...
The OFP MUST return a 200 OK together with the response body containing the Authorization Server and Resource Server URLs. The Content-type header field will be set to application/jwt to indicate that response is a JWS.
1.3 Step 3:
...
Confirm Payee Account Details at the LFI
The TPP MUST have a valid access token (with scope), solicited using the Client Credentials grant type, using the OFP Authorization Server URL returned in Step 2.
...
The TPP MUST use the Resource Server URL, together with the request payload, returned from Step 2 to call the Verify operation.The OFP MUST resolve the IBAN to the correct AccountId value at the LFIConfirmation operation.
The OFP MUST call the Parties endpoint at the LFI to retrieve the account holder name, using the AccountId value to address the correct accountthe account details retrieve the party for the account being confirmed.
The LFI MUST respond with 200 OK together with the properties of the account holder.
...
| Code Block |
|---|
POST /open-finance/confirmation-of-payee/v1/discovery HTTP/1.1
Host: rs1.openfinanceplatform.ae
Content-Type: application/jwt
Accept: application/jwt
x-fapi-interaction-id: 8b92e2c6-e0b6-4bc2-92e7-dae085a8141c
Authorization: Bearer 54234c74-8ab7-4633-bc3d-ce050695751c
{
"alg": "PS256",
"kid": "44310147-3249-40cf-a85f-d197a29f9b1b"
}
.
{
"iss": "string",
"exp": 0.5,
"nbf": 0.5,
"aud": [
"string"
],
"iat": 0.5,
"message": {
"Data": {
"IdentificationType": "UAEOF.IBAN",
"Identification": "AE070331234567890123456"
}
}
}
.
<<signature>> |
3.2.2 Response: Authorization Server and Resource Server URLs to Invoke
...
Confirmation Operation
| Code Block |
|---|
HTTP/1.1 200 OK
Content-Type:application/jwt
x-fapi-interaction-id: 8b92e2c6-e0b6-4bc2-92e7-dae085a8141c
{
"alg": "PS256",
"kid": "c3cce1fa-e3c1-4901-bf70-e3bd33c42bfb"
}
.
{
"iss": "string",
"exp": 0.5,
"nbf": 0.5,
"aud": [
"string"
],
"iat": 0.5,
"message": {
"Data": {
"AuthorizationServerUrl": "https:/lfi1.openfinance.ae/open-finance/auth/v1/as",
"ResourceServerUrl": "https:/lfi1.openfinance.ae/open-finance/confirmation-of-payee/v1/verificationconfirmation"
}
}
}
.
<<signature>> |
3.3. The TPP Requests an Access Token to
...
Confirm the Payee Account Name
3.3.1 Request: Access Token Request using the Client Credentials Grant Type at the LFI Authorization Server Instance
...
| Code Block |
|---|
HTTP/1.1 200 OK
Content-Type: application/json
{
"access_token": "77c38589-a158-4eda-8b9f-279dc98d1635",
"expires_in": 3600,
"token_type": "Bearer",
"scope": "openid confirmation-of-payee"
} |
3.4 The TPP Invokes the
...
Confirm Operation for the Payee Account Name
3.4.1 Request: TPP Sends Account Details as JSON Web Signature
| Code Block |
|---|
POST /open-finance/confirmation-of-payee/v1/verificationconfirmation HTTP/1.1 Host: lfi1.openfinanceplatform.ae Content-Type: application/jwt Accept: application/jwt x-fapi-interaction-id: 1a1f0c67-1120-4b4b-abf3-7f5cd5979189 Authorization: Bearer 77c38589-a158-4eda-8b9f-279dc98d1635 { "alg": "PS256", "kid": "44310147-3249-40cf-a85f-d197a29f9b1b" } . { "iss": "string", "exp": 0.5, "nbf": 0.5, "aud": [ "string" ], "iat": 0.5, "message": { "Data": { "IdentificationType": "UAEOF.IBAN", "Identification": "AE070331234567890123456", "Name": { "GivenName": "Mohammed", "FamilyName": "Al-Nakheel" } } } } . <<signature>> |
...
| Code Block |
|---|
HTTP/1.1 200 OK
Content-Type: application/json
{
"Data": {
"Party": [
...
"Claims": {
"GivenName": "Mohammed",
"FamilyName": "Al-Nakheel"
}
]
}
} |
3.4.4 Response: Name
...
Confirmation Response
| Code Block |
|---|
HTTP/1.1 200 OK
Content-Type: application/jwt
{
"alg": "PS256",
"kid": "29b362fc-c46c-460e-98b5-2a8af073e6aa"
}
.
{
"iss": "string",
"exp": 0.5,
"nbf": 0.5,
"aud": [
"string"
],
"iat": 0.5,
"message": {
"Data": {
"AccountNameMatchIndicator": "UAEOF.ConfirmationOfPayee.Yes"
}
}
}
.
<<signature>> |
...
A confirmation-of-payee scope is used for the Discover and Verify Confirmation operations.