Advanced

PSD2 i praktiken - Utvecklingen av ett API som sammanfogar bankers Open Banking API:er

Petersson, Jacob and Nilsson, Ola (2018)
Computer Science and Engineering (BSc)
Abstract
The European Parliament and the Council of the European Union have adopted the
directive 2015/2366 payment services in the internal market by the name of PSD2
which forces banks to open up APIs on customers account information to third-party developers. The purpose of this thesis is to merge these so-called Open Banking APIs to a general API to ease the development of applications for the company which this thesis is in cooperation with. The thesis consists of a survey of the PSD2 directive and the banks' Open Banking APIs, an examination of techniques and integration platforms and the development of the general API, named Delta API. The result of this thesis is a survey of PSD2 which can be used as a foundation for developers that need to... (More)
The European Parliament and the Council of the European Union have adopted the
directive 2015/2366 payment services in the internal market by the name of PSD2
which forces banks to open up APIs on customers account information to third-party developers. The purpose of this thesis is to merge these so-called Open Banking APIs to a general API to ease the development of applications for the company which this thesis is in cooperation with. The thesis consists of a survey of the PSD2 directive and the banks' Open Banking APIs, an examination of techniques and integration platforms and the development of the general API, named Delta API. The result of this thesis is a survey of PSD2 which can be used as a foundation for developers that need to familiarize themselves with the directive and to gain a better understanding of products that are using the perks of PSD2. A working API has been developed within the scope of this thesis and is connected to Swedbank's and Nordea's AIS APIs and their OAuth2 authentication APIs. Delta API merges banks' APIs to one HTTP-request that collects data about a customer's accounts and transactions. The development has been affected by the fact that Swedbank and Nordea are not done with features, in their APIs, that handles personal information. Because of this, it is not needed to take GDPR into consideration because personal information is not handled by Delta API. In addition to the fact that Delta works, the application is placed in a
Docker-container that eases the integration of the microservice into Smart Refill's back-end. (Less)
Please use this url to cite or link to this publication:
author
Petersson, Jacob and Nilsson, Ola
organization
year
type
M2 - Bachelor Degree
subject
keywords
payment services directive 2 (psd2), api, account information services (ais), oauth2, open banking, gdpr
language
Swedish
id
8949249
alternative location
https://portal.ch.lu.se/Campus.NET/Services/Publication/Export.aspx?id=3202&type=doc
date added to LUP
2018-06-14 03:45:24
date last changed
2018-06-14 03:45:24
@misc{8949249,
  abstract     = {The European Parliament and the Council of the European Union have adopted the
directive 2015/2366 payment services in the internal market by the name of PSD2
which forces banks to open up APIs on customers account information to third-party developers. The purpose of this thesis is to merge these so-called Open Banking APIs to a general API to ease the development of applications for the company which this thesis is in cooperation with. The thesis consists of a survey of the PSD2 directive and the banks' Open Banking APIs, an examination of techniques and integration platforms and the development of the general API, named Delta API. The result of this thesis is a survey of PSD2 which can be used as a foundation for developers that need to familiarize themselves with the directive and to gain a better understanding of products that are using the perks of PSD2. A working API has been developed within the scope of this thesis and is connected to Swedbank's and Nordea's AIS APIs and their OAuth2 authentication APIs. Delta API merges banks' APIs to one HTTP-request that collects data about a customer's accounts and transactions. The development has been affected by the fact that Swedbank and Nordea are not done with features, in their APIs, that handles personal information. Because of this, it is not needed to take GDPR into consideration because personal information is not handled by Delta API. In addition to the fact that Delta works, the application is placed in a
Docker-container that eases the integration of the microservice into Smart Refill's back-end.},
  author       = {Petersson, Jacob and Nilsson, Ola},
  keyword      = {payment services directive 2 (psd2),api,account information services (ais),oauth2,open banking,gdpr},
  language     = {swe},
  note         = {Student Paper},
  title        = {PSD2 i praktiken - Utvecklingen av ett API som sammanfogar bankers Open Banking API:er},
  year         = {2018},
}