Introduction
IDkollen provides a JSON/REST API for authenticating and signing with BankID.
The API is only accessible with SSL and a unique key provided by IDkollen. The key is private and should not be shared with a third party. The API should only be called from a server application, not directly from the client.
When signing up you will receive API keys for IDKollens staging and live environment.
| Environment | URL | Callback IP | BankID environment |
|---|---|---|---|
| Live | https://api.idkollen.se/v2/ | 13.53.114.219 13.48.243.11 | Live |
| Staging | https://stgapi.idkollen.se/v2/ | 13.53.56.116 13.53.92.159 | Test |
Usage flow
- The user initiates an authentication via the partner's interface.
- The partner calls IDkollen's API with the secret key to get to get the login link to BankID (FI).
- The partner sends the login link to the end user to use to authenticate themselves with.
- Once the end user has authenticated themselves, the user will be redirected to a redirect URL provided to IDkollen by you, with a one time code.
- The partner uses the one time code to verify the end user's credentials with IDkollen.
- IDkollen will respond with the end user's credentials.
refID
There's an option to use what's called a "refID" in the flow that's presented in this documentation. "refID" is a string reference that can be used the keep track of meta information. To make this option available, please contact our support.
Test users
The following test users are available:
| User name | Bank |
|---|---|
| DEMOUSER2 | Nordea |
| DEMOUSER3 | Nordea |
| DEMOUSER4 | Nordea |
Secret key
To initiate requests to the API a secret key is needed. To request a secret key, contact support@idkollen.se.
More information
If you have any questions, please contact us at support@idkollen.se