Java-console parity rows
Mapped to live backend/API routes
Endpoint known, execution unfinished
182 guarded/locked actions
All functions need a surface and contract
Requires installed Mirth/BridgeLink plugins
free/read-only or local kill switch
Guarded Action Console
Dry-run or execute the same real adapters used by buttons, editors, deployments, messages, users, alerts, settings, and resources.
Deploy channel/groupDeploy selected channels or group with diff, snapshot, note, dependency handling
POST /api/channels/{channelId}/_deployRBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshotFree/read-only mode can dry-run action plans, but execute is locked until a paid license and local write gate are active.
Rollback Restore
Use a rollback snapshot pointer from an executed action. Restore runs through its own note, approval, confirmation, audit, and post-restore verification.
Action Registry
Every Java Admin action gets a web contract, risk level, guard list, and REST/backend adapter plan.
| ID | Capability | Risk | Surface | Adapter | Endpoint | Guards |
|---|---|---|---|---|---|---|
| AUTH-001Server Profiles, Login, And Session | Connect to a Mirth server by URLManage server profiles with API URL, environment, TLS mode, health, and active target | security | /servers | wiredCreate persistent server profile with encrypted backend credentials. | POST/api/mirth/server-profiles | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| AUTH-002Server Profiles, Login, And Session | Manage multiple Administrator launcher connectionsPer-user multi-server profile list with quick switching across test/stage/prod/DR | security | /servers | wiredManage per-user Mirth and BridgeLink server profiles. | POST/api/mirth/server-profiles | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| AUTH-003Server Profiles, Login, And Session | Login to selected serverServer-side credential/token exchange; no Mirth passwords in browser storage | security | /servers | plannedSelected server activation uses stored credentials; full user login/session is still part of the auth build. | POST/api/mirth/server-profiles/{serverId}/activate | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| AUTH-004Server Profiles, Login, And Session | First-login/password-change flowsSecure password setup/change flow where supported by target server | security | /servers | plannedContract assigned from parity matrix: Server Profiles, Login, And Session / First-login/password-change flows. | POST/api/mirth/actions/AUTH-004 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| AUTH-005Server Profiles, Login, And Session | Session timeout/logoffExplicit logout, idle timeout, session expiration handling, upstream 401 shown in-page | security | /servers | plannedContract assigned from parity matrix: Server Profiles, Login, And Session / Session timeout/logoff. | POST/api/mirth/actions/AUTH-005 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| AUTH-006Server Profiles, Login, And Session | TLS/certificate handlingTrust policy per server profile; cert warnings surfaced without browser secret leakage | security | /servers | wiredTLS verification policy is stored per server profile. | POST/api/mirth/server-profiles | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| AUTH-007Server Profiles, Login, And Session | Permissions and rolesRBAC loaded per active server and enforced on every action | security | /servers | plannedContract assigned from parity matrix: Server Profiles, Login, And Session / Permissions and roles. | POST/api/mirth/actions/AUTH-007 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| AUTH-008Server Profiles, Login, And Session | Active contextActive server, environment, user, write mode, and connection state visible globally | security | /servers | wiredSwitch active server context on the backend and reload live data. | POST/api/mirth/server-profiles/{serverId}/activate | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| UX-001App Shell, Tables, And Operator Ergonomics | Left navigation/task panelFull desktop console shell with monitor, management, edit, settings, and admin areas | write | / | plannedContract assigned from parity matrix: App Shell, Tables, And Operator Ergonomics / Left navigation/task panel. | GET/api/mirth/actions/UX-001 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| UX-002App Shell, Tables, And Operator Ergonomics | Context-sensitive tasksPage/selection-aware action rail or toolbar matching available operations | read | / | plannedContract assigned from parity matrix: App Shell, Tables, And Operator Ergonomics / Context-sensitive tasks. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| UX-003App Shell, Tables, And Operator Ergonomics | Sort/filter/select tablesSortable, filterable, keyboard-friendly tables with multi-select and preserved selection | read | / | plannedContract assigned from parity matrix: App Shell, Tables, And Operator Ergonomics / Sort/filter/select tables. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| UX-004App Shell, Tables, And Operator Ergonomics | Show/hide columnsColumn picker and saved user preferences per table | write | / | plannedContract assigned from parity matrix: App Shell, Tables, And Operator Ergonomics / Show/hide columns. | POST/api/mirth/actions/UX-004 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| UX-005App Shell, Tables, And Operator Ergonomics | Table copy/export ergonomicsCopy selected cells/rows and export visible/search result data where appropriate | read | / | plannedContract assigned from parity matrix: App Shell, Tables, And Operator Ergonomics / Table copy/export ergonomics. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| UX-006App Shell, Tables, And Operator Ergonomics | NotificationsNotification center for server/product notices and unread state | read | / | plannedContract assigned from parity matrix: App Shell, Tables, And Operator Ergonomics / Notifications. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| UX-007App Shell, Tables, And Operator Ergonomics | User API docs linkOpen target server User API/Javadocs or local equivalent | read | / | plannedContract assigned from parity matrix: App Shell, Tables, And Operator Ergonomics / User API docs link. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| UX-008App Shell, Tables, And Operator Ergonomics | Client/REST API docs linkOpen target server REST/API docs or local equivalent | read | / | plannedContract assigned from parity matrix: App Shell, Tables, And Operator Ergonomics / Client/REST API docs link. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MON-001Dashboard / Monitor | Dashboard channel tableLive deployed-channel table by active server | read | / | wiredDashboard table read for all deployed channel statuses. | GET/api/channels/statuses | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MON-002Dashboard / Monitor | Channel and connector stateNormalize deployed, started, paused, stopped, undeployed, warning, error, unknown | read | / | wiredChannel and connector state normalization source. | GET/api/channels/statuses | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MON-003Dashboard / Monitor | Current and lifetime statisticsReceived, sent, filtered, queued, errored by channel and connector, with current/lifetime mode | read | / | wiredChannel statistics endpoint for current and lifetime counters. | GET/api/channels/statistics | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MON-004Dashboard / Monitor | Auto refreshPolling/SSE/WebSocket refresh with stale-state indicator and user interval setting | read | / | plannedContract assigned from parity matrix: Dashboard / Monitor / Auto refresh. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MON-005Dashboard / Monitor | Manual refreshRefresh current dashboard/table/log/global-map tabs | read | / | plannedContract assigned from parity matrix: Dashboard / Monitor / Manual refresh. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MON-006Dashboard / Monitor | Channel/name/tag filteringFilter dashboard by tag, channel name, partial name, and multi-criteria | read | / | plannedContract assigned from parity matrix: Dashboard / Monitor / Channel/name/tag filtering. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MON-007Dashboard / Monitor | Server log tabView, pause/resume, clear local view, search, and export server log stream | deploy | / | plannedContract assigned from parity matrix: Dashboard / Monitor / Server log tab. | POST/api/mirth/actions/MON-007 | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MON-008Dashboard / Monitor | Connection log tabView, pause/resume, clear local view, search, and export connection log stream | deploy | / | plannedContract assigned from parity matrix: Dashboard / Monitor / Connection log tab. | POST/api/mirth/actions/MON-008 | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MON-009Dashboard / Monitor | Global maps tabView global map and per-channel global channel map entries with long-value inspection | read | / | plannedContract assigned from parity matrix: Dashboard / Monitor / Global maps tab. | GET/ | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MON-010Dashboard / Monitor | Send message taskSend a payload to a selected channel with source/metadata options and audit | write | / | wiredProcess a payload through a selected channel. | POST/api/channels/{channelId}/messages | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| MON-011Dashboard / Monitor | View messages taskOpen message browser scoped to selected channel | read | / | wiredOpen message browser scoped to a channel. | GET/api/channels/{channelId}/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MON-012Dashboard / Monitor | Remove all messagesDestructive purge of channel message/attachment data with hard confirmation and audit | destructive | / | wiredRemove all messages for a selected channel. | DELETE/api/channels/{channelId}/messages/_removeAll | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| MON-013Dashboard / Monitor | Clear statisticsReset current/lifetime statistics at channel/connector scope with audit | destructive | / | wiredClear scoped channel or connector statistics. | POST/api/channels/_clearStatistics | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| MON-014Dashboard / Monitor | Start/resumeStart selected channel(s)/connector(s), honoring dependency workflow | deploy | / | wiredStart or resume one channel. | POST/api/channels/{channelId}/_start | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MON-015Dashboard / Monitor | PausePause selected channel(s), honoring dependency workflow | deploy | / | wiredPause one channel. | POST/api/channels/{channelId}/_pause | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MON-016Dashboard / Monitor | StopGracefully stop selected channel(s)/connector(s), honoring dependency workflow | deploy | / | wiredGracefully stop one channel. | POST/api/channels/{channelId}/_stop | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MON-017Dashboard / Monitor | HaltImmediate halt behavior with unfinished-message warning and audit | deploy | / | wiredImmediately halt one channel. | POST/api/channels/{channelId}/_halt | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MON-018Dashboard / Monitor | Undeploy from dashboardUndeploy selected deployed channel(s), honoring dependency workflow | deploy | / | wiredUndeploy one channel from the dashboard. | POST/api/channels/{channelId}/_undeploy | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MSG-001Message Browser | Navigate from dashboard/channelsOpen message browser scoped to channel/server context | read | /messages | wiredMessage browser navigation endpoint. | GET/api/channels/{channelId}/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-002Message Browser | Search messagesSearch by channel, date range, status, connector, message ID, metadata, and content | read | /messages | wiredSearch messages by filter criteria. | GET/api/channels/{channelId}/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-003Message Browser | Advanced search filtersBoolean/filter builder for content, metadata, connector, status, and case-insensitive operators | read | /messages | plannedContract assigned from parity matrix: Message Browser / Advanced search filters. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-004Message Browser | Count and paginationCount results, page through stable result sets, preserve max message ID behavior | read | /messages | wiredCount matching messages. | GET/api/channels/{channelId}/messages/count | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-005Message Browser | Refresh search pageRefresh current page without pulling newer messages into the result set unexpectedly | read | /messages | plannedContract assigned from parity matrix: Message Browser / Refresh search page. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-006Message Browser | Metadata tableMessage result table with standard metadata columns and custom metadata columns | read | /messages | plannedContract assigned from parity matrix: Message Browser / Metadata table. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-007Message Browser | Add/remove metadata columnsUser-customizable metadata result columns | destructive | /messages | plannedContract assigned from parity matrix: Message Browser / Add/remove metadata columns. | GET/api/mirth/actions/MSG-007 | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| MSG-008Message Browser | Content tabRaw, processed raw, transformed, encoded, sent, response, and response-transformed content tabs | read | /messages | wiredRead full message content by ID. | GET/api/channels/{channelId}/messages/{messageId} | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-009Message Browser | Content formattingPretty print XML/JSON and preserve raw/plain views | read | /messages | plannedContract assigned from parity matrix: Message Browser / Content formatting. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-010Message Browser | Mappings tabShow connector/channel/source/response map content for selected message | read | /messages | plannedContract assigned from parity matrix: Message Browser / Mappings tab. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-011Message Browser | Errors tabShow error details, type/category, exception message, stack/source context where available | read | /messages | plannedContract assigned from parity matrix: Message Browser / Errors tab. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-012Message Browser | Attachments tabAttachment table with metadata, size, type, and download/export actions | read | /messages | wiredList attachments for a message. | GET/api/channels/{channelId}/messages/{messageId}/attachments | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-013Message Browser | Text attachment viewerRender text attachments safely | read | /messages | plannedContract assigned from parity matrix: Message Browser / Text attachment viewer. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-014Message Browser | Image attachment viewerRender image attachments safely | read | /messages | plannedContract assigned from parity matrix: Message Browser / Image attachment viewer. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-015Message Browser | DICOM attachment viewerRender/download DICOM attachment with metadata-safe viewer or fallback download | read | /messages | plannedContract assigned from parity matrix: Message Browser / DICOM attachment viewer. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-016Message Browser | PDF attachment viewerRender/download PDF attachment safely | read | /messages | plannedContract assigned from parity matrix: Message Browser / PDF attachment viewer. | GET/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-017Message Browser | Import messagesImport messages from file into channel message data with audit and clear non-processing warning | write | /messages | wiredImport a Message object without processing it. | POST/api/channels/{channelId}/messages/_import | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| MSG-018Message Browser | Export resultsExport all search matches, not just current page, with format/password options where supported | security | /messages | wiredExport messages server-side using a filter. | POST/api/channels/{channelId}/messages/_exportUsingFilter | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| MSG-019Message Browser | Remove resultsDestructive remove of selected/search-result messages with hard confirmation and audit | destructive | /messages | wiredRemove messages matching selected criteria. | POST/api/channels/{channelId}/messages/_remove | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| MSG-020Message Browser | Remove all messagesDestructive channel-wide purge from browser context with hard confirmation and audit | destructive | /messages | wiredRemove all messages for a selected channel from the message browser. | DELETE/api/channels/{channelId}/messages/_removeAll | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| MSG-021Message Browser | Reprocess resultsReprocess all selected/search-result messages with idempotency and audit | deploy | /messages | wiredReprocess messages by filter. | POST/api/channels/{channelId}/messages/_reprocessWithFilter | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MSG-022Message Browser | Reprocess messageReprocess a single message/connector message with target options | deploy | /messages | wiredReprocess one message by ID. | POST/api/channels/{channelId}/messages/{messageId}/_reprocess | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MSG-023Message Browser | Export attachmentExport/download selected attachment | read | /messages | wiredDownload one attachment. | GET/api/channels/{channelId}/messages/{messageId}/attachments/{attachmentId} | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MSG-024Message Browser | Send message from browserSend new payload to current channel from message browser | write | /messages | wiredSend/process a new payload through a channel. | POST/api/channels/{channelId}/messages | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| ALT-001Alerts | Alerts tableView enabled state, alert name/ID, and trigger/action counters | read | /events | wiredAlerts inventory read. | GET/api/alerts | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| ALT-002Alerts | Refresh alertsManual and auto-refresh alert state | read | /events | wiredAlert status refresh endpoint. | GET/api/alerts/statuses | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| ALT-003Alerts | New/edit/delete alertFull alert CRUD with guarded destructive delete | destructive | /events | wiredAlert create/edit/delete family. Operation param resolves create/edit/delete to the matching Mirth