Skip to Main Content

SMART Authorization

Announcement

For information related to the Oracle Partner Network (OPN) Industry Healthcare Track please visit our OPN Industry Healthcare Program page.

For specific questions related to Oracle Partner Network (OPN), please contact Partner Assistance.

urn:cerner:error:authorization-server:client-assertion:jwt-bearer:invalid-signature

Workflow or API calls:

I have a .Net application that is trying to access the authorization URL to get a token. The application runs as a system application so we are trying to use JWT to connect .

Call: POST https://authorization.sandboxcerner.com/tenants/22128712-d642-49f0-b30d-264a0c53cea3/protocols/oauth2/profiles/smart-v1/token

Headers:

  • Accept application/json
  • cache-control no-cache

Content:

grant_type=client_credentials&scope=system%2FPatient.read%2Csystem%2FAccount.read%2Csystem%2FCarePlan.read%2Csystem%2FCareTeam.read%2Csystem%2FChargeItem.read%2Csystem%2FCommunication.read%2Csystem%2FCondition.read%2Csystem%2FEncounter.read%2Csystem%2FGoal.read%2Csystem%2FLocation.read%2Csystem%2FObservation.read%2Csystem%2FOrganization.read&client_assertion_type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer&client_assertion=<redacted>

My public and private key are valid and the jwk can be used to confirm as well. Is there anything else blatantly wrong with the above?

Expected Result:

Token

Actual Result:

Cerner-Correlation-Id 6fc42f03-f853-4fa8-abec-8a50a2004381

Comments
Post Details
Added on Jan 4 2024
2 comments
94 views