The forms will be published as JSD Forms.

Domain Names

Section	Question	Answer	Provided by
Domain Names	TPP facing Domain Name Ozone will allocate a domain name for your environment based on your BIC.	<Link TBC>	`Ozone`
Domain Names	LFI Facing Domain Name Ozone will allocate a domain name for `hh` and `cm` for your environment based on your BIC.	<Link TBC>	`Ozone`
Domain Names	Ozone Connect Base URL LFI to specify the base url on which Ozone Connect is hosted	<Link TBC>	`LFI`
Domain Name	Authorisation URL The OIDC `auth` URL for the LFI. There can be only one auth URI for an instance. The auth uri must follow the stipulations placed by FAPI 2.0 (e.g. https only, no query parameters)	<Link TBC>	`LFI`

Certificates

The table below sets out the steps for each certificate where Ozone holds the Transport & Signing Private keys.

...

Section

Certificate

Steps

Additional Information to be Supplied by LFI

Transport Client Certificate

C3

This certificate is used by Ozone to recognise the LFI when it calls the hh and cm

These steps are repeated for C3 S4 Sig3 Sig4

Code Block
Cert Subject

Code Block
JWKS URL

Transport Server Certificate

S4

The certificate is used by the LFI to identify its Ozone Connect service to OFP.

Code Block
Cert Subject

Code Block
JWKS URL

Signing Certificate

Sig3Sig4

Used by the LFI to sign requests and responses sent to OFP.

This is used to sign the jwt-auth header for:

LFI will use the public key in the JWKS to verify the signature.

Code Block
Cert Subject

Code Block
JWKS URL

...