SMART Application Launch Framework Implementation Guide Release 1.0.0
This page is part of the Smart App Launch Implementation Guide (v1.0.0: STU 1) based on FHIR R3. The current version which supercedes this version is 2.0.0. For a full list of available versions, see the Directory of published versions 
Declares support for automated dicovery of OAuth2 endpoints If a server requires SMART on FHIR authorization for access. Any time a client sees this extension, it must be prepared to authorize using SMART’s OAuth2-based protocol.
Context of Use Conformance.rest.security
Description of Profiles, Differentials, and Snapshots.
The official URL for this profile is: http://DSTU2/fhir-registry.smarthealthit.org/StructureDefinition/oauth-uris
Published on Thu Jul 05 00:00:00 PDT 2018 as a active by Boston's Children Hospital and Hl7 International.
This profile builds on Extension
| Name | Flags | Card. | Type | Description & Constraints |
|---|---|---|---|---|
  Extension | 0..1 | Support for dicovery of OAuth2 endpoints | ||
  extension | 1..1 | Extension | Uri indicating the OAuth2 "authorize" endpoint for this FHIR server. | |
 url | 0.. | "authorize" | ||
  valueUri | 0.. | uri | ||
| extension | 0..1 | Extension | Uri indicating the OAuth2 "token" endpoint for this FHIR server. Required unless the implicit grant flow is used. | |
| url | 0..1 | uri | "token" | |
| valueUri | 0..1 | uri | ||
| extension | 0..1 | Extension | Uri indicating the OAuth2 dynamic registration endpoint for this FHIR server, if supported. | |
| url | 0..1 | uri | "register" | |
| valueUri | 0..1 | uri | ||
| extension | 0..1 | Extension | Uri indicating the user-facing authorization management workflow entry point for this FHIR server. Overview in this presentation | |
| url | 0..1 | uri | "manage" | |
| valueUri | 0..1 | uri | ||
| extension | 0..1 | Extension | Uri indicating the introspection endpoint that can be used to validate a token. | |
| url | 0..1 | uri | "introspect" | |
| valueUri | 0..1 | uri | ||
| extension | 0..1 | Extension | Uri indicating the endpoint that can be used to revoke a token. | |
| url | 0..1 | uri | "revoke" | |
| valueUri | 0..1 | uri | ||
| url | 0..1 | uri | "http://DSTU2/fhir-registry.smarthealthit.org/StructureDefinition/oauth-uris" | |
| value[x] | 0..0 | |||
| Documentation for this format | ||||
| Name | Flags | Card. | Type | Description & Constraints |
|---|---|---|---|---|
| Extension | 0..1 | Support for dicovery of OAuth2 endpoints | ||
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 1..1 | Extension | Uri indicating the OAuth2 "authorize" endpoint for this FHIR server. Slice: Unordered, Open by value:url | |
| extension | 0..1 | Extension | Uri indicating the OAuth2 "token" endpoint for this FHIR server. Required unless the implicit grant flow is used. | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "token" | |
| valueUri | 0..1 | uri | Value of extension | |
| extension | 0..1 | Extension | Uri indicating the OAuth2 dynamic registration endpoint for this FHIR server, if supported. | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "register" | |
| valueUri | 0..1 | uri | Value of extension | |
| extension | 0..1 | Extension | Uri indicating the user-facing authorization management workflow entry point for this FHIR server. Overview in this presentation | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "manage" | |
| valueUri | 0..1 | uri | Value of extension | |
| extension | 0..1 | Extension | Uri indicating the introspection endpoint that can be used to validate a token. | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "introspect" | |
| valueUri | 0..1 | uri | Value of extension | |
| extension | 0..1 | Extension | Uri indicating the endpoint that can be used to revoke a token. | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "revoke" | |
| valueUri | 0..1 | uri | Value of extension | |
| url | 0..1 | uri | "http://DSTU2/fhir-registry.smarthealthit.org/StructureDefinition/oauth-uris" | |
| Documentation for this format | ||||
Differential View
| Name | Flags | Card. | Type | Description & Constraints |
|---|---|---|---|---|
| Extension | 0..1 | Support for dicovery of OAuth2 endpoints | ||
| extension | 1..1 | Extension | Uri indicating the OAuth2 "authorize" endpoint for this FHIR server. | |
| url | 0.. | "authorize" | ||
| valueUri | 0.. | uri | ||
| extension | 0..1 | Extension | Uri indicating the OAuth2 "token" endpoint for this FHIR server. Required unless the implicit grant flow is used. | |
| url | 0..1 | uri | "token" | |
| valueUri | 0..1 | uri | ||
| extension | 0..1 | Extension | Uri indicating the OAuth2 dynamic registration endpoint for this FHIR server, if supported. | |
| url | 0..1 | uri | "register" | |
| valueUri | 0..1 | uri | ||
| extension | 0..1 | Extension | Uri indicating the user-facing authorization management workflow entry point for this FHIR server. Overview in this presentation | |
| url | 0..1 | uri | "manage" | |
| valueUri | 0..1 | uri | ||
| extension | 0..1 | Extension | Uri indicating the introspection endpoint that can be used to validate a token. | |
| url | 0..1 | uri | "introspect" | |
| valueUri | 0..1 | uri | ||
| extension | 0..1 | Extension | Uri indicating the endpoint that can be used to revoke a token. | |
| url | 0..1 | uri | "revoke" | |
| valueUri | 0..1 | uri | ||
| url | 0..1 | uri | "http://DSTU2/fhir-registry.smarthealthit.org/StructureDefinition/oauth-uris" | |
| value[x] | 0..0 | |||
| Documentation for this format | ||||
Snapshot View
| Name | Flags | Card. | Type | Description & Constraints |
|---|---|---|---|---|
| Extension | 0..1 | Support for dicovery of OAuth2 endpoints | ||
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 1..1 | Extension | Uri indicating the OAuth2 "authorize" endpoint for this FHIR server. Slice: Unordered, Open by value:url | |
| extension | 0..1 | Extension | Uri indicating the OAuth2 "token" endpoint for this FHIR server. Required unless the implicit grant flow is used. | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "token" | |
| valueUri | 0..1 | uri | Value of extension | |
| extension | 0..1 | Extension | Uri indicating the OAuth2 dynamic registration endpoint for this FHIR server, if supported. | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "register" | |
| valueUri | 0..1 | uri | Value of extension | |
| extension | 0..1 | Extension | Uri indicating the user-facing authorization management workflow entry point for this FHIR server. Overview in this presentation | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "manage" | |
| valueUri | 0..1 | uri | Value of extension | |
| extension | 0..1 | Extension | Uri indicating the introspection endpoint that can be used to validate a token. | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "introspect" | |
| valueUri | 0..1 | uri | Value of extension | |
| extension | 0..1 | Extension | Uri indicating the endpoint that can be used to revoke a token. | |
| id | 0..1 | id | xml:id (or equivalent in JSON) | |
| extension | 0..* | Extension | Additional Content defined by implementations | |
| url | 0..1 | uri | "revoke" | |
| valueUri | 0..1 | uri | Value of extension | |
| url | 0..1 | uri | "http://DSTU2/fhir-registry.smarthealthit.org/StructureDefinition/oauth-uris" | |
| Documentation for this format | ||||