Skip to main content

Account Information Access

The Account Information Access extension enables an Account Information Service Provider (AISP) to request consented access to a customer's payment account information using an SCA Attestation presented from their EUDI Wallet. The flow follows the TS12 Electronic Payments SCA Implementation with Wallet specification.

How it works

  1. The organisation enables the Account Information Access extension from the dashboard.
  2. An administrator configures the service description shown to the customer and the account attributes to request (e.g. IBAN, BIC, currency).
  3. When a customer needs to grant account access, a verification request with an urn:eudi:sca:account_access:1 transaction data payload is triggered using the configured presentation definition.
  4. The customer reviews the service, AISP identifier and scope of access, and presents an SCA Attestation from their EUDI Wallet.
  5. The system verifies the presentation, its Key Binding JWT and the dynamic link to the transaction, and completes the account access consent.

Configuration

Account access request

Configure the information shown to the customer and the account attributes the AISP requests:

FieldDescription
Service nameDisplay name of the AISP service requesting access
Service descriptionShort description of why account access is being requested
Requested attributesSubset of account attributes to request, e.g. iban, bic, currency, account_holder_name
Access validityDuration for which the consent is valid

Integration

Once configured, the system automatically generates an SCA Attestation Presentation Definition bound to the urn:eudi:sca:account_access:1 transaction data type. This presentation definition can be viewed from the extension configuration page and is used when initiating account access requests via the API.

API endpoints:

  • GET/v3/config/extension/account-information-access - Retrieve current configuration
Caution: Disabling the Account Information Access extension deletes its configuration. This action is not reversible.