Physicians’access control has been a key factor in the whole process of the healthcare system. The level of access control in both the healthcare system and OA system changes with the professional titles and roles of physicians. In this paper, an OA system app is designed to process various access control from different systems, involving such scenarios in the lifecycle of permission management as access granting, query and modification. Physicians’ access control in a closed loop can be managed in four dimensions: data application,medical management, data operation and data collaboration.