RAKBANK Customer Sign-in OAuth API 1.0.0

Description

OAuth API with Authorization code grant type for FinTech Apps.

Overview

The RAKBANK Customer Sign-in OAuth API is available to FinTechs apps, targeted for our Business Banking customers, to generate OAuth refresh and access tokens using OAuth2 Authorization Code grant type. OAuth 2.0 is the industry-standard protocol for authorization. OAuth2 is applicable for most of the RAKBANK Open APIs. This API only supports OAuth2.0 Authorization Code grant type for confidential fintech client applications where the requests would typically be initiated from a mobile or web client. For more information, see OAuth Authorization Code Grant Type. For information on all API security policies that apply to our Sandbox Environment, see API Security in Sandbox Environment.

The behaviour of this API changes slightly in the UAT environment. For more information, see OAuth Authorization Code Grant Type in UAT Environment.

Use cases

Bank Linkage from Fintech Apps

Allow the bank customer to link his/her bank account to your app by authentication himself/herself on our Digital Banking site and providing consent. On successful authentication, use the Auth code returned to the redirect URL of your App in exchange for a long-lived refresh token and a short-lived access token. The access token can be further passed in the Authorization header of other API calls.

Post Bank Linkage

After a successful bank linkage, allow customers to avail our banking services, for example, checking transactions and statements, making payments to beneficiaries and checking status of previous payments, all without having to leave your App!

Plans

RAKBANK Customer Sign-in OAuth API 1.1.0

GET /oauth2/authorize

POST /oauth2/authorize

POST /oauth2/token

GET /oauth2/issued

DELETE /oauth2/issued

POST /oauth2/revoke

POST /oauth2/introspect

Admin Plan

unlimited

Free

App Plan