pymedplum 0.2.0

Unofficial Python SDK for Medplum with typed FHIR models and an optional MCP server.

PyMedplum: Unofficial Python SDK for Medplum

PyMedplum is a Python client for the Medplum headless EHR / FHIR platform. It focuses on a Pythonic API with strong typing (Pydantic models) while keeping full access to the underlying FHIR REST surface.

If you like the experience of the official Medplum TypeScript SDK, this aims to feel familiar in Python.

The heavy hitters

• Auth + refresh: Client-credentials flow with first-request auth, single-flight refresh, cooldown on OAuth outages, and explicit 401 retry with forced refresh.
• Typed models (Pydantic v2): Auto-generated FHIR models with IDE autocomplete.
• CRUD + patching: Create/read/update/delete + JSON Patch. update_resource auto-attaches If-Match from meta.versionId by default (opt-out available).
• Real-world search: _include, _revinclude, chaining, modifiers, paging.
• FHIR operations: execute_operation + terminology helpers + C-CDA export.
• Bundles: Transactions (atomic) and batch bundles (independent).
• Binary + DocumentReference: Upload/download and clinical document linking.
• GraphQL: GraphQL query execution.
• On-behalf-of (OBO): Per-client isolation via ContextVar. Three ways to pass: per-call kwarg, context manager, or client default. Safe across concurrent async tasks.
• PHI-access audit hook: One on_request_complete callback per logical call, capturing method, resource type/id, OBO-as-sent per attempt, timings, and outcome. Two serialization shapes: to_phi_audit_dict() for HIPAA-approved audit sinks and to_non_phi_dict() for general observability backends. Bearer tokens, request bodies, and raw query strings are never included.
• HTTPS by default: Plain http:// requires explicit opt-in; loopback hosts are allowed with a WARNING.
• Bot management: CRUD + deploy + execute Medplum Bots.
• MCP server: Model Context Protocol server with runtime schema discovery, client-side FHIR validation, and healthcare-aware guardrails for AI agent workflows.

Installation

pip install pymedplum

With MCP support:

pip install "pymedplum[mcp]"

With uv:

uv add pymedplum
uv add "pymedplum[mcp]"

Quick Start

from pymedplum import MedplumClient

client = MedplumClient(
    # base_url="https://api.medplum.com/",   # default; self-hosted? set yours.
    client_id="YOUR_CLIENT_ID",
    client_secret="YOUR_CLIENT_SECRET",
)

patient = client.create_resource({
    "resourceType": "Patient",
    "name": [{"given": ["John"], "family": "Doe"}],
    "gender": "male",
    "birthDate": "1990-01-01",
})

patient = client.read_resource("Patient", "patient-123")
patients = client.search_resources("Patient", {"family": "Doe"})

patient["active"] = True
updated = client.update_resource(patient)

Observability and audit logging

PyMedplum exposes a single completion hook, on_request_complete, that fires once per logical SDK call. The event carries method, path, resource type/id, OBO-as-sent per wire attempt, timings, and outcome. Bearer tokens, request bodies, and raw query strings are never included in the event.

The event payload still contains PHI by default (resolved paths include resource IDs, and on_behalf_of is a tenant identifier). The hook exposes two serialization shapes — pick the one that matches the destination:

• event.to_phi_audit_dict() — full payload, for sinks contractually approved to receive PHI (your HIPAA-compliant audit log).
• event.to_non_phi_dict() — shape-only payload (path_template, resource_type, status codes, durations, exception type names), for metrics, APM, error trackers, and other general observability.

from pymedplum import MedplumClient
from pymedplum.hooks import RequestEvent

def on_complete(event: RequestEvent) -> None:
    # PHI-bearing detail goes to the audit sink only.
    phi_audit_log.info(
        "medplum_request_complete", extra={"event": event.to_phi_audit_dict()}
    )
    # Shape-only metrics go to the general observability backend.
    metrics_log.info(
        "medplum_request_metrics", extra={"event": event.to_non_phi_dict()}
    )

client = MedplumClient(
    base_url="https://api.medplum.com/",
    client_id="YOUR_CLIENT_ID",
    client_secret="YOUR_CLIENT_SECRET",
    on_request_complete=on_complete,
)

See docs/advanced/audit_logging.md for the full hook contract, DataDog and async variants, and the per-resource-type query-param opt-in pattern.

