Onyx Consent Authorization SAFHIR Implementation and Operations Guide
0.0.2 - ci-build
Onyx Consent Authorization SAFHIR Implementation and Operations Guide - Local Development build (v0.0.2). See the Directory of published versions
<CapabilityStatement xmlns="http://hl7.org/fhir">
<id value="patient-consent-mgmt"/>
<text>
<status value="extensions"/>
<div xmlns="http://www.w3.org/1999/xhtml"><h2>PatientConsentManagementCapabilityStatement</h2><div><p>This implementation guide allws patients to log in via smart-on-fhir and manage their consent to share data to other patients, related persons, practitioners, and organizations. It also allows payers to record the apps that have been grantred access to APIs.</p>
</div><table><tr><td>Mode</td><td>SERVER</td></tr><tr><td>Description</td><td><div><h1>Server Capability Statement</h1>
<p>This capability statement enables a SAFHIR server to record Contracts and Consents used in managing FHIR APIs</p>
</div></td></tr><tr><td>Transaction</td><td></td></tr><tr><td>System History</td><td></td></tr><tr><td>System Search</td><td></td></tr></table><table><tr><th><b>Resource Type</b></th><th><b>Profile</b></th><th><b title="GET a resource (read interaction)">Read</b></th><th><b title="GET past versions of resources (vread interaction)">V-Read</b></th><th><b title="GET all set of resources of the type (search interaction)">Search</b></th><th><b title="PUT a new resource version (update interaction)">Update</b></th><th><b title="PATCH a new resource version (patch interaction)">Patch</b></th><th><b title="POST a new resource (create interaction)">Create</b></th></tr><tr><td>Consent</td><td>y</td><td>y</td><td>y</td><td>y</td><td>y</td><td>y</td></tr><tr><td>Contract</td><td>y</td><td>y</td><td>y</td><td>y</td><td>y</td><td>y</td></tr><tr><td>Device</td><td>y</td><td>y</td><td>y</td><td>y</td><td>y</td><td>y</td></tr></table></div>
</text>
<url
value="http://hl7.org/fhir/us/core/CapabilityStatement/patient-consent-mgmt"/>
<version value="0.0.2"/>
<name value="PatientConsentManagementCapabilityStatement"/>
<title value="Patient Consent Capability Statement"/>
<status value="active"/>
<experimental value="true"/>
<date value="2021-02-26"/>
<publisher value="Onyx Technologies, LLC."/>
<contact>
<name value="Mark Scrimshire (mark.scrimshire@onyxhealth.io)"/>
<telecom>
<system value="email"/>
<value value="mailto:mark.scrimshire@onyxhealth.io"/>
</telecom>
</contact>
<contact>
<name value="Onyx Technology, LLC"/>
<telecom>
<system value="url"/>
<value value="https://www.onyxhealth.io"/>
</telecom>
</contact>
<description
value="This implementation guide allws patients to log in via smart-on-fhir and manage their consent to share data to other patients, related persons, practitioners, and organizations. It also allows payers to record the apps that have been grantred access to APIs."/>
<jurisdiction>
<coding>
<system value="urn:iso:std:iso:3166"/>
<code value="US"/>
<display value="United States of America"/>
</coding>
</jurisdiction>
<kind value="requirements"/>
<fhirVersion value="4.0.1"/>
<format value="json"/>
<patchFormat value="application/json-patch+json"/>
<rest>
<mode value="server"/>
<documentation
value="# Server Capability Statement
This capability statement enables a SAFHIR server to record Contracts and Consents used in managing FHIR APIs "/>
<security>
<service>
<coding>
<system
value="http://terminology.hl7.org/CodeSystem/restful-security-service"/>
<code value="SMART-on-FHIR"/>
<display value="SMART-on-FHIR"/>
</coding>
<text value="See http://docs.smarthealthit.org/"/>
</service>
<description
value="1. See the [General Security Considerations](security.html) section for requirements and recommendations.
1. A server **SHALL** reject any unauthorized requests by returning an `HTTP 401` unauthorized response code."/>
</security>
<resource>
<type value="Consent"/>
<supportedProfile
value="http://safhir.io/ig/safhir-ocasio/StructureDefinition/SafhirAppRegConsent"/>
<supportedProfile
value="http://safhir.io/ig/safhir-ocasio/StructureDefinition/SafhirMemberConsent"/>
<interaction>
<code value="create"/>
</interaction>
<interaction>
<code value="search-type"/>
</interaction>
<interaction>
<code value="read"/>
</interaction>
<interaction>
<code value="vread"/>
</interaction>
<interaction>
<code value="update"/>
</interaction>
<interaction>
<code value="patch"/>
</interaction>
<referencePolicy value="resolves"/>
<searchParam>
<name value="action"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="actor"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="category"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="consentor"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="data"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="date"/>
<type value="date"/>
</searchParam>
<searchParam>
<name value="identifier"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="organization"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="patient"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="device"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="period"/>
<type value="date"/>
</searchParam>
<searchParam>
<name value="purpose"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="scope"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="security-label"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="source-reference"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="status"/>
<type value="token"/>
</searchParam>
</resource>
<resource>
<type value="Contract"/>
<supportedProfile
value="http://safhir.io/ig/safhir-ocasio/StructureDefinition/SafhirApiContract"/>
<interaction>
<code value="create"/>
</interaction>
<interaction>
<code value="search-type"/>
</interaction>
<interaction>
<code value="read"/>
</interaction>
<interaction>
<code value="vread"/>
</interaction>
<interaction>
<code value="update"/>
</interaction>
<interaction>
<code value="patch"/>
</interaction>
<referencePolicy value="resolves"/>
<searchParam>
<name value="action"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="actor"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="category"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="consentor"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="data"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="date"/>
<type value="date"/>
</searchParam>
<searchParam>
<name value="identifier"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="organization"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="patient"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="device"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="period"/>
<type value="date"/>
</searchParam>
<searchParam>
<name value="purpose"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="scope"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="security-label"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="source-reference"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="status"/>
<type value="token"/>
</searchParam>
</resource>
<resource>
<type value="Device"/>
<supportedProfile
value="http://safhir.io/ig/safhir-ocasio/StructureDefinition/SafhirApiDevice"/>
<interaction>
<code value="create"/>
</interaction>
<interaction>
<code value="search-type"/>
</interaction>
<interaction>
<code value="read"/>
</interaction>
<interaction>
<code value="vread"/>
</interaction>
<interaction>
<code value="update"/>
</interaction>
<interaction>
<code value="patch"/>
</interaction>
<referencePolicy value="resolves"/>
<searchParam>
<name value="device-name"/>
<type value="string"/>
</searchParam>
<searchParam>
<name value="owner"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="status"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="url"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="data"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="date"/>
<type value="date"/>
</searchParam>
<searchParam>
<name value="identifier"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="organization"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="patient"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="device"/>
<type value="reference"/>
</searchParam>
<searchParam>
<name value="period"/>
<type value="date"/>
</searchParam>
<searchParam>
<name value="purpose"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="scope"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="security-label"/>
<type value="token"/>
</searchParam>
<searchParam>
<name value="source-reference"/>
<type value="reference"/>
</searchParam>
</resource>
</rest>
</CapabilityStatement>