Permission-example-saner.json - FHIR v6.0.0-ballot3

~~Release 5~~ R6 Ballot (3rd Draft)

This page is part of the FHIR Specification (v5.0.0: R5 - STU ). This is the current published version in it's permanent home (it will always be available at this URL). For a full list of available versions, see the Directory of published versions

Publish-box (todo)

Example Permission/example-saner (JSON)

Security Work Group

Maturity Level : N/A

Standards Status : Informative

Compartments : No defined compartments

Raw JSON ( canonical form + also see JSON Format Specification )

Example of permission for SANER

{
  "resourceType" : "Permission",
  "id" : "example-saner",
  "text" : {
    "status" : "generated",
    "div" : "<div xmlns=\"http://www.w3.org/1999/xhtml\">\n      <p>\n    Read-Only access to SANER report is authorized for PurposeOfUse of Public-Health compliance, from the Organizations.\n    Access requests authorized shall be recorded.  \n    </p>\n      <p> \n    TODO: expression help. No access is granted to previous historic revisions (only current report).\n    </p>\n      <p> \n    TODO: authorize a Group/P1. \n    </p>\n    </div>"

    "div" : "<div xmlns=\"http://www.w3.org/1999/xhtml\">\n      <p>\n        Read-Only access to a given SANER report is authorized for PurposeOfUse of Public-Health\n        compliance, from the given Organization.\n        Access requests authorized shall be recorded.\n      </p>\n      <p>\n        Read-Only access to a given SANER report is authorized for PurposeOfUse of Public-Health\n        compliance, from the given Group.\n        Access requests authorized shall be recorded.\n      </p>\n    </div>"

  },
  "identifier" : [{
    "system" : "http://example.org/identifiers",
    "value" : "saner-report"
  }],

  "status" : "active",
  "asserter" : {
    "reference" : "Organization/f203"
  },
  "date" : ["2018-12-24"],
  "combining" : "deny-overrides",
  "rule" : [{
    "type" : "permit",
    "data" : [{
      "expression" : {
        "language" : "text/fhirpath",
        "expression" : "http://hl7.org/fhir/uv/saner/Measure/CDCHealthcareSupplyPathway"
      }

      "resource" : [{
        "meaning" : "instance",
        "reference" : {
          "reference" : "http://hl7.org/fhir/uv/saner/Measure/CDCHealthcareSupplyPathway"
        }
      }]

    }],
    "activity" : [{
      "actor" : [{
        "reference" : "Organization/f203"

        "reference" : {
          "reference" : "Organization/f203"
        }

      }],
      "action" : [{
        "coding" : [{
          "system" : "http://terminology.hl7.org/CodeSystem/consentaction",
          "code" : "access"
        }]
      }],
      "purpose" : [{
        "coding" : [{
          "system" : "http://terminology.hl7.org/CodeSystem/v3-ActReason",
          "code" : "HCOMPL"
        }]
      }]
    }],
    "limit" : [{
      "coding" : [{
        "system" : "http://terminology.hl7.org/CodeSystem/v3-ActCode",
        "code" : "AUDIT"

      "control" : [{
        "coding" : [{
          "system" : "http://terminology.hl7.org/CodeSystem/v3-ActCode",
          "code" : "AUDIT"
        }]
      }]
    }]
  },
  {
    "type" : "permit",
    "data" : [{
      "resource" : [{
        "meaning" : "instance",
        "reference" : {
          "reference" : "http://hl7.org/fhir/uv/saner/Measure/CDCHealthcareSupplyPathway"
        }
      }]
    }],
    "activity" : [{
      "actor" : [{
        "reference" : {
          "reference" : "Group/102"
        }
      }],
      "action" : [{
        "coding" : [{
          "system" : "http://terminology.hl7.org/CodeSystem/consentaction",
          "code" : "access"
        }]
      }],
      "purpose" : [{
        "coding" : [{
          "system" : "http://terminology.hl7.org/CodeSystem/v3-ActReason",
          "code" : "HCOMPL"
        }]
      }]
    }],
    "limit" : [{
      "control" : [{
        "coding" : [{
          "system" : "http://terminology.hl7.org/CodeSystem/v3-ActCode",
          "code" : "AUDIT"
        }]

      }]
    }]
  }]
}

Usage note: every effort has been made to ensure that the examples are correct and useful, but they are not a normative part of the specification.