-
Add a Accounts API v2
-
Set the scope to Required
-
Enable OAuth2, set the redirect URI to
http://localhost:3000and set the grant type to "Implicit + Code" -
Generate credentials for Sandbox app
-
Save YOUR generated API key to the
.env.developmentfile as aBANK_CSAS_WEB_API_KEYkey.e.g.
BANK_CSAS_WEB_API_KEY="e26d896a-d550-11e9-bb65-2a2ae2dbcce4" -
Save YOUR generated Client ID to the
.env.developmentfile as aBANK_CSAS_CLIENT_IDkey.e.g.
BANK_CSAS_CLIENT_ID="4c0b5c01-ba1c-403a-833b-ab0e0e6ad2f4" -
Save YOUR generated Client Secret to the
.env.developmentfile as aBANK_CSAS_CLIENT_SECRETkey.e.g.
BANK_CSAS_CLIENT_SECRET="76f9a576-25f1-4c37-a10f-ff955f800e0b" -
Go to authorization URL to get the refresh token (change YOUR_CLIENT_ID in URL).
https://webapi.developers.erstegroup.com/api/csas/sandbox/v1/sandbox-idp/auth?redirect_uri=http://localhost:3000&client_id=YOUR_CLIENT_ID&response_type=code&access_type=offline -
Choose user > Continue > Confirm
-
Copy the code from the URL
http://localhost:3000/?code=YOUR_CODE&state=null -
Exchange code for access token and refresh token
curl -X POST https://webapi.developers.erstegroup.com/api/csas/sandbox/v1/sandbox-idp/token -H 'Content-Type: application/x-www-form-urlencoded' -d 'grant_type=authorization_code&code=YOUR_CODE&client_id=YOUR_CLIENT_ID&client_secret=YOUR_CLIENT_SECRET&redirect_uri=http://localhost:3000'
-
Copy the value of refresh_token from the response above and save the value to the
.env.developmentfile as aBANK_CSAS_REFRESH_TOKENkey.e.g.
BANK_CSAS_REFRESH_TOKEN="ewogICJ0eXBlIjogInJlZnJlc2giLAogICJuYW..."