Mock Authorisation Page

The Mock Authorisation page replicates the functionality of YBS OAuth Authorisation.It can be used by the TPP for testing the authorisation journey of a registered customer of YBS.

In order to use this page you have to register as a TPP in our sandbox environment.

Below are the sample URL's that can be used for testing the Mock Authorisation page.Refer to the open banking site for more details regarding the request parameters:

YBS:

https://sandbox.ybs.co.uk/authorisation-mock-v1/ybs/index?request=<jwt>… accounts&response_type=code id_token&client_id=<ClientID>

CHELSEA:

https://sandbox.ybs.co.uk/authorisation-mock-v1/che/index?request=<jwt>… accounts&response_type=code id_token&client_id=<ClientID>

Example encoded JWT:

eyJraWQiOiJidzI0aHFweklQUk5pc2lFcVNBa3JIeTc4MlUiLCJhbGciOiJQUzI1NiJ9.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.Kf7VjcQIA_w-lQ_fXlF9FE1r1uZ2CphCYt4R92ufvStPffcbLtb8A5P4Pj0IdncOlr45JRAx_SOGIB9smell-2O68YfN0IwrUkTcozvobcKkjTZc9I6igUcz4KQGlNF_PfBhqMnIeFmV5NJGTGZGhRnq5bUln43Tl6IAE9_6_fl8KAQgPxomh--hWX4ReD3VEzvGR4jDUOwTAqKFx6r0JgZO5vSCOeWyh9n9Fg0jEjkmjtTZS2c163bedKoB-Mu1LQ7n6boENwmXka-82Ase7YFcmab7p0cRrEPxCqI4QzsYWGYup9CBfm6pDxdFQWFdl4_y5EdI5yAQdFsrQhdmFA

Example decoded JWT:

Header

{  

  "kid": "bw24hqpzIPRNisiEqrHy782U",  

"typ": "JWT",

  "alg": "PS256"

}

PayloadData

{

  "aud": "https://ob-ybs.sandbox.ybs.co.uk",

  "scope": "openid",

  "claims": {

    "id_token": {

      "acr": {

        "values": [

          "urn:openbanking:psd2:sca",

          "urn:openbanking:psd2:ca"

        ],

        "essential": true

      },

      "openbanking_intent_id": {

        "value": "aisp-1112",

        "essential": true

      }

    }

  },

  "iss": "EKfoDqrQG4HpH1lEzOGkB9",

  "response_type": "code id_token",

  "redirect_uri": "https://staging.certification.openid.net/test/a/fapi%20r%20test/callback",

  "state": "PhCBaA0yBE",

  "exp": 1580580942,

  "nonce": "XLR5lt2o0p",

  "client_id": "EKfoDqrQG4HpH1lEzOGkB9"

}

If the request is successful then a login page will open.This can be used to test all the success or failure scenarios.

Enter the respective CustomerID to test the scenarios as mentioned below.

Note:The CustomerID in production will be a 10 digit number.The 4 digit CustomerID provided below are only for testing in sandbox.

 

#

Scenario

 CustomerID

Sample Output

1

Success

 1000

authcode=xyz
2 Error Scenario 1 1001 "Error" : "access_denied" , "ErrorDesc" : ""
3 Error Scenario 2 1002 "Error" : "request_uri_not_supported" , "ErrorDesc" : ""
4 Error Scenario 3 1003 "Error" : "invalid_scope" , "ErrorDesc" : ""
5 Error Scenario 4 1004 "Error" : "unsupported_response_type" , "ErrorDesc" : ""
6 Error Scenario 5 1005 "Error" : "access_denied" , "ErrorDesc" : "Standing Order Authorisation delayed"
7 Error Scenario 6 1006 "Error" : "access_denied" , "ErrorDesc" : "CBPII fund confirmation Authorisation delayed"
8 Error Scenario 7 1007 "Error" : "access_denied" , "ErrorDesc" : "Customer declined authentication"
9

Error Scenario 8

 1008 "Error" : "Temporarily unavailable" , "ErrorDesc" : ""
10 Error Scenario 9 1009 "Error" : "access_denied" , "ErrorDesc" : "User Cancel Authorisation"
11 Error Scenario 10 1010 "Error" : "access_denied" , "ErrorDesc" : "Payment Authorisation Cancelled by Customer"
12 Error Scenario 11 1011 "Error" : "access_denied" , "ErrorDesc" : "Invalid Creditor Account"
13 Error Scenario 12 1012 "Error" : "access_denied" , "ErrorDesc" : "User Cancel Authorisation"
14 Error Scenario 13 1013 "Error" : "server_error" , "ErrorDesc" : ""

 

 

About us

Yorkshire Building Society is a member of the Building Societies Association and is authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority and the Prudential Regulation Authority. Yorkshire Building Society is entered in the Financial Services Register and its registration number is 106085. Head Office: Yorkshire House, Yorkshire Drive, Bradford BD5 8LJ.

References to 'YBS Group' or 'Yorkshire Group' refer to Yorkshire Building Society, the trading names under which it operates (Chelsea Building Society, the Chelsea, Norwich & Peterborough Building Society, N&P and Egg) and its subsidiary companies.