Stream: implementers
Topic: General Queries For Implementations
Nihar (Aug 20 2021 at 12:26):
Hello: We are having some general queries related to the SSO and Sandbox Environments:
1> How does the SSO (sso-openid-connect) capability/OpenID Scope is defined and works is actual reality? How it's conformance is demonstrated during the certification? Detailed explanation to the process will be really helpful.
2> We analyzed that having the sandbox environment under the Public Documentation Condition is not mandatory and it is good to have environment for 3rd Developers to test before production but we just wanted to confirm about our understanding. Please Suggest that are we correct on our understanding?
Thanks in advance.
John Moehrke (Aug 20 2021 at 12:29):
There are multiple implementation guides for various settings. The most dominant one is for end-user applications, SMART-on-FHIR, which has discussions at #smart . This solution is built into many tools like HAPI.
John Moehrke (Aug 20 2021 at 12:40):
for the most part using openId-Connect is natural OAuth. Healthcare does not need anything special here. (Well, there are policies but everyone has policies)
Last updated: Apr 12 2022 at 19:14 UTC
