Basic Audit Log Patterns (BALP)
1.1.3 - Trial-Implementation International flag

This page is part of the IHE Basic Audit Log Patterns (BALP) (v1.1.3: Publication) based on FHIR (HL7® FHIR® Standard) R4. This is the current published version. For a full list of available versions, see the Directory of published versions

: Audit Example of a basic Authorization Deny access - JSON Representation

Raw json | Download


{
  "resourceType" : "AuditEvent",
  "id" : "ex-auditAuthZconsent-deny",
  "meta" : {
    "profile" : [
      🔗 "https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.BasicAudit.AuthZconsent"
    ],
    "security" : [
      {
        "system" : "http://terminology.hl7.org/CodeSystem/v3-ActReason",
        "code" : "HTEST"
      }
    ]
  },
  "text" : {
    "status" : "generated",
    "div" : "<div xmlns=\"http://www.w3.org/1999/xhtml\"><p><b>Generated Narrative: AuditEvent</b><a name=\"ex-auditAuthZconsent-deny\"> </a></p><div style=\"display: inline-block; background-color: #d9e0e7; padding: 6px; margin: 4px; border: 1px solid #8da1b4; border-radius: 5px; line-height: 60%\"><p style=\"margin-bottom: 0px\">Resource AuditEvent &quot;ex-auditAuthZconsent-deny&quot; </p><p style=\"margin-bottom: 0px\">Profile: <a href=\"StructureDefinition-IHE.BasicAudit.AuthZconsent.html\">Basic AuditEvent pattern for when an Authorization permit is decided</a></p><p style=\"margin-bottom: 0px\">Security Labels: <span title=\"{http://terminology.hl7.org/CodeSystem/v3-ActReason http://terminology.hl7.org/CodeSystem/v3-ActReason}\">http://terminology.hl7.org/CodeSystem/v3-ActReason</span></p></div><p><b>type</b>: Security Alert (Details: DICOM code 110113 = 'Security Alert', stated as 'Security Alert')</p><p><b>subtype</b>: Authorization Decision using Roles and Consent (Details: https://profiles.ihe.net/ITI/BALP/CodeSystem/AuthZsubType code AuthZ-Consent = 'Authorization Decision using Roles and Consent', stated as 'null')</p><p><b>action</b>: E</p><p><b>recorded</b>: Dec 27, 2021, 3:49:00\u202fAM</p><p><b>outcome</b>: 8</p><p><b>outcomeDesc</b>: Consent denied access to this user</p><blockquote><p><b>agent</b></p><p><b>type</b>: Application <span style=\"background: LightGoldenRodYellow; margin: 4px; border: 1px solid khaki\"> (<a href=\"http://hl7.org/fhir/R4/codesystem-dicom-dcim.html\">DICOM</a>#110150)</span></p><p><b>who</b>: <a href=\"Device-ex-device.html\">Device/ex-device</a></p><p><b>requestor</b>: false</p><h3>Networks</h3><table class=\"grid\"><tr><td style=\"display: none\">-</td><td><b>Address</b></td><td><b>Type</b></td></tr><tr><td style=\"display: none\">*</td><td>2001:0db8:85a3:0000:0000:8a2e:0370:7334</td><td>2</td></tr></table></blockquote><blockquote><p><b>agent</b></p><p><b>type</b>: information recipient <span style=\"background: LightGoldenRodYellow; margin: 4px; border: 1px solid khaki\"> (<a href=\"http://terminology.hl7.org/5.3.0/CodeSystem-v3-ParticipationType.html\">ParticipationType</a>#IRCP)</span></p><p><b>who</b>: <a href=\"Practitioner-ex-practitioner.html\">Practitioner/ex-practitioner</a></p><p><b>requestor</b>: true</p><p><b>purposeOfUse</b>: patient requested <span style=\"background: LightGoldenRodYellow; margin: 4px; border: 1px solid khaki\"> (<a href=\"http://terminology.hl7.org/5.3.0/CodeSystem-v3-ActReason.html\">ActReason</a>#PATRQT)</span></p></blockquote><blockquote><p><b>agent</b></p><p><b>type</b>: healthcare provider <span style=\"background: LightGoldenRodYellow; margin: 4px; border: 1px solid khaki\"> (<a href=\"http://terminology.hl7.org/5.3.0/CodeSystem-v3-RoleClass.html\">RoleClass</a>#PROV)</span></p><p><b>who</b>: <a href=\"Organization-ex-organization.html\">Organization/ex-organization</a> &quot;nowhere&quot;</p><p><b>requestor</b>: false</p></blockquote><blockquote><p><b>agent</b></p><p><b>type</b>: Authorization Server <span style=\"background: LightGoldenRodYellow; margin: 4px; border: 1px solid khaki\"> (<a href=\"http://terminology.hl7.org/5.3.0/CodeSystem-extra-security-role-type.html\">Security Role Type</a>#authserver)</span></p><p><b>who</b>: <a href=\"Device-ex-authz.html\">Device/ex-authz</a></p><p><b>requestor</b>: false</p></blockquote><h3>Sources</h3><table class=\"grid\"><tr><td style=\"display: none\">-</td><td><b>Site</b></td><td><b>Observer</b></td><td><b>Type</b></td></tr><tr><td style=\"display: none\">*</td><td>server.example.com</td><td><a href=\"Device-ex-authz.html\">Device/ex-authz</a></td><td>Security Server (Details: http://terminology.hl7.org/CodeSystem/security-source-type code 6 = 'Security Server', stated as 'Security Server')</td></tr></table><blockquote><p><b>entity</b></p><p><b>what</b>: <a href=\"Patient-ex-patient.html\">Patient/ex-patient</a> &quot; SCHMIDT&quot;</p><p><b>type</b>: Person (Details: http://terminology.hl7.org/CodeSystem/audit-entity-type code 1 = 'Person', stated as 'null')</p><p><b>role</b>: Patient (Details: http://terminology.hl7.org/CodeSystem/object-role code 1 = 'Patient', stated as 'Patient')</p></blockquote><blockquote><p><b>entity</b></p><p><b>what</b>: <a href=\"Consent-ex-consent.html\">Consent/ex-consent</a></p><p><b>type</b>: Consent (Details: http://hl7.org/fhir/resource-types code Consent = 'Consent', stated as 'null')</p></blockquote></div>"
  },
  "type" : {
    "system" : "http://dicom.nema.org/resources/ontology/DCM",
    "code" : "110113",
    "display" : "Security Alert"
  },
  "subtype" : [
    {
      "system" : "https://profiles.ihe.net/ITI/BALP/CodeSystem/AuthZsubType",
      "code" : "AuthZ-Consent"
    }
  ],
  "action" : "E",
  "recorded" : "2021-12-27T09:49:00.000Z",
  "outcome" : "8",
  "outcomeDesc" : "Consent denied access to this user",
  "agent" : [
    {
      "type" : {
        "coding" : [
          {
            "system" : "http://dicom.nema.org/resources/ontology/DCM",
            "code" : "110150"
          }
        ]
      },
      "who" : {
        🔗 "reference" : "Device/ex-device"
      },
      "requestor" : false,
      "network" : {
        "address" : "2001:0db8:85a3:0000:0000:8a2e:0370:7334",
        "type" : "2"
      }
    },
    {
      "type" : {
        "coding" : [
          {
            "system" : "http://terminology.hl7.org/CodeSystem/v3-ParticipationType",
            "code" : "IRCP"
          }
        ]
      },
      "who" : {
        🔗 "reference" : "Practitioner/ex-practitioner"
      },
      "requestor" : true,
      "purposeOfUse" : [
        {
          "coding" : [
            {
              "system" : "http://terminology.hl7.org/CodeSystem/v3-ActReason",
              "code" : "PATRQT"
            }
          ]
        }
      ]
    },
    {
      "type" : {
        "coding" : [
          {
            "system" : "http://terminology.hl7.org/CodeSystem/v3-RoleClass",
            "code" : "PROV"
          }
        ]
      },
      "who" : {
        🔗 "reference" : "Organization/ex-organization"
      },
      "requestor" : false
    },
    {
      "type" : {
        "coding" : [
          {
            "system" : "http://terminology.hl7.org/CodeSystem/extra-security-role-type",
            "code" : "authserver"
          }
        ]
      },
      "who" : {
        🔗 "reference" : "Device/ex-authz"
      },
      "requestor" : false
    }
  ],
  "source" : {
    "site" : "server.example.com",
    "observer" : {
      🔗 "reference" : "Device/ex-authz"
    },
    "type" : [
      {
        "system" : "http://terminology.hl7.org/CodeSystem/security-source-type",
        "code" : "6",
        "display" : "Security Server"
      }
    ]
  },
  "entity" : [
    {
      "what" : {
        🔗 "reference" : "Patient/ex-patient"
      },
      "type" : {
        "system" : "http://terminology.hl7.org/CodeSystem/audit-entity-type",
        "code" : "1"
      },
      "role" : {
        "system" : "http://terminology.hl7.org/CodeSystem/object-role",
        "code" : "1",
        "display" : "Patient"
      }
    },
    {
      "what" : {
        🔗 "reference" : "Consent/ex-consent"
      },
      "type" : {
        "system" : "http://hl7.org/fhir/resource-types",
        "code" : "Consent"
      }
    }
  ]
}