Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Expand
titleMENU
Table of Contents
minLevel1
maxLevel6
outlinefalse
stylenone
typelist
printabletrue

Author

Chris Michael David Plews Isla Humphreys

Version

1.0

Classification

DRAFT

1. Specification

Awesome api app render macro
authHeaderName
linksColor#0052cc
showInfotrue
allowSpecUrlLoadfalse
primaryColor#0052CC
schemaStyletable
methodGetColor#0065FF
authHeaderValue
methodPutColor#6554c0
generalThemeconfluence_light
allowTryfalse
layoutHeight1000
allowAdvancedSearchfalse
codeBg#F4F5F7
methodHeadColor#ffab00
navHoverTextColor
showComponentsfalse
allowServerSelectiontrue
methodPatchColor#ffab00
textColor#172B4D
navBgColor#FAFBFC
codeFg#172B4D
navTextColor#172B4D
fontSizedefault
sortEndpointsBymethod
usePathInNavBartrue
navAccentColor#6554C0
methodDeleteColor#ff5630
allowAuthenticationfalse
headerColor#fff
bgColor#fff
allowSearchfalse
sortTagstrue
methodPostColor#36b37e
themelight
authTypeNone
inlineCodeFg#6554C0
resourceContentTypejson
showHeaderfalse
allowSpecFileLoadfalse
inlineCodeBg#F4F5F7
renderStyleread
layoutrow
headingText
navItemSpacingdefault
infoDescriptionHeadingsInNavbartrue
specUrl
navHoverBgColor
resourceTypeCONTENT
openapi: 3.0.1

servers:
  - url: https://{server}/v2024.07
    description: Consent manager for the tenant
    variables:
      server:
        default: cm.*
        description: The server that the API is hosted on.

info:
  title: Consent Manager Apis
  description: |
    This document provides the OAS3 specification for the APIs provided by the Ozone Consent Manager.
    These APIs are implemented by Ozone and should be called by the LFI to find, modify and delete consents.

  contact:
    name: Contact your Ozone representative
    url: https://ozoneapi.com

  version: Version 2024.10

tags:
  - name: consents
  - name: consent-groups
  - name: funds-confirmations
  - name: payments
  - name: events

paths:
  /consents:
    post:
      tags:
        - consents
      summary: Creates a new consent
      description: |
        Used by Ozone to create a new consent using a Heimdall interaction.

      operationId: addConsent
      requestBody:
        description: |
          An end-point for creating a new consent.

          The consent is created from a Heimdall Interaction that is passed in as the request body.

          The Consent Manager processes this as a RAR request using one or more plugins to introspect and create the appropriate consent.
        required: true
        content:
          application/json:
            schema:
              type: object
              additionalProperties: true

      responses:
        '201':
          description: |
            Indicates the successful creation of a consent
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/ConsentPostResponse"

        '400':
          description: |
            Indicates a failure to create the consent
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

    get:
      tags:
        - consents
      summary: Retrieves all the consents that meet the search criteria
      description: |
        Retrieves an array of consents that meets the search criteria.

        If no consents could be found, then an empty array is returned.

      operationId: getAllConsents

      parameters:
        - name: updatedAt
          in: query
          schema:
            type: number
          required: false
          description: |
            Select only consents updated after the specified time

        - $ref: "#/components/parameters/consentType"
        - $ref: "#/components/parameters/status"
        - $ref: "#/components/parameters/page"
        - $ref: "#/components/parameters/pageSize"

      responses:
        '200':
          description: |
            Successful response
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/multiConsentResponse"
        '400':
          description: Indicates a failure to retrieve the consents
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /consents/{consentId}:
    get:
      tags:
        - consents
      summary: Retrieve a consent by its id
      description: Retrieves a consent by its id.
      operationId: getConsentsByConsentId
      parameters:
        - $ref: "#/components/parameters/consentId"

      responses:
        '200':
          description: successful operation
          content:
            application/json:
              schema:
                type: object
                required:
                  - data
                  - meta
                properties:
                  data:
                    $ref: "#/components/schemas/consent"
                  meta:
                    $ref: "#/components/schemas/meta"

        '400':
          description: |
            Indicates a failure to retrieve the consent
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

    patch:
      tags:
        - consents
      summary: Patches one or more fields in a consent
      description: |
        This operation allows an LFI modify fields within a consent's `consentBody`.

        Typically, this API would be called after the PSU has authorised a consent. This would
        allow the LFI to "patch in" the `psuIdentifier` and `accountIds` associated with the
        consent
      operationId: patchConsent
      parameters:
        - $ref: "#/components/parameters/consentId"
      requestBody:
        required: true
        content:
          application/json:
            schema:
              $ref: "#/components/schemas/patchBody"


      responses:
        '204':
          description: An empty response
        '400':
          description: |
            Indicates a failure to patch the consent
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

    delete:
      tags:
        - consents
      summary: deletes the specified consent

      description: |
        Deletes the specified consent.

      operationId: deleteConsent

      parameters:
        - $ref: "#/components/parameters/consentId"

      responses:
        '204':
          description: |
            Successful response
        '400':
          description: Indicates a failure to retrieve the consents
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /consents/{consentId}/action/revoke:
    post:
      tags:
        - consents
      summary: Revoke a consent by its id
      description: Revoke a consent by its id.
      operationId: revokeConsentsByConsentId

      parameters:
        - $ref: "#/components/parameters/consentId"

      requestBody:
        description: |
          An end-point for revoking a consent.
        required: true
        content:
          application/json:
            schema:
              $ref: "#/components/schemas/RevokeConsent"

      responses:
        '204':
          description: |
            No Content

        '400':
          description: |
            Indicates a failure to revoke the consent
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /consents/{consentId}/audit:
    get:
      tags:
        - consents
      summary: Retrieve an audit of a consent by the consent's id
      description:
        Retrieves an audit of a consent by the consent's id.
      operationId: getAuditConsentsByConsentId
      parameters:
        - $ref: "#/components/parameters/consentId"

      responses:
        '200':
          description: successful operation
          content:
            application/json:
              schema:
                type: object
                required:
                  - data
                  - meta
                properties:
                  data:
                    type: array

                    items:
                      type: object
                      required:
                        - providerId
                        - operation
                        - timestamp
                        - fkMongoId
                        - fkId
                        - id
                        - ozoneInteractionId

                      properties:
                        providerId:
                          type: string

                        operation:
                          type: string
                          description: |
                            Like "create" or "patch"

                        timestamp:
                          type: integer

                        fkMongoId:
                          type: string
                          description: |
                            A unique identifier for the audit log in mongodb

                        fkId:
                          type: string
                          description: |
                            A unique identifier for the consentId

                        id:
                          type: string
                          description: |
                            A unique identifier for the audit log

                        ozoneInteractionId:
                          type: string
                          description: |
                            The ozone interaction id assigned to the interaction that caused this changed. Useful for looking up the api-log

                        callerDetails:
                          type: object
                          additionalProperties: false
                          properties:
                            callerOrgId:
                              type: string
                            callerClientId:
                              type: string
                            callerSoftwareStatementId:
                              type: string

                        patchFilter:
                          type: string

                        patch:
                          type: string
                          description: |
                            This shows what the LFI had "patched in" the `psuIdentifier` and `accountIds` associated with the consent

                  meta:
                    $ref: "#/components/schemas/meta"
        '400':
          description: |
            Indicates a failure to retrieve the consent's audit trail
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /consent-groups/{consentGroupId}/consents:
    get:
      tags:
        - consent-groups
      summary: Retrieves consents within a consent group
      description: |
        Retrieves an array of consents that are within a consent group.

        If no consents could be found, then an empty array is returned.

      operationId: getConsentsInConsentGroup

      parameters:
        - name: consentGroupId
          in: path
          schema:
            type: string
          required: true
          description: |
            Select consents within the consentGroupId

        - $ref: "#/components/parameters/consentType"
        - $ref: "#/components/parameters/status"
        - $ref: "#/components/parameters/page"
        - $ref: "#/components/parameters/pageSize"

      responses:
        '200':
          description: |
            Successful response
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/multiConsentResponse"
        '400':
          description: Indicates a failure to retrieve the consents
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /consent-groups/{consentGroupId}/consents/action/revoke:
    post:
      tags:
        - consent-groups
      summary: Revokes consents within a consent group
      description: |
        Revokes consents that are within a consent group.

      operationId: revokeConsentsInConsentGroup

      parameters:
        - name: consentGroupId
          in: path
          schema:
            type: string
          required: true
          description: |
            Select consents within the consentGroupId

      requestBody:
        description: |
          An end-point for revoking a consent within a consent group.
        required: true
        content:
          application/json:
            schema:
              $ref: "#/components/schemas/RevokeConsent"

      responses:
        '204':
          description: |
            No Content

        '400':
          description: Indicates a failure to revoke the consent
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /psu/{userId}/consents:
    get:
      tags:
        - consents
      summary: Retrieves all the consents associated with a given PSU
      description: |
        Retrieves an array of consents associated with the PSU.

        If no consents could be found associated with the PSU, then an empty array is returned.

        The userId path parameter is matched with the `psuIdentifiers.userId` field in the consent.
      operationId: getConsents
      parameters:
        - $ref: "#/components/parameters/userId"
        - $ref: "#/components/parameters/consentType"
        - $ref: "#/components/parameters/status"
        - $ref: "#/components/parameters/page"
        - $ref: "#/components/parameters/pageSize"

      responses:
        '200':
          description: |
            Successful response
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/multiConsentResponse"
        '400':
          description: Indicates a failure to retrieve the consents
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /psu/{userId}/deleted-consents:
    get:
      tags:
        - consents
      summary: Retrieve deleted consents of a user by its id
      description: |
        Retrieve deleted consents of a user by its id
      operationId: getUserIdDeletedConsents
      parameters:
        - $ref: "#/components/parameters/userId"
        - $ref: "#/components/parameters/page"
        - $ref: "#/components/parameters/pageSize"

      responses:
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/multiConsentResponse"
        '400':
          description: |
            Indicates a failure to retrieve the consent
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /accounts/{accountId}/consents:
    get:
      tags:
        - consents
      summary: Retrieve consents of a account by its id
      description: |
        Retrieve consents of a account by its id
      operationId: getAccountIdConsents
      parameters:
        - name: accountId
          in: path
          schema:
            type: string
          required: true
          description: Identifier for the account

        - $ref: "#/components/parameters/consentType"
        - $ref: "#/components/parameters/status"
        - $ref: "#/components/parameters/page"
        - $ref: "#/components/parameters/pageSize"

      responses:
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/multiConsentResponse"

        '400':
          description: |
            Indicates a failure to create the consent
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /payment-log:
    get:
      tags:
        - payments
      summary: Retrieve a payment log by its consent id or account id
      operationId: getAuditConsentsByConsentIdw
      description: |
        Either one of the query parameters can be used, not both.
      parameters:
        - name: consentId
          in: query
          schema:
            type: string
          required: true
          description: |
            Identifier for the consent

        - name: accountId
          in: query
          schema:
            type: string
          required: true
          description: |
            Identifier for the account

      responses:
        '200':
          description: successful operation
          content:
            application/json:
              schema:
                type: object
                required:
                  - data
                  - meta
                properties:
                  data:
                    type: array
                    items:
                      type: object

                      required:
                        - consentId
                        - paymentType
                        - paymentId
                        - idempotencyKey
                        - paymentResponse
                        - tpp
                        - accountId
                        - psuIdentifiers
                        - interactionId
                        - authorizationCode
                        - requestBody
                        - requestHeaders

                      properties:

                        consentId:
                          type: string
                          description: |
                            A ConsentId generated by the LFI for the consent. This is different from the top-level `id` field which is used by Consent Manager.

