Workflow or API calls:
I post the following:
POST https://authorization.cerner.com/tenants/ec2458f2-1e24-41c8-b71b-0e701af7583d/protocols/oauth2/profiles/smart-v1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
client_id=XXXXXXXXXXXXXXXXXXXXX&client_secret=&code=420ff8d4-95e4-4b5b-a168-9bf94d30bad6&redirect_uri=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX&grant_type=authorization_code&scope=launch+user%2F%2A.read
Here is the response:
HTTP/1.1 200
Date: Mon, 20 Nov 2023 21:29:46 GMT
Connection: keep-alive
Expect-CT: enforce, max-age=30
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: OPTIONS, POST
Access-Control-Allow-Headers: Content-Type, Authorization, Accept, Cerner-Correlation-Id
Cache-Control: no-store
Pragma: no-cache
Cerner-Correlation-ID: 716377c9-9f87-4996-8b0e-c428ded373d5
Server: cloud_authorization_server1
Content-Type: application/json
Content-Length: 1950
{"access_token":"X","patient":"12724065","scope":"launch","need_patient_banner":false,"smart_style_url":"https://smart.cerner.com/styles/smart-v1.json","encounter":"97953483","token_type":"Bearer","expires_in":570,"user":"12742069","tenant":"ec2458f2-1e24-41c8-b71b-0e701af7583d","username":"portal"}
The scope is set to “launch”
Expected Result:
scope = “launch patient/*.read”
Actual Result:
Cerner-Correlation-Id: 716377c9-9f87-4996-8b0e-c428ded373d5
scope = “launch”