Getting Started

🚀 Quick Start

Overview

Getting Started with PSD2 Integration

To begin using Paysera's Open Banking API:

1. 📚 Read Documentation - Understand API structure and key concepts
2. 📞 Contact Paysera - Register your certificates and get access
3. ⚙️ Prepare Integration - Configure and test your system

Looking for Georgia Standard?

• 🇬🇪 Open Banking for Georgia - Georgian market integration

Integration Flows

💸 Payment Flow

Payment Initiation Flow

Use when no payer account information is available during initiation:

Requirements

• Authentication: OAuth SCA flow
• Certificate Role: PSP_PI (Payment Initiation)
• Required in: eIDAS certificate qcStatement

🔐 Consent Flow

Acquiring User Consent

Obtain consent before accessing account information:

Requirements

• Authentication: OAuth SCA flow
• Certificate Role: PSP_AI (Account Information)
• Validity: Check consent expiry dates

📊 Account Info

Retrieving Account Information

After obtaining consent, access account data:

Available Endpoints:

• /v1/accounts - List all accessible accounts
• /v1/accounts/{id}/balances - Get account balances
• /v1/accounts/{id}/transactions - Get transaction history

Authentication Setup

🔑 QWAC Certificate Setup

Certificate Authentication Process

1. Obtain QWAC Certificate

   • Contact your National Competent Authority (NCA)
   • See NCA Register for your country

2. Submit to Paysera

   • Send certificate to Paysera administrators
   • Include intended use case description

3. Permission Setup

   • Paysera validates and approves certificate
   • Access granted based on certificate roles

Certificate Roles:

• PSP_AI - Account Information access
• PSP_PI - Payment Initiation
• PSP_IC - Fund Confirmation (coming soon)

🔐 OAuth 2.0 Implementation

OAuth Configuration

Discovery Endpoint:

OAuth endpoints are version-specific:

# For Berlin Group v1.3
https://open-banking-api.paysera.com/xs2a/berlin/1.3/.well-known/oauth-authorization-server

# For Georgia v0.8
https://open-banking-api.paysera.com/xs2a/georgia/0.8/.well-known/oauth-authorization-server

Implementation Steps

1. Get Authorization Code

   GET /authorize?
     response_type=code&
     client_id={your-client-id}&
     redirect_uri={your-redirect}&
     scope={requested-scopes}&
     state={random-state}

2. Exchange for Access Token

   POST /token
   Content-Type: application/x-www-form-urlencoded
   
   grant_type=authorization_code&
   code={authorization-code}&
   client_id={your-client-id}&
   client_secret={your-secret}

3. Use Access Token

   GET /v1/accounts
   Authorization: Bearer {access-token}

📖 Full details in Authentication Guide

NCA Registers

🏛️ National Competent Authorities

European NCA Register

Where to obtain PSD2 certificates:

Main EU Countries

Country	Authority	Register Link
🇩🇪 DE	BaFin	Register
🇫🇷 FR	ACPR	Regafi
🇮🇹 IT	Banca d'Italia	Register
🇪🇸 ES	Banco de España	Register
🇳🇱 NL	DNB	Register
🇧🇪 BE	NBB	Register

Nordic Countries

Country	Authority	Register Link
🇸🇪 SE	Finansinspektionen	Register
🇩🇰 DK	Finanstilsynet	Register
🇫🇮 FI	FIN-FSA	Register
🇳🇴 NO	Finanstilsynet	Register

Baltic Countries

Country	Authority	Register Link
🇱🇹 LT	Bank of Lithuania	Register
🇱🇻 LV	FKTK	Register
🇪🇪 EE	Finantsinspektsioon	Register

Other Countries

Country	Authority	Register Link
🇬🇧 GB	FCA	Register
🇵🇱 PL	KNF	Register
🇨🇿 CZ	CNB	Register
🇦🇹 AT	FMA	Register
🇵🇹 PT	Banco de Portugal	Register
🇬🇷 GR	Bank of Greece	Register

note

This list may be outdated. Verify with respective authorities for current information.

Next Steps

📖 Documentation

• API Reference

🔧 Implementation

• Authentication
• Security
• Examples

📚 Resources

• Glossary
• FAQ
• Support

Support

Need help with complex integrations?

Contact: tech_support@paysera.com