IHE IUA ITI-71 AuditEvent for a successful Get Access Token - Basic Audit Log Patterns (BALP) v1.1.3

This page is part of the IHE Basic Audit Log Patterns (BALP) (v1.1.3: Publication) based on FHIR (HL7® FHIR® Standard) R4. This is the current published version. For a full list of available versions, see the Directory of published versions

Resource Profile: IHE IUA ITI-71 AuditEvent for a successful Get Access Token

Official URL: https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.IUA.71				Version: 1.1.3
Active as of 2024-02-14				Computable Name: AuditIUAgetAccessToken

Defines constraints on the AuditEvent Resource to record when a ITI-71 - Get Access Token succeeds

This AuditEvent is recorded by Authorization Client and/or Authorization Server that are grouped with ATNA Secure Node or Secure Application.

User Authenticated event
ITI-71 subtype
2 or 3 agents
- client -
- auth-server
- user user
1 entity
- the access token request

Usage:

This Resource Profile is not used by any profiles in this Implementation Guide

Formal Views of Profile Content

Description of Profiles, Differentials, Snapshots and how the different presentations work.

Differential Table
Key Elements Table
Snapshot Table
Statistics/References
All

This structure is derived from AuditEvent

Name	Flags	Card.	Type	Description & Constraints
AuditEvent		0..*	AuditEvent	Event record kept for security purposes
type		1..1	Coding	Type/identifier of event Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://dicom.nema.org/resources/ontology/DCM
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 110114
subtype		1..1	Coding	More specific type/id for the event Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: urn:ihe:event-type-code
code		1..1	code	Symbol in syntax defined by the system Fixed Value: ITI-71
action		0..1	code	Type of action performed during the event Required Pattern: E
outcome		1..1	code	Whether the event succeeded or failed Required Pattern: 0
Slices for agent		2..3	BackboneElement	Actor involved in the event Slice: Unordered, Closed by pattern:type
agent:client		1..1	BackboneElement	Actor involved in the event
type		1..1	CodeableConcept	How agent participated Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://dicom.nema.org/resources/ontology/DCM
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 110150
who		1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
media		0..0
network		1..1	BackboneElement	Logical network location for application activity
agent:auth-server		1..1	BackboneElement	Actor involved in the event
type		1..1	CodeableConcept	How agent participated Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: https://profiles.ihe.net/ITI/BALP/CodeSystem/UserAgentTypes
code		1..1	code	Symbol in syntax defined by the system Fixed Value: AuthzOauthService
who		1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
media		0..0
network		1..1	BackboneElement	Logical network location for application activity
agent:user		0..1	BackboneElement	Actor involved in the event
type		1..1	CodeableConcept	How agent participated Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
code		1..1	code	Symbol in syntax defined by the system Fixed Value: IRCP
role	S	0..*	CodeableConcept	Agent role in the event
who		1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
altId		0..0
name	S	0..1	string	Human friendly name for the agent
requestor		1..1	boolean	Whether user is initiator Required Pattern: true
media		0..0
network		0..0
purposeOfUse	S	0..*	CodeableConcept	Reason given for this user
source	S	1..1	BackboneElement	Audit Event Reporter
Slices for entity		1..1	BackboneElement	Data or objects used Slice: Unordered, Closed by pattern:role
entity:token-request		1..1	BackboneElement	Data or objects used
what		0..0
type		0..1	Coding	Type of entity involved Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 2
role		1..1	Coding	What role the entity played Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 24
query		1..1	base64Binary	contains the http request in raw form, without the code_verifier value
entity:token-response		0..1	BackboneElement	Data or objects used
what		1..1	Reference(Resource)	holds the token id issued
type		0..1	Coding	Type of entity involved Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 2
role		1..1	Coding	What role the entity played Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 13
detail		1..*	BackboneElement	holds the key values from the response
Documentation for this format

