Stream: implementers
Topic: Exclusions for Portal
James Dinsmore (Jan 18 2022 at 17:24):
We have the ability to setup exclusions such that certain data (e.g. lab results) do not appear in the portal. Currently with STU3 we use a _list filter to hide these entries from the portal. We will be migrating our portal solution to R4 and need another method to handle these exclusions because our R4 FHIR server will include all data by default.
One initial thought has been to use custom extensions and custom search parameters but we don't want to go that route if there is already something defined in the FHIR spec that handles exclusions. I know that for DocumentReference we would likely use the securityLabel element but for resources like Observation we've been unable to find anything equivalent.
David Pyke (Jan 18 2022 at 17:53):
You can use Security Labels on any data through the .meta.security elements.
David Pyke (Jan 18 2022 at 17:56):
http://www.hl7.org/fhir/security-labels.html
John Moehrke (Jan 18 2022 at 17:59):
What you have found in DocumentReference as the securityLabel element is to the binary content, what the .meta.security is to EVERY kind of resource. Even DocumentReference has a .meta.security element that are the tags on the content of the DocumentReference.... The DocumentReference.securityLabel is there specifically for the case where there is lesser sensitivity to the DocumentReference than is needed on the binary pointed at by the .content.attachment.url.
John Moehrke (Jan 18 2022 at 18:00):
So, as David points out... use the .meta.security that is present in all resources
Last updated: Apr 12 2022 at 19:14 UTC
