production
https://apis.bankofcyprus.com/df-boc-org-prd/prod
APIC Gateway Server
Paths
/token
post /token
Request Access Tokens
clientIdHeader
X-IBM-Client-Id
(apiKey located in header)
Client_Secret
X-IBM-Client-Secret
(apiKey located in header)
grant_type
Required in formData
string
Type of grant
{
"enum": [
"authorization_code",
"client_credentials"
]
}
client_id
Required in formData
string
Application client ID, can be provided in formData or using HTTP Basic Authentication
client_secret
Required in formData
string
Application secret, must be provided in formData or using HTTP Basic Authentication
code
Optional in formData
string
Authorization code provided by the /oauth2/authorize endpoint
scope
Required in formData
string
Scope being requested
Content-Type
Optional in header
string
application/x-www-form-urlencoded
Accept
Optional in header
string
200
200 OK
Example Request
Example Response
POST https://apis.bankofcyprus.com/df-boc-org-prd/prod/psd2/v2/oauth2/token
Try this operation
No response. This is a mixed content call. It is not possible to test HTTP APIs from an HTTPS secured Portal site and vice versa.
No response. This is a cross-origin call. Make sure the server accepts requests from this portal. Or if using self-signed SSL certificates then paste the URL above into your browser to accept the certificate before trying again (On Internet Explorer it must be the same browser tab.).
/introspect
post /introspect
Introspect a given access_token supported
clientIdHeader
X-IBM-Client-Id
(apiKey located in header)
Client_Secret
X-IBM-Client-Secret
(apiKey located in header)
client_id
Required in formData
string
Application client ID, can be provided in formData or using HTTP Basic Authentication
client_secret
Required in formData
string
Application secret, must be provided in formData or using HTTP Basic Authentication
token
Required in formData
string
String value of the access_token to be introspected
token_type_hint
Required in formData
string
This must contain 'access_token' to indicate the token type
Content-Type
Optional in header
string
application/x-www-form-urlencoded
Accept
Optional in header
string
application/json
200
200 OK
Example Request
Example Response
POST https://apis.bankofcyprus.com/df-boc-org-prd/prod/psd2/v2/oauth2/introspect
Try this operation
No response. This is a mixed content call. It is not possible to test HTTP APIs from an HTTPS secured Portal site and vice versa.
No response. This is a cross-origin call. Make sure the server accepts requests from this portal. Or if using self-signed SSL certificates then paste the URL above into your browser to accept the certificate before trying again (On Internet Explorer it must be the same browser tab.).
Definitions
{
"type": "object",
"additionalProperties": false,
"required": [
"token_type",
"access_token",
"expires_in"
],
"properties": {
"token_type": {
"enum": [
"bearer"
],
"type": "string",
"example": "Bearer"
},
"access_token": {
"type": "string"
},
"expires_in": {
"type": "integer"
},
"scope": {
"type": "string"
},
"metadata": {
"type": "string"
},
"consented_on": {
"type": "integer"
}
}
}
{
"type": "object",
"additionalProperties": false,
"required": [
"active",
"client_id",
"client_name",
"username",
"sub",
"exp",
"expstr",
"iat",
"nbf",
"nbfstr",
"scope"
],
"properties": {
"token_type": {
"type": "string",
"example": "Bearer"
},
"active": {
"type": "boolean"
},
"client_id": {
"type": "string"
},
"client_name": {
"type": "string"
},
"username": {
"type": "string"
},
"sub": {
"type": "string"
},
"exp": {
"type": "string"
},
"expstr": {
"type": "string"
},
"iat": {
"type": "integer"
},
"nbf": {
"type": "integer"
},
"nbfstr": {
"type": "string"
},
"scope": {
"type": "string"
},
"miscinfo": {
"type": "string"
},
"consented_on": {
"type": "integer"
},
"consented_on_str": {
"type": "string"
},
"grant_type": {
"type": "string"
}
}
}