Skip to main content

API Glossary

All Raidiam Connect API specifications use the terms "access token", "authorization code", "authorization endpoint", "authorization grant", "authorization server", "client", "client identifier", "client secret", "grant type", "protected resource", "redirection URI", "refresh token", "resource owner", "resource server", "response type", and "token endpoint" defined by OAuth 2.0 [RFC6749] and uses the term "Claim" defined by JSON Web Token (JWT) [RFC7519].

  • Organisation - An organisation managing customer accounts (and operating banking APIs).
  • Primary Technical Contact - The person at the org who creates an SSA and invokes a registration mechanism. This is an example of an [RFC7591] Client Developer.
  • Organisation ID - The unique identifier for each directory participant.
  • Role -- An implementation of an authority; acts as an Identity Provider, certificate authority, and registry governing the participants in the UK API scheme.
  • Registration Endpoint - OAuth 2.0 & [RFC7591] compliant endpoint
  • Software Statement Assertion (SSA) - An implementation of an [RFC7591] software statement, signed by the Directory.
  • Trusted Third Party - An organization working to initiate payments or consume account information.
  • Client Software - software implementing an OAuth2 client, interacting with an org's registration endpoint.