Update of Consent Flow v2
· 2 min read
Consent Flow Version 2.0
Here you find the latest updates to the Consent Flow API, which were introduced with the patch version 2.0.15.
Release
- XE/XP: 04/2024
- Prod: 04/2024
Added
- New endpoint
/revokeadded- Applicable for specification: _-six, _-fi
Removed
- Endpoint
/oauth/bankingservices/b-link/v2/tokenremoved- The endpoint was used to access previous CaaS, which was revised in 05/2023
Changes in YAML
'/oauth/token':
post:
...
+ '/oauth/revoke':
+ post:
+ tags:
+ - oauth
+ summary: Revoke an OAuth token (access or refresh)
+ description: |
+ Revokes the specified OAuth token (must be done separately for access token and refresh token)
+ operationId: oauthRevoke
+ parameters:
+ - $ref: '#/components/parameters/correlation_in_header'
+ - $ref: '#/components/parameters/agent_in_header'
+ - $ref: '#/components/parameters/targetid_in_header'
+ - $ref: '#/components/parameters/psu_ip_in_header'
+ - $ref: '#/components/parameters/psu_user_agent_in_header'
+ requestBody:
+ required: true
+ content:
+ application/x-www-form-urlencoded:
+ schema:
+ required:
+ - token
+ properties:
+ token:
+ type: string
+ description: token to be revoked
+ token_type_hint:
+ type: string
+ description: either access_token or refresh_token
+ enum:
+ - access_token
+ - refresh_token
+ responses:
+ '200':
+ description: OAuth token revocation success
+ headers:
+ X-Correlation-ID:
+ $ref: '#/components/headers/X-Correlation-ID'
+ X-CorAPI-Source:
+ $ref: '#/components/headers/X-CorAPI-Source'
+ Cache-Control:
+ $ref: '#/components/headers/Cache-Control'
+ Pragma:
+ $ref: '#/components/headers/Pragma'
+ '400':
...
/oauth/username:
post:
...