Open Banking API

Open Banking exposes the institution's data + payment rails to third-party providers (fintechs, aggregators, accounting tools) under PSD2-style consent. AISP (account information) + PISP (payment initiation).

TPPs list
Registered TPPs — third-party providers with status, scopes and consent counts.

How a TPP onboards

A third-party provider registers a client, the suite issues credentials, and the TPP can then make AISP / PISP calls scoped by the consent each member grants them.

How a TPP onboards
Consents — per member, per TPP, per scope, with grant date and expiry / revocation.
  1. TPP fills the onboarding form (or admin creates manually).
  2. Admin approves in Open Banking → TPPs.
  3. Suite issues client ID + secret; TPP receives via secure email.
  4. TPP can now request consent from any member to call AISP / PISP on their behalf.

Reference

Feature checklist

  • OAuth2 authorization server
  • AISP + PISP endpoints
  • Member consent capture with revoke
  • TPP onboarding + certificate management

Configuration reference

WhereWhat to set
OAuth client configIssuer, JWKS URI, supported scopes
TPP registrationSelf-service or manual approval

Roles & permissions

GroupCapability
mfi_open_banking_api.group_ob_adminTPP onboarding

Accounting integration

PISP-initiated payments inherit standard transfer postings.
Tip. Test consent flow end-to-end before publishing TPP onboarding — broken consents create silent payment failures.
Was this page helpful?