Client Credential Flow (2-legged OAuth)

Most integrations with the Patient Care Center will be assigned a Client ID and Secret to interact with the API.

In the developer portal, you can test API calls in "Try It" using a sandbox account provided by the portal.

Generate an Access Token

Try it in Postman - See "PCC API - Use Client Credential with shared secret"

To generate an access toke, issue a HTTP POST against

https://login.microsoftonline.com/patientcarecenter.onmicrosoft.com/oauth2/v2.0/token

With x-www-form-urlencoded body including

grant_type=client_credentials

client_id=<assigned client id>

scope=https://patientcarecenter.onmicrosoft.com/pccapi/.default

client_secret=<assigned client secret>

Which will result in a JSON

{

"token_type": "Bearer",

"expires_in": 3599,

"ext_expires_in": 3599,

"access_token": "eyJ0eXAiO...."

}