Difference between revisions of "Access Controls Listing"
From OpenEMR Project Wiki
Bradymiller (talk | contribs) (Created page with "Access controls are used throughout OpenEMR to control access by user roles. It can be configured at Administration->ACL . '''This document is still under construction.''' =Acce...") |
Bradymiller (talk | contribs) |
||
| (55 intermediate revisions by the same user not shown) | |||
| Line 4: | Line 4: | ||
=Access Controls= | =Access Controls= | ||
==Administration (admin)== | ==Administration (admin)== | ||
==Superuser - can delete patients, encounters, issues (super)== | ===Superuser - can delete patients, encounters, issues (super)=== | ||
==Calendar Settings (calendar)== | :*Authorizations are: | ||
==Database Reporting (database)== | ::*Configuring Globals (ie. Settings) | ||
==Forms Administration (forms)== | ::*Using the External Data Loads module | ||
==Practice Settings (practice)== | ::*Using the Backup module | ||
==Superbill Codes Administration (superbill)== | ::*Administering Lists (including LBF Module) | ||
==Users/Groups/Logs Administration (users)== | ::*Administering Layouts (including LBF Module) | ||
==Batch Communication Tool (batchcom)== | ::*Deleting Patients | ||
==Language Interface Tool (language)== | ::*Deleting Issues | ||
==Pharmacy Dispensary (drugs)== | ::*Deleting Patient Notes | ||
==ACL Administration (acl)== | ::*Deleting Encounters | ||
=Accounting (acct)= | ::*Deleting Forms | ||
::*Deleting Transactions | |||
::*Deleting Bills | |||
::*Deleting items in the Pharmacy dispensary module | |||
::*Delete scanned forms (from contrib scanned forms module) | |||
:*Return Values: none | |||
===Calendar Settings (calendar)=== | |||
:*Allow administration of the appointment categories. | |||
:*Return Values: none | |||
===Database Reporting (database)=== | |||
:*Allows use of the embedded phpmyadmin module. | |||
:*Return Values: none | |||
===Forms Administration (forms)=== | |||
:*Allow administration of forms(adding/activiation/deactivating/categorizing). | |||
:*Return Values: none | |||
===Practice Settings (practice)=== | |||
:*Allows administration of practice settings (such as pharmacies, insurance companies, insurance numbers, | |||
X12 partners and outside facilities address book). | |||
:*Return Values: none | |||
===Superbill Codes Administration (superbill)=== | |||
:*Allow administration of service codes. | |||
:*Return Values: none | |||
===Users/Groups/Logs Administration (users)=== | |||
:*Allows administration of user specific settings, such as user information, user logs, groups, user SSL certificates and facilities. | |||
:*Return Codes: none | |||
===Batch Communication Tool (batchcom)=== | |||
:*Allows use of the batch communication tool. | |||
:*Return Values: none | |||
===Language Interface Tool (language)=== | |||
:*Allows administration of the translations. | |||
:*Return Values: none | |||
===Pharmacy Dispensary (drugs)=== | |||
:*Allows administration of the pharmacy dispensary. | |||
:*Return Values: none | |||
===ACL Administration (acl)=== | |||
:*Allows administration of access controls. | |||
:*Return Values: none | |||
==Accounting (acct)== | |||
===Billing (write optional) (bill)=== | |||
===Allowed to discount prices (in Fee Sheet or Checkout form) (disc)=== | |||
===EOB Data Entry (eob)=== | |||
===Financial Reporting - my encounters (rep)=== | |||
===Financial Reporting - anything (rep_a)=== | |||
==Patient Information (patients)== | |||
===Appointments (write,wsome optional) (appt)=== | |||
:*Allows scheduling of appointments. | |||
:*Return Values: | |||
::*wsome - Can schedule appointments (but can not double book or schedule appt outside of a providers calendar template). | |||
::*write - Can schedule appointments (can double book and schedule appt outside of a providers calendar template) | |||
===Demographics (write,addonly optional) (demo)=== | |||
:*Allows viewing and entering of patient demographics(and insurance). | |||
:*Return Values: | |||
::*addonly - Allowed to enter new patient demographics. | |||
::*write - Allowed to enter new patient demographics and modify current patient demographics. | |||
::*ANY - Allowed to view patient demographics. | |||
===Medical Records and History (write,addonly optional) (med)=== | |||
:*Allows viewing and entering in of medical records. | |||
:*Return Values: | |||
::*addonly - Allowed to add medical records(specifically for adding new Issues). | |||
::*write - Allowed to add and modify medical records(specifically for adding new or modifying current medical issues and entering in of the patient history). | |||
::*ANY - Allowed to view medical records. | |||
===Transactions, e.g. referrals (write optional) (trans)=== | |||
:*Not used yet. | |||
===Documents (write,addonly optional) (docs)=== | |||
:*Not used yet. | |||
===Patient Notes (write,addonly optional) (notes)=== | |||
:*Allows viewing and entering in of patient notes. | |||
:*Return Values: | |||
::*addonly - Can enter in patient notes. (note there is no current difference between this and 'write') | |||
