Basic Audit Log Patterns (BALP)
1.1.4-current - ci-build
Basic Audit Log Patterns (BALP), published by IHE IT Infrastructure Technical Committee. This guide is not an authorized publication; it is the continuous build for version 1.1.4-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/IHE/ITI.BasicAudit/ and changes regularly. See the Directory of published versions
Active as of 2022-10-28 |
<CapabilityStatement xmlns="http://hl7.org/fhir">
<id value="IHE.BALP.AuditCreator"/>
<text>
<status value="extensions"/>
<div xmlns="http://www.w3.org/1999/xhtml"><p class="res-header-id"><b>Generated Narrative: CapabilityStatement IHE.BALP.AuditCreator</b></p><a name="IHE.BALP.AuditCreator"> </a><a name="hcIHE.BALP.AuditCreator"> </a><a name="IHE.BALP.AuditCreator-en-US"> </a><h2 id="title">IHE BALP Audit Creator</h2><ul><li>Implementation Guide Version: 1.1.4-current </li><li>FHIR Version: 4.0.1 </li><li>Supported Formats: <code>application/fhir+xml</code>, <code>application/fhir+json</code></li><li>Supported Patch Formats: </li><li>Published on: 2022-10-28 </li><li>Published by: IHE IT Infrastructure Technical Committee </li></ul><blockquote class="impl-note"><p><strong>Note to Implementers: FHIR Capabilities</strong></p><p>Any FHIR capability may be 'allowed' by the system unless explicitly marked as 'SHALL NOT'. A few items are marked as MAY in the Implementation Guide to highlight their potential relevance to the use case.</p></blockquote><h2 id="rest">FHIR RESTful Capabilities</h2><div class="panel panel-default"><div class="panel-heading"><h3 id="mode1" class="panel-title">Mode: <code>client</code></h3></div><div class="panel-body"><div><p>BALP <strong>Audit Creator</strong> will CREATE AuditEvent resources, and send them to the <strong>Audit Record Repository</strong> with <strong>ATNA ATX:FHIR Feed Option</strong> using ITI-20 FHIR support.</p>
</div><div class="lead"><em>Security</em></div><blockquote><div><p><a href="https://profiles.ihe.net/ITI/TF/Volume1/ch-9.html">ATNA</a> required, encouraged <a href="https://profiles.ihe.net/ITI/IUA/index.html">IHE-IUA</a> or SMART-on-FHIR</p>
</div></blockquote><div class="lead"><em>Summary of System-wide Interactions</em></div></div></div><h3 id="resourcesCap1">Capabilities by Resource/Profile</h3><h4 id="resourcesSummary1">Summary</h4><p>The summary table lists the resources that are part of this configuration, and for each resource it lists:</p><ul><li>The relevant profiles (if any)</li><li>The interactions supported by each resource (<b><span class="bg-info">R</span></b>ead, <b><span class="bg-info">S</span></b>earch, <b><span class="bg-info">U</span></b>pdate, and <b><span class="bg-info">C</span></b>reate, are always shown, while <b><span class="bg-info">VR</span></b>ead, <b><span class="bg-info">P</span></b>atch, <b><span class="bg-info">D</span></b>elete, <b><span class="bg-info">H</span></b>istory on <b><span class="bg-info">I</span></b>nstance, or <b><span class="bg-info">H</span></b>istory on <b><span class="bg-info">T</span></b>ype are only present if at least one of the resources has support for them.</li><li><span>The required, recommended, and some optional search parameters (if any). </span></li><li>The linked resources enabled for <code>_include</code></li><li>The other resources enabled for <code>_revinclude</code></li><li>The operations on the resource (if any)</li></ul><div class="table-responsive"><table class="table table-condensed table-hover"><thead><tr><th><b>Resource Type</b></th><th><b>Profile</b></th><th class="text-center"><b title="GET a resource (read interaction)">R</b></th><th class="text-center"><b title="GET all set of resources of the type (search interaction)">S</b></th><th class="text-center"><b title="PUT a new resource version (update interaction)">U</b></th><th class="text-center"><b title="POST a new resource (create interaction)">C</b></th><th><b title="Required and recommended search parameters">Searches</b></th><th><code><b>_include</b></code></th><th><code><b>_revinclude</b></code></th><th><b>Operations</b></th></tr></thead><tbody><tr><td><a href="#AuditEvent1-1">AuditEvent</a></td><td>Supported Profiles<br/> <a href="StructureDefinition-IHE.BasicAudit.Create.html">Basic AuditEvent for a successful Create not related to a Patient</a><br/> <a href="StructureDefinition-IHE.BasicAudit.Read.html">Basic AuditEvent for a successful Read</a><br/> <a href="StructureDefinition-IHE.BasicAudit.Update.html">Basic AuditEvent for a successful Update</a><br/> <a href="StructureDefinition-IHE.BasicAudit.Delete.html">Basic AuditEvent for a successful