Glossary
What is FHIR AuditEvent?
FHIR AuditEvent is the resource type that records access to and actions on FHIR resources, supporting regulatory audit and security investigation.
In context
AuditEvent captures who did what, when, to which resources, from where. Fields cover the agent (the user or system performing the action), the source (the system that emitted the audit), the entity (the resources affected), and the action (read, create, update, delete, execute).
AuditEvent is the FHIR-resource-shaped representation of an audit log entry. Whether to materialize the audit as AuditEvent resources in the FHIR store, ship them to a separate log infrastructure, or both is a deployment decision.
How Fire Arrow handles it
Fire Arrow's audit log captures the same content AuditEvent describes (resolved identity, operation, resource, timestamp, rule that matched) and ships it to the operator's log infrastructure. AuditEvent resources can be written into the FHIR store for queryable access alongside.