...
Each PrivilegeGroup must contain either a constraint with Name = "urn:dk:gov:saml:sorIdentifier" or Name = "urn:dk:kombit:orgUnit", but not both.
A constraint with Name = "urn:dk:gov:saml:sorIdentifier" and value = "A" refers to a Fhir Organization resource with an identifer with system = "urn:oid:1.2.208.176.1.1" and value = "A".
A constraint with Name = "urn:dk:kombit:orgUnit" and value = "B" refers to a Fhir Organization resource with an identifer with system = "https://www.kombit.dk/sts/organisation" and value = "B".
A Privilige group may also contain a constraint with Name "urn:dk:sundhed:ehealth:careteam".
A constraint with Name = "urn:dk:sundhed:ehealth:careteam" and value = "C" refers to a Fhir CareTeam resource with an identifer with system = "urn:ietf:rfc:3986" and value = "C".
Each PrivilegeGroup must contain at least one Privilege.
Allowed privileges:
- urn:dk:healthcare:futTreatmentResponsible_0_3
- urn:dk:healthcare:futMonitoringResponsible_0_3
- urn:dk:healthcare:futMonitoringDelegate_0_3
- urn:dk:healthcare:futClinicalContentDefiner_0_3
- urn:dk:healthcare:futRequestEffectuator_0_3