PSD2 i praktiken - Utvecklingen av ett API som sammanfogar bankers Open Banking API:er

Sammanfattning: The European Parliament and the Council of the European Union have adopted the directive 2015/2366 payment services in the internal market by the name of PSD2 which forces banks to open up APIs on customers account information to third-party developers. The purpose of this thesis is to merge these so-called Open Banking APIs to a general API to ease the development of applications for the company which this thesis is in cooperation with. The thesis consists of a survey of the PSD2 directive and the banks' Open Banking APIs, an examination of techniques and integration platforms and the development of the general API, named Delta API. The result of this thesis is a survey of PSD2 which can be used as a foundation for developers that need to familiarize themselves with the directive and to gain a better understanding of products that are using the perks of PSD2. A working API has been developed within the scope of this thesis and is connected to Swedbank's and Nordea's AIS APIs and their OAuth2 authentication APIs. Delta API merges banks' APIs to one HTTP-request that collects data about a customer's accounts and transactions. The development has been affected by the fact that Swedbank and Nordea are not done with features, in their APIs, that handles personal information. Because of this, it is not needed to take GDPR into consideration because personal information is not handled by Delta API. In addition to the fact that Delta works, the application is placed in a Docker-container that eases the integration of the microservice into Smart Refill's back-end.