Consent - Try it out
Before the TPP can access Account information, the end user needs to give consent that the TPP can do so by using Strong Customer Authentication. The consent is usually only given once.
The consent initiation results in a consentID to access Account information for the actual end user.
Try out the initiation of a consent and consent authorization by using our Postman collection.
Please note that the consent authorization is posted explicitly.
In order to try our Consent Postman collection, please open your Postman and import the file:
Consent Postman collection file
We recommend you read the short description in Postman for both the collection and each request. This will help you understand the purpose of each request.
Remember to update your Postman environment settings with a valid token
Using the scaOAuth link from the consent-authorization response, the Strong Customer Authentication of the consent uses the standard redirect OAuth2 flow, where the scope contains AIS:consentId.
For more details, click here.
Global consent
The solution covers only the consent model of Global consent as described in the Berlin Group's implementation guide Chapter 6.
The Global consent gives general access to all the user’s payment Accounts and related Account information.
If the end user wants to restrict the access so it applies to fewer Accounts, it is a matter between the user and the TPP.