<?xml version="1.0" encoding="UTF-8"?>
<!-- Sample configuration for grant/revoke Study Permissions on Series Stored event -->
<xsl:output method="xml"/>
<!-- overwritten by application with actual value -->
<xsl:param name="calling" select="'SAMPLE_MOD'" />
<xsl:template match="/dataset">
<permissions>
<xsl:variable name="studyUID" select="attr[@tag='0020000D']" />
<xsl:variable name="seriesMOD" select="attr[@tag='00080060']" />
<xsl:variable name="patIssuer" select="attr[@tag='00100021']" />
<xsl:choose>
<xsl:when test="$seriesMOD='CT' and contains(@patIssuer,'DCM4CHEE')">
<grant role="ct" action="Q,R,A,E" suid="{attr[@tag='0020000D']}"/>
</xsl:when>
<xsl:otherwise>
<grant role= "Unknown" action="Q,R,A,E" suid="{attr[@tag='0020000D']}"/>
</xsl:otherwise>
</xsl:choose>
</permissions>
</xsl:template>
</xsl:stylesheet>
If i use the WebInterface of DCM4CHE logging as "ct" user i'm able to filter the study for the said user assigned to this role (using "search for Study" query type)
But if i use a Patient query type "search for Patient", i'm able to view all the patients recorded in the system.
Is that a correct behavior?
Besides when i try to use OsiriX to view image according to the Roled Based Access i see again all the studies of the system.
I feel like I'm missing something obvious here but I'm very new to this. any suggestions would be much appreciated.
Thank you in advance for the help