This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, go to https://wso2.com/documentation/.
Client Registration
Client Registration is the process of ensuring that Accredited Data Recipients (ADRs) are trusted before they are allowed to access data via open banking APIs. In order to verify ADRs, banks require to implement an adequate client registration mechanism in their open banking system. This registration process:
- Validates if the ADR is authorised by a competent authority
- Validates the ADR’s information
- Allows ADRs to access data via open banking APIs
For the client registration process, Consumer Data Right (CDR) recommends Dynamic Client Registration, which is a protocol that provides a mechanism for OAuth 2.0 clients to get registered with an authorization server. As in the below diagram, there are 4 main steps in this process. Software Statement Assertion (SSA) is a set of metadata (known as a ‘software statement’) that the client obtains from the CDR Register, which describes itself from an authorized issuer. CDR Register digitally signs the SSA and the vouches for the validity of the data about the client. The client can then present this software statement to the authorization server to get itself registered and obtain a valid client identifier (clientID) to communicate with the server.
See Dynamic Client Registration v0.1, for information on deploying and invoking the API.
The API Security feature does not apply to the Dynamic Client Registration API.