Name	Flags	Card.	Type	Description & Constraints
AuditEvent		0..*	AuditEvent	Event record kept for security purposes
implicitRules	?!Σ	0..1	uri	A set of rules under which this content was created
modifierExtension	?!	0..*	Extension	Extensions that cannot be ignored
type	Σ	1..1	Coding	Type/identifier of event Binding: AuditEventID (extensible): Type of event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://dicom.nema.org/resources/ontology/DCM
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 110114
subtype	Σ	1..1	Coding	More specific type/id for the event Binding: AuditEventSub-Type (extensible): Sub-type of event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: urn:ihe:event-type-code
code		1..1	code	Symbol in syntax defined by the system Fixed Value: ITI-71
action	Σ	0..1	code	Type of action performed during the event Binding: AuditEventAction (required): Indicator for type of action performed during the event that generated the event. Required Pattern: E
recorded	Σ	1..1	instant	Time when the event was recorded
outcome	Σ	1..1	code	Whether the event succeeded or failed Binding: AuditEventOutcome (required): Indicates whether the event succeeded or failed. Required Pattern: 0
Slices for agent		2..3	BackboneElement	Actor involved in the event Slice: Unordered, Closed by pattern:type
agent:All Slices				Content/Rules for all slices
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
requestor	Σ	1..1	boolean	Whether user is initiator
agent:client		1..1	BackboneElement	Actor involved in the event
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		1..1	CodeableConcept	How agent participated Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event. Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://dicom.nema.org/resources/ontology/DCM
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 110150
who	Σ	1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
requestor	Σ	1..1	boolean	Whether user is initiator
network		1..1	BackboneElement	Logical network location for application activity
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
agent:auth-server		1..1	BackboneElement	Actor involved in the event
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		1..1	CodeableConcept	How agent participated Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event. Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: https://profiles.ihe.net/ITI/BALP/CodeSystem/UserAgentTypes
code		1..1	code	Symbol in syntax defined by the system Fixed Value: AuthzOauthService
who	Σ	1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
requestor	Σ	1..1	boolean	Whether user is initiator
network		1..1	BackboneElement	Logical network location for application activity
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
agent:user		0..1	BackboneElement	Actor involved in the event
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		1..1	CodeableConcept	How agent participated Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event. Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
code		1..1	code	Symbol in syntax defined by the system Fixed Value: IRCP
role	S	0..*	CodeableConcept	Agent role in the event Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.
who	Σ	1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
name	S	0..1	string	Human friendly name for the agent
requestor	Σ	1..1	boolean	Whether user is initiator Required Pattern: true
purposeOfUse	S	0..*	CodeableConcept	Reason given for this user Binding: PurposeOfUse (extensible): The reason the activity took place.
source	S	1..1	BackboneElement	Audit Event Reporter
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
observer	Σ	1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	The identity of source detecting the event
Slices for entity	C	1..1	BackboneElement	Data or objects used Slice: Unordered, Closed by pattern:role
entity:All Slices				Content/Rules for all slices
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
entity:token-request	C	1..1	BackboneElement	Data or objects used
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		0..1	Coding	Type of entity involved Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 2
role		1..1	Coding	What role the entity played Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 24
query	ΣC	1..1	base64Binary	contains the http request in raw form, without the code_verifier value
entity:token-response	C	0..1	BackboneElement	Data or objects used
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
what	Σ	1..1	Reference(Resource)	holds the token id issued
type		0..1	Coding	Type of entity involved Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 2
role		1..1	Coding	What role the entity played Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 13
detail		1..*	BackboneElement	holds the key values from the response
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		1..1	string	Name of the property
value[x]		1..1		Property value
valueString			string
valueBase64Binary			base64Binary
Documentation for this format

Terminology Bindings

Path	Conformance	ValueSet / Code	URI
AuditEvent.type	extensible	Pattern: 110114 `http://hl7.org/fhir/ValueSet/audit-event-type` from the FHIR Standard
AuditEvent.subtype	extensible	Pattern: ITI-71 `http://hl7.org/fhir/ValueSet/audit-event-sub-type` from the FHIR Standard
AuditEvent.action	required	Pattern: E `http://hl7.org/fhir/ValueSet/audit-event-action\|4.0.1` from the FHIR Standard
AuditEvent.outcome	required	Pattern: 0 `http://hl7.org/fhir/ValueSet/audit-event-outcome\|4.0.1` from the FHIR Standard
AuditEvent.agent:client.type	extensible	Pattern: 110150 `http://hl7.org/fhir/ValueSet/participation-role-type` from the FHIR Standard
AuditEvent.agent:auth-server.type	extensible	Pattern: AuthzOauthService `http://hl7.org/fhir/ValueSet/participation-role-type` from the FHIR Standard
AuditEvent.agent:user.type	extensible	Pattern: IRCP `http://hl7.org/fhir/ValueSet/participation-role-type` from the FHIR Standard
AuditEvent.agent:user.role	example	SecurityRoleType `http://hl7.org/fhir/ValueSet/security-role-type` from the FHIR Standard
AuditEvent.agent:user.purposeOfUse	extensible	PurposeOfUse `http://terminology.hl7.org/ValueSet/v3-PurposeOfUse`
AuditEvent.entity:token-request.type	extensible	Pattern: 2 `http://hl7.org/fhir/ValueSet/audit-entity-type` from the FHIR Standard
AuditEvent.entity:token-request.role	extensible	Pattern: 24 `http://hl7.org/fhir/ValueSet/object-role` from the FHIR Standard
AuditEvent.entity:token-response.type	extensible	Pattern: 2 `http://hl7.org/fhir/ValueSet/audit-entity-type` from the FHIR Standard
AuditEvent.entity:token-response.role	extensible	Pattern: 13 `http://hl7.org/fhir/ValueSet/object-role` from the FHIR Standard

Description & Constraints

AuditEvent

0..*

AuditEvent

Event record kept for security purposes

0..1

Logical id of this artifact

Meta

Metadata about the resource

implicitRules

?!Σ

0..1

uri

A set of rules under which this content was created

language

0..1

code

Language of the resource content
Binding: CommonLanguages (preferred): A human language.

Additional Bindings

Purpose

AllLanguages

Max Binding

text

0..1

Narrative

Text summary of the resource, for human interpretation

contained

0..*

Resource

Contained, inline Resources

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

0..*

Extension

Extensions that cannot be ignored

type

1..1

Coding

Type/identifier of event
Binding: AuditEventID (extensible): Type of event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://dicom.nema.org/resources/ontology/DCM

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 110114

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

subtype

1..1

Coding

More specific type/id for the event
Binding: AuditEventSub-Type (extensible): Sub-type of event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: urn:ihe:event-type-code

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: ITI-71

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

action

0..1

code

Type of action performed during the event
Binding: AuditEventAction (required): Indicator for type of action performed during the event that generated the event.