MCP Server

PyMedplum includes an optional Model Context Protocol server that lets AI agents (Claude, GPT, etc.) interact with a Medplum FHIR server through structured tools.

What makes it useful: the MCP leverages pymedplum's Pydantic FHIR models to provide runtime schema discovery and client-side validation. An LLM can call get_resource_schema("Patient") and get back the actual JSON schema the validation layer enforces — not documentation that might be stale, but the live schema from the typed models. When it constructs a resource incorrectly, _validate_resource catches it before the request hits the server and returns a detailed error pointing at the exact field, with a hint to check the schema. This feedback loop is possible because Pydantic models exist at runtime — TypeScript interfaces can't do this since they're erased after compilation.

The server also includes healthcare-specific behavioral guardrails: warnings against name-based patient matching, read-before-write enforcement, broad query protection, and identity safety rules.

uvx --from "pymedplum[mcp]" pymedplum-mcp

Required environment variables:

export MEDPLUM_CLIENT_ID="your-client-id"
export MEDPLUM_CLIENT_SECRET="your-client-secret"

Optional environment variables:

export MEDPLUM_BASE_URL="https://api.medplum.com/"
export MEDPLUM_FHIR_URL_PATH="fhir/R4/"
export MEDPLUM_ON_BEHALF_OF="ProjectMembership/00000000-0000-0000-0000-000000000000"
export MEDPLUM_READ_ONLY="true"

For Claude Code, Codex, and mcp.json setup examples, see docs/mcp.md.

Showcase: common workflows

Type-Safe FHIR Models

from pymedplum.fhir import Patient, HumanName

# Create with full type safety and IDE autocomplete
patient_data = Patient(
    name=[HumanName(given=["Alice"], family="Smith")],
    gender="female"
)

# Create and get typed response
created_patient = client.create_resource(patient_data, as_fhir=Patient)
print(created_patient.id)  # Server-assigned ID with full type safety!

# Read with type safety
typed_patient = client.read_resource("Patient", "123", as_fhir=Patient)
print(typed_patient.name[0].family)  # IDE autocomplete works!

# Update with type safety
typed_patient.active = False
updated_patient = client.update_resource(typed_patient, as_fhir=Patient)
print(updated_patient.active)  # False, with full IDE autocomplete!

Advanced Search Features

# Include related resources (like SQL joins)
bundle = client.search_resources("Patient", {
    "family": "Smith",
    "_include": "Patient:organization",        # Include the org
    "_revinclude": "Observation:patient",      # Include all observations
    "_count": "50"
})

# Chain through relationships
observations = client.search_resources("Observation", {
    "patient.family": "Smith",  # Find obs for patients named Smith
    "date": "ge2024-01-01"      # After January 1, 2024
})

# Iterate through all pages automatically
for patient in client.search_resource_pages("Patient", {"family": "Smith"}):
    print(patient["name"])

# Type-safe iteration with Pydantic models
from pymedplum.fhir import Patient
for patient in client.search_resource_pages("Patient", {"family": "Smith"}, as_fhir=Patient):
    print(patient.name[0].family)  # Full IDE autocomplete!

