Hello,
I work at goodbill.com. We help patients to understand their hospital bills. We use FHIR to let patients connect their medical record through our website. We've been doing this successfully across a number of Cerner endpoints, but we've run into an authorization issue with the Ascension Health endpoint.
The endpoint we're using is listed here:
https://raw.githubusercontent.com/cerner/ignite-endpoints/main/millennium_patient_r4_endpoints.json
"address": “https://fhir-myrecord.cerner.com/r4/094be162-7d96-49dc-86a2-73b309e5fa47/”
Workflow or API calls:
We send customers to this URL:
https://authorization.cerner.com/tenants/094be162-7d96-49dc-86a2-73b309e5fa47/protocols/oauth2/profiles/smart-v1/personas/patient/authorize?response_type=code&redirect_uri=https%3A%2F%2Fapp.goodbill.com%2Fcerner%2Fpermission_granted&state=20176&client_id=6594104f-5479-4270-995d-16745a4c7d31&aud=https%3A%2F%2Ffhir-myrecord.cerner.com%2Fr4%2F094be162-7d96-49dc-86a2-73b309e5fa47%2F&scope=offline_access+openid+fhirUser+patient%2FPatient.read+patient%2FEncounter.read+patient%2FProcedure.read+patient%2FObservation.read+patient%2FMedicationRequest.read+patient%2FDiagnosticReport.read+patient%2FDocumentReference.read+patient%2FBinary.read
Expected Result:
Patient should see a page to log in and authorize us to request the medical record on their behalf.
Actual Result:
The request is immediately redirected to our page but with a 401 Unauthorized error. That page includes an error_uri with a URL. When we go to that URL, we see the following message: “Ascension Health has not enabled "Goodbill" for accessing healthcare data yet on your behalf. Please contact support for "Goodbill" for further assistance.”
What's the process to become enabled? Is this something we need to do for each endpoint separately?
Cerner-Correlation-Id: f7ea8a31-75db-46b4-a0f1-718249e55fcf