CH EPR FHIR (R4)
5.0.0-ballot-ci-build - ci-build
CH EPR FHIR (R4)
5.0.0-ballot-ci-build - ci-build
CH EPR FHIR (R4), published by eHealth Suisse. This guide is not an authorized publication; it is the continuous build for version 5.0.0-ballot-ci-build built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/ehealthsuisse/ch-epr-fhir/ and changes regularly. See the Directory of published versions
This section describes the national extension for the Swiss EPR to the Incorporate Access Token [ITI-72] transaction defined in the IUA profile published in the IHE IT Infrastructure Technical Framework Trial Implementation “Internet User Authorization”.
This transaction is used to incorporate authorization information into HTTP RESTful transactions.
Actor: IUA Authorization Client
Role: Authorization component of a HTTP RESTful transaction client.
Actor: IUA Resource Server
Role: Authorization component of a HTTP RESTful transaction server.
This national extension restricts the Actor options of the IUA Trial Implementation to comply to the legal requirements of the Swiss EPR.
The IUA Trial Implementation supports three options for the Authorization Token format; the JWT Token, the SAML Token and the Token Introspection option. Since this national extension will apply to cross community communication, the Token Introspection Option SHALL NOT be used.
IUA Authorization Clients, Authorization Servers and Resource Server actors SHALL use the JWS (signed) alternative of the JWT token as specified in the IUA Trial Implementation. The JWE alternative SHALL not be used.
When receiving requests of transactions where the EPR-SPID is provided in the IUA token and in the transaction body, the Resource Servers SHALL verify that both are the same.
The actors SHALL support the traceparent header handling, as defined in Appendix: Trace Context.