XS SM MD LG XL XXL
Status
Active

The following summarizes the system-based authorisation mode of accessing the PCA API:

  • Applications (i.e. ClientSystems) obtain PCA API OAuth 2.0 access tokens from the PCA Identity and Access Manager using the OAuth 2.0 “client _credentials” grant type.
  • The PCA Identity and Access Manager issues PCA API access tokens which are only valid for use for short time – no refresh tokens are issued.
  • The scopes of the access token issued represent the Authorisations for which the ClientSystem is the subject.

The system-based authorisation mode of accessing the PCA API is shown in the figure below:

pca-system-based authorisation

Trade marks of the Australian Digital Health Agency: 
Provider Connect Australia™, Helping healthcare providers stay connected™

PCA logo
PCA logo

On this page