Message Exchange for Social Care and Health (MESH) API
The Message Exchange for Social Care and Health (MESH) is the main secure large file transfer service used across health and social care organisations.
Overview
Use this API to securely transfer healthcare data between organisations using the Message Exchange for Social Care and Health (MESH), which is a component of Spine.
You can interact with MESH via a virtual mailbox, only accessible by your organisation. Incoming messages appear in the inbox section of the mailbox. To send a message, place it in the outbox section of your mailbox. Outgoing messages are tagged with the receiving organisation's mailboxID. Spine then delivers the message to the receiving organisation's mailbox inbox.
In addition to the sender and receiver mailboxID's you must also include a workflowID label in each message. MESH provides all the workflowID codes, as they identify what type of data the message contains. This helps the receiving organisation process the data after they receive it (For example, the receiver may process X-ray images very differently from blood test results).
There is a Java based MESH client you can use to access MESH, which calls the RESTful MESH API under the hood. If you want a more tightly knitted interface with MESH you can also call the MESH API directly in your applications.
This guide documents the MESH API endpoints and describes how they should be used.
Who can use this API
This API can only be used where there is a legal basis to do so. You should make an access request before you go too far with your development.
You must have made this request before you can go live (see 'Onboarding' below).
Prerequisites
You must register with MESH to use the API. As part your registration, we will provide you with these items:
- MESH mailbox (with a unique ID and password)
- client Transport Layer Security (TLS) certificates
- environment shared secret
- list of workflow IDs to identify types of messages your organisation will send and receive
Related APIs
None.
API Status and Roadmap
This API is currently live.
To see our roadmap, or to suggest, comment or vote on features for this API, see our interactive product backlog.
Technology
This API is RESTful.
Network access
This API is available on the internet and, indirectly, on the Health and Social Care Network (HSCN).
To use this API with NHS smartcards (see below) you do need a HSCN connection, although internet facing alternatives are available.
For more details see Network access for APIs.
Environments and Testing
There are several independent, externally accessible instances of MESH for use by parties external to NHS Digital for testing, each with a different root URL.
Some environments require a connection to the HSCN network.
| Purpose | URL | HSCN required |
|---|---|---|
| Development | https://msg.dev.spine2.ncrs.nhs.uk/ |
Yes |
| Integration | https://msg.int.spine2.ncrs.nhs.uk/ |
Yes |
| Integration | https://msg.intspineservices.nhs.uk/ |
No |
| Deployment | https://msg.dep.spine2.ncrs.nhs.uk/ |
Yes |
| Production | https://mesh-sync.national.ncrs.nhs.uk/ |
Yes |
| Production | https://mesh-sync.spineservices.nhs.uk |
No |
Note - each environment has the same shared secret but requires different client TLS certificates.
Develop against a local MESH sandbox server
Here is an existing (unsupported) example of a RESTful interface on Github. This python client also contains a mock MESH server which you can run locally without any real MESH credentials.
With the example RESTful mesh client installed, you can run the mock server with;
The client TLS certificates which you need to connect to the mock server are in the python library. You can either copy them from the python library directory to your working directory, or download them from here:
- client.cert.pem
- client.key.pem
- ca.cert.pem
With the certificates in place, getting the URL should result in a Not Found error. Without the certificates, you will get a TLS error.
MESH Authorization header
The MESH API requests require an authentication token in the HTTP Authorization Header.
To be valid, the authorization tokens must match the schema described below. The token includes cryptographic hashes of your organisation's MESH mailbox password and the environment-wide shared secret.
As an additional security measure each token which matches the schema is valid for one request only, so a new token must be generated for every request. Any repeated use of a token will result in a 403: Not Authorized response from the MESH server.
The Authorization token is made up of six elements. With the exception of the first and second elements, each element is separated from the next by a colon, :.
| Name | Description |
|---|---|
NHSMESH |
The name of the Custom Authentication Schema. The Authentication Header should prefix the generated authentication token. The space at the end of the schema is important |
mailbox_id |
ID of the Mailbox sending the HTTP Request, must be uppercase |
nonce |
A GUID used as an encryption Nonce |
nonce_count |
The number of times that the same Nonce has been used |
timestamp |
The current date and time in yyyyMMddHHmm format |
hash |
HMAC-SHA256 hash see the list below |
The hash is compiled of the following items:
- The
keyis the MESH environment shared secret - The
messageis the concatenation of the 5 following elements, joined by ':'mailbox_id- same as element 2nonce- same as element 3nonce_count- same as element 4mailbox_password- The password for the MESH Mailboxtimestamp- same as element 5
Changing the nonce and/or nonce_count elements between requests ensures the Authorization header is unique and valid.
