.
You can find the Unity Hub setup file in here:
https://public-cdn.cloud.unity3d.com/hub/prod/UnityHubSetup.AppImage
You can also refer to Unity Hub sub-forum in forum.unity.com to make sure that you’re downloading the latest available version.
Once downloaded, you may need to give execute permission to the UnityHubSetup.AppImage
cd /path/to/download/dir
sudo chmod +x UnityHubSetup.AppImage
Then run the setup file. Either run it from the terminal or just open the file from a file manager.
In the Installs section of Unity Hub application, you can choose a preferred version of Unity that you want to install. Unity Hub will automatically download and install it for you. Unity Hub also helps us to easily switch between different versions of Unity.
If your Unity crashes, most probably your graphics driver is to blame.
If you have an Intel graphic card that is 2007 or newer, try uninstalling xserver-xorg-video-intel Your system will then default to use the builtin modesetting driver instead.
dpkg -l xserver-xorg-video-intel
sudo apt-get purge xserver-xorg-video-intel
If that still not fix your issue, try asking in the forums.
If it’s not a known issue, you could also send a bug report, which will open an issue in Issue Tracker and Unity team will get back to you.
I’ve been running Unity on my Debian machine, and I’m pretty amazed by how well everything works, though it is not listed as an officially supported distro. It should also work for any other distro, Ubuntu, Fedora and the like.I was stuck in a error which saying “Attempted to assign to readonly property” when i tried to add new element in the clone object of the redux state.I used spread operator , And it work properly in the emulator ( in my case ) . But when it comes to real devices it don’t work.
const userData = {… reduxState.UserData}
So i was searching for the solution. And this spread operator cannot clone “deep objects”. What i meant by the “deep objects”. Here is one example for Deep object.
example for deep Object.So what we gonna do ?
I found many alternative from the Internet for this problem. But the the best option is lodash CloneDeep method. :) .It can be very costly option which will take some time to execute. But it can perfectly clone the deep object and help to handle read only objects.(Mainly you work with redux states)
import _ from “lodash”;
Var newObject = _.cloneDeep(deepObj);
newObject will be a exact clone of the deep Object and it will be not equal to the deepObj.
 |
| Photo by James Arbaugh, via OpenMRS Talk |
 |
| Photo Credit: Jan Flowers, via Twitter |
 |
| Little India group shot (Photo from Mayank Sharma) |
 |
| Photo Credit Hong Phuc Dang |
 |
| Photo Credit Hong Phuc Dang |
 |
| Photo Credit Hong Phuc Dang |
 |
| Photo Credit Hong Phuc Dang |
 |
| Mayank, Paul, Burke, and myself (from left to right) (from Mayank Sharma) |
 |
| Photo Credit to Mayank Sharma |
 |
| Photo from Mayank Sharma |
by Robert O'Connor (noreply@blogger.com) at December 02, 2018 09:21 AM
OAuth is a specification and it is being used to Authorization of resources for different outside people. We are using OAuth 2.0 as the standard specification by the time of writing this post. OAuth is a very simple workflow which has defined to allow the facility for the resource owner to share resources in a more controlled manner.
Today, almost all the giants in software industry adhere to this specification so that other software systems can easily share resources in between the system.
OAuth 2.0 is a HTTPS-based protocol which enables a resource owner (the end-user), using a user-agent (typically a browser), lets a client (typically an API consumer) access a protected resource on a resource server (typically an API provider) using credentials stored on an authorization server. Access to the protected resource is authorized by an access token.
Clients are assigned secrets that are shared with the authorization server.
1. Authorization Flows
There are 4 flows available.
1.1. Authorization Code flow
The Authorization Code flow is used when the client is a third-party server or web application, which performs the access to the protected resource.
The client does not have access to the resource owner credentials.
The user-agent connects to a URL hosted by the client. The client redirects the user-agent to the authorization server, including information identifying itself (a client id), the request (scope — the permissions being requested), and a URL pointing back to the client (redirect URL — it is referred to as an URI in the spec though it is always a HTTP URL).
The authorization server authorizes the resource owner, and may perform authentication such as username/password verification, and confirmation of the action requested. On success, it directs the user-agent back to the client through the provided redirect URL, adding an authorization code to the URL.
The redirect URL typically points to a server-side script that requests the access token through a POST to the authorization server. The POST is authenticated by the client secret, and provides the authorization code received as proof that the resource owner has indeed authorized the request. The server responds with the access token and an expiration time in the POST response.
1.2. Implicit Grant flow
The Implicit Grant flow is used when the user-agent will access the protected resource directly, such as in a rich web application or a mobile app. The client secret is not used.
The user-agent connects to a URL on the authorization server. This could either be a direct connection, or through a redirect made from the client. The request contains the client id, the request scope, and the redirect URL. If the authorization server passes the request, it performs a redirect to the redirect URL with the access token and expiration time in the fragment (after the hash #).
While the redirect URL points to the client, code inside the client (that is, the server-side app) does not see it. Instead, the URL may be used to load JavaScript that takes the access token from the URL and uses it. Or, a mobile app can capture the redirect, extract the access token and use it in its code, in which case the URL may just point to static content.
1.3. Resource Owner Password Credentials flow
The resource owner password credentials flow is used when the resource owner trusts the client to get its username and password. The client obtains the credentials through other means that are out of scope, then passes them directly to the authorization server to request an access token. This flow can be used to migrate traditional username/password authentication schemes.
1.4. Client Credentials flow
The client credentials flow obtains the access token purely based on the client shared secret.
2. Access to the Protected Resource
Once the client or user-agent (in the implicit grant flow) has the access token, it may use it to access the protected resource. There are 2 standard ways of sending the credentials, though more can be defined.
2.1. Bearer Token
The access token is should be placed in the Authorization HTTP header, and may only be placed in a POST request body, or the GET URL parameters as a fallback option.
2.2. MAC
A cryptographic MAC (Message Authentication Code) is computed using elements of the request and sent in the Authorization header. The Resource Owner computes and compares the MAC upon receiving the request.
The access token may only be placed in the Authorization HTTP header
3. Refresh Tokens
In the Authorization Code and Resource Owner Credentials flows, the authorization server implementation may choose to issue a refresh token. This refresh token may be used to obtain a new access token without requesting authorization again.
Slides of my PhD defense “Bidirectional Visible Light Communications for the Internet of Things” are available here: slides
I will share the manuscript very soon.
Recently, I got an opportunity to work on an awesome project which included hardware and software development. The project was about Tractor Telematics. For starters, we needed to track the location of a tractor in real time. So, we the one and only way for it was to use Raspberry Pi and a GPS module. While trying to make things work, I faced a lot of problems in the configuration and there was no one-stop guide for it. Hence, I decided that I will write a blog about how I did it and what problems I faced along with their solutions.
NOTE: All of these steps were done on a Raspberry Pi 3 model B and ublox neo-7m GPS module but it should work on other models too.
sudo raspi-config
Select -> Interfacing Options
After selecting Interfacing option, select Serial option to enable UART
Then it will ask for login shell to be accessible over Serial, select No shown as follows.
At the end, it will ask for enabling Hardware Serial port, select Yes,
Finally, our UART is enabled for Serial Communication on RX and TX pin of Raspberry Pi 3.
Then, reboot the Raspberry Pi.
In the GPS module I have there were total 4 connections to be made as follows:
Note that Pin 1 is the one facing the memory card slot and Pin2 is just adjacent to it. Refer to following images for better understanding.
GPIO Pins numbering
sudo apt-get install gpsd gpsd-clients
Now, run the GPSD client
sudo gpsd /dev/ttyS0 -F /var/run/gpsd.sock
Here, ttyS0 is my serial port where GPS data is received, for other Raspberry Pi models this might be different. So, just replace ‘XXX’ in ttyXXX with appropriate name.
Now, type the following code to check the connections.
cat /dev/ttyS0
You should see a continuous stream of data. It is raw GPS data in NMEA format. If you see something like $GPTXT,01,01,01,NMEA unknown msg*58 a lot then check your serial port configuration. If the ‘echo’ option is enabled that will cause this problem. Just do stty -F /dev/ttyS0 -echo to disable echo then cat the gps serial device and those messages should stop.
Now, after this type cgps and you should see something like below.
After some time the data will be shown here.
If the cat command shows data but you get nothing in cgps at all do the following :
Note : It may take sometime for GPS module to receive data. So it time or anything else is shown in cgps that means configurations are all ok but module is not receiving GPS signals. So, just wait for sometime.
1. Check GPS data stream
cat /dev/ttyS0
You should see the NMEA stream
2. Check GPS data with gpsmon
gpsmon /dev/ttyS0
It should run properly with the data stream
Note : It first two steps didn’t work, check you connections and configurations properly.
3. Run gpsd in debug mode
sudo gpsd /dev/ttyS0 -N -D3 -F /var/run/gpsd.sock
It should say that it is already running
4. Now type the following lines.
sudo systemctl stop gpsd.socket
sudo systemctl disable gpsd.socket
5. Now, launch gpsd again
sudo gpsd /dev/ttyS0 -F /var/run/gpsd.sock
Now, cgps should get a fix and no timeout.
After all the proper configurations, you need to run sudo gpsd /dev/ttyS0 -F /var/run/gpsd.sock every time the pi is rebooted. If you are using it as an IOT project you might want to automate everything.
Create a file at /etc/rc.local
sudo nano /etc/rc.local
Add following contents to the file
#!/bin/sh -e
sudo gpsd /dev/ttyS0 -F /var/run/gpsd.sock
exit 0
This will run our sudo command on every boot.
