org.hl7.fhir.core/security.md

# Introduction

# Local Filesystem

The main use of the local file system for the core library (other than the validator - see below) is for the 
[NPM package cache](https://confluence.hl7.org/display/FHIR/FHIR+Package+Cache). The default location and content
is as specified in the FHIR specification, but you can choose where this goes if you want, or provide your own NPM package cache manager. However there are other uses of the local file system scattered throughout the code, particularly in the test cases.

All access to the local file system runs through the class ManagedFileAccess. You can 
set the static features of this class to completely cut the library off from the 
local filesystem, or provide your own file system accessor, or limit the files accessed
to particular sub-directories. See ManagedFileAccess for details.

Note that libraries that this library depends on still access the filesystem directly. Review
of the use of these libraries is ongoing.

Validator: The validator CLI also accesses local files as specified in the command line parameters, 
and runs in the user context. TODO: we are considering whether to support a command line parameter 
restricting path access to particular directories.

# Network access

The library will access the web to download needed collateral, or to access terminology resources or servers.
All access is by http(s) using base java http library, and is controlled by the class ManagedWebAccess. You can 
set the static features of this class to completely cut the library off from the 
web, or provide your own web accessor, or limit the web resources accessed
to particular domains or sub-domains. See ManagedWebAccess for details.

Note that for legacy reasons, network access can also be prohibited using 
FhirSettings.setProhibitNetworkAccess(), but this is deprecated.

Note that libraries that this library depends on may still access the network directly. Review
of the use of these libraries is ongoing.

Validator: The validator CLI accesses the web to download packages and make use of the
terminology server, which defaults to https://tx.fhir.org.

# Logging 

todo

# Terminology Server Access

todo

# Cryptography 

Other than the https client, the library doesn't have any crypto functions in it. 

TODO: Actually, it does, reading SHCs
add start of security notes 2024-04-03 05:15:03 -04:00			`# Introduction`

			`# Local Filesystem`

			`The main use of the local file system for the core library (other than the validator - see below) is for the`
set up release 2024-04-16 16:21:22 -04:00			`[NPM package cache](https://confluence.hl7.org/display/FHIR/FHIR+Package+Cache). The default location and content`
			`is as specified in the FHIR specification, but you can choose where this goes if you want, or provide your own NPM package cache manager. However there are other uses of the local file system scattered throughout the code, particularly in the test cases.`
add start of security notes 2024-04-03 05:15:03 -04:00
			`All access to the local file system runs through the class ManagedFileAccess. You can`
			`set the static features of this class to completely cut the library off from the`
			`local filesystem, or provide your own file system accessor, or limit the files accessed`
			`to particular sub-directories. See ManagedFileAccess for details.`

set up release 2024-04-16 16:21:22 -04:00			`Note that libraries that this library depends on still access the filesystem directly. Review`
			`of the use of these libraries is ongoing.`

			`Validator: The validator CLI also accesses local files as specified in the command line parameters,`
			`and runs in the user context. TODO: we are considering whether to support a command line parameter`
			`restricting path access to particular directories.`

add start of security notes 2024-04-03 05:15:03 -04:00			`# Network access`

			`The library will access the web to download needed collateral, or to access terminology resources or servers.`
updates for ManagedWebAccess 2024-05-18 00:58:33 -04:00			`All access is by http(s) using base java http library, and is controlled by the class ManagedWebAccess. You can`
			`set the static features of this class to completely cut the library off from the`
			`web, or provide your own web accessor, or limit the web resources accessed`
			`to particular domains or sub-domains. See ManagedWebAccess for details.`

			`Note that for legacy reasons, network access can also be prohibited using`
			`FhirSettings.setProhibitNetworkAccess(), but this is deprecated.`
add start of security notes 2024-04-03 05:15:03 -04:00
more security doco 2024-05-18 09:03:27 -04:00			`Note that libraries that this library depends on may still access the network directly. Review`
			`of the use of these libraries is ongoing.`

			`Validator: The validator CLI accesses the web to download packages and make use of the`
			`terminology server, which defaults to https://tx.fhir.org.`

add start of security notes 2024-04-03 05:15:03 -04:00			`# Logging`

			`todo`

set up release 2024-04-16 16:21:22 -04:00			`# Terminology Server Access`

			`todo`

add start of security notes 2024-04-03 05:15:03 -04:00			`# Cryptography`

			`Other than the https client, the library doesn't have any crypto functions in it.`

			`TODO: Actually, it does, reading SHCs`