Last change
on this file since 507 was 507, checked in by George Lilly, 15 years ago |
NHIN gateway and adaptor for use on linux with VistA EHR and RPMS
|
File size:
1.6 KB
|
Line | |
---|
1 | <Policy xmlns="urn:oasis:names:tc:xacml:2.0:Policy:schema:os" xmlns:nhin="http://www.hhs.gov/healthit/nhin" Policyid="12345678-1234-1234-1234-123456789abc" Rulecombiningalgid="urn:oasis:names:tc:xacml:1.0:Rule-combining-algorithm:first-applicable">
|
---|
2 | <Description>Sample XACML Policy showing access by user role</Description>
|
---|
3 |
|
---|
4 |
|
---|
5 | <Target>
|
---|
6 | <Actions>
|
---|
7 | <Action>
|
---|
8 | <ActionMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
|
---|
9 | <AttributeValue DataType="http://www.w3.org/2001/XMLSchema#anyURI">
|
---|
10 | http://www.hhs.gov/healthit/nhin#retrieveDocument
|
---|
11 | </AttributeValue>
|
---|
12 | <ActionAttributeDesignator AttributeId="urn:oasis:names:tc:xacml:2.0:action" DataType="http://www.w3.org/2001/XMLSchema#anyURI">
|
---|
13 | </ActionAttributeDesignator>
|
---|
14 | </ActionMatch>
|
---|
15 | </Action>
|
---|
16 | </Actions>
|
---|
17 |
|
---|
18 | <Environments>
|
---|
19 | <Environment>
|
---|
20 | <EnvironmentMatch MatchId="http://www.hhs.gov/healthit/nhin/function#instance-identifier-equal">
|
---|
21 | <AttributeValue DataType="http://www.hhs.gov/healthit/nhin#instance-identitifer">
|
---|
22 | <PatientId Root="123" Extension="123-123">
|
---|
23 | </PatientId>
|
---|
24 | </AttributeValue>
|
---|
25 | <EnvironmentAttributeDesignator AttributeId="http://www.hhs.gov/healthit/nhin#subject-id" DataType="http://www.hhs.gov/healthit/nhin#instance-identitifer">
|
---|
26 | </EnvironmentAttributeDesignator>
|
---|
27 | </EnvironmentMatch>
|
---|
28 | </Environment>
|
---|
29 | </Environments>
|
---|
30 | </Target>
|
---|
31 |
|
---|
32 | <Rule RuleId="125" Effect="Deny">
|
---|
33 | <Description>deny all access to documents. </Description>
|
---|
34 | <Target>
|
---|
35 | </Target>
|
---|
36 | </Rule>
|
---|
37 | </Policy>
|
---|
Note:
See
TracBrowser
for help on using the repository browser.