I used a simple python script to get latitude and longitude from the gps module.
https://medium.com/media/56f206f35366e4671a3fdaa2f957ce00/hrefHere, I print the Latitude and Longitude but you can actually do whatever you like with them and later on make this script to run every time on boot using cron job.
To make a cron job first type crontab -e and in the window that appears write the following command.
@reboot cd /home/pi/ && python sendCoordinate.py
Change the path and file name accordingly.
Now, after everything was setup the system was working pretty nice. But after 2–3 trial runs I found that something was crashing and I was not able to get the coordinates on my web server.
Now, there could be only two problems, either the GPS module is not configuring properly on every startup or my internet connection had some issues on boot. After hours of hit-and-try, and trying several permutations and combinations of different things on the internet I did the following to make it work.
I made a shell script startup.sh and added the following lines of code to it.
sudo gpsd /dev/ttyS0 -F /var/run/gpsd.sock
stty -F /dev/ttyS0 -echo
sudo systemctl stop gpsd.socket
sudo systemctl disable gpsd.socket
sudo killall gpsd
sudo systemctl stop gpsd.socket
sudo systemctl disable gpsd.socket
sudo gpsd /dev/ttyS0 -F /var/run/gpsd.sock
sleep 10s
nohup python /home/pi/sendCoordinate.py > pylog.test &
Then I made it an executable.
sudo chmod 755 ./startup.sh
After added it as cronjob to be executed on every startup and everything ran without any problems. My crontab file looked like this.
@reboot cd /home/pi/ && sh startup.sh
Note : I know some of the lines in startup.sh are redundant and may not be necessary but due to time crunch I was not able to further test it and make it more simpler. If you are reading this and have a more optimal foolproof solution kindly let me know in the comments or at ayushgoyal.iitkgp@gmail.com .
After 3 year of intensive at Rtone and in the AGORA of the CITI Lab, I’m proud to announce that I will defend my PhD thesis “Bidirectional Visible Light Communications for the Internet of Things”.
It will take place on Tuesday October 9th starting at 2PM, at the Amphitheater CHAPPE - Department TC, INSA de Lyon, 6 avenue des arts, Villeurbanne.
You can find an abstract of the thesis and the jury in the following.
With the exponential growth of the Internet of Things, people now expect every household appliance to be smart and connected. At the same time, smartphones have become ubiquitous in our daily life. Their continuous performance improvement and their compatibility with a broad range of radio protocols as WiFi, Bluetooth Low Energy (BLE) or NFC make them the most convenient way to interact with these smart objects. However, providing wireless connectivity with BLE or NFC means adding an extra chipset and an antenna, increasing the object size and price. Previous works already have demonstrated the possibility of receiving information through visible light using an unmodified smartphone thanks to its camera. Also, LED-to-LED communication for smart devices like toys has been shown previously. However, past efforts in LED to camera communication for IoT device communication have been limited.
In this work, we design LightIoT, a bidirectional visible-light communication (VLC) system between a low-cost, low-power colored LED that is part of an IoT device and an off-the-shelf smartphone. The IoT device is thus able to send and receive information through its LED, while the smartphone uses its camera to receive data and its flashlight to send information. We implement and experimentally evaluate a LED-to-camera VLC system, designed specifically for small LEDs. The proposed solution exploits the rolling shutter effect of unmodified smartphone cameras and an original decoding algorithm, achieving a throughput of nearly 2 kb/s. Based on the insight gained from an extensive experimental study, we model, for the first time in the literature, the LED-to-camera communication channel. We propose a Markov-modulated Bernoulli process model, which allows us to easily study the performance of different message retransmission strategies. We further exploit this model to implement a simulator for LED-to- Camera communications performance evaluation.
In order to achieve bi-directional communications, we evaluate flashlight-to- LED communications using non-rooted smartphones and small LEDs. With these constraints, our implementation achieves a throughput of 30 bits/second. While limited, this is enough for a feed-back channel coming to support the required redundancy mechanisms. Some of these redundancy mechanisms are based on random linear coding, never tested previously in VLC. Therefore, we design and implement, for the first time in the literature, a pseudo random linear coding scheme especially fitted for line-of-sight LED-to-camera conditions. Experimental evaluation highlights that this type of approach increases the goodput up to twice compared to classical retransmission strategies.
Finally, we compare the energy consumption of LightIoT with the one of a BLE module with similar activity. Our results show that using the LED for communication purposes reduces the energy consumption under a normal usage behavior.
It’s a type of web application vulnerability. At the most basic level, the reason for a CSRF is that browser’s do not understand how to distinguish if an action was performed deliberately by a user (like say by clicking a button on a form, or clicking a hyperlink etc.) or if the user unknowingly performed the action (like say user visited a page from some domain, say bad.com, and bad.com sent a request to good.com/some_action while the user was already logged into good.com).
Now let’s replace good.com above with facebook.com. And let’s assume that when a user, logged into facebook.com, posts a comment on his wall, there is an HTTP GET request that gets sent, of the form say,
https: //facebook.com/postComment?userId=Jude_123&comment=HiIAmJude
Now let’s assume that the user, while he is still logged in to facebook.com, visits a page on bad.com. Now bad.com belongs to an attacker where he has coded the following on bad.com:
Now as soon as the user’s browser loads the contents of this page on bad.com, a request also gets sent to facebook.com as :
https: //facebook.com/postComment?userId=Jude_123&comment=I_AM_SO_LAZY
because the browser tries to render the img tag. To do so it needs to fetch the resource specified in src and hence it sends the above HTTP GET request. So essentially the attacker could actually submit a request to facebook.com on behalf of the user without him actually knowing this.
Now what could have potentially prevented this attack ?
If only there was some way to identify if the request was made by the user intentionally. So to do this, anti-CSRF token came into the picture. It is just a random, unique string generated by the server (facebook.com in our example above) and sent over to the user and set in the browser of the user as a cookie. Now for every request involving some sensitive action (like posting a comment in our facebook example above) the browser will send this random string also along with the request and the server before performing the action would verify if the random string is the one that it had sent to the browser or not.
The idea is that this random string will not be known to the attacker. So even if the attacker creates a img src as shown above, and the user visits bad.com, the action (of posting a comment in our example above) will not be performed, because for the action to be performed, apart from the URL, an additional thing is also required, which is the random string, which the attacker does not have.
But setting this random string in a cookie again has a HUGE flaw
Because of the way cookies are designed and the way in which browsers handle cookies, setting this random string (the anti-CSRF token) in the cookie will not serve our purpose. By design, cookies are automatically sent to the server with every request that the client makes to that server (simply put, and details ommited for simplicity. For more details refer : RFC2965)
So, in our example above, the attacker does not really need to know the random string. The posting comment action will still be completed because as soon as the user visits bad.com and loads the post comment URL (as explained above) the random anti-CSRF token (present in the cookie) will automatically accompany the request.
So what is the solution then ?
Instead of putting the anti-CSRF token in the cookie, the server (facebook.com) needs to put it as a hidden parameter in a form and make when the user requests for posting a comment this form (holding the anti-CSRF token) should also be posted.
Now the attacker has no way of performing this sensitive action on behalf of the user (unless he somehow finds out the random anti-CSRF token itself)
Now coming to the problem of login CSRF and double submit cookie
A lot of times websites would protect themselves against CSRF attacks by deploying some form of anti_CSRF token architecture. But a lot of times websites do not care much about protecting their login form against CSRF attacks. Why ? — Because even a login form is vulnerable to CSRF and an attacker tries exploiting it by framing a login request to good.com (facebook.com) through his domain (bad.com), the the user would still need to enter his valid credentials to get loggedinto facebook.com. These credentials are available only with the genuine user and not the attacker and hence the attacker can not frame a successful login request.
So what is the attack opportunity for the attacker here ?
The attacker can create his own account with facebook.com. He now has a valid set of credentials for himself. Now he frames the login request to facebook.com, with his login credentials, and on his domain (bad.com). Now when the user visits the page, bad.com, the user is logged into my account. I as an attacked can later see all the activities performed by the user on the account possibly disclosing sensitive info as well (like say friend requests sent if the user chooses to send new friend requests, messages sent to someone, again if the user does so after logging into my account. All of these possibilities depend on how convinced the user is that he has logged into this own account, which again the attacker can take care of by making his own facebook page look as close to the victim’s as possible to con him into believing that it is his account)
So now what is the mitigation technique against this?
It is a double submit cookie that we need now here.
What exactly does this mean
Double submitting cookies is defined as sending a random value in both a cookie and as a request parameter, with the server verifying if the cookie value and request value are equal.
How does it help mitigate the attack ?
As per the implementation principle of a double cookie, when an anonymous user (not logged in user) visits a login page the server sets a cookie with some random string in the user’s browser and also sets the same in a request parameter as well (say a form hidden field). When user submits the login request, these things get submitted with the request — the user credentials, the random string in the hidden form field and the cookie holding the random string (that gets sent automatically of course).
Now an attacker will have access to his own credentials, the random string set by the server in cookie and in the hidden form field for the attacker. When the attacker sends this crafted login request to the user (the victim), and the user tries to make this request, the user is still not logged in and is an anonymous user for the server so far. So the server will set a cookie on the user’s browser with a different (from the attacker’s) random value. Now when the user makes the request for login through the attacker’s crafted link, the request will contain the attacker’s credentials, the attacker’s random string in the hidden form field, but the user’s random string in the cookie (coming from the user’s browser). Now when this request reaches the server, the random strings in the cookie and the hidden form field would not match and thus would be flagged as an exception and handled accordingly.
