🏥 Mock IAS SRAA App

TEFCA · UDAP · SRAA · Authorization code + PKCE

1. Identity proof
2. Purpose of use
3. Authenticate
4. FHIR access

📋 UDAP software statement (pre-registered with QHIN)

RS256 X.509 bound UDAP ยง3.1
eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsIng1YyI6WyJNT0NLLVg1MDktQ0VSVC1DSEFJTiJdfQ.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.[MOCK-RS256-SIGNATURE]
Show decoded payload
{ "iss": "https://sraa.pocketace.top", "sub": "https://sraa.pocketace.top", "aud": "https://keycloak.carepathly.com/realms/tefca-sandbox", "iat": 1775491791, "exp": 1775492091, "jti": "369075da-c22c-4b68-b557-49fda84de240", "client_name": "Mock IAS SRAA App", "redirect_uris": [ "https://sraa.carepathly.com/callback" ], "grant_types": [ "authorization_code" ], "response_types": [ "code" ], "token_endpoint_auth_method": "private_key_jwt", "scope": "openid profile email patient/Observation.read patient/Patient.read patient/Condition.read patient/MedicationRequest.read", "contacts": [ "admin@mock-ias.com" ] }

🔐 Begin SRAA identity proofing

Before accessing your health records, your identity must be verified to NIST IAL2 standard. This requires a government-issued ID and a photo. Your verified identity will be embedded in a signed assertion sent to the QHIN.

Begin identity verification