search
HomeSandbox

AA API v2.0.0

AA Endpoints are the list of endpoints that you will be calling from your FIU system to create consent and fetch data from AA.

Please refer the FIU API Spec (2.0.0) https://api.rebit.org.in/spec/aaarrow-up-right in the ReBIT to implement the responses for different cases. The APIs below only has success response.

hashtag
Create JWS and Sign API Request

The API calls to AA ReBIT api's should have x-jws-signature in the header which is a detached JWS of the body.

Here you can find how to create JWS keys for creating the x-jws-signature and refer AA Commons Documentationarrow-up-right for how to sign the request that you send to AA and verify the request that you receive from AA.

hashtag
Consent Creation

You need to raise a consent to Saafe using /Consent API

POST https://sandbox.saafe.in/api/v2/Consent

hashtag
Request

Header

Key
Value

x-jws-signature

string

client_api_key

string

Body

{
    "ver": "2.0.0",
    "timestamp": "2024-05-09T15:23:55.384Z",
    "txnid": "644d2aff-e43b-4bb9-9047-498cbb9896d2",
    "ConsentDetail": {
        "consentStart": "2024-05-09T15:23:55.384Z",
        "consentExpiry": "2025-01-01T00:00:00.000Z",
        "consentMode": "STORE",
        "fetchType": "PERIODIC",
        "consentTypes": [
            "PROFILE",
            "TRANSACTIONS",
            "SUMMARY"
        ],
        "fiTypes": [
            "DEPOSIT"
        ],
        "DataConsumer": {
            "id": "central-trust-uat", // Your FIU Entity ID
            "type": "FIU"
        },
        "Customer": {
            "Identifiers": [
                {
                    "type": "MOBILE",
                    "value": "9944612241" //Customer Phone Number
                }
            ]
        },
        "Purpose": {
            "code": "101",
            "refUri": "https://api.rebit.org.in/aa/purpose/101.xml",
            "text": "To provide your asset insights",
            "Category": {
                "type": "Personal Finance"
            }
        },
        "FIDataRange": {
            "from": "2023-01-01T00:00:00.000Z",
            "to": "2025-01-01T00:00:00.000Z"
        },
        "DataLife": {
            "unit": "YEAR",
            "value": 3
        },
        "Frequency": {
            "unit": "DAY",
            "value": 10
        }
    }
}

hashtag
Response 200

hashtag
Consent Handle Status

POST https://sandbox.saafe.in/api/v2/Consent/handle

hashtag
Request

Header

Key
Value

x-jws-signature

string

client_api_key

string

Body

hashtag
Response 200

hashtag
Consent Fetch

POST https://sandbox.saafe.in/api/v2/Consent/fetch

signedConsent is the Consent artefact signed using JWS which contains the list of Accounts that the user have approved the consent for.

hashtag
Request

Header

Key
Value

x-jws-signature

string

client_api_key

string

Body

hashtag
Response 200

hashtag
Data Request

POST https://sandbox.saafe.in/api/v2/FI/request

digitalSignature is the signature part of the signedConsent which needs to sent to the AA to make the FI Request.

KeyMaterial Contains the cryptographic parameters that are required to perform End-to-End encryption for sharing the financial information between the producer and the consumer in a secure manner. Ref End-to-end Encryption on implementing the ECDH

hashtag
Request

Header

Key
Value

x-jws-signature

string

client_api_key

string

Body

hashtag
Response 200

hashtag
Data Fetch

POST https://sandbox.saafe.in/api/v2/FI/fetch

hashtag
Request

Header

Key
Value

x-jws-signature

string

client_api_key

string

Body

hashtag
Response 200

PreviousIntroductionNextFIU API v2.0.0

Last updated