🏥 Mock IAS SRAA App

TEFCA · UDAP · SRAA · Authorization code + PKCE

1. Identity proof
2. Purpose of use
3. Authenticate
4. FHIR access

📋 UDAP software statement (pre-registered with QHIN)

RS256 X.509 bound UDAP ยง3.1
eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsIng1YyI6WyJNT0NLLVg1MDktQ0VSVC1DSEFJTiJdfQ.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.[MOCK-RS256-SIGNATURE]
Show decoded payload
{ "iss": "https://sraa.pocketace.top", "sub": "https://sraa.pocketace.top", "aud": "https://keycloak.pocketace.top/realms/tefca-sandbox", "iat": 1774648974, "exp": 1774649274, "jti": "d7c9b2db-6b64-4a98-8150-76225614b947", "client_name": "Mock IAS SRAA App", "redirect_uris": [ "https://sraa.pocketace.top/callback" ], "grant_types": [ "authorization_code" ], "response_types": [ "code" ], "token_endpoint_auth_method": "private_key_jwt", "scope": "openid profile email patient/Observation.read patient/Patient.read patient/Condition.read patient/MedicationRequest.read", "contacts": [ "admin@mock-ias.com" ] }

🔐 Begin SRAA identity proofing

Before accessing your health records, your identity must be verified to NIST IAL2 standard. This requires a government-issued ID and a photo. Your verified identity will be embedded in a signed assertion sent to the QHIN.

Begin identity verification