Consent Test Cases | Hypo Oberösterreich Developer Portal

This request creates a consent resource for the account AT099900000000001511 - POST /consents

REQUEST:

POST https://sandbox.hypo.at/api/psd2-xs2a/rest/v1/consents
Authorization: Bearer <Access-Token>
Content-Type: application/json
X-Request-ID: 99391c7e-ad88-49ec-a2ad-99ddcb1f7721
TPP-Redirect-URI: http://example-redirect-uri.com
PSU-IP-Address: 127.0.0.1
{
  "access": {
    "balances": [
      {
        "iban": "AT099900000000001511"
      }
    ],
    "transactions": []
  },
  "recurringIndicator": true,
  "validUntil": "9999-12-31",
  "frequencyPerDay": 4
}

RESPONSE:

HTTP/1.1 200 OK
{
  "consentStatus": "received",
  "consentId": "e6151d43-dca8-4fe1-b139-3a89bfeb57a2",
  "scaMethods": null,
  "chosenScaMethod": null,
  "challengeData": null,
  "psuMessage": null,
  "_links": {
    "scaRedirect": {
      "href": "https://sandbox.hypo.at/psd2-xs2a-sandbox/?consent_id=e6151d43-dca8-4fe1-b139-3a89bfeb57a2&redirectBackUrl=http%3A%2F%2Fexample-redirect-uri.com"
    },
    "self": {
      "href": "/v1/consents/e6151d43-dca8-4fe1-b139-3a89bfeb57a2"
    },
    "status": {
      "href": "/v1/consents/e6151d43-dca8-4fe1-b139-3a89bfeb57a2/status"
    }
  }
}

This request returns the content of the account information consent object for the Consent-ID e6151d43-dca8-4fe1-b139-3a89bfeb57a2 – GET /consents/e6151d43-dca8-4fe1-b139-3a89bfeb57a2/status

REQUEST:

GET https://sandbox.hypo.at/api/psd2-xs2a/rest/v1/consents/e6151d43-dca8-4fe1-b139-3a89bfeb57a2/status
Authorization: Bearer <Access-Token>
X-Request-ID: 99391c7e-ad88-49ec-a2ad-99ddcb1f7721

RESPONSE:

HTTP/1.1 200 OK
{
  "consentStatus": "valid"
}

Delete consent request for Consent-ID e6151d43-dca8-4fe1-b139-3a89bfeb57a2 – DELETE /consents/e6151d43-dca8-4fe1-b139-3a89bfeb57a2

REQUEST:

DELETE https://sandbox.hypo.at/api/psd2-xs2a/rest/v1/consents/e6151d43-dca8-4fe1-b139-3a89bfeb57a2
Authorization: Bearer <Access-Token>
X-Request-ID: 99391c7e-ad88-49ec-a2ad-99ddcb1f7721

RESPONSE:

HTTP/1.1 204 No Content

Expired Consent Status Request for Consent-ID baf31bce-34b2-437a-b9c3-4e044c0bfb04 (expired) – GET /consents/baf31bce-34b2-437a-b9c3-4e044c0bfb04/status

REQUEST:

GET https://sandbox.hypo.at/api/psd2-xs2a/rest/v1/consents/baf31bce-34b2-437a-b9c3-4e044c0bfb04/status
Authorization: Bearer <Access-Token>
X-Request-ID: 99391c7e-ad88-49ec-a2ad-99ddcb1f7721

RESPONSE:

HTTP/1.1 200 OK
{
  "consentStatus": "expired"
}

Invalid Consent Status Request for Consent-ID ca2636e6-02f6-4c9d-ae29-051b23a61c11 (invalid) – GET /consents/ca2636e6-02f6-4c9d-ae29-051b23a61c11/status

REQUEST:

GET https://sandbox.hypo.at/api/psd2-xs2a/rest/v1/consents/ca2636e6-02f6-4c9d-ae29-051b23a61c11/status
Authorization: Bearer <Access-Token>
X-Request-ID: 99391c7e-ad88-49ec-a2ad-99ddcb1f7721

RESPONSE:

HTTP/1.1 403 Forbidden
{
  "tppMessages": [
    {
      "category": "ERROR",
      "code": "CONSENT_UNKNOWN",
      "path": null,
      "text": "{sensitive} XS2A017E: consent ca2636e6-02f6-4c9d-ae29-051b23a61c11 unknown"
    }
  ],
  "_links": null
}

This request creates a consent resource for all for PSD2 available accounts of the debitor - POST /consents

REQUEST:

POST https://sandbox.hypo.at/api/psd2-xs2a/rest/v1/consents
Authorization: Bearer <Access-Token>
Content-Type: application/json
X-Request-ID: 99391c7e-ad88-49ec-a2ad-99ddcb1f7721
TPP-Redirect-URI: http://example-redirect-uri.com
PSU-IP-Address: 127.0.0.1
{
  "access": {
    "availableAccounts": "allAccounts"
  },
  "recurringIndicator": false,
  "validUntil": "2021-04-26",
  "frequencyPerDay": 1
}

RESPONSE:

HTTP/1.1 200 OK
{
  "consentStatus": "valid",
  "consentId": "8edfea3a-a660-11eb-bcbc-0242ac130002",
  "scaMethods": null,
  "chosenScaMethod": null,
  "challengeData": null,
  "psuMessage": null,
  "_links": {
    "scaRedirect": {
      "href": "https://sandbox.hypo.at/psd2-xs2a-sandbox/?consent_id=8edfea3a-a660-11eb-bcbc-0242ac130002&redirectBackUrl=https%3A%2F%2Fpsd2.dev.pi.wien01.rbgi.at%2Fpsd2-rsg-tpp%2F%3Fpt_blz%3D34000%23%2Fsandbox%2Fconfig"
    },
    "self": {
      "href": "/v1/consents/8edfea3a-a660-11eb-bcbc-0242ac130002"
    },
    "status": {
      "href": "/v1/consents/8edfea3a-a660-11eb-bcbc-0242ac130002/status"
    }
  }
}

This request returns the content of the account information consent object for the Consent-ID 8edfea3a-a660-11eb-bcbc-0242ac130002 - GET /consents/8edfea3a-a660-11eb-bcbc-0242ac130002

REQUEST:

GET https://sandbox.hypo.at/api/psd2-xs2a/rest/v1/consents/8edfea3a-a660-11eb-bcbc-0242ac130002
Authorization: Bearer <Access-Token>
Content-Type: application/json
X-Request-ID: 99391c7e-ad88-49ec-a2ad-99ddcb1f7721

RESPONSE:

HTTP/1.1 200 OK
{
  "access": {
    "accounts": [
      {
        "iban": "AT959900000000012476",
        "bban": null,
        "pan": null,
        "maskedPan": null,
        "msisdn": null,
        "currency": null
      },
      {
        "iban": "AT079900000000070029",
        "bban": null,
        "pan": null,
        "maskedPan": null,
        "msisdn": null,
        "currency": null
      }
    ],
    "balances": [],
    "transactions": [],
    "additionalInformation": null,
    "availableAccounts": null,
    "availableAccountsWithBalance": null,
    "allPsd2": null,
    "restrictedTo": null
  },
  "recurringIndicator": false,
  "validUntil": "2021-04-30",
  "frequencyPerDay": 1,
  "lastActionDate": "2021-04-30",
  "consentStatus": "valid",
  "_links": null
}