National Directory of Healthcare Providers & Services (NDH) Implementation Guide
2.0.0-current - ci-build United States of America flag

National Directory of Healthcare Providers & Services (NDH) Implementation Guide, published by HL7 International / Patient Administration. This guide is not an authorized publication; it is the continuous build for version 2.0.0-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/fhir-us-ndh/ and changes regularly. See the Directory of published versions

ValueSet: Endpoint Access Control Mechanism Value Set

Official URL: http://hl7.org/fhir/us/ndh/ValueSet/EndpointAccessControlMechanismVS Version: 2.0.0-current
Standards status: Trial-use Active as of 2026-04-22 Maturity Level: 4 Computable Name: EndpointAccessControlMechanismVS

Codes for documenting access control mechanism

References

Logical Definition (CLD)

 

Expansion

Expansion performed internally based on codesystem Endpoint Access Control Mechanism Code System v2.0.0-current (CodeSystem)

This value set contains 15 concepts

SystemCodeDisplay (en)DefinitionJSONXML
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  publicPublicPublic access without any specific access control.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  OAuthOAuthOAuth (unspecified version see oauth.net).
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  SMART-on-FHIRSMART-on-FHIROAuth2 using SMART-on-FHIR profile (see http://docs.smarthealthit.org/).
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  NTLMNTLMMicrosoft NTLM Authentication.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  basicBasicBasic authentication defined in HTTP specification.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  KerberosKerberossee http://www.ietf.org/rfc/rfc4120.txt.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  CertificatesCertificatesSSL where client must have a certificate registered with the server.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  opaque-access-tokenOpaque Access TokenUses an opaque token for access control, which is a token whose structure is not visible or meaningful to the client.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  jwt-access-tokenJWT Access TokenUses a JSON Web Token (JWT) for access control, which is a compact, URL-safe means of representing claims to be transferred between two parties.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  mutual-tlsMutual TLSUses mutual Transport Layer Security (TLS) where both client and server authenticate each other using certificates.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  wss-saml-tokenWSS SAML TokenUses a Security Assertion Markup Language (SAML) token within the Web Services Security (WSS) framework for access control.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  wss-username-tokenWSS User Name TokenUses a username token within the WSS framework for access control.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  wss-kerberos-tokenWSS Kerberos TokenUses a Kerberos token within the WSS framework for access control.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  wss-x509-tokenWSS X509 TokenUses an X.509 certificate token within the WSS framework for access control.
http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS  wss-custom-tokenWSS Custom TokenUses a custom token within the WSS framework for access control.

Description of the above table(s).