View Transaction

Id: 432

Keyword: AUTH_DECISION_REQUEST

Name: Authorization Decision Request

Description: This transaction is used by the Authorization Decisions Consumer to query for authorization decisions, granted and managed by the Authorization Decisions Provider.

TF Reference:

Status: Trial Implementation

Referenced standards :

If there is no referenced standard the transaction will not appear in the inbound/outbound configurations supported by a system

Document Section :

None

Id	Keyword	Name	Description	Action
352	CH:ADR	Authorization Decision Request	This supplement defines new functionalities for XDS-based communities concerning the enforcement of access policies. They are applied to theclinical data stored by an XDS Document Registry, as well as to the access policies themselves, which are stored in a Policy Repository.

Id	actor	Integration profile	Option
2385	AUTH_DECI_CONS - Authorization Decision Consumer	CH:ADR - Authorization Decision Request	Required
2386	AUTH_DECI_PROV - Authorization Decision Provider	CH:ADR - Authorization Decision Request	Required

Id	Keyword	Name	Description
1300	AUTH_DECI_CONS	Authorization Decision Consumer	This actor queries for authorization decisions
1301	AUTH_DECI_PROV	Authorization Decision Provider	This actor accesses and interprets rules/policies and permits or denies access to resources

Id	From Actor	To Actor
687	AUTH_DECI_CONS - Authorization Decision Consumer	AUTH_DECI_PROV - Authorization Decision Provider

Assertion Id	Description
CH-ADR-001	This transaction is based on SOAP v1.2 exchange protocol and Synchronous Web services (see Section 3.1.1 Scope)
CH-ADR-002	The Authorization Decision Consumercan ask for authorization regarding a number of Resources in one query as the request message complies with the Multiple Resource Profile of XACML v2.0 (see Section 3.1.4 XACMLAuthzDecisionQuery Request)
CH-ADR-003	The WS-Addressing Action header SHALL have this value:urn:e-health-suisse:2015:policy-enforcement:AuthorizationDecisionRequest (see Section 3.1.6.5 Semantics)
CH-ADR-004	The recipient of the Authorization Decision Query SHALL be identified by the WS-Addressing <wsa:To>element in the header (URL of the endpoint) (see Section 3.1.6.5 Semantics)
CH-ADR-005	The value of the WS-Addressing To header (see Req. 4) SHALL be a URL, specifically the recipient's endpoint (see Section 3.1.6.5 Semantics)
CH-ADR-006	A SAML 2.0 Identity Assertion SHALL be conveyed within the WS-Security Security header (see Section 3.1.6.5 Semantics)
CH-ADR-007	The body of the message SHALL use an <XACMLAuthzDecisionQuery>element (defined in the SAML 2.0 Profile for XACML v2.0) to convey a <Request> with the Authorization Query parameters (Subject, Resource, Action, Environment). (see Section 3.1.6.5 Semantics)
CH-ADR-008	The <XACMLAuthzDecisionQuery> element (see Req. 7) SHALL contain a @ReturnContext attribute that SHOULD be set to "false" (see Section 3.1.6.5 Semantics)
CH-ADR-009	The <XACMLAuthzDecisionQuery> element (see Req. 7) SHALL contain a @InputContextOnly attribute that SHALL be set to "false" (see Section 3.1.6.5 Semantics)
CH-ADR-010	The <XACMLAuthzDecisionQuery> element (see Req. 7) SHALL have only one child element <Request> (see Section 3.1.6.5 Semantics)
CH-ADR-011	The <Request> element SHALL contain only 4 types of XACML child elements, namely <Subject>, <Resource>, <Action> and <Environment> (see Section 3.1.6.5 Semantics)
CH-ADR-012	The <Request> element SHALL contain only one <Subject> child element, one <Action> child element and one <Environment> child element (see Section 3.1.6.5 Semantics)
CH-ADR-013	The <Request> element MAY contain more than one <Resource> child elements (see Section 3.1.6.5 Semantics)
CH-ADR-014	<Request> and all subsequent elements, attributes and values SHALL comply to the namespace: xmlns:xacml-context="urn:oasis:names:tc:xacml:2.0:context:schema:os" (see Section 3.1.6.5 Semantics)
CH-ADR-015	The <Subject> element (see Req. 11) SHALL have at least the 6 following <Attribute> child elements:@AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id" @DataType="http://www.w3.org/2001/XMLSchema#string"@AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id-qualifier" @DataType="http://www.w3.org/2001/XMLSchema#string"@AttributeId="urn:ihe:iti:xca:2010:homeCommunityId" @DataType="http://www.w3.org/2001/XMLSchema#anyURI"@AttributeId="urn:oasis:names:tc:xacml:2.0:subject:role" @DataType="urn:hl7-org:v3#CV"@AttributeId="urn:oasis:names:tc:xacml:2.0:subject:organization-id" @DataType="http://www.w3.org/2001/XMLSchema#anyURI"@AttributeId="urn:oasis:names:tc:xacml:2.0:subject:purposeofuse" @DataType="urn:hl7-org:v3#CV"(see Section 3.1.6.5 Semantics)
CH-ADR-016	The <AttributeValue> child element SHALL convey the subject identifier (see Section 3.1.6.5 Semantics)
CH-ADR-017	The <AttributeValue> child element SHALL have the same value of the /Subject/NameID element conveyed within the SAML assertion (see Section 3.1.6.5 Semantics)
CH-ADR-018	The <AttributeValue> child element SHALL convey the subject ID qualifier (see Section 3.1.6.5 Semantics)
CH-ADR-019	The <AttributeValue> child element SHALL be equal to urn:e-health-suisse:2015:epr-spid (in case of patient), urn:e-health-suisse:representative-id (in cas of a representative) or equal to urn:gs1:gln (in case of a healthcare professional or auxiliary person) (see Section 3.1.6.5 Semantics)
CH-ADR-020	The <AttributeValue> child element SHALL have the same value as the /Subject/NameID/@NameQualifier element conveyed within the SAML assertion (see Section 3.1.6.5 Semantics)

