Implement OAuth 2.0

All services are protected with an industry-standard OAuth 2.0 protocol. Before you can access any account-related services, you need to obtain an access token.

All services are protected with OAuth 2.0 protocol and hence before you can access them, you need to obtain an access token. To configure your OAuth 2.0 client, use the following settings:

Environment Configuration

In order to access our production environment, you need to first obtain OAuth 2.0 credentials.

In the case of services regulated by the PSD2 legislation (AISP, PISP, CISP), you also need to have a proper license from the national regulator and certificate for the client authentication for accessing API resources.

OAuth 2.0 SettingSetting Value
Authorization URLhttps://auth.artesa.cz/oauth/authorize
Token URLhttps://auth.artesa.cz/oauth/token
Client IDObtained using the application registration API.
Client SecretObtained using the application registration API.
Base API URLhttps://api.artesa.cz/
Mutual TLS requiredYes

OAuth 2.0 Scopes

When asking for an access token, you can use one of the following scopes:

ScopeDescription
aispRelated to resources for payment account access based on AISP mandate.
pispRelated to resources for payment initiation based on PISP mandate.

What’s Next

After you master the OAuth 2.0 handshake, you can call our API services.