::*write - Can enter in patient notes. (note there is no current difference between this and 'addonly') | |||
::*ANY - Can view patient notes. | |||
===Sign Lab Results (write,addonly optional) (sign)=== | |||
:*Allows signing of labs. | |||
:*Return Values: none | |||
==Encounter Information (encounters)== | |||
===Authorize - my encounters (auth)=== | |||
:*Not used yet. | |||
===Authorize - any encounters (auth_a)=== | |||
:*Not used yet. | |||
===Coding - my encounters (write,wsome optional) (coding)=== | |||
===Coding - any encounters (write,wsome optional) (coding_a)=== | |||
===Notes - my encounters (write,addonly optional) (notes)=== | |||
===Notes - any encounters (write,addonly optional) (notes_a)=== | |||
===Fix encounter dates - any encounters (date_a)=== | |||
===Less-private information (write,addonly optional) (relaxed)=== | |||
==Squads (squads)== | |||
:* Section "squads" applies to [[Administration_Globals#Specific_Application|Athletic Team]] use only: | |||
::*Access Controls in this section define the user-specified list of squads. | |||
==Sensitivities (sensitivities)== | |||
:*This section is to provide access control to more sensitive encounters(ie. a user would need the High access control to see encounters that are of High sensitivity). | |||
:*Return Values: none | |||
===Normal (normal)=== | |||
:*User is able to see Normal sensitivity encounters. | |||
:*Return Values: none | |||
===High (high)=== | |||
:*User is able to see High sensitivity encounters. | |||
:*Return Values: none | |||
==Lists (lists)== | |||
:*This section is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to these lists from the form. | |||
:*Return Values: none | |||
===Default List (write,addonly optional) (default)=== | |||
:*This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to any of these lists on the forms that do not have a specific control for them. | |||
:*Return Values: none | |||
===State List (write,addonly optional) (state)=== | |||
:*This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the State list from the form. | |||
:*Return Values: none | |||
===Country List (write,addonly optional) (country)=== | |||
:*This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the Country list from the form. | |||
:*Return Values: none | |||
===Language List (write,addonly optional) (language)=== | |||
:*This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the Language list from the form. | |||
:*Return Values: none | |||
===Ethnicity-Race List (write,addonly optional) (ethrace)=== | |||
:*This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the Ethnicity-Race list from the form. | |||
:*Return Values: none | |||
==Placeholder (placeholder)== | |||
===Placeholder (Maintains empty ACLs) (filler)=== | |||
:*'''Users''': Do not need to know what this is (if curious, read below ''developer talk'') | |||
:*'''Developers''': Simply used to ensure an ACL is never empty (note an ACL is filled with Access Controls); this is needed, because if all Access Controls are removed from an ACL, then the ACL will also be removed. | |||
:*Return Values: none | |||
==Nation Notes (nationnotes)== | |||
===Nation Notes (nn_configure)=== | |||
:*This will allow configuration(contexts,templates, etc.) of Nation Notes module. | |||
:*Return Values: none | |||
==Patient Portal (patientportal)== | |||
===Patient Portal (portal)=== | |||
:*This will provide access to a third party portal. | |||
:*A 'Portal Activity' link at the top of the left menu will link to the third party portal at the address set in the [[Administration_Globals#Offsite_Patient_Portal_Site_Address|Offsite Patient Portal Site Address setting]]. | |||
:*Return Values: none | |||
[[Category:User Guide 4.2.1]][[Category:User Guide 4.2.0]][[Category:User Guide 4.1.2]][[Category:User Guide 4.1.1]][[Category:User Guide 4.1.0]][[Category:User Guide]][[Category:Configuration Guide]][[Category:Developer Guide]] | |||
Latest revision as of 20:53, 2 January 2016
Access controls are used throughout OpenEMR to control access by user roles. It can be configured at Administration->ACL . This document is still under construction.
Access Controls
Administration (admin)
Superuser - can delete patients, encounters, issues (super)
- Authorizations are:
- Configuring Globals (ie. Settings)
- Using the External Data Loads module
- Using the Backup module
- Administering Lists (including LBF Module)
- Administering Layouts (including LBF Module)
- Deleting Patients
- Deleting Issues
- Deleting Patient Notes
- Deleting Encounters
- Deleting Forms
- Deleting Transactions
- Deleting Bills
- Deleting items in the Pharmacy dispensary module
- Delete scanned forms (from contrib scanned forms module)
- Return Values: none
Calendar Settings (calendar)
- Allow administration of the appointment categories.
- Return Values: none
Database Reporting (database)
- Allows use of the embedded phpmyadmin module.
- Return Values: none
Forms Administration (forms)
- Allow administration of forms(adding/activiation/deactivating/categorizing).
- Return Values: none
Practice Settings (practice)
- Allows administration of practice settings (such as pharmacies, insurance companies, insurance numbers,
X12 partners and outside facilities address book).
- Return Values: none
Superbill Codes Administration (superbill)
- Allow administration of service codes.
- Return Values: none
Users/Groups/Logs Administration (users)
- Allows administration of user specific settings, such as user information, user logs, groups, user SSL certificates and facilities.
- Return Codes: none
Batch Communication Tool (batchcom)
- Allows use of the batch communication tool.
- Return Values: none
Language Interface Tool (language)
- Allows administration of the translations.
- Return Values: none
Pharmacy Dispensary (drugs)
- Allows administration of the pharmacy dispensary.
- Return Values: none
ACL Administration (acl)
- Allows administration of access controls.
- Return Values: none
Accounting (acct)
Billing (write optional) (bill)
Allowed to discount prices (in Fee Sheet or Checkout form) (disc)
EOB Data Entry (eob)
Financial Reporting - my encounters (rep)
Financial Reporting - anything (rep_a)
Patient Information (patients)
Appointments (write,wsome optional) (appt)
- Allows scheduling of appointments.
- Return Values:
- wsome - Can schedule appointments (but can not double book or schedule appt outside of a providers calendar template).
- write - Can schedule appointments (can double book and schedule appt outside of a providers calendar template)
Demographics (write,addonly optional) (demo)
- Allows viewing and entering of patient demographics(and insurance).
- Return Values:
- addonly - Allowed to enter new patient demographics.
- write - Allowed to enter new patient demographics and modify current patient demographics.
- ANY - Allowed to view patient demographics.
Medical Records and History (write,addonly optional) (med)
- Allows viewing and entering in of medical records.
- Return Values:
- addonly - Allowed to add medical records(specifically for adding new Issues).
- write - Allowed to add and modify medical records(specifically for adding new or modifying current medical issues and entering in of the patient history).
- ANY - Allowed to view medical records.
Transactions, e.g. referrals (write optional) (trans)
- Not used yet.
Documents (write,addonly optional) (docs)
- Not used yet.
Patient Notes (write,addonly optional) (notes)
- Allows viewing and entering in of patient notes.
- Return Values:
- addonly - Can enter in patient notes. (note there is no current difference between this and 'write')
- write - Can enter in patient notes. (note there is no current difference between this and 'addonly')
- ANY - Can view patient notes.
Sign Lab Results (write,addonly optional) (sign)
- Allows signing of labs.
- Return Values: none
Encounter Information (encounters)
Authorize - my encounters (auth)
- Not used yet.
Authorize - any encounters (auth_a)
- Not used yet.
Coding - my encounters (write,wsome optional) (coding)
Coding - any encounters (write,wsome optional) (coding_a)
Notes - my encounters (write,addonly optional) (notes)
Notes - any encounters (write,addonly optional) (notes_a)
Fix encounter dates - any encounters (date_a)
Less-private information (write,addonly optional) (relaxed)
Squads (squads)
- Section "squads" applies to Athletic Team use only:
- Access Controls in this section define the user-specified list of squads.
Sensitivities (sensitivities)
- This section is to provide access control to more sensitive encounters(ie. a user would need the High access control to see encounters that are of High sensitivity).
- Return Values: none
Normal (normal)
- User is able to see Normal sensitivity encounters.
- Return Values: none
High (high)
- User is able to see High sensitivity encounters.
- Return Values: none
Lists (lists)
- This section is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to these lists from the form.
- Return Values: none
Default List (write,addonly optional) (default)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to any of these lists on the forms that do not have a specific control for them.
- Return Values: none
State List (write,addonly optional) (state)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the State list from the form.
- Return Values: none
Country List (write,addonly optional) (country)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the Country list from the form.
- Return Values: none
Language List (write,addonly optional) (language)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the Language list from the form.
- Return Values: none
Ethnicity-Race List (write,addonly optional) (ethrace)
- This is specific to the "List box w/add" items in the layouts/LBFs. If have access to this, then user can add items to the Ethnicity-Race list from the form.
- Return Values: none
Placeholder (placeholder)
Placeholder (Maintains empty ACLs) (filler)
- Users: Do not need to know what this is (if curious, read below developer talk)
- Developers: Simply used to ensure an ACL is never empty (note an ACL is filled with Access Controls); this is needed, because if all Access Controls are removed from an ACL, then the ACL will also be removed.
- Return Values: none
Nation Notes (nationnotes)
Nation Notes (nn_configure)
- This will allow configuration(contexts,templates, etc.) of Nation Notes module.
- Return Values: none
Patient Portal (patientportal)
Patient Portal (portal)
- This will provide access to a third party portal.
- A 'Portal Activity' link at the top of the left menu will link to the third party portal at the address set in the Offsite Patient Portal Site Address setting.
- Return Values: none