Notes
- the server will reject the request if the
timestampsupplied is not within 2 hours of the server time - in the example below
HMACSECRETKEYhas been[REDACTED], this is the 'environment shared secret' which you received as part of creating your mailbox
Example implementation
Here is an implementation of the above in python3.
MESH API pseudocode
Here is the flow of API calls you should make to use MESH effectively:
- inbox poll cycle
- outbox workflow
The mailbox should be validated once every 24 hours using the Validate a mailbox endpoint.
Inbox poll cycle
Spine gives each message a unique messageID after you post it to your outbox. It is the primary identifier for the message during MESH transit.
You should poll mailboxes at most every 5 minutes, but at least every 24 hours. The pseudo code for a mailbox's poll is:
- Poll to get the messageIds messages ready to download from the Inbox endpoint.
- For
messageIDfrom step 1, you should:- download the message from the Download message endpoint
- if identified as a chunked message, download all remaining chunks from the Download message chunk endpoint
- acknowledge receipt of the message via the Acknowledge message endpoint
- Repeat step 2 until you have processed the number of messages returned in step 1.
- If you received exactly 500 messages in step 1 then repeat from step 1 immediately polling again and download, until you receive 0 messages in step 1.
Asynchronous error reporting
Most problems with message transfer are indicated synchronously (that is immediately) when the 'Send Message' endpoint is called. However, it is possible that some errors may occur after a successful request (that is, asynchronously). Such asynchronous errors are reported to the sending organisation as messages in their inbox to be accessed as part of the inbox poll cycle. Error reports differ from regular messages in these ways:
- the Download message endpoint will have a different value for the Mex-Messagetype header
- DATA for a regular organisation-to-organisation message
- REPORT for an error report
- the Download message response body of an error report message is empty
We strongly recommend that you check the value of Mex-Messagetype after downloading each message so that you can take appropriate follow up action if needed.
| Error Report Header | Description |
|---|---|
Mex-Statusevent |
Step in the MESH server side process when the error occurred |
Mex-Linkedmsgid |
The messageId of the undelivered message |
Mex-Workflowid |
The workflowId of the undelivered message |
Mex-Statustimestamp |
Time the error occurred |
Mex-Localid |
Sender assigned localId of the unacknowledged message |
Mex-Statuscode |
Indicate the status of the message, non-00 indicates error |
Mex-Messageid |
The messageId of the error report (not the undelivered message) |
Mex-Statussuccess |
SUCCESS or ERROR (will always be ERROR in an error report) |
Mex-Statusdescription |
Indicate the status the message, non-00 indicates error |
Mex-To |
Intended receiver of the undelivered message |
Mex-Messagetype |
REPORT |
Mex-Subject |
The subject of the undelivered message |
Error codes
Some of the below errors are only applicable for some API calls. For example, error code 15 would only be found when calling 'Child Protection Information Services' (CP-IS).
| Error code | Typical description |
|---|---|
| 02 | Data file is missing or inaccessible |
| 06 | Malformed headers |
| 07 | Invalid From Address, the mailbox does not match the authorization header |
| 08 | Missing Mex-To header |
| 11 | Invalid Message Type for the transfer, should be DATA |
| 12 | Unregistered to address |
| 14 | Undelivered message |
| 15 | Bad 'Child Protection - Information Sharing' (CP-IS) File |
| 16 | Sender is not allowed to send messages of this type |
| 17 | Receiver not registered for workflowId |
| 19 | workflowId does not support chunked files |
Outbox Workflow
The maximum amount of data allowed by MESH in a single request message is 100MB (20MB over Internet, 100MB over HSCN). The MESH API allows larger messages to be sent by breaking the message into "chunks" that are transmitted as a single message over multiple requests. The upper limit of a single chunked message is 20GB.
