This PR addresses two GitHub Issues: #372 and #353
1) SMART App Launch IG specifically mentioned Person as a possible resource type for fhirUser claim. So this PR added Person to the whitelist of predefined request scopes. Though Inferno test client does not list patient/Person.read by default, tester can add this scope as needed
2) RFC-6749 section 3.3 allows server to grant additional scopes beyond client's request. This PR relaxes the scope validations for received scopes
New behavior
Code changes
Testing guidance
Verify that tester can manually add patient/Person.read to the Standalone Patient Scope at "Standalone Patient App" test
Server returns additional scope is tested by new unit tests.
Summary
This PR addresses two GitHub Issues: #372 and #353
1) SMART App Launch IG specifically mentioned
Personas a possible resource type forfhirUserclaim. So this PR addedPersonto the whitelist of predefined request scopes. Though Inferno test client does not list patient/Person.read by default, tester can add this scope as needed2) RFC-6749 section 3.3 allows server to grant additional scopes beyond client's request. This PR relaxes the scope validations for received scopes
New behavior
Code changes
Testing guidance
Verify that tester can manually add patient/Person.read to the Standalone Patient Scope at "Standalone Patient App" test Server returns additional scope is tested by new unit tests.