Get Started

Access to Sandbox

KBC Ireland is inviting all Third parties, developers and Open Banking enthusiasts to test their applications using our APIs in the Sandbox. The process to access the Sandbox is explained below.
  • Register Details
    The first step in getting access to detailed information on our APIs and get access to the Sandbox is to register your details.

    You can start the process here. 

    Once your registration is approved you will receive an email from noreply@dev.ca.com which will have the activation link for your KBC Ireland Developer Portal account

    On the activation page you will be required to setup your user name and password to access the developer portal.

    Login
    On successful creation of a user name and password you can access the portal.
  • Add a New Application

    You can add a new application by logging into the portal and accessing the functionality available under the ‘Publish’ option on the dashboard.

    Publish > Apps (on the top left of the page) > Add Application (button on the right).

    You will be asked to provide the following information:

    Application Information  
    Application Name This is a unique name of your application. This application name will appear on some of the screens in the authorisation flow.
    Public Description This is a short description of the application.
    Environment The environment, which the application will access. Note: access to production is not yet enabled. Keep an eye on our updates to find out the release dates for our APIs on production.
    Password This is the password you will use to complete the consent authorisation flow. The user name is set by default to the client ID of the application. The client ID will be available after the application is successfully registered.

     

    API Management  
    APIs You will have to select the APIs, which your application will access.

     

    oAuth  
    Callback/Redirect URLs Provide the callback URL to your application. If there are multiple URL(s) then separate them using commas (,).
    Scope This is the scope for your application. You can add either or all of the following values – accounts, payments, fundsconfirmations. In case of multiple roles separate them using spaces. Note – using any other values apart from the ones specified may result in your application not being registered properly.

     

    Manage your Application

    Retrieve Application Credentials Once you have registered your application you can retrieve the client ID and secret by navigating to the list of applications and choose ‘Edit’ from the list of options available for the chosen application.

    Delete an Application You can also delete your application by navigating to the list of applications and then choose ‘Delete’ from the list of options available for the chosen application.

  • Detailed Documentation – Swagger Definition
    You can access detailed documentation of our APIs here. These can be accessed after you have registered on the developer portal. Your application will need certificates to use the APIs in Sandbox. The process to obtain certificates is explained below.

    Certificates
    Security is important to us. To access our APIs in Sandbox your application will need to use two certificates - network certificate and signing certificate. After you have registered your application and received the credentials for the application you will need to send in a certificate signing request (CSR). There will be an API made available for you to request certificates. Once you send us the CSR we will create the certificates and share it with you. These certificates should be used by your application to use the relevant APIs.

    Details of the API are available on our portal.

    Test Data
    When you register a new application you will be asked to enter a password for a test user (note – user name is set to client ID of the application). This will be the user you can use in the consent authorisation journey. The user will be linked to a set of dummy accounts, which have transactional data on it.
     
    You can access the list of accounts once you successfully complete an AIS or a PIS consent authorisation journey from your application.

    Consent authorisation
    Our APIs follow the oAuth framework and the end to end journey will involve a web redirect from your application into our authorisation endpoint.

    KBC Ireland will support the redirect method of authorisation. The sandbox will support the web redirect method. Your application will receive an authorisation code, which should be used to retrieve access tokens.

    Authorisation Server Details (Sandbox)
    Information needed to interact with our authorisation server on the Sandbox is available here
     
    Note – we will monitor the usage of our APIs by your applications on the Sandbox.

Access to Production

KBC Ireland is live in production with its PSD2 Accounts Access APIs. You can now register your applications if you have a valid eIDAS certificate set (QWAC and QSEAL). More details can be found here.