app_user_idhelps you keep track of users between the 1up API and your own user management system.
codevariable is the OAuth2 access code. You must exchange that to get the OAuth2 access token by following the the OAuth2 token grant steps. The
refresh_tokenwill be used to gain access to user data. Keep those secure via HIPAA compliant means of transmission and storage, along with all other patient data. The auth token expires after 7200 seconds (2 hours). You can also refresh the token by continuing with the OAuth2 token refresh flow.
app_user_id, you can do that via the following command. The
oneup_user_idwill be assigned, you cannot alter or request it.
auth_tokenand will change their
false. After a user is deactivated, that auth token can no longer be used to gain access to data.
auth_tokento a request when creating or updating a FHIR® resource.
access_tokenin the Authorization header value. The newly created resource will be available after a short delay (< 1 second).
idvalue, in this case it is
0a0cee5487a8, for subsequent queries.
access_tokenin the Authorization header value.
auth_token, only resources available to that user (via set permissions) will be returned.