Skip to Main Content

SMART Authorization

Announcement

For information related to the Oracle Partner Network (OPN) Industry Healthcare Track please visit our OPN Industry Healthcare Program page.

For specific questions related to Oracle Partner Network (OPN), please contact Partner Assistance.

Millennium FHIR and non-FHIR API Specifications and Supporting Documents can be found HERE on docs.oracle.com
Soarian FHIR API Specifications and Supporting Documents can be found HERE on docs.oracle.com.

Invalid JWT Signature

Rob MOct 9 2024

Client ID: 3b4cb7cb-d718-4488-8cf6-2a1536df110c

Workflow or API calls:

curl --location 'https://authorization.cerner.com/tenants/ec2458f2-1e24-41c8-b71b-0e701af7583d/protocols/oauth2/profiles/smart-v1/token' \

--header 'Content-Type: application/x-www-form-urlencoded' \

--data-urlencode 'grant_type=client_credentials' \

--data-urlencode 'client_assertion_type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer' \

--data-urlencode 'client_assertion=eyJ0eXAiOiJqd3QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImVDaklzQ0V6NmpCNlBKNEV4OXl4NWptbkpRS2s4cTB1Q3VoY1FyNmF4dFEifQ.eyJpc3MiOiIyNDY0ZmVkMS03YjMwLTRiYTItYTEzNS05YTlkNjcxZTg3MDAiLCJzdWIiOiIyNDY0ZmVkMS03YjMwLTRiYTItYTEzNS05YTlkNjcxZTg3MDAiLCJhdWQiOiJodHRwczovL2F1dGhvcml6YXRpb24uY2VybmVyLmNvbS90ZW5hbnRzL2VjMjQ1OGYyLTFlMjQtNDFjOC1iNzFiLTBlNzAxYWY3NTgzZC9wcm90b2NvbHMvb2F1dGgyL3Byb2ZpbGVzL3NtYXJ0LXYxL3Rva2VuIiwianRpIjoiNzE3ZGJmYTAtYTYwYi00NGJkLWE5MmEtYmFlYmIxODg4MDQyIiwiZXhwIjoxNzI4Mzk5MzE0fQ.OMTr3Ya5P_8p-vI34s9vOguTRbXjfJcakmcIbJ0Gq2lJmBiMyPwry0LQMyS628ncbvrVayrr0Nmiwqr-yg3zlx7b5cBjepe1Hl5xt3kVD8R8ZjPzCr0ev7kQbH2VVNf8PuEz3lvVBvVuH3TbAhV6s4X-5IDXb2BUqq1OBoLiyuo7a4v5wM4PmtN_GDUL_QRQ1wnzRokj_eXzUm-9TLFJN51OBW9tGmqbGcCD_hRvQmX7oBmay3_oBKLs6Oc5PNCrvUiibnyCypjpixl9XAwkTnE3mtOm7uVIqNBIEo8W4EaImpqKBSvaVMcM0mgOUUs4Z8IuaY6kqvXubvSviFo0pA'

Background Information:

I'm unable to get an access token. I've set up and tested the JSON Web Key Set endpoint (test button works in CernerCentral), so I know the endpoint works. In addition, I know the JWT has been properly signed as well because I can easily verify that here https://jwt.io/

Expected Result:

Expected to get a 200 status code with an access token

Actual Result:

{

"error": "invalid_client",

"error_uri": "https://authorization.cerner.com/errors/urn%3Acerner%3Aerror%3Aauthorization-server%3Aclient-assertion%3Ajwt-bearer%3Ainvalid-signature/instances/87edbd26-08ec-4e64-9621-1f193ccd36a9?client=2464fed1-7b30-4ba2-a135-9a9d671e8700&tenant=ec2458f2-1e24-41c8-b71b-0e701af7583d"

}

This post has been answered by Matthew Beermann-Oracle on Oct 9 2024
Jump to Answer
Comments
Post Details
Added on Oct 9 2024
1 comment
203 views