Build your submission
Complete each step, attach your evidence, and download a ZIP to attach to your LFI Functional Certification Evidence Service Desk ticket. New here? Read what Functional Certification involves first.
Your details
Your organisation and name are taken from your Sandbox Trust Framework session — the same sign-in used across the portal. Sign in so your submission is attributed to your LFI.
Select endpoints
Choose the version and segment you are certifying, then tick every Bank Data Sharing endpoint your Ozone Connect implementation exposes. You will attach evidence for each on the next step.
Evidence
Attach the evidence for each endpoint you selected. Evidence must be from the AlTareq Model Bank sandbox. All items are required before you can continue.
Consent management
These consent-lifecycle operations are certified for every LFI, whichever endpoints you selected. Each is a call your Ozone Connect implementation makes to the API Hub Consent Manager — except the cancelled-authorization scenario, which you drive on Headless Heimdall. Attach a Postman screenshot of a successful call for each.
/consents/{consentId}IncompleteGet consent by ConsentId
Retrieve a single consent from the API Hub Consent Manager by its consentId and confirm its status.
Callhttps://cm.{LFICODE}.apihub.openfinance.ae/consents/{consentId}
View the API reference for this operation ↗
/psu/{userId}/consentsIncompleteGet consents by end user
Retrieve every consent associated with an end user from the Consent Manager, matched on the psuIdentifiers.userId.
Callhttps://cm.{LFICODE}.apihub.openfinance.ae/psu/{userId}/consents
View the API reference for this operation ↗
/consents/{consentId}/action/revokeIncompleteRevoke consent
Revoke a consent via the Consent Manager revoke action (revokedBy LFI or LFI.InitiatedByUser) — this also revokes the associated access and refresh tokens.
Callhttps://cm.{LFICODE}.apihub.openfinance.ae/consents/{consentId}/action/revoke
View the API reference for this operation ↗
/consents/{consentId}IncompleteSuspend consent
Suspend a consent by patching its status to Suspended on the Consent Manager (pending further enquiries).
Callhttps://cm.{LFICODE}.apihub.openfinance.ae/consents/{consentId}
View the API reference for this operation ↗
/auth/{interactionId}/doFailIncompleteCancelled authorization (do-fail)
End an authorization interaction with a failure on Headless Heimdall when the customer cancels — returning the error and error_description the API Hub relays back to the TPP.
Callhttps://hh.{LFICODE}.apihub.openfinance.ae/auth/{interactionId}/doFail
View the API reference for this operation ↗
The OAuth2 / OIDC error value you return when the customer cancels the authorization. The convention for a customer declining is access_denied.
The human-readable description you return alongside the error.
Endpoint evidence
Review & generate
Review the summary below, add any comments, then download your submission. The ZIP contains a summary.html plus every evidence file — attach it to your LFI Functional Certification Evidence Service Desk ticket.
- Organisation
- —
- Submitted by
- —
- Version
- V2.1
- Segment
- —
- Endpoints in scope
- 0
- Consent operations
- 5
