Our APIs are developed according to the Berlin Group standard (NextGenPSD2 Framework).
Here you will find an overview of the documentation that we have available.
|API PIS (PDF)||Website||v1.1||2019-07-05||Final*|
|API PIS (PDF)||Website||v1.0||2019-04-04||Expired|
|API AIS (PDF)||Website||v1.2||2019-07-05||Final*|
|API AIS (PDF)||Website||v1.1||2019-04-23||Expired|
|Sandbox Manual (PDF)||Website||v1.1||2019-07-05||Final|
|Sandbox Manual (PDF)||Website||v1.0||2019-03-27||Expired|
* PIS: additional endpoints ‘Get Payment status’ and quality improvements of the documentation as a result of findings of existing users.
* AIS: only quality improvements of the documentation as a result of findings of existing users.
In building its APIs, de Volksbank adheres to the standard of the Berlin Group as a guideline. The open standard authorisation protocol that de Volksbank supports is the OAuth2 protocol (SCA Approach = REDIRECT).
Our APIs are still under development. We presently have the following APIs live:
We currently offer the following endpoints, in accordance with the Berlin Group (NextGenPSD2 XS2A Framework Implementation Guidelines, v1.3):
- Post Consents This concerns receiving the consent data of the customer. For this, the authorisation of the Payment Service User is obtained via the 'OAuth2 SCA Approach'. After your application is made through the 'SCA approach’, the authorisation code can be exchanged for access tokens. With the access tokens, the following 3 “Get Account endpoints” can be requested for a specific customer approval:
- Get Accounts
- Get Balances
- Get Transactions
With the following APIs, in accordance with the Berlin Group standard (NextGenPSD2 XS2A Framework Implementation Guideline v1.3), you can request a single ‘SEPA Credit Transfer (SCT) for initiating and executing:
- Payment initiation request;
- Authorization request;
- Access token request: access token and refresh token based on an authorization code;
- New access token request: new access and refresh tokens based on a refresh token;
- Payment execution request for deferred and recurring payments.
- Payment status services for one time direct, deferred and recurring payments.
After your payment initiation request, you first need to obtain the authorization of the Payment Service User via the OAuth2 SCA Approach. The customer must authorize the initiation of a single SEPA Credit Transfer under one of the following 3 'payment types': One Time Direct, Planned (Deferred payment) or Recurring. With this authorization the customer also gives the bank permission to execute the SCT as soon as the bank has received the payment order from you. With all these payment types, the initiative to execute a payment order lies with your organization. So, the scheduling of a to be executed payment order or payment orders does not take place at de Volksbank's brands.
Please note with a Recurring payment, the amount and the beneficiary of each SCT assignment submitted must always be the same. After the customer has given authorization, your application receives an authorization code, the application must exchange this with us for an access token. With this access token your application can send a payment execution request for a deferred or recurring payment or do a payment status request to us. With the payment status request you can retrieve the most recent status of the initiated single payment order.
On our Developer Portal we offer three Sandbox APIs:
- Sandbox SNS Bank Consent
This is a copy of our production API SNS Bank Consent.
- Sandbox SNS Bank Account Information Services
This is a copy of our production API SNS Bank Account Information Services.
- Sandbox SNS Bank Payment Initiation Services
This is copy of our production API SNS Bank Payment Initiation Services.
- Sandbox SNS Bank Payment Execution Services
This is copy of our production API SNS Bank Payment Execution Services.
To give you a kick-start, we provided a Sandbox User Manual and a zip file that contains a Postman collection. This can be helpfull by replacing the variable values with valid content.
De Volksbank will continue to build on its APIs in 2019. For example, in the coming period we will have the following on our backlog:
|Mid-End July 2019||Optimized error messages, GET Consent status request, GET Consent and DELETE Consent request in accordance with the Berlin Group NextGenPSD2 Implementation Guideline v.1.3.|