This documentation is for WSO2 Open Banking version 1.4.0. View documentation for the latest release.
Skip to end of metadata
Go to start of metadata

WSO2 Open Banking provides the technology requirements that banks need in order to become PSD2 compliant and digitally transformed. It combines the technical capabilities of WSO2 API Manager, WSO2 Identity Server, WSO2 Stream Processor, and WSO2 Enterprise Integrator with PSD2-specific feature customizations to quickly satisfy open banking requirements. 

For more information on WSO2 Open Banking, see the overview and architecture pages in our documentation and the product page.

What is new in this release

The WSO2 Open Banking version 1.4.0 is the successor of version 1.3.0. It contains the following new features and enhancements:

Updates to the UK solution

The solution is compliant with the following conformance test suites:

  • Support for following UK-specific APIs:

    • Account Initiation API v3.1.1.

    • UK Payment Initiation API v3.1.1.

    • UK Confirmation of Funds API v3.1.1.

    • UK Event Notification API v3.1.1.

  • Support for UK Dynamic Client Registration v3.2 to provide a seamless Third Party Provider (TPP) registration process.

  • Configurable payload validations of Account, Payment, and Confirmation of Funds APIs.

  • PSD2 Data Reporting feature.

  • Application Information API to retrieve application metadata.

  • Ability to restrict RS256 signing algorithm from TPP requests.

  • Extendible key manager extension to add authentication steps based on Strong Customer Authentication (SCA) requirements.
  • Authorization flow-related improvements:
    • Custom pluggable pre/post-authorization handlers.
    • Templated consent pages for front-end customizations.
    • Support external deployment of the Authorisation endpoint.
  • Improved extendibility to customise the consent page of the authorise flow

Updates to the Berlin solution

  • Support for the following Berlin-specific APIs:

    • Accounts Information Service v1.3.

    • Payment Initiation Service v1.3.

    • Confirmation of Funds Service v1.3.
  • Configurable payload validations of Account and Payment APIs.
  • PSD2 Data Reporting feature.
  • Support for eIDAS:

    • eIDAS Qualified Website Authentication Certificate (QWAC) validation in the transport layer.

    • eIDAS Qualified Electronic Seal Certificate (QsealC) validation for message signature.

  • Transaction Risk Analysis, which enables analyzing the risk level based on predefined rules and exempt the user from having to provide the second factor.

  • Support for custom payment types defined by the bank.
  • Authorization flow-related improvements:
    • Custom pluggable pre/post-authorization handlers.
    • Templated consent pages for front-end customizations.
    • Support external deployment of the Authorisation endpoint.
  • Improved extendibility to customise the consent page of the authorise flow

What has changed in this release

  • From this release onwards the WSO2_CONSENT_DB datasource is renamed WSO2_OPEN_BANKING_DB.
  • The following UK-specific API versions are deprecated:
    • Account and Transaction API v1.0 and v1.1
    • Payment Initiation API v1.0 and v1.1

Known Issues

  • Sending event notification to the TPP when multi-authorization is completed.

  • The Signing Baskets Service (SBS) is not available for the WSO2 Open Banking Berlin solution.
  • Multi-level SCA feature in Berlin specification is not supported.
  • No labels