Given the upcoming changes in assigning user roles and privileges in v2.0, it would be helpful to know which specific privileges will confer access to PHI. Would it be possible to have a list of the v2.0 user privileges that confer access to PHI?
Hello @Matthew_Marcetich,
We are in process of creating documentation for v2.0. To answer your question, PHI access is associated with the access to the resource ‘Participant(PHI)’. Any role which has access to this resource will automatically get access to the PHI data. Default roles like administrator, tissue banker, PI and coordinator have access to PHI within their protocols.
Thanks,
Poornima
Thanks @pgovindrao, this feedback is helpful. Just to clarify, for any custom role where Participant(PHI) is assigned as a privilege, PHI will be accessible?
Is there a way to restrict querying PHI and displaying of PHI in query results?
That is right, any role with Participant(PHI) will have access to PHI.
For restricting PHI, remove all permissions including read on Participant(PHI) and user will not be able to see PHI in query results.
Thanks,
Poornima
Will existing user privileges in v1.1 migrate to v2.0 during upgrade?
Since user privileges module is completely rewritten, the privileges has to be reassigned. This can either be done via UI manually after upgrade if there are not many users. We will also provide a method where you will be able to fill in the privileges information for all users in a CSV and it will be taken care of during upgrade.
Thanks,
Poornima