FHIR Chat · oauth2 backend services · implementers

Stream: implementers

Topic: oauth2 backend services

view this post on Zulip René Spronk (Mar 02 2022 at 13:58):

As a trainer I know the high-level theory behind OAuth2 (as a trainer one has to know at least a little bit about everything), now I'm trying to grasp an additional level of detail. I'd like to go for SMART Backend Services, with manual client registration (this would seem to be the easiest thing to do, I'll be using some Python library).
What's a good backend/test server to test this scenario against ? I can find some servers, but their documentation swamps me with all sorts of Aouth options - which means given my limited knowledge of OAuth2 I'm losing track again. It's my hope to get something easy (client side) up and running - adding complexity can always be done at a later stage.

view this post on Zulip Kevin Mayfield (Mar 02 2022 at 14:05):

Don't know of servers but I found this book a pretty good description on OAuth2 https://www.manning.com/books/oauth-2-in-action
It even goes into Heart On FHIR extensions (and I understood it!)

Sorry misread your question but that book covers what OAuth2 I'm coming across.

view this post on Zulip David Winters (Mar 02 2022 at 14:28):

@René Spronk are you just looking for a simple FHIR server that supports SMART and OAuth2?

view this post on Zulip Ani Matevosyan (Mar 02 2022 at 14:49):

Hi all, I am trying to use Epic oauth2 backend services, but I am getting invalid_client error, and I don't know what to put here for the JWK set url Selection_085.png Please help me, I stuck in this. Thanks a lot

view this post on Zulip Cooper Thompson (Mar 02 2022 at 14:56):

@Ani Matevosyan for backend client registration, you can specify either a JWK Set URL or upload a public key. It looks like you uploaded a public key, so you can ignore the JKU fields. Note that client registration updates take some time to sync to the sandbox (and we've been having some intermittent sync issues in the last few weeks). Normally waiting a few hours after an update should be enough time for the client updates to make it into the sandbox.

view this post on Zulip Ani Matevosyan (Mar 02 2022 at 15:00):

ok, thank you very much @Cooper Thompson I'll wait some time

view this post on Zulip René Spronk (Mar 02 2022 at 15:07):

@David Winters Yes, some simple server to test with, one that support the SMART Backend Services ( http://hl7.org/fhir/us/bulkdata/2019May/authorization/index.html ) option, with some process for manual client registration.

view this post on Zulip Josh Mandel (Mar 02 2022 at 15:08):

You can always try https://bulk-data.smarthealthit.org/

view this post on Zulip Alexander Zautke (Mar 02 2022 at 15:08):

@René Spronk The https://sql.server.fire.ly/ endpoint supports SMART Backend Services

view this post on Zulip Michele Mottini (Mar 02 2022 at 15:52):

Our server support backend auth and we have a pre-registered client (with a 'private' key that is actually public so you can use it). https://fhir.careevolution.com/BackendServicesAuthorization.html (see https://fhir.careevolution.com for general docs, end points etc)

Last updated: Apr 12 2022 at 19:14 UTC


An HL7 Website -