Merchants on the BankID Server platform will not be able to call the bankID AML resource after a bankID authentication, as this is only possible through the OIDC platform.
However a Merchant on the BankID Server platform can stillĀ integrate with the bankID AML service by using a document signed with the end users national identity number. The process consists of the following steps:
1) Authenticate the user from signature
The user signs a document on the merchant web site using the BankID Server platform.
The resulting "Signed Data Object" (SDO) is considered as an authentication of the end user, and will be used as a parameter in the request to the AML resource server.
2) Data searches
The SDO from the signature in step 1 is used as authentication of the user.
Otherwise this is similar to step two inĀ OpenID Connect flow.
3) Store the data
Similar to step three in OpenID Connect flow.