Required Pattern: E

period

0..1

Period

When the activity occurred

recorded

1..1

instant

Time when the event was recorded

outcome

1..1

code

Whether the event succeeded or failed
Binding: AuditEventOutcome (required): Indicates whether the event succeeded or failed.

Required Pattern: 0

outcomeDesc

0..1

string

Description of the event outcome

purposeOfEvent

0..*

CodeableConcept

The purposeOfUse of the event
Binding: PurposeOfUse (extensible): The reason the activity took place.

Slices for agent

2..3

BackboneElement

Actor involved in the event
Slice: Unordered, Closed by pattern:type

agent:All Slices

Content/Rules for all slices

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

0..1

CodeableConcept

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

role

0..*

CodeableConcept

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

0..1

Identifier of who

altId

0..1

string

Alternative User identity

name

0..1

string

Human friendly name for the agent

requestor

1..1

boolean

Whether user is initiator

location

0..1

Reference(Location)

Where

policy

0..*

uri

Policy that authorized event

media

0..1

Coding

Type of media
Binding: MediaTypeCode (extensible): Used when the event is about exporting/importing onto media.

network

0..1

BackboneElement

Logical network location for application activity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

address

0..1

string

Identifier for the network access point of the user device

type

0..1

code

The type of network access point
Binding: AuditEventAgentNetworkType (required): The type of network access point of this agent in the audit event.

purposeOfUse

0..*

CodeableConcept

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent:client

1..1

BackboneElement

Actor involved in the event

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

CodeableConcept

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

coding

1..*

Coding

Code defined by a terminology system
Fixed Value: (complex)

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://dicom.nema.org/resources/ontology/DCM

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 110150

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

text

0..1

string

Plain text representation of the concept

role

0..*

CodeableConcept

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

1..1

Identifier of who

altId

0..1

string

Alternative User identity

name

0..1

string

Human friendly name for the agent

requestor

1..1

boolean

Whether user is initiator

location

0..1

Reference(Location)

Where

policy

0..*

uri

Policy that authorized event

network

1..1

BackboneElement

Logical network location for application activity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

address

0..1

string

Identifier for the network access point of the user device

type

0..1

code

The type of network access point
Binding: AuditEventAgentNetworkType (required): The type of network access point of this agent in the audit event.

purposeOfUse

0..*

CodeableConcept

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent:auth-server

1..1

BackboneElement

Actor involved in the event

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

CodeableConcept

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

coding

1..*

Coding

Code defined by a terminology system
Fixed Value: (complex)

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: https://profiles.ihe.net/ITI/BALP/CodeSystem/UserAgentTypes

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: AuthzOauthService

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

text

0..1

string

Plain text representation of the concept

role

0..*

CodeableConcept

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

1..1

Identifier of who

altId

0..1

string

Alternative User identity

name

0..1

string

Human friendly name for the agent

requestor

1..1

boolean

Whether user is initiator

location

0..1

Reference(Location)

Where

policy

0..*

uri

Policy that authorized event

network

1..1

BackboneElement

Logical network location for application activity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

address

0..1

string

Identifier for the network access point of the user device

type

0..1

code

The type of network access point
Binding: AuditEventAgentNetworkType (required): The type of network access point of this agent in the audit event.

purposeOfUse

0..*

CodeableConcept

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent:user

0..1

BackboneElement

Actor involved in the event

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

CodeableConcept

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

coding

1..*

Coding

Code defined by a terminology system
Fixed Value: (complex)

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: IRCP

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

text

0..1

string

Plain text representation of the concept

role

0..*

CodeableConcept

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

1..1

Identifier of who

name

0..1

string

Human friendly name for the agent

requestor

1..1

boolean

Whether user is initiator
Required Pattern: true

location

0..1

Reference(Location)

Where

policy

0..*

uri

Policy that authorized event

purposeOfUse

0..*

CodeableConcept

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

source

1..1

BackboneElement

Audit Event Reporter

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

site

0..1

string

Logical source location within the enterprise

observer

1..1

The identity of source detecting the event

type

0..*

Coding

The type of source where event originated
Binding: AuditEventSourceType (extensible): Code specifying the type of system that detected and recorded the event.

Slices for entity

1..1

BackboneElement

Data or objects used
Slice: Unordered, Closed by pattern:role

entity:All Slices

Content/Rules for all slices

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

what

0..1

Reference(Resource)

Specific instance of resource

type

0..1

Coding

Type of entity involved
Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event.

role

0..1

Coding

What role the entity played
Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event.

lifecycle

0..1

Coding

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

securityLabel

0..*

Coding

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

name

ΣC

0..1

string

Descriptor for entity

description

0..1

string

Descriptive text

query

ΣC

0..1

base64Binary

Query parameters

detail

0..*

BackboneElement

Additional Information about the entity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

string

Name of the property

value[x]

1..1

Property value

valueString

valueBase64Binary

1..1

Data or objects used

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

0..1

Coding

Type of entity involved
Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 2

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

role

1..1

Coding

What role the entity played
Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/object-role

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 24

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

lifecycle

0..1

Coding

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

securityLabel

0..*

Coding

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

name

ΣC

0..1

string

Descriptor for entity

description

0..1

string

Descriptive text

query

ΣC

1..1

base64Binary

contains the http request in raw form, without the code_verifier value

detail

0..*

BackboneElement

Additional Information about the entity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

string

Name of the property

value[x]