So this the reason for the the return of the encrypted value with the form as well. Hope it clears the concept.
JudeNiroshan/CSRF_Double_Submit_Cookies_Pattern
From September 3 to 7, I attended for the second time the Summer School on Security & Correctness in the Internet of Things 2018 organized by IAIK, in Graz, Austria.
This year, the school was collocated with the IoT Security Week.
Top level speakers in the field of security gave presentations about software/hardware attacks and countermeasures: binary exploitation, code reuses/injection, hardware side channels, cache covert channels, formal analysis, lightweight cryptography (LWC), etc.
CSRF or Cross-Site Request Forgery is a well known security attack that is listed in OWASP security risks. CSRF is basically running malicious JavaScript code pieces to a targeted website without the knowledge of the browser user. It is more target centric attack where intruder has to know what s/he wants to perform.
Synchronizer Token Pattern is a very simple concept to mitigate the risk of being attacked through CSRF. In most web applications, servers are using HTTP session objects to identify the logged in users. In this case, session is generated in the server side and pass the session ID to the client. This session ID is most of the time is saved in a client side cookie file.
Because of this session ID is being saved in client side cookie file, if the cookie is not protect with advanced configurations(httponly, samesite, secure, etc), it is possible to access this cookie from another page that has open in the client browser. That is probably in a different browser tab.
It is possible that in JavaScript we can access dynamically create an html form without a UI and submit it to a given endpoint. This way, intruder can even withdraw money from your account without your awareness. You can be happy visiting an intruder web page, but it will internally withdraw money from your fakebank account.
There is a nice StackOverflow question and an answer on Synchronizer Token Pattern.
How is using Synchronizer Token Pattern to prevent CSRF safe?
I have implement how this pattern can avoid CSRF in the below github repository. It analogues with the StackOverflow question.
The tricky part is on 6. point. Legit user has a hidden token which was generated in the server side. There is a mapping between the session ID and this generated CSRF token. Therefore, when we make the 6. withdraw call, server will check whether client has provided that particular CSRF token embedded in the HTML form. End user has no clue that there was a hidden form field in that HTML form.
On the other hand, intruder doesn’t know that there is a CSRF token associated with the session ID. So, when s/he tries to withdraw the money, server will compromise that it is a malicious request.
Note: It is possible to think why in the world that intruder just obtain that particular CSRF token and make the request? Simple answer is, it is because this whole thing happens in someone’s browser. It is not happened in intruder’s premises. Refer to the above Stack Overflow question for more details.
This is really awesome. A couple of suggestions, the narration of embedded hyperlinks will be very useful, giving more stress on the headlines to distinguish them from the description will also be helpful and lastly, I feel for the directly written website address skipping the “https://” part will make the listening more engaging.
On the whole great work!
While working on a recent Django project, I was stuck when I needed to send custom context in redirect request. I googled a lot and still didn’t find any way to do so. Hence I devised my way to do so.
This blog is more of a reminder of how I managed to do so.
Since you are facing this issue, I am assuming you have a basic idea on the working of Django. So, we will not go into details.
Assuming you following two views in your views file.
def view1(request) :
..
context = {
..
}
..
return render(request, "../../xyz.html", context=context)
def view2(request) :
..
context = {
..
}
..
return render(request, "../../abc.html", context=context)
Now, if you want to redirect to view1 from view2 along with its context, you can modify your functions like this.
def view1(request, newContext={}) :
..
..
context = {
..
}
context.update(newContext)
..
return render(request, "../../xyz.html", context=context)
def view2(request) :
..
context = {
..
}
..
response = view1(request, context)
return response
So, what happens here is, since in view1 the newContext parameter is already initialised, the normal calling of it in the Django architecture will not be hampered and the context.update(newContext) has no effect and when view2 calls view1, a response is returned so it can be directly returned from view2.
Note that this will not change the URL.
Really useful and easy to understand !
Project — Enhancements of Attachments Module.
Primary mentor : @mksd ( Dimitri R)
Backup mentor : Muhammad Ahmed Memon , chine zoheir
Student: Ridmal Madushanka
Project wiki: Link
OpenMRS is an open source configurable software platform that provides health facilities with the ability to customize their electronic medical records (EMR) system with no programming knowledge. The Attachments Open-MRS add-on module (in short: ‘Attachments’) enables to view and manage file attachments. With it users (with the appropriate privileges) can upload , view and delete attachments associate with a patient record. Attachments both integrates on OpenMRS Clinician Facing Patient dashboard and Visits & Encounters Patient dashboard.
Main objective of this GSOC program is to enhance Attachments to qualify it for a 2.0 release. So it consist of two main objectives.
See JIRA tickets : ATT-24 , ATT-27
2. Segregate Attachment UI to Open Web APP ( research part ).
My mentor and I did discuss the possible approaches to do this, but we decided that there was not enough time to finalise such a large piece of UI code migration and refactoring.
The descriptions of all contributions can be found in the below blog posts. Flowing Commits are my contributions to Attachments in this GSOC program.
Mid-Term Presentation :
https://medium.com/media/662845315767d87b6b6bc1eb1e8dc5ba/hrefWeekly Blog posts :
OpenMRS talk thread :
All the things i have been working on from the beginning of the GSOC program are recorded in the OpenMRS Talk threads below.
The segregate of Attachments UI to an Open Web App has not yet started. This will require more design and development time and I hope to continue this work beyond the GSOC program.
Actually this is my first time with GSOC and it was really awesome experience to me. Able to work with top level developers and gain more knowledge with the help of them. The most amazing thing in the GSOC program is that we can get more things we didn’t expected. For example Attachment module is used test driven development for its implementations and because of that i am able to learn and practice test driven development strategies first time.
And i loved every moment i worked in this GSOC program. Most specially i would like to thanks @mksd who help me a lot in this time period. He gave me lot of knowledge , motivate me , Kind to me and always correct my mistakes. He work with very patient and he always allow me to talk anytime to him even he is very busy with other works.I am very glad to meet him in this GSOC program. Also i would like to thank all the others including my backup mentors who helped me in this time period.And I wish to continue my work with this awesome Organization and “ Write code to Save lives”. :-)
Hello Everyone! This was the last week of the Google Summer of Codes program and we were supposed to submit the final evaluations containing details of all the work, documentation etc. Below I shall try to give you all an overview of what the project was, how I went about it and what was achieved finally.
Overview:
The HTML Form Entry module of OpenMRS module family allows people with basic HTML skills to develop forms and enter data into the system via these forms using the OpenMRS UI. The HTML Form Entry module being very old, even predating the REST API, uses a generic HTML Form Submission process to create and edit encounters and obs. There were requirements in recent times where people wanted to be able to submit these same forms using a REST API (each one having their own specific use cases ranging from bulk entry to offline form entry)
Primary Objective
Extend the HTML Form Entry Module to allow submission of HTML forms via RESTful APIs therby Restifying all the current API endpoints.
Develop a proof of concept OWA (Open Web App) allowing basic data entry to submit HTML forms through the API so that the API can be thoroughly tested.
Due to lack of time, only the first objective could be achieved.
Work:
The project was all about making the existing HTML form entry module services available over REST. We started with studying about the controllers in the HFE module and tried to figure out the flow of how things integrate with the UI. Later on we decided on what all features are required to have REST access and also decided on the format of the API request and responses. The flow from here on was pretty much learning about spring annotations by reading the openmrs docs and implementing the controllers which internally used the HFE module’s services. There were some blockers when it came to writing tests and figuring out what all tests should be written, and also in setting up the openmrs testing environment. Writing Tests is still under progress and I aim to get it done in the following days. The state of the project as per my knowledge and expectation is that the APIs can be used by simply integrating the module with openmrs but may or may not ensure consistency according to user expectations as extensive testing is still to be done.
Contributions: The github repository for the module can be found at the below link.
https://github.com/openmrs/openmrs-module-htmlformentryrest
Resources
Brief documentation of the REST APIs can be found at:
https://wiki.openmrs.org/display/docs/HTML+Form+Entry+REST+documentation
Thoughts on GSoC:
GSoC has been a great learning opportunity for me. Got to learn a lot of new technologies, learnt to read and understand big codebases, etc. OpenSource is the core of the computer science community, development community etc. and more and more people should contribute to it.
Thank you OpenMRS for giving me this opportunity and Special thanks to my mentors for guiding me all the way.
I hope to keep in touch with the community as and when I find time to contribute whenever possible.
A Short Demo explaining how the APIs work: https://youtu.be/hYCzEfVglg4
The project wiki can be found at the below link:
https://wiki.openmrs.org/display/projects/RESTful+Submission+of+Forms+in+HTML+Form+Entry
GSoC with OpenMRS Final Evaluation was originally published in piyush.kundnani on Medium, where people are continuing the conversation by highlighting and responding to this story.
I am very excited to work with OpenMRS once again through this year Google Summer of Code(GSoC). Yes, I was selected to work on a project called Location Based access control in OpenMRS under the guidance of Daniel Kayiwa.
OpenMRS is an open source platform which enables the design of a customized medical records system without any of the software development experience (although it required medical and system’s analysis knowledge to use the system). OpenMRS is also a community of people working to apply health information technologies to solve problems, primarily in resource-poor environments.
OpenMRS Core is the baseline of the OpenMRS development and other modules are allowed to integrate with OpenMRS Core to expand their services and features. There are multiple distributions around the world based on the OpenMRS platform.
