FHIR Chat · SMART on FHIR with AWS Cognito · smart

Stream: smart

Topic: SMART on FHIR with AWS Cognito

view this post on Zulip Ryan Harrison (Sep 16 2020 at 21:57):

We attempted to configure AWS Cognito as a SMART on FHIR compliant Auth server.

I'd presumed that configuring AWS Cognito to SMART on FHIR would be possible given i) base OAuth2.0 and OIDC support, ii) arbitrary code execution with lambda triggers and iii) the expansive CLI/SDK. So, our team gave it a go.

The attach memo (briefly) summarizes our findings.
Table 1 recaps the AWS Cognito limitations we encountered.
Table 2 connects the AWS Cognito limitations to SMART on FHIR Capabilities.
20200914-Memo-CARIN-Discussion-on-AWS-Cognito-Limitations-for-SMART-on-FHIR.pdf

AWS Cognito cannot be configured to support SMART on FHIR, including lack of support for the patient access CapabilitySet. Further, the AWS "FHIR Works on AWS" (https://aws.amazon.com/blogs/opensource/using-open-source-fhir-apis-with-fhir-works-on-aws/) and "Building a Serverless FHIR Interface on AWS" (https://aws.amazon.com/blogs/architecture/building-a-serverless-fhir-interface-on-aws/) implementations do not currently support SMART on FHIR. There is not (yet?) a public timeline from AWS.

Attn: @Pascal Pfiffner, @Karl M. Davis
Thanks @Grahame Grieve and @Ryan Howells, for noticing the "bare scopes" in AWS Cognito StackOverflow post (https://chat.fhir.org/#narrow/stream/179170-smart/topic/AWS.20Question). This question was written by one of our engineers, @Elijah.

view this post on Zulip Ryan Howells (Sep 19 2020 at 01:31):

Tagging @Angus McAllister here from AWS who can comment on the timing of when AWS plans to support SMART.
Good news: They are actively working on it.

view this post on Zulip Angus McAllister (Oct 07 2020 at 16:45):

Thanks @Ryan Howells for the tag, and apologies for the delayed reply; I somehow missed the notification. FIHR Works with Amazon Cognito does not currently support SMART on FHIR, as you've correctly identified. Whilst I'm not in a position to address this question in a public forum, I'm very happy to have a direct discussion around our current development efforts in this and other spheres.

view this post on Zulip Brian Beatty (Sep 08 2021 at 20:22):

Angus McAllister said:

Thanks Ryan Howells for the tag, and apologies for the delayed reply; I somehow missed the notification. FIHR Works with Amazon Cognito does not currently support SMART on FHIR, as you've correctly identified. Whilst I'm not in a position to address this question in a public forum, I'm very happy to have a direct discussion around our current development efforts in this and other spheres.

Has any progress been made on Amazon Cognito and the support of SMART on FHIR??
Would a Pre Token Generation Lambda Trigger be a possible solution?

Last updated: Apr 12 2022 at 19:14 UTC


An HL7 Website -