1..1

Property value

valueString

string

valueBase64Binary

base64Binary

entity:token-response

0..1

BackboneElement

Data or objects used

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

what

1..1

Reference(Resource)

holds the token id issued

type

0..1

Coding

Type of entity involved
Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 2

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

role

1..1

Coding

What role the entity played
Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/object-role

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 13

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

lifecycle

0..1

Coding

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

securityLabel

0..*

Coding

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

name

ΣC

0..1

string

Descriptor for entity

description

0..1

string

Descriptive text

query

ΣC

0..1

base64Binary

Query parameters

detail

1..*

BackboneElement

holds the key values from the response

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

string

Name of the property

value[x]

1..1

Property value

valueString

string

valueBase64Binary

base64Binary

Documentation for this format

Terminology Bindings

Path Conformance ValueSet / Code URI

AuditEvent.language

preferred

CommonLanguages

Additional Bindings

Purpose

AllLanguages

Max Binding

http://hl7.org/fhir/ValueSet/languages

from the FHIR Standard

AuditEvent.type

extensible

Pattern: 110114

http://hl7.org/fhir/ValueSet/audit-event-type

from the FHIR Standard

AuditEvent.subtype

extensible

Pattern: ITI-71

http://hl7.org/fhir/ValueSet/audit-event-sub-type

from the FHIR Standard

AuditEvent.action

required

Pattern: E

http://hl7.org/fhir/ValueSet/audit-event-action|4.0.1

from the FHIR Standard

AuditEvent.outcome

required

Pattern: 0

http://hl7.org/fhir/ValueSet/audit-event-outcome|4.0.1

from the FHIR Standard

AuditEvent.purposeOfEvent

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent.type

extensible

ParticipationRoleType

http://hl7.org/fhir/ValueSet/participation-role-type

from the FHIR Standard

AuditEvent.agent.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

from the FHIR Standard

AuditEvent.agent.media

extensible

MediaTypeCode

http://hl7.org/fhir/ValueSet/dicm-405-mediatype

from the FHIR Standard

AuditEvent.agent.network.type

required

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.0.1

from the FHIR Standard

AuditEvent.agent.purposeOfUse

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent:client.type

extensible

Pattern: 110150

http://hl7.org/fhir/ValueSet/participation-role-type

from the FHIR Standard

AuditEvent.agent:client.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

from the FHIR Standard

AuditEvent.agent:client.network.type

required

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.0.1

from the FHIR Standard

AuditEvent.agent:client.purposeOfUse

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent:auth-server.type

extensible

Pattern: AuthzOauthService

http://hl7.org/fhir/ValueSet/participation-role-type

from the FHIR Standard

AuditEvent.agent:auth-server.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

from the FHIR Standard

AuditEvent.agent:auth-server.network.type

required

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.0.1

from the FHIR Standard

AuditEvent.agent:auth-server.purposeOfUse

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent:user.type

extensible

Pattern: IRCP

http://hl7.org/fhir/ValueSet/participation-role-type

from the FHIR Standard

AuditEvent.agent:user.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

from the FHIR Standard

AuditEvent.agent:user.network.type

required

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.0.1

from the FHIR Standard

AuditEvent.agent:user.purposeOfUse

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.source.type

extensible

AuditEventSourceType

http://hl7.org/fhir/ValueSet/audit-source-type

from the FHIR Standard

AuditEvent.entity.type

extensible

AuditEventEntityType

http://hl7.org/fhir/ValueSet/audit-entity-type

from the FHIR Standard

AuditEvent.entity.role

extensible

AuditEventEntityRole

http://hl7.org/fhir/ValueSet/object-role

from the FHIR Standard

AuditEvent.entity.lifecycle

extensible

ObjectLifecycleEvents

http://hl7.org/fhir/ValueSet/object-lifecycle-events

from the FHIR Standard

AuditEvent.entity.securityLabel

extensible

All Security Labels

http://hl7.org/fhir/ValueSet/security-labels

from the FHIR Standard

AuditEvent.entity:token-request.type

extensible

Pattern: 2

http://hl7.org/fhir/ValueSet/audit-entity-type

from the FHIR Standard

AuditEvent.entity:token-request.role

extensible

Pattern: 24

http://hl7.org/fhir/ValueSet/object-role

from the FHIR Standard

AuditEvent.entity:token-request.lifecycle

extensible

ObjectLifecycleEvents

http://hl7.org/fhir/ValueSet/object-lifecycle-events

from the FHIR Standard

AuditEvent.entity:token-request.securityLabel

extensible

All Security Labels

http://hl7.org/fhir/ValueSet/security-labels

from the FHIR Standard

AuditEvent.entity:token-response.type

extensible

Pattern: 2

http://hl7.org/fhir/ValueSet/audit-entity-type

from the FHIR Standard

AuditEvent.entity:token-response.role

extensible

Pattern: 13

http://hl7.org/fhir/ValueSet/object-role

from the FHIR Standard

AuditEvent.entity:token-response.lifecycle

extensible

ObjectLifecycleEvents

http://hl7.org/fhir/ValueSet/object-lifecycle-events

from the FHIR Standard

AuditEvent.entity:token-response.securityLabel

extensible

All Security Labels

http://hl7.org/fhir/ValueSet/security-labels

from the FHIR Standard

This structure is derived from AuditEvent

Summary

Mandatory: 14 elements (5 nested mandatory elements)
Must-Support: 4 elements
Prohibited: 6 elements

Slices

This structure defines the following Slices:

