Difference between revisions of "Access Controls Listing"
From OpenEMR Project Wiki
Bradymiller (talk | contribs) |
(→Medical Records and History (write,addonly optional) (med): Add a placeholder for Prescriptions) |
||
| (33 intermediate revisions by one other user not shown) | |||
| Line 5: | Line 5: | ||
==Administration (admin)== | ==Administration (admin)== | ||
===Superuser - can delete patients, encounters, issues (super)=== | ===Superuser - can delete patients, encounters, issues (super)=== | ||
:*Authorizations are: | |||
::*Configuring Globals (ie. Settings) | |||
::*Using the External Data Loads module | |||
::*Using the Backup module | |||
::*Administering Lists (including LBF Module) | |||
::*Administering Layouts (including LBF Module) | |||
::*Deleting Patients | |||
::*Deleting Issues | |||
::*Deleting Patient Notes | |||
::*Deleting Encounters | |||
::*Deleting Forms | |||
::*Deleting Transactions | |||
::*Deleting Bills | |||
::*Deleting items in the Pharmacy dispensary module | |||
::*Delete scanned forms (from contrib scanned forms module) | |||
:*Return Values: none | |||
===Calendar Settings (calendar)=== | ===Calendar Settings (calendar)=== | ||
:*Allow administration of the appointment categories. | |||
:*Return Values: none | |||
===Database Reporting (database)=== | ===Database Reporting (database)=== | ||
:*Allows use of the embedded phpmyadmin module. | |||
:*Return Values: none | |||
===Forms Administration (forms)=== | ===Forms Administration (forms)=== | ||
:*Allow administration of forms(adding/activiation/deactivating/categorizing). | |||
:*Return Values: none | |||
===Practice Settings (practice)=== | ===Practice Settings (practice)=== | ||
:*Allows administration of practice settings (such as pharmacies, insurance companies, insurance numbers, | |||
X12 partners and outside facilities address book). | |||
:*Return Values: none | |||
===Superbill Codes Administration (superbill)=== | ===Superbill Codes Administration (superbill)=== | ||
:*Allow administration of service codes. | |||
:*Return Values: none | |||
===Users/Groups/Logs Administration (users)=== | ===Users/Groups/Logs Administration (users)=== | ||
:*Allows administration of user specific settings, such as user information, user logs, groups, user SSL certificates and facilities. | |||
:*Return Codes: none | |||
===Batch Communication Tool (batchcom)=== | ===Batch Communication Tool (batchcom)=== | ||
:*Allows use of the batch communication tool. | |||
:*Return Values: none | |||
===Language Interface Tool (language)=== | ===Language Interface Tool (language)=== | ||
:*Allows administration of the translations. | |||
:*Return Values: none | |||
===Pharmacy Dispensary (drugs)=== | ===Pharmacy Dispensary (drugs)=== | ||
:*Allows administration of the pharmacy dispensary. | |||
:*Return Values: none | |||
===ACL Administration (acl)=== | ===ACL Administration (acl)=== | ||
:*Allows administration of access controls. | |||
:*Return Values: none | |||
==Accounting (acct)== | ==Accounting (acct)== | ||
===Billing (write optional) (bill)=== | ===Billing (write optional) (bill)=== | ||
| Line 23: | Line 71: | ||
==Patient Information (patients)== | ==Patient Information (patients)== | ||
===Appointments (write,wsome optional) (appt)=== | ===Appointments (write,wsome optional) (appt)=== | ||
:*Allows scheduling of appointments. | |||
:*Return Values: | |||
::*wsome - Can schedule appointments (but can not double book or schedule appt outside of a providers calendar template). | |||
::*write - Can schedule appointments (can double book and schedule appt outside of a providers calendar template) | |||
===Demographics (write,addonly optional) (demo)=== | ===Demographics (write,addonly optional) (demo)=== | ||
:*Allows viewing and entering of patient demographics(and insurance). | |||
:*Return Values: | |||
::*addonly - Allowed to enter new patient demographics. | |||
::*write - Allowed to enter new patient demographics and modify current patient demographics. | |||
::*ANY - Allowed to view patient demographics. | |||
===Medical Records and History (write,addonly optional) (med)=== | ===Medical Records and History (write,addonly optional) (med)=== | ||
:*Allows viewing and entering in of medical records. | |||
:*Return Values: | |||
::*addonly - Allowed to add medical records(specifically for adding new Issues). | |||
