get monetary-account-bank -> 404 item not found for PSD2 connection

New-Crimson-Buffalo-3442439264

Hi,

I am trying to do a get request to the monetary-account-bank endpoint, but it keeps returning 404 => the item your requested can not be found.

Steps I took before getting this error:

get an installation token for my application
register as a psd2 user
register a device-server
request a session-token

Then setting up oauth

create oauth client
register redirect_uri
get client_id and client_secret

Then for a customer

redirect to /auth endpoint to request access
trade in the authorization_code for an access_token
get new installation token for customer
/device-server call with new installation token and customer access_token
/session-server call with installation token of my app and access_token as { 'secret' => access_token }

So far, so good and the following is returned:

{ "Response": [ { "Id": { "id": 18523085 } }, { "Token": { "id": 18523085, "created": "2022-12-23 09:14:05.055679", "updated": "2022-12-23 09:14:05.055679", "token": "USERSESSIONTOKEN" } }, { "UserApiKey": { "id": 165980, "created": "2022-12-23 09:14:00.845887", "updated": "2022-12-23 09:14:00.845887", "requested_by_user": { "UserPaymentServiceProvider": { "id": 165957, "display_name": "somename PISP AISP", "public_nick_name": null, "avatar": { "uuid": "78f93a9e-979d-400a-a398-c1826e600c3d", "image": [ { "attachment_public_uuid": "935aaaf4-518a-4a54-aca1-15c74d79c9a5", "height": 1023, "width": 1024, "content_type": "image/png", "urls": [ { "type": null, "url": null } ] } ], "anchor_uuid": null, "style": null }, "session_timeout": 324000 } }, "granted_by_user": { "UserPerson": { "id": 163119, "display_name": "Lydia", "public_nick_name": null, "avatar": { "uuid": "9debf55b-70b1-4d43-8d51-d6e7bd42fb5b", "image": [ { "attachment_public_uuid": "4b7e0d1d-9167-48ac-990a-70e342c87812", "height": 126, "width": 200, "content_type": "image/jpeg", "urls": [ { "type": null, "url": null } ] } ], "anchor_uuid": null, "style": null }, "session_timeout": null } } } } ] }

Then, I use the this response to get:
bunq_user_id = response['Response'][2]['UserApiKey']['id'] session_token = response ['Response'][1]['Token']['token']

And where I keep getting this error is when I try to make a call to /v1/user/bunq_user_id/monetary-account-bank with a header: `'X-Bunq-Client-Authentication' => session_token.

I am missing something? I seem to be using the correct bunq_user_id from what I understand from the docs and other answers on this forum.

Bastiaan

New bunqer Hi,

Have you maybe also tried the endpoint /user/{userID}/monetary-account ?

More info: https://beta.doc.bunq.com/psd2/connect-as-a-psd2-service-provider/initiate-payments-as-a-pisp

New-Crimson-Buffalo-3442439264

At the point in the process where I am creating a session_token for the user that has given consent, so endpoint /session-server, what do I use for the header X-Bunq-Client-Authentication? It seems most logical to use the installation token that I created while registering the customer, but that returns {"Error":[{"error_description":"Insufficient authentication."}]}. The documentation does not specify this so it is a guess.

If I use the installation token that I created for my app, it does work. However, then I run into the issue that I described in my original post.

New-Crimson-Buffalo-3442439264

Bastiaan Hi,

Yes, I have tried that, but with the same response unfortunately:

response: {"Error":[{"error_description":"The item you requested could not be found.","error_description_translated":"The item you requested could not be found."}]}

New-Crimson-Buffalo-3442439264

Bastiaan also, for my application it is sufficient to just get accounts and related transactions as an AISP

Bastiaan

New bunqer Lars

I've "played" with the Sandbox API today and I can't simulate this error.
Are you sure that you are using id of "UserPerson" inside the "granted_by_user"-object, from the https://public-api.sandbox.bunq.com/v1/session-server endpoint response JSON?

When I use this id for the request to /v1/user/{UserPerson_id}/monetary-account I get an overview of the monetary accounts.

Lars-Indigo-Zebra

Someone has an update on this?

New-Crimson-Buffalo-3442439264

I did use the id of 'UserPerson' inside the 'granted_by_user'-object. The docs imply that the id of the UserApiKey-object itself should be used, so I've also tried that. But both result in the same error.

Also just doing a GET request to /v1/user/{UserPerson_id} with either one of the ID's returns the same 404 error: {"Error":[{"error_description":"The item you requested could not be found.","error_description_translated": "The item you requested could not be found."}]}

Bastiaan

New bunqer
That's strange..
It's working fine here if I follow these steps:

Create a pseudo PSD2 certificate for the Sandbox API with openssl command, as described here:
https://github.com/basst85/bunq_psd2_example
I'm using the following PHP-script to generate the API context for PSD2 and save it to a config file:
https://gist.github.com/basst85/2d5304df8b63c0afecfaa72c41faf21c
(install bunq's sdk_php via composer before running script)
Use the same script to generate oAuth-client and return authorization URL.
I'm opening this authorization URL on an Android emulator (with the bunq Sandbox app installed) in Chrome.
Authorize the PSD2 provider via the bunq Sandbox app.
After authorization it returns to the OAUTH_REDIRECT_URI as configurered in the PHP-script.
The redirect URL contains an authorization token, exchange this for an access_token as described here:
https://beta.doc.bunq.com/basics/oauth
You can find the needed client_id and client_secret in oauth.conf, generated by the example PHP-script.
You can use the returned access_token as a normal API-key. Use this to create an authorized session with the user account:
https://beta.doc.bunq.com/basics/authentication
Use the "UserPerson"-id from the "granted_by_user"-object, that is returned in the https://public-api.sandbox.bunq.com/v1/session-server endpoint response.