Currently, OpenMRS has user privileges based access control. So the user needs to have the required privilege to access some of the OpenMRS service. Anyway, OpenMRS doesn’t have any proper location control for their services. Even anyone from any location can access the stored data(eg: Patients information, Encounters, etc)in the OpenMRS. Actually, still, they haven’t concerned about the location management inside the OpenMRS. But we should prepare the OpenMRS to support the access control based on the locations. It will add more value to the data security also and accessibility also.
Like the privileges based access control, we decided to implement a Location based Access control system for the OpenMRS. It will manage the access to all services based on the locations. Some implementations want to register the users and patients (the persons also) in certain selected locations. Then access them based on the location that someone has logged in. That way, if someone is logged in a certain location, they should see only those encounters, observations, and patients registered in that location.
Anyway, the user who has multiple locations access (like Admin in our privilege based access control system) should be able to see patients in all locations. We can allocate multiple locations access to the System Developer or System administrator.
As we planned, I have started to work on this project. As the first step, We decided to implement this feature as a separate module which can be attached to any OpenMRS distributions easily. The first phase of this project is planned to carry out through the Google Summer of Code period, and later on, it will be continued with more features.
These are the deliverables from the first phase of this project through the GSoC time,
I have to work for 12 weeks to complete the goal of Google Summer of Code program with OpenMRS. As the first step, I have worked on the Spring Aspect-Oriented programming(AOP) with OpenMRS which is the core part of our module. We decided to track the OpenMRS major services methods which are dealing with patients, users, persons, encounters, and cohorts to restrict by the locations.
The first plan of our project is to restrict the patients by their locations. So I wanted to allow the users to register the patients with the location property which will be used to track them by the locations later. OpenMRS patient dashboard can be customized to include more fields using the app definition properties. So I used this feature to attach a location selector with the Patient Registration dashboard. After this, I worked to bring this feature for the Patient EditSection which can allow users to assign the location to the existing patients. So We have provided a basic implementation to assign the locations for the patients. Then I have worked to restrict the patients by the locations using the AOP techniques. I have added the AOP Advices to track the PatientService methods which are directly dealing with the patient objects.
So as the result,
Customized Patient Dashboard with Patient Location Selector
Customized Location edit section for the patients
Patient Location Information the Patient DashboardThe second phase of this project was to restrict the users by the locations. The ultimate target of this goal is to avoid the location selector from the login screens while logging-in to the OpenMRS. The user registration was done in the OpenMRS AdminUI module, and I can’t make any required changes on that dashboard to assign the locations during the registrations. So we decided to add more feasibility to the user registration dashboard to customize the registration fields using the OpenMRS extension configurations which can easily decouple the modules from the AdminUI. So I worked to implement this feature in the AdminUI module — User registration dashboard, and added support to autosave the field values with the dashboard updates for Person Attributes and User properties (the third party module doesn’t need to handle the update of that field information if it configured as a personAttribute or user property, it will be automatically saved by the Account dashboard itself).
So as the result,
Adding custom fragments to Manage Account dashboard - Documentation - OpenMRS Wiki
Finally, I have used this feature to include a custom location selector in the user registration dashboard to allow the users for selecting the locations during the registrations. I configured to save that location information as the user property for that respected user.
Customized user registration dashboard with location selector
Customized user view section with the assigned locationCurrently, OpenMRS requires to select the locations during each user logins and that location is kept as a session variable in the web layer for the future usage. Since I have already added the feature to assign the locations to the users by the location properties, It can be able to fetch the user location again from the user property. So no more requirement to select the locations during each login. Finally, I have removed the location selection from the login screen.
So as the results,
OpenMRS login screen without the location selectorSo I have almost completed the location assignment part for the patients and users during the registrations. Now the time to add more restrictions for those objects by the location properties. So I wanted to figure out the solutions for,
So I have worked with my mentor to analyze those scenarios and added solutions to restrict those by the locations.
The user is able to see the Patient — Suthagar in the Inpatient Ward
The user couldn’t see the patient — Suthagar in the Isolation WardAs we completed the first phase of this project, we decided to release the very first beta version of this module for the public usage. You can get the module from the OpenMRS Add-Ons or Bintray using this following link,
Detail module deployment guidelines can be found from this link,
Location Based Access Control - Deployment Steps - Documentation - OpenMRS Wiki
Location based access control project Link to the OpenMRS JIRA : LBAC
I wanted to work on multiple components in the OpenMRS to address the location based control implementation. I have listed those tickets below,
LBAC — Location Based Access Control
RA — Reference Application
EA — EMR API module
RCM — Reporting Compatibility module
We had a brief discussion about each and every pull requests for the tickets and my mentor reviewed those pull requests as soon as possible to hurry the project implementation. Actually, he worked me to review each and every line of the pull requests to improve the code quality. I was able to learn much about the code quality and the techniques through those pull request reviews.
This is the mid-term presentation for OpenMRS about the project. I have added some demonstrations about the project in this video.
https://medium.com/media/80372a691c977d64e8079e4cf6f406a5/hrefWeekly Reports are listed below,
Not like last, This time I was able to dive more into the OpenMRS. Yes, I had a chance to make a new module for OpenMRS this time. I have worked with Java, Spring, and Angular during the project time, and got a lot of experience for the better programming and about the quality of the code. I would like to thank my awesome mentor Daniel Kayiwa who helped me a lot during the last three months. I never felt about the remove working during the GSoC time, Since I was able to get the reply for each questions and discussions quickly from my mentor.
The OpenMRS community also helped me a lot to clarify my problems and issues during the development time in the multiple components of OpenMRS.
Again a change to…. Write Code, Save Lives….!
In that case, TestDisk could help. It is a disk utility designed to help people recover their lost partitions.
To install it, here in my case on Debian, I’ll do
$ sudo apt-get install testdisk
$ testdisk
TestDisk has a QUICK SEARCH option which can search and list all your missing partitions if there’s any. Most probably your missing partitions should have appeared by now. If not, try running a DEEPER SEARCH. Once it found any, use the WRITE option of TestDisk which will re-write the partition table for you.
Restart your computer and your missing partitions should now show up.
I won’t go into detail. For a more thorough guide, follow the Step By Step guide from the official Wiki.
It’s better to use Windows utilities when it comes to dealing with NTFS.
Use one or more of the following commands to find out the label of your corrupted partition.
diskpart list disk
diskpart select disk
diskpart list volumes
Once done exit from diskpart and run
chkdsk /f /r D:
where D: is the drive letter of the corrupted partition.
If you have got better solutions, let us know in the comment section.
What if my partition is not showing up or gone missing?Fixing no native package found errors
JHBuild uses apt-file to locate packages in which a given file belongs to.
When apt-file cannot locate the relevant packages for you, JHBuild would give you with informational warnings such as:
I: Installing dependencies on system: libsystemd-journal libtiff
I: Using apt-file to search for providers; this may be slow. Please wait.
I: No native package found for libsystemd-journal (/libsystemd-journal.pc)
I: No native package found for libtiff (/usr/include/tiff.h)
In such cases, first make sure that your apt-file database is up-to-date.
sudo apt-file update
Then re-run the process. JHBuild might still fails to complete the process. This could be due to several reasons. So for instance if apt-file finds several packages which includes the same file, JHBuild would fail to decide on which package to install. In that case we’d have to find the most appropriate pacakge and install it manaully. Also the actual package name can be sligtly different from the name stated in the warning.
To find the relevant package which includes the given file, you could run:
apt-file search path/to/missing.file
You could also use Ubuntu’s package archive search on web, instead of apt-file. But apt-file usually is more convenient.
For example here the missing libsystemd.pc belongs to the package named ‘libsystemd-dev’
Therefore running apt-get install libsystemd-dev should fix it.
Fixing No matching system package installed
This type of errors can be quite tricky as your distribution might not have a package that is newer than the required version.
Example cases:
libsystemd-journal (libsystemd-journal.pc, required=201)
Ubuntu’s Launchpad provides compatibility package for libsystemd-journal-dev (>201) which includes the required .pc file. Downloading and installing latest binary .deb file for your distribution should fix it.
Fixing configure errors: Package requirements (package-name) were not met
In that case do,
apt-cache search package-name
This will list down all the packages for the given keyword: package-name
Find the required development package from the list and install it. On a Debian based system the package name would probably contain a *-dev suffix. For Fedora, look for ‘-devel’
For example to fix “configure: error: Package requirements (libselinux >= 2.0) were not met”
Run the following in a terminal
apt-cache search libselinux
On my system the output is,
libselinux1 - SELinux runtime shared libraries
libselinux1-dev - SELinux development headers
libsemanage1 - SELinux policy management library
So installing ‘libselinux1-dev’ should fix the configure error.
apt-get install libselinux1-dev
Hello World! This week was very hectic as I had been undergoing training at the company that I recently started working for. Could only dedicate the weekend to the project. I played around with mockito and in memory database to try to figure out how the module could be tested. once after figuring out how the tests worked, I realised that i had to refactor the code quiet a bit to make it testable. Spent the rest of the time in refactoring and writing tests. Thats all for the update. Thanks for reading.
GSoC with OpenMRS week 10 was originally published in piyush.kundnani on Medium, where people are continuing the conversation by highlighting and responding to this story.
Bahmni is built for point-of-care use, and healthcare workers use it directly as they are seeing patients in resource-limited settings). This works for many workflows (e.g. seeing patients in the order they are queued), but adding a notification would allow for some improved workflows, by not requiring the doctor to actively remember to check on things.
For example:
The main objective of this project is to provide ability for healthcare providers to be able to subscribe (unsubscribe) to and get notifications of specific events for patients of their special interest.
