{ "info": { "_postman_id": "77be1290-7bed-4053-9324-efe03f51be41", "name": "Paynet Open Finance Hub - DP Collection - Build 04", "schema": "https://schema.getpostman.com/json/collection/v2.1.0/collection.json", "_exporter_id": "38055270" }, "item": [ { "name": "PayNet -> DP", "item": [ { "name": "0 - Set context", "item": [ { "name": "10 - Set Context [Postman only]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.text());", " return;", "} else {", " const jsonData = pm.response.json();", " pm.environment.set(\"dp_id\", jsonData.args.dp_id);", " pm.environment.set(\"dp_consent_id\", jsonData.args.dp_consent_id);", " pm.environment.set(\"dp_rs\", jsonData.args.dp_rs);", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "urlencoded", "urlencoded": [] }, "url": { "raw": "https://postman-echo.com/get?dp_id=DP9876543213&dp_consent_id=7d4ae330-01f8-4661-8f2c-a908ca383583&dp_rs=https://httpbin.org/anything&account_id=550e8400-e29b-41d4-a716-446655770001", "protocol": "https", "host": [ "postman-echo", "com" ], "path": [ "get" ], "query": [ { "key": "dp_id", "value": "DP9876543213" }, { "key": "dp_consent_id", "value": "7d4ae330-01f8-4661-8f2c-a908ca383583" }, { "key": "dp_rs", "value": "https://httpbin.org/anything" }, { "key": "account_id", "value": "550e8400-e29b-41d4-a716-446655770001" } ] }, "description": "Use this step to set parameters for the rest of this flow.\n\nIn the **Params** tab, enter one of the valid dp_ids:\n\n- DP9876543210\n \n- DP9876543211\n \n- DP9876543213\n \n\nTo select a DP at the point of consent authorization, leave the field blank\n\nAlternatively, to test negative flows, you can enter any other value." }, "response": [] } ] }, { "name": "4.2 - Webhook - Authorization - PayNet -> DP", "item": [ { "name": "10 - Sign signature query parameter [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "pm.environment.set(\"exp\", Date.now() / 1000 + 290);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "const uuid = require('uuid');", "pm.environment.set(\"uuidv4\", uuid.v4());", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"iss\": \"PayNet OFP\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": [\n \"{{dp_id}}\"\n ],\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": { \n \"consent_id\": \"{{dp_consent_id}}\",\n \"redirect_uri\": \"{{redirectUrl}}\"\n },\n \"url\": \"{{dp_rs}}/v1/oath/authorize?\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "20 - OFP -> DP: GET /authorize", "request": { "method": "GET", "header": [], "url": { "raw": "{{dp_rs}}/v1/oath/authorize?consent_id={{dp_consent_id}}&redirect_uri={{redirectUrl}}&signature={{signature}}", "host": [ "{{dp_rs}}" ], "path": [ "v1", "oath", "authorize" ], "query": [ { "key": "consent_id", "value": "{{dp_consent_id}}" }, { "key": "redirect_uri", "value": "{{redirectUrl}}" }, { "key": "signature", "value": "{{signature}}" } ] } }, "response": [] } ] }, { "name": "4.3 - Webhook - User Info - PayNet -> DP", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "pm.environment.set(\"exp\", Date.now() / 1000 + 290);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "const uuid = require('uuid');", "pm.environment.set(\"uuidv4\", uuid.v4());", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"userinfo-x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature Header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"iss\": \"PayNet OFP\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": [\n \"{{dp_id}}\"\n ],\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": { \n \"consent_id\": \"{{dp_consent_id}}\"\n },\n \"url\": \"{{dp_rs}}/v1/oath/userinfo\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "20 - OFP -> DP: GET /oauth/userinfo", "request": { "method": "GET", "header": [ { "key": "x-signature", "value": "{{userinfo-x-signature}}", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{$guid}}", "type": "text" } ], "url": { "raw": "{{dp_rs}}/v1/oath/userinfo", "host": [ "{{dp_rs}}" ], "path": [ "v1", "oath", "userinfo" ] } }, "response": [] } ] }, { "name": "5.1 - Webhook - Health Check - PayNet -> DP", "item": [ { "name": "10 - OFP -> DP: GET /v1/health", "request": { "method": "GET", "header": [], "url": { "raw": "{{dp_rs}}/v1/health", "host": [ "{{dp_rs}}" ], "path": [ "v1", "health" ] } }, "response": [] } ] }, { "name": "5.2 - Consent Event - PayNet -> DP", "item": [ { "name": "10 - Sign event body [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "", "pm.environment.set(\"exp\", (Date.now() / 1000) + 300);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "pm.environment.set(\"uuid\", uuid.v4());", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.text());", " return;", "} else {", " pm.environment.set(\"event-body\", pm.response.text());", " utils.visualiseJws( \"Event Body\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"data\": {\n \"event_type\": \"consent_created\",\n \"data\": {\n \"consent_id\": \"{{dp_consent_id}}\",\n \"dc_id\": \"{{dc_id}}\",\n \"dp_id\": \"{{dp_id}}\",\n \"consent_type\": \"urn:openfinance-ml:account-access-consent:v1.2\",\n \"consent_purpose\": \"pfm\",\n \"permissions\": [\n \"read_accounts\",\n \"read_transactions\",\n \"read_balances\"\n ],\n \"expiration_datetime\": \"2026-11-30T23:59:59Z\",\n \"status\": \"awaiting_authorization\",\n \"created_at\": \"2026-01-26T10:42:12.927Z\",\n \"updated_at\": \"2026-03-09T19:01:07+08:00\"\n }\n },\n \"iss\": \"PayNet OFP\",\n \"sub\": \"{{dp_consent_id}}\",\n \"aud\": \"{{dp_id}}\",\n \"nbf\": {{nbf}},\n \"iat\": {{nbf}},\n \"jti\": \"{{$guid}}\"\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] }, "description": "This is a utility API call to create a private_key_jwt.