Basic Audit Log Patterns (BALP)
1.1.3 - Trial-Implementation
This page is part of the IHE Basic Audit Log Patterns (BALP) (v1.1.3: Publication) based on FHIR (HL7® FHIR® Standard) R4. This is the current published version. For a full list of available versions, see the Directory of published versions
Server - Audit Example of a basic patient identifiable Query (GET)
Audit Example for a RESTful Query using GET with a patient subject, recorded by the Server
The http GET requested
GET test.fhir.org/r4/Observation?patient=ex-patient&_lastUpdated=gt2020-11-06T21:52:30.300Z&_sort=_lastUpdated&_count=10
Accept: application/fhir+json; fhirVersion=4.0
X-Request-Id: cc6d168e-5871-11ec-bf63-0242ac130002
Generated Narrative: AuditEvent
Resource AuditEvent "ex-auditBasicQueryGetServer"
Profile: Basic AuditEvent for a successful Query with Patient
Security Labels: http://terminology.hl7.org/CodeSystem/v3-ActReason
type: Restful Operation (Details: http://terminology.hl7.org/CodeSystem/audit-event-type code rest = 'RESTful Operation', stated as 'Restful Operation')
subtype: search (Details: http://hl7.org/fhir/restful-interaction code search = 'search', stated as 'search')
action: E
recorded: Apr 29, 2020, 4:49:00 AM
outcome: 0
agent
type: Source Role ID (DICOM#110153)
who: : myMachine.example.org
requestor: false
Networks
Address Type 2001:0db8:85a3:0000:0000:8a2e:0370:7334 2
agent
type: Destination Role ID (DICOM#110152)
who: Device/ex-device
requestor: false
Networks
Address Type http://server.example.com/fhir 5
agent
type: information recipient (ParticipationType#IRCP)
who: : John Smith
requestor: true
Site | Observer | Type |
server.example.com | Device/ex-device | Application Server (Details: http://terminology.hl7.org/CodeSystem/security-source-type code 4 = 'Application Server', stated as 'Application Server') |
entity
type: System Object (Details: http://terminology.hl7.org/CodeSystem/audit-entity-type code 2 = 'System Object', stated as 'System Object')
role: Query (Details: http://terminology.hl7.org/CodeSystem/object-role code 24 = 'Query', stated as 'Query')
description: GET test.fhir.org/r4/Observation?patient=ex-patient&_lastUpdated=gt2020-11-06T21:52:30.300Z&_sort=_lastUpdated&_count=10 Accept: application/fhir+json; fhirVersion=4.0 X-Request-Id: cc6d168e-5871-11ec-bf63-0242ac130002
query: (base64 data - 218 bytes)
entity
what: Patient/ex-patient " SCHMIDT"
type: Person (Details: http://terminology.hl7.org/CodeSystem/audit-entity-type code 1 = 'Person', stated as 'Person')
role: Patient (Details: http://terminology.hl7.org/CodeSystem/object-role code 1 = 'Patient', stated as 'Patient')
entity
what: cc6d168e-5871-11ec-bf63-0242ac130002
type: transport specific unique identifier where http X-Request-Id is used (Details: https://profiles.ihe.net/ITI/BALP/CodeSystem/BasicAuditEntityType code XrequestId = 'transport specific unique identifier where http X-Request-Id is used', stated as 'null')