hmrc · chrisob55 · Mar 27, 2026
diff --git a/service-dependency-map/agent-registration-risking.service-meta.yaml b/service-dependency-map/agent-registration-risking.service-meta.yaml
@@ -0,0 +1,40 @@
+service: agent-registration-risking
+repository: https://github.com/hmrc/agent-registration-risking
+capabilities:
+  - risking-submission
+  - risking-response-retrieval
+  - application-status-tracking
+  - sdes-notification-processing
+audience:
+  - internal
+interaction: synchronous
+criticality: high
+lifecycle: active
+dependencies:
+  consumes: []
+  produces: []
+tags:
+  - agent-registration
+  - risking
+  - sdes
+apis:
+  - id: ARR01
+    method: POST
+    path: /submit-for-risking
+    description: Submits a completed agent registration payload for risking.
+  - id: ARR02
+    method: GET
+    path: /application/{applicationReference}
+    description: Retrieves risking response details for the specified application reference.
+  - id: ARR03
+    method: GET
+    path: /individual/{personReference}
+    description: Retrieves risking response details for the specified individual person reference.
+  - id: ARR04
+    method: GET
+    path: /application-status/{applicationReference}
+    description: Retrieves the current risking status for the specified application reference.
+  - id: ARR05
+    method: POST
+    path: /receive-sdes-notifications
+    description: Receives and processes SDES notifications related to risking file handling.
diff --git a/service-dependency-map/agent-registration-risking/ARR01/ARR01.json b/service-dependency-map/agent-registration-risking/ARR01/ARR01.json
@@ -0,0 +1,111 @@
+{
+  "apiId": "ARR01",
+  "apiTitle": "Submit For Risking",
+  "description": "Submits a completed agent registration payload for risking. Accepts a SubmitForRiskingRequest JSON body containing the agent application and associated individuals, transforms it into an ApplicationForRisking record, and upserts it into MongoDB. Returns 201 Created on success.",
+  "method": "POST",
+  "path": "/submit-for-risking",
+  "pathParameters": [],
+  "queryParameters": [],
+  "responses": [
+    {
+      "statusCode": 201,
+      "description": "Created — the application for risking was successfully upserted.",
+      "body": "Empty"
+    },
+    {
+      "statusCode": 400,
+      "description": "Bad Request — JSON body failed to parse as SubmitForRiskingRequest.",
+      "body": "Play framework JSON parse error"
+    },
+    {
+      "statusCode": 401,
+      "description": "Unauthorised — caller is not authenticated via Government Gateway as an Agent, or credential role is unsupported, or HMRC-AS-AGENT enrolment is already active.",
+      "body": "Empty or auth error body"
+    }
+  ],
+  "authentication": {
+    "required": true,
+    "type": "Government Gateway",
+    "affinityGroup": "Agent",
+    "credentialRoles": ["User", "Admin"],
+    "notes": "Rejects if HMRC-AS-AGENT enrolment is already active on the user. Retrieves internalId, allEnrolments, credentialRole."
+  },
+  "audience": "internal",
+  "controller": "uk.gov.hmrc.agentregistrationrisking.controllers.SubmitForRiskingController",
+  "controllerMethod": "submitForRisking",
+  "services": [
+    {
+      "name": "ApplicationForRiskingRepo",
+      "type": "MongoDB repository",
+      "operation": "upsert",
+      "collection": "application-for-risking"
+    }
+  ],
+  "interactions": [
+    {
+      "step": 1,
+      "actor": "Caller",
+      "action": "POST /submit-for-risking with SubmitForRiskingRequest JSON body",
+      "target": "SubmitForRiskingController"
+    },
+    {
+      "step": 2,
+      "actor": "SubmitForRiskingController",
+      "action": "Invoke AuthorisedAction — verify Government Gateway auth, AffinityGroup.Agent, credential role, and absence of HMRC-AS-AGENT enrolment",
+      "target": "AuthorisedAction / HMRC Auth service"
+    },
+    {
+      "step": 3,
+      "actor": "SubmitForRiskingController",
+      "action": "Parse JSON body as SubmitForRiskingRequest",
+      "target": "Play JSON parser"
+    },
+    {
+      "step": 4,
+      "actor": "SubmitForRiskingController",
+      "action": "Convert SubmitForRiskingRequest to ApplicationForRisking model; map individuals to IndividualForRisking; determine CRN (only for LimitedCompany/LimitedPartnership/LLP/ScottishLimitedPartnership); set status=ReadyForSubmission; set createdAt=Instant.now()",
+      "target": "SubmitForRiskingController (internal extension methods)"
+    },
+    {
+      "step": 5,
+      "actor": "SubmitForRiskingController",
+      "action": "Upsert ApplicationForRisking document into MongoDB (replaceOne with upsert=true, keyed on applicationReference)",
+      "target": "ApplicationForRiskingRepo → MongoDB collection 'application-for-risking'"
+    },
+    {
+      "step": 6,
+      "actor": "SubmitForRiskingController",
+      "action": "Return 201 Created",
+      "target": "Caller"
+    }
+  ],
+  "externalDependencies": [
+    {
+      "name": "HMRC Auth Service",
+      "type": "HTTP",
+      "purpose": "Validate Government Gateway credentials and retrieve enrolments/credentialRole/internalId"
+    }
+  ],
+  "databaseCollections": [
+    {
+      "collection": "application-for-risking",
+      "operation": "upsert (replaceOne)",
+      "key": "applicationReference",
+      "indexes": [
+        {"field": "applicationReference", "unique": true},
+        {"field": "individuals.personReference", "unique": true},
+        {"field": "lastUpdated", "type": "TTL"}
+      ]
+    }
+  ],
+  "specialCases": [
+    "CRN is only populated for LimitedCompany, LimitedPartnership, LLP, and ScottishLimitedPartnership business types; all other types get null CRN.",
+    "PassedIV is mandatory on IndividualProvidedDetails; throws if missing.",
+    "Upsert semantics mean re-submission of the same applicationReference overwrites the existing record."
