Project

AuditEvent for REST query

audit pattern to be used when recording that a FHIR query happened
  • PUBLIC PROJECT
  • FHIR STU3
  • Scope International
  • Bookmarks 0
Resources
Profiles 2
CodeSystems 2
CapabilityStatements 1


Examples
This project does not yet contain any examples.


Canonical Base URLs
This project does not contain any canonical base URLs.


Status overview
5
0
0

Common pattern of an AuditEvent for use when recording that a FHIR Query has happened.

Made up of:

  • Query event
  • Agents: Source, Destintion, and Human actors
  • Entities: Patient, and Query parameters

In ATNA terms:

  • Event
    • EventID = EV(110112, DCM, “Query”)
    • EventTypeCode = For example: EV(“PCC-44”, “IHE Transactions”, “Query for Existing Data for Mobile”)
    • EventActionCode = “E” (Execute)
  • ActiveParticipant(s)
    • Source of the request (1..1)
      • Requesting actor system identity
    • Destination of the request (1..1)
      • Respondig actor system identity
    • Human Requestor (0..n)
      • One for each known user.
  • Audit Source (1..1)
  • ParticipantObject(s)
    • Patient (1..1)
      • ParticipantObjectTypeCode = “1” (Person)
      • ParticipantObjectTypeCodeRole = “1” (Patient)
      • ParticipantObjectID = The ‘patient’ parameter value
    • Query Parameters (1..1)
      • ParticipantObjectTypeCode = “2” (system object)
      • ParticipantObjectTypeCode Role = “24” (query)
      • ParticipantObjectQuery = Requested URL including query parameters, base64 encoded
      • ParticipantObjectDetail = HTTP Request Headers contained in the query (e.g., Accept header)
avatar John Moehrke
owner  Admin