The MESH UI and older versions of the MESH client do not support chunking. It is prudent to ensure that the receiver's interface to MESH for your workflowId handles chunked messages prior to sending. To do this:
- Determine the size of your message data (after compression) with a standard algorithm (such as
gzip). If the compressed message is larger than 100MB, smaller than 20GB, and the receiving mailbox /workflowIdsupports chunking, then you can send a chunked message. To prepare for this:- split the uncompressed data into ordered chunks
- independently compress each chunk with the same compression algorithm (such as
gzip) such that each chunk is smaller than 100MB - use the first chunk (after compression) as the initial message data
- Send a message with appropriate
workflowId,receiver&mailboxId. To do this:- optionally include
localIdfrom step 2 for tracking. This field must not contain PID. - if sending a chunked message, include an extra header to indicate that this is the first in a series of chunks, then submit the subsequent chunks via the 'Send Chunked Message' endpoint
- optionally include
- A
messageIDwill be returned which is the unique identifer and can be used for tracking and helping with incident resolution. It would be good practice to log this identifier.
Message expiration
Messages that are not downloaded and acknowledged within five days of delivery are removed from your inbox. The sending organisation receives an error report explaining that the receiver did not collect the message. Uncollected messages are completely deleted from the MESH server 30 days after the initial delivery. If the sending organisation cannot re-send the message within the intervening time, it may contact the NHS Digital national service desk with the error report details and ask for the message to be placed in your inbox again.
Onboarding
You need to get your software approved by us before it can go live with this API. We call this onboarding. The onboarding process can sometimes be quite long, so it's worth planning well ahead.
- request a Test mailbox using the form
- read carefully so you understand how to request your certificate
- send your business use case to sa.servicedesk@nhs.net
- upon receiving the SCAL (Supplier Conformance Assessment List) fill in and return to sa.servicedesk@nhs.net
- your integration will now be certificated by Solutions Assurance and ready to publish
- any other queries please contact us via our support mailbox; ssd.nationalservicedesk@nhs.net
Information
'Try this now' feature on the below endpoints are currently unavailable and awaiting removal.
Endpoints
Acknowledge message
/messageexchange/{mailboxID}/inbox/{messageID}/status/acknowledged
Overview
Use this endpoint to acknowledge the successful download of a message. This operation:
- closes the message transaction on Spine
- removes the message from your mailbox inbox (which means that the
messageIdwill not appear in subsequent calls to the Check Inbox endpoint and cannot be downloaded again)
If you fail to acknowledge a message after five days in the inbox this will result in a non delivery report to the senders inbox.
Request
Response
Request
Path parameters
| Name | Description |
|---|---|
messageID |
String The ID of the message Required
|
mailboxID |
String The ID of the mailbox Example: MAILBOX01 Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Response
HTTP status: 200
OK
Body
Content type: application/json
Schema
HTTP status: 403
Authentication failed
Body
Content type: application/json
Schema
Check an inbox
/messageexchange/{mailboxID}/inbox
Overview
Use this endpoint to return the messageId of messages in the mailbox inbox ready for download.
Client systems MUST poll their assigned inbox a minimum of once a day and a maximum of once every five minutes for messages (unless there are more messages waiting to download).
A maximum of 500 messageId are returned in every request. The polling/download cycle should immediately continue until the mailbox has been drained and less than 500 messages have been received in the response.
Request
Response
Request
Path parameters
| Name | Description |
|---|---|
mailboxID |
String The ID of the mailbox Example: MAILBOX01 Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Response
HTTP status: 200
OK
Body
Content type: application/json
Schema
HTTP status: 400
Bad Request
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
HTTP status: 403
Authentication failed
Body
Content type: application/json
Schema
Check an inbox's count
/messageexchange/{mailboxID}/count
Overview
Use this endpoint to check the number of messages currently held in the MESH mailbox that are ready to download.
This endpoint has been deprecated as it does not need to be called as part of the polling cycle.
Request
Path parameters
| Name | Description |
|---|---|
mailboxID |
String The ID of the mailbox Example: MAILBOX01 Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Response
HTTP status: 200
OK
Body
Content type: application/json
Schema
HTTP status: 400
Bad Request
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
HTTP status: 403
Authentication failed
Body
Content type: application/json
Schema
Download message
/messageexchange/{Recipient}/inbox/{messageID}
Overview
Use this endpoint to retrieve a message based on the messageid obtained from the 'Check Inbox' endpoint.
