The credentials used in the client_credentials grant were invalid.

[Pierre N]

Hi 

Trying to get bearer-token but seems something is weird with the grant_type / auth. Can you provide better background then the error message? 

Correlation ID:

b9a2bc90-a54b-4f97-8295-e1725a242f1a 

The credentials used in the client_credentials grant were invalid.

Error Code:

urn:cerner:error:authorization-server:oauth2:token:invalid-client-credentials

Thinking there could be something basic here..

thanks

[Kol Kheang (Cerner)]

Is the correlation ID correct? What was the URL used? What was the time frame of this error?

[Pierre N]

https://authorization.emea-2.cerner.com/tenants/****tenant id******/protocols/oauth2/profiles/smart-v1/token

[Pierre N]

Attaching the response of a equiv. error here.

Response Headers

Expect-CT: enforce, max-age=30

WWW-Authenticate: Basic realm="CernerCare"

Access-Control-Allow-Origin: *

Access-Control-Allow-Methods: OPTIONS, POST

Access-Control-Allow-Headers: Content-Type, Authorization, Accept, Cerner-Correlation-Id

Cache-Control: no-store

Pragma: no-cache

Cerner-Correlation-ID: bb7a82e0-eddf-46e8-8942-72ae724b374f

Content-Type: application/json;charset=UTF-8

Content-Length: 283

Date: Wed, 13 Oct 2021 06:57:47 GMT

Connection: close

Strict-Transport-Security: max-age=631138519; includeSubDomains

▶Response Body

{"error":"invalid_client","error_uri":"https://authorization.emea-2.cerner.com/errors/urn%3Acerner%3Aerror%3Aauthorization-server%3Aoauth2%3Atoken%3Ainvalid-client-credentials/instances/***instance_hhidden****?client=unknown&tenant=***hidden***"}

[Pierre N]

I can also mention that there are strange errors when trying to remove app's in  Developer Portal (cerner.com)  

attempted to delete and recreate the app - but getting errors. Perhaps its related to the invalid client-error above?

"Oops! Something went wrong. Please contact system administrator."

[Eric Sornson (Cerner)]

Hey Pierre, looks like you're trying to interact with a FHIR endpoint in Cerner's EMEA-2 region for which you application is not registered to or authorized for.

[Shriniket Sarkar (Cerner)]

Hello Pierre,  we have gotten your application setup and provisioned in the EMEA-2 region. Can you give it a try again ?

Thanks,

Shriniket Sarkar (Cerner)