<?xml version=“1.0” encoding=“UTF-8”?> <AuditEvent xmlns=“hl7.org/fhir”>

      <id value="example-logout"/>
      <meta>
  <security>
    <system value="http://terminology.hl7.org/CodeSystem/v3-ActReason"/>
    <code value="HTEST"/>
    <display value="test health data"/>
  </security>
</meta>
<type>
              <system value="http://dicom.nema.org/resources/ontology/DCM"/>
              <code value="110114"/>
              <display value="User Authentication"/>
      </type>
      <subtype>
              <system value="http://dicom.nema.org/resources/ontology/DCM"/>
              <code value="110123"/>
              <display value="Logout"/>
      </subtype>
      <action value="E"/>
      <recorded value="2013-06-20T23:46:41Z"/>
      <outcome value="0"/>
      <agent>
              <type>
                      <coding>
                              <system value="http://terminology.hl7.org/CodeSystem/extra-security-role-type"/>
                              <code value="humanuser"/>
                              <display value="human user"/>
                      </coding>
              </type> 

              <who>
                      <identifier>
                              <value value="95"/>
                      </identifier>
              </who>
              <altId value="601847123"/>
              <name value="Grahame Grieve"/>
              <requestor value="true"/>
              <network>
                      <address value="127.0.0.1"/>
                      <type value="2"/>
              </network>
      </agent>
      <agent>
              <!--   Source active participant, the software making the . AlternativeUserId - Process ID   --> 
              <type>
                      <coding>
                              <system value="http://dicom.nema.org/resources/ontology/DCM"/>
                              <code value="110153"/>
                              <display value="Source Role ID"/>
                      </coding>
              </type> 
              <who>
                      <identifier>
                              <system value="urn:oid:2.16.840.1.113883.4.2"/> 
                              <value value="2.16.840.1.113883.4.2"/> 
                      </identifier>
              </who>
              <altId value="6580"/> 
              <requestor value="false"/> 
              <network>
                      <address value="Workstation1.ehr.familyclinic.com"/>
                      <type value="1"/>
              </network> 
      </agent>
      <source>
              <site value="Cloud"/>
              <observer>
                      <identifier>
                              <value value="hl7connect.healthintersections.com.au"/>
                      </identifier>
              </observer>
              <type>
                      <system value="http://terminology.hl7.org/CodeSystem/security-source-type"/>
                      <code value="3"/>
                      <display value="Web Server"/>
              </type>
      </source>

</AuditEvent>