Versions Compared

Version Old Version 4 New Version 5
Changes made by

Erick Domingues

Erick Domingues

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

User Type

Access Scope

Organisation Admin

Can Manage all the resources on the Organisation, Technical and Non-Technical

Primary Business Contact (PBC)

Can Manage Contacts on in the Organisation. Cannot Manage Technical Resources

Primary Technical Contact (PTC)

Can Manage all Technical Resources of an Organisation - Data Providers, Applications and Certificates

Secondary Technical Contact (STC)

Can Manage Data Providers, adding and removing API Endpoints and Certifications. Cannot Manage Applications and Certificates

...

Role

Allowed API Scopes

Allowed Authorization Details Types

Allowed Grant Types

TBD

payment

confirmation

acoountBSIP - Bank Service Initation Provider

openid

payments

urn:openfinanceuae:service-initiation-consent:*

client_credentials

authorization_code

refresh_token

BDSP - Bank Data Sharing Provider

openid

accounts

urn:openfinanceuae:account-access-consent:*

client_credentials

authorization_code

refresh_token

IDSP - Insurance Data Sharing Provider

openid

insurance

client_credentials

authorization_code

refresh_token

5.4.2 Application Discovery Metadata

...

The first step is to discover all the resources registered by the LFIs in the Directory, which can be done using the Participants Public API . Follow the discovery guidelines in - https://docs.connect.raidiam.io/receive-data#l9cWY

The Participant's Public APIs provide a single response in JSON format that contains information about all the Data Providers registered on the Ecosystem, including all their metadata and API Information, allowing a single call to provide all the information about who offers what product and the endpoint to access it on the AlTareq Platform.

The Technical Requirements around API and Server discovery are outlined on the security standards, on the Registration Framework

...