Authorization and Access Control
This section covers Medplum's authorization tools. Medplum supports a rich set of primitives to provide fine grained control over what data users can access, and what operations the can perform.
AccessPolicy resource can be used to restrict read and write access to FHIR data, either on a per-resource type or per-field basis. The access policy guide covers the basics of setting up