                        paymentType:
                          type: string
                          description: The underlying payment type

                        paymentId:
                          type: string

                        idempotencyKey:
                          type: integer

                        paymentResponse:
                          type: object

                          properties:
                            id:
                              type: string
                              description: |
                                A unique payment for the consent in uuid-v4 format.

                            status:
                              type: string
                              description: |
                                The current status of the payment

                            creationDateTime:
                              type: string
                              pattern: ($date-time)
                              description: |
                                An ISO date-time representing when the consent was created

                            statusUpdateDateTime:
                              type: string
                              pattern: ($date-time)
                              description: |
                                An ISO date-time representing when the consent status was last updated

                            rejectionDetails:
                              description: |
                                This attribute SHOULD only be returned when the resource Status represents a failed state e.g. : Rejected.
                              type: object
                              required:
                                - Reason
                              properties:
                                Reason:
                                  type: object
                                  description: |
                                    A Placeholder for any responses that support a Status
                                  required:
                                    - Code
                                  properties:
                                    Code:
                                      type: string
                                      description: |
                                        The reason code that represents the downstream System Error.
                                        **Payments**

                                        |Status|Reason Code|Description|
                                        |----------|--|--|
                                        |Rejected|KSAOB.Originator.InsufficientFunds|The PASP Debtor Account does not have sufficient funds to complete the payment|
                                        |Rejected|KSAOB.Originator.AccountIssue|The Originator Account has an issue in sending the payment e.g. Account is inactive, locked, dormant|
                                        |Rejected|KSAOB.Receiver.AccountIssue|The Receiver Account has an issue in receiving the payment e.g. Account is inactive, locked, dormant|
                                        |Rejected|KSAOB.Originator.TransactionNotPermitted|The Originator Account is not permitted to perform the requested transaction|
                                        |Rejected|KSAOB.Originator.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                                        |Rejected|KSAOB.Receiver.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                                        |Rejected|KSAOB.Receiver.Timeout |A timeout has occurred on the payment rails|
                                        |Rejected|KSAOB.Receiver.SystemUnavailable|The payment rails or downstream system is unavailable|
                                        |Rejected|KSAOB.Originator.Other|Any other reason not specified and applicable to the Originator; details MUST be provided in the Detail field|
                                        |Rejected|KSAOB.Receiver.Other|Any other reason not specified and applicable to the Receiver; details MUST be provided in the Detail field|
                                        |Rejected|KSAOB.Originator.SuspectedFraud|The Originator Account has been suspended due to suspected fraud|
                                        |Rejected|KSAOB.Receiver.SuspectedFraud|The Receiver Account has been suspended due to suspected fraud|
                                        |Failed|KSAOB.Originator.SystemUnavailable|This is only for RTP.The payment rails or downstream system is unavailable|
                                        |Cancelled|KSAOB.Receiver.CancellationAccepted|This is only for RTP.The cancellation request has been accepted by the Receiver|
                                        |Expired|KSAOB.Originator.Expired|This is only for RTP.The Originator requested window for an RTP response has expired|
                                        |Failed|KSAOB.Originator.CancelledBeforeSubmission|This is only for RTP.The Originator PASP has not submitted the RTP request to the Receiver PASP due to invalid information|
                                      enum:
                                        - "KSAOB.Originator.InsufficientFunds"
                                        - "KSAOB.Originator.AccountIssue"
                                        - "KSAOB.Receiver.AccountIssue"
                                        - "KSAOB.Originator.TransactionNotPermitted"
                                        - "KSAOB.Originator.DuplicateTransaction"
                                        - "KSAOB.Receiver.DuplicateTransaction"
                                        - "KSAOB.Receiver.Timeout"
                                        - "KSAOB.Receiver.SystemUnavailable"
                                        - "KSAOB.Originator.Other"
                                        - "KSAOB.Receiver.Other"
                                        - "KSAOB.Originator.SuspectedFraud"
                                        - "KSAOB.Receiver.SuspectedFraud"
                                        - "KSAOB.Originator.SystemUnavailable"
                                        - "KSAOB.Receiver.CancellationAccepted"
                                        - "KSAOB.Originator.Expired"
                                        - "KSAOB.Originator.CancelledBeforeSubmission"
                                    Detail:
                                      type: "string"
                                      description: "Further details that are specific to the Reason Code"
                                  additionalProperties: false
                                Message:
                                  $ref: "#/components/schemas/OBMessage"
                              additionalProperties: false

                            instruction:
                              type: object
                              description: The current status of the payment. This is mandatory for KSA. The data will be passed without any validation.
                              oneOf:
                                - $ref: "#/components/schemas/KSAOBRefundInitiationInstructionResponse"
                                - $ref: "#/components/schemas/KSAOBRequestToPayInitiationInstructionResponse"

                        signedResponse:
                          type: string

                        tpp:
                          $ref: "#/components/schemas/tpp"

                        accountId:
                          type: integer

                        psuIdentifiers:
                          $ref: "#/components/schemas/psuIdentifiers"

                        interactionId:
                          $ref: "#/components/schemas/apiLogInteractionId"

                        authorizationCode:
                          type: object

                          properties:
                            paymentId:
                              type: string

                            accessTokenHash:
                              type: string

                            currentDateTime:
                              type: string
                              pattern: ($date-time)

                        requestBody:
                          type: object
                          description: |
                            Describes the fields to be patched and their corresponding values.

                            The fields that are supported differ based on the Api standard that the consent belongs to.
                          properties:
                            data:
                              type: object

                              properties:
                                cnpjInitiatori:
                                  type: integer

                                localInstrument:
                                  type: string

                                payment:
                                  type: object

                                  properties:
                                    currency:
                                      type: string

                                    amount:
                                      type: number

                                creditorAccount:
                                  type: object

                                  properties:
                                    ispb:
                                      type: integer

                                    issuer:
                                      type: integer

                                    number:
                                      type: integer

                                    accountType:
                                      type: string

                                remittanceInformation:
                                  type: string

                                cnpjInitiator:
                                  type: integer

                        signedRequestBody:
                          type: string

                        requestHeaders:
                          type: object
                          description: |
                            The entire set of Http request headers that was received by Ozone from the TPP
                          additionalProperties: true

                  meta:
                    $ref: "#/components/schemas/meta"
        '400':
          description: |
            Indicates a failure to retrieve the payments
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /payment-log/{id}:
    patch:
      tags:
        - payments
      summary: Patches one or more fields in a payment-log based on id .
      description: |
        This operation allows an  modify fields within a payment's `paymentResponse`. This id  could be of  type refund/rtp/paymentId .

      operationId: patchPymentlog
      parameters:
        - $ref: "#/components/parameters/id"
      requestBody:
        required: true
        content:
          application/json:
            schema:
              $ref: "#/components/schemas/PatchPaymentRecordBody"

      responses:
        '200':
          description: successful operation
          content:
            application/json:
              schema:
                type: object
                required:
                  - data
                  - meta
                properties:
                  data:
                    type: array
                    items:
                      type: object

                      required:
                        - consentId
                        - paymentType
                        - paymentId
                        - idempotencyKey
                        - paymentResponse
                        - tpp
                        - accountId
                        - psuIdentifiers
                        - interactionId
                        - authorizationCode
                        - requestBody
                        - requestHeaders

                      properties:

                        consentId:
                          type: string
                          description: |
                            A ConsentId generated by the LFI for the consent. This is different from the top-level `id` field which is used by Consent Manager.

                        paymentType:
                          type: string
                          description: The underlying payment type

                        paymentId:
                          type: string

                        idempotencyKey:
                          type: integer

                        paymentResponse:
                          type: object

                          properties:
                            id:
                              type: string
                              description: |
                                A unique payment for the consent in uuid-v4 format.

                            status:
                              type: string
                              description: |
                                The current status of the consent

                            creationDateTime:
                              type: string
                              pattern: ($date-time)
                              description: |
                                An ISO date-time representing when the consent was created

                            statusUpdateDateTime:
                              type: string
                              pattern: ($date-time)
                              description: |
                                An ISO date-time representing when the consent status was last updated

                            rejectionDetails:
                                description: |
                                  This attribute SHOULD only be returned when the resource Status represents a failed state e.g. : Rejected.
                                type: object
                                required:
                                  - Reason
                                properties:
                                  Reason:
                                    type: object
                                    description: |
                                      A Placeholder for any responses that support a Status
                                    required:
                                      - Code
                                    properties:
                                      Code:
                                        type: string
                                        description: |
                                          The reason code that represents the downstream System Error.
                                          **Payments**

                                          |Status|Reason Code|Description|
                                          |----------|--|--|
                                          |Rejected|KSAOB.Originator.InsufficientFunds|The PASP Debtor Account does not have sufficient funds to complete the payment|
                                          |Rejected|KSAOB.Originator.AccountIssue|The Originator Account has an issue in sending the payment e.g. Account is inactive, locked, dormant|
                                          |Rejected|KSAOB.Receiver.AccountIssue|The Receiver Account has an issue in receiving the payment e.g. Account is inactive, locked, dormant|
                                          |Rejected|KSAOB.Originator.TransactionNotPermitted|The Originator Account is not permitted to perform the requested transaction|
                                          |Rejected|KSAOB.Originator.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                                          |Rejected|KSAOB.Receiver.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                                          |Rejected|KSAOB.Receiver.Timeout |A timeout has occurred on the payment rails|
                                          |Rejected|KSAOB.Receiver.SystemUnavailable|The payment rails or downstream system is unavailable|
                                          |Rejected|KSAOB.Originator.Other|Any other reason not specified and applicable to the Originator; details MUST be provided in the Detail field|
                                          |Rejected|KSAOB.Receiver.Other|Any other reason not specified and applicable to the Receiver; details MUST be provided in the Detail field|
                                          |Rejected|KSAOB.Originator.SuspectedFraud|The Originator Account has been suspended due to suspected fraud|
                                          |Rejected|KSAOB.Receiver.SuspectedFraud|The Receiver Account has been suspended due to suspected fraud|
                                          |Failed|KSAOB.Originator.SystemUnavailable|This is only for RTP.The payment rails or downstream system is unavailable|
                                          |Cancelled|KSAOB.Receiver.CancellationAccepted|This is only for RTP.The cancellation request has been accepted by the Receiver|
                                          |Expired|KSAOB.Originator.Expired|This is only for RTP.The Originator requested window for an RTP response has expired|
                                          |Failed|KSAOB.Originator.CancelledBeforeSubmission|This is only for RTP.The Originator PASP has not submitted the RTP request to the Receiver PASP due to invalid information|
                                        enum:
                                          - "KSAOB.Originator.InsufficientFunds"
                                          - "KSAOB.Originator.AccountIssue"
                                          - "KSAOB.Receiver.AccountIssue"
                                          - "KSAOB.Originator.TransactionNotPermitted"
                                          - "KSAOB.Originator.DuplicateTransaction"
                                          - "KSAOB.Receiver.DuplicateTransaction"
                                          - "KSAOB.Receiver.Timeout"
                                          - "KSAOB.Receiver.SystemUnavailable"
                                          - "KSAOB.Originator.Other"
                                          - "KSAOB.Receiver.Other"
                                          - "KSAOB.Originator.SuspectedFraud"
                                          - "KSAOB.Receiver.SuspectedFraud"
                                          - "KSAOB.Originator.SystemUnavailable"
                                          - "KSAOB.Receiver.CancellationAccepted"
                                          - "KSAOB.Originator.Expired"
                                          - "KSAOB.Originator.CancelledBeforeSubmission"
                                      Detail:
                                        type: "string"
                                        description: "Further details that are specific to the Reason Code"
                                    additionalProperties: false
                                  Message:
                                    $ref: "#/components/schemas/OBMessage"
                                additionalProperties: false
                            instruction:
                              type: object
                              description: The current status of the payment. This is mandatory for KSA. The data will be passed without any validation.
                              oneOf:
                                - $ref: "#/components/schemas/KSAOBRefundInitiationInstructionResponse"
                                - $ref: "#/components/schemas/KSAOBRequestToPayInitiationInstructionResponse"

                        signedResponse:
                          type: string

                        tpp:
                          $ref: "#/components/schemas/tpp"

                        accountId:
                          type: integer

                        psuIdentifiers:
                          $ref: "#/components/schemas/psuIdentifiers"

                        interactionId:
                          $ref: "#/components/schemas/apiLogInteractionId"

                        authorizationCode:
                          type: object

                          properties:
                            paymentId:
                              type: string

                            accessTokenHash:
                              type: string

                            currentDateTime:
                              type: string
                              pattern: ($date-time)

                        requestBody:
                          type: object
                          description: |
                            Describes the fields to be patched and their corresponding values.

