ApiGo Documentation
latest

User Manual

  • Getting Started
  • Registration
  • Environments
  • Dashboard
  • Messages
  • Configurations
  • Endpoints
  • Applications
  • Documents
  • Agreements
  • Account Settings

Restrictions Management

  • IP Whitelist
  • IP Blacklist
  • Country Restrictions

Quota Management

  • Quota Management
  • API Base Quota
  • Application Base Quota
  • Domain Base Quota

UK Open Banking Specification

  • Account Access Permission Policy

How To

  • How To Add an Environment?
  • How To Get a Client Credential Token?
  • How To Get an AppToApp Token?
  • How To Add Multiple Function Policy?
  • How To Add Data Mask Policy?
  • How To Create a New Tenant User?
  • How To Configure Developer Portal?
  • How To Modify Global Rate Limit?
  • How To Retire an API?
  • How To Reject a Payment Initiation?
  • How To Add a Global Variable?
  • How To Restrict Working Hours?
  • How To Track Gateway Error?
  • How To Export/Import Endpoints?
  • How To Reject Account Consent?
    • What is to Reject Account Consent?
    • How It Works?
  • How To Exclude an Endpoint?
  • How To Define an Endpoint?
  • How To Define a Mock Policy?
  • How To Define a Rate Limit Policy?
  • How To Define a Mail Policy?
  • How To Transform a Header?
  • How To XML to JSON?
  • How To JSON to XML?

Advanced Features

  • App To App Authentication
  • mutual TLS

Release Notes

  • Versions
  • v1.7.4
  • v1.7.3
  • v1.7.2
  • v1.7.1
  • v1.7.0
  • v1.6.9
  • v1.6.8
  • v1.6.7
  • v1.6.5
  • v1.6.2
  • v1.6.0
  • v1.5.8
  • v1.5.6
  • v1.5.4
  • v1.5
  • v1.4.6
  • v1.4.3
  • v1.4.0
  • v1.3.0
  • v1.2.1
  • v1.1.1
  • v0.8.6
ApiGo Documentation
  • Docs »
  • How To Reject Account Consent?

How To Reject Account Consent?¶

What is to Reject Account Consent?¶

Consent can be revoked by two types of roles, which include PSU and ASPSP. If the PSU revokes the consent to data access with the AISP, the AISP will not be responded with consent_id and the process will not be continued to access AIS. To inform about the current status of the consent is done by making a call to the gateway for the account-access-consent resource. Before calling the API, the AISP must have an access token issued by the ASPSP using a valid eIDAS certificate or a client credentials grant.

The consent is rejected by PSU

apigo consent rejected PSU

If the ASPSP asks to revoke the consent to data access with AISP, ApiGo offers a solution on Management Portal to manage account consents. When a PSU trigger TPP to delete an account consent, the DELETE /account-access-consents call allows an AISP to delete a previously created account-access-consent (whether it is currently authorized or not). The PSU may want to remove their consent via the AISP instead of revoking authorization with the ASPSP. This process allows the PSU to revoke consent with the AISP via ASPSP.

The consent is rejected by ASPSP

apigo consent rejected ASPSP

How It Works?¶

  1. When PSU informs to ASPSP to delete an account consent or tenant admin call for it, the admin can be managed the process manually by using Account Consent Management on Management Portal to revoke the related consent.

The path for the environment created based on Berlin Group Standard

Management Portal -> PIS & Account Consents -> Account Consents -> The related Account Consent

The path for the environment created based on UK Open Banking Standard

Management Portal -> Account Consents -> The related Account Consent

apigo account consents page
  1. The filters button can be used for filtering the account consents by status, TPP name, and username. The filter button is displayed within the column header and can be clicked to activate filter dropdown lists. Such lists enable tenant admins to specify data filtering conditions.
apigo account consent filter
  1. TPP sent a POST request to take consent for Account Service Information. When PSU initiates the consent management process to get account information, the status of the account consent and response message structure will be updated depending on the standard which is selected business model to shape the environment.
apigo account consent response
  1. When a TPP sent a consent request to reach AIS, the status will be updated “received” by the gateway. And the current status of the consent can be viewed on Management Portal. After the consent request sent to the gateway, PSU will be informed with a confirmation message (ex. a push notification via ASPSP’s mobile branch). To reach much more information on the consent creation date, status of the consent, PSU name, and TPP name, click on the “more” icon.
apigo account consent edit
  1. Consent data which includes balance and transaction information standardized with Open Banking Standards on the body of the request has been sent to the gateway by TPP. There is a revoke button available to reject the received consent.
apigo account consent revoke
  1. The status of the consent will be updated with “rejected by tenant admin”. The action time can be viewed on the Account Consent page.
apigo account consent rejected
  1. When we checked the status of the consent on the gateway, the response message will be returned with 403 Forbidden status code. Because of the revoke, the consent cannot be found among accessible consents on the gateway.
apigo account consent response not found
Next Previous

© Copyright 2022 Revision 2fb20882.

Built with Sphinx using a theme provided by Read the Docs.
Read the Docs v: latest
Versions
latest
Downloads
html
On Read the Docs
Project Home
Builds
Free document hosting provided by Read the Docs.