Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

In order to access use Everifin services via API two account types BankConnect API the following prerequisites are required:

  • Client service account - the service account generated by Everifin and dedicated to specific client; It is required to access identity provider’s authentication API

  • Everifin Multibanking user account - user account in Everifin representing particular bank account(s) owner; It can be physical person or representative of some business entity (it can be your customer or you in case you need to access your own bank accounts); This user will connect bank account(s) to Everifin system; Consequently, the Everifin services related to these bank accounts can be accessed via API by using this user’s access token (obtained after successful login).

  • Connection of the Everifin Multibanking user account to your system - more details are present in the further text below.

Client Service Account

Info

To configure service account, the client needs to provide redirect URLs (at least the domains) that will be used during developing, testing and production phase.

The following details of client service account will be delivered by Everifin:

  • your_realm_value your_app_value(“everifin_app” if not specified otherwise)

  • client_id

  • client_secret

  • scope

Everifin User Account

...

  • (“ais” - balances and transactions, “pis” - payment initiation or “ais pis” - both services)

Everifin Multibanking user account and its connection to your system

When your customer decides to use bank account(s) data in your system the following steps are required:

  1. Everifin Multibanking user account registration - The person/company needs to create a user account in Everifin Multibanking web application. Please, instruct your customer to go to web app URL https://app.everifin.com to do so (you may provide clickable link or button in you SW). The user registration process is described in detail here: Everifin User Registration

  2. Bank Account(s) connection - The person/company needs to connect the bank account(s) in Everifin Multibanking web application. This process is described in detail here: Connecting Bank Account
    For development/testing purposes you can connect demo banks accounts (of course you can use also real bank account). You can find them in the bank selection screen when you change the country to “EFT”. The easiest is to use the bank from redirect scenarios section.

  3. Connecting Everifin Multibanking user account to your system - The connection between the two systems is arranged by Oauth authorization code flow initiated by your user from your system against our identity provider (Authentication ). The details of the connection process are described further below (https://everifin.atlassian.net/wiki/spaces/EFMBAPI/pages/edit-v2/2515730433#Connecting-Everifin-user-account-to-your-system ). Result of this step is session between your system and Everifin represented by pair of tokens (access and refresh token). Valid access token needs to be provided in every API request.

After these steps are completed, your system is able to use Everifin BankConnect API (e.g. get bank account data of your customer).

Identity provider host-name

The following table provides the values value for identity provider host-name in testing and production environments.

IdP Host-name wildcard

Testing environment

Production environmentIdP hostname

{{everifin_idp_url}}

https://app.stage.everifin.com

https://app.everifin.com

...

Connecting Everifin user account to your system

Info

More details on authentication API can be found here: Authentication

  1. Redirect your customer to Once the user decides to connect his existing Everifin user account (registered as pre-step on https://app.everifin.com ) to your system (e.g. clicks on button in your system) redirect her/him to web address {{everifin_idp_url}}/auth/realms/{{your_realm_value}}/protocol/openid-connect/auth/?client_id={{your_client_id}}&&redirect_uri={{clientyour_redirect_uri}}&response_type=code&scope={{scope}}

  2. Click "Create new Account" and enter your details, make sure to use a valid email address

    Image Removed
  3. You will receive an email asking you to confirm your email address. Open the email and click "Verify Email"

  4. After successful email verification Now the user can login to Everifin (or re-login in case the connection has been already established and it only needs to be renewed after the token has expired) and give consent to access the bank account data by your system.

  5. Then the user is redirected back to your URL (specified in redirect_uri query parameter in step #1). The authorization code is provided in code query parameter.

  6. This code needs to be provided Use the code value as input parameter in the request to token endpoint in order to obtain the access token and refresh token: Token Request .
    The obtained access token should be stored in your system as it needs to be provided in authorization header in every API request accessing Everifin services (for details follow the API documentation: https://documenter.getpostman.com/view/19811544/2s935itRL2).

  7. After this you can redirect the user to log in page of the Everifin Application where she/he can connect the bank accounts (Connecting Bank Account With Everifin UI).:
    - Staging app URL: Everifin App - Stage
    - Production app URL: Everifin App - PROD

  8. Once the bank accounts are successfully connected under Everifin user account and the user comes back to your application, you can obtain Refresh token should also by stored as you will need it to refresh access token once it expires. Be aware that refresh token string changes every time you do refresh. You need to store the value from the response every time for next usage.

  9. After this your system can access Everifin BankConnect API to get bank account(s) data of your customer.

Info

In case the access token expires, you can use refresh token endpoint to refresh it: Refresh Token Request.

When the refresh token expires, you need to redirect your customer to same page as in the step 1. This way you obtain new access token and long-lasting refresh token.

Info

In case of test environment, you are welcome to create as many test users as you need