Stream: Da Vinci Burden Reduction interoperability
Topic: Prior Authorization RI setup error
Aritra Kundu (May 05 2021 at 10:20):
@Viet Nguyen @Sreekanth Puram @Lloyd McKenzie @Larry Decelles
Hi Team,
We are trying to setup the RI for the Prior Authorization use case and followed the instruction provided in the attached PDF (from github) and cloned the required source codes :
- CRD Server (Java gradle).
- Test-EHR FHIR server(Java Gradle).
- Keycloak Identity Management – v9.0.3
- SMART on FHIR – DTR(React JS)
- PAS – Prior-Auth(Java gradle)
- CRD-Request-Generator.(React JS)
On selecting the patient and their corresponding Device/Medication/Service requests from the available list in crd-request-generator and on submitting the request, the CRD server responses back a set of Cards.
And on clicking the cards, smart on fhir redirection happens and then failed in loading keycloak authentication page, because of invalid parameter in the redirect uri. Following URL is the Redirected URL generated from DTR:
I have attached the steps and error screenshot as well. Can someone please help us on this.
Regards,
Aritra
Setting-up-CRD_DTR_PAS-2.pdf
Steps-followed.png Order-Form-screen.jpg Error-Screen.jpg
Keeyan Ghoreshi (May 05 2021 at 15:33):
That's a strange error. There might be a more descriptive log of what went wrong in the keycloak logs/console output. The redirect URI looks fine, so unless the “valid redirect URI” property was changed in the app-login client in keycloak it should work. The easiest way to debug this would be to:
1) Send any errors in the keycloak log
2) Send the EHR console output for the login attempt, specifically the chunk that starts with “redirectUrl:”
Sreekanth Puram (May 05 2021 at 17:44):
Aritra Kundu said:
Viet Nguyen Sreekanth Puram Lloyd McKenzie Larry Decelles
Hi Team,
We are trying to setup the RI for the Prior Authorization use case and followed the instruction provided in the attached PDF (from github) and cloned the required source codes :
- CRD Server (Java gradle).
- Test-EHR FHIR server(Java Gradle).
- Keycloak Identity Management – v9.0.3
- SMART on FHIR – DTR(React JS)
- PAS – Prior-Auth(Java gradle)
- CRD-Request-Generator.(React JS)
On selecting the patient and their corresponding Device/Medication/Service requests from the available list in crd-request-generator and on submitting the request, the CRD server responses back a set of Cards.
And on clicking the cards, smart on fhir redirection happens and then failed in loading keycloak authentication page, because of invalid parameter in the redirect uri. Following URL is the Redirected URL generated from DTR:I have attached the steps and error screenshot as well. Can someone please help us on this.
Regards,
Aritra
Setting-up-CRD_DTR_PAS-2.pdf
Steps-followed.png Order-Form-screen.jpg Error-Screen.jpg
Hi Aritra,
Sreekanth Puram (May 05 2021 at 17:45):
Hi Aritra, This is the reference implementation from Mitre. I think they will be able to help you on it. If you need general help on CRD, DTR, PAS please let me know.
Larry Decelles (May 06 2021 at 17:10):
Hello @Aritra Kundu, I was curious where you received the install PDF. Is this something someone from MITRE sent to you?
Aritra Kundu (May 06 2021 at 18:18):
Larry Decelles said:
Hello Aritra Kundu, I was curious where you received the install PDF. Is this something someone from MITRE sent to you?
Hi Larry,
I got the same from the Confluence: https://confluence.hl7.org/pages/viewpage.action?pageId=97459110. Also followed the video tutorial: https://youtu.be/OrRG3RhFbts
Regards,
Aritra
Aritra Kundu (May 06 2021 at 18:19):
Keeyan Ghoreshi said:
That's a strange error. There might be a more descriptive log of what went wrong in the keycloak logs/console output. The redirect URI looks fine, so unless the “valid redirect URI” property was changed in the app-login client in keycloak it should work. The easiest way to debug this would be to:
1) Send any errors in the keycloak log
2) Send the EHR console output for the login attempt, specifically the chunk that starts with “redirectUrl:”
Hi Keeyan,
I will check the log and share the same with you.