Use-cases
This project is composed from 2 major components.
I create a new notification rule -> I choose a patient -> I select one or more predefined events -> I choose a notification type -> I start getting notification whenever the event happens.
2. Microservice to read Bahmni atom feed — This module keep polling the Bahmni atom feed and determines whether anything notifiable has happened.
Subscription management module expose UIs which allows users to create/modify subscriptions for notifications by associating various events (patient visit, lab result arrival etc.)
This module is composed of three layers
Flow of creating new subscriptions
https://medium.com/media/3aba746223658a8c6225958a18df2648/hrefAtom Feed Processor microservice is responsible for polling the atom feed for new notifications(events) and process them in order to identify if there are events that users are subscribed for. To be precise there are 2 layers of filters at the Atom Feed Processor.
Activity diagram of microservice
Activity flow diagramTechnologies used for the microservice
This module was developed as a proof of concept. Therefore notifications icon and logic behind it only appears in notifications owa. However this can be easily moved to Bahmni header whenever needed.
Currently, the module supports two predefined events (patient visit & lab report arrival). However, using predefined events make the module less flexible. When a user needs to add more events he has to modify the code base. Therefore having an alternative way to define events is much suitable. This can be achieved by specifying a custom schema/configuration (JSON or XML). The module should be able to parse the configuration provided by the user and add the new event.
In addition to that microservice module can be improved to handle failed events and resend them whenever the relevant user becomes available.
One of the most important things is using a graph database to specify relationships among entities/events (patient visit event has patients and the user etc.). By using a graph database we can support events with more complex relationships.
The community has been quite supportive throughout this time, and I’d like to say thank you all! Plus, we should definitely add more documentation for the resources available — like the UI Commons library.
And a special thank you to @danfuterman for always checking on my work and motivating me to do my best.
It’s been a privilege working with the OpenMRS community, and I hope to be part of it in the future as well. Thank you for a summer well spent
The Patient Clinical Summary generates a summary that is being displayed on the patient dashboard which is helpful for the clinicians to make clinical decisions without going through numerous encounters/observations. It would also be helpful for clinicians access these reports off-line specially when they visit patients in rural areas.
Mid Evaluation Presentation
It has been a wonderful experience for me for the last 12 weeks to work with OpenMRS and GSoC community. I gained lots of valuable technical knowledge. I had the opportunity to dive deep into Spring and Android in development phase. It was a real pleasure working with the likes of my mentor whom had a lot to offer me 😆.
Though GSoC is coming to an end, my contributions to the open source community starts from this year and I hope to continue it for a long time to come 😅!
by chathuranga (noreply@blogger.com) at August 13, 2018 04:42 PM
NS-3 is a discrete-event network simulator for Internet systems, targeted primarily for research and educational use. NS-3 is a free and open source software which is publicly available for research, development, and use. It has thousands of users which is backed by a active community. NS-3 participated in Google Summer of Code in 2018 and I was privileged enough to contribute to NS-3 with a great passion. I worked on developing a new trust based routing protocols framework to NS-3. I was really lucky enough to be guided by my mentor Tommaso Pecorella and Tom Henderson who is the executive director for the NS-3 Consortium.
Networks are susceptible to attacks by malicious nodes that could easily bring down the whole network. Therefore, it is important to have a reliable mechanism for detecting and isolating malicious nodes before they can do any harm to the network. Usually, routing protocols discover usable multi-hop routes between source and destination nodes. However, some of the routes found and used may not be as reliable or trust-worthy as expected. Thus, finding a trusted route is an important component for enhancing the security of communication.
Trust value will be calculated based on different routing parameters(rreq, rply, err, etc) or routing metrics(bandwidth, cost, etc). Therefore, trust will become a routing metric which can be used to determine the optimal route for forwarding packets. Eventually trust value can be considered as a security factor for making the routing decision.
Trust based routing protocols have great demand and researchers trying out many variations of them. There are quite a lot of research publications have presented on this topic and more are yet to be published. Therefore, it would be beneficial to facilitate for those developers who wish to try out any trust based routing protocol simulations on ns-3. This project has initiated the framework with a basic infrastructure.
Trust is a subjective measurement. There are many research papers have published which has various methodologies of calculating the trust value for the same routing protocol.
For e.g.: If we consider AODV routing protocol; following papers have came up with different approaches for trust value calculation.
Pushpa, A.M., 2009, December. Trust based secure routing in AODV routing protocol. In Internet Multimedia Services Architecture and Applications (IMSAA), 2009 IEEE International Conference on (pp. 1–6). IEEE.
Current NS-3 version(ns-3.28) does not welcome trust based routing protocols by default. If someone wants to simulate a trust based protocol in NS-3, there are lot of changes needs to be done in many concrete level classes. This is cumbersome and it’s against the conventions that we follow from the maintenance point of view. NS-3 cannot define only one way of calculating trust value as each of the above mentioned methods/approaches have written to serve specific concerns/issues. Therefore, it’s clear that allowing any custom trust calculation run through a framework is a better move from NS-3. This will help the developers to try out trust based frameworks in NS-3 with minimal amount of coding.
Trust framework has developed with no modifications to the existing protocols and ns-3 core modules. It has been developed as a third-party ns-3 application. Anyone who wish to use the framework can simple use the “trust-routing” module. We have planned to push Trust framework to ns-3 app store and it will be publicly available soon for anyone.
trust-routing/trust framework alone cannot transform a protocol into a trust based protocol. Usually, trust based routing protocols have different favors in terms of the algorithm and trust value calculation. Therefore, framework does provide only the abstract classes and a basic trust table. It is the responsibility of the trust framework consumer to provide a suitable trust protocol implementation to run on it. Trust framework acts as a mediator between a concrete trust based protocol and ns-3 core modules.
trust framework integrationAs you can see in the diagram, trust-aodv, trust-dsr and trust-dsdv are few of those such implementations provided to trust framework. Implementation modules contains all the different behaviors and how the entire protocol manipulation defined. Some could say that the trust-routing is an umbrella module that facilitates different trust implementations.
Similar to any other NS-3 modules, trust-routing module also have a common module structure. Sphinx documentation is available under the ‘doc’ folder. trust-manager-helper is resides inside the helper folder. Under the model, we have only three classes at the moment. Those are trust-entry, trust-table and trust-manager. Inside the test folder, test case for trust table have written.
Each record in the trust table is represented by a trust-entry instance. This includes only 3 attributes. ns3::Address, double m_trustValue, ns3::Time m_timestamp.
trust table contains the trust entry objects which includes the trust values. Intended design is to have one trust table per node in the network. This will be very similar to the routing table except that it has only trust values for different destination route nodes within the network.
trust-tabletrust-table provide basic operations to add, update, remove trust-entry records from the trust table. These methods have been covered from the test case available inside the test folder. There is also another method called AddOrUpdateTrustTableEntry() which in fact taken into discussion whether we could keep this method or not. Because it is simply a combination of AddRecord and UpdateRecord methods in the same class. This has provide for the ease of developers and achieve the task with less number of lines. But this is an controversial with the philosophical point of view of class trust-table.
In order to define the most essential operations for any trust based routing protocol, this manager has been used. It is an abstract class which forces the implementer to provide an implementation to CalculateTrust().
trust-manager -> ns3::Application
It is worth to mention that trust-manager extends from ns3::Application. This allows the developers to simply install any of the trust-manager implementations as an application to different hosts in the network. It made the usage of trust based routing protocol variations a lot easier when it comes to using them in multiple simulation setups.
Helper classes in ns-3 are usually the entry point to install the relevant applications and access other utilities. In trust framework, trust-manager-help does the same actions. This is some what like a replica to ipv4-routing-helper / ipv6-routing-helper. Currently the main usage of this class is to print the trust tables. In future there are other utilities methods can be placed inside this class.
As mentioned above in this post, trust-routing is the trust framework. Framework has developed with the intention of facilitating different types of trust based routing protocol implementations. In order to demonstrate the usage of trust framework, we have also developed a separate trust based routing protocol. We have chosen the well-known wireless routing protocol; AODV.
Transforming the traditional AODV protocol into a trust based version is implemented in this module. This is an example of how to use the trust framework and the advantages of using it. This implementation has not more focused on developing an optimal trust based routing protocol, but rather it is for the demonstration of the trust framework. Therefore, please feel free to improve it further.
This model was written as an example demonstration for transforming the
traditional AODV protocol into a trust-based AODV protocol which uses trust
to delegate packets within the network. It used trust framework(trust-routing) to access the ns-3 core modules.
trust-aodv has direct dependencies on trust-routing and aodv modules. Class
ns3::trustaodv::SimpleAodvTrustManager is the implementation to
ns3::trustrouting::TrustManager which defined in trust framework. This class includes the trust calculation logic and how the promiscuous callback function should react upon receiving intended packets to network nodes. It also holds trust parameter table which consists of ns3::trustaodv::AodvTrustEntry objects. trust parameter table is a different table to trust table. It contains parameters that can be considered when calculating the trust value. As we can see almost all the trust based routing protocols have different mechanisms to calculate the trust value. Therefore, this table is to manage such attributes for the trust value. Even though we have number of rreq, reply, error and hello counters, in our demonstration we have only used m_rreq and m_rrep.
There are 2 different types of aodv-protocol overriden files are available
under the model folder. ns3::maliciousaodv::RoutingProtocol and
ns3::selfishaodv::RoutingProtocol. These two protocol classes are used
to simulate a malicious node behavior in our provided example. Malicious AODV implementation is able to modify the number of hops which sends out in RREP message. It is done by simply reducing 1 from the available hops counts in a RREP packet. With regard to selfish node behaviors, it will randomly drop RREP packets without forwarding to the next hop.