The element AuditEvent.agent is sliced based on the value of pattern:type (Closed)
The element AuditEvent.entity is sliced based on the value of pattern:role (Closed)

Differential View

This structure is derived from AuditEvent

Name	Flags	Card.	Type	Description & Constraints
AuditEvent		0..*	AuditEvent	Event record kept for security purposes
type		1..1	Coding	Type/identifier of event Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://dicom.nema.org/resources/ontology/DCM
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 110114
subtype		1..1	Coding	More specific type/id for the event Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: urn:ihe:event-type-code
code		1..1	code	Symbol in syntax defined by the system Fixed Value: ITI-71
action		0..1	code	Type of action performed during the event Required Pattern: E
outcome		1..1	code	Whether the event succeeded or failed Required Pattern: 0
Slices for agent		2..3	BackboneElement	Actor involved in the event Slice: Unordered, Closed by pattern:type
agent:client		1..1	BackboneElement	Actor involved in the event
type		1..1	CodeableConcept	How agent participated Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://dicom.nema.org/resources/ontology/DCM
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 110150
who		1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
media		0..0
network		1..1	BackboneElement	Logical network location for application activity
agent:auth-server		1..1	BackboneElement	Actor involved in the event
type		1..1	CodeableConcept	How agent participated Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: https://profiles.ihe.net/ITI/BALP/CodeSystem/UserAgentTypes
code		1..1	code	Symbol in syntax defined by the system Fixed Value: AuthzOauthService
who		1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
media		0..0
network		1..1	BackboneElement	Logical network location for application activity
agent:user		0..1	BackboneElement	Actor involved in the event
type		1..1	CodeableConcept	How agent participated Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
code		1..1	code	Symbol in syntax defined by the system Fixed Value: IRCP
role	S	0..*	CodeableConcept	Agent role in the event
who		1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
altId		0..0
name	S	0..1	string	Human friendly name for the agent
requestor		1..1	boolean	Whether user is initiator Required Pattern: true
media		0..0
network		0..0
purposeOfUse	S	0..*	CodeableConcept	Reason given for this user
source	S	1..1	BackboneElement	Audit Event Reporter
Slices for entity		1..1	BackboneElement	Data or objects used Slice: Unordered, Closed by pattern:role
entity:token-request		1..1	BackboneElement	Data or objects used
what		0..0
type		0..1	Coding	Type of entity involved Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 2
role		1..1	Coding	What role the entity played Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 24
query		1..1	base64Binary	contains the http request in raw form, without the code_verifier value
entity:token-response		0..1	BackboneElement	Data or objects used
what		1..1	Reference(Resource)	holds the token id issued
type		0..1	Coding	Type of entity involved Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 2
role		1..1	Coding	What role the entity played Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 13
detail		1..*	BackboneElement	holds the key values from the response
Documentation for this format

Key Elements View

Name	Flags	Card.	Type	Description & Constraints
AuditEvent		0..*	AuditEvent	Event record kept for security purposes
implicitRules	?!Σ	0..1	uri	A set of rules under which this content was created
modifierExtension	?!	0..*	Extension	Extensions that cannot be ignored
type	Σ	1..1	Coding	Type/identifier of event Binding: AuditEventID (extensible): Type of event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://dicom.nema.org/resources/ontology/DCM
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 110114
subtype	Σ	1..1	Coding	More specific type/id for the event Binding: AuditEventSub-Type (extensible): Sub-type of event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: urn:ihe:event-type-code
code		1..1	code	Symbol in syntax defined by the system Fixed Value: ITI-71
action	Σ	0..1	code	Type of action performed during the event Binding: AuditEventAction (required): Indicator for type of action performed during the event that generated the event. Required Pattern: E
recorded	Σ	1..1	instant	Time when the event was recorded
outcome	Σ	1..1	code	Whether the event succeeded or failed Binding: AuditEventOutcome (required): Indicates whether the event succeeded or failed. Required Pattern: 0
Slices for agent		2..3	BackboneElement	Actor involved in the event Slice: Unordered, Closed by pattern:type
agent:All Slices				Content/Rules for all slices
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
requestor	Σ	1..1	boolean	Whether user is initiator
agent:client		1..1	BackboneElement	Actor involved in the event
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		1..1	CodeableConcept	How agent participated Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event. Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://dicom.nema.org/resources/ontology/DCM
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 110150
who	Σ	1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
requestor	Σ	1..1	boolean	Whether user is initiator
network		1..1	BackboneElement	Logical network location for application activity
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
agent:auth-server		1..1	BackboneElement	Actor involved in the event
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		1..1	CodeableConcept	How agent participated Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event. Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: https://profiles.ihe.net/ITI/BALP/CodeSystem/UserAgentTypes
code		1..1	code	Symbol in syntax defined by the system Fixed Value: AuthzOauthService
who	Σ	1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
requestor	Σ	1..1	boolean	Whether user is initiator
network		1..1	BackboneElement	Logical network location for application activity
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
agent:user		0..1	BackboneElement	Actor involved in the event
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		1..1	CodeableConcept	How agent participated Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event. Required Pattern: At least the following
coding		1..*	Coding	Code defined by a terminology system Fixed Value: (complex)
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
code		1..1	code	Symbol in syntax defined by the system Fixed Value: IRCP
role	S	0..*	CodeableConcept	Agent role in the event Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.
who	Σ	1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Identifier of who
name	S	0..1	string	Human friendly name for the agent
requestor	Σ	1..1	boolean	Whether user is initiator Required Pattern: true
purposeOfUse	S	0..*	CodeableConcept	Reason given for this user Binding: PurposeOfUse (extensible): The reason the activity took place.
source	S	1..1	BackboneElement	Audit Event Reporter
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
observer	Σ	1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	The identity of source detecting the event
Slices for entity	C	1..1	BackboneElement	Data or objects used Slice: Unordered, Closed by pattern:role
entity:All Slices				Content/Rules for all slices
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
entity:token-request	C	1..1	BackboneElement	Data or objects used
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		0..1	Coding	Type of entity involved Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 2
role		1..1	Coding	What role the entity played Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 24
query	ΣC	1..1	base64Binary	contains the http request in raw form, without the code_verifier value
entity:token-response	C	0..1	BackboneElement	Data or objects used
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
what	Σ	1..1	Reference(Resource)	holds the token id issued
type		0..1	Coding	Type of entity involved Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 2
role		1..1	Coding	What role the entity played Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event. Required Pattern: At least the following
system		1..1	uri	Identity of the terminology system Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
code		1..1	code	Symbol in syntax defined by the system Fixed Value: 13
detail		1..*	BackboneElement	holds the key values from the response
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
type		1..1	string	Name of the property
value[x]		1..1		Property value
valueString			string
valueBase64Binary			base64Binary
Documentation for this format