                            The fields that are supported differ based on the Api standard that the consent belongs to.
                          properties:
                            data:
                              type: object

                              properties:
                                cnpjInitiatori:
                                  type: integer

                                localInstrument:
                                  type: string

                                payment:
                                  type: object

                                  properties:
                                    currency:
                                      type: string

                                    amount:
                                      type: number

                                creditorAccount:
                                  type: object

                                  properties:
                                    ispb:
                                      type: integer

                                    issuer:
                                      type: integer

                                    number:
                                      type: integer

                                    accountType:
                                      type: string

                                remittanceInformation:
                                  type: string

                                cnpjInitiator:
                                  type: integer

                        signedRequestBody:
                          type: string

                        requestHeaders:
                          type: object
                          description: |
                            The entire set of Http request headers that was received by Ozone from the TPP
                          additionalProperties: true



                  meta:
                    $ref: "#/components/schemas/meta"
        '400':
          description: |
            Indicates a failure to retrieve the payments
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"


  /funds-confirmation-log:
    get:
      tags:
        - funds-confirmations
      summary: Retrieve a funds confirmation log by its consent id or account id
      operationId: getFundsConfirmationByConsentIdorAccId
      description: |
        Either one of the query parameters can be used, not both.
      parameters:
        - name: consentId
          in: query
          schema:
            type: string
          required: true
          description: |
            Identifier for the consent
        - name: accountId
          in: query
          schema:
            type: string
          required: true
          description: |
            Identifier for the account
      responses:
        '200':
          description: successful operation
          content:
            application/json:
              schema:
                type: object
                required:
                  - data
                  - meta
                properties:
                  data:
                    type: array
                    items:
                      type: object
                      required:
                        - id
                        - consentId
                        - accountId
                        - fundsConfirmationResponse
                        - tpp
                        - interactionId
                        - requestBody
                        - requestHeader

                      properties:
                        id:
                          type: string
                          description: |
                            A unique identifier for the funds confirmation in uuid-v4 format.

                        consentId:
                          type: string
                          description: |
                            A ConsentId generated by the LFI for the consent. This is different from the top-level `id` field which is used by Consent Manager.

                        accountId:
                          type: string
                          description: |
                            An AccountId for which the funds confirmation log is needed

                        fundsConfirmationResponse:
                          type: object

                          properties:
                            data:
                              type: object
                              properties:
                                FundsConfirmationId:
                                  type: string
                                  description: |
                                    A unique identifier for the consent in uuid-v4 format.

                                ConsentId:
                                  type: string
                                  description: |
                                    A ConsentId generated by the LFI for the consent. This is different from the top-level `id` field which is used by Consent Manager.

                                creationDateTime:
                                  type: string
                                  pattern: ($date-time)
                                  description: |
                                    An ISO date-time representing when the consent was created

                                FundsAvailable:
                                  type: boolean

                                Reference:
                                  type: string

                                payment:
                                  type: object

                                  properties:
                                    currency:
                                      type: string

                                    amount:
                                      type: number

                            meta:
                              $ref: "#/components/schemas/meta"

                        tpp:
                          $ref: "#/components/schemas/tpp"

                        psuIdentifiers:
                          $ref: "#/components/schemas/psuIdentifiers"

                        interactionId:
                          $ref: "#/components/schemas/apiLogInteractionId"

                        requestBody:
                          type: object
                          description: |
                            Fields in the funds confirmation request
                          properties:
                            data:
                              type: object

                              properties:
                                consentId:
                                  type: string
                                  description: |
                                    A ConsentId generated by the LFI for the consent. This is different from the top-level `id` field which is used by Consent Manager.

                                Reference:
                                  type: string

                                InstructedAmount:
                                  type: object

                                  properties:
                                    currency:
                                      type: string

                                    amount:
                                      type: string

                        requestHeader:
                          type: object
                          description: |
                            The entire set of Http request headers that was received by Ozone from the TPP
                  meta:
                    $ref: "#/components/schemas/meta"
        '400':
          description: |
            Indicates a failure to create the consent
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

  /consents/{consentId}/events:
    post:
      tags:
        - events
      summary: Creates an event related to the consent
      description: |
        This operation allows an LFI(account holder) to raise an event related to the consent. The event will be delivered to the TPP that created the consent or payment, if the TPP has registered for events.

        `Note: this operation is only available for tenants implementing the KSA APIs.`
      operationId: postEvent
      parameters:
        - $ref: "#/components/parameters/consentId"

      requestBody:
        required: true
        content:
          application/json:
            schema:
              type: object
              description: |
                Describes the fields of the event to be emitted.
              required:
                - Data
                - EventMeta
              properties:
                Data:
                  type: object
                  description: Event Data. This Data Object will contain the same API resource and schema that needs to be send over the Event. This object should contain the payload that needs to be sent to the TPP
                  additionalProperties: true
                  example:
                    data:
                      timestamp: "2021-05-21T08:30:00Z"
                EventMeta:
                  type: object
                  description: Event Metadata
                  required:
                    - EventResource
                    - EventType
                    - ConsentId
                  properties:
                    EventResource:
                      type: string
                      description: The API resource with which the event is associated. For e.g. /consents/123 or /pix/payments/123
                      example: /payments/v2/pix/payments/abcd-1234
                    EventType:
                      type: string
                      example: BRCB.Payment.Updated
                      enum:
                        - BRCB.Consent.Updated
                        - BRCB.Payment.Updated
                        - KSAOB.Resource.Created
                        - KSAOB.Resource.Updated
                        - KSAOB.Resource.Deleted
                      description: The type of Event
                    ConsentId:
                      description: Unique identification as assigned to identify the consents resource.
                      example: urn:bancoex:C1DD33123
                      type: string
                      minLength: 1
                      maxLength: 128
                    EventDateTime:
                     type: string
                     format: date-time
                  additionalProperties: false
              additionalProperties: false
      responses:
        '201':
          description: Indicates that the event was successfully queued. This does not guarantee that the event was delivered to the TPP
          content:
            application/json:
              schema:
                type: object
                description: |
                  The event to be emitted
                required:
                  - Data
                  - EventMeta
                properties:
                  Data:
                    type: object
                    description: Event Data. This Data Object will contain the same API resource and Schema that needs to be send over the Event.
                  EventMeta:
                    type: object
                    description: Event Metadata
                    required:
                      - EventResource
                      - EventType
                      - ConsentId
                    properties:
                      EventResource:
                        type: string
                        description: The API resource to which the Event itself is associated
                        example: /accounts/123
                      EventType:
                        type: string
                        enum:
                          - KSAOB.Resource.Created
                          - KSAOB.Resource.Updated
                          - KSAOB.Resource.Deleted
                        description: The Type of Event
                      ConsentId:
                        description: Unique identification as assigned to identify the consents resource.
                        type: string
                        minLength: 1
                        maxLength: 128
                    additionalProperties: true
                additionalProperties: false
        '400':
          description: |
            Indicates a failure to register the event
          content:
            application/json:
              schema:
                $ref: "#/components/schemas/errorResponse"

components:
  schemas:
    errorResponse:
      type: object
      properties:
        errorCode:
          type: string
          description: Error code identifying the problem occured
        errorMessage:
          type: string
          description: Message describing what problem has occured

    meta:
      type: object
      additionalProperties: false

    apiLogInteractionId:
      type: object
      properties:
        ozoneInteractionId:
          type: string

        clientInteractionId:
          type: string

      additionalProperties: false
      required:
        - ozoneInteractionId

    tpp:
      type: object
      description: |
        The TPP record as held by Ozone.

        If Ozone TPP Connect has been integrated into a directory, the `directoryRecord` provides the TPP's directory record as held by Ozone in base 64 encoded format.

      required:
        - clientId
        - orgId
        - softwareStatementId
        - tppName

      properties:
        clientId:
          type: string
          description: The clientId for the TPP as issued by Ozone

        orgId:
          type: string
          description: The organization id for the TPP

        softwareStatementId:
          type: string
          description: The organization id for the TPP

        tppName:
          type: string
          description: The name of the TPP

        directoryRecord:
          type: object
          description: The latest copy of the TPP directory record if the TPP has registered with a directory

        ssa:
          type: string
          description: The SSA that the TPP used to manage its registration with Ozone

      additionalProperties: false

    psuIdentifiers:
      type: object
      description: |
        The PSU that is associated with this consent.

        The `PSUIdentifiers` object may have artitrary custom fields that an LFI may use to
        identify the PSU.

        However, all `PSUIdentifiers` must have a mandatory `userId` field that provides a unique
        user id for the PSU.

        The consent is initially created without a PSU identified.

        The value must be specified once the consent is authorised.
      properties:
        userId:
          type: string
      required:
        - userId
      additionalProperties: true

    newConsent:
      type: object
      properties:
        id:
          type: string
          description: |
            A unique identifier for the consent in uuid-v4 format.

        consentGroupId:
          type: string
          description: |
            A unique identifier for the consent group in uuid-v4 format.
            The consent group id is used to group together consents that are related to each other.
            e.g. For CDR, the consent group id is used to group together consents that are related to the same arrangement and the consent group id is the arrangement_id

        requestUrl:
          type: string
          format: url
          description: |
            The request url of Http request that was received by Ozone from the TPP

        consentType:
          type: string
          description: |
            The type of the consent that is being created.

            Each LFI's instance may support a different set of consent types
            The Consent Manager supports the creation of consents of different consent types
            depending on the standards supported.

            For example, for the UK OBIE standards, the following consent types are available:
              - account-access-consents
              - domestic-payment-consents
              - future-dated-payment-consents
              - standing-order-consents
              - international-payment-consents
              - international-future-dated-payment-consents
              - international-standing-order-consents

            For example, for the Brazil BRCB standards, the following consent types are available:
              - account-access-consents
              - brcb-pix-payment-consents
              - brcb-scheduled-pix-payment-consents
              - brcb-pix-recurring-payment-consents

        status:
          type: string
          description: |
            The current status of the consent

            The Consent Manager ensures that this field is synchronised with the status of the consent body (the disposition of that field depending on the underlying standard)

        request:
          type: object
          description: |
            The entire Http request body that was received by Ozone from the TPP to create the consent.

