Create a software statement
POST/organisations/:OrganisationId/softwarestatements
Creates a software statement. Note that you can add roles as part of this update for a more convenient batch addition
Request
Path Parameters
Possible values: non-empty and <= 40 characters, Value must match regular expression ^[^<>]*$
The organisation ID
Header Parameters
Possible values: Value must match regular expression ^(Mon|Tue|Wed|Thu|Fri|Sat|Sun), \d{2} (Jan|Feb|Mar|Apr|May|Jun|Jul|Aug|Sep|Oct|Nov|Dec) \d{4} \d{2}:\d{2}:\d{2} (GMT|UTC)$
The time when the PSU last logged in with the TPP. All dates in the HTTP headers are represented as RFC 7231 Full Dates. An example is below: Sun, 10 Sep 2017 19:43:31 UTC
The PSU's IP address if the PSU is currently logged in with the TPP.
An RFC4122 UID used as a correlation id.
Indicates the user-agent that the PSU is using.
- application/json
Body
required
Software Statement payload
Array [
]
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
Software Statement client name
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
Software Statement description
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
A reference to fourth party organisation resource on the RTS Directory if the registering Org is acting on behalf of another
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
A compliant URI string that points to a human-readable privacy policy document
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
The Software Statement client compliant URI
Possible values: Value must match regular expression ^(http://|https://).*.(svg|png|jpg|jpeg)$|(data:image/[a-zA-Z0-9;+=-]+,[A-Za-z0-9+/]*={0,2})$
A compliant URI
Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$
The additional check for software statement, this field can avoid environment checks.
Possible values: [Live, Test]
Default value: Live
Software Statement mode
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
The Software Statement redirect URIs
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
Possible values: <= 255 characters, Value must match regular expression ^(https:\/\/[^\s/?#]+(?:\/[^\s\/?#]+)*)$
Possible values: <= 255 characters, Value must match regular expression ^https:\/\/(?:[a-zA-Z0-9-]+\.)+[a-zA-Z]+(?::\d+)?(?:\/[a-zA-Z0-9-._~!$&'()*+,;=:@\/?%]*)?(?:\?[a-zA-Z0-9-._~!$&'()*+,;=:@\/?%]*)?(?:#[a-zA-Z0-9-._~!$&'()*+,;=:@\/?%]*)?$|(^android:apk-key-hash:[a-zA-Z0-9-]+)|(^ios:bundle-id:[a-zA-Z][-a-zA-Z0-9]*\.([a-zA-Z][-a-zA-Z0-9]*\.?)+)$
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
A compliant URI
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
A compliant URI
Possible values: <= 40 characters
Software Statement version as provided by the organisation's software team
Possible values: <= 40 characters
Software Statement version as provided by the organisation's software team
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
Extra metadata defined by the org admins to be loaded into the software statement and made avaiable during introspection
Is this software statement enabled for federation
Possible values: [openid_entity_federation_managed, openid_entity_self_managed]
The type of federation management that applies to this software statement
Default value: true
Require a signed request object. If this is set to false, the client will not be FAPI compliant
Possible values: [PS256, RS256]
Default value: PS256
Signing algorithm that a client expects the server to return an id_token with. Must be PS256
Possible values: non-empty and <= 60 characters, [private_key_jwt, tls_client_auth, client_secret_basic]
Default value: private_key_jwt
Token endpoint authentication method
Roles
object[]
Possible values: [Active, Inactive]
Default value: Active
Current status of this resource
Possible values: non-empty and <= 30 characters
Authorisation domain for the authority
Possible values: non-empty and <= 60 characters, Value must match regular expression ^[^<>]*$
The authorisation domain role name
Default value: true
Are the tokens issued for this client bound to a client tls certificate
ID of the Authorisation Server that is connected to this Software Statement
Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
The URI for the website with details about the application and its services
Responses
- 201
- 400
- 401
- 403
- 429
- 500
- 502
- 504
Get the software statements with the given id
Response Headers
x-fapi-interaction-id
string
- application/json
- Schema
- Example (from schema)
Schema
