Skip to main content
All CollectionsSupportPatient Portal Errors
Why are some portals disconnected?
Why are some portals disconnected?

Why are some portals disconnected?

Jennifer avatar
Written by Jennifer
Updated over a week ago

It looks like it's time to reconnect your portal, we're sure you have some questions so let's dive in. 

OneRecord is able to connect to your portal for a limited amount of time. After this time has expired we will need your permission to access your health records again to keep your OneRecord up to date with your health data. This helps us keep your health history secure and accurate.

Please note, if you would not like to reconnect your portal, your existing health information will still remain in your OneRecord but we will not be able to continue to add in any new information when it comes available until you grant access.  

Authentication

OneRecord is built on complex network of APIs that gives you direct access to your data. Enabling access involves using your patient portal username and password to verify you remotely with your health system or provider. Once your username and password unlocks the API then your data is sent to you via OneRecord. This is accomplished by a technical security standard named OAuth2.0 which uses access tokens.

Access Tokens

Access Tokens are used in token-based authentication to allow your OneRecord to access an API. OneRecord receives an Access Token after you successfully authenticate and authorize access, then passes the Access Token as a credential when it calls the target API. The passed token informs the API that the bearer of the token has been authorized to access the API and perform specific actions specified by the reason that was granted during authorization.

Access Tokens ensure that you and only you can access your health records, and access tokens typically have a limited lifetime for security purposes. So when the Access Token expires we have to access you to reconnect your account. 

Password Storage

It is bad security practice to store user name and passwords to keep the connection going. If an app ever asks to store your user name and password it should send up red flags about the privacy and security of the app. Just say no!

Questions
If you have any questions or concerns please contact us via the "help button" in the bottom right hand corner of the screen or email us at support@onerecord.com.

Did this answer your question?