Authorizations difficulty

emilykillian wrote on Monday, March 14, 2005:

When signed on as an authorized user in OpenEMR, I have two authorizations that won’t go away. They persist, even after being authorized several times. Any ideas on what could be causing the problem?

emilykillian wrote on Monday, March 14, 2005:

Similarly, when an unauthorized user enters a patient note, it is not appearing on the authorizations screen.

sunsetsystems wrote on Monday, March 14, 2005:

What version?

drbowen wrote on Tuesday, March 15, 2005:

2.6.5EA

sunsetsystems wrote on Tuesday, March 15, 2005:

Dunno, sorry, I’m only working with the current cvs code.  You might check if any errors are logged by PHP.

emilykillian wrote on Thursday, March 17, 2005:

OK. Thanks.

mick1916 wrote on Wednesday, November 30, 2011:

Along the lines of authorizations I have been having some problems as well.
Using Version 4.1 on Debian 6 with current patches applied.
My problem is with trying to set authorizations for users that need the calendar but are NOT authorized as billing entities.
Is it possible to restrict authorizations for providers? I am working on getting OpenEMR up and running for a small non-profit mental health organization and all of their
billing must be done under a professional with a PhD. Therapists that see the clients however are all licensed social workers.
If the therapists are NOT marked as Providers then they cannot use the full calendar functions, but if they are then the can authorize their own encounters etc which is unacceptable in this case
as they have to be authorized by the individual with the PhD.
I have tried the following options.
1. Making the therapists providers and setting see auth to NONE.
2. setting them as Clinicians and or doctors and giving them access to the calendar settings, which is wrong I know but I am trying everything.
3. Creating a new group ‘Supervisor’ and trying to use that as the only authorized person.

Regardless of what I try either the therapists have No access to calendar scheduling etc or they have the ability to authorize anything.
It seems that the ‘Provider’ selection overrides everything even the settings chosen in ACL.

mick1916 wrote on Thursday, December 01, 2011:

Just wanted to update my previous post on the authorization issue I was having with not being able to have people access the calendar without making them Providers.
The solution was in the authorizations.php file at about line 28

{$atemp = sqlQuery("SELECT see_auth FROM users WHERE username = ?", array($_SESSION['authUser']) );
$see_auth = $atemp['see_auth'];
$imauthorized = $_SESSION['userauthorized'] || $see_auth > 2;}

by changing this to

 {$atemp = sqlQuery("SELECT see_auth FROM users WHERE username = ?", array($_SESSION['authUser']) );
$see_auth = $atemp['see_auth'];
$imauthorized = $see_auth > 2;}

it is possible to allow the therapists access to the scheduling features while restricting their ability to authorize, using the see_auth drop down on the user add page.
Probably not a perfect fix as I am sure their status as providers still would allow them to authorize encounters etc but at least what they cannot see they cannot authorize.
Hope this helps anyone else who has had/is having  the same problem. At least temporarily