CH EPR mHealth (R4)
3.0.0-ballot - ballot
CH EPR mHealth (R4)
3.0.0-ballot - ballot
This page is part of the CH EPR mHealth (R4) (v3.0.0-ballot: Draft Ballot 1) based on FHIR R4. This is the current published version in its permanent home (it will always be available at this URL). For a full list of available versions, see the Directory of published versions 
This section specifies Swiss national extensions to Internet User Authorization (IUA) Profile, which is published as an IHE ITI Trial Implementation profile.
There is no extension or restriction of the profile scope defined in this national extension. As described in the IUA Trial Implementation the profile is intended to provide means to retrieve EPR conformal access token (SAML or JWT) and to incorporate the access token to transactions which access protected resources.
No extensions or restrictions to the use cases defined in the IUA profile are specified in the Swiss in national extension.
No extensions or restrictions to the IUA actors and transactions are specified in the Swiss national extension.
This national extension restricts the IUA options to the Authorization Server Metadata, JWT Token and SAML Token option. The Token Introspection option of the IUA profile SHALL not be used.
The Swiss national extension does not define requirements on the grouping of actors in this profile, which extend or restrict the grouping required from the IUA profile.
For the process flow of this profile and its interplay with the other mHealth profiles see sequence diagrams.
The IUA Authorization Server SHALL enforce authentication of the user by redirecting the mHealth App to the User Authentication Provider (Identity Provider) as described in IUA.