Mihail Podtykalenko

Total activity 58
Last activity January 26, 2026 13:48
Member since August 29, 2025 10:46

Following 0 users
Followed by 0 users
Votes 0
Subscriptions 17

Articles

Recent activity by Mihail Podtykalenko

What steps do we, as a TPP, need to take to integrate and start using your XS2A API?
1. FAQ
2. First steps
In order to use our API, you as a TPP need to have a valid Qualified Website Authentication Certificate (QWAC - see Work Programme - Work Item Detailed Report ) signed by a qualified trust service ...

Mihail Podtykalenko August 29, 2025 10:47 Updated 1 follower 0 comments 0 votes
Can PSU involvement be tracked with the PSU-IP-Address to avoid unwanted consent “consumption”?
1. FAQ
2. Consent
Since version 1.3.4 of the IG, the frequencyPerDay is defined as "This field indicates the requested maximum frequency for an access without PSU involvement per day. For a one-off access, this attr...

Mihail Podtykalenko August 29, 2025 11:17 0 followers 0 comments 0 votes
Can I use the swagger/reference functionality to "Try it out"?
1. FAQ
2. First steps
Unfortunately, the NextGenPSD2 API cannot be tested by the standard functionality of swagger, as you would need a TPP QWAC for authentication purposes within your browser which is not supported.

Mihail Podtykalenko August 29, 2025 11:04 0 followers 0 comments 0 votes
What payment statuses are used?
1. FAQ
2. Payment Initiation Service (PIS)
You can find this information in the API documentation: LINK

Mihail Podtykalenko August 29, 2025 10:55 Updated 1 follower 0 comments 0 votes
Can the payment be canceled?
1. FAQ
2. Payment Initiation Service (PIS)
The payment can be deleted using its ID. Payments can be canceled until the execution process has started within the bank. It is therefore usually possible to cancel a payment no later than one day...

Mihail Podtykalenko August 29, 2025 11:24 0 followers 0 comments 0 votes
Is it possible to use more than one recurring consent at a time for specific (PSU, TPP, Bank) combination?
1. FAQ
2. Consent
Currently, it is not possible to have >1 recurring consents for the combination (TPP, PSU, Bank). This behaviour is based on the Berlin Group Specification (Implementation Guidelines, version 1.3.6...

Mihail Podtykalenko August 29, 2025 11:16 0 followers 0 comments 0 votes
How can I get access to the testing environment (sandbox)
1. FAQ
2. First steps
To get access to the testing environment (sandbox), you can use your valid official QWAC (provided through a QTSP) that you should have as a regulated TPP under the PSD2.Here - LINK - you will find...

Mihail Podtykalenko August 29, 2025 10:48 Updated 1 follower 0 comments 0 votes
How long is your Payment authentication URL valid for, and if the bank sends a Push notification for a payment, how long does the PSU have to approve it?
1. FAQ
2. Payment Initiation Service (PIS)
Resources are available for authorization for 30 minutes by default. However, in accordance with Article 4 (3)(d) of Commission Delegated Regulation (EU) 2018/389 (RTS on SCA & CSC), the authorizat...

Mihail Podtykalenko August 29, 2025 11:24 0 followers 0 comments 0 votes
Does a new authorisation from the same PSU invalidate the previous consent/token when we are using the same certificate?
1. FAQ
2. Consent
Yes, this happens in case you are using recurring consents. For the combination of (PSU-ID, TPP-ID (derived from the QWAC), Bank) only one recurring consent is valid at a time – see specification o...

Mihail Podtykalenko August 29, 2025 11:16 0 followers 0 comments 0 votes
Does the Production environment behave like the Sandbox, in terms of mandatory headers, for respective APIs request?
1. FAQ
2. First steps
Yes, It is same behavior as far as mandatory headers setup is concerned.

Mihail Podtykalenko August 29, 2025 11:05 0 followers 0 comments 0 votes