+  ],
+  "metadata": {
+    "lastUpdated": "2026-03-27",
+    "gitCommitSha": "169b806fc80ac3b3ff2f69c831f3dd6627378da0",
+    "analysisVersion": "1.0"
+  }
+}
diff --git a/service-dependency-map/agent-registration-risking/ARR01/ARR01.md b/service-dependency-map/agent-registration-risking/ARR01/ARR01.md
@@ -0,0 +1,142 @@
+# ARR01 — Submit For Risking
+
+## Overview
+
+Submits a completed agent registration payload for risking assessment. This endpoint accepts a `SubmitForRiskingRequest` JSON body containing the agent application details and associated individuals, transforms the data into an `ApplicationForRisking` document, and upserts it into MongoDB. The record is initially stored with status `ReadyForSubmission` and will be picked up by the background `RiskingRunner` process for file upload to HMRC Object Store / SDES.
+
+## API Details
+
+| Property | Value |
+|---|---|
+| **API ID** | ARR01 |
+| **Method** | POST |
+| **Path** | `/submit-for-risking` |
+| **Controller** | `SubmitForRiskingController` |
+| **Controller Method** | `submitForRisking()` |
+| **Audience** | Internal |
+| **Authentication** | Government Gateway (Agent, User/Admin credential role) |
+
+## Path Parameters
+
+None.
+
+## Query Parameters
+
+None.
+
+## Request Body
+
+Content-Type: `application/json`
+
+The body must be a valid `SubmitForRiskingRequest`:
+
+```json
+{
+  "agentApplication": { ... },
+  "individuals": [ ... ]
+}
+```
+
+The `agentApplication` field contains the full agent registration application (business type, applicant details, AMLS details, etc.). The `individuals` field is a list of `IndividualProvidedDetails` objects.
+
+## Response
+
+| Status | Description |
+|---|---|
+| `201 Created` | Application for risking successfully upserted. Empty response body. |
+| `400 Bad Request` | JSON body failed to parse as `SubmitForRiskingRequest`. |
+| `401 Unauthorised` | Authentication failed — invalid Government Gateway credentials, wrong affinity group, unsupported credential role, or HMRC-AS-AGENT enrolment already active. |
+
+## Service Architecture
+
+The controller depends on:
+
+- **`Actions`** — provides the `authorised` action builder which chains `DefaultActionBuilder` with `AuthorisedAction`.
+- **`AuthorisedAction`** — validates Government Gateway auth, checks affinity group is Agent, retrieves enrolments/credentialRole/internalId, rejects if HMRC-AS-AGENT is already active.
+- **`ApplicationForRiskingRepo`** — MongoDB repository for `ApplicationForRisking` documents in the `application-for-risking` collection.