Array [
]
Array [
]
Possible values: [IMAGE_UPLOAD_FAILURE_PLACEHOLDER_USED, IMAGE_VALIDATION_FAILURE_BAD_DATA_ENCODING_PLACEHOLDER_USED, IMAGE_VALIDATION_FAILURE_UNSUPPORTED_IMAGE_FORMAT_PLACEHOLDER_USED, IMAGE_VALIDATION_CONTENT_FAILURE_PLACEHOLDER_USED, IMAGE_VALIDATION_DIMENSIONS_FAILURE_PLACEHOLDER_USED, IMAGE_VALIDATION_MAX_SIZE_FAILURE_PLACEHOLDER_USED, IMAGE_VALIDATION_FAILURE_SVG_VALIDATION_PLACEHOLDER_USED, IMAGE_VALIDATION_CONTENT_WARNING_SUPERUSER_OVERRIDE, IMAGE_VALIDATION_DIMENSIONS_WARNING_SUPERUSER_OVERRIDE]
SoftwareStatementCertifications
object[]
Possible values: Value must match regular expression ^[0-3][0-9]/[0-1][0-9]/2([0-9]{3})$
JSONDatetime of certification start date
Possible values: Value must match regular expression ^[^<>]*$
JSONDatetime of certification expiration date
Possible values: non-empty and <= 40 characters, Value must match regular expression ^[^<>]*$
Unique ID associated with the software statement certification
Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$
Unique Software Statement Id
Possible values: [Active, Inactive]
Default value: Active
Current status of this resource
Possible values: Value must match regular expression ^[^<>]*$
Certification variant
Possible values: Value must match regular expression ^[^<>]*$
Certification type
The version number of the certification
Possible values: <= 500 characters, Value must match regular expression ^(https://).*
Link to the certifation package. Example https://github.com/Open[Domain]/conformance/blob/main/submissions/functional/business/1.0.3/api-business-customer.zip
Possible values: [Awaiting Certification, Certified, Deprecated, Rejected, Warning, Self-Certified]
Default value: Awaiting Certification
The different types of certification status
Possible values: [Active, Suspended, Inactive]
Default value: Active
Is this software statement Active/Suspended/Inactive
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
Software Statement client Id
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
Software Statement client name
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
Software Statement description
Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$
The additional check for software statement, this field can avoid
Possible values: <= 255 characters, Value must match regular expression ^(https://).*
The federation endpoint for the Authorisation Server
Possible values: non-empty and <= 40 characters, Value must match regular expression ^[^<>]*$
Unique ID associated with the organisation
Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$
Unique Software Statement Id
Possible values: [Live, Test]
Default value: Live
Software Statement mode
Client created flag
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
A reference to fourth party organisation resource on the RTS Directory if the registering Org is acting on behalf of another
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
A compliant URI string that points to a human-readable privacy policy document
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
The Software Statement client compliant URI
Possible values: Value must match regular expression ^(http://|https://).*.(svg|png|jpg|jpeg)$|(data:image/[a-zA-Z0-9;+=-]+,[A-Za-z0-9+/]*={0,2})$
A compliant URI
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
Possible values: <= 255 characters, Value must match regular expression ^(https:\/\/[^\s/?#]+(?:\/[^\s\/?#]+)*)$
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
The Software Statement terms of service compliant URI
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
A compliant URI
Possible values: [Pending, Confirmed, Deactivated]
Default value: Pending
Possible values: <= 40 characters
Software Statement version as provided by the organisation's software team
Possible values: <= 40 characters
Software Statement version as provided by the organisation's software team
Flag shows if assertion has been generated on the software statement - will be set to true when assertion is generated
Flag shows if software statement is in failed update state
Possible values: Value must match regular expression ^[^<>]*$
Error message describing why the update failed
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
Extra metadata defined by the org admins to be loaded into the software statement and made avaiable during introspection
Is this software statement enabled for federation
Possible values: [openid_entity_federation_managed, openid_entity_self_managed]
