This section describes the authentication process within Brass
Being a bank, security is extremely important, thus, multi-factor authentication is enforced for all user profiles.
MultiFactor Authentication (2FA)
2FA is also enforced on all operations that cause money to be moved our of a customer's account, for instance, when authorising payments.
The steps for creating a JWT can be broken down into the steps below:
- Call the login endpoint with the authentication credentials
- If the response is a 200 OK, call the login authorise endpoint with the
tokenvalue from step 1 - If the response is a 200 OK, you now have a usable JWT in the
tokenvalue from step 2