Is there a way to build an extension on top of Keycloak’s OAuth and Open ID to implement SMART on FHIR - http://hl7.org/fhir/smart-app-launch/conformance/index.html#launch-context-for-standalone-launch
http://hl7.org/fhir/smart-app-launch/index.html#smart-authorization-sequence
Idea is to accept additional request parameter with authorization code flow (launch) and when generating the response for access token, set some additional custom parameters as part of access token response (but not as part of access_token field value).
So far all the extensions I found, it allows addition custom fields in the access token value itself. We may need an additional field like “patient” as part of access token response. So it may look like following.
{
"access_token": "i8hweunweunweofiwweoijewiwe",
"token_type": "bearer",
"expires_in": 3600,
"scope": "patient/Observation.read patient/Patient.read",
"intent": "client-ui-name",
"patient": "123",
"encounter": "456"
}
Is it something that can be developed and implemented as extensions in KC or does it already have some support for this?
Any suggestions are appreciated!