403 Forbidden when querying DiagnosticReport; permissions granted in admin interface

27 views
Skip to first unread message

Dave Bogaty

unread,
Feb 16, 2018, 7:35:51 AM2/16/18
to Cerner FHIR Developers

  • Issue Summary:

    When I query for Observation records, I am able to retrieve them from the server with no trouble.

    However, when I change my code to ask for DiagnosticReport objects, I get the following error, 403 Forbidden - insufficient scope.  I have verified that I have the patient/DiagnosticReport.read and user/DiagnosticReport.read scopes checked in the administrator console -- this was more than 15 minutes ago, that I enabled them.

    WWW-Authenticate:
    Bearer realm="fhir-myrecord.sandboxcerner.com", error="insufficient_scope"

  • X-Request-Id or CorrelationId:  b1220c46863c5e580e0fd1ff27442108

    The following is the Javascript code
            var obv = smart.patient.api.fetchAll({
                        type: 'DiagnosticReport',
                        query: {
                          code: {  // trying to get all records, to see what is available, so I have specified no loinc codes.  This works with Observation.
                          }
                        }
                      });

Dave Bogaty

unread,
Feb 16, 2018, 7:37:29 AM2/16/18
to Cerner FHIR Developers
For comparison, here is the Request ID when I use the same code, but change my query to request Observation objects:
ab7cd3f825a3ea00e69d2f2c7a7398ce

Dave Bogaty

unread,
Feb 16, 2018, 7:42:51 AM2/16/18
to Cerner FHIR Developers
False alarm -- I never added DiagnosticReport to my scope when I requested permissions in my launch page.  This is resolved.

This has revealed another issue -- launch/patient will not successfully authenticate.  Only launch will proceed.
Reply all
Reply to author
Forward
0 new messages