ATLAS API Search endpoint

em3697 · November 27, 2024, 3:12pm

@Chris_Knoll I was told you might be able to help me with an issue I’m having with trying to use the ATLAS API to perform a concept search from a script. I’m able to reach concept set endpoint to create a new concept set, but I wanted to search for a concept and /vocabulary/search/[query]/ was the only endpoint that seemed similar. However, I’m getting 401 errors. Is this an authorization issue with our ATLAS instance or could it be due to using the endpoint incorrectly? Any help would be greatly appreciated.

Chris_Knoll · November 27, 2024, 5:37pm

You do have an atlas instance set up? If so you can monitor the web requests from browser to server to understand the requests.

I was looking for the diff between 401 and 403, and i think the 401 indicates you’re not sending an authorization token in the HTTP header. You can look at your own HTTP headers in Chrome dev console as you make the requests to server, and you should see a header for Authorization. Contains a value like Bearer.... But that you were able to create a concept set, it’s interesting that the other endpiont rejects you.

em3697 · November 27, 2024, 5:45pm

I have been using the browser to monitor the requests and am using the Bearer token like you mentioned. And I’m able to use the search function in the browser so I don’t think it’s a permission issue. Also I was experimenting with the search endpoint trying to model the request after what I saw in the network inspection (base_url/search?query=term) and got a 403 error. But yeah I’m not sure how else to debug it but let me know if you have any thoughts. Thanks!

em3697 · November 27, 2024, 6:53pm

Also @Chris_Knoll is that the right endpoint I’m using for the search concept feature?

em3697 · November 27, 2024, 7:24pm

I got the endpoint to work in a new session and instead of using the WebApi documentation copying the endpoint from the Network tab (something like /vocabulary/{dataset}/search?query={term}) but I think something may be going on with the auth token changing even if I’m in the same ATLAS session. So think I should be ok for now thanks!

Chris_Knoll · November 27, 2024, 7:35pm

So, 403 is different than the 401. 401 means it’s missing auth token. 403 means you have permission denied.

But, looking through the cocebase, i’m not sure the ‘default vocabulary’ search route has permissions set up, so, I would direct the search to the specific source.

Can you check the console again in Atlas: you should see the requested URL of the search something like /vocabulary/{source_key}/search, and this is a POST that sends the search paramaters. You should look at the payload in Chrome for a working example. The endpoint signature is found here (assuming v2.12 from your above screenshot):

github.com

OHDSI/WebAPI/blob/v2.12.0/src/main/java/org/ohdsi/webapi/service/VocabularyService.java#L645

    
      
          /**
           * Search for a concept based on a query using the default vocabulary source.
           * NOTE: This method uses the query as part of the URL query string
           * 
           * @summary Search for a concept using a query (default vocabulary)
           * @param sourceKey The source key holding the OMOP vocabulary
           * @param query The query to use to search for concepts
           * @param rows The number of rows to return.
           * @return A collection of concepts
           */
          @Path("{sourceKey}/search")
          @GET
          @Produces(MediaType.APPLICATION_JSON)
          public Collection<Concept> executeSearch(@PathParam("sourceKey") String sourceKey, @QueryParam("query") String query, @DefaultValue(DEFAULT_SEARCH_ROWS) @QueryParam("rows") String rows) {
            // Verify that the rows parameter contains an integer and is > 0
            try {
                Integer r = Integer.parseInt(rows);
                if (r <= 0) {
                    throw new NumberFormatException("The rows parameter must be greater than 0");
                }
            } catch (NumberFormatException nfe) {

But this is different in 2.14:

github.com

OHDSI/WebAPI/blob/v2.14.0/src/main/java/org/ohdsi/webapi/service/VocabularyService.java#L458

    
      
           * 
           * @summary Search for a concept on the selected source
           * @param sourceKey The source key for the concept search
           * @param search The ConceptSearch parameters
           * @return A collection of concepts
           */
          @Path("{sourceKey}/search")
          @POST
          @Produces(MediaType.APPLICATION_JSON)
          @Consumes(MediaType.APPLICATION_JSON)
          public Collection<Concept> executeSearch(@PathParam("sourceKey") String sourceKey, ConceptSearch search) {
            Source source = getSourceRepository().findBySourceKey(sourceKey);
          
          
  PreparedStatementRenderer psr = prepareExecuteSearch(search, source);
            return getSourceJdbcTemplate(source).query(psr.getSql(), psr.getSetter(), rowMapper);
          }
          
          
protected PreparedStatementRenderer prepareExecuteSearch(ConceptSearch search, Source source) {
            // escape for bracket
            search.query = search.query.replace("[", "[[]");

So your WebAPI version matters. But your best bet is to look at the URL Atlas is requesting and replicate that request in your own HTTP call, and the headers you submit with it matter (such as auth headers).

em3697 · November 27, 2024, 7:38pm

Ok good to know thank you! @Chris_Knoll appreciate your help