Paths
/v1/channels/bne/legacy/authenticate/login
This API is to authenticate customer
Random 128 bit UUID generated uniquely for every request from the Customer, which will represent transaction unique identifier and it is recommended to send.
Session is generated and returned on the first API call as response header, which needs to be resent on succesive calls of same session
Language to be send to the backend systems mus bw ‘es’ for spanish and ‘en’ for english
{
"default": "es"
}2 character ISO country code
{
"default": "MX"
}3 character business code
{
"default": "GCB"
}channel ID used by the user, it is required for the first call in a new session.
The client ID you received during application registration in the developer portal
Bearer token aquired from APIM token endpoint
Content-Types that are sent in the request
{
"default": "application\/json"
}This request is to authenticate customer
Authentication Successful
| Type | Code | Details |
| error | invalidRequest | Missing or invalid Parameters |
| error | userAccountNotActive | 180-account not active |
| error | userAccountLocked | 15-account locked | error | passwordExpired | 9-password has expired |
| error | credentialValidationFailed | 20-master validation failure |
| error | cannotDecryptData | 620-Cannot decrypt, please re-check the encrypted value |
| Type | Code | Details |
| error | unAuthorized | Authorization credentials are missing or invalid |
| Type | Code | Details |
| error | accessNotConfigured | The request operation is not configured to access this resource |
| Type | Code | Details |
| fatal | serverUnavailable | The request failed due to an internal error/server unavailability | fatal | backendError | Failed during a call to backend service |
This API will logout the customer from NGA and S15 session. Session id will become invalid after this is succesful
Random 128 bit UUID generated uniquely for every request from the Customer, which will represent transaction unique identifier and it is recommended to send.
Session is generated and returned on the first API call as response header, which needs to be resent on succesive calls of same session
2 character ISO country code
{
"default": "MX"
}3 character business code
{
"default": "GCB"
}channel ID used by the user, it is required for the first call in a new session.
The client ID you received during application registration in the developer portal
Bearer token aquired from APIM token endpoint
Success Response, Logout Success
| Type | Code | Details |
| error | accessNotConfigured | The request operation is not configured to access this resource |
| Type | Code | Details |
| fatal | serverUnavailable | The request failed due to an internal error/server unavailability | fatal | backendError | Failed during a call to backend service |
/v1/channels/bne/legacy/authenticate/password
This API is used to change the password of customer
Random 128 bit UUID generated uniquely for every request from the Customer, which will represent transaction unique identifier and it is recommended to send.
Session is generated and returned on the first API call as response header, which needs to be resent on succesive calls of same session
2 character ISO country code
{
"default": "MX"
}3 character business code
{
"default": "GCB"
}channel ID used by the user, it is required for the first call in a new session.
The client ID you received during application registration in the developer portal
Bearer token aquired from APIM token endpoint
Content-Types that are sent in the request
{
"default": "application\/json"
}This request is to change customer password
Success Response, Password is changed.
| Type | Code | Details |
| error | invalidRequest | Missing or invalid Parameters |
| error | cannotDecryptData | 620-Cannot decrypt, please re-check the encrypted value. |
| Type | Code | Details |
| error | accessNotConfigured | The request operation is not configured to access this resource |
| Type | Code | Details |
| fatal | serverUnavailable | The request failed due to an internal error/server unavailability | fatal | backendError | Failed during a call to backend service |
/v1/channels/bne/legacy/authenticate/challenge/get
This API is used to get a challenge code for authenticating a customer
Random 128 bit UUID generated uniquely for every request from the Customer, which will represent transaction unique identifier and it is recommended to send.
Session is generated and returned on the first API call as response header, which needs to be resent on succesive calls of same session
2 character ISO country code
{
"default": "MX"
}3 character business code
{
"default": "GCB"
}channel ID used by the user, it is required for the first call in a new session.
The client ID you received during application registration in the developer portal
Bearer token aquired from APIM token endpoint
This request is to get customer challenge
Success Response
| Type | Code | Details |
| error | invalidRequest | Missing or invalid Parameters |
| Type | Code | Details |
| error | accessNotConfigured | The request operation is not configured to access this resource |
| Type | Code | Details |
| fatal | serverUnavailable | The request failed due to an internal error/server unavailability | fatal | backendError | Failed during a call to backend service |
/v1/channels/bne/legacy/authenticate/challenge/validate
This API is to authenticate customer with challenge code
Random 128 bit UUID generated uniquely for every request from the Customer, which will represent transaction unique identifier and it is recommended to send.
Session is generated and returned on the first API call as response header, which needs to be resent on succesive calls of same session
2 character ISO country code
{
"default": "MX"
}3 character business code
{
"default": "GCB"
}channel ID used by the user, it is required for the first call in a new session.