Message expiration
Messages that are not downloaded and acknowledged within five days of delivery are removed from your inbox. The sending organisation receives an error report explaining that the receiver did not collect the message. Uncollected messages are completely deleted from the MESH server 30 days after the initial delivery. If the sending organisation cannot re-send the message within the intervening time, it may contact the NHS Digital national service desk with the error report details and ask for the message to be placed in your inbox again.
Report Messages
The Mex-Messagetype header will indicate if the payload is a DATA message or a REPORT.
Error reports differ from regular messages in these ways:
- the Download message endpoint will have a different value for the Mex-Messagetype header
- DATA for a regular organisation-to-organisation message
- REPORT for an error report
- the Download message response body of an error report message is empty
Request
Response
Request
Path parameters
| Name | Description |
|---|---|
messageID |
String The ID of the message Required
|
Recipient |
String Recipient mailbox ID Example: {Recipient Mailbox ID} Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Response
HTTP status: 200
OK
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
HTTP status: 206
Partial download – Indicates that chunk has been downloaded successfully and that there are further chunks.
Body
Content type: binary
Schema
| Name | Description |
|---|---|
|
object
|
HTTP status: 403
Authentication failed
Body
Content type: application/json
Schema
HTTP status: 410
Gone, message has already been downloaded and acknowledged
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
Download message chunk
/messageexchange/{Recipient}/inbox/{messageID}/{chunkNo}
Overview
Use this endpoint to download a chunked message. The initial step is to call the 'Download Message' endpoint with the messageId given by the 'Check Inbox' endpoint as usual. When the message is chunked, the load message endpoint response differs in two ways:
- the response code is '206: Partial Content' (instead of '200: OK')
- the response headers contain Mex-Chunk-Range: 1:n
This endpoint is used to download the remaining n-1 chunks.
Request
Following on from the example in the Send chunked message endpoint, Alice checks her inbox and sees a new message.
She downloads the first part of the message. Note this use of curl uses the --include argument, to show the value of the HTTP headers in the MESH response.
Here we have added the --include argument to curl which prints more response information, including the HTTP response code and response headers. (tr -d '\r' invokes a linux utility to strip carriage returns from the end of each of the lines added to the curl --include argument).
Alice notes that the response code is 206 Partial Content - meaning it is the first part of a chunked message. How much of the message remains is given by the Mex-Chunk-Range header, 1:2 indicating the response body is the first of two parts.
Alice makes another call to retrieve the second part of the message.
That this is the final part of the message is indicated in two ways:
- the response code is
200 OKrather than206 Partial Content - the
Mex-Chunk-Rangeresponse header is2:2
Request
Path parameters
| Name | Description |
|---|---|
Recipient |
String Recipient mailbox ID Example: {Recipient Mailbox ID} Required
|
messageID |
String The ID of the message Required
|
chunkNo |
Integer The index number of the chunk Example: 1 Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Response
HTTP status: 200
OK
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
HTTP status: 206
Partial download – Indicates that chunk has been downloaded successfully and that there are further chunks.
Body
Content type: binary
Schema
| Name | Description |
|---|---|
|
object
|
HTTP status: 403
Authentication failed
Body
Content type: application/json
Schema
HTTP status: 404
Message does not exist
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
MESH address lookup
/endpointlookup/mesh/{odsCode}/{Mex-workflowid}
Overview
Use this endpoint to search for the mailbox of the organisation you will be sending data to, using their unique Organisation Data Service (ODS) code, their MESH mailboxID and the agreed workflowID for the data.
An example call:
Request
Response
Note: neither the ods-code nor workflowId in this example are real.
Request
Path parameters
| Name | Description |
|---|---|
odsCode |
String All health and social care organisations have a unique ODS code Example: SCREEN2 Required
|
Mex-workflowid |
String Workflow ID Example: {Workflow ID} Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Response
HTTP status: 200
OK
Body
Content type: application/json
Schema
HTTP status: 403
Message does not exist
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
Outbox tracking
/messageexchange/{mailboxID}/outbox/tracking
Overview
Use this endpoint to inquire about the status of messages sent from your outbox. When determining the frequency of the calling of this endpoint consider that MESH is asynchronous and it may be sometime (hours) until the recipient downloads. This endpoint must not be frequently polled.