::*write - Allowed to add and modify medical records(specifically for adding new or modifying current medical issues and entering in of the patient history). | |||
::*ANY - Allowed to view medical records. | |||
===Prescriptions (write,addonly optional)=== | |||
:*Allows viewing and entering in of prescriptions. | |||
===Transactions, e.g. referrals (write optional) (trans)=== | ===Transactions, e.g. referrals (write optional) (trans)=== | ||
:*Not used yet. | |||
===Documents (write,addonly optional) (docs)=== | ===Documents (write,addonly optional) (docs)=== | ||
:*Not used yet. | |||
===Patient Notes (write,addonly optional) (notes)=== | ===Patient Notes (write,addonly optional) (notes)=== | ||
:*Allows viewing and entering in of patient notes. | |||
:*Return Values: | |||
::*addonly - Can enter in patient notes. (note there is no current difference between this and 'write') | |||
::*write - Can enter in patient notes. (note there is no current difference between this and 'addonly') | |||
::*ANY - Can view patient notes. | |||
===Sign Lab Results (write,addonly optional) (sign)=== | ===Sign Lab Results (write,addonly optional) (sign)=== | ||
:*Allows signing of labs. | |||
:*Return Values: none | |||
==Encounter Information (encounters)== | ==Encounter Information (encounters)== | ||
===Authorize - my encounters (auth)=== | ===Authorize - my encounters (auth)=== | ||
:*Not used yet. | |||
===Authorize - any encounters (auth_a)=== | ===Authorize - any encounters (auth_a)=== | ||
:*Not used yet. | |||
===Coding - my encounters (write,wsome optional) (coding)=== | ===Coding - my encounters (write,wsome optional) (coding)=== | ||
===Coding - any encounters (write,wsome optional) (coding_a)=== | ===Coding - any encounters (write,wsome optional) (coding_a)=== | ||
| Line 45: | Line 128: | ||
==Sensitivities (sensitivities)== | ==Sensitivities (sensitivities)== | ||
* | :*This section is to provide access control to more sensitive encounters(ie. a user would need the High access control to see encounters that are of High sensitivity). | ||
* | :*Return Values: none | ||
===Normal (normal)=== | ===Normal (normal)=== | ||
* | :*User is able to see Normal sensitivity encounters. | ||
* | :*Return Values: none | ||
===High (high)=== | ===High (high)=== | ||
* | :*User is able to see High sensitivity encounters. | ||
* | :*Return Values: none | ||
==Lists (lists)== | ==Lists (lists)== | ||
| Line 91: | Line 174: | ||
[[Category:User Guide 4.1.1]][[Category:User Guide 4.1.0]][[Category:User Guide]][[Category:Configuration Guide]][[Category:Developer Guide]] | [[Category:User Guide 4.2.1]][[Category:User Guide 4.2.0]][[Category:User Guide 4.1.2]][[Category:User Guide 4.1.1]][[Category:User Guide 4.1.0]][[Category:User Guide]][[Category:Configuration Guide]][[Category:Developer Guide]] | ||
Latest revision as of 14:38, 11 October 2025
Access controls are used throughout OpenEMR to control access by user roles. It can be configured at Administration->ACL . This document is still under construction.
Access Controls
Administration (admin)
Superuser - can delete patients, encounters, issues (super)
- Authorizations are:
- Configuring Globals (ie. Settings)
- Using the External Data Loads module
- Using the Backup module
- Administering Lists (including LBF Module)
- Administering Layouts (including LBF Module)
- Deleting Patients
- Deleting Issues
- Deleting Patient Notes
- Deleting Encounters
- Deleting Forms
- Deleting Transactions
- Deleting Bills
- Deleting items in the Pharmacy dispensary module
- Delete scanned forms (from contrib scanned forms module)
- Return Values: none
Calendar Settings (calendar)
- Allow administration of the appointment categories.
- Return Values: none
Database Reporting (database)
- Allows use of the embedded phpmyadmin module.
- Return Values: none
Forms Administration (forms)
- Allow administration of forms(adding/activiation/deactivating/categorizing).
- Return Values: none
Practice Settings (practice)
- Allows administration of practice settings (such as pharmacies, insurance companies, insurance numbers,
X12 partners and outside facilities address book).
- Return Values: none
Superbill Codes Administration (superbill)
- Allow administration of service codes.
- Return Values: none
Users/Groups/Logs Administration (users)
- Allows administration of user specific settings, such as user information, user logs, groups, user SSL certificates and facilities.
