FHIR Chat · ATT-08 (scopes pre-authorized for multi-patient ) · inferno

Stream: inferno

Topic: ATT-08 (scopes pre-authorized for multi-patient )

view this post on Zulip Sagar Sarvankar (Mar 01 2022 at 09:56):

Hello @Yunwei Wang

This is regarding 'ATT-08: Information returned no greater than scopes pre-authorized for multi-patient queries'.

Our 'MULTI-PATIENT AUTHORIZATION AND API' test scenario passes. Here we have created a clientid with predefined scopes in it as system/*.read Multipatient.png

Is this sufficient for ATT-08 or do we have to demonstrate anything different/more?

Please let us know.

Thank you,
Sagar

view this post on Zulip Sagar Sarvankar (Mar 09 2022 at 14:52):

Hello @Michele Mottini ,

In @Yunwei Wang absence, could you please share your thoughts on this.

Regards,
Sagar

view this post on Zulip Michele Mottini (Mar 09 2022 at 15:04):

No thought on this

view this post on Zulip Sagar Sarvankar (Mar 09 2022 at 15:06):

Ok thank you, @Michele Mottini , is there anyone who can help us on this?

view this post on Zulip Yunwei Wang (Mar 09 2022 at 16:59):

@Sagar Sarvankar sorry for the late reply. Inferno is a test application which runs part of the (g)(10) test procedure automatically. The actual certification test is run in a testing lab using Inferno Program edition or equivalent testing programs. The part of test procedure which could not run by Inferno are generalized as ATT tests which allows testing lab to document the observation and results while doing manual testing.

view this post on Zulip Sagar Sarvankar (Mar 09 2022 at 17:12):

Thank you for your reply @Yunwei Wang .
Ok, in ATT-08 do we have to demonstrate anything more than what Inferno tests in Multi-patient API?
Or the proctor will say ATT-08 as pass after seeing Multi-patient API turns green?

view this post on Zulip Yunwei Wang (Mar 09 2022 at 17:50):

I cannot speak for a testing lab since I have no knowledge about their procedure. This test is based on ONC (g)(10) test procedure

The health IT developer demonstrates the ability of the Health IT Module to assure the scope granted based on the scope requested by an application is no greater than the pre-authorized scope for multiple patients according to the implementation specification adopted in § 170.215(a)(4).

Inferno Multi-Patient API does not test this one. The Health IT module must demonstrate this and register its attestation within Inferno.

view this post on Zulip Sagar Sarvankar (Mar 10 2022 at 14:15):

Thank you, @Michele Mottini and @Yunwei Wang. I will look further into this.

Last updated: Apr 12 2022 at 19:14 UTC


An HL7 Website -