Platform Components

Stable components

Auth Server

Spring Authorization Server 1.3 · Java 21 · PostgreSQL

The SMART App Launch v2.2 authorization server. Handles clinician authentication, EHR launch token creation, PKCE authorize flow, and token issuance with SMART extras.

Package: com.akhester.smartfhir.server
Port: :9000
Tests: 90 (including 14 end-to-end integration tests)
Docs: auth.docs.ajfhir.org

Key classes: AuthorizationServerConfig, LaunchContextService, SmartTokenCustomizer, SmartTokenResponseConverter, JpaRegisteredClientRepository

SMART Client

Spring Boot 3.3 · HAPI FHIR R4 · Thymeleaf

The SMART App Launch v2.2 client. Handles dynamic discovery, PKCE authorize, token exchange, id_token validation, proactive refresh, and FHIR data display.

Package: com.akhester.smartfhir.client
Port: :8080
Tests: 206
Docs: client.docs.ajfhir.org

Key classes: SmartLaunchController, SmartCallbackController, IdTokenValidator, SmartDiscoveryService, TokenRefreshFilter

HAPI FHIR Plugin

Spring Boot autoconfiguration · Nimbus JOSE+JWT

A drop-in JAR that pre-wires SmartDiscoveryProxyFilter and SmartScopeInterceptor onto any HAPI FHIR JPA server.

Package: com.akhester.smart.hapi
Tests: 12
Docs: fhir.docs.ajfhir.org

Planned components

14 tasks across 5 phases. FHIR Consent resource lifecycle, patient portal, enforcement interceptor, GDPR/HIPAA/TEFCA audit trail.

ATNA Audit (v1.1.0)

IHE ATNA-compliant FHIR AuditEvent logging for every auth event, consent decision, and FHIR access.

Referral Module (v1.2.0)

FHIR ServiceRequest + Task based inter-facility referral. Closes the digital information gap between hospitals.

Platform Components

Stable components​

Auth Server​

SMART Client​

HAPI FHIR Plugin​

Planned components​

Consent Manager (v1.1.0)​

ATNA Audit (v1.1.0)​

Referral Module (v1.2.0)​