Health care
Introduction
This contract between a patient and its insurer establishes the rules of payment:
- between insurance and doctors
- between the patient and the insurer
The insurer pays the consultation price to the doctor.
The patient pays the insurer:
- a fee on a regular basis
- an amount per consultation capped to a fixed deductible amount
API
Storage
| Name | Type | Description |
|---|---|---|
patient | address | Patient's address. |
insurer | address | Insurer's address. |
fee | tez | Fee value, paid by patient to insurer every fee_period period of time. |
fee_period | duration | Covering period for one fee payment. |
deductible | tez | Maximum amount paid by patient to insurer for a consultation. |
doctor | collection | A doctor is defined by an address and the debt due by insurer to doctor. |
last_fee_date | date | Date of last fee payment. Used internally to compute number of due fees. |
patient_confirmed | bool | Has patient confirmed contract ? Used internally to compute Running state. |
insurer_confirmed | bool | Has insurer confirmed contract ? Used internally to compute Running state. |
deductible_debt | tez | Sum of deductibles due by patient to insurer. |
_state | states | One of Created, Running, Canceled |
Entrypoints
| Name | Parameters | Description |
|---|---|---|
confirm | Called by patient and insurer to confirm contract. | |
toRunning | Internally called by contract to set contrat to Running state when confirmed by patient and insurer. | |
cancel | Called by patient or insurer to cancel contract. | |
register_doctor | a | Registers doctor at address a. |
declare_consultation | p | A doctor declares a medical consultation for patient of price p. It increments:
|
pay_doctor | doc | insurer pays doctor doc the debt value (accumulated by declare_declaration). |
pay_fees | patient pays insurer the fee. The amount is computed based on last_fee_date as the number of periods period multiplied by fee. It updates last_fee_date. | |
pay_deductible | patient pays insurer the amount of deductible_debt (accumulated by declare_declaration). |
Code
- Archetype
- Michelson
- Specification
healthcare.arl
archetype health_care(
patient : address,
insurer : address,
fee : tez,
fee_period : duration,
deductible : tez,
)
variable last_fee_date : date = now
variable patient_confirmed : bool = false
variable insurer_confirmed : bool = false
variable deductible_debt : tez = 0tz
asset doctor {
addr : address;
debt : tez = 0tz;
}
states =
| Created initial
| Running
| Canceled
transition toRunning () {
called by selfaddress
from Created to Running
with effect { last_fee_date := now }
}
entry confirm() {
if caller = patient then patient_confirmed := true;
if caller = insurer then insurer_confirmed := true;
if patient_confirmed and insurer_confirmed then
transfer 0tz to entry self.toRunning()
}
transition cancel () {
called by insurer or patient
from any to Canceled
}
entry register_doctor (a : address) {
called by patient
require { r1 : state = Running; }
effect { doctor.add ({ addr = a }) }
}
entry declare_consultation (p : tez) {
require {
r2 : state = Running;
r3 : doctor.contains(caller);
}
effect {
doctor.update(caller, { debt += p });
deductible_debt += min(p, deductible)
}
}
(* Payment from Insurance to Doctor *)
entry pay_doctor (doc : address) {
called by insurer
require { r4 : state = Running }
effect {
var decrease : tez = min(transferred, doctor[doc].debt);
transfer decrease to doc;
transfer (transferred - decrease) to insurer;
doctor.update (doc, { debt -= decrease })
}
}
(* Payments from Patient to Insuance *)