Terminology Bindings

Path	Conformance	ValueSet / Code	URI
AuditEvent.type	extensible	Pattern: 110114 `http://hl7.org/fhir/ValueSet/audit-event-type` from the FHIR Standard
AuditEvent.subtype	extensible	Pattern: ITI-71 `http://hl7.org/fhir/ValueSet/audit-event-sub-type` from the FHIR Standard
AuditEvent.action	required	Pattern: E `http://hl7.org/fhir/ValueSet/audit-event-action\|4.0.1` from the FHIR Standard
AuditEvent.outcome	required	Pattern: 0 `http://hl7.org/fhir/ValueSet/audit-event-outcome\|4.0.1` from the FHIR Standard
AuditEvent.agent:client.type	extensible	Pattern: 110150 `http://hl7.org/fhir/ValueSet/participation-role-type` from the FHIR Standard
AuditEvent.agent:auth-server.type	extensible	Pattern: AuthzOauthService `http://hl7.org/fhir/ValueSet/participation-role-type` from the FHIR Standard
AuditEvent.agent:user.type	extensible	Pattern: IRCP `http://hl7.org/fhir/ValueSet/participation-role-type` from the FHIR Standard
AuditEvent.agent:user.role	example	SecurityRoleType `http://hl7.org/fhir/ValueSet/security-role-type` from the FHIR Standard
AuditEvent.agent:user.purposeOfUse	extensible	PurposeOfUse `http://terminology.hl7.org/ValueSet/v3-PurposeOfUse`
AuditEvent.entity:token-request.type	extensible	Pattern: 2 `http://hl7.org/fhir/ValueSet/audit-entity-type` from the FHIR Standard
AuditEvent.entity:token-request.role	extensible	Pattern: 24 `http://hl7.org/fhir/ValueSet/object-role` from the FHIR Standard
AuditEvent.entity:token-response.type	extensible	Pattern: 2 `http://hl7.org/fhir/ValueSet/audit-entity-type` from the FHIR Standard
AuditEvent.entity:token-response.role	extensible	Pattern: 13 `http://hl7.org/fhir/ValueSet/object-role` from the FHIR Standard

Snapshot View

Description & Constraints

AuditEvent

0..*

AuditEvent

Event record kept for security purposes

0..1

Logical id of this artifact

Meta

Metadata about the resource

implicitRules

?!Σ

0..1

uri

A set of rules under which this content was created

language

0..1

code

Language of the resource content
Binding: CommonLanguages (preferred): A human language.

Additional Bindings

Purpose

AllLanguages

Max Binding

text

0..1

Narrative

Text summary of the resource, for human interpretation

contained

0..*

Resource

Contained, inline Resources

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

0..*

Extension

Extensions that cannot be ignored

type

1..1

Coding

Type/identifier of event
Binding: AuditEventID (extensible): Type of event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://dicom.nema.org/resources/ontology/DCM

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 110114

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

subtype

1..1

Coding

More specific type/id for the event
Binding: AuditEventSub-Type (extensible): Sub-type of event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: urn:ihe:event-type-code

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: ITI-71

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

action

0..1

code

Type of action performed during the event
Binding: AuditEventAction (required): Indicator for type of action performed during the event that generated the event.

Required Pattern: E

period

0..1

Period

When the activity occurred

recorded

1..1

instant

Time when the event was recorded

outcome

1..1

code

Whether the event succeeded or failed
Binding: AuditEventOutcome (required): Indicates whether the event succeeded or failed.

Required Pattern: 0

outcomeDesc

0..1

string

Description of the event outcome

purposeOfEvent

0..*

CodeableConcept

The purposeOfUse of the event
Binding: PurposeOfUse (extensible): The reason the activity took place.

