Getting started
How to Start?
In order to start using Open-Banking PSD2 integration with Paysera you should follow this steps:
- Read the documentation;
- Contact Paysera to be able use the service;
- Prepare integration following the documentation.
The Flow
In order to use PSD2 integration between Service Provider (hereafter TPP) and Paysera (hereafter ASPSP) some steps must be completed. To understand which actions must be made between Customer (hereafter PSU), TPP and ASPSP check the integration sequence diagram below. For the details on specific requests data and theirs specification see Georgia v0.8 specification or Berlin group standard v1.3 specification
Payment initiation
If payment is initiated when there is no information about the exact payer account, then this flow should be used:
Note: Paysera utilize OAuth SCA (strong customer authentication) flow to confirm payments. In order to be able to execute payment orders TPP must have PSP_PI (Payment Initiation) role enabled in it's eIDAS certificate qcStatement section.
Account information: acquiring user consent
To collect information about PSU account it's required to obtain such permissions from the user. An integration scheme below should be used:
Account information: retrieving account information
To collect information about PSU account it's required to obtain such permissions from the user. An integration scheme below should be used:
Note: Paysera utilize OAuth SCA (strong customer authentication) flow to confirm payments. In order to be able to retrieve PSU's acccounts information TPP must have PSP_AI (Account Information) role enabled in it's eIDAS certificate qcStatement section.
Authentication
Authentication is performed by using the QWAC certificate. Before using it, the owner of the client provides a QWAC certificate for Paysera administrators. Paysera will allow the clients to use QWAC provided and grant permissions to access specific information. You may find Paysera contacts at the bottom of the page. Obtaining of the QWAC certificate is possible from authorized national competent authority (see Appendix A.)
OAuth
OAuth configuration: https://open-banking-api.paysera.com/.well-known/oauth-authorization-server
Appendix A: National Competent Authority (NCA) Registers *
* The list might be outdated or incomplete.