In order to access information stored in the Multisafe environment Brusafe+ environment the user requesting the information much first be authenticated. (see Authentication)
An authenticated user cannot access all information in the Multisafe Brusafe+environment. The information he or she is allowed to access is based on the patients consent and the patient - user relationship.
...
Setting up this relationship is done in the Multisafe Brusafe+portal. (See Portal)
Besides the patient - user relationship there has to also be a patient consent registered in the BGN network. If there is no patient concent, no information will be returned, even if a patient - user relationship has been set up.
Authentication and Authorization are supplied to the Multisafe Brusafe+environment using a SAML token. The SAML token is based on the XUA profile as descbribed by IHE.
...