For each of the above mentioned routing protocol overridden versions we have separate helper classes inside the helper folder. These helpers can be used in any simulation examples. Those have been used in trust-aodv-example simulation to install the intended overridden routing protocols.
According to the above design now anyone can implement a new trust based module and plug it into the trust-routing framework to see how it works in a simulation.
trust-routing does have direct compile time dependencies on core and network modules. It is because the manager class that it holds actually inherited from ns3::Application. It helps to install the any concrete trust-manager as an application. (For e.g: SimpleAodvTrustManager)
If you run the example of trust-aodv-example.cc which is available in trust-aodv module, you can observe the utilization of trust values within the traditional AODV protocol.
trust-aodv-example.ccWe have configured a simulation network setup as shown above. It is available under src/trust-aodv/examples/. As you can see there are 7 nodes and one node which marked in blue color is the malicious node in the network. It manipulates the hops counts of RREP packets that receives to that node(10.0.0.6).
Simulation default configurations are set as 100s for the runtime. It has broken into 2 phases where 1st phase goes from 0–50 seconds. 2nd phase is from 60–70 seconds. 1st phase will send ping messages from one node to rest of the nodes in the network. It will iterate the same for all 7 nodes.
In 2nd phase we make a single ping message from node 0 to node 5. This is where the RREQ and RREP process take place again over the network.
We have observed both routing table and trust table at 55th second and 75th second respectively to cover both phases of the simulation. These table are all from node 0 in different moments in time.
routing table — (55th second)
trust table — (55th second)after making a single ping request,
routing table — (75th second)
trust table — (75th second)You can see that in trust table, trust value for node 7 (mac address of 04–04–0a:00:00:07) has reduced because of it’s RREP hop count change and random RREP packet drop behaviour.
As this is a pilot demonstration project, it is true that there are some scientific concerns with calculating the trust values based on the AODV control packets. But as we mentioned, this is to demonstration of usage for trust framework.
This is a fork I took from the NS-3 mainline master branch. The release of the new trust framework is yet to be discussed in the community.
Google summer of Code is a wonderful program which is hosted by Google. It’s a great honor to be a part of this program. I was so lucky enough that I could work on NS-3 which is really awesome! NS-3 is a reputed open source community among network researchers.
The project I worked on actually initiated with the concept I had. My mentor Tommaso helped me to point out that instead of implementing it as a concrete solution, make it as a framework so that other NS-3 developers will also get benefited out of it. He is the best mentor I’ve ever had.
This is my last time that I could participate in Google Summer of Code. I never worked on such a big C++ project ever and I learnt alot from this project. I also got the opportunity to interact with Tommaso and Tom which is the best part of this GSoC.
I know the framework is still lacking some of the major things. So I want to make it more reliable and people will use it to get their trust based protocols being implemented on NS-3
users.email to the users table within the Platform along with the ability to set and retrieve a user's email address via the REST APIby Harisu fanyui (noreply@blogger.com) at August 13, 2018 04:04 PM
Project : FHIR Swagger Codegen Integration and Strategic Improvements
Project Wiki : https://wiki.openmrs.org/display/projects/OpenMRS+FHIR+Module
Mentor :- Harsha Kumara
Backup Mentor :- Sanatt Abrol
Source Code Repository
Project Description
The purpose of this project is to expand the capabilities and functions of the OpenMRS FHIR module. OpenMRS has recently undertaken a commitment to implement FHIR in order to ensure better interoperability between healthcare systems. The OpenMRS FHIR module was developed as part of these efforts. FHIR specification is continuously subjecting to several development iterations which improves the usability. Swagger also becoming more popular these days. Swagger provides client side library generation functionality which allows users to quickly build the clients for many languages.
Objectives
GSoC 2018 Contributions
Issue : https://issues.openmrs.org/projects/FM/issues/FM-245
Pull Request : https://github.com/openmrs/openmrs-module-fhir/pull/155
2. Add Swagger SDK generation backend implementation
Issue : https://issues.openmrs.org/projects/FM/issues/FM-246
Pull Request : https://github.com/openmrs/openmrs-module-fhir/pull/156
3. Add Swagger SDK generation frontend implementation
Issue : https://issues.openmrs.org/projects/FM/issues/FM-247
Pull Request : https://github.com/openmrs/openmrs-module-fhir/pull/157
4. Add all language support and tests
Issue : https://issues.openmrs.org/projects/FM/issues/FM-246
Pull Request : https://github.com/openmrs/openmrs-module-fhir/pull/158
5. Add security definition section to swagger definition
Issue : https://issues.openmrs.org/projects/FM/issues/FM-250
Pull Request : https://github.com/openmrs/openmrs-module-fhir/pull/160
New Documentations
Blog
Midterm Presentation
https://medium.com/media/01afe97c5163a751f0714104477c1751/hrefPending Works
Expereince
GSoC 2018 is my first contribution to an open source software. I gain massive experience and it is really an amazing. I got to know about how open source community build a open source project and the open source culture. In these past few months I have improved myself in programming skills, communication skills ans several other skills. I would like to thank my mentor Harsha Kumara and backup mentor Sanatt Abrol for their guidance and support. I would like to thank OpenMRS community for accepting me and helping me. Finally for Google for organizing the GSoC.
by Male Samuel (noreply@blogger.com) at August 13, 2018 11:02 AM
The concept of the Built In Reports for OpenMRS Reference applications was initiated during the Google Summer of Code last year(2017) . The objectives achieved in Google summer of code 2017 were,
Now it is the time to extend the features and improve the usability of this project. We need to improve the existing view of the reports and to add more new reports to this module which are crucial for administrative decisions within a clinical environment. There are some new objectives mentioned in the project scope which are completed during this summer period.
The objectives of this project(Google Summer of Code 2018) are:
I spent time to analyze the existing reports in the Built In reports, and prepared some ideas to improve those reports with some more information. I have added some of those ideas into my project proposal, and I was able to figureout some more ideas during the actual development time.
I am very happy to say. I was able to complete about the 95% of the objectives during the Google Summer of Code — 12 weeks of time.
This was demonstrated by me for the OpenMRS mid term presentations, and hosted in the You Tube. You can see some of the work which I have completed during the second evaluations in this video presentation.
https://medium.com/media/50c2bea67a0095b45aac2e2b904afcdd/hrefThe existing OWA was implemented with some issues in the headers, breadcrumbs, and the routings. So I have added the following fixes to the OWA,
The List of Diagnosis report only shows the diagnosis name and the counts of the encounters in the view. So I was assigned to create, once a table row is being clicked, it should redirect to a new view which shows the patients who was recorded as this disease was affected. I have added following changes to this report,
View of the improved List of Diagnosis report
View of the new List of patients affected by the diagnosis reportThe existing number of Visit reports was implemented to show only the total count of visits for the given date period. Actually this report did not contain the sufficient information to achieve the target of this module. So I decided to add more improvements as follows,
Improved List of Visits report without Active visits
Improved List of Visits report with Active VisitsThe number of visit notes report was implemented to show only the total number of visit notes for the given date period. It also not contains the sufficient information for a report. So I have added these following improvements to this report,
Before without any improvements
After including improvements
After including improvementsThe List of Providers reports was implemented to show the table with Provider and the creation date to the users. It also does not contain the sufficient information for a report and I have decided to add these following new features to this report,
The Number of Admissions report was implemented to show only the total count of the Admissions on that day. It is also doesn’t contain the sufficient information about the admissions. So I have added these following improvements to this report,
The Number of Discharges report was implemented to show only the total count of the Discharges on that day. It is also doesn’t contain the sufficient information about the discharges. So I have added these following improvements to this report,
The Number of Transfers report was implemented to show only the total count of the Transfers on that day. It is also doesn’t contain the sufficient information about the transfers. So I have added these following improvements to this report,
I wanted to work on the two projects which are interconnected to produce the reports. Those are,
I have created these following tickets and worked during this project time. All of these tickets are completed by now and the next release is planned to soon after this week. You can find the JIRA project for this module here.
The last recent release of the Built-In report module was 0.94 which was considered as the unstable distribution of the module under the development. So we have decided to release the v1.0.0 of the Built-In reports module after the improvements during the GSoC 2018 period.
Now is the time to release the v1.0.0. So I have discussed with my mentors and decided to release on time. The beta version of this release can be found here.
Prepared for the release of v1.0.0I have used the OpenMRS talk thread to discuss about the project, implementation plans, and updates. Sp you can get more information about the project process and work flow through this talk thread,
GSoC 2018 - Improved built-in reports project
The following are my weekly blogs regarding my project progress. You can get it on medium.
Yes!, This is the first time for getting involved into the Google Summer of Code project. I was able to learn much from this amazing program and I was able to improve my potential about the industries. I have worked on React, Java, REST Services, HTML, and CSS for this projects. The learned techniques and the experience are very very helpful for my future.
I feel very excited and I am happy that I was able to travel through the last 3 months without any major issues. Yahh!! I successfully completed my tasks and the major part of the project. My mentor Rafal Korytkowski gave me the feedbacks and reviews quickly and help me to clear my issues regarding this project and other community members in the OpenMRS helped me from the beginning of the GSoC and they helped a lot to complete this project.
I wish thank to all for their wonderful helps and time, specially thanks to my mentor Rafal Korytkowski who gave me this great opportunity and for his guidance and the support and I wish to say a special thanks to Suthagar Kailayapathy who gave me the support and encourage me to achieve this goal for this Project.
