Inferno is an open source tool that tests whether patients can access their health data. It makes HTTP(S) requests to test your server's conformance to authentication, authorization, and FHIR content standards and reports the results back to you.
What does Inferno test?
Inferno tests conformance to SMART on FHIR requirements for authentication and authorization of FHIR servers, including:
- App Registration through either manual client registration or the OAuth 2.0 Dynamic Client Registration Protocol
- App Launch using the SMART App Launch Framework with support for both the Standalone Launch and EHR Launch sequences
- Authentication, which must conform to OpenID Connect Core 1.0 incorporating errata set 1
Inferno also tests conformance to the Argonaut Data Query Implementation Guide. Specifically, Inferno requires a publicly accessible conformance statement with OAuth endpoints, support for the Data Query Server capabilities, and support for the following Argonaut Data Query Profiles:
Smoking Status Observation
Vital Signs Observation