Configuration
All platform configuration is in .env. Copy .env.example and fill in the values.
Required variablesโ
| Variable | Description |
|---|---|
DB_PASSWORD | PostgreSQL password โ required, no default |
EPIC_CLIENT_ID | Epic / SMART app client ID |
Optional variablesโ
| Variable | Default | Description |
|---|---|---|
FHIR_BASE_URL | http://hapi-fhir:8080/fhir | FHIR server base URL |
ISSUER_URL | http://localhost:9000 | Auth server public URL |
EPIC_REDIRECT_URI | http://localhost:8081/callback | OAuth2 redirect URI |
KEYSTORE_PATH | โ | PKCS12 keystore for persistent RSA key |
KEYSTORE_PASSWORD | โ | Keystore password |
Component documentationโ
For full configuration reference see the individual component docs:
IdP federationโ
To delegate clinician login to Azure AD, Okta, or Epic IdP add to .env:
SPRING_PROFILES_ACTIVE=prod,idp
IDP_CLIENT_ID=your-idp-client-id
IDP_CLIENT_SECRET=your-idp-client-secret
IDP_USER_ID_CLAIM=email
IDP_USER_LOOKUP_QUERY=http://hapi-fhir:8080/fhir/Practitioner?identifier=.../{identifier}
IDP_ISSUER_URI=https://login.microsoftonline.com/{tenant-id}/v2.0
See the IdP federation guide for Azure AD, Okta, and Epic IdP examples.