meditech · OAuth Scopes

meditech OAuth Scopes

OAuth 2.0 derived

meditech publishes 5 OAuth 2.0 scopes via the authorizationCode flow. Scopes are the fine-grained permissions an application requests at authorization time to act against the meditech API on a user’s behalf.

Tokens are issued from https://yourhospital.meditech.com/oauth/token.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

Scopes: 5 Flows: authorizationCode Method: derived

OAuth endpoints

Authorization URL
https://yourhospital.meditech.com/oauth/authorize
Token URL
https://yourhospital.meditech.com/oauth/token
Flows
authorizationCode

Scopes (5)

ScopeDescriptionFlows
fhirUser FHIR user claim authorizationCode
launch EHR launch context authorizationCode
openid OpenID Connect identity authorizationCode
patient/*.read Read access to all patient-owned resources authorizationCode
user/*.read Practitioner read access to all resources authorizationCode

Source

OAuth Scopes

meditech-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/meditech-fhir-openapi.yml
schemes:
- name: SMART_OAuth2
  source: openapi/meditech-fhir-openapi.yml
  flows:
  - flow: authorizationCode
    authorizationUrl: https://yourhospital.meditech.com/oauth/authorize
    tokenUrl: https://yourhospital.meditech.com/oauth/token
  description: SMART on FHIR OAuth 2.0 authorization
scopes:
- scope: fhirUser
  description: FHIR user claim
  flows:
  - authorizationCode
  sources:
  - openapi/meditech-fhir-openapi.yml
- scope: launch
  description: EHR launch context
  flows:
  - authorizationCode
  sources:
  - openapi/meditech-fhir-openapi.yml
- scope: openid
  description: OpenID Connect identity
  flows:
  - authorizationCode
  sources:
  - openapi/meditech-fhir-openapi.yml
- scope: patient/*.read
  description: Read access to all patient-owned resources
  flows:
  - authorizationCode
  sources:
  - openapi/meditech-fhir-openapi.yml
- scope: user/*.read
  description: Practitioner read access to all resources
  flows:
  - authorizationCode
  sources:
  - openapi/meditech-fhir-openapi.yml