PSD2 POST request postman sandbox

akubishon

Bastiaan Alright so I used that signature as the value of client_public_key_signature in the body. I changed the client_public_key_signature in HttpRequest accordingly. I use the commands to sign the HeaderSignature and HttpRequest, then transform the HeaderSignature into base64. I fill everything into Postman. Now I get the error "invalid signature for public key". Is there something that I'm doing wrong? Thanks for helping me out.

Bastiaan

Enes You have to use the PSD2 certificate (cert.pem) as value for client_payment_service_provider_certificate and client_payment_service_provider_certificate_chain in the POST JSON to /v1/payment-service-provider-credential

It's indeed very confusing because you have the client RSA keys (client_private_key.pem and client_public_key.pem) and the PSD2 key and certificate (key.pem and cert.pem) 🙂

akubishon

Bastiaan Now I get an error saying that the client certificate and client certificate chain is invalid. I generated the cert.pem using the command provided by the bunq docs. Before I just used your cert.cert for both of the values. 🥺🥺

akubishon

Bastiaan The cert.cert in the repository works for both of the values. Cert.pem is invalid. I noticed the client_public_key_signature I generate is longer than the one in the repository. So at the moment I just use your cert.cert which seems to work but the client_public_key_signature is still invalid.

Bastiaan

Enes Hi!

I've updated the repository. Added more info and hopefully make it more clear 🙂
https://github.com/basst85/bunq_psd2_example

akubishon

Bastiaan Hey Bastiaan,

With the update to the new repository, it's pretty much fool-proof :). The certificate I generated goes through with no problems, but I'm sad to say that the client_public_key_signature is still the stubborn one. Sheesh, "invalid signature for public key". I'm clueless. Looking forward to hearing from you. Thanks a lot :)

Bastiaan

Enes Can you maybe try it without the header X-Bunq-Client-Signature?

akubishon

Bastiaan Still the same invalid signature for public key error :(

Bastiaan

Enes Are you sure you have regenerated all the keys and certificates and used them in the request to /v/install and StringToSign.txt?

I've followed all my steps again and can't simulate that error in the Sandbox environment.

akubishon

Bastiaan I followed all your steps yesterday with a friend of mine watching 😅 just to make sure I don't miss any steps, but I'll try again in a few minutes and keep you up to date :).

akubishon

Bastiaan Tried it again, but it's still invalid :( would you mind taking a look at a screen recording I made? I could send the link through email since adding it on here sounds a bit as a "privacyschending".

Bastiaan

Enes You can contact me via Telegram or Twitter: @basst85