+
+## Interaction Flow
+
+```mermaid
+sequenceDiagram
+    participant Caller
+    participant AuthorisedAction
+    participant AuthService as HMRC Auth Service
+    participant Controller as SubmitForRiskingController
+    participant MongoDB as MongoDB (application-for-risking)
+
+    Caller->>Controller: POST /submit-for-risking (SubmitForRiskingRequest JSON)
+    Controller->>AuthorisedAction: andThen(authorisedAction)
+    AuthorisedAction->>AuthService: authorised(GovernmentGateway + AffinityGroup.Agent)
+    AuthService-->>AuthorisedAction: allEnrolments, credentialRole, internalId
+    alt Unsupported credential role
+        AuthorisedAction-->>Caller: 401 Unauthorised
+    else HMRC-AS-AGENT enrolment active
+        AuthorisedAction-->>Caller: 401 Unauthorised
+    else Auth OK
+        AuthorisedAction-->>Controller: AuthorisedRequest
+        Controller->>Controller: Parse JSON body as SubmitForRiskingRequest
+        alt JSON parse failure
+            Controller-->>Caller: 400 Bad Request
+        else Parse OK
+            Controller->>Controller: Convert to ApplicationForRisking (set status=ReadyForSubmission, createdAt=now(), map individuals, extract CRN if applicable)
+            Controller->>MongoDB: upsert(applicationForRisking) via replaceOne keyed on applicationReference
+            MongoDB-->>Controller: Unit (success)
+            Controller-->>Caller: 201 Created
+        end
+    end
+```
+
+## Dependencies
+
+| Dependency | Type | Purpose |
+|---|---|---|
+| HMRC Auth Service | External HTTP | Government Gateway authentication and enrolment retrieval |
+| MongoDB (`application-for-risking`) | Database | Persist `ApplicationForRisking` documents |
+
+## Database Collections
+
+### `application-for-risking`
+
+- **Operation:** `upsert` (MongoDB `replaceOne` with `upsert=true`)
+- **Key field:** `applicationReference`
+- **Indexes:**
+  - `applicationReference` — unique index
+  - `individuals.personReference` — unique index
+  - `lastUpdated` — TTL index (configurable retention)
+
+## Special Cases
+
+- **CRN extraction:** CRN is only populated for `LimitedCompany`, `LimitedPartnership`, `LLP`, and `ScottishLimitedPartnership` business types. All other business types receive a `null` CRN.
+- **PassedIV requirement:** The `passedIV` field on each `IndividualProvidedDetails` is mandatory. If missing, the method throws an `ExpectedDataMissingException`.
+- **Upsert semantics:** Re-submitting the same `applicationReference` overwrites the existing record. This allows callers to correct and resubmit.
+- **Individuals provided by applicant flag:** Currently hardcoded to `false` — the system does not support applicant-provided individual details.
+
+## Error Handling
+
+| Scenario | Behaviour |
+|---|---|
+| JSON body malformed | Play framework returns `400 Bad Request` before controller logic executes |
+| Auth failure | `AuthorisedAction` returns `401 Unauthorised` |
+| `passedIV` missing on individual | Runtime exception thrown; results in `500 Internal Server Error` |
+| MongoDB write failure | Future fails; results in `500 Internal Server Error` |
+
+## Performance Considerations
+
+- This is a write-heavy endpoint. Upsert operations on MongoDB should be fast given the unique index on `applicationReference`.
+- Large `individuals` lists will increase document size and upsert time.
+- TTL index on `lastUpdated` provides automatic data cleanup.
+
+## Notes
+
+- The `applicationReference` is derived from `agentApplicationId` of the submitted agent application.
+- After submission, the record stays in `ReadyForSubmission` status until the `RiskingRunner` background process picks it up and uploads it to Object Store for SDES.
+- This endpoint is consumed by the agent registration orchestration service as part of the registration journey completion step.
+
+## Document Metadata
+
+| Property | Value |
+|---|---|
+| **Last Updated** | 2026-03-27 |
+| **Git Commit SHA** | `169b806fc80ac3b3ff2f69c831f3dd6627378da0` |
+| **Analysis Version** | 1.0 |
diff --git a/service-dependency-map/agent-registration-risking/ARR01/ARR01.mmd b/service-dependency-map/agent-registration-risking/ARR01/ARR01.mmd
@@ -0,0 +1,27 @@
+sequenceDiagram
+    participant Caller
+    participant AuthorisedAction
+    participant AuthService as HMRC Auth Service
+    participant Controller as SubmitForRiskingController
+    participant MongoDB as MongoDB (application-for-risking)
+
+    Caller->>Controller: POST /submit-for-risking (SubmitForRiskingRequest JSON)
+    Controller->>AuthorisedAction: andThen(authorisedAction)
+    AuthorisedAction->>AuthService: authorised(GovernmentGateway + AffinityGroup.Agent)
+    AuthService-->>AuthorisedAction: allEnrolments, credentialRole, internalId
+    alt Unsupported credential role
+        AuthorisedAction-->>Caller: 401 Unauthorised
+    else HMRC-AS-AGENT enrolment active
+        AuthorisedAction-->>Caller: 401 Unauthorised
+    else Auth OK
+        AuthorisedAction-->>Controller: AuthorisedRequest
+        Controller->>Controller: Parse JSON body as SubmitForRiskingRequest
+        alt JSON parse failure
+            Controller-->>Caller: 400 Bad Request
+        else Parse OK
+            Controller->>Controller: Convert to ApplicationForRisking (set status=ReadyForSubmission, createdAt=now(), map individuals, extract CRN if applicable)
+            Controller->>MongoDB: upsert(applicationForRisking) via replaceOne keyed on applicationReference
+            MongoDB-->>Controller: Unit (success)
+            Controller-->>Caller: 201 Created
+        end
+    end