entry pay_fees () {
called by patient
require { r5 : state = Running }
effect {
var nb_periods : int = (now - last_fee_date) div fee_period;
var due = nb_periods * fee;
var decrease : tez = min (transferred, due);
transfer decrease to insurer;
transfer (transferred - decrease) to patient;
last_fee_date += nb_periods * fee_period
}
}
entry pay_deductibles () {
called by patient
require { r6 : state = Running; }
effect {
var decrease : tez = min (transferred, deductible_debt);
transfer decrease to insurer;
transfer (transferred - decrease) to patient;
deductible_debt -= decrease
}
}
# (Pair patient (Pair insurer (Pair fee (Pair fee_period (Pair deductible (Pair 1618187246 (Pair False (Pair False (Pair 0 (Pair 0 { }))))))))))
{
storage (pair (address %patient) (pair (address %insurer) (pair (mutez %fee) (pair (int %fee_period) (pair (mutez %deductible) (pair (timestamp %last_fee_date) (pair (bool %patient_confirmed) (pair (bool %insurer_confirmed) (pair (mutez %deductible_debt) (pair (nat %_state) (map %doctor address mutez)))))))))));
parameter (or (unit %toRunning) (or (unit %confirm) (or (unit %cancel) (or (address %register_doctor) (or (mutez %declare_consultation) (or (address %pay_doctor) (or (unit %pay_fees) (unit %pay_deductibles))))))));
code { NIL operation;
DIG 1;
UNPAIR;
DIP { UNPAIR; SWAP; UNPAIR; SWAP; UNPAIR; SWAP; UNPAIR; SWAP; UNPAIR; SWAP; UNPAIR; SWAP; UNPAIR; SWAP; UNPAIR; SWAP; UNPAIR; SWAP; UNPAIR; SWAP };
IF_LEFT
{ DROP;
SELF;
ADDRESS;
SENDER;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCaller";
FAILWITH }
{ };
DIG 1;
DUP;
DUG 2;
DUP;
PUSH nat 0;
COMPARE;
EQ;
IF
{ NOW;
DIP { DIG 6; DROP };
DUG 6;
PUSH nat 1;
DIP { DIG 2; DROP };
DUG 2 }
{ PUSH string "InvalidState";
FAILWITH };
DROP;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
DIG 1;
PAIR }
{ IF_LEFT
{ DROP;
DIG 10;
DUP;
DUG 11;
SENDER;
COMPARE;
EQ;
IF
{ PUSH bool True;
DIP { DIG 4; DROP };
DUG 4 }
{ };
DIG 9;
DUP;
DUG 10;
SENDER;
COMPARE;
EQ;
IF
{ PUSH bool True;
DIP { DIG 3; DROP };
DUG 3 }
{ };
DIG 3;
DUP;
DUG 4;
DIG 5;
DUP;
DUG 6;
AND;
IF
{ DIG 11;
DUP;
DUG 12;
SELF;
ADDRESS;
CONTRACT %toRunning unit;
IF_NONE
{ PUSH string "BadContract";
FAILWITH }
{ };
PUSH mutez 0;
UNIT;
TRANSFER_TOKENS;
CONS;
DIP { DIG 11; DROP };
DUG 11 }
{ };
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
DIG 1;
PAIR }
{ IF_LEFT
{ DROP;
DIG 10;
DUP;
DUG 11;
SENDER;
COMPARE;
EQ;
DIG 10;
DUP;
DUG 11;
SENDER;
COMPARE;
EQ;
OR;
NOT;
IF
{ PUSH string "InvalidCaller";
FAILWITH }
{ };
PUSH nat 2;
DIP { DIG 1; DROP };
DUG 1;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
DIG 1;
PAIR }
{ IF_LEFT
{ DIG 11;
DUP;
DUG 12;
SENDER;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCaller";
FAILWITH }
{ };
PUSH nat 1;
DIG 3;
DUP;
DUG 4;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCondition: r1";
FAILWITH }
{ };
DIG 1;
DUP;
DUG 2;
DIG 1;
DUP;
DUG 2;
MEM;
IF
{ PUSH string "KeyAlreadyExists";
FAILWITH }
{ DIG 1;
DUP;
DUG 2;
PUSH mutez 0;
SOME;
DIG 2;
DUP;
DUG 3;
UPDATE;
DIP { DIG 1; DROP };
DUG 1 };
DROP;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
DIG 1;
PAIR }
{ IF_LEFT
{ PUSH nat 1;
DIG 3;
DUP;
DUG 4;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCondition: r2";
FAILWITH }
{ };
DIG 1;
DUP;
DUG 2;
SENDER;
MEM;
NOT;
IF
{ PUSH string "InvalidCondition: r3";
FAILWITH }
{ };
DIG 1;
DUP;
DUG 2;
SENDER;
GET;
IF_NONE
{ PUSH string "GetNoneValue";
FAILWITH }
{ };
DIG 2;
DUP;
DUG 3;
DIG 2;
DUP;
DUG 3;
DIG 2;
DUP;
DUG 3;
ADD;
SOME;
SENDER;
UPDATE;
DIP { DIG 2; DROP };
DUG 2;
DROP;
DIG 7;
DUP;
DUG 8;
DIG 1;
DUP;
DUG 2;
PAIR;
DUP;
UNPAIR;
COMPARE;
LT;
IF
{ CAR }
