This is a write up from the NHS Digital Connectathon last month.
It’s aimed at people providing FHIR Servers to existing systems.
Those looking for an example FHIR enabled Care Connect server (such as those developing a mobile or web application) take a look at the Care Connect demo site (http://yellow.testlab.nhs.uk/careconnect-ri/).
This server is has both un-secure (http) and secure (https) endpoints. https is using OAuth2 (plus SMART on FHIR) - see site for more details. The authorisation server is open source Open Mitre Authorisation server plus extensions from the US ‘open source’ health service provider consortium HSPC.