Organization.read is returning error="insufficient_scope"

[Sylvester Sakilay]

Hi,

Was trying to read organization(R4). Verified that the scope is mentioned correctly. Still getting the below error:

Operation was unsuccessful because of a client error (Forbidden). OperationOutcome: Overall result: FAILURE (1 errors and 0 warnings)

[ERROR] (no details)(further diagnostics: Bearer realm="fhir-ehr-code.cerner.com", error="insufficient_scope").

Any help is appreciated

Thanks,

Sylvester

[Aaron McGinn (Cerner)]

Per our group guidelines, please provide the X-Request-Id located in the response headers to aid in our investigation.

-Aaron (Cerner)

[Sylvester Sakilay]

Hi Aaron,

I am not sure where to get it from. I do the "Organization.Read C# call" and getting a FhirOperationExceptionwith the above message.

Can you please let me know if you need any other information

Thanks,

Sylvester

--
You received this message because you are subscribed to the Google Groups "Cerner FHIR Developers" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cerner-fhir-devel...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/cerner-fhir-developers/03cacfa1-31e5-4637-9c5b-7f1fb86956e4n%40googlegroups.com.

[Benjamin Eichhorn (Cerner)]

Hi Sylvester,

The X-Request-Id is a response header our server will return with every request. An example is included below from Postman. You will need to see if the library you are using that makes this data available to extract it. If you are having difficultings doing this you can recreate the request in Postman (other through cURL or other means) and find the X-Request-Id response header that way.

Postman Example:

Thank you,

Ben (Cerner)

[Sylvester Sakilay]

Thanks a lot Ben.

Here is the information

X-Request-Id="51c8a7b1-65eb-4e11-800c-5a7d545236af " 

You received this message because you are subscribed to a topic in the Google Groups "Cerner FHIR Developers" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/cerner-fhir-developers/94G0TeSDNXE/unsubscribe.
To unsubscribe from this group and all its topics, send an email to cerner-fhir-devel...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/cerner-fhir-developers/e75bcdb9-4752-4cdd-9725-9fdcbd7eace5n%40googlegroups.com.

[Aaron McGinn (Cerner)]

Can you try removing the "patient/Organization.read" scope in your authorization request?

-Aaron (Cerner)

[Michele Mottini]

Organization are not patient-related, so I think the right scope to use is user/Organization.read

  - Michele

  CareEvolution

To view this discussion on the web visit https://groups.google.com/d/msgid/cerner-fhir-developers/a86a38d8-d883-4839-8c7d-60381b217632n%40googlegroups.com.

[Sylvester Sakilay]

Thanks a lot Aaron, Ben and Michele!