Release 5 Ballot

This page is part of the FHIR Specification (v5.0.0-ballot: FHIR R5 Ballot Preview). The current version which supercedes this version is 5.0.0. For a full list of available versions, see the Directory of published versions

Example Permission/example-vhdir (JSON)

Security Work GroupMaturity Level: N/AStandards Status: InformativeCompartments: Not linked to any defined compartments

Raw JSON (canonical form + also see JSON Format Specification)

Example of permission for VhDir

{
  "resourceType": "Permission",
  "id": "example-vhdir",
  "text": {
    "status": "generated",
    "div": "<div xmlns=\"http://www.w3.org/1999/xhtml\">\n      <p>\n        VhDir has identified a need to identify specific entries in the Directory and indicate some restrictions upon use of that entry. \n        This example is the example from VhDir with some additional details added.\n      </p>\n      <p> \n    womens-shelter : All entries related to Women's Shelter can only be read by members of a CareTeam \n    defined for councellors for womens abuse. \n    Uses the existing example CareTeam that is not actually about women abuse councellors, used as example only.\n    Presumes that directory entries related to womens shelter are marked with .meta.security of WSHELTER \n    sensitivity code, a code that is not standard so would exist in a domain using this example Permission.\n    </p>\n    <p>\n      Thus the dataScope is for all data with .meta.security of WSHELTER.\n    </p>\n    <p>\n      Activities by those in the CareTeam. \n      Explicit action and purpose are given, but they are likely not critical to the usecase.\n    </p>\n    </div>"
  },
  "status": "active",
  "date": [
    "2022-08-04"
  ],
  "combining": "deny-overrides",
  "rule": [
    {
      "type": "permit",
      "data": [
        {
          "security": [
            {
              "system": "https://example.org",
              "code": "WSHELTER"
            }
          ]
        }
      ],
      "activity": [
        {
          "actor": [
            {
              "reference": "CareTeam/example"
            }
          ],
          "action": [
            {
              "coding": [
                {
                  "system": "http://terminology.hl7.org/CodeSystem/consentaction",
                  "code": "access"
                }
              ]
            }
          ],
          "purpose": [
            {
              "coding": [
                {
                  "system": "http://terminology.hl7.org/CodeSystem/v3-ActReason",
                  "code": "HOPERAT"
                }
              ]
            }
          ]
        }
      ]
    }
  ]
}

Usage note: every effort has been made to ensure that the examples are correct and useful, but they are not a normative part of the specification.