I am following this documentation to trey and set up mock authentication for local development.
When I make the call to the /keycloak-client-credentials endpoitn I get back a client id and secret that is not the one associated with by api key as set up for the application. However the instructions are very clear that this has to be used.
The redirect uri is to a generic url (that does not exist) and not to the redirect that I would use for authentication.
If I use all these value as they are the call doesn’t throw any errors - but obviously also doesn’t do a mock login.
If I change the values to my clientId, secret and redirect Uri then the login call fails. Changing just the redirect url with a redirect uri invalid message, client id with an invalid client id message.
Thanks for that! I think the issue is with mock-jwks (sandbox Environment) being enabled. According to the documentation the application registered must have mock-jwks (Int Environment) added to the list of enabled APIs.
Our application is set up for Environment Sandbox - so that api is not available to us.
I suspect that you can only use the new mock api when you have a fully configured sandpit registered app - with a redirect url that has been set up by the NHS team and cannot be altered by us - I just tried creating a new instance of the app for sandpit and registered the api - and the response was:
Could I also get your client credentials(client id and secret) for that sandbox app with id 68f5b6e3-57b1-4ac9-b2f1-4e952a92c849, we are checking if something is going wrong in the backend.
Hi Aleks
I am unable to find the mock-jwks in the Add API list of my application (Integration test environment)? Is there any other step that’s require to enable this API?
Hi Anna. Apologies for the delay in response. The redirect uri for the environment should be the one that comes back from mock-jwks as the way the mocks work it has to match that (for sandbox as you say it is https://example.org) - this isn’t how it would work when using the real nhs login but should work to get a token to test as you need. Please note that unless you’re doing the hello-world tutorial then all sandbox apis are not protected with auth so an integration app may be the way to go.
Hi Jeff, is this still an issue? Some times it takes some time to show the apis after the app is created. If it’s still an issue send your app id over and I’ll attach it
Hi @alex.carrie sorry for the delay - Busy on other projects - no change I’m afraid - when I check the response from curl --location --request GET ‘https://sandbox.api.service.nhs.uk/mock-jwks/keycloak-client-credentials’ --header ‘apikey: kort8HNxwts01aE7vFpaILyekxnTBR8i’ -which is my Sandbox api key - I still get the dummy redirect uri.
Thinking that perhaps that didn’t matter and I could redirect where ever I have tried it and get the error response:
Invalid parameter: redirect_uri
This is getting to be an issue as developers need to get working - can you think what could be wrong?
Once again the steps I have taken are:
made sure that mock-jwks (sandbox Environment) was enabled for my application
Used client id and secret from that for my api call - as that is what the documentation says to do - but it also says to use that redirect uri - but as the documentation goes on to say After entering a valid set of credentials for a user, the browser navigates to the redirect_uri provided in the authorization call, with an authorization_code as a query parameter.
That redirect uri is a dummy one - so it gets me nowhere
Could you try and set up an application with a connection to sandbox and follow your instructions to work out why they lead me to this point - I am probably missing something really obvious.
Hi Anna. Apologies, unfortunate timing, I’ve been on leave since your reply and have just got back in today. I’ll get someone to look at it as soon as they can. I would proceed with your integration with nhs login though and not treat this as a blocker. This is really only to demonstrate how it will work when using nhs login in the integration environment