In this week i mainly focus on the mock testing with Mokito for Attachment Resource DoSearch() method. I finish the implementation of the do Search method with some modifications such as create separate context independent search method inside the AttachmentResource which will help to fetch the Attachments using AttachmentService based on the given Parameters. And also this Search method was created for help the mock testing implementation since it is context independent.
So Basically inside the Mock Test class, it test the newly added Search method with the different scenarios ( By changing the parameters ) and verify that relevant methods in the AttachmentService is triggered.Since we already developed the unit test for each method in the AttachmentService , we avoided testing the accuracy of the search method again by using Attachments. We just verify that relevant methods in the AttachmentService will triggered when we call the Search method with different parameters. All the new modifications are send to the mentor for review and wait for his feedbacks.
GSoC is ending during this week. I have worked on testing the module and the documentation. I have added project documentation in https://wiki.openmrs.org/display/projects/Swagger+SDK+Generation. I’ll add a detail post soon with final progress update.
by Male Samuel (noreply@blogger.com) at August 06, 2018 08:30 PM
Now the time to add more locations restrictions to the OpenMRS services and Metadata. OpenMRS Service methods are directly accessing the data access object(DAO) to get from the database. So I wanted to add the location restrictions to the following service's methods as the first step,
The user is able to see the Patient — Suthagar in the Inpatient Ward
The user couldn’t see the patient — Suthagar in the Isolation WardThese are the tickets related to the task which I have worked on the last week,
After that, I wanted to work with other OpenMRS components to verify those are working along with the location restrictions.
OpenMRS Cohort builder failed to address the location restrictions since it’s used an own service to access the DAO to get the patient information. So I wanted to add the fixes to reporting-compatibility module to work along with the location restrictions (And it’s should not depend on each other modules). After adding the fix, I can see the Cohort builder is working with the locations restrictions.
Admin user can able to see all the patients in the Cohort Builder
Doctor (not Admin) can only see the patients belong to the logged-in location in Cohort BuilderData Export feature uses the reporting-compatibility module to export the data. Since we added the fix to the reporting-compatibility module for the Cohorts, Data Export also addressed the location restrictions.
Reporting module fetches the data directly from the database through the SQL queries. So We can’t add any locations based restrictions to those methods since we haven’t any query based restrictions methods. So we skip this part for the initial release and decided to address this issue in the next release as the main target.
This is the last week of the Google Summer of Code, the project roadmap including the objectives and extra credits are given below with the status.
Objectives
Extra Credit
Now the time to release the 0.1-beta version of the module … :-)
Finally I am done with OWA. Feels great to tell you all that now I am done with most of my coding work! Some testing is pending, which i will be doing in this week. Except that, I am now looking forward to get all the documentation of the project ready. Also I will be now working on my final presentation.
Wish me luck for the final evaluation and see you all next week! 
Cheers! 
by chathuranga (noreply@blogger.com) at August 06, 2018 03:53 AM
by Harisu fanyui (noreply@blogger.com) at August 05, 2018 09:50 PM
In this week I developed muzima Android app to display patient reports. I had to try out different methods this week. here is a brief description of how I approached my task.
I used the functions of muzima api to call the server. Those middle-ware was developed by muzima developers, so my work was easier 😆! The muzima api calls the server asynchronously, so I had to wait until the report is fetched to muzima app. So I created a background process which listens for the message
When the download is complete I receive the message and then displays the report to the user.
The above code snippet shows how the view is loaded when the message is received. I am hoping to complete the functionality in the coming week 😯!
In this week i did some Modifications to the ATT-24 issue. We mistakenly used includeRetired for includeVoided parameter in the java API implementation. So all the occurrences of includeRetired are modified to the includeVoided.
And I started to research on mock testing for Attachment resource for test the search() method. Because After discussion with my mentor he decided to go for mock Testing which can be used to implement test cases without any dependency.Some existing implementation can be found here ( In Bahmni-core module ). And I did some modifications to the ATT-27 issue and able to close the issue.
Yes, now the time to say Goodbye to the location selector from the OpenMRS Login screen. Just log in with your login credentials such as username and password only!
The actual OpenMRS login page contains the location selector with the login credentials section to assign the users to the location during the login. So the user can select any location from the location selector to enter the OpenMRS. The location will be stored in the session and will be used in the further activities.
Now, I have added the solution to assign the users for a location through the location user property. So the user will have a location property, and it will be automatically fetched from the user property during each login. It will be assigned as the user login location into the session also.
This feature will be executed in these following ways,
If the implementers want to remove this feature form their implementations to have the usual login screen, just need to delete the global property named as “referenceapplication.locationUserPropertyName” form their systems.
So the end would be,
OpenMRS can remember your location now !
During the last week, I finished the below-mentioned objective and send the PR for the review.
2. BIR-7- Added total number of Discharges for all locations reports. This PR contains these improvements for Number of Discharges report,
And, According to my project, I completed the following tasks up to now.
I have not started the following task, Implement a new view which shows a very detailed view of a given patient. Similar to patient dashboard, but more analytical information such as past recorded diseases, visits, etc.(use graphs in more meaningful ways).
I would like to start the following task in the upcoming week, “Implement a new view which shows a very detailed view of a given patient. Similar to patient dashboard, but more analytical information such as past recorded diseases, visits, etc.”
by Male Samuel (noreply@blogger.com) at July 30, 2018 04:45 PM
Hello World! The intern has almost come to an end and this was the most productive week until now. To start with I made a note of what kind of test cases I would be writing for the controllers, later on I wrote stub for a few controllers and tried to use mockito on a sample code. I have planned to finish all the test by this friday and then finally write the documentation over the weekend. Finally later on in the week I added some required error handling in some controllers which would otherwise hamper the user experience with the endpoints. Thats all for the update. Thanks for reading.
GSoC with OpenMRS week 11 was originally published in piyush.kundnani on Medium, where people are continuing the conversation by highlighting and responding to this story.
This week, I revisited my feature and added test case for enhancement that I made in the last week. Since next week is the last week, I’m continue to test the feature and looking for possible improvements that I can make to my feature.
Below is get patients by id operation generated automatically by the swagger SDK generator.
/**
* Build call for patientIdGet
* @param id Id of the Patient resource (required)
* @param progressListener Progress listener
* @param progressRequestListener Progress request listener
* @return Call to execute
* @throws ApiException If fail to serialize the request body object
*/
public com.squareup.okhttp.Call patientIdGetCall(String id, final ProgressResponseBody.ProgressListener progressListener, final ProgressRequestBody.ProgressRequestListener progressRequestListener) throws ApiException {
Object localVarPostBody = null;
// create path and map variables
String localVarPath = "/Patient/{id}"
.replaceAll("\\{" + "id" + "\\}", apiClient.escapeString(id.toString()));
List < Pair > localVarQueryParams = new ArrayList < Pair > ();
List < Pair > localVarCollectionQueryParams = new ArrayList < Pair > ();
Map < String, String > localVarHeaderParams = new HashMap < String, String > ();
Map < String, Object > localVarFormParams = new HashMap < String, Object > ();
final String[] localVarAccepts = {
"application/json",
"application/xml",
"application/fhir+xml",
"application/fhir+json"
};
final String localVarAccept = apiClient.selectHeaderAccept(localVarAccepts);
if (localVarAccept != null) localVarHeaderParams.put("Accept", localVarAccept);final String[] localVarContentTypes = {
"application/xml",
"application/json"
};
final String localVarContentType = apiClient.selectHeaderContentType(localVarContentTypes);
localVarHeaderParams.put("Content-Type", localVarContentType);if (progressListener != null) {
apiClient.getHttpClient().networkInterceptors().add(new com.squareup.okhttp.Interceptor() {
@Override
public com.squareup.okhttp.Response intercept(com.squareup.okhttp.Interceptor.Chain chain) throws IOException {
com.squareup.okhttp.Response originalResponse = chain.proceed(chain.request());
return originalResponse.newBuilder()
.body(new ProgressResponseBody(originalResponse.body(), progressListener))
.build();
}
});
}String[] localVarAuthNames = new String[] {};
return apiClient.buildCall(localVarPath, "GET", localVarQueryParams, localVarCollectionQueryParams, localVarPostBody, localVarHeaderParams, localVarFormParams, localVarAuthNames, progressRequestListener);
}
by chathuranga (noreply@blogger.com) at July 30, 2018 03:54 AM
by Harisu fanyui (noreply@blogger.com) at July 29, 2018 08:23 PM
The GSoC 2018 was reaching its end, so I had to steam in to finish on time 😅. In this week I engaged in displaying the data(MuzimaGeneratedReport) that is fetched from the server.
I first tried to create a view containing a list of the reports of a particular patient. I followed the procedure to create a list as you normally follow in Android.
I created a layout file named report_list_view and created a list as follows.
Then I created an Android Activity named PatientReportListViewActivity and used the following code 😆
As at this moment I was unable to bring patient reports from the server, I created a list of dummy values for now 😅. When a user selects a report name, the report should be loaded. The report is a HTML page. So I am going to load the report using WebView in Android as follows
The PatientReportWebActivity that is triggered on item click takes the user to the WebView where report is displayed.
This was successful 😆. But in muzima-android there is a preferred way to create this work-flow. In the next week I will be doing this in that way. This was just to get my head in 😅. See you next week with more!