            The Consent Manager uses the consent type to identify the schema
            that should be used to validate the request. (These schemas are defined by the
            underlying standard)
          additionalProperties: true

        requestHeaders:
          type: object
          description: |
            The entire set of Http request headers that was received by Ozone from the TPP
          additionalProperties: true

        consentBody:
          type: object
          description: |
            An object representing the current state of the consent.
            This includes the entire request, augmented by additional computed properties
            (e.g. ids, charges etc)

            The Ozone Consent Manager caters to consents from various standards. The actual schema
            for each consentBody would be determined by the underlying standard.

        interactionId:
          type: string
          description: |
            The heimdall interaction id that this consent is associated with.

        tpp:
          $ref: "#/components/schemas/tpp"

        ozoneSupplementaryInformation:
          type: object
          additionalProperties: true
        updatedAt:
          type: number

      required:
        - id
        - consentType
        - request
        - requestHeaders
        - tpp
      additionalProperties: true

    patchedConsent:
      type: object
      properties:
        psuIdentifiers:
          $ref: "#/components/schemas/psuIdentifiers"

        accountIds:
          type: array
          items:
            type: string
          minItems: 1
          description: |-
            An array of account ids associated with the consent. The array must be populated once consent has been authorised.
            For payment consents, the array must always have one element - the debtor account from which the payment will be made
            For CBPII consents, the array must always have one element - the account for which CoF requests will be answered
            For AIS requests, the array may contain multiple values, representing each of the payment accounts for which an AIS service will be provided.

        supplementaryInformation:
          description:
            Contains additional information at the discretion of the LFI.

          type: object
          additionalProperties: true

        interactionId:
          type: string
          description: The heimdall interaction id that this consent is associated with. This is updated by heimdall and must not be set by LFIs.

        memberState:
          type: string
          minLength: 2
          maxLength: 2
          description: |
            The member state in which this consent is valid. If specified, for every API call made using this consent, Ozone will ensure that the TPP has a relevent permission in the member state. If not specified a member-state check will not be made.

        paymentContext:
          type: object
          additionalProperties: true

        bankConnectToken:
          type: string
          description: A bearer token that will be sent as the `Authorization` header for certain calls to bank connect.


      additionalProperties: true

    patchBody:
      type: object
      description: |
        Describes the fields to be patched and their corresponding values.

        The fields that are supported differ based on the Api standard that the consent belongs to.

      oneOf:
        - $ref: "#/components/schemas/obiePatchBody"
        - $ref: "#/components/schemas/bobfPatchBody"
        - $ref: "#/components/schemas/brcbPatchBody"
        - $ref: "#/components/schemas/samaPatchBody"
        - $ref: "#/components/schemas/cdrPatchBody"
        - $ref: "#/components/schemas/colombiaPatchBody"

    PatchPaymentRecordBody:
      type: object
      description: |
        Describes the fields to be patched and their corresponding values.

        The fields that are supported differ based on the Api standard that the payment belongs to.

      oneOf:
        - $ref: "#/components/schemas/SamaPatchPaymentRecordBody"
        - $ref: "#/components/schemas/ColombiaPatchPaymentRecordBody"

    SamaPatchPaymentRecordBody:
      type: object
      description: |
        Describes the fields to be patched and their corresponding values.

        The fields that are supported differ based on the Api standard that the payment belongs to.
      required:
        - paymentResponse.status
        - paymentResponse.statusUpdateDateTime
      additionalProperties: false
      properties:
        paymentResponse.status:
          type: string
          description: |
            The current status of the payment
          enum:
            - Pending
            - Rejected
            - AcceptedSettlementInProcess
            - AcceptedSettlementCompleted
            - AcceptedWithoutPosting
            - AcceptedCreditSettlementCompleted
        paymentResponse.statusUpdateDateTime:
          type: string
          format: ($date-time)
          description: |
            An ISO date-time representing when the payment status was last updated
        paymentResponse.rejectionDetails:
          description: |
            This attribute SHOULD only be returned when the resource Status represents a failed state e.g. : Rejected.
          type: object
          required:
            - Reason
          properties:
            Reason:
              type: object
              description: |
                A Placeholder for any responses that support a Status
              required:
                - Code
              properties:
                Code:
                  type: string
                  description: |
                    The reason code that represents the downstream System Error.
                    **Payments**

                    |Status|Reason Code|Description|
                    |----------|--|--|
                    |Rejected|KSAOB.Originator.InsufficientFunds|The PASP Debtor Account does not have sufficient funds to complete the payment|
                    |Rejected|KSAOB.Originator.AccountIssue|The Originator Account has an issue in sending the payment e.g. Account is inactive, locked, dormant|
                    |Rejected|KSAOB.Receiver.AccountIssue|The Receiver Account has an issue in receiving the payment e.g. Account is inactive, locked, dormant|
                    |Rejected|KSAOB.Originator.TransactionNotPermitted|The Originator Account is not permitted to perform the requested transaction|
                    |Rejected|KSAOB.Originator.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                    |Rejected|KSAOB.Receiver.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                    |Rejected|KSAOB.Receiver.Timeout |A timeout has occurred on the payment rails|
                    |Rejected|KSAOB.Receiver.SystemUnavailable|The payment rails or downstream system is unavailable|
                    |Rejected|KSAOB.Originator.Other|Any other reason not specified and applicable to the Originator; details MUST be provided in the Detail field|
                    |Rejected|KSAOB.Receiver.Other|Any other reason not specified and applicable to the Receiver; details MUST be provided in the Detail field|
                    |Rejected|KSAOB.Originator.SuspectedFraud|The Originator Account has been suspended due to suspected fraud|
                    |Rejected|KSAOB.Receiver.SuspectedFraud|The Receiver Account has been suspended due to suspected fraud|
                    |Failed|KSAOB.Originator.SystemUnavailable|This is only for RTP.The payment rails or downstream system is unavailable|
                    |Cancelled|KSAOB.Receiver.CancellationAccepted|This is only for RTP.The cancellation request has been accepted by the Receiver|
                    |Expired|KSAOB.Originator.Expired|This is only for RTP.The Originator requested window for an RTP response has expired|
                    |Failed|KSAOB.Originator.CancelledBeforeSubmission|This is only for RTP.The Originator PASP has not submitted the RTP request to the Receiver PASP due to invalid information|
                  enum:
                    - "KSAOB.Originator.InsufficientFunds"
                    - "KSAOB.Originator.AccountIssue"
                    - "KSAOB.Receiver.AccountIssue"
                    - "KSAOB.Originator.TransactionNotPermitted"
                    - "KSAOB.Originator.DuplicateTransaction"
                    - "KSAOB.Receiver.DuplicateTransaction"
                    - "KSAOB.Receiver.Timeout"
                    - "KSAOB.Receiver.SystemUnavailable"
                    - "KSAOB.Originator.Other"
                    - "KSAOB.Receiver.Other"
                    - "KSAOB.Originator.SuspectedFraud"
                    - "KSAOB.Receiver.SuspectedFraud"
                    - "KSAOB.Originator.SystemUnavailable"
                    - "KSAOB.Receiver.CancellationAccepted"
                    - "KSAOB.Originator.Expired"
                    - "KSAOB.Originator.CancelledBeforeSubmission"
                Detail:
                  type: "string"
                  description: "Further details that are specific to the Reason Code"
              additionalProperties: false
            Message:
              $ref: "#/components/schemas/OBMessage"
          additionalProperties: false
        paymentResponse.instruction:
          description: The current status of the payment. This is mandatory for KSA. The instruction object will be replaced with existing instruction object without any validation. In every patch call, bank needs to send complete instruction object instead of only updated fields.
          oneOf:
            - $ref: "#/components/schemas/KSAOBRefundInitiationInstructionResponse"
            - $ref: "#/components/schemas/KSAOBRequestToPayInitiationInstructionResponse"

    ColombiaPatchPaymentRecordBody:
      type: object
      description: |
        Describes the fields to be patched and their corresponding values.

        The fields that are supported differ based on the Colombia Api standard that the payment belongs to.
      required:
        - paymentResponse.status
        - paymentResponse.statusUpdateDateTime
      additionalProperties: false
      properties:
        paymentResponse.status:
          type: string
          description: The current status of the payment
        paymentResponse.statusUpdateDateTime:
          type: string
          format: ($date-time)
          description: |
            An ISO date-time representing when the payment status was last updated
        paymentResponse.debtorAgentStatus:
          type: string
          description: The debtor agent status
        paymentResponse.creditorAgentStatus:
          type: string
          description: The creditor agent status
        paymentResponse.rejectionReason:
          type: object
          description: The object to be given when the payment is rejected / cancelled
          properties:
            code:
              type: string
              description: Rejection code
            detail:
              type: string
              description: Rejection detail

    obiePatchBody:
      type: object
      additionalProperties: false
      properties:
        psuIdentifiers:
          $ref: "#/components/schemas/psuIdentifiers"

        accountIds:
          type: array
          items:
            type: string
          minItems: 1
          description: |-
            An array of account ids associated with the consent. The array must be populated once consent has been authorised.
            For payment consents, the array must always have one element - the debtor account from which the payment will be made
            For CBPII consents, the array must always have one element - the account for which CoF requests will be answered
            For AIS requests, the array may contain multiple values, representing each of the payment accounts for which an AIS service will be provided.

        supplementaryInformation:
          description:
            Contains additional information at the discretion of the LFI.

          type: object
          additionalProperties: true

        interactionId:
          type: string
          description: The heimdall interaction id that this consent is associated with. This is updated by heimdall and must not be set by LFIs.

        consentBody.Data.Status:
          type: string
          enum:
            - AwaitingAuthorisation
            - Authorised
            - Consumed
            - Rejected
            - Revoked

          description: |
            The current status of the consent for the consent.

        memberState:
          type: string
          minLength: 2
          maxLength: 2
          description: |
            The member state in which this consent is valid. If specified, for every API call made using this consent, Ozone will ensure that the TPP has a relevent permission in the member state. If not specified a member-state check will not be made.

        paymentContext:
          type: object
          additionalProperties: true

        bankConnectToken:
          type: string
          description: A bearer token that will be sent as the `Authorization` header for certain calls to bank connect.

    colombiaPatchBody:
      type: object
      additionalProperties: false
      properties:
        psuIdentifiers:
          $ref: "#/components/schemas/psuIdentifiers"

        accountIds:
          type: array
          items:
            type: string
          minItems: 1
          description: |-
            An array of account ids associated with the consent. The array must be populated once consent has been authorised.
            For payment consents, the array must always have one element - the debtor account from which the payment will be made
            For CBPII consents, the array must always have one element - the account for which CoF requests will be answered
            For AIS requests, the array may contain multiple values, representing each of the payment accounts for which an AIS service will be provided.

        supplementaryInformation:
          description:
            Contains additional information at the discretion of the LFI.

          type: object
          additionalProperties: true

        interactionId:
          type: string
          description: The heimdall interaction id that this consent is associated with. This is updated by heimdall and must not be set by LFIs.

        consentBody.Data.Status:
          type: string
          enum:
            - AwaitingAuthorisation
            - Authorised
            - Consumed
            - Rejected
            - Revoked

          description: |
            The current status of the consent for the consent.

        consentBody.Data.StatusUpdateDateTime:
          type: string
          format: date-time

        memberState:
          type: string
          minLength: 2
          maxLength: 2
          description: |
            The member state in which this consent is valid. If specified, for every API call made using this consent, Ozone will ensure that the TPP has a relevent permission in the member state. If not specified a member-state check will not be made.

        paymentContext:
          type: object
          additionalProperties: true

        bankConnectToken:
          type: string
          description: A bearer token that will be sent as the `Authorization` header for certain calls to bank connect.

