You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Epic, BlueButton, etc requrie a client_secret
Unfortunately we need to provide a method to allow users to authenticate to these systems securely, without breaking the TOS for these providers
This means
that provider client id and secret must stay on the server, and must not be sent to the user.
NOTE this means that the user's access token/refresh token will be "available" to the Fasten Lighthouse (temporarily) before it it retrieved by the user. This may concern users, so we should notify them BEFORE they start the auth flow for these providers.
The text was updated successfully, but these errors were encountered:
Epic, BlueButton, etc requrie a client_secret
Unfortunately we need to provide a method to allow users to authenticate to these systems securely, without breaking the TOS for these providers
This means
The text was updated successfully, but these errors were encountered: