PKCE Question

[Kenneth Crawford]

Good Day,

 

I wanted to test out a smart app we are developing against the HealthIT.gov FHIR server located at https://fhirsandbox.healthit.gov/secure/r4/fhir . I wanted to ask if this server supports PKCE Authorization.

 

I have taken the steps to register the application on the server.

 

This is the URL I am attempting to load to start the process:
https://fhirsandbox.healthit.gov/secure/r4/fhir/authorize?response_type=code&client_id=KxlpcaRJVmadzmNLa7OajtPgCWGOEv&scope=launch%20user%2F*.read%20openid%20fhirUser&redirect_uri=http%3A%2F%2Flocalhost%3A3005%2Findex&aud=https%3A%2F%2Ffhirsandbox.healthit.gov%2Fsecure%2Fr4%2Ffhir&state=38326598&code_challenge=Qj5OvLV4SoQZCzfQDRM79ZDCBU06kab9zImQyiFdMvQ&code_challenge_method=S256

 

I have also tried (without secure in the aud):

https://fhirsandbox.healthit.gov/secure/r4/fhir/authorize?response_type=code&client_id=KxlpcaRJVmadzmNLa7OajtPgCWGOEv&scope=launch%20user%2F*.read%20openid%20fhirUser&redirect_uri=http%3A%2F%2Flocalhost%3A3005%2Findex&aud=https%3A%2F%2Ffhirsandbox.healthit.gov%2Fr4%2Ffhir&state=38326598&code_challenge=Qj5OvLV4SoQZCzfQDRM79ZDCBU06kab9zImQyiFdMvQ&code_challenge_method=S256

 

I am receiving a 401 Unauthorized error response back from the server.

 

*I have used the same code/methods on the Logica server, which I believe also supports PKCE exchange.

 

What am I missing or What could be causing this?

 

 

Sincerely, Kenneth M. Crawford | Sr Full Stack Developer | FHIR Engineer | MB-200, PL-400, PL-200, PL-100, AI-100

P: 443.860.6714 | newwave.io | onyxhealth.io

 

 

 

[James Spillman]

SITE no longer supports these fhir tools. Locking this thread.