    bobfPatchBody:
      type: object
      additionalProperties: false
      properties:
        psuIdentifiers:
          $ref: "#/components/schemas/psuIdentifiers"

        accountIds:
          type: array
          items:
            type: string
          minItems: 1
          description: |-
            An array of account ids associated with the consent. The array must be populated once consent has been authorised.
            For payment consents, the array must always have one element - the debtor account from which the payment will be made
            For CBPII consents, the array must always have one element - the account for which CoF requests will be answered
            For AIS requests, the array may contain multiple values, representing each of the payment accounts for which an AIS service will be provided.

        supplementaryInformation:
          description:
            Contains additional information at the discretion of the LFI.

          type: object
          additionalProperties: true

        interactionId:
          type: string
          description: The heimdall interaction id that this consent is associated with. This is updated by heimdall and must not be set by LFIs.

        consentBody.Data.Status:
          type: string
          enum:
            - AwaitingAuthorisation
            - Authorised
            - Consumed
            - Rejected
            - Revoked

          description: |
            The current status of the consent

        memberState:
          type: string
          minLength: 2
          maxLength: 2
          description: |
            The member state in which this consent is valid. If specified, for every API call made using this consent, Ozone will ensure that the TPP has a relevent permission in the member state. If not specified a member-state check will not be made.

        paymentContext:
          type: object
          additionalProperties: true

        bankConnectToken:
          type: string
          description: A bearer token that will be sent as the `Authorization` header for certain calls to bank connect.

    brcbPatchBody:
      type: object
      additionalProperties: false
      properties:
        psuIdentifiers:
          $ref: "#/components/schemas/psuIdentifiers"

        accountIds:
          type: array
          items:
            type: string
          minItems: 1
          description: |-
            An array of account ids associated with the consent. The array must be populated once consent has been authorised.
            For payment consents, the array must always have one element - the debtor account from which the payment will be made
            For CBPII consents, the array must always have one element - the account for which CoF requests will be answered
            For AIS requests, the array may contain multiple values, representing each of the payment accounts for which an AIS service will be provided.

        supplementaryInformation:
          description:
            Contains additional information at the discretion of the LFI.

          type: object
          additionalProperties: true

        interactionId:
          type: string
          description: The heimdall interaction id that this consent is associated with. This is updated by heimdall and must not be set by LFIs.

        consentBody.data.status:
          type: string
          enum:
            - AWAITING_AUTHORISATION
            - AUTHORISED
            - CONSUMED
            - REJECTED
            - REVOKED
            - PARTIALLY_ACCEPTED

          description: |
            The current status of the consent for the BRCB consents

        consentBody.data.rejection:
          type: object
          description: |
            This field is applicable for tenants implementing the BRCB APIs. Object to be returned if consent is rejected.

          required:
            - rejectedBy
            - reason
          properties:
            rejectedBy:
              $ref: "#/components/schemas/EnumRejectedBy"
            reason:
              $ref: "#/components/schemas/RejectedReason"
            rejectedFrom:
              type: string
              enum:
                - INICIADORA
                - DETENTORA
              example: DETENTORA

        consentBody.data.statusUpdateDateTime:
          type: string
          format: date-time
          example: "2021-05-21T08:30:00Z"
          pattern: '^(\d{4})-(1[0-2]|0?[1-9])-(3[01]|[12][0-9]|0?[1-9])T(?:[01]\d|2[0123]):(?:[012345]\d):(?:[012345]\d)Z$'
          maxLength: 20
          description: |
            This field is applicable for tenants implementing the BRCB APIs. Date and time the represneting when the consent gets updated. A string with date and time according to the RFC-3339 specification, always using the UTC timezone (UTC time format).

        consentBody.data.expirationDateTime:
          type: string
          format: date-time
          example: "2021-05-21T08:30:00Z"
          pattern: '^(\d{4})-(1[0-2]|0?[1-9])-(3[01]|[12][0-9]|0?[1-9])T(?:[01]\d|2[0123]):(?:[012345]\d):(?:[012345]\d)Z$'
          maxLength: 20
          description: |
            This field is applicable for tenants implementing the BRCB APIs. It reflects the expiration date of the consent. A string with date and time according to the RFC-3339 specification, always using the UTC timezone (UTC time format).

        memberState:
          type: string
          minLength: 2
          maxLength: 2
          description: |
            The member state in which this consent is valid. If specified, for every API call made using this consent, Ozone will ensure that the TPP has a relevent permission in the member state. If not specified a member-state check will not be made.

        consentBody.data.revocation:
          type: object
          description: Objeto contendo as informações de revogação dos consentimentos de longa duração.
          required:
            - revokedBy
            - revokedFrom
            - reason

        consentBody.data.riskSignals:
          $ref: '#/components/schemas/RiskSignalsConsents'

        consentBody.data.creditors:
          type: array
          minItems: 1
          items:
            type: object
            description: Objeto contendo os dados do recebedor (creditor).
            properties:
              name:
                type: string
                pattern: ^([A-Za-zÀ-ÖØ-öø-ÿ,.@:&*+_<>()!?/\\$%\d' -]+)$
                maxLength: 120
                example: Marco Antonio de Brito
                description: |
                  Em caso de pessoa natural deve ser informado o nome completo do titular da conta do recebedor.
                  Em caso de pessoa jurídica deve ser informada a razão social ou o nome fantasia da conta do recebedor.

        consentBody.data.startDateTime:
          type: string
          format: date-time
          example: '2021-05-21T08:30:00Z'

        consentBody.data.automatic:
          type: object
          description: Definição da configuração de recorrência para pagamentos automáticos
          properties:
            transactionLimit:
              type: string
              pattern: '^((\d{1,16}\.\d{2}))$'
              minLength: 4
              maxLength: 19
              example: '1000000.12'
              description: Valor da transação com 2 casas decimais.
            dayOfMonth:
              type: integer
              format: int32
              minimum: 1
              maximum: 31
              example: 10

        paymentContext:
          type: object
          additionalProperties: true

        bankConnectToken:
          type: string
          description: A bearer token that will be sent as the `Authorization` header for certain calls to bank connect.

    RiskSignalsConsents:
      type: object
      required:
        - deviceId
        - isRootedDevice
        - screenBrightness
        - elapsedTimeSinceBoot
        - osVersion
        - userTimeZoneOffset
        - language
        - screenDimensions
        - accountTenure
      description: |
        Sinais de risco para iniciação de pagamentos automáticos

        [Restrição] Deve ser enviado quando o consentimento for para o produto Sweeping Accounts (O objeto "/data/recurringConfiguration/sweeping" usado no oneOf)
      properties:
        deviceId:
          type: string
          description: ID único do dispositivo gerado pela plataforma.
          example: 00000000-54b3-e7c7-0000-000046bffd97
        isRootedDevice:
          type: boolean
          description: Indica se o dispositivo atualmente está com permissão de “root”.
          example: false
        screenBrightness:
          type: number
          format: double
          description: |
            Indica o nível de brilho da tela do dispositivo.
            Em dispositivos Android o valor é um inteiro, entre 0 e 255, inclusive;
            Em dispositivos iOS o valor é um ponto flutuante entre 0.0 e 1.0.
        elapsedTimeSinceBoot:
          type: integer
          format: int64
          description: Indica por quanto tempo (em milissegundos) o dispositivo está ligado.
        osVersion:
          type: string
          description: Versão do sistema operacional.
        userTimeZoneOffset:
          type: string
          description: |
            Indica a configuração de fuso horário do dispositivo do usuário, com o formato UTC offset: ±hh[:mm]
        language:
          type: string
          description: Indica o idioma do dispositivo no formato ISO 639-1.
        screenDimensions:
          type: object
          description: Dimensões da tela do dispositivo
          required:
            - height
            - width
          properties:
            height:
              type: integer
              format: int64
              description: Altura da tela, em pixels.
            width:
              type: integer
              format: int64
              description: Largura da tela, em pixels.
        accountTenure:
          type: string
          format: date
          pattern: '^(\d{4})-(1[0-2]|0?[1-9])-(3[01]|[12][0-9]|0?[1-9])$'
          description: Data de cadastro do cliente na iniciadora.
        geolocation:
          type: object
          description: Dados de geolocalização do cliente enquanto logado na iniciadora
          properties:
            latitude:
              type: number
              format: double
              description: Coordenada latitudial do cliente enquanto logado na iniciadora
            longitude:
              type: number
              format: double
              description: Coordenada longitudinal do cliente enquanto logado na iniciadora
            type:
              type: string
              description: |
                Tipo de mecanismo utilizado na geração da geolocalização
              enum:
                - COARSE
                - FINE
                - INFERRED
        isCallInProgress:
          type: boolean
          description: |
            Indica chamada ativa no momento do vínculo.

            [Restrição] Caso o sinal de risco esteja disponível (cliente permitiu que fosse coletado), o mesmo deverá ser enviado
        isDevModeEnabled:
          type: boolean
          description: Indica se o dispositivo está em modo de desenvolvedor.
        isMockGPS:
          type: boolean
          description: Indica se o dispositivo está usando um GPS falso.
        isEmulated:
          type: boolean
          description: Indica se o dispositivo é emulado ou real.
        isMonkeyRunner:
          type: boolean
          description: Indica o uso do MonkeyRunner.
        isCharging:
          type: boolean
          description: Indica se a bateria do dispositivo está sendo carregada.
        antennaInformation:
          type: string
          description: Indica em qual antena o dispositivo está conectado.
        isUsbConnected:
          type: boolean
          description: Indica se o dispositivo está conectado a outro dispositivo via USB.
        integrity:
          type: object
          description: |
            Informa a integridade do dispositivo e app.
            No Android, conforme documentação Play API Integrity - [Android](https://developer.android.com/google/play/integrity/overview?hl=pt-br).
            No iOS, conforme documentação App Attest [iOS](https://developer.apple.com/documentation/devicecheck/establishing_your_app_s_integrity)
          properties:
            appRecognitionVerdict:
              type: string
              description: Informa a integridade do app
            deviceRecognitionVerdict:
              type: string
              description: Informa a integridade do dispositivo


    cdrPatchBody:
      type: object
      additionalProperties: false
      properties:
        psuIdentifiers:
          $ref: "#/components/schemas/psuIdentifiers"

        accountIds:
          type: array
          items:
            type: string
          minItems: 1
          description: |-
            An array of account ids associated with the consent. The array must be populated once consent has been authorised.
            For payment consents, the array must always have one element - the debtor account from which the payment will be made
            For CBPII consents, the array must always have one element - the account for which CoF requests will be answered
            For AIS requests, the array may contain multiple values, representing each of the payment accounts for which an AIS service will be provided.

        supplementaryInformation:
          description:
            Contains additional information at the discretion of the LFI.

          type: object
          additionalProperties: true

        interactionId:
          type: string
          description: The heimdall interaction id that this consent is associated with. This is updated by heimdall and must not be set by LFIs.

        consentBody.data.status:
          type: string
          enum:
            - AwaitingAuthorization
            - Authorized
            - Rejected
            - Revoked
            - AdrBlocked
          description: |
            The current status of the consent
        consentBody.data.revokedBy:
          type: string
          enum:
            - ADR
            - CONSUMER
            - COLLEAGUE
            - REGISTER
            - EXPIRATION
            - AMENDMENT

          description: Specifies the identifier of the revocation.
           <br>ADR - The Arrangement (and consent) was withdrawn by the customer via the ADR

           <br>CONSUMER - The Arrangement (and consent) was withdrawn by the customer via the Tenant’s Consumer Dashboard

           <br>COLLEAGUE - The Arrangement (and consent) was withdrawn by the customer by contacting the Tenant directly with a Tenant back-office colleague revoking the Arrangement on the customer’s behalf

           <br>REGISTER - The Arrangement (and consent) was revoked following an ADR status change on the CDR Register.