endpoint. | PUT/api/alerts/{alertId} | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| ALT-004Alerts | Import/export alertsImport one alert, export selected/all alerts as XML | write | /events | wiredImport/create alert payload; export uses GET /api/alerts through the read surface. | POST/api/alerts | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| ALT-005Alerts | Enable/disable alertGuarded alert activation/deactivation with audit | write | /events | wiredEnable or disable an alert. | POST/api/alerts/{alertId}/{alertOperation} | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| ALT-006Alerts | Error trigger configConfigure error types, categories, regex, and channel scope | read | /events | plannedContract assigned from parity matrix: Alerts / Error trigger config. | GET/events | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| ALT-007Alerts | Enabled channelsSelect all/specific channels the alert applies to | read | /events | plannedContract assigned from parity matrix: Alerts / Enabled channels. | GET/events | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| ALT-008Alerts | Alert actionsConfigure channel dispatch, email, user, and role actions where supported | security | /events | plannedContract assigned from parity matrix: Alerts / Alert actions. | GET/api/mirth/actions/ALT-008 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| ALT-009Alerts | Alert templates/variablesSubject/body/template editor with supported variables and validation | write | /events | plannedContract assigned from parity matrix: Alerts / Alert templates/variables. | GET/api/mirth/actions/ALT-009 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| ALT-010Alerts | Save/export from edit viewSave current alert and export current alert XML | write | /events | wiredSave current alert from the edit view; export reads the same selected alert model. | PUT/api/alerts/{alertId} | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| ALT-011Alerts | Advanced alerting extensionMetric/escalation/schedule/throttle panels when extension exists | extension | /events | extensionContract assigned from parity matrix: Alerts / Advanced alerting extension. | POST/api/mirth/actions/ALT-011 | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| EVT-001Events And Audit | Events tableView user/system events for active server | read | /events | wiredServer event table read. | GET/api/events | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| EVT-002Events And Audit | Event metadata/attributesShow event metadata and attribute details | read | /events | plannedContract assigned from parity matrix: Events And Audit / Event metadata/attributes. | GET/events | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| EVT-003Events And Audit | PHI event visibilityPermission-aware PHI event display and redaction | security | /events | plannedContract assigned from parity matrix: Events And Audit / PHI event visibility. | GET/api/mirth/actions/EVT-003 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| EVT-004Events And Audit | Event searchSearch by date, user, type, outcome, metadata, and advanced filters | read | /events | wiredSearch and filter event history. | GET/api/events | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| EVT-005Events And Audit | Export all eventsExport event history with audit/reporting controls | read | /events | wiredExport event history from the same event source. | POST/api/events/_export | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| EVT-006Events And Audit | Web console audit trailStore this app's own read/write/deploy/approval actions in a database-backed immutable audit ledger with operator/server identity, references, reporting, and exports | deploy | /events | wiredWeb-console audit trail for guarded actions. | POST/api/mirth/actions | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| CH-001Channels And Groups | Channel tableList channels with ID, name, revision, deployed/enabled state, group, tags, invalid state | read | /builder | wiredChannels table inventory. | GET/api/channels | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CH-002Channels And Groups | Channel groups displayShow/hide groups, default group, group rows, group membership | read | /builder | wiredChannel group inventory. | GET/api/channelgroups | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CH-003Channels And Groups | Tag display and filteringFilter and display channels by name/tag with same semantics across monitor/channels | read | /builder | plannedContract assigned from parity matrix: Channels And Groups / Tag display and filtering. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CH-004Channels And Groups | Drag/drop channel groupingAssign channels to groups using UI actions and accessible fallback | write | /builder | plannedContract assigned from parity matrix: Channels And Groups / Drag/drop channel grouping. | POST/api/mirth/actions/CH-004 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CH-005Channels And Groups | Drag/drop XML importImport channel/group XML files, including multi-file import | write | /builder | plannedContract assigned from parity matrix: Channels And Groups / Drag/drop XML import. | POST/api/mirth/actions/CH-005 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CH-006Channels And Groups | Get channel name/IDCopy channel name/ID quickly | read | /builder | plannedContract assigned from parity matrix: Channels And Groups / Get channel name/ID. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CH-007Channels And Groups | Refresh channelsRefresh channel table | read | /builder | wiredRefresh channel list. | GET/api/channels | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CH-008Channels And Groups | Redeploy allUndeploy all then deploy enabled channels with dependency and audit workflow | deploy | /builder | wiredRedeploy all enabled channels. | POST/api/channels/_redeployAll | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| CH-009Channels And Groups | Deploy channel/groupDeploy selected channels or group with diff, snapshot, note, dependency handling | deploy | /builder | wiredDeploy or redeploy a selected channel. | POST/api/channels/{channelId}/_deploy | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| CH-010Channels And Groups | Debug channelDeploy selected channel in debug mode for selected scripts | deploy | /channels | plannedContract assigned from parity matrix: Channels And Groups / Debug channel. | GET/api/mirth/actions/CH-010 | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| CH-011Channels And Groups | New channelCreate draft channel before saving to server | write | /channels | plannedContract assigned from parity matrix: Channels And Groups / New channel. | POST/api/mirth/actions/CH-011 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CH-012Channels And Groups | Import channelImport channel XML, handle name collisions, optionally include code template libraries | write | /channels | wiredImport or create a channel from XML/JSON. | POST/api/channels | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CH-013Channels And Groups | Export selected/all channelsExport channel XML with optional linked code template libraries | read | /channels | wiredExport selected channel XML with optional linked libraries. | GET/api/channels/{channelId} | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CH-014Channels And Groups | Delete channelDestructive delete with message/attachment deletion warning, snapshot, confirmation, audit | destructive | /channels | wiredDelete one channel. | DELETE/api/channels/{channelId} | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| CH-015Channels And Groups | Clone channelClone selected channel into unsaved draft with unique-name prompt | write | /channels | plannedContract assigned from parity matrix: Channels And Groups / Clone channel. | POST/api/mirth/actions/CH-015 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CH-016Channels And Groups | Edit channelOpen channel Studio for selected channel | write | /channels | wiredOpen channel in Studio. | GET/api/channels/{channelId} | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CH-017Channels And Groups | Enable/disable channelToggle deploy eligibility without confusing current deployed state | deploy | /channels | wiredEnable or disable channel deploy eligibility. | POST/api/channels/{channelId}/enabled/{enabled} | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| CH-018Channels And Groups | View channel messagesOpen message browser for selected channel | read | /channels | wiredOpen messages for one channel. | GET/api/channels/{channelId}/messages | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CH-019Channels And Groups | View channel historyShow installed channel history/version extension when available | extension | /channels | extensionContract assigned from parity matrix: Channels And Groups / View channel history. | POST/api/mirth/actions/CH-019 | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| CH-020Channels And Groups | Save group changesPersist group reorder/membership/detail changes | write | /builder | wiredSave group reorder and membership changes. | POST/api/channelgroups/_bulkUpdate | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CH-021Channels And Groups | Assign to groupMove selected channels to group | write | /builder | plannedContract assigned from parity matrix: Channels And Groups / Assign to group. | POST/api/mirth/actions/CH-021 