This video provides an overview of PKCE (Proof Key for Code Exchange) as used in SMARTv2. We discuss the motivation behind PKCE; review where PKCE fits into the SMART App Launch; outline conformance expectations for SMART servers and SMART apps; and share pointers to resources for understanding PKCE more deeply, as well as client libraries for implementing PKCE support.
Links:
* https://hl7.org/fhir/smart-app-launch/app-launch.html#considerations-for-pkce-support
* https://oauth.net/2/pkce/
* https://datatracker.ietf.org/doc/html/rfc7636
