Authentication API

Endpoints

You can find more detailed API Docs here

GET /v1/open-banking/authentication-url

query_param	required	description
client_id	true	Public identifier
scope	true	Requested scopes
redirect_uri	true	URL address on TPP side, where PSU will be redirected after successful authentication
state	false	Used to protect against XSRF

Response:

{
  "redirect_uri": "https://open-banking.bigwallet.com/permissions?client_id=tpp&scope=accounts:list accounts payments consents funds:confirmation&redirect_uri=https://tpp.com/authredirect&state=1234"
}

POST /v1/open-banking/token

Exchange Code to Access Token

Request:

{
    "code": "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",
    "grant_type": "authorization_code",
    "client_id": "tpp",
    "client_secret": "tpp",
    "redirect_uri": "https://tpp.com/redirect"
}

Response:

{
  "token_type": "Bearer",
  "expires_in": 3600,
  "access_token": "jwtlkalksdklaskld",
  "refresh_token": "qoiweioqioweoqwoie"
}

Exchange Refresh Token to Access Token

Request:

{
    "refresh_token": "def50200672c86ad43c15c2dcb422561ceba1c4fc29b0731efd699c2c3f435fc1b03f8c666a1bc755d4e8125036bf69b829205c6f8b8e27c8ec2537e76ad933d34ec0beb251445b3ff17a9e9f666773a565e01e871e6bc734e2f1d238cc3630e3ce3a627c688710f61f2a156b78ba098b5850c621cec22f285fc018dc02c2aaf46d2121abf3638097de92a5abf27d31f496b98da1adefd2c201797576aa3a9df9e38e625e435a773e25095370f85fb77642658fec29a09693c76962332eb2a994f76fdadbf4b989881a9515acee860920004ba062c111ce470c0f93dba5a255b3c8000f653aeed1e12f93df935531d83a6c5508cfa3b99e5f69a90f2e3bda69efc296d56042aba19a50b428b074bbdb0b15d43dc78f4cf4fd8850b8c04fee484f8753f928b47c0401bd20e9ff2fbb6b21326afe1e5bdff1de1eac6945413ecafd33c76e943cd4dc26bce5edb718fa138118d925b6095ca51fa3d040392defbd56179617616d880c920405d81971ae252ab31ca2e495367e09351d006f316192c1514bc911020a04637cb1b11278913347eab71a65b356ad7d0f5a0b4a98137d2454e5d2ff46d76a435d5c1a8448655a299a720944fcabaedb341e809ee05ed8bcd1a0967c733ce0e5a",
    "grant_type": "refresh_token",
    "client_id": "tpp",
    "client_secret": "tpp"
}

Response:

{
  "token_type": "Bearer",
  "expires_in": 3600,
  "access_token": "jwtlkalksdklaskld",
  "refresh_token": "qoiweioqioweoqwoie"
}