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CH-022Channels And Groups | New/edit/delete groupChannel group CRUD with default-group behavior | destructive | /builder | wiredChannel group CRUD through bulk update. | POST/api/channelgroups/_bulkUpdate | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| CH-023Channels And Groups | Import/export groupsImport/export selected/all channel group XML, with code-template option | write | /builder | plannedGroup XML import/export strategy. | GET/api/channelgroups | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-001Channel Studio / Edit Channel | Summary tabEdit channel name, ID, revision, enabled flag, tags, description | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Summary tab. | GET/api/mirth/actions/EDIT-001 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-002Channel Studio / Edit Channel | Data type windowSet inbound/outbound data types and properties with bulk edit mode | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Data type window. | GET/api/mirth/actions/EDIT-002 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-003Channel Studio / Edit Channel | Dependencies windowLink code template libraries, library resources, deploy/start dependencies, stop/pause/undeploy behavior | deploy | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Dependencies window. | GET/api/mirth/actions/EDIT-003 | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| EDIT-004Channel Studio / Edit Channel | Attachment handlersConfigure entire-message, regex, DICOM, JavaScript, custom handlers, extraction/reattachment/MIME rules | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Attachment handlers. | GET/api/mirth/actions/EDIT-004 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-005Channel Studio / Edit Channel | Message storage settingsComplete message-storage slider/options and encryption/persistence settings | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Message storage settings. | GET/api/mirth/actions/EDIT-005 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-006Channel Studio / Edit Channel | Message pruning settingsChannel-level pruning/retention settings | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Message pruning settings. | GET/api/mirth/actions/EDIT-006 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-007Channel Studio / Edit Channel | Custom metadata columnsAdd/edit/remove metadata columns and search integration | destructive | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Custom metadata columns. | GET/api/mirth/actions/EDIT-007 | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| EDIT-008Channel Studio / Edit Channel | Source tabChoose source connector and edit source connector settings | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Source tab. | GET/api/mirth/actions/EDIT-008 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-009Channel Studio / Edit Channel | Listener settingsListener binding/port/protocol settings where applicable | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Listener settings. | GET/api/mirth/actions/EDIT-009 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-010Channel Studio / Edit Channel | Polling settingsInterval, time, cron, and advanced polling settings | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Polling settings. | GET/api/mirth/actions/EDIT-010 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-011Channel Studio / Edit Channel | Source HTTP authNone/basic/digest/JavaScript/custom class/OAuth token verification where supported | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Source HTTP auth. | GET/api/mirth/actions/EDIT-011 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-012Channel Studio / Edit Channel | Source connector propertiesDynamic source connector property renderer | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Source connector properties. | GET/api/mirth/actions/EDIT-012 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-013Channel Studio / Edit Channel | Destinations tabDestination table with status, name, ID, type, chain, order | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Destinations tab. | GET/api/mirth/actions/EDIT-013 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-014Channel Studio / Edit Channel | Destination CRUD/orderNew/delete/clone/enable/disable/move destinations | destructive | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Destination CRUD/order. | GET/api/mirth/actions/EDIT-014 | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| EDIT-015Channel Studio / Edit Channel | Destination queue settingsQueue mode, retry count/interval, rotation, regeneration, include filter/transformer, threads, assignment, buffer | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Destination queue settings. | GET/api/mirth/actions/EDIT-015 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-016Channel Studio / Edit Channel | Destination response handlingResponse validation and attachment reattachment settings | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Destination response handling. | GET/api/mirth/actions/EDIT-016 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-017Channel Studio / Edit Channel | Destination mappings panelDrag/drop standard variables, mapper variables, and templates into connector fields | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Destination mappings panel. | GET/api/mirth/actions/EDIT-017 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-018Channel Studio / Edit Channel | Destination response transformerEdit response transformer for selected destination | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Destination response transformer. | GET/api/mirth/actions/EDIT-018 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-019Channel Studio / Edit Channel | Channel scriptsDeploy, undeploy, preprocessor, postprocessor channel scripts | deploy | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Channel scripts. | GET/api/mirth/actions/EDIT-019 | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| EDIT-020Channel Studio / Edit Channel | Save changesSave new channel revision only when changed | write | /builder | wiredSave channel changes back to Mirth. | PUT/api/channels/{channelId} | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-021Channel Studio / Edit Channel | Validate connectorValidate current connector properties and script syntax | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Validate connector. | GET/api/mirth/actions/EDIT-021 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-022Channel Studio / Edit Channel | Import/export connectorImport/export source or destination connector XML including filter/transformer | write | /builder | plannedContract assigned from parity matrix: Channel Studio / Edit Channel / Import/export connector. | POST/api/mirth/actions/EDIT-022 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| EDIT-023Channel Studio / Edit Channel | Export/deploy/debug from editorExport current channel, deploy current channel, debug current channel | deploy | /builder | wiredExport/deploy from the editor using the same channel endpoints. | GET/api/channels/{channelId} | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| DT-001Data Types | Delimited text data typeInbound/outbound property editor and batch options | write | /builder | plannedContract assigned from parity matrix: Data Types / Delimited text data type. | GET/api/mirth/actions/DT-001 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DT-002Data Types | DICOM data typeInbound/outbound property editor and attachment considerations | write | /builder | plannedContract assigned from parity matrix: Data Types / DICOM data type. | GET/api/mirth/actions/DT-002 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DT-003Data Types | EDI/X12 data typeInbound/outbound property editor | write | /builder | plannedContract assigned from parity matrix: Data Types / EDI/X12 data type. | GET/api/mirth/actions/DT-003 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DT-004Data Types | HL7 v2.x data typeParser/serializer/batch property editor | write | /builder | plannedContract assigned from parity matrix: Data Types / HL7 v2.x data type. | GET/api/mirth/actions/DT-004 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DT-005Data Types | HL7 v3.x data typeParser/serializer property editor | write | /builder | plannedContract assigned from parity matrix: Data Types / HL7 v3.x data type. | GET/api/mirth/actions/DT-005 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DT-006Data Types | JSON data typeParser/serializer property editor and formatting support | write | /builder | plannedContract assigned from parity matrix: Data Types / JSON data type. | GET/api/mirth/actions/DT-006 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DT-007Data Types | NCPDP data typeParser/serializer property editor | write | /builder | plannedContract assigned from parity matrix: Data Types / NCPDP data type. | GET/api/mirth/actions/DT-007 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DT-008Data Types | Raw data typeRaw inbound/outbound property editor | write | /builder | plannedContract assigned from parity matrix: Data Types / Raw data type. | GET/api/mirth/actions/DT-008 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DT-009Data Types | XML data typeXML parser/serializer property editor | write | /builder | plannedContract assigned