So in a nutshell, we can’t use Spring backed OAuth unless we build the OpenMRS OAuth module against the OpenMRS master.
Right now, @maany is basically writing our own alternative to Spring OAuth, which may be complicated, and not the best option as we should be using a third party library for this purpose. If we were to write an OAuth module that uses OpenMRS master and using spring OAuth, then anyone hoping to use FHIR against OpenMRS 1.10 or 1.11 wont be able to use OAuth, unless they’re willing to upgrade to OpenMRS master…