Get a Software Statement Assertion for Given SoftwareStatementID
GET/organisations/:OrganisationId/softwarestatements/:SoftwareStatementId/assertion
The response body is a signed JWT and the values found in the header and the payload of the SSA are specified below
Request
Path Parameters
Possible values: non-empty and <= 40 characters
The organisation ID
Possible values: <= 40 characters
The software statement ID
Header Parameters
Possible values: Value must match regular expression ^(Mon|Tue|Wed|Thu|Fri|Sat|Sun), \d{2} (Jan|Feb|Mar|Apr|May|Jun|Jul|Aug|Sep|Oct|Nov|Dec) \d{4} \d{2}:\d{2}:\d{2} (GMT|UTC)$
The time when the PSU last logged in with the TPP. All dates in the HTTP headers are represented as RFC 7231 Full Dates. An example is below: Sun, 10 Sep 2017 19:43:31 UTC
The PSU's IP address if the PSU is currently logged in with the TPP.
An RFC4122 UID used as a correlation id.
Indicates the user-agent that the PSU is using.
Responses
- 200
- 400
- 401
- 403
- 429
- 500
- 502
- 504
OK
Response Headers
x-fapi-interaction-id
string
- application/jwt
- application/json
- Schema
Schema
string
Possible values: <= 4000 characters
- Schema
Schema
Possible values: <= 8 characters, [Live, Test]
Default value: Live
Software Statement mode
redirect_uris uri must be provided. For client_credentials this should be an empty array.
Possible values: <= 255 characters
Software Statement client name
Possible values: [Active, Pending, Withdrawn]
Status of the directory registration of an organisation
Possible values: <= 255 characters
Software Statement client Id
SSA Issuer
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
The Software Statement terms of service compliant URI
Possible values: <= 255 characters
Human-readable detailed description of the client
Possible values: <= 255 characters
Contains all active signing and network certs for the software
Possible values: <= 256 characters
Contains all active signing and network certs for the organisation
Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*
A compliant URI string that points to a human-readable privacy policy document
Unique Identifier for Client Software
Possible values: <= 255 characters
The website or resource root uri returned if the Trust Framework is of Non Federated Type.
Possible values: <= 40 characters
A reference to fourth party organisation resource on the Directory if the registering app is acting on behalf of another
Possible values: <= 256 characters
Link to the Org logo
Possible values: non-empty and <= 40 characters
The Unique Organisation Id
Possible values: <= 255 characters
Requested additional field to avoid certificate check
The version number of the software should an org choose to register and / or maintain it
Possible values: <= 140 characters
Legal Entity Identifier or other known organisation name
Included to cater for voluntary withdrawal from directory scenarios|Active, Revoked, or Withdrawn
Claims object for the organisation detailing all the authorisation roles
Bad Request
Response Headers
x-fapi-interaction-id
string
- application/json
- Schema
- Example (from schema)
Schema
Validation Error messages
{
"errors": [
"string"
]
}
Unauthorized
Response Headers
x-fapi-interaction-id
string
Forbidden
Response Headers
x-fapi-interaction-id
string
Too many requests, maximum capacity reached. Requests are now throttled.
Response Headers
x-fapi-interaction-id
string
Internal Server Error
Response Headers
x-fapi-interaction-id
string
Bad Gateway
Response Headers
x-fapi-interaction-id
string
Upstream timeout, insufficient capacity to serve request. More capacity being brought online. Please try again.
Response Headers
x-fapi-interaction-id
string