Slices for agent

2..3

BackboneElement

Actor involved in the event
Slice: Unordered, Closed by pattern:type

agent:All Slices

Content/Rules for all slices

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

0..1

CodeableConcept

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

role

0..*

CodeableConcept

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

0..1

Identifier of who

altId

0..1

string

Alternative User identity

name

0..1

string

Human friendly name for the agent

requestor

1..1

boolean

Whether user is initiator

location

0..1

Reference(Location)

Where

policy

0..*

uri

Policy that authorized event

media

0..1

Coding

Type of media
Binding: MediaTypeCode (extensible): Used when the event is about exporting/importing onto media.

network

0..1

BackboneElement

Logical network location for application activity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

address

0..1

string

Identifier for the network access point of the user device

type

0..1

code

The type of network access point
Binding: AuditEventAgentNetworkType (required): The type of network access point of this agent in the audit event.

purposeOfUse

0..*

CodeableConcept

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent:client

1..1

BackboneElement

Actor involved in the event

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

CodeableConcept

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

coding

1..*

Coding

Code defined by a terminology system
Fixed Value: (complex)

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://dicom.nema.org/resources/ontology/DCM

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 110150

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

text

0..1

string

Plain text representation of the concept

role

0..*

CodeableConcept

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

1..1

Identifier of who

altId

0..1

string

Alternative User identity

name

0..1

string

Human friendly name for the agent

requestor

1..1

boolean

Whether user is initiator

location

0..1

Reference(Location)

Where

policy

0..*

uri

Policy that authorized event

network

1..1

BackboneElement

Logical network location for application activity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

address

0..1

string

Identifier for the network access point of the user device

type

0..1

code

The type of network access point
Binding: AuditEventAgentNetworkType (required): The type of network access point of this agent in the audit event.

purposeOfUse

0..*

CodeableConcept

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent:auth-server

1..1

BackboneElement

Actor involved in the event

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

CodeableConcept

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

coding

1..*

Coding

Code defined by a terminology system
Fixed Value: (complex)

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: https://profiles.ihe.net/ITI/BALP/CodeSystem/UserAgentTypes

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: AuthzOauthService

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

text

0..1

string

Plain text representation of the concept

role

0..*

CodeableConcept

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

1..1

Identifier of who

altId

0..1

string

Alternative User identity

name

0..1

string

Human friendly name for the agent

requestor

1..1

boolean

Whether user is initiator

location

0..1

Reference(Location)

Where

policy

0..*

uri

Policy that authorized event

network

1..1

BackboneElement

Logical network location for application activity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

address

0..1

string

Identifier for the network access point of the user device

type

0..1

code

The type of network access point
Binding: AuditEventAgentNetworkType (required): The type of network access point of this agent in the audit event.

purposeOfUse

0..*

CodeableConcept

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent:user

0..1

BackboneElement

Actor involved in the event

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

CodeableConcept

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

coding

1..*

Coding

Code defined by a terminology system
Fixed Value: (complex)

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: IRCP

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

text

0..1

string

Plain text representation of the concept

role

0..*

CodeableConcept

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

1..1

Identifier of who

name

0..1

string

Human friendly name for the agent

requestor

1..1

boolean

Whether user is initiator
Required Pattern: true

location

0..1

Reference(Location)

Where

policy

0..*

uri

Policy that authorized event

purposeOfUse

0..*

CodeableConcept

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

source

1..1

BackboneElement

Audit Event Reporter

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

site

0..1

string

Logical source location within the enterprise

observer

1..1

The identity of source detecting the event

type

0..*

Coding

The type of source where event originated
Binding: AuditEventSourceType (extensible): Code specifying the type of system that detected and recorded the event.

Slices for entity

1..1

BackboneElement

Data or objects used
Slice: Unordered, Closed by pattern:role

entity:All Slices

Content/Rules for all slices

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

what

0..1

Reference(Resource)

Specific instance of resource

type

0..1

Coding

Type of entity involved
Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event.

role

0..1

Coding

What role the entity played
Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event.

lifecycle

0..1

Coding

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

securityLabel

0..*

Coding

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

name

ΣC

0..1

string

Descriptor for entity

description

0..1

string

Descriptive text

query

ΣC

0..1

base64Binary

Query parameters

detail

0..*

BackboneElement

Additional Information about the entity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

string

Name of the property

value[x]

1..1

Property value

valueString

valueBase64Binary

1..1

Data or objects used

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

0..1

Coding

Type of entity involved
Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 2

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

role

1..1

Coding

What role the entity played
Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/object-role

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 24

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

lifecycle

0..1

Coding

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

securityLabel

0..*

Coding

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

name

ΣC

0..1

string

Descriptor for entity

description

0..1

string

Descriptive text

query

ΣC

1..1

base64Binary

contains the http request in raw form, without the code_verifier value

detail

0..*

BackboneElement

Additional Information about the entity

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

string

Name of the property

value[x]

1..1

Property value

valueString

string

valueBase64Binary

base64Binary

entity:token-response

0..1

BackboneElement

Data or objects used

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

what

1..1

Reference(Resource)

holds the token id issued

type

0..1

Coding

Type of entity involved
Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 2

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

role

1..1

Coding

What role the entity played
Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event.

