Authentication
Phenoml uses OAuth 2.0 client credentials: credential to token to bearer header. Tokens last 48 hours, so cache one and reuse it across requests instead of minting one per call. SDKs do this automatically.
Requests can carry X-Phenoml-On-Behalf-Of: Patient/{uuid}
to act in a specific patient or practitioner context, and
X-Phenoml-Fhir-Provider to pass provider credentials
per request.
Full details are in Authentication.