The client ID you received during application registration in the developer portal
Bearer token aquired from APIM token endpoint
Content-Types that are sent in the request
{
"default": "application\/json"
}This request is to validate customer challenge
Success Response
| Type | Code | Details |
| error | invalidRequest | Missing or invalid Parameters |
| Type | Code | Details |
| error | accessNotConfigured | The request operation is not configured to access this resource |
| Type | Code | Details |
| fatal | serverUnavailable | The request failed due to an internal error/server unavailability | fatal | backendError | Failed during a call to backend service |
Definitions
{
"type": "object",
"required": [
"securityTokenId",
"challengeType",
"transaction"
],
"properties": {
"securityTokenId": {
"type": "string",
"description": "Validation code generated by hardware token"
},
"challengeType": {
"type": "string",
"description": "Flag to request authentication for Login or Risk Transaction",
"enum": [
"LOGIN",
"RISK"
],
"default": "LOGIN"
},
"transaction": {
"type": "string",
"description": "The transaction to apply the challenge"
}
}
}
{
"properties": {
"customerId": {
"type": "string",
"description": "provide customer id of the customer"
},
"legalRepresentativeId": {
"description": "unique legal representative id",
"type": "string"
}
},
"required": [
"customerId",
"legalRepresentativeId"
]
}
{
"properties": {
"challengeCode": {
"description": "Challenge code generated at server",
"type": "string"
},
"expiryDate": {
"description": "Challenge code expiry time",
"type": "string"
}
}
}
{
"properties": {
"newPassword": {
"description": "New Password to set",
"type": "string"
},
"oldPassword": {
"description": "Old Password",
"type": "string"
}
},
"required": [
"newPassword",
"oldPassword"
]
}
{
"type": "object",
"required": [
"customerCredentials",
"sessionRequired"
],
"properties": {
"sessionRequired": {
"type": "boolean",
"default": true,
"description": "To create a session in Backend Systems, this is always true"
},
"customerCredentials": {
"$ref": "#/definitions/Credentials"
}
}
}
{
"type": "object",
"required": [
"customerId",
"legalRepresentativeId",
"password"
],
"properties": {
"customerId": {
"type": "string",
"description": "cusmtomer client number",
"maxLength": 12
},
"legalRepresentativeId": {
"type": "string",
"description": "representative number",
"maxLength": 2,
"minLength": 2
},
"password": {
"type": "string",
"description": "\"customer password must be Alphanumeric. The first 2 must be numeric and the last 6 must be alphanumeric\"\n",
"maxLength": 8,
"minLength": 8
},
"encryptionType": {
"type": "string",
"description": "\"To be used on EBCS encryption, not used\"\n"
},
"IPAddress": {
"type": "string",
"description": "Client IP this is not used"
},
"deviceInformation": {
"type": "string",
"description": "RSA javascript result to send to the RSA services. Currently not used"
}
}
}
{
"type": "object",
"required": [
"passwordExpiryDate",
"contingency",
"lastLoginDate",
"lastLoginTime",
"lastChannelId",
"stationName",
"virtualAccountExistsFlag",
"dataCenterLocation",
"customerService",
"products",
"fullName"
],
"properties": {
"passwordExpiryDate": {
"type": "string",
"description": "Customer expiration date in format YYYY-MM-DD",
"pattern": "date"
},
"contingency": {
"type": "string",
"enum": [
"OK",
"DUMMY"
],
"default": "OK",
"description": "flag to determine whether the SPA service is down and you have to send a dummy Challenge"
},
"lastLoginDate": {
"type": "string",
"description": "Customer Last Date access logged in whenever channel in format YYYY-MM-DD",
"format": "Date"
},
"lastLoginTime": {
"type": "string",
"description": "Customer Last time access logged in whenever channel in format HH:mm"
},
"lastChannelId": {
"type": "string",
"description": "Customer last channel id logged"
},
"stationName": {
"type": "string",
"description": "Station Name to use in challenge"
},
"dataCenterLocation": {
"description": "CSI register customer",
"type": "string"
},
"fullName": {
"description": "Customer full name",
"type": "string"
},
"virtualAccountExistsFlag": {
"description": "Field to know if the Customer have Virtual Accounts",
"type": "boolean"
},
"lastUpdatedDate": {
"description": "Last Updated Date",
"type": "string",
"format": "Date"
},
"products": {
"type": "array",
"items": {
"$ref": "#/definitions/Product"
}
},
"legalRepresentativeData": {
"$ref": "#/definitions/Representative"
},
"customerService": {
"type": "array",
"items": {
"$ref": "#/definitions/Service"
},
"description": "If enrolment notification is present or not"
}
}
}
{
"properties": {
"legalRepresentativeName": {
"description": "Executive Name",
"type": "string"
},
"legalRepresentativeId": {
"description": "Number of representative",
"type": "string"
}
}
}
{
"properties": {
"productTypeCode": {
"description": "product Type Code",
"type": "integer"
},
"productSubtypeCode": {
"description": "product Sub type Code",
"type": "integer"
},
"totalrelatedAccountsCount": {
"description": "total related Accounts Count",
"type": "integer"
}
}
}
{
"required": [
"customerServiceNumber",
"customerServiceType"
],
"properties": {
"customerServiceNumber": {
"type": "string",
"description": "Id of bank service used by customer"
},
"customerServiceType": {
"type": "string",
"description": "type of bank service used by customer"
}
}
}
{
"properties": {
"type": {
"description": "Invalid - Request did not confirm to the specification and was unprocessed and rejected. Please fix the value and try again",
"enum": [
"error",
"warn",
"invalid",
"fatal"
],
"type": "string"
},
"code": {
"description": "Error code which qualifies the error",
"type": "string"
},
"details": {
"description": "Human readable explanation specific to the occurrence of the problem",
"type": "string"
},
"location": {
"description": "The name of the field that resulted in the error",
"type": "string"
},
"moreInfo": {
"description": "URI to human readable documentation of the error",
"type": "string"
}
},
"required": [
"type",
"code",
"details"
]
}