Versions Compared

Version Old Version 2 New Version 3
Changes made by

Chris Wood

Chris Wood

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The flow MUST begin with the TPP either:

  • Prompt Prompting the User for the Payee account details, where the account details are solicited from the User.

  • Retrieving the Payee account details where they are stored by the TPP

In both cases the TPP will agree with the User that the details appear correct prior to to correlate with the intended Payee before invoking any Confirmation of Payee operation.

...

Code Block
POST /open-finance/confirmation-of-payee/v1/verification HTTP/1.1
Host: lfi1.openfinanceplatform.ae
Content-Type: application/jwt
Accept: application/jwt
x-fapi-interaction-id: 1a1f0c67-1120-4b4b-abf3-7f5cd5979189
Authorization: Bearer 77c38589-a158-4eda-8b9f-279dc98d1635
{
  "alg": "PS256",
  "kid": "44310147-3249-40cf-a85f-d197a29f9b1b"
}
.
{
  "iss": "string",
  "exp": 0.5,
  "nbf": 0.5,
  "aud": [
    "string"
  ],
  "iat": 0.5,
  "message": {
    "Data": {
      "IdentificationType": "UAEOF.IBAN",
      "Identification": "AE070331234567890123456",
      "Name": {
        "GivenName": "Mohammed",
        "FamilyName": "Al-Nakheel"
      }
    }
  }
}
.
<<signature>>

3.4.2 Request: OFP Sends Parties Request to LFI

...

Code Block
HTTP/1.1 200 OK
Content-Type: application/json
{
  "Data": {
    "Party": [
      ...
      "Claims": {
        "GivenName": "Mohammed",
        "FamilyName": "Al-Nakheel"
      }
    ]
  }
}

3.4.4 Response: Name Verification Response

Code Block
HTTP/1.1 200 OK
Content-Type: application/json
{
  jwt
{
  "alg": "PS256",
  "kid": "44310147-3249-40cf-a85f-d197a29f9b1b"
}
.
{
  "iss": "string",
  "exp": 0.5,
  "nbf": 0.5,
  "aud": [
    "string"
  ],
  "iat": 0.5,
  "message": {
    "Data": {
      "AccountNameMatchIndicator": "UAEOF.ConfirmationOfPayee.No"Yes"
    }
  }
}
.
<<signature>>

5. OpenAPI Specification

See the Confirmation of Payee - OpenAPI Documentation page.

6. Confirmation of Payee Notes

  • The Confirmation of Payee API only supports signed requests and responses. All request and response payloads must be encoded as a JWS.

  • The examples of retrieving the Party information from the LFI only show the bare payloads and do not include the security approach implemented between the OFP and LFI, which varies based on LFI preferences.

7. Security

A confirmation-of-payee scope is used for the Discover and Verify operations.