The type of federation management that applies to this software statement
Default value: true
Require a signed request object. If this is set to false, the client will not be FAPI compliant
Possible values: [PS256, RS256]
Default value: PS256
Signing algorithm that a client expects the server to return an id_token with. Must be PS256
Possible values: non-empty and <= 60 characters, [private_key_jwt, tls_client_auth, client_secret_basic]
Default value: private_key_jwt
Token endpoint authentication method
Possible values: <= 255 characters
The client secret, only returned when a client is created/updated to have client_secret_basic auth type
Possible values: <= 255 characters, Value must match regular expression ^https:\/\/(?:[a-zA-Z0-9-]+\.)+[a-zA-Z]+(?::\d+)?(?:\/[a-zA-Z0-9-._~!$&'()*+,;=:@\/?%]*)?(?:\?[a-zA-Z0-9-._~!$&'()*+,;=:@\/?%]*)?(?:#[a-zA-Z0-9-._~!$&'()*+,;=:@\/?%]*)?$|(^android:apk-key-hash:[a-zA-Z0-9-]+)|(^ios:bundle-id:[a-zA-Z][-a-zA-Z0-9]*\.([a-zA-Z][-a-zA-Z0-9]*\.?)+)$
Default value: true
Are the tokens issued for this client bound to a client tls certificate
ID of the Authorisation Server that is connected to this Software Statement
Flags
object[]
Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$
Unique ID of the flag
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
The name of this flag
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
The description of this flag
Possible values: [Organisation, Software_Statement, Authorisation_Server]
The type of this tag
Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$
The value of this flag
Possible values: [Active, Inactive]
Default value: Active
Current status of this resource
The access level of a flag as a number. The higher the number, the more sensitive it is
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
The URI for the website with details about the application and its services
{
"OperationWarnings": [
"IMAGE_UPLOAD_FAILURE_PLACEHOLDER_USED"
],
"SoftwareStatementCertifications": [
{
"CertificationStartDate": "string",
"CertificationExpirationDate": "string",
"CertificationId": "string",
"SoftwareStatementId": "string",
"Status": "Active",
"ProfileVariant": "FAPI Adv. OP w/ MTLS",
"ProfileType": "Redirect",
"ProfileVersion": 0,
"CertificationURI": "string",
"CertificationStatus": "Awaiting Certification"
}
],
"Status": "Active",
"ClientId": "string",
"ClientName": "string",
"Description": "string",
"Environment": "string",
"FederationEndpoint": "string",
"OrganisationId": "string",
"SoftwareStatementId": "string",
"Mode": "Live",
"RtsClientCreated": true,
"OnBehalfOf": "string",
"PolicyUri": "string",
"ClientUri": "string",
"LogoUri": "string",
"RedirectUri": [
"string"
],
"PostLogoutRedirectUris": [
"string"
],
"ApiWebhookUri": [
"string"
],
"TermsOfServiceUri": "string",
"NotificationWebhook": "string",
"NotificationWebhookStatus": "Pending",
"SoftwareVersion": "string",
"Locked": true,
"UpdateFailed": true,
"UpdateFailedReason": "string",
"AdditionalSoftwareMetadata": "string",
"OpenidFederationEnabled": false,
"OpenidFederationEntityManagementType": "openid_entity_federation_managed",
"RequireSignedRequestObject": true,
"IdTokenSignedResponseAlgorithm": "PS256",
"TokenEndpointAuthMethod": "private_key_jwt",
"ClientSecret": "string",
"CreatedAt": "2024-07-29T15:51:28.071Z",
"OriginUri": [
"string"
],
"TlsClientCertificateBoundAccessTokens": true,
"RelatedAuthorisationServer": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
"Flags": [
{
"Id": "f81d4fae-7dec-11d0-a765-00a0c91e6bf6",
"CreatedAt": "2024-07-29T15:51:28.071Z",
"UpdatedAt": "2024-07-29T15:51:28.071Z",
"Name": "string",
"Description": "string",
"Type": "Organisation",
"Value": "string",
"Status": "Active",
"AccessLevel": 0
}
],
"HomepageUri": "string"
}
Bad Request
Response Headers
x-fapi-interaction-id
string
- application/json
- Schema
- Example (from schema)
Schema
Validation Error messages
{
"errors": [
"string"
]
}
Unauthorized
Response Headers
x-fapi-interaction-id
string
Forbidden
Response Headers
x-fapi-interaction-id
string
Too many requests, maximum capacity reached. Requests are now throttled.
Response Headers
x-fapi-interaction-id
string
Internal Server Error
Response Headers
x-fapi-interaction-id
string
Bad Gateway
Response Headers
x-fapi-interaction-id
string
Upstream timeout, insufficient capacity to serve request. More capacity being brought online. Please try again.
Response Headers
x-fapi-interaction-id
string