Hi Team,
I am Rajkumar and I have recently started working on ONC Certification, specifically the ONC (g)(10) Standardized API requirements.
Currently, I have successfully configured and deployed:
* Keycloak as the Authorization Server
* HAPI FHIR Server as the FHIR Resource Server
* Apache Tomcat for hosting
Both Keycloak and HAPI FHIR Server are up and running.
I have a few questions regarding the next steps in the certification process:
1. When a user accesses the FHIR endpoint, how does the SMART on FHIR authorization flow automatically open the login page or authentication modal?
2. How does the redirect URL work between the SMART application and Keycloak?
3. After successful login, how is the authorization code returned to the application?
4. How is the access token generated and validated by the HAPI FHIR Server?
5. What is the complete workflow from FHIR endpoint access to retrieving patient data?
6. What are the next implementation steps before starting Inferno G10 testing?
7. Is there any step-by-step documentation, architecture diagram, implementation guide, training material, or reference project available for Keycloak + HAPI FHIR + SMART on FHIR + Inferno certification testing?
My understanding is:
I also need clarification regarding patient data:
I would appreciate any documentation, examples, or guidance that can help me understand the complete flow and prepare for Inferno testing.
Thank you.