Sep 24th, 2019
Added services permissions and requirements. Services token are limited to permissions that are approved for. Different permissions have different requirements and developers are approved for those permissions using ORCA processes. So token scopes are now limited to approved features. For example, you must be HIPAA compliant to access patients information. Permissoins are now global to companies. Companies can apply for permissions through the developers portal.
Sep 17th, 2019
Initial ORCA API using OAuth2 authentication, opened endpoints for Inbox Items, Patients and calendar entries.