Client ID: 3b4cb7cb-d718-4488-8cf6-2a1536df110c
Workflow or API calls:
curl --location 'https://authorization.cerner.com/tenants/ec2458f2-1e24-41c8-b71b-0e701af7583d/protocols/oauth2/profiles/smart-v1/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'grant_type=client_credentials' \
--data-urlencode 'client_assertion_type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer' \
--data-urlencode 'client_assertion=eyJ0eXAiOiJqd3QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImVDaklzQ0V6NmpCNlBKNEV4OXl4NWptbkpRS2s4cTB1Q3VoY1FyNmF4dFEifQ.eyJpc3MiOiIyNDY0ZmVkMS03YjMwLTRiYTItYTEzNS05YTlkNjcxZTg3MDAiLCJzdWIiOiIyNDY0ZmVkMS03YjMwLTRiYTItYTEzNS05YTlkNjcxZTg3MDAiLCJhdWQiOiJodHRwczovL2F1dGhvcml6YXRpb24uY2VybmVyLmNvbS90ZW5hbnRzL2VjMjQ1OGYyLTFlMjQtNDFjOC1iNzFiLTBlNzAxYWY3NTgzZC9wcm90b2NvbHMvb2F1dGgyL3Byb2ZpbGVzL3NtYXJ0LXYxL3Rva2VuIiwianRpIjoiNzE3ZGJmYTAtYTYwYi00NGJkLWE5MmEtYmFlYmIxODg4MDQyIiwiZXhwIjoxNzI4Mzk5MzE0fQ.OMTr3Ya5P_8p-vI34s9vOguTRbXjfJcakmcIbJ0Gq2lJmBiMyPwry0LQMyS628ncbvrVayrr0Nmiwqr-yg3zlx7b5cBjepe1Hl5xt3kVD8R8ZjPzCr0ev7kQbH2VVNf8PuEz3lvVBvVuH3TbAhV6s4X-5IDXb2BUqq1OBoLiyuo7a4v5wM4PmtN_GDUL_QRQ1wnzRokj_eXzUm-9TLFJN51OBW9tGmqbGcCD_hRvQmX7oBmay3_oBKLs6Oc5PNCrvUiibnyCypjpixl9XAwkTnE3mtOm7uVIqNBIEo8W4EaImpqKBSvaVMcM0mgOUUs4Z8IuaY6kqvXubvSviFo0pA'
Background Information:
I'm unable to get an access token. I've set up and tested the JSON Web Key Set endpoint (test button works in CernerCentral), so I know the endpoint works. In addition, I know the JWT has been properly signed as well because I can easily verify that here https://jwt.io/
Expected Result:
Expected to get a 200 status code with an access token
Actual Result:
{
"error": "invalid_client",
"error_uri": "https://authorization.cerner.com/errors/urn%3Acerner%3Aerror%3Aauthorization-server%3Aclient-assertion%3Ajwt-bearer%3Ainvalid-signature/instances/87edbd26-08ec-4e64-9621-1f193ccd36a9?client=2464fed1-7b30-4ba2-a135-9a9d671e8700&tenant=ec2458f2-1e24-41c8-b71b-0e701af7583d"
}