Required Pattern: At least the following

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

system

1..1

uri

Identity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/object-role

version

0..1

string

Version of the system - if relevant

code

1..1

code

Symbol in syntax defined by the system
Fixed Value: 13

display

0..1

string

Representation defined by the system

userSelected

0..1

boolean

If this coding was chosen directly by the user

lifecycle

0..1

Coding

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

securityLabel

0..*

Coding

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

name

ΣC

0..1

string

Descriptor for entity

description

0..1

string

Descriptive text

query

ΣC

0..1

base64Binary

Query parameters

detail

1..*

BackboneElement

holds the key values from the response

0..1

string

Unique id for inter-element referencing

extension

0..*

Extension

Additional content defined by implementations

modifierExtension

?!Σ

0..*

Extension

Extensions that cannot be ignored even if unrecognized

type

1..1

string

Name of the property

value[x]

1..1

Property value

valueString

string

valueBase64Binary

base64Binary

Documentation for this format

Terminology Bindings

Path Conformance ValueSet / Code URI

AuditEvent.language

preferred

CommonLanguages

Additional Bindings

Purpose

AllLanguages

Max Binding

http://hl7.org/fhir/ValueSet/languages

from the FHIR Standard

AuditEvent.type

extensible

Pattern: 110114

http://hl7.org/fhir/ValueSet/audit-event-type

from the FHIR Standard

AuditEvent.subtype

extensible

Pattern: ITI-71

http://hl7.org/fhir/ValueSet/audit-event-sub-type

from the FHIR Standard

AuditEvent.action

required

Pattern: E

http://hl7.org/fhir/ValueSet/audit-event-action|4.0.1

from the FHIR Standard

AuditEvent.outcome

required

Pattern: 0

http://hl7.org/fhir/ValueSet/audit-event-outcome|4.0.1

from the FHIR Standard

AuditEvent.purposeOfEvent

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent.type

extensible

ParticipationRoleType

http://hl7.org/fhir/ValueSet/participation-role-type

from the FHIR Standard

AuditEvent.agent.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

from the FHIR Standard

AuditEvent.agent.media

extensible

MediaTypeCode

http://hl7.org/fhir/ValueSet/dicm-405-mediatype

from the FHIR Standard

AuditEvent.agent.network.type

required

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.0.1

from the FHIR Standard

AuditEvent.agent.purposeOfUse

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent:client.type

extensible

Pattern: 110150

http://hl7.org/fhir/ValueSet/participation-role-type

from the FHIR Standard

AuditEvent.agent:client.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

from the FHIR Standard

AuditEvent.agent:client.network.type

required

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.0.1

from the FHIR Standard

AuditEvent.agent:client.purposeOfUse

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent:auth-server.type

extensible

Pattern: AuthzOauthService

http://hl7.org/fhir/ValueSet/participation-role-type

from the FHIR Standard

AuditEvent.agent:auth-server.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

from the FHIR Standard

AuditEvent.agent:auth-server.network.type

required

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.0.1

from the FHIR Standard

AuditEvent.agent:auth-server.purposeOfUse

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent:user.type

extensible

Pattern: IRCP

http://hl7.org/fhir/ValueSet/participation-role-type

from the FHIR Standard

AuditEvent.agent:user.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

from the FHIR Standard

AuditEvent.agent:user.network.type

required

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.0.1

from the FHIR Standard

AuditEvent.agent:user.purposeOfUse

extensible

PurposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.source.type

extensible

AuditEventSourceType

http://hl7.org/fhir/ValueSet/audit-source-type

from the FHIR Standard

AuditEvent.entity.type

extensible

AuditEventEntityType

http://hl7.org/fhir/ValueSet/audit-entity-type

from the FHIR Standard

AuditEvent.entity.role

extensible

AuditEventEntityRole

http://hl7.org/fhir/ValueSet/object-role

from the FHIR Standard

AuditEvent.entity.lifecycle

extensible

ObjectLifecycleEvents

http://hl7.org/fhir/ValueSet/object-lifecycle-events

from the FHIR Standard

AuditEvent.entity.securityLabel

extensible

All Security Labels

http://hl7.org/fhir/ValueSet/security-labels

from the FHIR Standard

AuditEvent.entity:token-request.type

extensible

Pattern: 2

http://hl7.org/fhir/ValueSet/audit-entity-type

from the FHIR Standard

AuditEvent.entity:token-request.role

extensible

Pattern: 24

http://hl7.org/fhir/ValueSet/object-role

from the FHIR Standard

AuditEvent.entity:token-request.lifecycle

extensible

ObjectLifecycleEvents

http://hl7.org/fhir/ValueSet/object-lifecycle-events

from the FHIR Standard

AuditEvent.entity:token-request.securityLabel

extensible

All Security Labels

http://hl7.org/fhir/ValueSet/security-labels

from the FHIR Standard

AuditEvent.entity:token-response.type

extensible

Pattern: 2

http://hl7.org/fhir/ValueSet/audit-entity-type

from the FHIR Standard

AuditEvent.entity:token-response.role

extensible

Pattern: 13

http://hl7.org/fhir/ValueSet/object-role

from the FHIR Standard

AuditEvent.entity:token-response.lifecycle

extensible

ObjectLifecycleEvents

http://hl7.org/fhir/ValueSet/object-lifecycle-events

from the FHIR Standard

AuditEvent.entity:token-response.securityLabel

extensible

All Security Labels

http://hl7.org/fhir/ValueSet/security-labels

from the FHIR Standard

This structure is derived from AuditEvent

Summary

Mandatory: 14 elements (5 nested mandatory elements)
Must-Support: 4 elements
Prohibited: 6 elements

Slices

This structure defines the following Slices:

The element AuditEvent.agent is sliced based on the value of pattern:type (Closed)
The element AuditEvent.entity is sliced based on the value of pattern:role (Closed)

Other representations of profile: CSV, Excel, Schematron