Delete</a><br/> <a href="StructureDefinition-IHE.BasicAudit.Query.html">Basic AuditEvent for a successful Query</a><br/> <a href="StructureDefinition-IHE.BasicAudit.PatientCreate.html">Basic AuditEvent for a successful Create with known Patient subject</a><br/> <a href="StructureDefinition-IHE.BasicAudit.PatientRead.html">Basic AuditEvent for a successful Read with a Patient</a><br/> <a href="StructureDefinition-IHE.BasicAudit.PatientUpdate.html">Basic AuditEvent for a successful Update with a Patient subject</a><br/> <a href="StructureDefinition-IHE.BasicAudit.PatientDelete.html">Basic AuditEvent for a successful Delete with Patient</a><br/> <a href="StructureDefinition-IHE.BasicAudit.PatientQuery.html">Basic AuditEvent for a successful Query with Patient</a><br/> <a href="StructureDefinition-IHE.IUA.71.html">IHE IUA ITI-71 AuditEvent for a successful Get Access Token</a><br/> <a href="StructureDefinition-IHE.BasicAudit.OAUTHaccessTokenUse.Comprehensive.html">Basic AuditEvent pattern for when an activity was authorized by an IUA access token</a><br/> <a href="StructureDefinition-IHE.BasicAudit.OAUTHaccessTokenUse.Minimal.html">Basic AuditEvent pattern for oAuth Opaque</a><br/> <a href="StructureDefinition-IHE.BasicAudit.OAUTHaccessTokenUse.Opaque.html">Basic AuditEvent pattern for oAuth Opaque</a><br/> <a href="StructureDefinition-IHE.BasicAudit.SAMLaccessTokenUse.Comprehensive.html">Basic AuditEvent pattern for when an activity was authorized by an SAML access token Comprehensive</a><br/> <a href="StructureDefinition-IHE.BasicAudit.SAMLaccessTokenUse.Minimal.html">Basic AuditEvent pattern for when an activity was authorized by an SAML access token Minimal</a><br/> <a href="StructureDefinition-IHE.BasicAudit.AuthZconsent.html">Basic AuditEvent pattern for when an Authorization permit is decided</a><br/> <a href="StructureDefinition-IHE.BasicAudit.PrivacyDisclosure.Recipient.html">Audit Event for a Privacy Disclosure as recorded by a Recipient</a><br/> <a href="StructureDefinition-IHE.BasicAudit.PrivacyDisclosure.Source.html">Audit Event for Privacy Disclosure at Source</a></td><td></td><td class="text-center"></td><td class="text-center"></td><td class="text-center">y</td><td></td><td/><td/><td/></tr></tbody></table></div><hr/><div class="panel panel-default"><div class="panel-heading"><h4 id="AuditEvent1-1" class="panel-title"><span style="float: right;">Resource Conformance: supported </span>AuditEvent</h4></div><div class="panel-body"><div class="container"><div class="row"><div class="col-lg-4"><span class="lead">Core FHIR Resource</span><br/><a href="http://hl7.org/fhir/R4/auditevent.html">AuditEvent</a></div><div class="col-lg-4"><span class="lead">Reference Policy</span><br/></div><div class="col-lg-4"><span class="lead">Interaction summary</span><br/><ul><li>Supports <code>create</code>.</li></ul></div></div><p/><div class="row"><div class="col-6"><span class="lead">Supported Profiles</span><p><a href="StructureDefinition-IHE.BasicAudit.Create.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Create</a><br/><a href="StructureDefinition-IHE.BasicAudit.Read.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Read</a><br/><a href="StructureDefinition-IHE.BasicAudit.Update.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Update</a><br/><a href="StructureDefinition-IHE.BasicAudit.Delete.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Delete</a><br/><a href="StructureDefinition-IHE.BasicAudit.Query.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Query</a><br/><a href="StructureDefinition-IHE.BasicAudit.PatientCreate.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientCreate</a><br/><a href="StructureDefinition-IHE.BasicAudit.PatientRead.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientRead</a><br/><a href="StructureDefinition-IHE.BasicAudit.PatientUpdate.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientUpdate</a><br/><a href="StructureDefinition-IHE.BasicAudit.PatientDelete.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientDelete</a><br/><a href="StructureDefinition-IHE.BasicAudit.PatientQuery.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientQuery</a><br/><a href="StructureDefinition-IHE.IUA.71.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.IUA.71</a><br/><a href="StructureDefinition-IHE.BasicAudit.OAUTHaccessTokenUse.Comprehensive.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.OAUTHaccessTokenUse.Comprehensive</a><br/><a href="StructureDefinition-IHE.BasicAudit.OAUTHaccessTokenUse.Minimal.