The pre final week of GSoC 2018 was a little hectic for me. Placements season is started in our college and thus I had to study for the same. Also I studied about OWA development and discussed with Sanatt about the design and implementation of the OWA. I also did some research on how we can migrate to Spring Security OAuth2 Version 2.x . Although I did worked less this week but I hope I will cover that up in the coming week. Once I get sorted with these two tasks, I would then write tests for the controllers in the coming week.
The final week is here and I hope to finish well!
Happy coding!
This week was also a successful week as I completed the job of finalizing the end points in muzimacore module. This endpoint would be used by the muzima android app to download patient reports.
First I had to add a change to the existing database because the design team had requested to add a new field priority to muzima_generated_report. This attribute was set as a tiny_int and the default value was set to 0. So if the user wants to create a report_cohort_config with high priority priority the check box in the following diagram should be ticked, so that priority column in the SQL table is set to one.
Then I worked on the REST endpoint which returns the last patient report created due to a cohort report mapping set to high priority 😃. The endpoint requires the uuid of the patient as the only parameter.
I am hoping to get these reports into muzima android app in the coming weeks 😯.
This week was mostly about continue the implementation of the Bahmni atom feed reader microservice. Currently, it polls the patients’ atom feed and triggers when a new event occurs.
Next week I’ll be working on a webhook to display notifications on the frontend of the application. This works as follows
You can find the current implementation of the microservice here.
In this week I did some modifications in ATT-27 after review of my mentor. I modify separate test cases for upload method ( Attachment upload ) to test attachment upload with encounter , visit and without any encounter or visit.
And most importantly i created my mid term presentation which described the progress of my works in GSOC program. And i continue my research on OWA modification. And I started to implement the doSearch method in Attachment resource which will help to fetch the attachments from the rest services. It fetch the the data using Attachment Java API and user able to fetch ( search) Attachments based on the several parameters such as Patient, encounter , visit etc. And also user will able to fetch the encounter less attachment using rest services.
Week 10[ July 17, 2018 — July 23, 2018]
Assigning the Location to the patient almost done and it’s working as expected. So as the next milestone, I have started to work on assigning the location to the users during the registration process.
Users can be registered from the Manage Accounts page in the OpenMRS Administration page. So there should be a location selector to assign the locations during the registration. Since the location based access control is a separate module from others, I can’t make any direct changes in the Register New User dashboard. So we decided to add the custom fragment support to the Manage Accounts — User management dashboard (in the AdminUI module)which needs to allow the custom fragments to customize the user registration dashboard.
Added Location Selector as the custom fragment to Person Section
Added Location Selector as the custom fragment to User SectionAddition to this, the Manage Account dashboard should support the custom view fragments to view this information into the respected dashboard and it should allow editing the properties through the usual ways.
So I have added implementation in Manage Accounts to support the Add/Edit custom fragments and support to the custom view fragments.
Added Location View as the custom fragment to User SectionHere,
These are the tickets which contain the works related to this part,
See you in the next week..!
This past week I researched on how the configuration can be migrated from the current xml-based configuration to java annotation-based. After much of study and efforts in doing this me and Sanatt came to conclusion that it is better to keep the configuration xml-based only for the sake of simplicity. Also wherever required the configuration is done using annotations.
At the end of the week I started my work on OWA which supports the SMART functionality in the reference application. I took the help from Suthagar on getting started with the OWA generator. This week I aim at building an OWA which would do the job. Also I am planning to write tests for the controllers.
That’s all for this week!
See y’all next week.
During the 9th work I started working on the objective “List of Providers, once the user clicks on a row in the table, user should be able to see more detailed page about the provider”. I finished this task on the 10th week of the GSoC 2018.
RA-1514 , BIR-11 — This PR contains the implementation for the Patients who worked with Providers report for given Provider id, Provider Information and top 10 patient information who was recently worked with this provider.
These are the features added in the above mentioned objective.
Following images shows the improvement,
And, According to my mentor’s suggestion on my mid term presentation, I worked on the number of admission report and made few changes. The changes are :
Following images show the above mentioned changes in the Number of Admission report.
| Id | patient_name |
|---|---|
| 5 | Male Samuel |
| 6 | Kenny |
| 7 | Kaddu Ronnie |
| 8 | Another One |
| 9 | Some Patient |
| 50 | From Server A |
by Male Samuel (noreply@blogger.com) at July 23, 2018 06:27 AM
by chathuranga (noreply@blogger.com) at July 23, 2018 03:19 AM
Time flew so fast as GSoC is coming to a end after two weeks. I have added my GSoC midterm presentation to youtube. If you interested please watch following video.
https://medium.com/media/01afe97c5163a751f0714104477c1751/hrefDuring this week I have made an improvement to FHIR module. Swagger definition of FHIR module doesn’t contain security definitions section. This is an issue when Swagger SDK generation. Because basic authentication scheme isn’t present, client can’t invoke with basic authentication headers. I have added the fix in https://github.com/openmrs/openmrs-module-fhir/pull/160.
Then I add demo client which uses generated Java SDK in https://github.com/eunice18/demo-sdk-client. Here is very small piece of code to get patient by id.
package org.openmrs.demo.client;
import io.swagger.client.ApiClient;
import io.swagger.client.ApiException;
import io.swagger.client.api.DefaultApi;
import io.swagger.client.model.Patient;
public class DemoClient {
public static void main(String[] args) {
DefaultApi apiInstance = new DefaultApi();
String id = "892b89a2-6823-403b-899c-d7045c0d9b5e"; // String | The ID of the resource
try {
ApiClient apiClient = apiInstance.getApiClient();
apiClient.setUsername("admin");
apiClient.setPassword("Admin123");
apiClient.addDefaultHeader("Authorization", "Basic YWRtaW46QWRtaW4xMjM=");
apiClient.addDefaultHeader("Accept-Encoding", "*/*");
apiClient.setBasePath("http://localhost:8080/openmrs/ws/fhir");
Patient result = apiInstance.patientIdGet(id);
System.out.println(result.toString());
} catch (ApiException e) {
System.err.println("Exception when calling DefaultApi#allergyIntoleranceGet");
e.printStackTrace();
}
}
}
I’m currently working on improvements to this feature.
by Harisu fanyui (noreply@blogger.com) at July 22, 2018 09:37 PM
Last week was our second evaluation period of the Google Summer of Code 2018. We need to submit the video presentation about our project and it’s information and demonstration in order to pass the second evaluation. I attach my video presentation here,
https://medium.com/media/5a1b7df61503404c72427e807a2e4063/hrefAnd I I have already started to work on the following task, List of Providers, once the user clicks on a row in the table, user should be able to see more detailed page about the provider. (Who created this provider? Which unit this provider is being assigned to work? Top 10 patients who was recently worked with this provider.)
This is similar to the Diagnosis report improvements which I done at very first time. So I thought to follow those conventions and elements to improve the List of Providers report also. These are the new elements which will be added into this report,
This past week, I completed and passed my second evaluations. We all were needed to submit a presentation to OpenMRS community. I completed both the evaluations and presentation on time. Now the remaining major tasks in the final phase are migration from xml based configuration to annotation based configuration, testing the untested code. Also we are planning to migrate to Spring Security OAuth2 2.x release. As a bonus deliverable, we are planning to build an OWA which will facilitate the functionality of SMART apps to the latest OpenMRS Reference Application. I have started to plan things out and will start working on these in the coming week.
That’s all for now! Happy coding!
by Male Samuel (noreply@blogger.com) at July 17, 2018 09:31 AM
In this week also i worked with the ATT-27 issue which is modify the Attachment REST end point for file upload to Allow the upload attachments based on the specific encounter. And i do some modifictions to the current implementation and add exception handling inside the upload method.
Since my mentor was busy in last week, i was not able to start a new work ( waiting for his review for my previous work). But i dis some research about OWA ( Open Web App ). Because my next task is to Segerate attachment UI to an OWA. Challenges of this task is that integrate OWA to open MRS main dashborad since attachment module need to be displayed in two places in the Open MRS dashboard. ( Clinician Facing Patient Dashboard and on the Visits & Encounters Patient Dashboard)
Alexis Duque
Aniketha Katakam
Ankit Kumar
Avijit Ghosh
Ayush Goyal
Chanuka Wijayakoon
Chathuranga Muthukuda
Choxmi Sathsara
David Palacios
Dileka Weerasuriya
Dmytro Trifonov
Dmytro Trifonov
Elyse Voegeli
Eunice Amoh
Garima Ahuja
Gayan Weerakutti
Harisu Fanyui
Harsha Kumara
Harsha Siriwardena
Isuranga Perera
Jai Tatia
Jenn Parise
Jeyasumangala Rasanayagam
Joseph Kaweesi
Jude Niroshan
Kwateng Ofori
Lahiru Jayathilake
Manika Maheshwari
Mayank Sharma
Milan Karunarathne
Milinda Rukshan
Nipun Thathsara
Nyah Check
OpenMRS Kenya
Piyush Kundnani
Prabodh Kotasthane
Pralay Ramteke
Rasanjana Perera
Reuben Varghese
Ridmal Liyanagamge
Robby O'Connor
Samuel Male
Sanatt Abrol
Sara Fatima
Sashrika Waidyarathna
Sharon Varghese
Shekharreddy Mittapelly
Shivang Nagaria
Shubham Rai
Sri Maurya Kummamuru
Stephen Po Chedley
Suthagar Kailayapathy
Tharunya Pati
Ujjwal Arora
Vaibhav Agarwal
Vineet Kumar
Vishnu Mechineni
Wiehwa Cheung
Xu Hao
Yousef Hamza
Zakaria Amine
burkeware.com
Last updated:
January 16, 2019 06:05 PM
All times are UTC.
Powered by:
