ediverse Explore the platform

Spotlight PEPPOL BIS Billing 3.0 The EU e-invoicing mandate is here — France Sept 2026, Belgium Jan 2026, Germany 2025.

Permission — Computed access authorisation

The bridge between a human Consent (will declaration) and a technical Policy Enforcement Point: an ABAC/RBAC rule consumable by a PEP/PDP, with activity, data, purpose and limits.

Purpose of the resource

Permission represents an authorisation rule derived from a Consent, an organisational policy or a legal obligation. Where Consent captures the patient's decision in business language, Permission translates it into evaluable ABAC rules: who can do what on which data for what purpose, over what period.

Emerging IHE PCF, ONC FAST Security and HL7 SMART Health Cards profiles use Permission as an exchange format between the consent engine and the application PEP.

Key fields

FieldTypeCardinalityRole
statuscode1..1active | entered-in-error | draft | rejected.
asserterReference(Organization | Practitioner | RelatedPerson | Patient)0..1Entity asserting the rule.
datedateTime[]0..*Significant dates (signature, review).
validityPeriod0..1Period of validity.
justificationBackboneElement0..1Reference to Consent / legal DocumentReference.
combiningcode0..1Combining algorithm: deny-overrides | permit-overrides | ordered-deny-overrides | ordered-permit-overrides | deny-unless-permit | permit-unless-deny.
ruleBackboneElement[]0..*Atomic rules (type, data, activity, limit).

JSON example

json permission-example.json
{
  "resourceType": "Permission",
  "id": "example",
  "status": "active",
  "asserter": { "reference": "Organization/example-hospital" },
  "date": ["2026-05-15"],
  "validity": {
    "start": "2026-05-15",
    "end": "2031-05-15"
  },
  "combining": "permit-overrides",
  "rule": [{
    "type": "permit",
    "data": [{
      "resource": [{
        "meaning": "instance",
        "reference": { "reference": "Patient/example" }
      }]
    }],
    "activity": [{
      "purpose": [{
        "coding": [{
          "system": "http://terminology.hl7.org/CodeSystem/v3-ActReason",
          "code": "TREAT"
        }]
      }]
    }]
  }]
}
AspectConsentPermission
AudienceHuman, legalSystem, PEP/PDP
GranularityCategory, type of useFine-grained ABAC action
LifecycleSigned by the patient, withdrawn or amendedRecomputed from applicable Consents
ModelDocumentRule (XACML-like)

Common pitfalls

  • Permission without combining — default evaluation is ambiguous.
  • Rule without activity — equates to "everything"; rarely intended.
  • Open-ended validity — close it or use justification + Consent.
  • Consent ↔ Permission sync — a revoked Consent must propagate to derived Permissions.