Basic Audit Log Patterns (BALP)
1.1.4-current - ci-build International flag

Basic Audit Log Patterns (BALP), published by IHE IT Infrastructure Technical Committee. This guide is not an authorized publication; it is the continuous build for version 1.1.4-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/IHE/ITI.BasicAudit/ and changes regularly. See the Directory of published versions

Example AuditEvent: Server - Audit Example of a basic Query (GET)

Generated Narrative: AuditEvent ex-auditBasicQueryGetNoPatient

type: Audit Event ID rest: Restful Operation

subtype: FHIR Restful Interactions search: search

action: Execute

recorded: 2020-04-29 09:49:00+0000

outcome: Success

agent

type: Source Role ID

who: myMachine.example.org

requestor: false

Networks

-AddressType
*2001:0db8:85a3:0000:0000:8a2e:0370:7334IP Address

agent

type: Destination Role ID

who: Device

requestor: false

Networks

-AddressType
*http://server.example.com/fhirURI

agent

type: information recipient

who: John Smith

requestor: true

Sources

-SiteObserverType
*server.example.comDeviceAudit Event Source Type 4: Application Server

entity

type: Audit event entity type 2: System Object

role: AuditEventEntityRole 24: Query

description: GET test.fhir.org/r4/MeasureReport?_lastUpdated=gt2020-11-06T21:52:30.300Z&_sort=_lastUpdated&_count=10 Accept: application/fhir+json; fhirVersion=4.0 X-Request-Id: 4a8dca3c-2205-4dc7-90e1-db877781d7cc

query: R0VUIHRlc3QuZmhpci5vcmcvcjQvTWVhc3VyZVJlcG9ydD9fbGFzdFVwZGF0ZWQ9Z3QyMDIwLTExLTA2VDIxOjUyOjMwLjMwMFomX3NvcnQ9X2xhc3RVcGRhdGVkJl9jb3VudD0xMApBY2NlcHQ6IGFwcGxpY2F0aW9uL2ZoaXIranNvbjsgZmhpclZlcnNpb249NC4wClgtUmVxdWVzdC1JZDogNGE4ZGNhM2MtMjIwNS00ZGM3LTkwZTEtZGI4Nzc3ODFkN2Nj

entity

what: Identifier: 4a8dca3c-2205-4dc7-90e1-db877781d7cc

type: Entity Types that are defined in IHE BasicAudit XrequestId: transport specific unique identifier where http X-Request-Id is used