Developer API Resources
The Provider Directory Application Program Interface (API)
The Provider Directory Application Program Interface (API) is a recent development aimed at delivering current details regarding healthcare providers and facilities to beneficiaries of the Centers for Medicare & Medicaid Services (CMS). Through this API, beneficiaries can explore healthcare providers and facilities based on various factors such as location, specialty, and other criteria.
This API emerged as a response to the CMS Interoperability and Patient Access Final Rule. This regulation mandates health plans to furnish beneficiaries with access to precise and promptly updated provider directory information through an API. The rule's objective is to enhance access to care and guarantee that beneficiaries possess the necessary information to make well-informed decisions concerning their healthcare.
API Description
The Provider Directory guide is built on the Fast Healthcare Interoperability Resources (FHIR) STU3 API and serves as the cornerstone of a comprehensive provider directory. It delineates the scenarios and search criteria for locating a practitioner or organization, while also specifying the essential data elements and offering fundamental query instructions. The elements outlined in this guide aim to establish a groundwork for a centralized Provider Directory. Users will not be required to authenticate when accessing the Provider Directory API.
For more information about how to use the API, please refer to the API’s Documentation: NDE | API Methods (netsmartcloud.com) or view entry level information in the Provider Directory API Access Section below
The Patient Access Application Program Interface (API)
As part of the Centers for Medicare and Medicaid Services (CMS) Interoperability and Patient Access Rule, BHSD implemented a Patient Access as publicly available API which seeks to establish beneficiaries as the owners of their health information with the right to direct its transmission to third-party applications.
API Description
The Patient Access API allows members to access their personal health information through a third-party application of their choosing. This API implements the HL7 FHIR implementation guides listed below.
For more information about how to use the API, please refer to the API’s Documentation: NDE | API Methods (netsmartcloud.com) . If you’re just looking for how to get started read on.
Third party application developer registration.
To gain access to the API developer portal, register third party applications, and request third party application client credentials, developers should first request an API Developer Portal account using our account request form: API Access Request
If you are a registered developer, you can login here.
This documentation presumes that anyone accessing the API is familiar with the implementation guides for patient access USCore (hl7.org), HL7.FHIR.US.CARIN-BB\Home – FHIR v4.0.1 and https://build.fhir.org/ig/HL7/davinci-pdex-formulary/.
Once the API Developer has an account they can register their Organization and Third Party Application(s) via the API Developer Portal.. The OAuth2 Authorization Server / Open ID Connect Provider (AS/OP) provides necessary details for establishing secure communication with the third party application.
Patient Access API Access.
The FHIR base server URL for the live response production environment is: https://Fhir.netsmartcloud.com/uscore/v1/. The FHIR base server URL for the demo (e.g. third party application test or sandbox environment) is: https://Fhirtest.netsmartcloud.com/uscore/v1/ .
The live response production environment capability statement is available here: https:// https://Fhir.netsmartcloud.com/uscore/v1/metadata The demo (e.g. third party application test or sandbox environment) capability statement is available here https://Fhirtest.netsmartcloud.com/uscore/v1/metadata
An example of retrieving the live response production environment capability statement is below. Note that the HTTP Accept header is required. This command will download the capability statement into a file named netsmart-patient-cs.json:
curl -s https://fhir.netsmartcloud.com/uscore/v1/metadata --header "Accept: application/json" --output netsmart-patient-cs.json
An example of retrieving the demo (e.g. third party application test or sandbox environment) capability statement is below. Note that the HTTP Accept header is required. This command will download the capability statement into a file named netsmart-patient-cs-test.json:
curl -s https://fhirtest.netsmartcloud.com/uscore/v1/metadata --header "Accept: application/json" --output netsmart-patient-test-cs.json
Our FHIR RESTful capabilities include:
- Support the US Core resource profiles – conformance expectation SHALL.
- Support the CARIN-BB resource profiles conformance expectation SHALL.
- Support the US Drug Formulary resource profiles – conformance expectation SHALL.
- Implement the RESTful behavior according to the FHIR specification.
- For all the supported search interactions in this guide, support the GET based search only.
- Return the following response classes (at a minimum):
- (Status 400): invalid parameter
- (Status 401/4xx): unauthorized request
- (Status 403): insufficient scopes
- (Status 404): unknown resource
- Support JSON source formats for all US Core, CARIN-BB and US Drug Formulary interactions.
- Support the search parameters on each profile individually and in combination – conformance expectation SHALL.
FHIR Server
Third party applications will need to follow the SMART on FHIR specification, version 1.0.0. Third party applications must be pre-registered in the API Developer portal. After account creation, the API Developer will be walked through registering their application organization and their third party application. Currently, the Patient Access API implementation only supports patient read resource scopes along with the Smart on FHIR scopes such as launch/patient, fhirUser, openid, etc.
Capital Blue Cross monitors API requests, and request patterns, reserving the right to block IP address(es) if API traffic originating from that address(es) frequently disrupts normal operations of the API or demonstrates patterns of behavior consistent with attempts to attack the systems providing the API.
Resources
|
Description
|
CMS Interoperability and Patient Access Final Rule
|
Interoperability and Patient Access Final Rule (May 1, 2020) Medicare and Medicaid Programs; Patient Protection and Affordable Care Act; Interoperability and Patient Access for Medicare Advantage Organization and Medicaid Managed Care Plans, State Medicaid Agencies, CHIP Agencies and CHIP Managed Care Entities, Issuers of Qualified Health Plans on the Federally-Facilitated Exchanges, and Health Care Providers (85 Fed. Reg. 25510)
|
21st Century Cures Act
|
Interoperability, Information Blocking, and the ONC Health IT Certification Program
|
Richer documentation is available via the NetSmart Provider Directory Resources page here
Provider Directory API Access
The provider directory is an open access and public-facing API to make provider directory information available. This API does not require any authentication for any user.
This documentation presumes that anyone accessing the API is familiar with the implementation guide for provider directory, FHIR US DAVINCI-PDEX v4.0.1. The capability statement is available here
Endpoints:
URL (Production) – https://Fhir.netsmartcloud.com/uscore/v1/provider-directory
/Profile -
- /Practitioner
- /PractitionerRole
- /Location
- /Organization
- /OrganizationAffiliation
- /InsurancePlan
- /HealthcareService
- /Metadata
Richer documentation is available via the NetSmart Provider Directory Resources page here
Resources
|
Description
|
CMS Interoperability and Patient Access Final Rule
|
Interoperability and Patient Access Final Rule (May 1, 2020) Medicare and Medicaid Programs; Patient Protection and Affordable Care Act; Interoperability and Patient Access for Medicare Advantage Organization and Medicaid Managed Care Plans, State Medicaid Agencies, CHIP Agencies and CHIP Managed Care Entities, Issuers of Qualified Health Plans on the Federally-Facilitated Exchanges, and Health Care Providers (85 Fed. Reg. 25510)
|
21st Century Cures Act
|
Interoperability, Information Blocking, and the ONC Health IT Certification Program.
|
FHIR US DAVINCI-PDEX v4.0.1
|
This implementation guide defines a FHIR interface to a health insurer’s insurance plans, their associated networks, and the organizations and providers that participate in these networks.
|
Policies