Conformance checker
EVS Client

Peer-to-peer testing
Gazelle Proxy

View Transaction

View Transaction Information

Tool index

Conformance checker

Simulators

Peer-to-peer testing


	EPR Projectathon 2022 - Montreux (Projectathon Europe 2022)Closed	EPR Projectathon 2022 - Montreux IHE EPR Projectathon 2022 - Montreux (Projectathon Europe 2022) The registration deadline is 7/1/22 6:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 9/12/22 12:00:00 PM to 9/16/22 12:00:00 PM
	EPR Projectathon 2023 - Bern (Projectathon Europe 2023)Closed	EPR Projectathon 2023 - Bern IHE EPR Projectathon 2023 - Bern (Projectathon Europe 2023) The registration deadline is 7/18/23 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 9/11/23 8:00:00 AM to 9/15/23 12:00:00 PM
	EPR Projectathon 2024 - Bern (Projectathon Europe 2024)Ongoing registrationDefault Session	EPR Projectathon 2024 - Bern IHE EPR Projectathon 2024 - Bern (Projectathon Europe 2024) The registration deadline is 7/31/24 1:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 9/16/24 1:00:00 PM to 9/20/24 1:00:00 PM
	EPR Projectathon 2020 - Bern (Projectathon Europe 2020)Closed	EPR Projectathon 2020 - Bern IHE EPR Projectathon 2020 - Bern (Projectathon Europe 2020) The registration deadline is 7/17/20 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 9/21/20 12:00:00 AM to 9/25/20 12:00:00 PM
	eMedication Projectathon 2021 - Online (Projectathon Europe 2021)Closed	eMedication Projectathon 2021 - Online IHE eMedication Projectathon 2021 - Online (Projectathon Europe 2021) The registration deadline is 2/11/21 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 3/10/21 12:00:00 PM to 3/12/21 12:00:00 PM
	EPR Projectathon 2021 - Bern (Projectathon Europe 2021)Closed	EPR Projectathon 2021 - Bern IHE EPR Projectathon 2021 - Bern (Projectathon Europe 2021) The registration deadline is 8/31/21 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 9/20/21 12:00:00 PM to 9/24/21 12:00:00 PM
	EPR Projectathon 2019 - Bern (Projectathon Europe 2019)Closed	EPR Projectathon 2019 - Bern IHE EPR Projectathon 2019 - Bern (Projectathon Europe 2019) The registration deadline is 8/23/19 11:59:00 PM . You will not be able to add or alter systems after that date. This event will held from 9/23/19 9:00:00 AM to 9/27/19 12:00:00 PM
	EPR Projectathon 2019 - Rennes (Projectathon Europe 2019)Closed	EPR Projectathon 2019 - Rennes IHE EPR Projectathon 2019 - Rennes (Projectathon Europe 2019) The registration deadline is 2/28/19 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 4/8/19 12:00:00 PM to 4/12/19 12:00:00 PM
	EPR Projectathon 2019 - Wave 2 Online testing (Projectathon Europe 2019)Closed	EPR Projectathon 2019 - Wave 2 Online testing IHE EPR Projectathon 2019 - Wave 2 Online testing (Projectathon Europe 2019) The registration deadline is 1/26/19 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 2/4/19 12:00:00 PM to 2/22/19 12:00:00 PM
	EPR Projectathon 2019 - Open Online Testing (Projectathon Europe 2019)Closed	EPR Projectathon 2019 - Open Online Testing IHE EPR Projectathon 2019 - Open Online Testing (Projectathon Europe 2019) The registration deadline is 4/5/19 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 1/7/19 12:00:00 PM to 4/5/19 12:00:00 PM
	EPR Projectathon 2018 - Bern (Projectathon Europe 2018)Closed	EPR Projectathon 2018 - Bern IHE EPR Projectathon 2018 - Bern (Projectathon Europe 2018) The registration deadline is 7/31/18 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 9/17/18 9:00:00 AM to 9/21/18 12:00:00 PM
	EPR Projectathon 2018 - Den Haag (Projectathon Europe 2018)Closed	EPR Projectathon 2018 - Den Haag IHE EPR Projectathon 2018 - Den Haag (Projectathon Europe 2018) The registration deadline is 2/9/18 11:59:00 PM . You will not be able to add or alter systems after that date. This event will held from 4/16/18 8:00:00 AM to 1/19/18 11:59:00 AM
	EPR Projectathon 2017 (Projectathon Europe 2017)Closed	EPR Projectathon 2017 IHE EPR Projectathon 2017 (Projectathon Europe 2017) The registration deadline is 6/30/17 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 9/25/17 8:00:00 AM to 9/28/17 6:00:00 PM
	Demo testing (Demo Europe 2017)	Demo testing IHE Demo testing (Demo Europe 2017) The registration deadline is 1/19/24 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 3/25/24 12:00:00 PM to 1/29/24 11:40:00 AM
	Test Session Template DO NOT EDIT (Template Europe 2019)Closed	Test Session Template DO NOT EDIT IHE Test Session Template DO NOT EDIT (Template Europe 2019) The registration deadline is 9/11/19 12:00:00 PM . You will not be able to add or alter systems after that date. This event will held from 9/3/19 12:00:00 PM to 9/4/19 12:00:00 PM