Identity server (IS)

These services allow to identify bank’s customer.

The identity server contains most of the authorization methods – receiving tokens and authorization codes. Identity Server is forwarded to verify the value of these security attributes to ensure compliance with the OAuth 2.0 standard.

Following Identity Server operations are called in the context of all scopes (PISP, AISP, PIISP).

  • Post authorization code
  • Post token by secret
  • Refresh token

Further information for above methods is described in Chapter Services Call Process (FLOW).

Service availability

Service is available 24/7 except periods of technical maintenance. These activities are announced in advance on our web site: https://www.csob.sk/o-nas/novinky.

Supported services for implementation on TPP side are necessary part of Developer Portal are described in chapter Dev Portal Services.