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.OAUTHaccessTokenUse.Minimal</a><br/><a href="StructureDefinition-IHE.BasicAudit.OAUTHaccessTokenUse.Opaque.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.OAUTHaccessTokenUse.Opaque</a><br/><a href="StructureDefinition-IHE.BasicAudit.SAMLaccessTokenUse.Comprehensive.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.SAMLaccessTokenUse.Comprehensive</a><br/><a href="StructureDefinition-IHE.BasicAudit.SAMLaccessTokenUse.Minimal.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.SAMLaccessTokenUse.Minimal</a><br/><a href="StructureDefinition-IHE.BasicAudit.AuthZconsent.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.AuthZconsent</a><br/><a href="StructureDefinition-IHE.BasicAudit.PrivacyDisclosure.Recipient.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PrivacyDisclosure.Recipient</a><br/><a href="StructureDefinition-IHE.BasicAudit.PrivacyDisclosure.Source.html">https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PrivacyDisclosure.Source</a></p></div></div><p/><div class="row"><div class="col-12"><span class="lead">Documentation</span><blockquote><div><p>For ATNA Record Audit Event [ITI-20] using FHIR. . Note that all BALP Content profiles are listed here.</p>
</div></blockquote></div></div></div></div></div></div>
</text>
<url
value="https://profiles.ihe.net/ITI/BALP/CapabilityStatement/IHE.BALP.AuditCreator"/>
<version value="1.1.4-current"/>
<name value="IHE_BALP_AuditCreator"/>
<title value="IHE BALP Audit Creator"/>
<status value="active"/>
<experimental value="false"/>
<date value="2022-10-28"/>
<publisher value="IHE IT Infrastructure Technical Committee"/>
<contact>
<name value="IHE IT Infrastructure Technical Committee"/>
<telecom>
<system value="url"/>
<value value="https://www.ihe.net/ihe_domains/it_infrastructure/"/>
</telecom>
<telecom>
<system value="email"/>
<value value="iti@ihe.net"/>
</telecom>
</contact>
<contact>
<name value="IHE IT Infrastructure Technical Committee"/>
<telecom>
<system value="email"/>
<value value="iti@ihe.net"/>
</telecom>
</contact>
<description
value="CapabilityStatement for [Audit Creator](volume-1.html#152111-audit-creator) Actor in [BALP](index.html).
This Actor is derived off of the **ATNA Secure Application** or **Secure Node** actor with **ATNA ATX:FHIR Feed Option** using ITI-20. "/>
<jurisdiction>
<coding>
<system value="http://unstats.un.org/unsd/methods/m49/m49.htm"/>
<code value="001"/>
</coding>
</jurisdiction>
<kind value="requirements"/>
<fhirVersion value="4.0.1"/>
<format value="application/fhir+xml"/>
<format value="application/fhir+json"/>
<rest>
<mode value="client"/>
<documentation
value="BALP **Audit Creator** will CREATE AuditEvent resources, and send them to the **Audit Record Repository** with **ATNA ATX:FHIR Feed Option** using ITI-20 FHIR support."/>
<security>
<description
value="[ATNA](https://profiles.ihe.net/ITI/TF/Volume1/ch-9.html) required, encouraged [IHE-IUA](https://profiles.ihe.net/ITI/IUA/index.html) or SMART-on-FHIR"/>
</security>
<resource>
<type value="AuditEvent"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Create"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Read"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Update"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Delete"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.Query"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientCreate"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientRead"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientUpdate"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientDelete"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PatientQuery"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.IUA.71"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.OAUTHaccessTokenUse.Comprehensive"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.OAUTHaccessTokenUse.Minimal"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.OAUTHaccessTokenUse.Opaque"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.SAMLaccessTokenUse.Comprehensive"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.SAMLaccessTokenUse.Minimal"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.AuthZconsent"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PrivacyDisclosure.Recipient"/>
<supportedProfile
value="https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.PrivacyDisclosure.Source"/>
<documentation
value="For ATNA Record Audit Event [ITI-20] using FHIR. . Note that all BALP Content profiles are listed here."/>
<interaction>
<code value="create"/>
</interaction>
</resource>
</rest>
</CapabilityStatement>