Versions Compared

Old Version 5

changes.mady.by.user Martin Lacher

Saved on

compared with

New Version 6

changes.mady.by.user Martin Lacher

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

All services require the authentication of an admin /mandator client in finAPI.

Certificate management services

1. Submit a new Certificate

...

There is no service for updating uploaded Certificates. In case if Certificate is not valid anymore, please delete it using Delete existing Certificate service and then upload a new Certificate.

2. Get Certificates list

Using GET /tppAuthentication/certificates endpoint you can overview the list of all existing Client's Certificates in finAPI Access PSD2 database.

Only the Certificates belonging to the Client will be shown. It is not possible to filter the Certificates. The expired Certificates are also displayed.

The service does NOT return sensitive information like Private key or passphrase. Only Certificate id, type (QWAC or QsealC), label and validFrom/validUntil dates will be returned.

3.

...

Get Certificate details

Using GET /tppAuthentication/certificates/{id} endpoint you can view the details of a specific Certificate. The search is done by Certificate id.

The service does NOT return sensitive information like Private key or passphrase. Only Certificate id, type (QWAC or QsealC), Certificate itself, label and validFrom/validUnti dates will be returned.

The service will return an error in case if:

  • Certificate is not found;

  • Client has no access to the Certificate (access token is provided for Client A, but the Certificate belongs to Client B).

4. Delete existing Certificate

Using DELETE /tppAuthentication/certificates/{id} endpoint you can delete existing Certificate. The search is done by Certificate id.

The Certificate will be deleted from finAPI Access PSD2 database.

The service will return an error in case if:

  • Certificate is not found;

  • Client has no access to the Certificate (access token is provided for Client A, but Certificate belongs to Client B).

TPP Credentials Services

1. Submit new TPP Credentials

Using POST /tppAuthentication/clientCredentials endpoint you can submit Client Credentials to finAPI Access PSD2 database.

...

There is a service for updating uploaded Client Credentials. In case if Client Credentials are not valid anymore, please use Update existing Client Credentials.

3. Get Certificates list

...

Using GET /tppAuthentication/certificates endpoint you can overview the list of all existing Client's Certificates in finAPI Access PSD2 database.

Only the Certificates belonging to the Client will be shown. It is not possible to filter the Certificates. The expired Certificates are also displayed.

The service does NOT return sensitive information like Private key or passphrase. Only Certificate id, type (QWAC or QsealC), label and validFrom/validUntil dates will be returned.

...

2. Get Client Credentials list

...

Using GET /tppAuthentication/clientCredentials endpoint you can overview the list of all existing Client Credentials in finAPI Access PSD2 database.

...

It is possible to filter Client Credentials list using "search" parameter. FinAPI Access PSD2 will return only Client Credentials belonging to those Banks whose "name", "blz", or "bic" contain the given search string (the matching works case-insensitive). If the given search string consists of several terms (separated by a white space), then ALL of these terms must apply to a Bank in order for it to get included into the list.

5. Get Certificate details

...

Using GET /tppAuthentication/certificates/{id} endpoint you can view the details of a specific Certificate. The search is done by Certificate id.

The service does NOT return sensitive information like Private key or passphrase. Only Certificate id, type (QWAC or QsealC), Certificate itself, label and validFrom/validUnti dates will be returned.

The service will return an error in case if:

  • Certificate is not found;

  • Client has no access to the Certificate (access token is provided for Client A, but the Certificate belongs to Client B).

6. Get Client Credentials details

...

3. Get Client Credentials details

Using GET /tppAuthentication/clientCredentials/{id} endpoint you can view the details of specific Client Credentials. The search is done by Client Credentials id.

...

  • Client Credentials are not found;

  • Client has no access to the Credentials (access token is provided for Client A, but Credentials belong to Client B).

...

4. Update existing Client Credentials

...

Using PATCH /tppAuthentication/clientCredentials/{id} endpoint you can update existing Client Credentials.

...

  • Client Credentials are not found;

  • Client has no access to the Credentials (access token is provided for Client A, but the Credentials belong to Client B).

...

5. Delete existing

...

Using DELETE /tppAuthentication/certificates/{id} endpoint you can delete existing Certificate. The search is done by Certificate id.

The Certificate will be deleted from finAPI Access PSD2 database.

The service will return an error in case if:

...

Certificate is not found;

Client

...

Credentials

...

Using DELETE /tppAuthentication/clientCredentials/{id} endpoint you can delete existing Client Credentials. The search is done by Credentials id.

...