\n\nThis private_key_jwt will be used in a subsequent step for OIDC client authentication to the PAR and token endpoints.\n\nIn a production implementation, the DC must sign the private key jwt using their private key." }, "response": [] }, { "name": "20 - OFP -> DP: POST /consents/events", "request": { "method": "POST", "header": [ { "key": "x-fapi-interaction-id", "value": "{{$guid}}", "type": "text" }, { "key": "content-type", "value": "application/jwt", "type": "text" } ], "body": { "mode": "raw", "raw": "{{event-body}}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/v1/consents/events", "host": [ "{{dp_rs}}" ], "path": [ "v1", "consents", "events" ] } }, "response": [] } ] }, { "name": "5.6 - Webhook - Account - PayNet -> DP", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "pm.environment.set(\"exp\", Date.now() / 1000 + 290);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "const uuid = require('uuid');", "pm.environment.set(\"uuidv4\", uuid.v4());", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"iss\": \"{{dc_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": [\n \"{{dp_id}}\",\n \"Paynet OFP\"\n ],\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": { },\n \"url\": \"{{rs}}/v1/accounts/{{account_id}}\",\n \"sub\": \"{{consent}}\"\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "20 - GET Accounts", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " const jws = utils.parseJwt(pm.response.text());", " pm.environment.set(\"jwe\", jws.payload.data);", " utils.visualiseJws('Response', pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "request": { "method": "GET", "header": [ { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" }, { "key": "x-signature", "value": "{{x-signature}}", "type": "text" } ], "url": { "raw": "{{dp_rs}}/v1/accounts/{{account_id}}?consent_id={{dp_consent_id}}", "host": [ "{{dp_rs}}" ], "path": [ "v1", "accounts", "{{account_id}}" ], "query": [ { "key": "consent_id", "value": "{{dp_consent_id}}" } ] } }, "response": [] }, { "name": "30 - Decrypt [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " utils.visualiseJson('Decrypted Payload', JSON.parse(pm.response.json().plainText));", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"keyManagementAlgorithms\": [ \"RSA-OAEP-256\"],\n \"contentEncryptionAlgorithms\": [\"A256GCM\"],\n \"cipherText\": \"{{jwe}}\",\n \"pem\": \"{{enc-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-decryption", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-decryption" ] } }, "response": [] } ] }, { "name": "5.7 - Webhook - Account Balances - PayNet -> DP", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "pm.environment.set(\"exp\", Date.now() / 1000 + 290);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "const uuid = require('uuid');", "pm.environment.set(\"uuidv4\", uuid.v4());", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"iss\": \"{{dc_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": [\n \"{{dp_id}}\",\n \"Paynet OFP\"\n ],\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": { },\n \"url\": \"{{rs}}/v1/accounts/{{account_id}}/balances\",\n \"sub\": \"{{consent}}\"\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "20 - GET Balances", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " const jws = utils.parseJwt(pm.response.text());", " pm.environment.set(\"jwe\", jws.payload.data);", " utils.visualiseJws('Response', pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "request": { "method": "GET", "header": [ { "key": "x-signature", "value": "{{x-signature}}", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" } ], "url": { "raw": "{{dp_rs}}/v1/accounts/{{account_id}}/balances?consent_id={{dp_consent_id}}", "host": [ "{{dp_rs}}" ], "path": [ "v1", "accounts", "{{account_id}}", "balances" ], "query": [ { "key": "consent_id", "value": "{{dp_consent_id}}" } ] } }, "response": [] }, { "name": "30 - Decrypt [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " utils.visualiseJson('Decrypted Payload', JSON.parse(pm.response.json().plainText));", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"keyManagementAlgorithms\": [ \"RSA-OAEP-256\"],\n \"contentEncryptionAlgorithms\": [\"A256GCM\"],\n \"cipherText\": \"{{jwe}}\",\n \"pem\": \"{{enc-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-decryption", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-decryption" ] } }, "response": [] } ] }, { "name": "5.8 - Webhook - Account Transactions - PayNet -> DP", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "pm.environment.set(\"exp\", Date.now() / 1000 + 290);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "const uuid = require('uuid');", "pm.environment.set(\"uuidv4\", uuid.v4());", "", "// query parameters", "const qpm = { ", " \"to_date\": \"2025-12-25\", ", " \"page_size\": \"3\"", "};", "const qpmString = JSON.stringify(qpm);", "pm.environment.set(\"qpm\", qpmString);", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"iss\": \"{{dc_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": [\n \"{{dp_id}}\",\n \"Paynet OFP\"\n ],\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": {{qpm}},\n \"url\": \"{{rs}}/v1/accounts/{{account_id}}/transactions\",\n \"sub\": \"{{consent}}\"\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature?page_size=3", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ], "query": [ { "key": "page_size", "value": "3" } ] } }, "response": [] }, { "name": "20 - GET transactions", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " const jws = utils.parseJwt(pm.response.text());", " pm.environment.set(\"jwe\", jws.payload.data);", " utils.visualiseJws('Response', pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "request": { "method": "GET", "header": [ { "key": "x-signature", "value": "{{x-signature}}", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" } ], "url": { "raw": "{{dp_rs}}/v1/accounts/{{account_id}}/transactions?consent_id={{dp_consent_id}}&to_date=2025-12-25&page_size=3", "host": [ "{{dp_rs}}" ], "path": [ "v1", "accounts", "{{account_id}}", "transactions" ], "query": [ { "key": "consent_id", "value": "{{dp_consent_id}}" }, { "key": "to_date", "value": "2025-12-25" }, { "key": "page_size", "value": "3" } ] } }, "response": [] }, { "name": "30 - Decrypt [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " utils.visualiseJson('Decrypted Payload', JSON.parse(pm.response.json().plainText));", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"keyManagementAlgorithms\": [ \"RSA-OAEP-256\"],\n \"contentEncryptionAlgorithms\": [\"A256GCM\"],\n \"cipherText\": \"{{jwe}}\",\n \"pem\": \"{{enc-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-decryption", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-decryption" ] } }, "response": [] } ] }, { "name": "5.8 - Webhook - Account Transactions with pagination - PayNet -> DP", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "pm.environment.set(\"exp\", Date.now() / 1000 + 290);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "const uuid = require('uuid');", "pm.environment.set(\"uuidv4\", uuid.v4());", "", "// query parameters", "const qpm = { ", " \"from_date\": \"2025-10-01\", ", " \"to_date\": \"2025-11-30\", ", " \"page_size\": \"5\"", "};", "const qpmString = JSON.stringify(qpm);", "pm.environment.set(\"qpm\", qpmString);" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"iss\": \"{{dc_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": [\n \"{{dp_id}}\",\n \"Paynet OFP\"\n ],\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": {{qpm}},\n \"url\": \"{{rs}}/v1/accounts/{{account_id}}/transactions\",\n \"sub\": \"{{consent}}\"\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "20 - GET transactions - first page", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " const jws = utils.parseJwt(pm.response.text());", " pm.environment.set(\"jwe\", jws.payload.data);", " utils.visualiseJws('Response', pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "request": { "method": "GET", "header": [ { "key": "x-signature", "value": "{{x-signature}}", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" } ], "url": { "raw": "{{dp_rs}}/v1/accounts/{{account_id}}/transactions?consent_id={{dp_consent_id}}&from_date=2025-10-01&to_date=2025-11-30&page_size=5", "host": [ "{{dp_rs}}" ], "path": [ "v1", "accounts", "{{account_id}}", "transactions" ], "query": [ { "key": "consent_id", "value": "{{dp_consent_id}}" }, { "key": "from_date", "value": "2025-10-01" }, { "key": "to_date", "value": "2025-11-30" }, { "key": "page_size", "value": "5" } ] } }, "response": [] }, { "name": "30 - Decrypt [Utility] - first page", "event": [ { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", "} else {", " const decryptedResponse = pm.response.json();", " const payload = JSON.parse(decryptedResponse.plainText);", " console.log(payload);", " const next_page_params = payload.meta.next_page_params;", " console.log(next_page_params);", " pm.environment.set(\"next_page_params\", next_page_params); // store the next_page_params in the environment variable", "", " utils.visualiseJson('Decrypted Payload', JSON.parse(pm.response.json().plainText));", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"keyManagementAlgorithms\": [ \"RSA-OAEP-256\"],\n \"contentEncryptionAlgorithms\": [\"A256GCM\"],\n \"cipherText\": \"{{jwe}}\",\n \"pem\": \"{{enc-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-decryption", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-decryption" ] } }, "response": [] }, { "name": "40 - Sign x-signature header for subsequent page [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "pm.environment.set(\"exp\", Date.now() / 1000 + 290);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "const uuid = require('uuid');", "pm.environment.set(\"uuidv4\", uuid.v4());", "", "// query parameters", "const qpm = { ", " \"page_size\": \"5\",", " \"from_date\": \"2025-10-01\",", " \"to_date\": \"2025-11-30\",", " \"next_page_params\": pm.environment.get(\"next_page_params\")", "};", "const qpmString = JSON.stringify(qpm);", "pm.environment.set(\"qpm\", qpmString);" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"iss\": \"{{dc_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": [\n \"{{dp_id}}\",\n \"Paynet OFP\"\n ],\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": {{qpm}},\n \"url\": \"{{rs}}/v1/accounts/{{account_id}}/transactions\",\n \"sub\": \"{{consent}}\"\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "40 - GET transactions - subsequent pages", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " const jws = utils.parseJwt(pm.response.text());", " pm.environment.set(\"jwe\", jws.payload.data);", " utils.visualiseJws('Response', pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "request": { "method": "GET", "header": [ { "key": "x-signature", "value": "{{x-signature}}", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" } ], "url": { "raw": "{{dp_rs}}/v1/accounts/{{account_id}}/transactions?consent_id={{dp_consent_id}}&page_size=5&next_page_params={{next_page_params}}&from_date=2025-10-01&to_date=2025-11-30", "host": [ "{{dp_rs}}" ], "path": [ "v1", "accounts", "{{account_id}}", "transactions" ], "query": [ { "key": "consent_id", "value": "{{dp_consent_id}}" }, { "key": "page_size", "value": "5" }, { "key": "next_page_params", "value": "{{next_page_params}}" }, { "key": "from_date", "value": "2025-10-01" }, { "key": "to_date", "value": "2025-11-30" } ] } }, "response": [] }, { "name": "50 - Decrypt [Utility] - subsequent pages", "event": [ { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", "} else {", " const decryptedResponse = JSON.parse(pm.response.json().plainText);", " const next_page_params = decryptedResponse.meta.next_page_params;", " pm.environment.set(\"next_page_params\", next_page_params); // store the next_page_params in the environment variable", "", " utils.visualiseJson('Decrypted Payload', JSON.parse(pm.response.json().plainText));", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"keyManagementAlgorithms\": [ \"RSA-OAEP-256\"],\n \"contentEncryptionAlgorithms\": [\"A256GCM\"],\n \"cipherText\": \"{{jwe}}\",\n \"pem\": \"{{enc-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-decryption", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-decryption" ] } }, "response": [] } ] } ] }, { "name": "DP -> PayNet", "item": [ { "name": "Testing Prerequisite", "item": [ { "name": "10 - DC -> OFP: GET /.well-known/openid-configuration", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.text());", " return;", "} else {", " let jsonData = pm.response.json();", " pm.environment.set(\"auth-endpoint\", jsonData.authorization_endpoint);", " pm.environment.set(\"token-endpoint\", jsonData.token_endpoint);", " pm.environment.set(\"par-endpoint\", jsonData.pushed_authorization_request_endpoint);", " pm.environment.set(\"revocation_endpoint\", jsonData.revocation_endpoint);", " pm.environment.set(\"userinfo_endpoint\", jsonData.userinfo_endpoint);", " utils.visualiseJson( \".well-known\", jsonData);", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "Content-Type", "value": "application/x-www-form-urlencoded" } ], "body": { "mode": "urlencoded", "urlencoded": [] }, "url": { "raw": "{{issuer}}/.well-known/openid-configuration", "host": [ "{{issuer}}" ], "path": [ ".well-known", "openid-configuration" ] }, "description": "Queries the .well-known OIDC endpoint.\n\nThis step identifies the various OIDC endpoints that should be used for subsequent steps." }, "response": [] }, { "name": "20 - Set Context [Postman only]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.text());", " return;", "} else {", " const jsonData = pm.response.json();", " pm.environment.set(\"dp_id\", jsonData.args.dp_id);", " utils.visualiseJson(\"Response\", jsonData);", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "urlencoded", "urlencoded": [] }, "url": { "raw": "https://postman-echo.com/get?dp_id=DP9876543210", "protocol": "https", "host": [ "postman-echo", "com" ], "path": [ "get" ], "query": [ { "key": "dp_id", "value": "DP9876543210" } ] }, "description": "Use this step to set parameters for the rest of this flow.\n\nIn the **Params** tab, enter one of the valid dp_ids:\n\n- DP9876543210\n \n- DP9876543211\n \n- DP9876543213\n \n\nTo select a DP at the point of consent authorization, leave the field blank\n\nAlternatively, to test negative flows, you can enter any other value." }, "response": [] }, { "name": "30 - Sign private_key_jwt [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "", "pm.environment.set(\"exp\", (Date.now() / 1000) + 300);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "pm.environment.set(\"uuid\", uuid.v4());", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.text());", " return;", "} else {", " pm.environment.set(\"private_key_jwt\", pm.response.text());", " utils.visualiseJws( \"private_key_jwt\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"aud\": \"{{issuer}}\",\n \"exp\": {{exp}},\n \"iss\": \"{{_clientId}}\",\n \"sub\": \"{{_clientId}}\",\n \"jti\": \"{{uuid}}\",\n \"iat\": {{nbf}}\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] }, "description": "This is a utility API call to create a private_key_jwt.\n\nThis private_key_jwt will be used in a subsequent step for OIDC client authentication to the PAR and token endpoints.\n\nIn a production implementation, the DC must sign the private key jwt using their private key." }, "response": [] }, { "name": "40 - Sign PAR request [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "", "pm.environment.set(\"exp\", Date.now() / 1000 + 300);", "pm.environment.set(\"nbf\", (Date.now() / 1000) - 10);", "", "const codeVerifier = uuid.v4() + uuid.v4();", "const hashedCodeVerifier = CryptoJS.SHA256(codeVerifier);", "let codeChallenge = CryptoJS.enc.Base64.stringify(hashedCodeVerifier);", "", "codeChallenge = codeChallenge.replaceAll('+', '-');", "codeChallenge = codeChallenge.replaceAll('/', '_');", "if (codeChallenge.endsWith('=')) { codeChallenge = codeChallenge.substring(0, codeChallenge.length - 1)}", "", "pm.environment.set(\"code-challenge\", codeChallenge );", "pm.environment.set(\"code-verifier\", codeVerifier );", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.text());", " return;", "} else {", " pm.environment.set(\"requestObject\", pm.response.text());", " utils.visualiseJws( \"Request Object\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local}}\"\n },\n \"body\": {\n \"aud\": \"{{issuer}}\",\n \"exp\": {{exp}},\n \"iss\": \"{{_clientId}}\",\n \"scope\": \"accounts profile\",\n \"redirect_uri\": \"{{redirectUrl}}\",\n \"client_id\": \"{{_clientId}}\",\n \"nonce\": \"{{$guid}}\",\n \"state\": \"{{$guid}}\",\n \"nbf\": {{nbf}},\n \"response_type\": \"code\",\n \"code_challenge_method\": \"S256\",\n \"code_challenge\": \"{{code-challenge}}\",\n \"max_age\": 3600,\n \"claims\": {\n \"userinfo\": {\n \"name\": null,\n \"email\": null,\n \"email_verified\": null,\n \"id_type\": null,\n \"hashed_id_number\": null\n }\n },\n \"authorization_details\": [\n {\n \"type\": \"urn:openfinance-ml:account-access-consent:v1.2\",\n \"consent\": {\n \"dc_id\": \"{{dc_id}}\",\n \"dp_id\": \"{{dp_id}}\",\n \"consent_type\": \"urn:openfinance-ml:account-access-consent:v1.2\",\n \"consent_purpose\": \"pfm\",\n \"permissions\": [\n \"read_accounts\", \n \"read_transactions\", \n \"read_balances\"\n ],\n \"expiration_datetime\": \"2026-12-31T23:59:00+08:00\"\n }\n }\n ]\n },\n \"signingKeyPEM\": \"{{pem-local}}\"\n}" }, "url": { "raw": "{{rs}}/o3/v1.0/message-signature", "host": [ "{{rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] }, "description": "This is a utility API call to create a account access PAR request.\n\nThis JWT will be used in the subsequent step to call the PAR endpoint.\n\nIn a production implementation, the DC must sign the private key jwt using their private key.\n\nYou can modify the permissions and expiration_datetime in the body" }, "response": [] }, { "name": "50 - DC -> OFP: POST /par", "event": [ { "listen": "test", "script": { "exec": [ "// Visualization for Auth Code URL", "var template = `", "", "
", "
Auth Code URL:
", "
{{authCodeUrl}}
", "", " ", "", " ", " ", "", "
", "
", "", "", "`;", "", "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 201) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " let jsonData = pm.response.json();", "", " const clientId = pm.environment.get(\"_clientId\");", " const authEndpoint = pm.environment.get('auth-endpoint');", " console.log(authEndpoint);", "", " const authCodeUrl = `${authEndpoint}?client_id=${clientId}&scope=openid&request_uri=${jsonData.request_uri}`;", " pm.environment.set(\"authCodeUrl\", authCodeUrl);", "", " pm.visualizer.set(template, { authCodeUrl });", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "// set uuid and time", "pm.environment.set(\"now\", (new Date()).toUTCString());", "const uuid = require('uuid');", "pm.environment.set(\"x-fapi-interaction-id\", uuid.v4());" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "request": { "method": "POST", "header": [ { "key": "Content-Type", "value": "application/x-www-form-urlencoded" }, { "key": "x-cert-dn", "value": "", "type": "text", "disabled": true }, { "key": "x-fapi-interaction-id", "value": "{{x-fapi-interaction-id}}", "type": "text" } ], "body": { "mode": "urlencoded", "urlencoded": [ { "key": "client_id", "value": "{{_clientId}}", "type": "text" }, { "key": "request", "value": "{{requestObject}}", "type": "default" }, { "key": "client_assertion_type", "value": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer", "type": "text" }, { "key": "client_assertion", "value": "{{private_key_jwt}}", "type": "text" } ] }, "url": { "raw": "{{par-endpoint}}", "host": [ "{{par-endpoint}}" ] } }, "response": [] } ] }, { "name": "4.1 - JSON Web Key Set (JWKS) - DP -> PayNet", "item": [ { "name": "JWKS for Hub", "event": [ { "listen": "test", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "Content-Type", "value": "application/x-www-form-urlencoded" } ], "body": { "mode": "urlencoded", "urlencoded": [] }, "url": { "raw": "{{issuer}}/v1/oauth/jwks/paynet", "host": [ "{{issuer}}" ], "path": [ "v1", "oauth", "jwks", "paynet" ] }, "description": "Queries the .well-known OIDC endpoint.\n\nThis step identifies the various OIDC endpoints that should be used for subsequent steps." }, "response": [] }, { "name": "JWKS for DC", "event": [ { "listen": "test", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "Content-Type", "value": "application/x-www-form-urlencoded" } ], "body": { "mode": "urlencoded", "urlencoded": [] }, "url": { "raw": "{{issuer}}/v1/oauth/jwks/{{dc_id}}", "host": [ "{{issuer}}" ], "path": [ "v1", "oauth", "jwks", "{{dc_id}}" ] }, "description": "Queries the .well-known OIDC endpoint.\n\nThis step identifies the various OIDC endpoints that should be used for subsequent steps." }, "response": [] } ] }, { "name": "5.3 - Update Consent - DP -> PayNet", "item": [ { "name": "5.3.1 - DP -> OFP: PATCH /consents authorized", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature Header\", pm.response.text());", "}", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "const interactionId = uuid.v4();", "const now = Math.floor(Date.now() / 1000);", "", "pm.environment.set(\"uuidv4\", interactionId);", "pm.environment.set(\"iat\", now);", "pm.environment.set(\"nbf\", now);", "pm.environment.set(\"exp\", now + 300);" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local-dp}}\"\n },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": \"PayNet OFP\",\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": { \n },\n \"url\": \"{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}" }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "20 - id-token helper", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"id-token-dp\", pm.response.text());", " utils.visualiseJws(\"id_token saved:\");", "}", "" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "raw", "raw": "{\n \"header\": { \"alg\": \"PS256\", \"kid\": \"{{kid-local-dp}}\" },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"sub\": \"user-123\",\n \"aud\": \"{{dc_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"auth_time\": {{nbf}},\n \"id_type\": \"passport\",\n \"hashed_id_number\": \"SAvn6eqDgF_LQnsFX2j2b4GugnCQcZIWCW42jJN56zc=\",\n \"acr\": \"urn:mace:incommon:iap:silver\",\n \"amr\": [\"pwd\"]\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "30 - DP -> OFP: PATCH /consents authorized", "request": { "method": "PATCH", "header": [ { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" }, { "key": "x-signature", "value": "{{x-signature}}", "type": "text" }, { "key": "content-type", "value": "application/json", "type": "text" }, { "key": "x-cert-dn", "value": "{{x-cert-dn}}", "type": "text" } ], "body": { "mode": "raw", "raw": "{\n \"status\": \"authorized\",\n \"id_token\": \"{{id-token-dp}}\",\n \"user_identity\": {\n \"id_type\": \"passport\",\n \"hashed_id_number\": \"SAvn6eqDgF_LQnsFX2j2b4GugnCQcZIWCW42jJN56zc=\"\n },\n \"accounts\": [\n {\n \"account_id\": \"{{account_id}}\",\n \"account_number\": \"534892****7651\",\n // \"account_type\": \"credit\"\n \"account_name\": \"MasterCard Platinum\"\n }\n ]\n\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}", "host": [ "{{dp_rs}}" ], "path": [ "v1", "dp", "consents", "{{dp_consent_id}}" ] } }, "response": [] }, { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature Header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "const interactionId = uuid.v4();", "const now = Math.floor(Date.now() / 1000);", "", "pm.environment.set(\"uuidv4\", interactionId);", "pm.environment.set(\"iat\", now);", "pm.environment.set(\"nbf\", now);", "pm.environment.set(\"exp\", now + 300);" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local-dp}}\"\n },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": \"PayNet OFP\",\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": {},\n \"url\": \"{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "40 - GET /consents/:consent_id", "request": { "method": "GET", "header": [ { "key": "authorization", "value": "Bearer {{token-from-client-credentials-grant-accounts}}", "type": "text" }, { "key": "x-cert-dn", "value": "{{x-cert-dn}}", "type": "text" }, { "key": "x-cert-fingerprint", "value": "xxx", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" }, { "key": "x-signature", "value": "{{x-signature}}", "type": "text" } ], "url": { "raw": "{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}", "host": [ "{{dp_rs}}" ], "path": [ "v1", "dp", "consents", "{{dp_consent_id}}" ], "query": [ { "key": "test", "value": "test", "type": "text", "disabled": true } ] } }, "response": [] } ] }, { "name": "5.3.2 - DP -> OFP: PATCH /consents rejected", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature Header\", pm.response.text());", "}", "" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "const interactionId = uuid.v4();", "const now = Math.floor(Date.now() / 1000);", "", "pm.environment.set(\"uuidv4\", interactionId);", "pm.environment.set(\"iat\", now);", "pm.environment.set(\"nbf\", now);", "pm.environment.set(\"exp\", now + 300);" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [ { "key": "content-type", "value": "application/json" } ], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local-dp}}\"\n },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": \"PayNet OFP\",\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": { \n },\n \"url\": \"{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}" }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "20 - id-token helper", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"id-token-dp\", pm.response.text());", " utils.visualiseJws(\"id_token saved:\");", "}", "" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "raw", "raw": "{\n \"header\": { \"alg\": \"PS256\", \"kid\": \"{{kid-local-dp}}\" },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"sub\": \"user-123\",\n \"aud\": \"{{dc_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"auth_time\": {{nbf}},\n \"id_type\": \"passport\",\n \"hashed_id_number\": \"SAvn6eqDgF_LQnsFX2j2b4GugnCQcZIWCW42jJN56zc=\",\n \"acr\": \"urn:mace:incommon:iap:silver\",\n \"amr\": [\"pwd\"]\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "30 - DP -> OFP: PATCH /consents rejected", "request": { "method": "PATCH", "header": [ { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" }, { "key": "x-signature", "value": "{{x-signature}}", "type": "text" }, { "key": "content-type", "value": "application/json", "type": "text" }, { "key": "x-cert-dn", "value": "{{x-cert-dn}}", "type": "text" } ], "body": { "mode": "raw", "raw": "{\n \"status\": \"rejected\",\n \"user_identity\": {\n \"id_type\": \"passport\",\n \"hashed_id_number\": \"SAvn6eqDgF_LQnsFX2j2b4GugnCQcZIWCW42jJN56zc=\"\n },\n \"status_reason\": {\n \"reason_code\": \"inactive_account\",\n \"reason_description\": \"inactive_account\"\n }\n\n\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}", "host": [ "{{dp_rs}}" ], "path": [ "v1", "dp", "consents", "{{dp_consent_id}}" ] } }, "response": [] }, { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature Header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "const interactionId = uuid.v4();", "const now = Math.floor(Date.now() / 1000);", "", "pm.environment.set(\"uuidv4\", interactionId);", "pm.environment.set(\"iat\", now);", "pm.environment.set(\"nbf\", now);", "pm.environment.set(\"exp\", now + 300);" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local-dp}}\"\n },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": \"PayNet OFP\",\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": {},\n \"url\": \"{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "40 - GET /consents/:consent_id", "request": { "method": "GET", "header": [ { "key": "authorization", "value": "Bearer {{token-from-client-credentials-grant-accounts}}", "type": "text" }, { "key": "x-cert-dn", "value": "CN=HQuZPIt3ipkh33Uxytox1E,OU=0015800001041RHAAY,O=OpenBanking,C=GB", "type": "text" }, { "key": "x-cert-fingerprint", "value": "xxx", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" }, { "key": "x-signature", "value": "{{x-signature}}", "type": "text" } ], "url": { "raw": "{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}", "host": [ "{{dp_rs}}" ], "path": [ "v1", "dp", "consents", "{{dp_consent_id}}" ], "query": [ { "key": "test", "value": "test", "type": "text", "disabled": true } ] } }, "response": [] } ] } ] }, { "name": "5.4 - Retrieve Consent - DP -> PayNet", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature Header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "const interactionId = uuid.v4();", "const now = Math.floor(Date.now() / 1000);", "", "pm.environment.set(\"uuidv4\", interactionId);", "pm.environment.set(\"iat\", now);", "pm.environment.set(\"nbf\", now);", "pm.environment.set(\"exp\", now + 300);" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local-dp}}\"\n },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": \"PayNet OFP\",\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": {},\n \"url\": \"{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "40 - GET /consents/:consent_id", "request": { "method": "GET", "header": [ { "key": "authorization", "value": "Bearer {{token-from-client-credentials-grant-accounts}}", "type": "text" }, { "key": "x-cert-dn", "value": "{{x-cert-dn}}", "type": "text" }, { "key": "x-cert-fingerprint", "value": "xxx", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" }, { "key": "x-signature", "value": "{{x-signature}}", "type": "text" } ], "url": { "raw": "{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}", "host": [ "{{dp_rs}}" ], "path": [ "v1", "dp", "consents", "{{dp_consent_id}}" ], "query": [ { "key": "test", "value": "test", "type": "text", "disabled": true } ] } }, "response": [] } ] }, { "name": "5.5 - Consent LCM - DP -> PayNet", "item": [ { "name": "5.5.1 - Consent Suspend", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature Header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "const interactionId = uuid.v4();", "const now = Math.floor(Date.now() / 1000);", "", "pm.environment.set(\"uuidv4\", interactionId);", "pm.environment.set(\"iat\", now);", "pm.environment.set(\"nbf\", now);", "pm.environment.set(\"exp\", now + 300);" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local-dp}}\"\n },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": \"PayNet OFP\",\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": {},\n \"url\": \"{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}/suspend\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "50 - POST /consents/:consent_id/suspend", "request": { "method": "POST", "header": [ { "key": "content-type", "value": "application/json", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" }, { "key": "x-signature", "value": "{{x-signature}}", "type": "text" }, { "key": "x-cert-dn", "value": "{{x-cert-dn}}", "type": "text" } ], "body": { "mode": "raw", "raw": "{ \"updated_by\": \"data_provider\", \n \"status_reason\": {\n \"reason_code\": \"inactive_account\",\n \"reason_description\": \"inactive_account\"\n }}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}/suspend", "host": [ "{{dp_rs}}" ], "path": [ "v1", "dp", "consents", "{{dp_consent_id}}", "suspend" ], "query": [ { "key": "test", "value": "test", "type": "text", "disabled": true } ] } }, "response": [] } ] }, { "name": "5.5.2 - Consent Reactivate", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature Header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "const interactionId = uuid.v4();", "const now = Math.floor(Date.now() / 1000);", "", "pm.environment.set(\"uuidv4\", interactionId);", "pm.environment.set(\"iat\", now);", "pm.environment.set(\"nbf\", now);", "pm.environment.set(\"exp\", now + 300);" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local-dp}}\"\n },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": \"PayNet OFP\",\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": { \n },\n \"url\": \"{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}/reactivate\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "20 - POST /consents/:consent_id/reactivate", "request": { "method": "POST", "header": [ { "key": "content-type", "value": "application/json", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" }, { "key": "x-signature", "value": "{{x-signature}}", "type": "text" }, { "key": "x-cert-dn", "value": "{{x-cert-dn}}", "type": "text" } ], "body": { "mode": "raw", "raw": "{ \"updated_by\": \"data_provider\" }", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}/reactivate", "host": [ "{{dp_rs}}" ], "path": [ "v1", "dp", "consents", "{{dp_consent_id}}", "reactivate" ] } }, "response": [] } ] }, { "name": "5.5.3 - Consent Revoke", "item": [ { "name": "10 - Sign x-signature header [Utility]", "event": [ { "listen": "prerequest", "script": { "exec": [ "const uuid = require('uuid');", "const interactionId = uuid.v4();", "const now = Math.floor(Date.now() / 1000);", "", "pm.environment.set(\"uuidv4\", interactionId);", "pm.environment.set(\"iat\", now);", "pm.environment.set(\"nbf\", now);", "pm.environment.set(\"exp\", now + 300);" ], "type": "text/javascript", "packages": {}, "requests": {} } }, { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.json());", " return;", "} else {", " pm.environment.set(\"x-signature\", pm.response.text());", " utils.visualiseJws( \"x-signature Header\", pm.response.text());", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "protocolProfileBehavior": { "disableBodyPruning": true }, "request": { "method": "GET", "header": [], "body": { "mode": "raw", "raw": "{\n \"header\": {\n \"alg\": \"PS256\",\n \"kid\": \"{{kid-local-dp}}\"\n },\n \"body\": {\n \"iss\": \"{{dp_id}}\",\n \"exp\": {{exp}},\n \"iat\": {{nbf}},\n \"nbf\": {{nbf}},\n \"aud\": \"PayNet OFP\",\n \"jti\": \"{{uuidv4}}\",\n \"qpm\": { \n },\n \"url\": \"{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}/revoke\",\n \"sub\": \"{{dp_consent_id}}\"\n },\n \"signingKeyPEM\": \"{{signing-pem-dp}}\"\n}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/o3/v1.0/message-signature", "host": [ "{{dp_rs}}" ], "path": [ "o3", "v1.0", "message-signature" ] } }, "response": [] }, { "name": "20 - POST /consents/:consent_id/revoke", "request": { "method": "POST", "header": [ { "key": "content-type", "value": "application/json", "type": "text" }, { "key": "x-fapi-interaction-id", "value": "{{uuidv4}}", "type": "text" }, { "key": "x-signature", "value": "{{x-signature}}", "type": "text" }, { "key": "x-cert-dn", "value": "{{x-cert-dn}}", "type": "text" } ], "body": { "mode": "raw", "raw": "{ \"updated_by\": \"data_provider\", \n \"status_reason\": {\n \"reason_code\": \"inactive_account\",\n \"reason_description\": \"inactive_account\"\n }}", "options": { "raw": { "language": "json" } } }, "url": { "raw": "{{dp_rs}}/v1/dp/consents/{{dp_consent_id}}/revoke", "host": [ "{{dp_rs}}" ], "path": [ "v1", "dp", "consents", "{{dp_consent_id}}", "revoke" ] } }, "response": [] } ] } ] } ] }, { "name": "Events", "item": [ { "name": "Review Events [Utility]", "event": [ { "listen": "test", "script": { "exec": [ "const utilsSrc = pm.globals.get(\"utils\");", "const utils = eval(utilsSrc); // returns the object from the IIFE", "", "if (pm.response.code !== 200) {", " utils.visualiseJson( \"Error\", pm.response.text());", " return;", "} else {", " const event = pm.response.json()", " console.log(event);", " const lastEvent = event.data[event.data.length - 1];", " utils.visualiseJws( \"private_key_jwt\", lastEvent.requestBody);", "}" ], "type": "text/javascript", "packages": {}, "requests": {} } } ], "request": { "method": "GET", "header": [], "url": { "raw": "{{dp_rs}}/review-emitted-events", "host": [ "{{dp_rs}}" ], "path": [ "review-emitted-events" ], "query": [ { "key": "minutesInPast", "value": "5", "disabled": true } ] } }, "response": [] } ] } ], "event": [ { "listen": "prerequest", "script": { "type": "text/javascript", "packages": {}, "requests": {}, "exec": [ "function b64urlDecode(input) {", " const pad = '='.repeat((4 - (input.length % 4)) % 4);", " const b64 = (String(input) + pad).replace(/-/g, '+').replace(/_/g, '/');", " return atob(b64);", "}", "", "function parseJwt(jwtText) {", " const jwt = String(jwtText || '');", " const parts = jwt.split('.');", " const signature = parts[2] || '';", "", " let header = {};", " let payload = {};", "", " try { header = JSON.parse(b64urlDecode(parts[0] || '')); } catch (_) {}", " try { payload = JSON.parse(b64urlDecode(parts[1] || '')); } catch (_) {}", "", " return { jwt, header, payload, signature };", "}", "", "function visualiseJws(title, jwtText) {", " console.log('visualising jws ...');", " const { jwt, header, payload, signature } = parseJwt(jwtText ?? pm.response.text());", "", " const templateProperties = {", " title,", " headerJson: JSON.stringify(header, null, 2),", " payloadJson: JSON.stringify(payload, null, 2),", " signature,", " rawJwt: jwt", " };", "", " const template = pm.collectionVariables.get(\"collJwtTemplate\");", " pm.visualizer.set(template, templateProperties);", "}", "", "function visualiseJson(title, json) {", " const template = pm.collectionVariables.get(\"collJsonTemplate\");", " pm.visualizer.set(template, {title, json: JSON.stringify(json, null, 2)});", "}", "", "", "// Make it global", "const utilsSrc = `", "(function () {", " ${b64urlDecode.toString()}", " ${parseJwt.toString()}", " ${visualiseJws.toString()}", " ${visualiseJson.toString()}", "", " return {", " b64urlDecode,", " parseJwt,", " visualiseJws,", " visualiseJson", " };", "})()", "`;", "", "pm.globals.set(\"utils\", utilsSrc);" ] } }, { "listen": "test", "script": { "type": "text/javascript", "packages": {}, "requests": {}, "exec": [ "" ] } } ], "variable": [ { "key": "collJwtTemplate", "value": "\n\n\n\n\n
\n
{{title}}
\n\n
\n
Header
\n
\n 
{{headerJson}}
\n
\n
\n\n
\n
Body
\n
\n 
{{payloadJson}}
\n
\n
\n\n
\n
Raw JWT
\n
{{rawJwt}}
\n
\n
\n\n" }, { "key": "collJsonTemplate", "value": "\n\n\n\n
\n
{{title}}
\n
\n
\n 
{{json}}
\n
\n
\n" } ] }