|23.09.2019||Page initial version published|
Welcome to LHV Open Banking & PSD2 API page!
Here you will find all the much needed information to get started with our API, including:
Our PSD2 API covers the features listed in PSD2 regulation, including:
Our API is s RESTful API interface based on the Berlin Group Standard. You can obtain the full documentation here.
You can integrate with our API if you are:
To start using the Open Banking API in live you should first obtain a valid licence from the authorities - Estonian Finance Inspection.
Banks (ASPSPs) hold this licence already by default.
More information here.
To verify if you are authorized to use the services you can check the EBA online database: https://euclid.eba.europa.eu/register/
We also provide a Sandbox testing environment which you can use when preparing for your live integration or just trying out the Open Banking features.
It is also free to use by everybody and no licence is required.
Our API is using the PSD2 compliant eIDAS QWAC transport layer certificate for identifying and verifying the TPP. eIDAS QSEAL certificate is not required or supported for now.
Currently also no other methods or certificate types are supported.
You can order the QWAC certificate from a number of different providers across Europe - provided you have are holding the TPP licence mentioned above.
You can read about these here.
We do not require signing any agreements or have extra validation procedures when granting access to live.
The first time you make a request towars any of the API endpoints using your certificate you will get SERVICE_BLOCKED error. Please contact us at firstname.lastname@example.org and we will grant you access in a few hours.
This is a temporary safety procedure during the first months of the PSD2 era to verify that the whole infra behind the scenes also work correctly - including these not provided by LHV.
Sandbox test environment is our free to access testing environment. It is technically also very similar to live environment - the services, JSon structure etc. is the same.
Link to Sandbox - https://sandboxapi.lhv.eu/psd2/swagger-ui.html
There is no dedicated developers portal or account required to start using the Sandbox. You can use Sandbox directly in Swagger or similar to live -
executing the API endpoints directly using your own developed client application or some testing tool like Postman.
Base url of Sandbox is: https://sandboxapi.lhv.eu/psd2/v1
Sandbox is not using production QWAC certificates, but custom testing certificates which you can generate automatically.
Create your own certificate here.
Store the Private key and Certificate contents as *.key and *.crt files. You can use these like you would use official certificate and key in production.
Please extract your TPP id from the certificate file. It should be visible on Subject > 184.108.40.206 field and should look like PSDEE-LHVTEST-[random combination]
For example - PSDEE-LHVTEST-c1dec9
Use this value in your OAuth request client_id. For example: https://sandboxapi.lhv.eu/psd2/oauth/authorize?scope=psd2&response_type=code&client_id=PSDEE-LHVTEST-c1dec9&redirect_uri=http%3A%2F%2Flocalhost%2Fapi&state=st1
Sandbox Swagger is using built-in default access certificate with client_id value PSDEE-LHVTEST-01AAA
This TPP id value is similar and used the same way as your id in production. For example LHV Pank TPP id is PSDEE-FI-10539549.
Sandbox has following default OAuth access tokens and accounts available:
You can use these access tokens and accounts in combination provided or use the same account numbers with your own access tokens.
As described below in Access and Usage section you can get live access only with official licencing and production QWAC certificate.
Live base url is: https://api.lhv.eu/psd2/v1