from parity matrix: Data Types / XML data type. | GET/api/mirth/actions/DT-009 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DT-010Data Types | Batch processingBatch settings and JavaScript batch script editor | write | /builder | plannedContract assigned from parity matrix: Data Types / Batch processing. | GET/api/mirth/actions/DT-010 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SRC-001Built-In Source Connector Types | Channel ReaderFull property editor and source map variable support | write | /builder | plannedContract assigned from parity matrix: Built-In Source Connector Types / Channel Reader. | GET/api/mirth/actions/SRC-001 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SRC-002Built-In Source Connector Types | DICOM ListenerFull property editor and DICOM listener-specific validation | write | /builder | plannedContract assigned from parity matrix: Built-In Source Connector Types / DICOM Listener. | GET/api/mirth/actions/SRC-002 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SRC-003Built-In Source Connector Types | Database ReaderSQL/driver/resource editor, poll schedule, driver management hooks | write | /builder | plannedContract assigned from parity matrix: Built-In Source Connector Types / Database Reader. | GET/api/mirth/actions/SRC-003 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SRC-004Built-In Source Connector Types | File ReaderFile/FTP/SFTP/SMB/S3 editor, post-processing, polling, encoding | write | /builder | plannedContract assigned from parity matrix: Built-In Source Connector Types / File Reader. | GET/api/mirth/actions/SRC-004 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SRC-005Built-In Source Connector Types | HTTP ListenerListener endpoint, response, auth, header/body handling | read | /builder | plannedContract assigned from parity matrix: Built-In Source Connector Types / HTTP Listener. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SRC-006Built-In Source Connector Types | JMS ListenerJMS connection/template editor | write | /builder | plannedContract assigned from parity matrix: Built-In Source Connector Types / JMS Listener. | GET/api/mirth/actions/SRC-006 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SRC-007Built-In Source Connector Types | JavaScript ReaderJavaScript reader editor and return-value handling | write | /builder | plannedContract assigned from parity matrix: Built-In Source Connector Types / JavaScript Reader. | GET/api/mirth/actions/SRC-007 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SRC-008Built-In Source Connector Types | TCP ListenerBasic/MLLP transmission mode editor, byte settings, source map variables | write | /builder | plannedContract assigned from parity matrix: Built-In Source Connector Types / TCP Listener. | GET/api/mirth/actions/SRC-008 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SRC-009Built-In Source Connector Types | Web Service ListenerSOAP/web-service listener property editor | write | /builder | plannedContract assigned from parity matrix: Built-In Source Connector Types / Web Service Listener. | GET/api/mirth/actions/SRC-009 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SRC-010Built-In Source Connector Types | Extension source connectorsDynamic schemas for installed source connector extensions | extension | /builder | extensionContract assigned from parity matrix: Built-In Source Connector Types / Extension source connectors. | POST/api/mirth/actions/SRC-010 | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| DEST-001Built-In Destination Connector Types | Channel WriterFull property editor and target channel validation | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / Channel Writer. | GET/api/mirth/actions/DEST-001 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-002Built-In Destination Connector Types | DICOM SenderDICOM send property editor and response handling | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / DICOM Sender. | GET/api/mirth/actions/DEST-002 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-003Built-In Destination Connector Types | Database WriterSQL/resource/driver editor with safe secret handling | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / Database Writer. | GET/api/mirth/actions/DEST-003 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-004Built-In Destination Connector Types | Document WriterDocument template/output editor | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / Document Writer. | GET/api/mirth/actions/DEST-004 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-005Built-In Destination Connector Types | File WriterFile/FTP/SFTP/SMB/S3 output editor and templates | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / File Writer. | GET/api/mirth/actions/DEST-005 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-006Built-In Destination Connector Types | HTTP SenderMethod/URL/headers/body/auth/response editor | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / HTTP Sender. | GET/api/mirth/actions/DEST-006 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-007Built-In Destination Connector Types | JMS SenderJMS connection/template editor | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / JMS Sender. | GET/api/mirth/actions/DEST-007 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-008Built-In Destination Connector Types | JavaScript WriterJavaScript writer editor and return-value handling | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / JavaScript Writer. | GET/api/mirth/actions/DEST-008 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-009Built-In Destination Connector Types | SMTP SenderSMTP/email editor with server settings integration | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / SMTP Sender. | GET/api/mirth/actions/DEST-009 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-010Built-In Destination Connector Types | TCP SenderBasic/MLLP transmission editor and response options | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / TCP Sender. | GET/api/mirth/actions/DEST-010 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-011Built-In Destination Connector Types | Web Service SenderSOAP/web-service sender editor | write | /builder | plannedContract assigned from parity matrix: Built-In Destination Connector Types / Web Service Sender. | GET/api/mirth/actions/DEST-011 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| DEST-012Built-In Destination Connector Types | Extension destination connectorsDynamic schemas for installed destination connector extensions | extension | /builder | extensionContract assigned from parity matrix: Built-In Destination Connector Types / Extension destination connectors. | POST/api/mirth/actions/DEST-012 | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| FT-001Filters, Transformers, And Response Transformers | Message templates tabInbound/outbound templates, data type editing, template specification | write | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Message templates tab. | GET/api/mirth/actions/FT-001 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| FT-002Filters, Transformers, And Response Transformers | Message trees tabParse message/template trees, filter nodes, expand/collapse, drag/drop values | read | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Message trees tab. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| FT-003Filters, Transformers, And Response Transformers | Reference tabVariables, helper methods, code templates, drag/drop into editor | write | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Reference tab. | GET/api/mirth/actions/FT-003 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| FT-004Filters, Transformers, And Response Transformers | Create rule/step from treeCreate rule builder, mapper, message builder steps from selected node | write | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Create rule/step from tree. | GET/api/mirth/actions/FT-004 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| FT-005Filters, Transformers, And Response Transformers | Filter rule tableAdd/delete/reorder rules with enabled/disabled state and selection | destructive | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Filter rule table. | GET/api/mirth/actions/FT-005 | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| FT-006Filters, Transformers, And Response Transformers | Rule typesRule builder, JavaScript, external script, iterator | read | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Rule types. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| FT-007Filters, Transformers, And Response Transformers | Transformer step tableAdd/delete/reorder steps with enabled/disabled state and selection | destructive | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Transformer step table. | GET/api/mirth/actions/FT-007 | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| FT-008Filters, Transformers, And Response Transformers | Step typesMapper, message builder, JavaScript, external script, XSLT, destination set filter, iterator | read | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Step types. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| FT-009Filters, Transformers, And Response Transformers | IteratorsAssign/remove nested rules/steps to/from iterators | destructive | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Iterators. | GET/api/mirth/actions/FT-009 | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| FT-010Filters, Transformers, And Response Transformers | Generated script viewView generated script for rules/steps/iterators without editing it | write | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Generated script view. | GET/api/mirth/actions/FT-010 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| FT-011Filters, Transformers, And Response Transformers | Import/export filtersImport append/replace and export filter XML | write | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Import/export filters. | GET/api/mirth/actions/FT-011 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| FT-012Filters, Transformers, And Response Transformers | Import/export transformersImport append/replace and export transformer XML | write | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Import/export transformers. | GET/api/mirth/actions/FT-012 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| FT-013Filters, Transformers, And Response Transformers | Validate filter/ruleValidate full filter and selected rule | read | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Validate filter/rule. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| FT-014Filters, Transformers, And Response Transformers | Validate transformer/stepValidate full transformer and selected step | read | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Validate transformer/step. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| FT-015Filters, Transformers, And Response Transformers | Move rule/step up/downPreserve iterator semantics while reordering | read | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Move rule/step up/down. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| FT-016Filters, Transformers, And Response Transformers | Response transformer scenariosModify destination response and common response-handling patterns | read | /builder | plannedContract assigned from parity matrix: Filters, Transformers, And Response Transformers / Response transformer scenarios. | GET/builder | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| JS-001Script IDE, JavaScript Tooling, And Debugger | JavaScript editorSyntax highlighting, line numbers, folding, selection, search/find/replace | write | /code | wiredBrowser CodeMirror JavaScript/XML editor with local draft, validate, diff, and export controls. | GET/code | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| JS-002Script IDE, JavaScript Tooling, And Debugger | Context menuEditor context menu actions matching common Java client operations | write | /code | plannedContract assigned from parity matrix: Script IDE, JavaScript Tooling, And Debugger / Context menu. | POST/api/mirth/actions/JS-002 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| JS-003Script IDE, JavaScript Tooling, And Debugger | Auto-completionMirth variables, map APIs, built-in templates, JSDoc templates, user templates | read | /code | plannedContract assigned from parity matrix: Script IDE, JavaScript Tooling, And Debugger / Auto-completion. | GET/code | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| JS-004Script IDE, JavaScript Tooling, And Debugger | Shortcut remapping/preferencesUser-specific editor shortcut and editor behavior preferences | write | /code | plannedContract assigned from parity matrix: Script IDE, JavaScript Tooling, And Debugger / Shortcut remapping/preferences. | POST/api/mirth/actions/JS-004 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| JS-005Script IDE, JavaScript Tooling, And Debugger | Variable maps referenceconnectorMap, channelMap, sourceMap, responseMap, globalChannelMap, globalMap, configurationMap lookup help | read | /code | wiredInline variable map and script reference workspace. | GET/code | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| JS-006Script IDE, JavaScript Tooling, And Debugger | Attachment functions referenceAttachment helper functions/classes and examples in reference panel | read | /code | plannedContract assigned from parity matrix: Script IDE, JavaScript Tooling, And Debugger / Attachment functions reference. | GET/code | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| JS-007Script IDE, JavaScript Tooling, And Debugger | User API/Javadocs referenceOpen/inline target server user API docs | read | /code | plannedContract assigned from parity matrix: Script IDE, JavaScript Tooling, And Debugger / User API/Javadocs reference. | GET/code | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| JS-008Script IDE, JavaScript Tooling, And Debugger | DebuggerScript debugger window/workflow: deploy in debug mode, break/step/inspect where supported | deploy | /code | plannedContract assigned from parity matrix: Script IDE, JavaScript Tooling, And Debugger / Debugger. | GET/api/mirth/actions/JS-008 | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| JS-009Script IDE, JavaScript Tooling, And Debugger | Debugger menus/actionsFile/edit/debug/window actions or web equivalents | write | /code | plannedContract assigned from parity matrix: Script IDE, JavaScript Tooling, And Debugger / Debugger menus/actions. | GET/api/mirth/actions/JS-009 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| GS-001Global Scripts | Edit global deploy scriptGlobal deploy script editor with validation | deploy | /code | wiredLoad global deploy script for editing. | GET/api/server/globalScripts | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| GS-002Global Scripts | Edit global undeploy scriptGlobal undeploy script editor with validation | deploy | /code | wiredLoad global undeploy script for editing. | GET/api/server/globalScripts | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| GS-003Global Scripts | Edit global preprocessorGlobal preprocessor editor and precedence explanation | write | /code | wiredLoad global preprocessor script for editing. | GET/api/server/globalScripts | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| GS-004Global Scripts | Edit global postprocessorGlobal postprocessor editor and response handling | write | /code | wiredLoad global postprocessor script for editing. | GET/api/server/globalScripts | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| GS-005Global Scripts | Save scriptsSave all global scripts with audit and snapshot | write | /code | wiredSave all global scripts through guarded write path. | PUT/api/server/globalScripts | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| GS-006Global Scripts | Validate scriptValidate current global script | read | /code | wiredLocal JavaScript syntax validation before guarded save. | GET/code | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| GS-007Global Scripts | Import/export scriptsImport/export all global scripts XML | write | /code | wiredImport/export global scripts using the global script map endpoint. | GET/api/server/globalScripts | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CT-001Code Templates | Library tableCreate/edit/delete libraries, revisions, descriptions | destructive | /templates | wiredCode template library table. | GET/api/codeTemplateLibraries | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| CT-002Code Templates | Link libraries to channelsChannel/library linking with impact graph | read | /templates | plannedContract assigned from parity matrix: Code Templates / Link libraries to channels. | GET/templates | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CT-003Code Templates | Template editorFunction/snippet/template editor with revision tracking | write | /templates | wiredTemplate editor load endpoint. | GET/api/codeTemplates/{codeTemplateId} | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CT-004Code Templates | Template contextsContext selector for where template is available | read | /templates | wiredTemplate context data is part of code template payloads. | GET/api/codeTemplates | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CT-005Code Templates | JSDoc supportJSDoc parsing/update and autocomplete integration | read | /templates | plannedJSDoc parsing happens in the web editor after template load. | GET/api/codeTemplates | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| CT-006Code Templates | Refresh/save changesRefresh with unsaved-change prompt, save templates/libraries with revision increment | write | /templates | wiredSave libraries and templates. | PUT/api/codeTemplateLibraries | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CT-007Code Templates | Import/export libraries/templatesImport/export code templates and libraries XML | write | /templates | wiredImport/export code templates and libraries. | GET/api/codeTemplates | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| CT-008Code Templates | Usage searchShow channels/scripts that reference template/library | read | /templates | plannedUsage search will scan channel scripts and template libraries. | GET/api/channels | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| USER-001Users, Roles, And Access | Users tableView username, name, email, phone, org, role/business fields, last login, description | security | /admin | wiredUsers table read. | GET/api/users | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| USER-002Users, Roles, And Access | Refresh usersRefresh users table | security | /admin | wiredRefresh users. | GET/api/users | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| USER-003Users, Roles, And Access | New/edit userUser create/edit form with validation and