-
Notifications
You must be signed in to change notification settings - Fork 28
Home
FHIR Information Gateway is a reverse proxy which controls client access to FHIR resources on a server by checking requests for authorization to access a FHIR resource or search query. In combination with an Identity Provider (IDP) and Authorization server (AuthZ), FHIR Information Gateway enables authorization and access-control between a client application and a server with FHIR data.
FHIR Information Gateway is designed to be a FHIR-server agnostic stand-alone service that can integrate with any IDP and AuthZ services using standard protocols like OpenID Connect and OAuth 2.0. Besides the gateway implementation, the repository also offers a sample deployment architecture with Keycloak as the IDP+AuthZ service; it has been tested with HAPI FHIR server and Cloud Healthcare API FHIR store as the FHIR server.
In order to adapt FHIR Information Gateway to your use case, create an Access Checker Plugin to define the logic FHIR Information Gateway uses to make decisions for granting access. Most users should not need to modify the server code itself.
To get started, try out FHIR Information Gateway using Docker.
For more information, check out:
- The README
- The Wiki navigation bar for additional guides