Skip to main content

System Configuration

Admin > System Configuration provides centralized controls for all platform-wide settings, integrations, and infrastructure monitoring. Only users with the super-admin role can access this section. The system configuration area has been significantly expanded to cover AI providers, health monitoring, vocabulary management, FHIR EHR connections, and sync monitoring.

General Settings

SettingDescriptionDefault
Platform NameDisplayed in browser title bar, emails, and PDF exports"Parthenon"
Support EmailAddress shown in error pages and system notifications--
Session TimeoutIdle session timeout in minutes before automatic logout60
Allow Self-RegistrationWhether the /register page is publicly accessiblefalse
Default RoleRole assigned to self-registered usersviewer
Max Upload SizeMaximum file size for web uploads (MB)500

Mail Configuration

Parthenon sends transactional emails for account creation, password resets, analysis completion notifications, and admin alerts. Configure the mail provider:

  1. Select Mail Driver from the dropdown:
DriverUse CaseConfiguration
SMTPStandard email serverHost, port, username, password, encryption
ResendModern email APIAPI key (loaded from .resendapikey if present)
MailgunTransactional email APIAPI key, domain
Amazon SESAWS email serviceAccess key, secret, region
LogDevelopment onlyEmails written to Laravel log (no real delivery)
  1. Enter driver-specific credentials.
  2. Set From Address and From Name (e.g., noreply@yourdomain.com, "Parthenon Platform").
  3. Click Send Test Email to verify delivery to your own email address.
Production mail

For production deployments, Resend is the recommended mail provider. Place your API key in .resendapikey at the repository root -- AppServiceProvider auto-detects and configures it at boot time.

AI Provider Configuration

Parthenon integrates an AI assistant for cohort building suggestions, clinical concept search assistance, and result interpretation. The platform supports 8 AI providers with a single-active-provider architecture.

Supported Providers

ProviderModel ExamplesAuth Method
Ollama (default)MedGemma 1.5 4B, Llama 3, MistralLocal (no API key required)
OpenAIGPT-4o, GPT-4 TurboAPI key
AnthropicClaude 3.5 Sonnet, Claude 3 OpusAPI key
Google AIGemini 1.5 Pro, Gemini FlashAPI key
Azure OpenAIGPT-4 (Azure-hosted)API key + endpoint URL
AWS BedrockClaude, Titan, LlamaIAM credentials + region
Mistral AIMistral Large, MixtralAPI key
CohereCommand R+, Embed v3API key

Configuration Steps

  1. Navigate to Admin > System > AI Providers.
  2. Each provider card shows its current status (Active / Configured / Not configured).
  3. Click a provider card to configure:
    • Enter the required credentials (API key, endpoint URL, etc.)
    • All credentials are stored encrypted in the ai_provider_settings table using Laravel's encrypted:array cast
    • Select the default model name
  4. Click Test to verify the connection and model availability. The test sends a simple health check prompt and reports the response time.
  5. Click Set Active to make this provider the default for all AI-assisted features.

Single-Active Constraint

Only one AI provider can be active at any time. Setting a new provider as active automatically deactivates the previous one within a database transaction, ensuring consistency.

Ollama for air-gapped environments

For healthcare environments without internet access, Ollama runs entirely on-premises with local models. The default configuration uses MedGemma 1.5 4B (MedAIBase/MedGemma1.5:4b), a medical domain-tuned model suitable for clinical concept assistance. No data leaves your infrastructure.

System Health Dashboard

Navigate to Admin > System > Health to monitor the real-time status of all Parthenon services. The dashboard auto-refreshes every 30 seconds.

Monitored Services

ServiceHealth CheckHealthy Response
PHP-FPMLaravel bootstrap validationApplication boots without errors
PostgreSQL (App DB)Connection test to parthenon databaseSELECT 1 succeeds
PostgreSQL (CDM)Connection test to clinical data databaseSELECT 1 succeeds
RedisPING commandPONG response
AI ServiceHTTP GET to Python FastAPI /health endpoint200 OK with service version
R RuntimeHTTP GET to Plumber /health endpoint200 OK
Node (Frontend)Container health check (127.0.0.1)Process alive
ChromaDBHTTP GET to ChromaDB health endpoint200 OK with collection counts and vector totals
HorizonQueue worker process statusWorkers running, no stuck jobs

Status Indicators

  • Green -- service is healthy and responding within expected latency
  • Yellow -- service is responding but with degraded performance (high latency or partial errors)
  • Red -- service is unreachable or returning errors

Red status on any critical service (PHP, PostgreSQL, Redis) triggers an admin notification email if mail is configured.