Binary Files & Documents

# Upload a PDF
with open("lab_report.pdf", "rb") as f:
    binary = client.upload_binary(f.read(), "application/pdf")

# Download binary
pdf_bytes = client.download_binary(binary["id"])

# Create DocumentReference linking binary to patient
doc_ref = client.create_document_reference(
    patient_id="patient-123",
    binary_id=binary["id"],
    content_type="application/pdf",
    title="Lab Results",
    description="CBC performed on 2024-01-15"
)

C-CDA Document Export

# Export patient data in C-CDA format for interoperability
ccda_xml = client.export_ccda(patient_id="patient-123")

# Save to file
with open("patient_summary.xml", "w") as f:
    f.write(ccda_xml)

Terminology Validation

# Validate codes against ValueSets
is_valid = client.validate_valueset_code(
    url="http://hl7.org/fhir/ValueSet/observation-status",
    coding={
        "system": "http://hl7.org/fhir/observation-status",
        "code": "final"
    }
)

# Validate against CodeSystems
is_valid = client.validate_codesystem_code(
    url="http://loinc.org",
    code="15074-8"  # Glucose
)

Transaction & Batch Bundles

# Atomic transaction - all succeed or all fail
bundle = {
    "resourceType": "Bundle",
    "type": "transaction",
    "entry": [
        {
            "request": {"method": "POST", "url": "Patient"},
            "resource": {"resourceType": "Patient", "name": [...]},
            "fullUrl": "urn:uuid:patient-temp-id"
        },
        {
            "request": {"method": "POST", "url": "Observation"},
            "resource": {
                "resourceType": "Observation",
                "subject": {"reference": "urn:uuid:patient-temp-id"}  # Refs resolved!
            }
        }
    ]
}

result = client.execute_transaction(bundle)

# Batch - operations processed independently
result = client.execute_batch(batch_bundle)

GraphQL Queries

query = """
query GetPatientWithObs($id: ID!) {
    Patient(id: $id) {
        name { family given }
        ObservationList(_reference: patient) {
            code { text }
            valueQuantity { value unit }
        }
    }
}
"""

result = client.execute_graphql(query, {"id": "patient-123"})
print(result["data"]["Patient"])

On-Behalf-Of Operations

# 1. Per-call kwarg — wins over ambient state, obvious at the call site.
client.read_resource(
    "Patient",
    "123",
    on_behalf_of="ProjectMembership/membership-123",
)

# 2. Context manager — ambient for a block of related calls.
with client.on_behalf_of("ProjectMembership/membership-123"):
    response = client.create_resource({
        "resourceType": "QuestionnaireResponse",
        "status": "completed",
    })

# 3. Client default — baseline for this client's lifetime.
per_user_client = MedplumClient(
    base_url="https://api.medplum.com/",
    client_id="YOUR_CLIENT_ID",
    client_secret="YOUR_CLIENT_SECRET",
    default_on_behalf_of="ProjectMembership/membership-123",
)

See docs/advanced/on_behalf_of.md for precedence rules, per-client isolation guarantees, and the ThreadPoolExecutor context-propagation caveat.

Bot Management

# Create a bot with AWS Lambda runtime
bot = client.create_bot(
    name="Welcome Email Bot",
    description="Sends welcome emails to new patients",
    runtime_version="awslambda"  # Required for execution
)

# Deploy compiled bot code
with open("dist/welcome-bot.js") as f:
    client.deploy_bot(bot["id"], f.read())

# Execute the bot
result = client.execute_bot(
    bot_id=bot["id"],
    input_data={"resourceType": "Patient", "id": "patient-123"}
)

See the Bot Management documentation for complete CRUD operations, deployment workflows, and advanced features.

FHIR Operations (Standard & Custom)

# Type-level operation: Patient/$match
result = client.execute_operation(
    "Patient",
    "match",
    params={
        "resourceType": "Parameters",
        "parameter": [
            {"name": "resource", "resource": {"resourceType": "Patient", "name": [{"family": "Doe"}]}}
        ]
    }
)

# Instance-level operation: Patient/123/$everything
bundle = client.execute_operation("Patient", "everything", resource_id="123")

# Custom Medplum operation with headers
result = client.execute_operation(
    "MedicationRequest",
    "calculate-dose",  # Custom operation
    resource_id="med-req-456",
    params={"weight": 70, "unit": "kg"},
    headers={"X-Custom-Header": "value"}
)

Note: Operation names can be specified with or without the $ prefix - both "match" and "$match" work. See FHIR Operations & Terminology for GET method support and auto-wrapping parameters.

