...
A User will initiate a consent from a TPP's mobile or web app.
The User will be redirected to the LFI's mobile or web app to authorise the consent.
The LFI need to adapt their mobile and/or web app to receive the redirect and parameters passed over from the TPP
The LFI will use the API Hub Authorisation Server to verify the request and the parameters
The User will go through SCA (Strong Customer Authentication), review the consent, and authorise/reject it.
The LFI needs to adapt their mobile and/or web app to display the consent authorisation screens.
Each consent type will have different information to display to the user
All screens and the required UX guideline will be provided as part of the Open Finance Standards
The LFI will use the Consent Manager and the Authorisation Server to communicate the outcome of the consent authorisation.
The User will be redirected back to the TPP's mobile or web app.
The API Hub will generate the redirect url & access token
The TPP will receive an access token to allow appropriate actions under the conditions of the consent on the User's account(s).
The Ozone Connect API will be responsible for serving data for action service initiation
...