cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
Syndicate_Admin
Administrator
Administrator

Epic Custom Connector OAuth Password issues

I'm having an issue with powerapps, in a Hospital/Provider environment that runs Epic as our EHR that maybe the community can guide me on.  I have the Epic custom connector in my orgs Prd environment. When users sign into the app they put in their Epic credentials, when they change their password (every 90 days) the connector does not prompt them to re-authenticate for some reason, but it then cannot run the services.  So, it's like the oauth2 hash is working for them to call the service, but then it won't give the data, and the connector does not understand that they need to enter their new password.  To top it off since these users do not have make.poweraps.com access to my company's prd env, I can't figure out how they can change their credentials.  Ideas?

2 REPLIES 2
murshed
Microsoft
Microsoft

Hi,
It sounds like the access/refresh token isn't invalidated after 90 days of password change. When the refresh token is sent to the auth server it succeeds and then the resource server rejects the access token. Can you please work with your backend dev on this? Let us know if you have more question.

If this reply answers your question or solves your issue, please ACCEPT AS SOLUTION ☑️. If you find this reply helpful, please consider giving it a LIKE 👍.

SameerCh
Power Automate
Power Automate

What is the authentication mechanism used the Epic custom connector?

 

(1) If it is OAUTH/AAD based, I would expect things to continue working. Default AAD policies is that refresh tokens continue to be valid even after a password is reset by users. Admins do have the ability to change this policy. If not, the connection will be set to Unauthenticated.

(2) If it is Basic Auth, then the password is out of sync. Ideally, the connection status will be set to Unauthenticated. But, it doesnt happen by default. You need to use an explicit policy to set the connection to Unathenticated. See this one we released a while back, for this specific scenario: Set Connection Status to Unauthenticated(Preview) | Microsoft Docs

 

In either case, once the connection is set to Unauthenticated, when the user launch the app again, the user will be prompted to fix the connection.

 

Hope this explains!

Helpful resources

Announcements
Power Automate News & Announcements

Power Automate News & Announcements

Keep up to date with current events and community announcements in the Power Automate community.

Power Automate Community Blog

Power Automate Community Blog

Check out the latest Community Blog from the community!

Top Kudoed Authors
Users online (5,238)