Michele Mottini
Apr 24, 2019, 9:52:13 AM4/24/19
to Developer Group - Beneficiary Claims Data API
The sandbox currently does not support authentication, but the requests still require a (fixed) access token - these means that we cannot use our client in either full authentication mode or in open mode, we would have to do change just to support a fixed access token.
Would it be possible to remove the requirement of providing the access token? Or implement authentication....
Thanks
- Michele
CareEvolution Inc
Deirdre Holub
Apr 26, 2019, 10:30:43 AM4/26/19
to Michele Mottini, Developer Group - Beneficiary Claims Data API
Hi Michele,
This is a very good suggestion, and one the team has been considering for some time. In our next release, our authentication and authorization protocol will be based on the OAuth2 client credentials flow, and we’ll share more information on that as we are able.
Our engineering team had two questions for you, to learn about the environment in which you’ll be working:
Warm regards,
Deirdre Holub
This is a very good suggestion, and one the team has been considering for some time. In our next release, our authentication and authorization protocol will be based on the OAuth2 client credentials flow, and we’ll share more information on that as we are able.
Our engineering team had two questions for you, to learn about the environment in which you’ll be working:
- How familiar are you with using public/private key pairs for encryption and decryption?
- What authentication protocols do you already handle? What language and version are you using?
- We look forward to hearing from you soon, and to keeping you updated as our auth solutions progress.
Warm regards,
Deirdre Holub
--
You received this message because you are subscribed to the Google Groups "Developer Group - Beneficiary Claims Data API" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bc-api+un...@googlegroups.com.
To post to this group, send email to bc-...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/bc-api/6853ca6d-28eb-4b79-b151-e92892781fe1%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Michele Mottini
Apr 26, 2019, 10:39:12 AM4/26/19
to Developer Group - Beneficiary Claims Data API
Our engineering team had two questions for you, to learn about the environment in which you’ll be working:
- How familiar are you with using public/private key pairs for encryption and decryption?
Somewhat. Don't support it now but I am confident we can make it work
- What authentication protocols do you already handle? What language and version are you using?
Client credentials as specified at https://github.com/smart-on-fhir/fhir-bulk-data-docs/blob/master/authorization.md, and tested against the bulk data reference implementation
- Michele
CareEvolution Inc
Reply all
Reply to author
Forward
0 new messages