Regards,
Aritra
Aritra Kundu (May 10 2021 at 15:11):
Aritra Kundu said:
Keeyan Ghoreshi said:
That's a strange error. There might be a more descriptive log of what went wrong in the keycloak logs/console output. The redirect URI looks fine, so unless the “valid redirect URI” property was changed in the app-login client in keycloak it should work. The easiest way to debug this would be to:
1) Send any errors in the keycloak log
2) Send the EHR console output for the login attempt, specifically the chunk that starts with “redirectUrl:”Hi Keeyan,
I will check the log and share the same with you.
Regards,
Aritra
Hi Keeyan,
Apologies for the delay in response. Please find the log details below and guide us on the next steps:
Keycloak : -
WARN [org.keycloak.events] (default task-9) type=LOGIN_ERROR, realmId=ClientFhirServer, clientId=app-login, userId=null, ipAddress=127.0.0.1, error=invalid_redirect_uri, redirect_uri=http://0:0:0:0:0:0:0:1:8080/test-ehr/_auth/ee0d357e-4651-4f98-9452-cee54b911a88?redirect_uri=http://localhost:3005/index
EHR Console :-
[http-nio-8080-exec-8] INFO fhirtest.access [LoggingInterceptor.java:175] Path[/r4] Source[] Operation[metadata ] UA[Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.128 Safari/537.36 OPR/75.0.3969.243] Params[?_format=json] ResponseEncoding[JSON]
[http-nio-8080-exec-6] INFO o.h.d.e.authproxy.PayloadDAOImpl [PayloadDAOImpl.java:88] Updated Record with ID = b8de4927-d028-4741-8e8d-1fff897a8e6c
[http-nio-8080-exec-6] INFO o.h.d.ehrserver.authproxy.AuthProxy [AuthProxy.java:52] parms: ?response_type=code&client_id=app-login&scope=launch+user%2FObservation.read+user%2FPatient.read+patient%2FObservation.read+patient%2FPatient.read+patient%2FCoverage.read+patient%2FCondition.read+user%2FPractitioner.read&redirect_uri=http%3A%2F%2F0%3A0%3A0%3A0%3A0%3A0%3A0%3A1%3A8080%2Ftest-ehr%2F_auth%2Fb8de4927-d028-4741-8e8d-1fff897a8e6c%3Fredirect_uri%3Dhttp%3A%2F%2Flocalhost%3A3005%2Findex&aud=http%3A%2F%2Flocalhost%3A8080%2Ftest-ehr%2Fr4&state=36665690&launch=b8de4927-d028-4741-8e8d-1fff897a8e6c
[http-nio-8080-exec-6] INFO o.h.d.ehrserver.authproxy.AuthProxy [AuthProxy.java:55] redirectUrl:
Regards,
Aritra
Sundar (Aug 09 2021 at 14:08):
Hi,
I am getting an error while trying to launch the reference implementation DTR App. I followed the instructions in the github link for CRD and DTR and set up the crd-request-generator, Test EHR, CRD RI Service, Keycloak and Smart on FHIR DTR App. Below is the error I am getting in Keycloak logs
19:32:48,471 ERROR [org.keycloak.services] (default task-8) KC-SERVICES0093: Invalid parameter value for: scope
19:32:48,472 WARN [org.keycloak.events] (default task-8) type=LOGIN_ERROR, realmId=ClientFhirServer, clientId=app-login, userId=null, ipAddress=127.0.0.1, error=invalid_request, response_type=code, redirect_uri=http://localhost:8080/test-ehr/_auth/cde0c239-ace7-40bf-b264-c3210cc19f99?redirect_uri=http://localhost:3005/index, response_mode=query
Please let me know if I am missing something
Last updated: Apr 12 2022 at 19:14 UTC
