OAuth2 | InterSystems Developer Community

Question

Stephen Wilson · Sep 20, 2019

Is there an OAuth 2.0 "sliding expiration" for JWT access tokens to extend the expiry date?

In .NET Core you have an option to extend a session using a "sliding expiration". This means that if over half the time has passed and the user actively uses their session then the expiry timer gets reset and the user remains logged in. This can lead to the curious situation where you have an active authenticated user with an expired access token being used in data-access requests.

#.NET #OAuth2 #Frontend #Caché

0 1

0 3.4K

Question

John McBride · May 2, 2023

JWS/JWT Header X5C

Hello All,

I'm trying to sign some custom JWT with x.509 certs but running into a problem with the signed JWT containing some information I need in the JOSE header.

Is there a way to get the "X5C:[]" header included in the signed JTW? IS this as easy as setting something like the following

Set JOSE("x5c") = "public key"

Thanks

John

#Error Handling #JSON #OAuth2 #InterSystems IRIS for Health

0 1

0 169

Question

Jenna Poindexter · Jul 20, 2020

Corner Secure FHIR Sandbox access from production

Has anyone been able to successfully connect IRIS for Health to Cerner's Secure FHIR Sandbox?

Anyone have any easy instructions for getting this working?

#FHIR #OAuth2 #InterSystems IRIS for Health

0 1

0 284

Question

Manoj K · Mar 7, 2017

Difference between CLIENT and AUTHSERVER instance?

I use Cache Instance. I'm trying to implement OAuth 2.0 in Cache instance.
Is it possible to use Cache instance as Client and Server?

And What is the Difference between CLIENT and AUTHSERVER instance?

Why is it used? I want to know which instance use which type of application?

#Security #Authentication #OAuth2 #Access control #Caché

0 1

0 343

Question

Michele De Chiffre · Aug 9, 2021

OAuth SSL certificate error

I'm trying to implement an OAuth2 server, but I have som issues when trying to setup JWT under OAuth 2.0->Client.

I get the error message saying "No match between server name 'localhost' and SSL certificate values 'cache'". I have set up a SSL/TLS configuration as simple as possible without any certificate files. I'm accessing my server via HTTPS with an unsigned certificate.

Can anyone point me in the right direction on how to resolve the issue I'm encountering.

#OAuth2 #SSL #Caché

0 1

0 485

Question

Michele De Chiffre · Sep 2, 2021

Save AccessToken OAuth2

I'm trying to save a list of AccessTokens a user for a specific user. This way I could present it together with other user-data.

I have tried calling ##class(OAuth2.Server.AccessToken).OpenByCode(authCode) from %OAuth2.Server.Authenticate's AfterAuthenticate() method. This only returns things like State and AuthorizationCode, but the AccessToken is empty at this point (afterwards it becomes filled out).

Is there a way to achieve storing the AccessToken as part of the login system?

#OAuth2 #Caché

0 1

0 244

Question

Marc Mundt · Apr 20, 2022

Using OAuth with VS Code?

Since the ObjectScript plug-ins for VS Code use web services to connect to IRIS, is it possible for a VS Code user to authenticate against IRIS using OAuth?

#Authentication #OAuth2 #VSCode

0 1

0 768

Question

Michele De Chiffre · Aug 19, 2022

Unknown grant type OAuth 2.0 Authorization Code Flow

I'm trying to authorise my app using OAuth 2.0 i Cache. Sadly I'm unable to exchange the authorization code for an access token.

I am able to redirect user to the /authorize page, where the user can login and approve my app. The user is then correctly redirected back to my app and a ?code parameter is sent back.

#Access control #OAuth2 #Caché

0 1

0 424

Question

Stephen De Gabrielle · May 21, 2019

Hi,

Most of my development experience is with HL7v2 interfaces and I don't have a background in web development and I'm very weak with javascript.

I'm looking for suggestions of learning resources to learn FHIR and 'SMART on FHIR' (JavaScript, OpenID connect, OAuth2) for developers like myself who mostly do HL7v2 integrations - but see FHIR as the future - and want to develop their skills!

I've found these

#FHIR #OAuth2 #Other

1 1

1 1.6K

Question

José Pereira · Dec 11, 2022

Can't get a valid access token in FHIR Server with OAuth2

Hi!

I'm playing with OAuth2 with FHIR Server, but returned tokens cause 401 or 403 errors when trying to get FHIR resources.

I tried using fhir-client.js and Postman. Access tokens returned have been failing for both, with a 401 when trying through fhir-client.js and a 403 using Postman.

Here are my settings:

#FHIR #OAuth2 #InterSystems IRIS for Health

0 0

0 297

Question

John McBride · Sep 24, 2023

Oauth2 Callback redirect uri being called twice?

I have been testing FHIR and Iris OAuth2 but have noticed that my callback (redirect uri) I have configured in the Client config, gets called multiple times with the same code.

Has anyone else experienced this issue?

Any help would be appreciated

#OAuth2 #InterSystems IRIS for Health

0 0

0 116

Question

Tani Frankel · Feb 1

OAuth Authentication for ODBC/JDBC?

Is it possible to authenticate an xDBC (ODBC/JDBC) connection to InterSystems IRIS via (a 3rd party) OAuth server?

For REST APIs this is possible, but could this be achieved with OAuth?

Out-of-the-box the ODBC/JDBC Drivers don't seem to have this option, but maybe some custom code could enable this? perhaps via Delegated Authentication and some OAuth classes customization, or some other way?

Has anyone done this already and can share how it was implemented, or someone with some guideline suggestions?

#Authentication #JDBC #OAuth2 #ODBC #Security #SQL #InterSystems IRIS

1 0

0 91