Open Banking Core Platform

TPP onboarding and A&A service

Glossary

Service Diagram

Decision Tree

TPP onboarding and A&A (Authentication and Authorisation) service

Fetch User Account Information (this flow repeat for all endpoints)

User initiates account information request via External TPP

External TPP initiates mTLS-secured connection to Bank

External TPP sends account request to Bank with stored access token

External TPP stores retrieved account data (e.g. name, ID, type) (Fields are account name, account ID and Account type associate with user and banks)

TPP will select account

TPP will read account ID

TPP will send account information request to selected account ID

Account Consent Flow

User (PSU) selects a Bank and initiates account request via External TPP (Field name “Bank” (name of banks shown in DD))

External TPP generates a consent request and sends it to the selected Bank (fields of consent request are client_id , redirect_uri, response_type, state (to prevent CSRF), expiry time and permissions)

TPP Will receive user consent redirect URI

TPP will populate user consent screen

User will authenticate himself or sign in to bank and approve consent

Bank will send consent code to TPP redirect URI

TPP will Send access token request with code

External TPP will store access token, refresh token, code, consent ID associate with bank and user.

Registering the TPP with Bank

Tpp registration with bank (Account Servicing Payment Service Providers (ASPSPs)).

1.1

Tpp registration with open banking

1.2

Tpp generated open banking Certificates

1.3

Tpp registration with bank using open banking Certificates

1.4

1.2

Tpp registration with open banking

Provide Details for the KYC Checks those details for driving license, passport, address proof and other directors consent (optional), also have a techincal contact and all detail have a same domain name

1.2

Mention all fields here