The messageId is the value returned in the response to a message upload.
This endpoint must not be used to replace a business ack message. If the business process requires confirmation that the recipient has processed the message then a business ACK should be sent over MESH (convention is the same workflow is used appended with _ACK).
Request
It is possible for Bob to check the status of the chunked message he sent to Alice. (Note that in this example, Alice has not acknowledged the chunked message she received from Bob).
Response
Suppose Alice only now acknowledges the message Bob sent.
Request
Response
The next call to Outbox tracking by Bob
Request
Response
This shows the status field of the response has changed from Accepted to Acknowledged. All of the fields in the previous response are also included.
Request
Path parameters
| Name | Description |
|---|---|
mailboxID |
String The ID of the mailbox Example: MAILBOX01 Required
|
Query parameters
| Name | Description |
|---|---|
messageID |
String Value of messageID returned in the Example: 20210311101813838554_1B8F53 Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Response
HTTP status: 200
OK
Body
Content type: application/json
Schema
HTTP status: 403
Message does not exist
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
Outbox tracking
/messageexchange/{mailboxID}/outbox/tracking/{localID}
Overview
This endpoint is now deprecated tracking?messageID should be used instead.
Request
Path parameters
| Name | Description |
|---|---|
mailboxID |
String The ID of the mailbox Example: MAILBOX01 Required
|
localID |
String Value of Mex-LocalID provided by sender Example: api-docs-bob-sends-alice-a-chunked-file Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Response
HTTP status: 200
OK
Body
Content type: application/json
Schema
HTTP status: 300
Multiple options (The localId provided with the message was not unique)
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
HTTP status: 403
Message does not exist
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
Send chunked message
/messageexchange/{mailboxID}/outbox/{messageID}/{chunkNo}
Overview
Use this endpoint to send a chunked message. The 'Send Message' endpoint has a maximum payload size of 100MB. However, it is possible to send much larger messages (up to 20GB) by breaking up the message into chunks and transmitting it over multiple requests.
Note: Some workflowIDs do not support chunking because it is not currently supported in the MESH UI and older versions of the MESH client. Check with your receiving organisation before sending messages with this endpoint.
To send a chunked message:
- Split it into separate files
- Compress the individual chunks separately with the same compression program (e.g.
gzip).- DO NOT compress a large file and then split the compressed version
- Upload the first file using the normal Send message endpoint.
- Include the
Mex-Chunk-Rangeheader with a value of1:nwherenis the number of separate files your big data is split into. - Capture the
messageIdfield in the returned JSON.
- Include the
- Upload subsequent files in the correct order using the chunked message endpoint
Note: fewer headers are required for the chunked message endpoint because Spine uses the relevant metadata from the initial (Mex-Chunk-Header=1:n) call to the Send message endpoint.
Request
Suppose Bob has a large file to send to Alice. In this example we will use message.txt. It is easily small enough to send in a single request but we will chunk it anyway to illustrate the API calls.
First we break up our one "large" file into two smaller files. We will transmit one per request.
Large messages should be compressed to reduce the bandwidth and storage requirements for Spine.
Request
Path parameters
| Name | Description |
|---|---|
mailboxID |
String The ID of the mailbox Example: MAILBOX01 Required
|
messageID |
String The ID of the message Required
|
chunkNo |
Integer The index number of the chunk Example: 1 Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Content-Type |
String Type of sent content Example: application/octet-stream Required
|
Mex-Chunk-Range |
String (integer:integer) describes which chunk of the range is sent. Example: 124 Required
|
Response
HTTP status: 202
Accepted
Body
Content type: application/json
Schema
HTTP status: 403
Authentication failed
Body
Content type: application/json
Schema
Send message
/messageexchange/{mailboxID}/outbox
Overview
Use this endpoint to send a message via MESH. This must be done via the POST command to your virtual outbox. The message recipient is specified in the request headers, with the message contained in the request body.
Messages larger than 100MB
100MB (20MB on internet) is the largest data payload the MESH server will accept in a single request. Larger messages should be compressed to reduce bandwidth and data storage on Spine. If compression does not sufficiently reduce the message size enough for transmission in a single request then it can be broken up into smaller chunks and transmitted separately provided:
- The total compressed size of the message is < 100MB (this is the Spine upper limit for a single message).
