Overview#

Internet User Authorization (IUA) is an Authorization "profile" developed by the Integrating the Healthcare Enterprise (IHE) profile manage the tokens used for authorization of access to HTTP RESTful services.

The Authorization Client actor provides the authorization token that is incorporated into HTTP RESTful transactions to indicate that this transaction is authorized. The Authorization Client can also manage the interactions with an Authorization Server to obtain the authorization token. The Resource Server actor provides the server side interaction to verify that the HTTP RESTful request is authorized. It blocks unauthorized uses. For authorized uses, it provides the information from the authorization token to the other server actor(s) for use as part of access control decisions.

Underlying Standards:

• RFC 6749 OAuth 2.0 Authorization
• RFC 6750 OAuth 2.0 Authorization Framework: Bearer Token Usage
• RFC 7523 - JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants
• RFC 7522 - Security Assertion Markup Language (SAML) 2.0 Profile for OAuth 2.0 Client Authentication and Authorization Grants
• RFC 7797 - JSON Web Signature (JWS) Unencoded Payload Option
• RFC 7519 - JSON Web Tokens (JWT)
• RFC 8252 - OAuth 2.0 for Native Apps

More Information#

There might be more information for this subject on one of the following:

• IUA
• Integrating the Healthcare Enterprise