- Return Codes: none
Batch Communication Tool (batchcom)
- Allows use of the batch communication tool.
- Return Values: none
Language Interface Tool (language)
- Allows administration of the translations.
- Return Values: none
Pharmacy Dispensary (drugs)
- Allows administration of the pharmacy dispensary.
- Return Values: none
ACL Administration (acl)
- Allows administration of access controls.
- Return Values: none
Accounting (acct)
Billing (write optional) (bill)
Allowed to discount prices (in Fee Sheet or Checkout form) (disc)
EOB Data Entry (eob)
Financial Reporting - my encounters (rep)
Financial Reporting - anything (rep_a)
Patient Information (patients)
Appointments (write,wsome optional) (appt)
- Allows scheduling of appointments.
- Return Values:
- wsome - Can schedule appointments (but can not double book or schedule appt outside of a providers calendar template).
- write - Can schedule appointments (can double book and schedule appt outside of a providers calendar template)
Demographics (write,addonly optional) (demo)
- Allows viewing and entering of patient demographics(and insurance).
- Return Values:
- addonly - Allowed to enter new patient demographics.
- write - Allowed to enter new patient demographics and modify current patient demographics.
- ANY - Allowed to view patient demographics.
Medical Records and History (write,addonly optional) (med)
- Allows viewing and entering in of medical records.
- Return Values:
- addonly - Allowed to add medical records(specifically for adding new Issues).
- write - Allowed to add and modify medical records(specifically for adding new or modifying current medical issues and entering in of the patient history).
- ANY - Allowed to view medical records.
Prescriptions (write,addonly optional)
- Allows viewing and entering in of prescriptions.
Transactions, e.g. referrals (write optional) (trans)
- Not used yet.
Documents (write,addonly optional) (docs)
- Not used yet.
Patient Notes (write,addonly optional) (notes)
- Allows viewing and entering in of patient notes.
- Return Values:
- addonly - Can enter in patient notes. (note there is no current difference between this and 'write')
- write - Can enter in patient notes. (note there is no current difference between this and 'addonly')
- ANY - Can view patient notes.
Sign Lab Results (write,addonly optional) (sign)
- Allows signing of labs.
- Return Values: none
Encounter Information (encounters)
Authorize - my encounters (auth)
- Not used yet.
Authorize - any encounters (auth_a)
- Not used yet.
Coding - my encounters (write,wsome optional) (coding)
Coding - any encounters (write,wsome optional) (coding_a)
Notes - my encounters (write,addonly optional) (notes)
Notes - any encounters (write,addonly optional) (notes_a)
Fix encounter dates - any encounters (date_a)
Less-private information (write,addonly optional) (relaxed)
Squads (squads)
- Section "squads" applies to Athletic Team use only:
- Access Controls in this section define the user-specified list of squads.
Sensitivities (sensitivities)
- This section is to provide access control to more sensitive encounters(ie. a user would need the High access control to see encounters that are of High sensitivity).
- Return Values: none
Normal (normal)
- User is able to see Normal sensitivity encounters.
- Return Values: none
High (high)
- User is able to see High sensitivity encounters.
- Return Values: none
Lists (lists)
- This section is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to these lists from the form.
- Return Values: none
Default List (write,addonly optional) (default)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to any of these lists on the forms that do not have a specific control for them.
- Return Values: none
State List (write,addonly optional) (state)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the State list from the form.
- Return Values: none
Country List (write,addonly optional) (country)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the Country list from the form.
- Return Values: none
Language List (write,addonly optional) (language)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the Language list from the form.
- Return Values: none
Ethnicity-Race List (write,addonly optional) (ethrace)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the Ethnicity-Race list from the form.
- Return Values: none
Placeholder (placeholder)
Placeholder (Maintains empty ACLs) (filler)
- Users: Do not need to know what this is (if curious, read below developer talk)
- Developers: Simply used to ensure an ACL is never empty (note an ACL is filled with Access Controls); this is needed, because if all Access Controls are removed from an ACL, then the ACL will also be removed.
- Return Values: none
Nation Notes (nationnotes)
Nation Notes (nn_configure)
- This will allow configuration(contexts,templates, etc.) of Nation Notes module.
- Return Values: none
Patient Portal (patientportal)
Patient Portal (portal)
- This will provide access to a third party portal.
- A 'Portal Activity' link at the top of the left menu will link to the third party portal at the address set in the Offsite Patient Portal Site Address setting.
- Return Values: none
