This page is part of the FHIR Specification (v4.0.1: R4 - Mixed Normative and STU) in it's permanent home (it will always be available at this URL). The current version which supercedes this version is 5.0.0. For a full list of available versions, see the Directory of published versions . Page versions: R5 R4B R4 R3
FHIR Infrastructure Work Group | Maturity Level: N/A | Standards Status: Informative |
Raw XML (canonical form + also see XML Format Specification)
Definition for Code System RestfulSecurityService
<?xml version="1.0" encoding="UTF-8"?> <CodeSystem xmlns="http://hl7.org/fhir"> <id value="restful-security-service"/> <meta> <lastUpdated value="2019-11-01T09:29:23.356+11:00"/> </meta> <text> <status value="generated"/> <div xmlns="http://www.w3.org/1999/xhtml"> <h2> RestfulSecurityService</h2> <div> <p> Types of security services used with FHIR.</p> </div> <p> This code system http://terminology.hl7.org/CodeSystem/restful-security-service defines the following codes:</p> <table class="codes"> <tr> <td style="white-space:nowrap"> <b> Code</b> </td> <td> <b> Display</b> </td> <td> <b> Definition</b> </td> </tr> <tr> <td style="white-space:nowrap">OAuth <a name="restful-security-service-OAuth"> </a> </td> <td> OAuth</td> <td> OAuth (unspecified version see oauth.net).</td> </tr> <tr> <td style="white-space:nowrap">SMART-on-FHIR <a name="restful-security-service-SMART-on-FHIR"> </a> </td> <td> SMART-on-FHIR</td> <td> OAuth2 using SMART-on-FHIR profile (see http://docs.smarthealthit.org/).</td> </tr> <tr> <td style="white-space:nowrap">NTLM <a name="restful-security-service-NTLM"> </a> </td> <td> NTLM</td> <td> Microsoft NTLM Authentication.</td> </tr> <tr> <td style="white-space:nowrap">Basic <a name="restful-security-service-Basic"> </a> </td> <td> Basic</td> <td> Basic authentication defined in HTTP specification.</td> </tr> <tr> <td style="white-space:nowrap">Kerberos <a name="restful-security-service-Kerberos"> </a> </td> <td> Kerberos</td> <td> see http://www.ietf.org/rfc/rfc4120.txt.</td> </tr> <tr> <td style="white-space:nowrap">Certificates <a name="restful-security-service-Certificates"> </a> </td> <td> Certificates</td> <td> SSL where client must have a certificate registered with the server.</td> </tr> </table> </div> </text> <extension url="http://hl7.org/fhir/StructureDefinition/structuredefinition-wg"> <valueCode value="fhir"/> </extension> <extension url="http://hl7.org/fhir/StructureDefinition/structuredefinition-standards-status"> <valueCode value="normative"/> </extension> <extension url="http://hl7.org/fhir/StructureDefinition/structuredefinition-normative-version"> <valueCode value="4.0.0"/> </extension> <extension url="http://hl7.org/fhir/StructureDefinition/structuredefinition-fmm"> <valueInteger value="5"/> </extension> <url value="http://terminology.hl7.org/CodeSystem/restful-security-service"/> <identifier> <system value="urn:ietf:rfc:3986"/> <value value="urn:oid:2.16.840.1.113883.4.642.4.1079"/> </identifier> <version value="4.0.1"/> <name value="RestfulSecurityService"/> <title value="RestfulSecurityService"/> <status value="active"/> <experimental value="false"/> <date value="2019-11-01T09:29:23+11:00"/> <publisher value="HL7 (FHIR Project)"/> <contact> <telecom> <system value="url"/> <value value="http://hl7.org/fhir"/> </telecom> <telecom> <system value="email"/> <value value="fhir@lists.hl7.org"/> </telecom> </contact> <description value="Types of security services used with FHIR."/> <caseSensitive value="true"/> <valueSet value="http://hl7.org/fhir/ValueSet/restful-security-service"/> <content value="complete"/> <concept> <code value="OAuth"/> <display value="OAuth"/> <definition value="OAuth (unspecified version see oauth.net)."/> </concept> <concept> <code value="SMART-on-FHIR"/> <display value="SMART-on-FHIR"/> <definition value="OAuth2 using SMART-on-FHIR profile (see http://docs.smarthealthit.org/)."/> </concept> <concept> <code value="NTLM"/> <display value="NTLM"/> <definition value="Microsoft NTLM Authentication."/> </concept> <concept> <code value="Basic"/> <display value="Basic"/> <definition value="Basic authentication defined in HTTP specification."/> </concept> <concept> <code value="Kerberos"/> <display value="Kerberos"/> <definition value="see http://www.ietf.org/rfc/rfc4120.txt."/> </concept> <concept> <code value="Certificates"/> <display value="Certificates"/> <definition value="SSL where client must have a certificate registered with the server."/> </concept> </CodeSystem>
Usage note: every effort has been made to ensure that the examples are correct and useful, but they are not a normative part of the specification.