           <br>EXPIRATION - The Arrangement (and consent) has naturally expired

           <br>AMENDMENT - The consent has been amended and replaced by a new consent.  The Arrangement remains active.
        consentBody.data.revokedAt:
          type: string
          pattern: ($date-time)
          description: |
                An ISO date-time representing  timestamp for revocation
        consentBody.data.maximumSharingDuration:
          type: number
          description: |
                <datetime>
        consentBody.data.revokedByPsu:
          type: string
          description: |
                the PSU that revoked the consent|
                This will have the same structure as psuIdentifier

        memberState:
          type: string
          minLength: 2
          maxLength: 2
          description: |
            The member state in which this consent is valid. If specified, for every API call made using this consent, Ozone will ensure that the TPP has a relevent permission in the member state. If not specified a member-state check will not be made.

        paymentContext:
          type: object
          additionalProperties: true

        bankConnectToken:
          type: string
          description: A bearer token that will be sent as the `Authorization` header for certain calls to bank connect.

    samaPatchBody:
      type: object
      additionalProperties: false
      properties:
        psuIdentifiers:
          $ref: "#/components/schemas/psuIdentifiers"

        accountIds:
          type: array
          items:
            type: string
          minItems: 1
          description: |-
            An array of account ids associated with the consent. The array must be populated once consent has been authorised.
            For payment consents, the array must always have one element - the debtor account from which the payment will be made
            For CBPII consents, the array must always have one element - the account for which CoF requests will be answered
            For AIS requests, the array may contain multiple values, representing each of the payment accounts for which an AIS service will be provided.

        supplementaryInformation:
          description:
            Contains additional information at the discretion of the LFI.

          type: object
          additionalProperties: true

        interactionId:
          type: string
          description: The heimdall interaction id that this consent is associated with. This is updated by heimdall and must not be set by LFIs.

        consentBody.Data.ConsentStatus:
          type: string
          enum:
            - AwaitingAuthorisation
            - Consumed
            - Rejected
            - Revoked
            - Authorized
          description: |
            The current status of the consent

        consentBody.Data.RevokedBy:
            type: string
            enum:
              - KSAOB.PASP
              - KSAOB.TPP
            description: Specifies the identifier of the revocation.
              Only used for KSA SAMA standard

        consentBody.Data.ConsentStatusUpdateDateTime:
          type: string
          format: date-time
          description: |
            An ISO date-time representing when the consent gets updated. Tenants implementing the SAMA API must include this field with the current time for AIS consents
            `Note: Only used with SAMA standards`

        consentBody.Data.ConsentFlags:
          description: |
            Flags that are associated with a Consent Status.

            A Consent Status:
            * May not have any associated flags.
            * May have one or more associated flags.

            A Flag cannot be changed once it is created. Its state is Immutable.
            Each Flag value that is set must have a date time stamp associated with it.

            |Flag| Consent Status| Flag Description|
            |----|---------------|-----------------|
            | PartlyAuthorized | AwaitingAuthorization | The initiator has authorized the consent and is awaiting further authorizations.|
            | Activated |Authorized | The authorized long-lived consent is being utilized.|
            | Revoked | Finished | An authorized consent has been revoked |
            | Expired | Finished | The consent has expired |
            | Consumed | Finished| The consented action has been completed successfully.|
            | Closed | Finished | The consent has finished with no further inquiries permitted.|
            | Amended | Finished | The consent (parameters) has been amended / renewed.|
            | |Rejected| The unauthorized consent has been canceled at the TPP or rejected at the PASP.
          type: "object"
          properties:
            PartlyAuthorized:
              type: string
              format: date-time
            Activated:
              type: string
              format: date-time
            Revoked:
              type: string
              format: date-time
            Expired:
              type: string
              format: date-time
            Consumed:
              type: string
              format: date-time
            Closed:
              type: string
              format: date-time
            Amended:
              type: string
              format: date-time
          additionalProperties: false

        memberState:
          type: string
          minLength: 2
          maxLength: 2
          description: |
            The member state in which this consent is valid. If specified, for every API call made using this consent, Ozone will ensure that the TPP has a relevent permission in the member state. If not specified a member-state check will not be made.

        paymentContext:
          type: object
          additionalProperties: true

        bankConnectToken:
          type: string
          description: A bearer token that will be sent as the `Authorization` header for certain calls to bank connect.

        consentBody.Meta:
          $ref: "#/components/schemas/OBMetaMultiAuthorization"

    samaPaymentPatchBody:
      type: object
      additionalProperties: false
      required:
        - paymentResponse.status
        - paymentResponse.statusUpdateDateTime

      properties:


        paymentResponse.status:
          type: string
          description: |
            The current status of the payment
          enum:
            - Pending
            - Rejected
            - AcceptedSettlementInProcess
            - AcceptedSettlementCompleted
            - AcceptedWithoutPosting
            - AcceptedCreditSettlementCompleted

        paymentResponse.statusUpdateDateTime:
          type: string
          format: ($date-time)
          description: |
            An ISO date-time representing when the payment status was last updated
        paymentResponse.status.RejectionDetails:
          description: |
            This attribute SHOULD only be returned when the resource Status represents a failed state e.g. : Rejected.
          type: object
          required:
            - "Reason"
          properties:
            Reason:
              type: object
              description: |
                A Placeholder for any responses that support a Status
              required:
                - Code
              properties:
                Code:
                  type: string
                  description: |
                    The reason code that represents the downstream System Error.
                    **Payments**

                    |Status|Reason Code|Description|
                    |----------|--|--|
                    |Rejected|KSAOB.Originator.InsufficientFunds|The PASP Debtor Account does not have sufficient funds to complete the payment|
                    |Rejected|KSAOB.Originator.AccountIssue|The Originator Account has an issue in sending the payment e.g. Account is inactive, locked, dormant|
                    |Rejected|KSAOB.Receiver.AccountIssue|The Receiver Account has an issue in receiving the payment e.g. Account is inactive, locked, dormant|
                    |Rejected|KSAOB.Originator.TransactionNotPermitted|The Originator Account is not permitted to perform the requested transaction|
                    |Rejected|KSAOB.Originator.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                    |Rejected|KSAOB.Receiver.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                    |Rejected|KSAOB.Receiver.Timeout |A timeout has occurred on the payment rails|
                    |Rejected|KSAOB.Receiver.SystemUnavailable|The payment rails or downstream system is unavailable|
                    |Rejected|KSAOB.Originator.Other|Any other reason not specified and applicable to the Originator; details MUST be provided in the Detail field|
                    |Rejected|KSAOB.Receiver.Other|Any other reason not specified and applicable to the Receiver; details MUST be provided in the Detail field|
                    |Rejected|KSAOB.Originator.SuspectedFraud|The Originator Account has been suspended due to suspected fraud|
                    |Rejected|KSAOB.Receiver.SuspectedFraud|The Receiver Account has been suspended due to suspected fraud|
                  enum:
                    - "KSAOB.Originator.InsufficientFunds"
                    - "KSAOB.Originator.AccountIssue"
                    - "KSAOB.Receiver.AccountIssue"
                    - "KSAOB.Originator.TransactionNotPermitted"
                    - "KSAOB.Originator.DuplicateTransaction"
                    - "KSAOB.Receiver.DuplicateTransaction"
                    - "KSAOB.Receiver.Timeout"
                    - "KSAOB.Receiver.SystemUnavailable"
                    - "KSAOB.Originator.Other"
                    - "KSAOB.Receiver.Other"
                    - "KSAOB.Originator.SuspectedFraud"
                    - "KSAOB.Receiver.SuspectedFraud"
                Detail:
                  type: "string"
                  description: "Further details that are specific to the Reason Code"
              additionalProperties: false
            Message:
              $ref: "#/components/schemas/OBMessage"
          additionalProperties: false

    KSAOBRefundInitiationInstructionResponse:
      title: "OBRefundInitiationInstruction"
      description: |
        (Array) of Refund Instructions

        * Please refer to the Business Rules, PIS Limits and Constants, Maximum Refunds per Message for the limit.
      type: "array"
      minItems: 1
      maxItems: 500
      items:
        required:
          - "RefundStatus"
          - "RefundStatusUpdateDateTime"
          - "CreationDateTime"
          - "OriginalPayment"
          - "Amount"
        properties:
          Amount:
            $ref: "#/components/schemas/ActiveCurrencyAmount"
          OriginalPayment:
            $ref: "#/components/schemas/OBSingleRefundPayment"
          RefundPurposeCode:
            $ref: "#/components/schemas/OBPaymentPurposeCode"
          RefundStatus:
            $ref: "#/components/schemas/OBRefundStatus"
          RefundStatusUpdateDateTime:
            $ref: "#/components/schemas/OBStatusUpdateDateTime"
          RefundStatusDetail:
            $ref: "#/components/schemas/OBRefundStatusDetail"
          CreationDateTime:
              $ref: "#/components/schemas/OBCreationDateTime"
          Charges:
              $ref: "#/components/schemas/Charges"
        additionalProperties: false

    OBRefundStatus:
      title: "OBRefundStatus"
      description: |
        Specifies the status of the Refund information group
        * Pending: Refund initiation or individual transaction included in the Refund initiation is pending. Further checks and status update will be performed.
        * Rejected: The Refund initiation has been rejected
        * AcceptedSettlementCompleted: Settlement of the Debtors account has been completed
        * AcceptedCreditSettlementCompleted: When the Payee account has been credited with the funds of the Refund initiated via the PISP
        * AcceptedWithoutPosting:  When the Recipient Bank has accepted the Refund but has not applied the credit to the Payee account yet.
      type: "string"
      enum:
        - "Pending"
        - "AcceptedSettlementCompleted"
        - "AcceptedCreditSettlementCompleted"
        - "AcceptedWithoutPosting"
        - "Rejected"
      example: Pending

    OBPaymentPurposeCode:
      title: "OBPaymentPurposeCode:"
      description: |
        A Category code, related to the type of services or goods that corresponds to the underlying purpose of the Payment, Refund, RTP.
        The Purpose Codes can be based on either:
        * The SARIE IPS Message Implementation Guide - Section 21.4 - Category Purpose Codes
        * The ISO20022 External code sets
      type: "string"
      minLength: 1
      maxLength: 4
      pattern: "^[A-Z]{3,4}$"

    OBSingleRefundPayment:
      title: "OBSingleRefundPayment"
      type: "object"
      description: |
        Placeholder for single payment Refund Data.
      required:
        - "Amount"
        - "Date"
        - "PaymentTransactionId"
      properties:
        Amount:
          $ref: "#/components/schemas/ActiveCurrencyAmount"
        Date:
          description: |
            Date of the Original Payment
          type: "string"
          format: "date"
        PaymentTransactionId:
          $ref: "#/components/schemas/OBPaymentTransactionId"
      additionalProperties: false

    ActiveCurrencyAmount:
      title: "ActiveCurrencyAmount"
      description: |
        The Currency and Amount relating to the Payment, Refund or Request to Pay
      type: "object"
      required:
        - "Amount"
        - "Currency"
      properties:
        Amount:
          description: "A number of monetary units specified in an active currency where the unit of currency is explicit and compliant with ISO 4217."
          type: "string"
        Currency:
          description: "A 3 character alphabetic code allocated to a currency under an international currency identification scheme, as described in the latest edition of the international standard ISO 4217 'Codes for the representation of currencies and funds'."
          type: "string"

    OBPaymentTransactionId:
      title: "OBPaymentTransactionId"
      type: "string"
      description: |
        This is an end to end TransactionId that is associated with a payment when it is sent from an Originating PASP to a Receiving PASP.
        This identifier is also used for Refunds.

        This applies to:
        * Same Bank Transfer (Within the same bank)
        * Local Bank Transfer (Between 2 banks)

        **IPS**
        Transaction Identification field (2.4) as defined in the Payment Identification block (2.1) of the Credit Transfer pacs.008 message
        (e.g) 20201122SAABCD00002BXXX20730997766

        **ON-US**
        MUST prefix with a 6 digit bank codes (as per the OBCreditorAgent schema):
        SA + 4 char code. (e.g. SASAMA)
      minimum: 1
      maximum: 35

    OBCreationDateTime:
      title: "OBCreationDateTime"
      description: "Date and time at which the message was created. All dates in the JSON payloads are represented in ISO 8601 date-time format. \nAll date-time fields in responses must include the timezone. An example is below:\n2023-04-05T10:43:07+00:00"
      type: "string"
      format: "date-time"

    OBStatusUpdateDateTime:
      title: "OBStatusUpdateDateTime"
      description: "Date and time at which the resource status was updated.All dates in the JSON payloads are represented in ISO 8601 date-time format. \nAll date-time fields in responses must include the timezone. An example is below:\n2023-04-05T10:43:07+00:00"
      type: "string"
      format: "date-time"

    OBRefundStatusDetail:
      title: "OBRefundStatusDetail"
      description: |
        This attribute SHOULD only be returned when the resource Status represents a failed state e.g. : Rejected.
      type: "object"
      required:
        - "Reason"
      properties:
        Reason:
          type: "object"
          description: |
            A Placeholder for any responses that support a Status
          required:
            - "Code"
          properties:
            Code:
              type: string
              description: |
                The reason code that represents the downstream System Error.

                **Refunds**

                |Status|Reason Code|Description|
                |----------|--|--|
                |Rejected|KSAOB.Originator.InsufficientFunds|The PASP Debtor Account does not have sufficient funds to complete the refund|
                |Rejected|KSAOB.Originator.AccountIssue|The Originator Account has an issue in sending the refund e.g. Account is inactive, locked, dormant|
                |Rejected|KSAOB.Receiver.AccountIssue|The Receiver Account has an issue in receiving the refund e.g. Account is inactive, locked, dormant|
                |Rejected|KSAOB.Originator.TransactionNotPermitted|The Originator Account is not permitted to perform the requested transaction|
                |Rejected|KSAOB.Originator.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                |Rejected|KSAOB.Receiver.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                |Rejected|KSAOB.Receiver.Timeout |A timeout has occurred on the payment rails|
                |Rejected|KSAOB.Receiver.SystemUnavailable|The payment rails or downstream system is unavailable|
                |Rejected|KSAOB.Originator.Other|Any other reason not specified and applicable to the Originator; details MUST be provided in the Detail field|
                |Rejected|KSAOB.Receiver.Other|Any other reason not specified and applicable to the Receiver; details MUST be provided in the Detail field|
              enum:
                - "KSAOB.Originator.InsufficientFunds"
                - "KSAOB.Originator.AccountIssue"
                - "KSAOB.Receiver.AccountIssue"
                - "KSAOB.Originator.TransactionNotPermitted"
                - "KSAOB.Originator.DuplicateTransaction"
                - "KSAOB.Receiver.DuplicateTransaction"
                - "KSAOB.Receiver.Timeout"
                - "KSAOB.Receiver.SystemUnavailable"
                - "KSAOB.Originator.Other"
                - "KSAOB.Receiver.Other"
            Detail:
              type: "string"
              description: "Further details that are specific to the Reason Code"
          additionalProperties: false
        Message:
          $ref: "#/components/schemas/OBMessage"
      additionalProperties: false

    Charges:
      title: "Charges"
      type: "array"
      description: |
            Applicable only for KSA
      items:
        type: "object"
        additionalProperties: false
        description: |
          Set of elements used to provide details of a charge for the payment initiation.
          * For Payments, these Charges are on the Payer.
        required:
          - "Type"
          - "Amount"
        properties:
          Type:
            $ref: "#/components/schemas/ExternalPaymentChargeTypeCode"
          Amount:
            $ref: "#/components/schemas/ActiveCurrencyAmount"

    ExternalPaymentChargeTypeCode:
      title: "OBExternalPaymentChargeTypeCode"
      description: "Charge type, in a coded form."
      type: "string"
      enum:
        - "VAT"
        - "Fees"

    KSAOBRequestToPayInitiationInstructionResponse:
      title: "OBRequestToPayInitiationInstructionResponse"
      description: |
        (Array) of Single or Multiple Request To Pay Instructions

        * Please refer to the Business Rules, PIS Limits and Constants, Maximum RTPs per Message for the limit.
      type: "array"
      minItems: 1
      maxItems: 10
      items:
        allOf:
          - type: "object"
            required:
              - "RequestToPayStatus"
              - "RequestToPayStatusUpdateDateTime"
              - "CreationDateTime"
              - "Amount"
              - "RequestToPayPurposeCode"
              - "RequestToPayTransactionId"
              - "DebtorAccount"
            properties:
              RequestToPayTransactionId:
                $ref: "#/components/schemas/OBRequestToPayTransactionId"
              Amount:
                $ref: "#/components/schemas/ActiveCurrencyAmount"
              RequestToPayStatus:
                $ref: "#/components/schemas/OBRequestToPayStatus"
              RequestToPayStatusUpdateDateTime:
                $ref: "#/components/schemas/OBStatusUpdateDateTime"
              RequestToPayStatusDetail:
                $ref: "#/components/schemas/OBRequestToPayStatusDetail"
              IsPendingCancellation:
                  $ref: "#/components/schemas/OBPendingCancellation"
              CreationDateTime:
                  $ref: "#/components/schemas/OBCreationDateTime"
              Charges:
                  $ref: "#/components/schemas/Charges"
              DebtorAgent:
                $ref: "#/components/schemas/OBCreditorAgent"
              DebtorAccount:
                  $ref: "#/components/schemas/OBDebtorAccount"
              RequestToPayPurposeCode:
                $ref: "#/components/schemas/OBPaymentPurposeCode"
              NoteToPayer:
                $ref: "#/components/schemas/OBRTPPayerNote"
              RequestToPayExpiryWindow:
                $ref: "#/components/schemas/OBRTPExpiryWindow"
            additionalProperties: false

    OBRequestToPayTransactionId:
      title: "OBRequestToPayTransactionId"
      type: "string"
      description: |
        The TransactionId associated with a payment generated from the Payment Rails.
      example: "oz2c8wpre1vy34tx7q"

    OBRequestToPayStatus:
      title: "OBRequestToPayStatus"
      description: |
        Specifies the status of the Request To Pay information group
        * Initiated: The Request To Pay has been received by the Receiving PASP but not delivered to Payer.
        * Pending: The Request To Pay is pending a response from the Payer.
        * Cancelled: The Request To Pay Cancellation request has been accepted by the Receiving PASP.
        * Accepted: The Request To Pay has been accepted by the Payer.
        * Expired:  The Request to Pay has expired due to no action from the Payer.
        * Paid: The Payer has fulfilled and paid the Request To Pay.
        * Rejected: The Payer has rejected the Request To Pay.
        * Failed: The Request to Pay has failed (either from the Originating PASP or Receiving PASP).
        * NotSubmitted: The Sender cancels the Request To Pay before submitting it to the Payer.
      type: "string"
      enum:
        - "Initiated"
        - "Pending"
        - "Cancelled"
        - "Accepted"
        - "Expired"
        - "Paid"
        - "Rejected"
        - "Failed"
        - "NotSubmitted"
      example: Initiated

    OBRequestToPayStatusDetail:
      title: "OBRequestToPayStatusDetail"
      description: |
        This attribute SHOULD only be returned when the resource Status represents a failed state e.g. : Rejected, Failed, Cancelled, Expired.
      type: "object"
      required:
        - "Reason"
      properties:
        Reason:
          type: "object"
          description: |
            A Placeholder for any responses that support a Status
          required:
            - "Code"
          properties:
            Code:
              type: string
              description: |
                The reason code that represents the downstream System Error.

                **Requests To Pay (RTP)**

                |Status|Reason Code|Description|
                |----------|--|--|
                |Failed|KSAOB.Originator.AccountIssue|The Originator Account has an issue in processing the RTP request e.g. Account is inactive, locked, dormant|
                |Failed|KSAOB.Receiver.AccountIssue|The Receiver Account has an issue in processing the RTP request e.g. Account is inactive, locked, dorman|
                |Rejected|KSAOB.Originator.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                |Rejected|KSAOB.Receiver.DuplicateTransaction|The requested transaction is a duplicate of a previous successfully processed transaction|
                |Failed|KSAOB.Receiver.Timeout|A timeout has occurred on the payment rails|
                |Failed|KSAOB.Receiver.SystemUnavailable|The payment rails or downstream system is unavailable|
                |Failed|KSAOB.Originator.SystemUnavailable|The payment rails or downstream system is unavailable|
                |Failed, Cancelled|KSAOB.Originator.Other|Any other reason not specified and applicable to the Originator; details MUST be provided in the Detail field|
                |Rejected, Failed, Cancelled|KSAOB.Receiver.Other|Any other reason not specified and applicable to the Receiver; details MUST be provided in the Detail field|
                |Cancelled|KSAOB.Receiver.CancellationAccepted|The cancellation request has been accepted by the Receiver|
                |Expired|KSAOB.Originator.Expired|The Originator requested window for an RTP response has expired|
                |Failed|KSAOB.Originator.CancelledBeforeSubmission|The Originator PASP has not submitted the RTP request to the Receiver PASP due to invalid information|
              enum:
                - "KSAOB.Originator.AccountIssue"
                - "KSAOB.Receiver.AccountIssue"
                - "KSAOB.Originator.DuplicateTransaction"
                - "KSAOB.Receiver.DuplicateTransaction"
                - "KSAOB.Receiver.Timeout"
                - "KSAOB.Receiver.SystemUnavailable"
                - "KSAOB.Originator.SystemUnavailable"
                - "KSAOB.Originator.Other"
                - "KSAOB.Receiver.Other"
                - "KSAOB.Receiver.CancellationAccepted"
                - "KSAOB.Originator.Expired"
                - "KSAOB.Originator.CancelledBeforeSubmission"
            Detail:
              type: "string"
              description: "Further details that are specific to the Reason Code"
          additionalProperties: false
        Message:
          $ref: "#/components/schemas/OBMessage"
      additionalProperties: false

    OBPendingCancellation:
      type: boolean
      description: |
        This boolean flag is only set to True when:
        * The PISP initiates an RTP Cancellation with the PASP
        * The current RTP Status is: Pending

    OBCreditorAgent:
      title: "OBCreditorAgent"
      description: |
         Refers to the Financial Institution.
      type: "object"
      required:
        - "IdentificationType"
        - "Identification"
      properties:
        IdentificationType:
          type: "string"
          description: |
            Refers to the Identification scheme for uniquely identifying the Agent.

