This page is part of the International Patient Access (v0.1.0: STU 1 Ballot 1) based on FHIR R4. . For a full list of available versions, see the Directory of published versions

Security

Servers and clients are encouraged to follow security best practices and requirements as outlined in FHIR Security and elsewhere.

SMART on FHIR Capabilities

Servers SHALL support the following SMART on FHIR capabilities:

• launch-standalone
• client-public
• sso-openid-connect
• context-standalone-patient
• perrmission-patient

Servers SHOULD support the following SMART on FHIR capabilities:

• launch-ehr
• context-ehr-patient
• client-confidential-asymmetric
• permission-offline