Skip to content
Explore more InterSystems sites:
Australia New Zealand
Australia & New Zealand
Benelux
Benelux:
Benelux:
Brazil
Brazil
Chile
Chile
China
China
Czech Republic
Czech Republic
Finland
Finland
France
France
Germany
Germany
Hungary
Hungary
indonesian flag
Indonesia
Italy
Italy
Japan
Japan
Middle East Region
Middle East
South Africa
South Africa
Middle East Region
Southeast Asia
Spain
Spain
Sweden
Sweden
United Kingdom Ireland
United Kingdom & Ireland
United States
United States
Explore more InterSystems sites:
Australia New Zealand
Australia & New Zealand
Benelux
Benelux:
Benelux:
Brazil
Brazil
Chile
Chile
China
China
Czech Republic
Czech Republic
Finland
Finland
France
France
Germany
Germany
Hungary
Hungary
indonesian flag
Indonesia
Italy
Italy
Japan
Japan
Middle East Region
Middle East
South Africa
South Africa
Middle East Region
Southeast Asia
Spain
Spain
Sweden
Sweden
United Kingdom Ireland
United Kingdom & Ireland
United States
United States
Keressen, hogy többet megtudjon az InterSystems termékeiről és megoldásairól, karrierlehetőségekről és még sok másról.
Home
Product Alerts & Advisories
Advisory: OAuth Processing Errors with FHIR Pagination

Advisory: OAuth Processing Errors with FHIR Pagination

Aug 23, 2022

This problem affects the following products:

  • HealthShare Unified Care Record 2020.1, 2020.2, 2021.1
  • InterSystems IRIS for Health 2020.1, 2020.1.1, 2020.2, 2020.3, 2021.1, 2021.2

If a FHIR query response is paginated, the system does not properly handle OAuth tokens on subsequent pages. The behavior varies by product:

  • When using the FHIR Gateway in the HealthShare ODS, an initial search response functions as expected. If the result set breaks across pages, attempts to resolve the “next” URL for the next page of search results will yield a HTTP 403 error.
  • When using the FHIR Repository in InterSystems IRIS for Health, an initial search response functions as expected. If the result set breaks across pages, attempts to resolve the “next” URL for the next page of search results will succeed if the user has a valid Access Token however, OAuth scopes are not correctly validated.

To resolve this issue, please request an adhoc patch for IF-2575 from the Worldwide Response Center (WRC).
RELATED TOPICS
HealthShare InterSystems IRIS for Health

Latest Alerts & Advisories

Oct 07, 2025
Product Alerts & Advisories
Alert: Risk of Silent Wrong Results When Using Specific OUTER JOIN Patterns in SQL Queries
Risk Category & Score Explicit Requirements DP-442892 InterSystems IRIS® data platform InterSystems IRIS® for Health HealthShare® Health Connect versions 2023.3.0, 2024.1.0 – 2024.1.3, 2024.2.0, 2024.3.0, and 2025.1.0 HealthShare® Unified Care Record versions 2024.2 and 2025.1 Wrong Results: High Risk Specific use of OUTER JOIN when the inner leg has an index on the join fields In InterSystems IRIS versions 2023.3.0, 2024.1.0 – 2024.1.3, 2024.2.0, 2024.3.0, and 2025.1.0, for queries that use an OUTER JOIN and where InterSystems IRIS performs parallel execution, the query may silently return wrong results.
More
Oct 07, 2025
Product Alerts & Advisories
Alert: Risk of Silent Wrong Results When Unused Common Table Expressions Appear in SQL Queries
Risk Category & Score Explicit Requirements DP-443396 InterSystems IRIS® data platform InterSystems IRIS® for Health HealthShare® Health Connect versions 2024.1.0 – 2024.1.4, 2024.2.0, 2024.3.0, and 2025.1.0, and 2025.1.1 HealthShare® Unified Care Record versions 2024.2 and 2025.1 Wrong Results: Low Risk Using Common Table Expressions in Dynamic SQL
More
Oct 07, 2025
Product Alerts & Advisories
Advisory: SDA3 -> FHIR Transformation Failure
Risk Category & Score Explicit Requirements HSHC-5268 HealthShare® Health Connect and InterSystems IRIS® for Health versions 2025.1.1 Functional: Medium Risk Occurs when performing SDA3 -> FHIR transformations involving the Encounter resource.
More
Sep 30, 2025
Product Alerts & Advisories
Advisory: Missing Globals with Mirror Database Download
In InterSystems IRIS, InterSystems IRIS for Health, and HealthShare Health Connect, versions 2025.1.1 and 2025.2.0, the new “ Mirror Database Download” functionality does not include certain globals.
More
Sep 24, 2025
Product Alerts & Advisories
Alert: Transaction Rollbacks Fail When LogRollback is Enabled
Risk Category & Score Explicit Requirements DP-444551 InterSystems IRIS® data platform InterSystems IRIS® for Health HealthShare® Health Connect versions 2025.1.0, 2025.1.1, and 2025.2
More
Sep 03, 2025
Product Alerts & Advisories
Alert: Upgrade Failure in IRIS 2025.1.1.308.0 due to Reserved Web Application Names
Risk Category & Score Explicit Requirements DP-442440 InterSystems IRIS ® data platform 2025.1.1.308.0 InterSystems IRIS for Health HealthShare® Health Connect Operational:
More
Jul 23, 2025
Product Alerts & Advisories
Advisory for IRISSECURITY in InterSystems IRIS 2025.2
InterSystems IRIS 2025.2 introduces the IRISSECURITY database, the new home for security data. Unlike IRISSYS, the previous home for security data, IRISSECURITY can be encrypted, which secures your sensitive data at rest. In a future version, IRISSECURITY will be mirrorable.
More
Jul 23, 2025
Product Alerts & Advisories
InterSystems Announces General Availability of InterSystems IRIS 2025.2
InterSystems is pleased to announce the General Availability (GA) of the 2025.2 release of InterSystems IRIS® data platform. This is a Continuous Delivery (CD) release. Please note that the GA versions of InterSystems IRIS for Health™ and HealthShare® Health Connect™ 2025.2 are currently withheld due to mirroring limitations introduced by security updates (details below).
More
Jun 10, 2025
Advisory: Namespace Switching and Global Display Failures
Advisory ID Product & Versions Affected Risk Category & Score Explicit Requirements DP-439649 Products:
More
May 20, 2025
Product Alerts & Advisories
Advisory: XDS.b Document Repository Should Be Notify and Query
This issue affects all versions of HealthShare®:
More