{ CDR };
DIG 4;
DUP;
DUG 5;
ADD;
DIP { DIG 3; DROP };
DUG 3;
DROP;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
DIG 1;
PAIR }
{ IF_LEFT
{ DIG 10;
DUP;
DUG 11;
SENDER;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCaller";
FAILWITH }
{ };
PUSH nat 1;
DIG 3;
DUP;
DUG 4;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCondition: r4";
FAILWITH }
{ };
DIG 1;
DUP;
DUG 2;
DIG 1;
DUP;
DUG 2;
GET;
IF_NONE
{ PUSH string "GetNoneValue";
FAILWITH }
{ };
AMOUNT;
PAIR;
DUP;
UNPAIR;
COMPARE;
LT;
IF
{ CAR }
{ CDR };
DIG 13;
DUP;
DUG 14;
DIG 2;
DUP;
DUG 3;
CONTRACT unit;
IF_NONE
{ PUSH string "BadContract";
FAILWITH }
{ };
DIG 2;
DUP;
DUG 3;
UNIT;
TRANSFER_TOKENS;
CONS;
DIP { DIG 13; DROP };
DUG 13;
DIG 13;
DUP;
DUG 14;
DIG 12;
DUP;
DUG 13;
CONTRACT unit;
IF_NONE
{ PUSH string "BadContract";
FAILWITH }
{ };
DIG 2;
DUP;
DUG 3;
AMOUNT;
SUB;
UNIT;
TRANSFER_TOKENS;
CONS;
DIP { DIG 13; DROP };
DUG 13;
DIG 2;
DUP;
DUG 3;
DIG 2;
DUP;
DUG 3;
GET;
IF_NONE
{ PUSH string "GetNoneValue";
FAILWITH }
{ };
DIG 3;
DUP;
DUG 4;
DIG 2;
DUP;
DUG 3;
DIG 2;
DUP;
DUG 3;
SUB;
SOME;
DIG 4;
DUP;
DUG 5;
UPDATE;
DIP { DIG 3; DROP };
DUG 3;
DROP 3;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
DIG 1;
PAIR }
{ IF_LEFT
{ DROP;
DIG 10;
DUP;
DUG 11;
SENDER;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCaller";
FAILWITH }
{ };
PUSH nat 1;
DIG 2;
DUP;
DUG 3;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCondition: r5";
FAILWITH }
{ };
DIG 7;
DUP;
DUG 8;
DIG 6;
DUP;
DUG 7;
NOW;
SUB;
EDIV;
IF_NONE
{ PUSH string "DivByZero";
FAILWITH }
{ DUP;
CAR;
SWAP;
DROP };
DIG 9;
DUP;
DUG 10;
PUSH nat 1;
DIG 2;
DUP;
DUG 3;
PAIR;
PAIR;
UNPAIR;
UNPAIR;
ABS;
DIG 2;
MUL;
EDIV;
IF_NONE
{ PUSH string "DivByZero";
FAILWITH }
{ };
CAR;
DUP;
AMOUNT;
PAIR;
DUP;
UNPAIR;
COMPARE;
LT;
IF
{ CAR }
{ CDR };
DIG 14;
DUP;
DUG 15;
DIG 13;
DUP;
DUG 14;
CONTRACT unit;
IF_NONE
{ PUSH string "BadContract";
FAILWITH }
{ };
DIG 2;
DUP;
DUG 3;
UNIT;
TRANSFER_TOKENS;
CONS;
DIP { DIG 14; DROP };
DUG 14;
DIG 14;
DUP;
DUG 15;
DIG 14;
DUP;
DUG 15;
CONTRACT unit;
IF_NONE
{ PUSH string "BadContract";
FAILWITH }
{ };
DIG 2;
DUP;
DUG 3;
AMOUNT;
SUB;
UNIT;
TRANSFER_TOKENS;
CONS;
DIP { DIG 14; DROP };
DUG 14;
DIG 10;
DUP;
DUG 11;
PUSH nat 1;
DIG 4;
DUP;
DUG 5;
PAIR;
PAIR;
UNPAIR;
UNPAIR;
DIG 2;
MUL;
EDIV;
IF_NONE
{ PUSH string "DivByZero";
FAILWITH }
{ };
CAR;
DIG 9;
DUP;
DUG 10;
ADD;
DIP { DIG 8; DROP };
DUG 8;
DROP 3;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
DIG 1;
PAIR }
{ DROP;
DIG 10;
DUP;
DUG 11;
SENDER;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCaller";
FAILWITH }
{ };
PUSH nat 1;
DIG 2;
DUP;
DUG 3;
COMPARE;
EQ;
NOT;
IF
{ PUSH string "InvalidCondition: r6";
FAILWITH }
{ };
DIG 2;
DUP;
DUG 3;
AMOUNT;
PAIR;
DUP;
UNPAIR;
COMPARE;
LT;
IF
{ CAR }
{ CDR };
DIG 12;
DUP;
DUG 13;
DIG 11;
DUP;
DUG 12;
CONTRACT unit;
IF_NONE
{ PUSH string "BadContract";
FAILWITH }
{ };
DIG 2;
DUP;
DUG 3;
UNIT;
TRANSFER_TOKENS;
CONS;
DIP { DIG 12; DROP };
DUG 12;
DIG 12;
DUP;
DUG 13;
DIG 12;
DUP;
DUG 13;
CONTRACT unit;
IF_NONE
{ PUSH string "BadContract";
FAILWITH }
{ };
DIG 2;
DUP;
DUG 3;
AMOUNT;
SUB;
UNIT;
TRANSFER_TOKENS;
CONS;
DIP { DIG 12; DROP };
DUG 12;
DUP;
DIG 4;
DUP;
DUG 5;
SUB;
DIP { DIG 3; DROP };
DUG 3;
DROP;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
SWAP;
PAIR;
DIG 1;
PAIR } } } } } } } };
}
healthcare.arl
specification entry pay_doctor (docid : address) {
postcondition p1 {
balance = before.balance
}
}
specification entry pay_fee () {
postcondition p2 {
balance = before.balance
}
}
specification entry pay_consulation () {
postcondition p3 {
balance = before.balance;
}
}