- The receiver
mailboxIdandworkflowIdsupport the downloading of chunked messages. (The MESH UI and older versions of the MESH client do not have this support)
To correctly break the outbound message into valid chunks:
- Split the uncompressed message into
nordered chunks such that each (compressed) chunk is smaller than 20MB. - Independently compress each chunk with the same compression algorithm (e.g.
gzip). - The first (compressed) chunk of the message should be transmitted using this endpoint (the regular send message endpoint). The optional
Mex-Chunk-Rangeheader must be included with a value1:nto tell Spine that this will be a chunked message and it should wait forn-1other requests before delivering the message. ThemessageIdof this initial server response must be captured as it is a required path element of the Send chunked message url.
The workflowId should always be set, some workflowIds are restricted which means the mailbox sender and recipient must be configured for the workflowId being sent.
To discover the recipient mailbox either the endpointlookup endpoint can be used or for certain workflows demographic details can be included in the Mex-To field.
It is good practice to catpure the returned messageId as this provides a unique identifer which can be used for message tracking.
Request
Response
Request
Path parameters
| Name | Description |
|---|---|
mailboxID |
String The ID of the mailbox Example: MAILBOX01 Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Content-Type |
String Type of sent content Example: application/octet-stream Required
|
Mex-FileName |
String {Original File Name} Example: {Message content should have this file name after receipt} Required
|
Mex-From |
String Sending organisation's mailbox ID Example: {Sending organisation's mailbox ID} Required
|
Mex-To |
String Recipient mailbox ID Example: {Recipient Mailbox ID} Required
|
Mex-WorkflowID |
String Identifies the Business Workflow associated with the message Example: {Workflow ID} Required
|
Mex-Chunk-Range |
String 1:{n} {if first of n chunks, see Send chunked message} |
Mex-Content-Compress |
String Flag to indicate that the contents have been automically compressed by the client using GZip compression |
Mex-Content-Encrypted |
String Indicate to the receiver that contents are encrypted |
Mex-Localid |
String A unique ID generated by you, must not contain Patient Identifiable Data PID |
Mex-Subject |
String Subject line for message to SMTP MESH mailboxes |
Content-Encoding |
String Algorithm used to compress the file e.g. 'gzip' |
Mex-MessageType |
String DATA Required
|
Mex-ProcesslID |
String {Local process identifer} |
mex-Content-Checksum |
String Checksum of the original file contents |
Response
HTTP status: 202
Accepted
Body
Content type: application/json
Schema
HTTP status: 403
Authentication failed
Body
Content type: application/json
Schema
HTTP status: 417
Invalid Recipient or the workflow is restricted
Body
Content type: application/json
Schema
Validate a mailbox (Handshake)
/messageexchange/{mailboxID}
Overview
Use this endpoint to check that MESH can be reached and that the authentication you are using is correct. This endpoint only needs to be called once every 24 hours. This endpoint updates the details of the connection history held for the mailbox and is similar to a keep-alive or ping message, in that it allows monitoring on the Spine to be aware of the ongoing utilisation of a mailbox despite a lack of traffic.
Request
Response
Request
Path parameters
| Name | Description |
|---|---|
mailboxID |
String The ID of the mailbox Example: MAILBOX01 Required
|
Headers
| Name | Description |
|---|---|
Authorization |
String Authentication headers Example: Authorization: NHSMESH NONFUNC01:jt81ti68rlvta7379p3ng949rv:1:201511201038:291259e6a73cde3278f99cd5bd3c7ec9b3d1d5479077a8f711bddf58073d5555 Required
|
Mex-ClientVersion |
String Client version number Example: ApiDocs==0.0.1 Required
|
Mex-OSName |
String Operating system name Example: Linux Required
|
Mex-OSVersion |
String Operating system version Example: #44~18.04.2-Ubuntu Required
|
Mex-OSArchitecture |
String {Operating System Architecture} |
Mex-JavaVersion |
String {JVM Version Number} |
Response
HTTP status: 200
OK
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
HTTP status: 400
Bad Request
Body
Content type: application/json
Schema
| Name | Description |
|---|---|
|
object
|
HTTP status: 403
Authentication failed
Body
Content type: application/json