Wiring Up SMART on FHIR OAuth2 Between OpenEMR and a Python Microservice Locally

If you're building a service on top of OpenEMR locally, at some point you need to stop bypassing auth and wire up real token validation. OpenEMR ships with a full SMART on FHIR OAuth2 server — but the documentation for connecting a custom microservice to it is scattered, and the gotchas are real. The most authoritative documentation on it is here and it doesn't cover all the pitfalls. This post walks through exactly what it takes to connect a Python FastAPI service to OpenEMR's OAuth2 system, using token introspection to validate incoming requests. We'll cover both patient and staff access with separate scopes and enough detail that you don't have to rediscover the same pitfalls. The System Here's the setup: Service Tech Port openemr OpenEMR 7.0.4 (PHP + Docker) 8300 (HTTP), 9300 (HTTPS) ai-agent Python FastAPI + LangGraph 8000 Both run in Docker Compose. The OpenEMR container is internally reachable at http://openemr — which matters because your server-to-server calls (token introspec

Wiring Up SMART on FHIR OAuth2 Between OpenEMR and a Python Microservice Locally

Related Articles

Beyond the Code: Why the 7-Step Development Lifecycle is Your Competitive Advantage.‍

HadisKu Is Now Ad-Free: Why I Removed Ads From My Islamic App

How To Be Productive — its not all about programming :)

Welcome Thread - v371

Which Software to Develop Apps Is Best in 2026? Top Tools Reviewed

Related Articles

How-To
Beyond the Code: Why the 7-Step Development Lifecycle is Your Competitive Advantage.‍
Medium Programming • 13h ago

How-To
HadisKu Is Now Ad-Free: Why I Removed Ads From My Islamic App
Dev.to • 15h ago

How-To
How To Be Productive — its not all about programming :)
Medium Programming • 15h ago

How-To
Welcome Thread - v371
Dev.to • 16h ago

How-To
Which Software to Develop Apps Is Best in 2026? Top Tools Reviewed
Medium Programming • 16h ago