audit | security | /admin | wiredCreate or edit user. Operation param resolves create/edit to POST /users or PUT /users/{userId}. | POST/api/users | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| USER-004Users, Roles, And Access | Delete userDestructive user removal with confirmation and audit | destructive | /admin | wiredDelete user. | DELETE/api/users/{userId} | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| USER-005Users, Roles, And Access | Roles/permissionsRole-based operation restrictions where supported/installed | security | /admin | plannedContract assigned from parity matrix: Users, Roles, And Access / Roles/permissions. | GET/api/mirth/actions/USER-005 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| USER-006Users, Roles, And Access | External auth/LDAPLDAP authorization panels where extension exists | extension | /admin | extensionContract assigned from parity matrix: Users, Roles, And Access / External auth/LDAP. | POST/api/mirth/actions/USER-006 | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| USER-007Users, Roles, And Access | MFAMFA enrollment/admin panels where extension exists | extension | /admin | extensionContract assigned from parity matrix: Users, Roles, And Access / MFA. | POST/api/mirth/actions/USER-007 | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| SET-001Settings | Server settings/generalServer-level environment/general settings editor | write | /settings | wiredServer configuration read/edit surface. | GET/api/server/settings | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-002Settings | Server channel settingsDefault channel behavior/settings editor | write | /settings | wiredSave default channel/server behavior settings. | PUT/api/server/settings | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-003Settings | Server email/SMTP settingsSMTP settings editor with auth modes supported by target server | write | /settings | wiredSave SMTP/email settings as part of the ServerSettings payload. | PUT/api/server/settings | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-004Settings | Server notification settingsNotification/news settings editor | write | /settings | wiredSave notification/update settings. | PUT/api/server/updateSettings | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-005Settings | Backup configExport server configuration snapshot with exclusions clearly shown | read | /settings | wiredServer configuration backup/export. | GET/api/server/configuration | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SET-006Settings | Restore configDestructive restore workflow with snapshot, diff, confirmation, and audit | destructive | /settings | wiredRestore full server configuration with guarded snapshot, note, and hard confirmation. | PUT/api/server/configuration | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| SET-007Settings | Clear all statisticsServer-wide statistics reset with confirmation and audit | destructive | /settings | wiredClear all channel statistics. | POST/api/channels/_clearAllStatistics | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| SET-008Settings | Administrator system preferencesWeb equivalent for system preferences | read | /settings | plannedContract assigned from parity matrix: Settings / Administrator system preferences. | GET/settings | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SET-009Settings | Administrator user preferencesPer-user UI/export/import preferences | write | /settings | plannedContract assigned from parity matrix: Settings / Administrator user preferences. | GET/api/mirth/actions/SET-009 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-010Settings | Code editor preferencesEditor settings, shortcuts, autocomplete behavior | write | /settings | plannedContract assigned from parity matrix: Settings / Code editor preferences. | GET/api/mirth/actions/SET-010 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-011Settings | Restore default preferencesReset local/user web preferences | read | /settings | plannedContract assigned from parity matrix: Settings / Restore default preferences. | GET/settings | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SET-012Settings | Tags tableAdd/remove tags and view channel assignment state | destructive | /settings | wiredRead channel tags. | GET/api/server/channelTags | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| SET-013Settings | Tag assignmentAssign tags to channels, including partial/indeterminate state | write | /settings | wiredAssign tags to channels through guarded write path. | PUT/api/server/channelTags | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-014Settings | Configuration mapAdd/edit/remove key/value config map entries | destructive | /settings | wiredRead configuration map for script/resource editing. | GET/api/server/configurationMap | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| SET-015Settings | Import/export config mapImport/export map properties with overwrite warning | write | /settings | wiredImport/export and save configuration map entries. | PUT/api/server/configurationMap | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-016Settings | Database tasksList database cleanup/optimization tasks and affected channels | read | /settings | wiredList current database cleanup/maintenance tasks. | GET/api/databaseTasks | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SET-017Settings | Run database taskRun selected DB task with risk warning, audit, and progress | write | /settings | wiredRun one database task with guarded risk/audit flow. | POST/api/databaseTasks/{databaseTaskId}/_run | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-018Settings | Resources tableResource list with type, context, and status | read | /settings | wiredResource list. | GET/api/server/resources | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SET-019Settings | Add/remove resourceResource CRUD with dependency checks | destructive | /settings | wiredSave server resources list for add/edit/remove resource changes. | PUT/api/server/resources | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| SET-020Settings | Reload resourceReload resource on server with status/audit | deploy | /settings | wiredReload server resource. | POST/api/server/resources/{resourceId}/_reload | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| SET-021Settings | Directory resourceDirectory/classpath resource editor | write | /settings | wiredRead directory resource libraries; edits save through the full server resource list. | GET/api/extensions/directoryresource/resources/{resourceId}/libraries | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-022Settings | Resource usageLink resources to channels/connectors and show impact graph | read | /settings | plannedContract assigned from parity matrix: Settings / Resource usage. | GET/settings | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SET-023Settings | Data pruner statusShow current pruner state and last/next run | read | /settings | wiredRead data pruner status. | GET/api/extensions/datapruner/status | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SET-024Settings | Data pruner scheduleEnable/disable recurring pruning and configure schedule | write | /settings | wiredSave data pruner schedule fields as part of the ServerSettings payload. | PUT/api/server/settings | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SET-025Settings | Prune settingsEvent/message/content pruning settings | read | /settings | wiredSave message/event/content pruning settings as part of the ServerSettings payload. | PUT/api/server/settings | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SET-026Settings | Archive settingsArchive file/folder/zip/password/pattern settings | security | /settings | wiredSave archive settings as part of the ServerSettings payload. | PUT/api/server/settings | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| SET-027Settings | Prune now/stop prunerManual prune and stop workflow with confirmation and audit | deploy | /settings | wiredStart or stop the data pruner on demand. | POST/api/extensions/datapruner/{prunerOperation} | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| EXT-001Extensions And Plugins | Installed connector tableView connector extensions, status, author, URL, version | extension | /resources | wiredInstalled connector extensions. | GET/api/extensions/connectors | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| EXT-002Extensions And Plugins | Installed plugin tableView plugin extensions, status, author, URL, version | extension | /resources | wiredInstalled plugin extensions. | GET/api/extensions/plugins | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| EXT-003Extensions And Plugins | Install extensionUpload/install extension ZIP with restart warning | extension | /resources | wiredInstall an extension package through guarded upload/install workflow. | POST/api/extensions/_install | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| EXT-004Extensions And Plugins | Enable/disable extensionGuarded enable/disable with restart requirement and dependency impact | extension | /resources | wiredEnable or disable an installed extension. | POST/api/extensions/{extensionName}/_setEnabled | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| EXT-005Extensions And Plugins | Show propertiesExtension property/details modal | extension | /resources | wiredRead extension properties for the selected extension. | GET/api/extensions/{extensionName}/properties | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| EXT-006Extensions And Plugins | Uninstall extensionDestructive uninstall with restart requirement and dependency impact | extension | /resources | wiredUninstall an extension with restart/dependency warnings. | POST/api/extensions/_uninstall | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| EXT-007Extensions And Plugins | Extension-specific viewsPlugin architecture for installed extension panels | extension | /resources | wiredLoad extension metadata so extension-specific panels can be rendered. | GET/api/extensions/{extensionName} | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| EXT-008Extensions And Plugins | Commercial/optional connectorsFHIR, email reader, serial, ASTM, SSL manager, clustering, advanced alerting, CDR, and other extension panels when installed | extension | /resources | extensionContract assigned from parity matrix: Extensions And Plugins / Commercial/optional connectors. | POST/api/mirth/actions/EXT-008 | RBAC permission check · audit log entry · active server context · operator confirmation · extension installed check · restart/dependency impact warning |
