Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Introduction

Excerpt

This guide helps SMART App developers follow best practice guidelines to create marketable "about" pages, social media link previews, interchangeable manifest files, and patient banners.

All examples in this page come from the Logica Patient Data Manager (PDM) and Bilirubin Risk Chart apps. The code can be found at https://bitbucket.org/hspconsortium/patient-data-manager and https://bitbucket.org/hspconsortium/bilirubin-risk-chart.

Marketing Page

So, you have an app that launches great from within the Logica sandbox or EHR system. But what happens when the your app is

...

Step 1: Get your app started quickly using an HSPC starter project

HSPC uses the SMART on FHIR specification for authorization, launch, context, and scope.  The best way to get your app off the ground quickly is to use an HSPC starter project.  Starter projects are available for JavaScript, Java, and mobile.  We recommend app developers use a starter project to quickly connect to and launch from an EHR (such as the HSPC Sandbox).  App developers can then add business logic and user interfaces easily.  Alternatively, starter project artifacts can be merged into an existing codebase but this process is not recommended for first time users.

Choose a starter project that matches the architecture style of your app:

...

MOBILE

...

WEB

...

OTHER

...

PROVIDER FACING

...

JavaScript

Java Spring MVC

Java Standalone MVC

...

PATIENT/FAMILY FACING

...

BACKEND SYSTEM

...

Java Spring IOC

(not vendor supported)

Step 2: Launch your app from the HSPC Sandbox

Typically a SMART on FHIR app is hosted on your server; however, with SMART on FHIR, your app is launched from within an EHR (Cerner, Epic, HSPC Sandbox, SMART on FHIR Sandbox, etc).  Throughout the development cycle, you will launch your app many times.  See Launch Your App from the HSPC Sandbox for detailed instructions.

Step 3: Register your app with the HSPC Sandbox

You can register your app with the HSPC Sandbox at any time during development.  When you register your app, you will get a client_id for your app within the HSPC Sandbox.  Use this new client_id when launching from the HSPC Sandbox.  See Register Your App in the HSPC Sandbox for detailed instructions.

Step 4: Publish your app in the HSPC Gallery

When your application is ready for public viewing, you can publish it to the HSPC Gallery.  Publishing your app to the HSPC Gallery is a great way to market your application and promote it at Healthcare conferences such as HiMMS.  See Publish Your App to the HSPC Gallery for detailed instructions.loaded outside of these authorization spaces? What does the user see? Usually, it's either a garbage page or your app with no loaded data. We suggest you take advantage of these opportunities by instead showing a marketing page through your index.html file. Here's an example of the index.html rendering of the Logica PDM app (https://patient-data-manager.logicahealth.org).

Image Added

As you create this page, we recommend including at least 3 different features:

  1. A description of what the app does and why the user should use/purchase it.
  2. A screenshot of the app
  3. A link where they can open the app in a test environment as a demo

Of course, include whatever content that will make your app appealing and useful. This is your chance to show off why users should get your app! 

Social Media Link Previews

On top of a nicely rendered marketing page, you'll want to be able to control what is rendered when someone shares your app url on social media. This is done by integrating metadata into your index.html page within the header section.

Social media platforms use Open Graph markup as a framework for providing metadata. Check out Facebook's documentation for full details: https://developers.facebook.com/docs/sharing/webmasters. You can use whatever meta properties suit your needs/desires.

Here's the metadata found in the PDM app:

Image Added

And here's what the rendering looks like in Google+. Similar renderings are done in Facebook, Twitter, and Pinterest.

Image Added















Important: If you've made any changes to your metadata since you or anyone else has posted on Facebook, you'll need to clear the cache through the Facebook debugger tool (https://developers.facebook.com/tools/debug). Plug in the app url, click "Debug", then click "Scrape Again". Twitter has a similar process (https://cards-dev.twitter.com/validator).

Make sure the url in the metadata matches the url placed in the social media post or it will not render correctly. For the image, Facebook recommends a size of 1200x630.

Manifest Files

Your app may be run in several different environments including locally, in a testing space, and in production. Manifest files are used to provide necessary information for each of these scenarios. EHRs, Sandboxes, and App Galleries will use these files to run your app. 

Three manifest files are stored as json files called manifest.json, manifest.test.json, and manifest.prod.json for local, testing, and production environments, respectively. They must be stored in the path ".well-known/smart" within the app's source directory.

Image Added

The standard across SMART user systems is to point to the manifest.json file for launch information. Therefore, when you boot the app on your server, change either the manifest.test or manifest.prod file name, depending on what environment you're deploying in, to manifest.json and delete the original manifest.json (which holds information for a local envrionment). The PDM app is deployed using a docker container that, when built, has the ability to make these changes.

This table defines the fields needed in your manifest files:

FieldDescription
software_id

Unique identifier for your app. The Logica apps use Maven Coordinates (https://maven.apache.org/pom.html#Maven_Coordinates)

client_nameName of the application
client_uriThe marketing index.html address
logo_uriLink to a screenshot of your app
launch_urlThe html page that handles the Oauth process
redirect_urisList of possible urls that the sandbox/EHR will redirect to after authorization
scope

A space-delimited list of scopes (http://docs.smarthealthit.org/authorization/scopes-and-launch-context)

token_endpoint_auth_methodString indicator of the requested authentication method for the token endpoint. Values are: "none", "client_secret_post", and "client_secret_basic" (https://tools.ietf.org/html/rfc7591)
grant_typesArray of OAuth 2.0 grant types that the client may use (http://docs.smarthealthit.org/authorization/best-practices)
fhir_versionsList of FHIR versions that the app can handle

Here's an example of the manifest.prod.json file from the PDM app:

Image Added


Patient Banner

When an app is viewed in an EHR system, a patient banner containing certain patient demographics may be displayed, keeping the app in the context of the patient being treated. When designing your app, you may want to include a patient banner just in case the system it is launched in does not have one. You are more than welcome to do so, but you don't want to have two patient banners show up in the user's view. That's why the SMART authorization standard has included a parameter that your app can accept indicating whether to show your app's banner or not. The variable is called "need_patient_banner". It is received in the final step of authorization when the access token and patient id are sent to your app. See http://docs.smarthealthit.org/authorization/scopes-and-launch-context/ for full documentation.

Image Added

In Logica

The Logica sandbox may be used to test out this functionality. First, build a launch scenario for your app, click the Launch Embedded option, and launch.

Image Added

Here's an example of the bilirubin app in embedded mode:

Image Added

And one using its own patient banner:

Image Added