Trusted IBANs

Introduction

The trusted IBANs feature allows your customers to maintain a list of target IBANs (per account) for which they do not have to complete two-factor authentication (2FA) challenges. When a customer makes a payment to a trusted IBAN, then the payment is executed immediately.

Additionally, you can create Timed Orders and Standing Orders to trusted IBANs without having to authorize the transaction using two-factor authentication. However, please note that this applies only to creating the order. In case of updating or deleting an existing order, two-factor authentication is required.

In order to use this feature in your solution, implement the API endpoints below:

API endpoints

POST Add trusted IBAN to an account

info

This method requires a change request.

Adds a trusted IBAN to the account specified in the request. 2FA will no longer trigger for outgoing transactions to this IBAN.

Request URL:

Copy
Copied
POST /v1/accounts/{account_id}/trusted_ibans

Example response:

Copy
Copied
{
  "id": "d6c778822b2d7bd3b778935bcfd0d1d3csc",
  "updated_at": "2021-01-30T08:30:00Z",
  "status": "AUTHORIZATION_REQUIRED",
  "url": ":env/v1/change_requests/:id/authorize"
}

Click here to view the full API reference.

GET Index trusted IBANs for an account

Returns an array of all trusted IBANs added to the specified account.

Request URL:

Copy
Copied
GET /v1/accounts/{account_id}/trusted_ibans

Example response:

Copy
Copied
[
  {
    "iban": "DE12100110011001100101"
  }
]

Click here to view the full API reference.

DELETE Remove trusted IBAN

note
  • You must submit the person_id of the person who added this trusted IBAN as a query parameter in this request.
  • This endpoint requires a change request.

Removes the supplied IBAN from the list of trusted IBANs for the account specified in the request.

Request URL:

Copy
Copied
DELETE /v1/accounts/{account_id}/trusted_ibans/{trusted_iban_id}

Example response:

Copy
Copied
HTTP/1.1 204 No Content

Click here to view the full API reference.