Hello,
I am writing a .NET C# project that goes through the standalone SoF authorization workflow, starting off with opening the user's browser for authorization with scopes launch openid fhirUser profile online_access patient/Patient.read patient/Patient.write. After logging in with portal/portal, it redirects with the following URL:
myapp://smart-redirect/?state=launch_state&error=invalid_request&error_uri=https%3A%2F%2Fauthorization.cerner.com%2Ferrors%2Furn%253Acerner%253Aerror%253Aauthorization-server%253Asmart-v1%253Agrant%253Alaunch%253Ainvalid-launch-code%2Finstances%2Fdccf77c1-9bb9-43aa-82c1-b6b9c07c95e2%3Fpersona%3Dprovider%26client%3Df4e2294a-c9e7-4446-894c-0db869be4bfd%26tenant%3Dec2458f2-1e24-41c8-b71b-0e701af7583d
The “launch” query param I'm sending is simply a random UUID i.e. launch=a260dbce-ad23-43bd-aea1-0cfa173055c6, so why is it saying “invalid-launch-code”, and how do I get past it?
My Cerner sandbox information:
- Application ID: 8a9d2df0-92ef-4833-b778-d18488c15df0
- Client ID: f4e2294a-c9e7-4446-894c-0db869be4bfd
- Application type: Provider
- Type of access: Online
- Application privacy: Public
- Product: Oracle Health FHIR APIs for Millennium: FHIR R4, All
- Redirect URI: myapp://smart-redirect (this is a custom URI scheme that I defined)
- ISS: https://fhir-ehr-code.cerner.com/r4/ec2458f2-1e24-41c8-b71b-0e701af7583d
- API Access: patient/Patient Read, patient/Patient Write
Please let me know if additional information would help.
Thanks!