We have found the instructions on building a version of OAuth2 here: OAuth2 Module - for Module Developers - Projects - OpenMRS Wiki using maven and an edited version of the XML config.
Does the Spring installation in the Reference Application support this OAuth2 module without any further modification (dependent modules, security parameters, etc)?
We are also confused about the XML attributes: <security:intercept-url pattern="<resource_uri>" access=“hasAnyRole(‘ROLE_USER’,‘ROLE_CLIENT’)”/>
We can’t find any documentation on the ROLEs on the Wiki. If we have defined a “Clinician” role which extends “Practitioner” role, and has correct access privileges, which ROLE value should this be placed in? Both?
Any advice would be appreciated.