| IO-001Import / Export / Backup Safety | Channel XML import/exportRound-trip channel XML without semantic drift | write | /deployments | wiredRound-trip channel XML export/import endpoint family. | GET/api/channels/{channelId} | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| IO-002Import / Export / Backup Safety | Group XML import/exportRound-trip channel group XML without semantic drift | write | /deployments | plannedChannel group XML round-trip endpoint family. | GET/api/channelgroups | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| IO-003Import / Export / Backup Safety | Alert XML import/exportRound-trip alert XML without semantic drift | write | /deployments | plannedAlert XML round-trip endpoint family. | GET/api/alerts | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| IO-004Import / Export / Backup Safety | Global script XML import/exportRound-trip script XML without semantic drift | write | /deployments | wiredRound-trip global scripts through the server global script map. | GET/api/server/globalScripts | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| IO-005Import / Export / Backup Safety | Code template XML import/exportRound-trip code template/library XML without semantic drift | write | /deployments | wiredCode template XML round-trip endpoint family. | GET/api/codeTemplates | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| IO-006Import / Export / Backup Safety | Connector XML import/exportRound-trip connector XML including filters/transformers | write | /deployments | plannedContract assigned from parity matrix: Import / Export / Backup Safety / Connector XML import/export. | POST/api/mirth/actions/IO-006 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| IO-007Import / Export / Backup Safety | Server config backup/restoreBackup/restore server config with documented exclusions | read | /deployments | wiredServer configuration backup/restore uses rollback snapshot metadata and verified restore endpoint. | POST/api/mirth/rollback | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| IO-008Import / Export / Backup Safety | Export diff evidenceCompare exported XML before/after web edits against Java Admin output | write | /deployments | wiredGuarded action execution stores diff artifacts for draft-versus-live review. | POST/api/mirth/actions | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| MS-001Multi-Server, Promotion, And Safer-Than-Java Enhancements | Single-server Java sessionMulti-server switcher for existing Mirth, BridgeLink, test, stage, prod, DR | read | /servers | wiredActive server profile and switcher metadata. | GET/api/mirth/server | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MS-002Multi-Server, Promotion, And Safer-Than-Java Enhancements | No built-in promotion flowOriginal dev-to-stage-to-prod promotion workflow with diffs and approval | read | /servers | plannedContract assigned from parity matrix: Multi-Server, Promotion, And Safer-Than-Java Enhancements / No built-in promotion flow. | GET/servers | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| MS-003Multi-Server, Promotion, And Safer-Than-Java Enhancements | Java save/deploy flowDraft workspace so editing does not touch live Mirth until approved | deploy | /servers | plannedContract assigned from parity matrix: Multi-Server, Promotion, And Safer-Than-Java Enhancements / Java save/deploy flow. | GET/api/mirth/actions/MS-003 | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MS-004Multi-Server, Promotion, And Safer-Than-Java Enhancements | Manual safety habitsRequired export snapshot before deploy/delete/restore | destructive | /servers | wiredGuarded action execution captures live snapshot artifacts before writes once the write gate is enabled. | POST/api/mirth/actions | RBAC permission check · audit log entry · active server context · operator confirmation · live export/backup snapshot · hard confirmation phrase · rollback or irreversibility note |
| MS-005Multi-Server, Promotion, And Safer-Than-Java Enhancements | Manual reviewHuman-readable diff plus raw XML diff before deploy | deploy | /servers | wiredGuarded action execution writes human-readable diff artifacts for draft-backed saves/restores. | POST/api/mirth/actions | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MS-006Multi-Server, Promotion, And Safer-Than-Java Enhancements | Manual rollbackRollback pointer and restore workflow for channel/template/script changes | deploy | /servers | wiredRollback restore endpoint replays the snapshot and verifies the restored live export. | POST/api/mirth/rollback | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| MS-007Multi-Server, Promotion, And Safer-Than-Java Enhancements | Scattered auditDatabase-backed immutable audit with operator/server identity, before/after/diff/rollback refs, hash chain, and JSON/CSV reporting | deploy | /servers | wiredUnified web-console action audit contract. | POST/api/mirth/actions | RBAC permission check · audit log entry · active server context · operator confirmation · live XML export · draft-to-live diff · deploy note · rollback snapshot |
| SEC-001Security Hardening | Admin launcher TLS trustPer-profile TLS trust rules; production/DR cannot disable verification without explicit override | write | /actions | plannedContract assigned from parity matrix: Security Hardening / Admin launcher TLS trust. | POST/api/mirth/actions/SEC-001 | RBAC permission check · audit log entry · active server context · operator confirmation · validation result · rollback or restore plan where applicable |
| SEC-002Security Hardening | Desktop app boundarySame-origin CSRF cookie/header enforcement on every mutating web API | read | /actions | plannedContract assigned from parity matrix: Security Hardening / Desktop app boundary. | GET/actions | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SEC-003Security Hardening | Local credential storageStored server credentials encrypted with an operator-supplied key and `0600` profile files | security | /actions | plannedContract assigned from parity matrix: Security Hardening / Local credential storage. | POST/api/mirth/actions/SEC-003 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| SEC-004Security Hardening | PHI-aware message readsMessage content/maps/errors/attachment previews redacted unless PHI view permission is enabled | security | /actions | plannedContract assigned from parity matrix: Security Hardening / PHI-aware message reads. | POST/api/mirth/actions/SEC-004 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| SEC-005Security Hardening | PHI export guardAttachment export/download blocked unless PHI export permission is enabled | security | /actions | plannedContract assigned from parity matrix: Security Hardening / PHI export guard. | POST/api/mirth/actions/SEC-005 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |
| SEC-006Security Hardening | Abuse throttlingIn-memory read/write API rate limits with `429` and `Retry-After` | read | /actions | plannedContract assigned from parity matrix: Security Hardening / Abuse throttling. | GET/actions | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SEC-007Security Hardening | Input validationJSON body size/type checks, bounded strings, safe identifiers, bounded query limits | read | /actions | plannedContract assigned from parity matrix: Security Hardening / Input validation. | GET/actions | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SEC-008Security Hardening | Safe logging/auditSecrets and sensitive tokens redacted before audit/log storage | read | /actions | plannedContract assigned from parity matrix: Security Hardening / Safe logging/audit. | GET/actions | RBAC permission check · audit log entry for PHI/sensitive reads where needed |
| SEC-009Security Hardening | Browser security headersCSP, frame-deny, nosniff, referrer, permissions-policy, COOP/CORP on app/API responses | security | /actions | plannedContract assigned from parity matrix: Security Hardening / Browser security headers. | POST/api/mirth/actions/SEC-009 | RBAC permission check · audit log entry · active server context · operator confirmation · session re-check · least-privilege role mapping · sensitive-field redaction |