Did you know that it is possible to make the Ninsaúde Apolo medical software communicate with other software through the API? If you do not know what an API is and how this communication can be done, we will explain.
Before explaining how this process works, it is necessary to understand what an API is. The acronym API refers to the term Application Programming Interface, and based on this principle, it can be said more simply that, API is a means by which two cloud systems can communicate.
To better exemplify, imagine a television. For this device to work, it is necessary to connect it to an outlet, as this will supply the power to keep it turned on. In this way, we can say that the socket is an API.
Now an example closer to our subject: some apps like iFood and Uber use a map so that users can inform their location. This map is provided by Google (Google Maps), and this integration between Google Maps and other apps is done through an API.
Just a pause before we continue, did you know that the Ninsaúde Apolo clinic and office management system is perfect for health clinics? We always work with new improvements, discover exclusive advantages here.
An API can be developed in different ways and formats, however, there may be several standards depending on the purpose of the application. On the internet, the standard adopted is REST (or RESTful), which is the type of API available on Ninsaúde Apolo, because it is a cloud software.
The Ninsaúde Apolo API is of the Open API type. This means that it is an API available to external developers. In this way, companies and external developers can implement their solutions to Ninsaúde Apolo. Therefore, working with an open API makes it possible to offer new services and improve existing ones.
How to integrate Ninsaúde Apolo?
When accessing the Apolo software website, at the end of the home page, in "Extras", just locate the option Developers to have access to all the information necessary to carry out the integration. The Toro development platform provides a Restful API to build rich experiences with web, mobile, and desktop applications with all the resources your clinic needs.
All requests have end-to-end security with Lets Encrypt Authority X3 2048 bits security certificate. Eventually, vulnerability scanners are used to track possible security breaches.
The infrastructure is also certified by SSAE16 / ISAE 3402 Type II, ISO 27001, ISO 27017, ISO 27018, FedRAMP ATO, PCI DSS v3.2, and HIPAA.
The tokens used follow OAUTH2 authentication standards. Using the Refresh Token replaces account, user, and password sharing with applications. The Access Token, used in platform requests, is valid for 15 minutes.