Service Details

Click any service card to see:

  • Response time history (last 24 hours)
  • Recent error messages
  • Configuration details (host, port, version)
  • Restart/reconnect action button

Queue and Background Jobs

Parthenon uses Laravel Horizon to manage background job processing. Access the Horizon dashboard at /horizon (admin-only):

Monitored Queues

QueuePurposeTypical Jobs
defaultGeneral processingCohort generation, email sending
analysesAnalysis executionCharacterization, PLE, PLP, pathway analysis
ingestionData ingestionFile parsing, schema mapping, concept mapping
fhir-syncFHIR synchronizationBulk data export, NDJSON processing, OMOP mapping
genomicsGenomics processingVCF parsing, ClinVar annotation, OMOP import

Dashboard Features

  • Job throughput -- real-time jobs-per-minute graph
  • Failed jobs -- error messages, stack traces, and one-click retry
  • Queue depths -- number of pending jobs per queue
  • Worker status -- active worker processes and their current job
  • Job metrics -- average execution time, memory usage, failure rates

Vocabulary Management

The OMOP vocabulary powering concept searches, cohort definitions, and concept mapping can be updated when new releases are available from Athena.

Upload and Update Process

  1. Navigate to Admin > System > Vocabulary.
  2. The current vocabulary version and concept counts are displayed.
  3. Click Upload Athena ZIP and select the vocabulary bundle downloaded from Athena.
  4. Parthenon shows a progress tracker during upload and extraction:
    • Upload progress (file transfer)
    • Extraction (ZIP decompression)
    • Validation (schema verification)
    • Loading (COPY into vocabulary tables)
    • Indexing (rebuild search indexes)
  5. After loading, a change preview shows:
    • New concepts added
    • Deprecated concepts
    • Updated concept names or relationships
  6. Click Apply to finalize the vocabulary update.
Vocabulary update downtime

During vocabulary refresh, the vocabulary tables are locked for writes. Concept searches remain available (read-only) but new concept set creation may be temporarily affected. Schedule vocabulary updates during maintenance windows. Review all concept sets after any vocabulary upgrade -- deprecated concepts may affect existing cohort definitions.

FHIR EHR Connections

Parthenon supports direct integration with EHR systems via FHIR R4, enabling automated clinical data synchronization. See Chapter 30 -- FHIR EHR Integration for comprehensive documentation.

Connection Management

Navigate to Admin > System > FHIR Connections to manage EHR integrations:

  • Add Connection -- configure a new FHIR endpoint with SMART Backend Services authentication
  • Test Connection -- three-step verification (JWT assertion build, token exchange, FHIR metadata fetch)
  • Start Sync -- trigger a bulk data export and OMOP mapping pipeline
  • View Sync History -- monitor past sync runs with detailed metrics

Authentication

FHIR connections use SMART Backend Services (OAuth 2.0 client credentials with RS384 JWT assertions):

  1. Register a SMART client in your EHR system (Epic, Cerner, etc.)
  2. Upload the RSA private key PEM to Parthenon (validated and stored encrypted)
  3. Parthenon builds JWT assertions signed with the private key
  4. Tokens are exchanged at the EHR's token endpoint
  5. Authorized FHIR API calls use the Bearer token

Supported EHR Vendors

VendorFHIR VersionBulk DataNotes
EpicR4YesGroup-based export with $export
CernerR4YesPatient-level and group export
OtherR4VariesGeneric FHIR R4 endpoint support

Sync Monitoring Dashboard

Navigate to Admin > System > FHIR Sync Dashboard for a unified view of all FHIR synchronization activity:

Dashboard Components

  1. Pipeline Funnel -- visual funnel showing records at each stage:

    • Extracted (from FHIR Bulk Data)
    • Mapped (FHIR resources to OMOP concepts)
    • Written (inserted/updated in CDM tables)
    • Failed (errors during processing)

  2. 30-Day Timeline -- bar chart showing daily sync activity (completed vs. failed runs)

  3. Connection Health -- per-connection summary cards showing:

    • Last sync timestamp and status
    • Total records synced
    • Success rate
    • Active/inactive status

  4. Recent Runs -- chronological list of the 20 most recent sync runs across all connections with status, duration, record counts, and the user who triggered each run

  5. Aggregate Metrics:

    • Total connections (active/total)
    • Total sync runs (completed/failed/active)
    • Cumulative records extracted, mapped, written, failed
    • Average mapping coverage percentage

The dashboard auto-refreshes every 30 seconds and provides a comprehensive operational view of your FHIR data pipeline.

Monitoring best practices

Set up alerts for:

  • Failed syncs -- investigate immediately to prevent data gaps
  • Mapping coverage below 80% -- indicates vocabulary or resource mapping issues
  • Sync duration increasing -- may indicate EHR performance degradation or growing data volumes