Basic Audit Log Patterns (BALP)
1.1.3 - Trial-Implementation International flag

This page is part of the IHE Basic Audit Log Patterns (BALP) (v1.1.3: Publication) based on FHIR (HL7® FHIR® Standard) R4. This is the current published version. For a full list of available versions, see the Directory of published versions

Resource Profile: IHE IUA ITI-71 AuditEvent for a successful Get Access Token

Official URL: https://profiles.ihe.net/ITI/BALP/StructureDefinition/IHE.IUA.71 Version: 1.1.3
Active as of 2024-02-14 Computable Name: AuditIUAgetAccessToken

Defines constraints on the AuditEvent Resource to record when a ITI-71 - Get Access Token succeeds

This AuditEvent is recorded by Authorization Client and/or Authorization Server that are grouped with ATNA Secure Node or Secure Application.

  • User Authenticated event
  • ITI-71 subtype
  • 2 or 3 agents
    • client -
    • auth-server
    • user user
  • 1 entity
    • the access token request

Usage:

  • This Resource Profile is not used by any profiles in this Implementation Guide

Formal Views of Profile Content

Description of Profiles, Differentials, Snapshots and how the different presentations work.

This structure is derived from AuditEvent

NameFlagsCard.TypeDescription & Constraintsdoco
.. AuditEvent 0..*AuditEventEvent record kept for security purposes
... type 1..1CodingType/identifier of event
Required Pattern: At least the following
.... system1..1uriIdentity of the terminology system
Fixed Value: http://dicom.nema.org/resources/ontology/DCM
.... code1..1codeSymbol in syntax defined by the system
Fixed Value: 110114
... subtype 1..1CodingMore specific type/id for the event
Required Pattern: At least the following
.... system1..1uriIdentity of the terminology system
Fixed Value: urn:ihe:event-type-code
.... code1..1codeSymbol in syntax defined by the system
Fixed Value: ITI-71
... action 0..1codeType of action performed during the event
Required Pattern: E
... outcome 1..1codeWhether the event succeeded or failed
Required Pattern: 0
... Slices for agent 2..3BackboneElementActor involved in the event
Slice: Unordered, Closed by pattern:type
.... agent:client 1..1BackboneElementActor involved in the event
..... type 1..1CodeableConceptHow agent participated
Required Pattern: At least the following
...... coding1..*CodingCode defined by a terminology system
Fixed Value: (complex)
....... system1..1uriIdentity of the terminology system
Fixed Value: http://dicom.nema.org/resources/ontology/DCM
....... code1..1codeSymbol in syntax defined by the system
Fixed Value: 110150
..... who 1..1Reference(PractitionerRole | Practitioner | Organization | Device | Patient | RelatedPerson)Identifier of who
..... media 0..0
..... network 1..1BackboneElementLogical network location for application activity
.... agent:auth-server 1..1BackboneElementActor involved in the event
..... type 1..1CodeableConceptHow agent participated
Required Pattern: At least the following
...... coding1..*CodingCode defined by a terminology system
Fixed Value: (complex)
....... system1..1uriIdentity of the terminology system
Fixed Value: https://profiles.ihe.net/ITI/BALP/CodeSystem/UserAgentTypes
....... code1..1codeSymbol in syntax defined by the system
Fixed Value: AuthzOauthService
..... who 1..1Reference(PractitionerRole | Practitioner | Organization | Device | Patient | RelatedPerson)Identifier of who
..... media 0..0
..... network 1..1BackboneElementLogical network location for application activity
.... agent:user 0..1BackboneElementActor involved in the event
..... type 1..1CodeableConceptHow agent participated
Required Pattern: At least the following
...... coding1..*CodingCode defined by a terminology system
Fixed Value: (complex)
....... system1..1uriIdentity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/v3-ParticipationType
....... code1..1codeSymbol in syntax defined by the system
Fixed Value: IRCP
..... role S0..*CodeableConceptAgent role in the event
..... who 1..1Reference(PractitionerRole | Practitioner | Organization | Device | Patient | RelatedPerson)Identifier of who
..... altId 0..0
..... name S0..1stringHuman friendly name for the agent
..... requestor 1..1booleanWhether user is initiator
Required Pattern: true
..... media 0..0
..... network 0..0
..... purposeOfUse S0..*CodeableConceptReason given for this user
... source S1..1BackboneElementAudit Event Reporter
... Slices for entity 1..1BackboneElementData or objects used
Slice: Unordered, Closed by pattern:role
.... entity:token-request 1..1BackboneElementData or objects used
..... what 0..0
..... type 0..1CodingType of entity involved
Required Pattern: At least the following
...... system1..1uriIdentity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
...... code1..1codeSymbol in syntax defined by the system
Fixed Value: 2
..... role 1..1CodingWhat role the entity played
Required Pattern: At least the following
...... system1..1uriIdentity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
...... code1..1codeSymbol in syntax defined by the system
Fixed Value: 24
..... query 1..1base64Binarycontains the http request in raw form, without the code_verifier value
.... entity:token-response 0..1BackboneElementData or objects used
..... what 1..1Reference(Resource)holds the token id issued
..... type 0..1CodingType of entity involved
Required Pattern: At least the following
...... system1..1uriIdentity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/audit-entity-type
...... code1..1codeSymbol in syntax defined by the system
Fixed Value: 2
..... role 1..1CodingWhat role the entity played
Required Pattern: At least the following
...... system1..1uriIdentity of the terminology system
Fixed Value: http://terminology.hl7.org/CodeSystem/object-role
...... code1..1codeSymbol in syntax defined by the system
Fixed Value: 13
..... detail 1..*BackboneElementholds the key values from the response

doco Documentation for this format

 

Other representations of profile: CSV, Excel, Schematron