Not able to generate token on cerner fhir

Ramandeep Dhanoa

unread,

Nov 3, 2022, 3:34:03 AM11/3/22

to Oracle Cerner FHIR Developers

I am trying to generate OAuth token. But getting invalid_client error. I am able to get authorize code successfully. Please check the screenshots for postman request.

I have attach 3 screenshots which include request details. Please let me know if you need more details.

I have account on

1. https://code-console.cerner.com/console/apps

2. https://cernercentral.com/system-accounts

App is registered in 1 and connected in 2nd.

Error Message:

{

"error": "invalid_client",

"error_uri": "https://authorization.cerner.com/errors/urn%3Acerner%3Aerror%3Aauthorization-server%3Aoauth2%3Atoken%3Ainvalid-client-credentials/instances/fe9da8a7-120c-4fa1-b882-6970ba301936?client=unknown&tenant=ec2458f2-1e24-41c8-b71b-0e701af7583d"

Cerner:Correlation-ID: fe9da8a7-120c-4fa1-b882-6970ba301936

Thank you for helping out

2.PNG

1.PNG

3.PNG

Ramandeep Dhanoa

unread,

Nov 9, 2022, 3:42:08 AM11/9/22

to Oracle Cerner FHIR Developers

Posting this again:

I have a system account created on the following:

https://cernercentral.com/system-accounts/

I have created a 'Patient' app type (Confidential, Millennium product family) and linked it with the system account with account id.

I am able to generate authorization code, however receiving the following error when requesting the token:

PAA 2" was attempting to request access to healthcare data with Cerner FHIR Public Sandbox; unfortunately, the application doesn't appear to be compatible. If you require further assistance, please contact support.

Information to provide to Technical Support

Correlation ID:

4f9c1260-0de1-4bed-9a4d-bd0132adc0f4

Information to provide to PAA 2

"PAA 2 is not a smart backend service, only backend services are allowed for the current workflow.

Error Code:

urn:cerner:error:authorization-server:oauth2:token:client-type-not-smart-backend-service

Cerner's developer portal may provide useful information to assist in resolving this issue.

{

"error": "unauthorized_client",

"error_uri": "https://authorization.cerner.com/errors/urn%3Acerner%3Aerror%3Aauthorization-server%3Aoauth2%3Atoken%3Aclient-type-not-smart-backend-service/instances/4f9c1260-0de1-4bed-9a4d-bd0132adc0f4?client=d3a9e848-0526-4421-a11a-bc97a8af9865&tenant=ec2458f2-1e24-41c8-b71b-0e701af7583d"

Here are the request details:

URL: https://authorization.cerner.com/tenants/ec2458f2-1e24-41c8-b71b-0e701af7583d/protocols/oauth2/profiles/smart-v1/token

Authorization: Basic {clientid:secret Base64 encoded}

Accept: application/json

Content-Type: application/x-www-form-urlencoded

Body:

grant_type=client_credentials

client_id={clientID from Cerner console app}

code= {authorization code from Step 1}

state=

Any help/pointers would be appreciated on this.

Thank you!

Ramandeep Dhanoa

unread,

Nov 10, 2022, 2:25:08 PM11/10/22

to Oracle Cerner FHIR Developers

Any updates/pointers to what we are missing here?

Thank you!

Jeremy Privett (Cerner)

unread,

Nov 17, 2022, 6:03:17 PM11/17/22

to Oracle Cerner FHIR Developers

A member of my team has replied in email to assist.

Reply all

Reply to author

Forward