This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.
Disclosure Option Management
Data Holders must provide joint account holders with Disclosure Option Management (DOMS). This service must allow the joint account holders to:
- change the joint account to a more restrictive disclosure option
- propose a change on a joint account to a less restrictive disclosure option
- respond to the proposal to change to a less restrictive disclosure option
This is only available as a WSO2 Update from WSO2 Open Banking API Manager Level 2.0.0.146 and WSO2 Open Banking Identity Server Level 2.0.0.156 onwards. For more information on updating WSO2 Open Banking, see Updating WSO2 Products.
WSO2 Open Banking provides an endpoint for the above purposes. The bank is expected to invoke this endpoint when there is a change in the DOMS status in the DOMS dashboard of the bank.
PUT - au/account-access-consents/disclosure-options
This endpoint is secured by basic authentication. The request body contains an a JSON array with key value pairs in the {acountId:status}
format.
A sample request body is as follows:
{ "data":[ {"30080012343456":"no-sharing"}, {"30080012343478":"pre-approval"}, {"30080012343495":"no-sharing"} ] }
If the request is successful, the response is 200 - OK
status. Otherswise a 400 - Bad Request
status is returned.
The sharable accounts endpoint must provide the following flags:
Flag | Possible values | Description |
---|---|---|
isJointAccount | true,false | Whether the account is a joint account or not (This is already available in mock back end) |
jointAccountConsentElectionStatus | true,false | Whether the account is eligible for data sharing (This is already available in mock back end) |
vulnerableUser | true,false | Whether the user is vulnerable or not |
Configuring the Identity Server
- Open the
<WSO2_OB_IAM_HOME>/repository/conf/deployment.toml
file. Add the following configurations:
[open_banking.account_disclosure_options] enable = true
[[resource.access_control]] context = "(.*)/disclosure-options" secure="true" http_method="all" permissions=["/permission/admin"]