Async/Await Support

from pymedplum import AsyncMedplumClient

async def create_patient():
    async with AsyncMedplumClient(
        client_id="YOUR_CLIENT_ID",
        client_secret="YOUR_CLIENT_SECRET",
    ) as client:
        patient = await client.create_resource({
            "resourceType": "Patient",
            "name": [{"given": ["Jane"], "family": "Doe"}]
        })
        return patient

FHIRBundle Wrapper

# Get wrapper with helper methods
bundle = client.search_resources("Patient", {"family": "Smith"}, return_bundle=True)

# Iterate directly over resources
for patient in bundle:
    print(patient['name'])

# Get typed resources with as_fhir parameter
from pymedplum.fhir import Patient
bundle = client.search_resources("Patient", {"family": "Smith"}, return_bundle=True, as_fhir=Patient)
patients = bundle.get_resources_typed(Patient)

# Or use get_resources_typed on any bundle
bundle = client.search_resources("Patient", {"family": "Smith"}, return_bundle=True)
patients = bundle.get_resources_typed(Patient)

# Check if empty, get total, access pagination
if not bundle.is_empty():
    print(f"Found {bundle.get_total()} results")
    next_page = bundle.get_next_link()

Enhanced Error Handling

from pymedplum import (
    NotFoundError,
    AuthorizationError,
    ValidationError,
    RateLimitError
)

try:
    patient = client.read_resource("Patient", "123")
except NotFoundError:
    print("Patient not found")
except AuthorizationError:
    print("Access denied")
except ValidationError as e:
    print(f"Invalid data: {e.response_data}")
except RateLimitError:
    print("Rate limited - slow down!")

FHIR Helpers

from pymedplum import (
    parse_reference,
    build_reference,
    get_patient_display_name,
    extract_identifier,
    get_code_display
)

# Parse references
resource_type, resource_id = parse_reference("Patient/123")

# Build references
ref = build_reference("Patient", "123")

# Get patient name
patient = client.read_resource("Patient", "123")
name = get_patient_display_name(patient)  # "John Doe"

# Extract identifiers
mrn = extract_identifier(patient, "http://hospital.org/mrn")

# Get code display
concept = {"coding": [{"display": "Hypertension"}]}
display = get_code_display(concept)

Documentation

Docs live in the repository under docs/.

Start here:

• Quickstart
• API Reference
• Advanced Usage (overview)
• Bot Management
• FAQ

Contributing

Contributions are welcome! Please see our development guidelines:

# Install development dependencies
make install-dev

# Run all quality checks
make check

# Run tests
make test
make test-unit
make test-integration

See AGENTS.md for detailed contributor guidelines.

Security

If you believe you have found a security vulnerability in PyMedplum, please email security@kinsteadhealth.com rather than opening a public issue. See SECURITY.md for full reporting guidance.

License

Copyright 2025-2026 Kinstead Health

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this project except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0, or see the LICENSE file in this repository.

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Every Python module under pymedplum/fhir/ is derived from Medplum's @medplum/fhirtypes package (Copyright Orangebot, Inc. and Medplum contributors, Apache-2.0), which is itself derived from the HL7 FHIR R4 specification (FHIR Version 4.0.1, published under the HL7 License Agreement with normative content additionally under CC0 1.0). See NOTICE for the full upstream attribution chain.

Trademarks

"Medplum" is a product and trademark of Orangebot, Inc. (upstream repo). PyMedplum is an independent Python client and is not affiliated with, endorsed by, or sponsored by Orangebot, Inc. "FHIR" and "HL7" are registered trademarks of Health Level Seven International. Use of these names here is purely descriptive and does not imply endorsement by HL7.

Acknowledgments

This library is derived from the official Medplum TypeScript type definitions (@medplum/fhirtypes) and is inspired by the Medplum TypeScript SDK. PyMedplum aims to provide a similar developer experience for Python developers.

---

Built and maintained by Kinstead Health.