PIXm Actor Grouping (Marco Studer, Cistec AG)

ehealthsuisse / ch-epr-fhir

Repository for the swiss implementation guide for the FHIR based profiles

3 stars 5 forks source link

PIXm Actor Grouping (Marco Studer, Cistec AG) #44

Closed ig-feedback closed 6 months ago

ig-feedback commented 1 year ago

ch.fhir.ig.ch-epr-mhealth#1.1.0 /iti-pixm.html

Due to the actor grouping of PIXm with IUA, there's always a user authentication required for the PIXm transactions. For this reason e.g. ITI-104 / Patient Identity Feeed FHIR cannot be used by a background process in a primary system. Do I understand this correctly?

Marco Studer, Cistec AG

oliveregger commented 1 year ago

This is current. A machine to machine OAuth flow is currently not specified, this would need to be extended with the Client Credentials Grant [OAuth 2.1, Section 4.2]. This grant type is optimized for clients requesting access tokens using only its client credentials and is restricted to confidential clients (e.g., medical devices, back end applications).

see https://profiles.ihe.net/ITI/IUA/index.html#34411-authorization-grant-types

oliveregger commented 1 year ago

Telco 5.1. OE/MS: eHealth Suisse will develop a Factsheet how a possible solution could look like for a confidential client

oliveregger commented 1 year ago

related also to #45

msmock commented 6 months ago

The feature will be added. Close this, since we have a duplicate.