            * KSAOB.OTHER: The ID; A Country Code followed by a Bank Code (KSAOB 4 character code). The full list of PASP names and 6 digits IDs are as follows:
          enum:
            - "KSAOB.OTHER"
        Identification:
          description: |
            The Agent is the Country Code followed by a Bank Code (KSAOB 4 character code). The full list of PASP names and 6 digits IDs are as follows"

            | PASP NAME|ID|
            |----------|--|
            |ALINMA BANK|SAINMA|
            |AL RAJHI BANK|SARJHI|
            |ARAB NATIONAL BANK|SAARNB|
            |BANK AL BILAD|SAALBI|
            |BANK AL-JAZIRA|SABJAZ|
            |BANK MUSCAT|SABMUS|
            |BANQUE SAUDI FRANSI|SABSFR|
            |BNP PARIBAS SAUDI ARABIA|SABNPA|
            |CREDIT SUISSE SAUDI ARABIA|SACRES|
            |DEUTSCHE BANK AG, RIYADH BRANCH|SADEUT|
            |EMIRATES NBD PJSC|SAEBIL|
            |FIRST ABU DHABI BANK|SAFABM|
            |GULF INTERNATIONAL BANK B.S.C., RIYADH|SAGULF|
            |INDUSTRIAL AND COMMERCIAL BANK OF CHINA RIYADH BRANCH, SA|SAICBK|
            |ISLAMIC DEVELOPMENT BANK|SAISLD|
            |J.P.MORGAN SAUDI ARABIA LIMITED|SAJPMG|
            |J.P MORGAN CHASE BANK, N.A RIYADH|SACHAS|
            |MERILL LYNCH KINGDOM OF SAUDIA ARABIA|SAMLSA|
            |NATIONAL BANK OF BAHRAIN|SANBOB|
            |NATIONAL BANK OF KUWAIT|SANBOK|
            |NATIONAL BANK OF PAKISTAN|SANBPA|
            |NEOLEAP|SANEOL|
            |RIYAD BANK|SARIBL|
            |SAUDI NATIONAL BANK|SANCBK|
            |SAUDI ARABIAN MONETARY AUTHORITY|SASAMA|
            |SAUDI BRITISH BANK|SASABB|
            |SAUDI INVESTMENT BANK|SASIBC|
            |STANDARD CHARTERED CAPITAL (SAUDI ARABIA)|SASCBL|
            |STC PAY|SASTCP|
            |STC Bank|SASTCJ|
            |T.C. ZIRAAT BANKASI A.S|SATCZB|
          type: "string"
          enum:
            - "SAINMA"
            - "SARJHI"
            - "SAALBI"
            - "SABJAZ"
            - "SABMUS"
            - "SABSFR"
            - "SABNPA"
            - "SACRES"
            - "SADEUT"
            - "SAEBIL"
            - "SAGULF"
            - "SAICBK"
            - "SAISLD"
            - "SAJPMG"
            - "SACHAS"
            - "SAMLSA"
            - "SANBOB"
            - "SANBOK"
            - "SANBPA"
            - "SANCBK"
            - "SARIBL"
            - "SASAMA"
            - "SASABB"
            - "SASIBC"
            - "SASCBL"
            - "SATCZB"
            - "SASTCP"
            - "SANEOL"
            - "SASTCJ"
            - "SAFABM"
          minLength: 6
          maxLength: 6
          example: SASAMA

    OBDebtorAccount:
      title: "OBDebtorAccount"
      description: "Unambiguous identification of the account of the debtor to which a debit entry will be made."
      type: "object"
      required:
      - "IdentificationType"
      - "Identification"
      - "Name"
      properties:
        IdentificationType:
          $ref: "#/components/schemas/OBExternalAccountIdentificationCode"
        Identification:
          $ref: "#/components/schemas/OBIdentification"
        Name:
          $ref: "#/components/schemas/OBName"

    OBName:
      title: "OBName"
      type: "object"
      description: |
        The Account Holder Name is the name or names of the Account owner(s) represented at the account level
      properties:
        en:
          type: "string"
          description: "English value of the string"
        ar:
          type: "string"
          description: "Arabic value of the string"
      additionalProperties: false

    OBIdentification:
      title: "OBIdentification"
      description: |
        Identification for the account assigned by the PASP based on the Account Scheme Name.
        This identification is known by the PSU account owner.
      type: "string"
      minLength: 1

    OBExternalAccountIdentificationCode:
      title: "OBExternalAccountIdentificationCode"
      description: "Name of the identification scheme, in a coded form as published in an external list."
      type: "string"
      enum:
        - "KSAOB.IBAN"
        - "KSAOB.AccountNumber"
        - "KSAOB.UnifiedCommercialNumber"
        - "KSAOB.Email"
        - "KSAOB.MobileNumber"
        - "KSAOB.NationalID"
        - "KSAOB.IqamaNumber"

    OBRTPPayerNote:
      title: "OBRTPPayerNote"
      type: "string"
      description: |
        Notes for the Payer
      minLength: 1
      maxLength: 256

    OBRTPExpiryWindow:
      title: "OBRTPExpiryWindow"
      type: "string"
      description: |
        Specifies the Requests to Pay Expiration Window.
        The time window is based on a custom time format hhh:mm:ss. e.g. 720:00:00 represents a time window of 720 hours, 00 minutes, 00 seconds (30 days).

        * Please refer to the Business Rules, PIS Limits and Constants, RTP Expiry Window for the limit.

      pattern: '^(00[0-9]|0[1-9][0-9]|[1-6][0-9]{2}|7[01][0-9]|720):[0-5][0-9]:[0-5][0-9]$'
      example: "48:00:00"

    OBMetaMultiAuthorization:
      title: "OBMetaMultiAuthorization"
      type: "object"
      description: |
        Meta Data with Multi-Authorization relevant to the payload.
        For a payment, it represents any Authorizers within the PASP domain that are involved in approving the payment request.
      properties:
        MultipleAuthorizers:
          type: "object"
          description: "Multiple Authorizers Schema"
          properties:
            TotalRequired:
              description: |
                The total number of Authorizers required to process the request
              type: "number"
            Authorizations:
              type: "array"
              items:
                description: |
                  Authorizer
                type: "object"
                properties:
                  AuthorizerId:
                    description: |
                      The Authorizer's Identifier
                    type: "string"
                  AuthorizerName:
                    description: |
                      The Authorizer's Name
                    type: "string"
                  AuthorizerType:
                    description: |
                      The Type of Authorizer. For example, Financial, Management, etc.
                    type: "string"
                  AuthorizationDate:
                    description: |
                      The DateTime of when the Authorization occurred. All dates in the JSON payloads are represented in ISO 8601 date-time format. \nAll date-time fields in responses must include the timezone. An example is below:\n2023-04-05T10:43:07+00:00
                    type: "string"
                    format: "date-time"
                  AuthorizationStatus:
                    description: |
                      The Status reflecting the Authorizer's final decision regarding the request
                    type: "string"
                    enum:
                      - "Pending"
                      - "Approved"
                      - "Rejected"
                additionalProperties: false
          additionalProperties: false
      additionalProperties: false

    consent:
      description: |

        A consent in its current state.

        If the consent has been authorised, then it can be expected that the LFI
        would have patched in `accountIds` and `psuIdentifier` fields.

        Additionally, the LFI may also patch in an arbitrary set of fields along with consent
        in the `supplementaryInformation` field.

      allOf:
        - $ref: "#/components/schemas/newConsent"
        - $ref: "#/components/schemas/patchedConsent"

    multiConsentResponse:
      type: object
      required:
        - data
        - meta
      properties:
        data:
          type: array
          items:
            $ref: "#/components/schemas/consent"
        meta:
          $ref: "#/components/schemas/meta"

    ConsentPostResponse:
      type: object
      required:
        - data
        - meta
      properties:
        data:
          $ref: "#/components/schemas/newConsent"

        meta:
          $ref: "#/components/schemas/meta"

    EnumRejectedBy:
      type: string
      description: |
        Inform the user responsible for the rejection.
        1. USER user
        2. LFI transmitting institution
        3. TPP receiving institution
      enum:
        - USER
        - LFI
        - TPP
        - INICIADORA
        - USUARIO
        - DETENTORA
      example: USER

    EnumReasonCode:
      type: string
      description: |
        Defines the reason code why the consent was rejected.

        - CONSENT_EXPIRED – consent that has timed out for authorization.
        - CUSTOMER_MANUALLY_REJECTED – client performed the rejection of consent manually through interaction at participating institutions.
        - CUSTOMER_MANUALLY_REVOKED – cliente efetuou a revogação após a autorização do consentimento.
        - CONSENT_MAX_DATE_REACHED – customer performed the revocation after the authorization of the consent.
        - CONSENT_TECHNICAL_ISSUE – consent that was rejected due to a technical problem that makes it impossible for the receiving institution to use it, for example: failure associated with the exchange of the AuthCode for the AccessToken, during the Hybid Flow process.
        - INTERNAL_SECURITY_REASON – consent that was rejected due to the security policies applied by the transmitting institution.
      enum:
        - CONSENT_EXPIRED
        - CUSTOMER_MANUALLY_REJECTED
        - CUSTOMER_MANUALLY_REVOKED
        - CONSENT_MAX_DATE_REACHED
        - CONSENT_TECHNICAL_ISSUE
        - INTERNAL_SECURITY_REASON
      example: CONSENT_EXPIRED

    RejectedReason:
      type: object
      description: Defines the reason why the consent was rejected.
      required:
        - code
      properties:
        code:
          $ref: "#/components/schemas/EnumReasonCode"
        detail:
          type: string
          pattern: '[\w\W\s]*'
          maxLength: 2048
        additionalInformation:
          type: string
          description: Contains additional information at the discretion of the broadcaster.
          maxLength: 140
          pattern: '[\w\W\s]*'
          example: Multi-level confirmation time exceeded.

    RevokeConsent:
      type: object
      required:
        - revokedBy
      properties:
        revokedBy:
          type: string
          enum:
            - ADR
            - CONSUMER
            - COLLEAGUE
            - REGISTER
            - EXPIRATION
            - AMENDMENT
        revokedByPsu:
          type: object
          properties:
            userId:
              type: string
        clientId:
          type: string

    OBMessage:
      title: "OBMessage"
      description: "A description of the error that occurred. e.g., 'A mandatory field isn't supplied' or 'RequestedExecutionDateTime must be in future'\nKSAOB doesn't standardise this field"
      type: "object"
      required:
        - "en"
      properties:
        en:
          type: "string"
          description: "English value of the string"
          #minLenght: 1
          maxLength: 500
        ar:
          type: "string"
          description: "Arabic value of the string"
          #minLenght: 1
          #maxLenght: 500
      additionalProperties:  false



  parameters:
    consentId:
      name: consentId
      in: path
      schema:
        type: string
      required: true
      description: |
        Identifies the consent by an id
    id:
      name: id
      in: path
      schema:
        type: string
      required: true
      description: |
        Identifies the payment by an id

    userId:
      name: userId
      in: path
      schema:
        type: string
      required: true
      description: |
        Identifies the PSU associated with a consent.

        This should match up with the `psuIdentifier.userId` field.

    page:
      name: page
      in: query
      schema:
        type: string
        format: int32
        minimum: 1
      required: false
      description: |
        The page number to retrieve in a paginated response

    pageSize:
      name: pageSize
      in: query
      schema:
        type: string
        format: int32
        minimum: 1
      required: false
      description: |
        The maximum rows to retrieve in a given page. Defaults to 25 if not specified.

    consentType:
      name: consentType
      in: query
      schema:
        type: string
      description: Consents of particular accountId
      required: false

    status:
      name: status
      in: query
      schema:
        type: string
      description: Status of the consent
      required: false

  securitySchemes:
    api_key:
      type: apiKey
      name: api_key
      in: header
      description: TLS-MA and Jws in authorization header

2. Attachments

View file
nameconsent-manager-spec-2024.10.00.yaml