Run Aidbox locallyRun Aidbox in SandboxTalk to us Ask community

Storing authorization details

The article explains, how Aidbox stores authorization details

This article explains details about storing authorization information related to SMART on FHIR app launch only

Session resource

During the SMART on FHIR authorization process, Aidbox creates Session resource. All details related to the authorization are stored in the Session.

For example, there could be found following keys in the session:

  • access_token is an opaque string. It is used to 'sign' requests to Aidbox

  • refresh_token is an opaque string. It is used by Client (application) to get new ace access tokens when it is staled

  • client reference to the Client is granted access to

  • scope is the array of scopes authorized by the resource owner

PreviousTokens processingNextDiscovery API

Last updated