The Consumer API protects access to user data using OAuth 2.0 . The user’s login credentials are never shared with third party apps. Authorization is provided to third party applications via an access_token.
The Consumer API provides authenticated user identity information using OpenID Connect (OIDC) . With OpenID Connect, third party apps are provided authenticated information about the user in the form of an identity_token.
See the Base URL topic.
See the Versioning topic.
Date and Time
See Date and Time.
Before you get started, you’ll need to get these from the back office administrator at your financial institution who has access to Banno People.
If the administrator does not know where to do this, they can review the External application configuration article on the Banno Knowledge site.
You’ll need these credentials:
- client_secret <— Keep this secret!
Similarly, do not commit credentials to your source code repository.