Register a resource application in Azure Active Directory for Azure API for FHIR
In this article, you'll learn how to register a resource (or API) application in Azure Active Directory (Azure AD). A resource application is an Azure AD representation of the FHIR server API itself and client applications can request access to the resource when authenticating. The resource application is also known as the audience in OAuth parlance.
Azure API for FHIR
If you're using the Azure API for FHIR, a resource application is automatically created when you deploy the service. As long as you're using the Azure API for FHIR in the same Azure AD tenant as you're deploying your application, you can skip this how-to-guide and instead deploy your Azure API for FHIR to get started.
If you're using a different Azure AD tenant (not associated with your subscription), you can import the Azure API for FHIR resource application into your tenant with PowerShell:
New-AzADServicePrincipal -ApplicationId 4f6778d8-5aef-43dc-a1ff-b073724b9495 -Role Contributor
or you can use Azure CLI:
az ad sp create --id 4f6778d8-5aef-43dc-a1ff-b073724b9495
FHIR Server for Azure
If you're using the open source FHIR Server for Azure, follow the steps on the GitHub repo to register a resource application.
In this article, you've learned how to register a resource application in Azure AD. Next, register your confidential client application.
FHIR® is a registered trademark of HL7 and is used with the permission of HL7.