v3.0.75

Air API and Open Banking Infrastructure Studies

205002 - Bugfix After ANTD Market Transition

The test has been completed successfully.

208303 - Language Conversion - Text Editing

After logging in to the API Market website, if the language support is selected as Turkish, the Turkish equivalent of the Go Live Request Management menu name has been updated to 'GoLive Request Management'.

205482 - rciftci - Closure of the 19 finding

The test has been completed successfully.

178122 - API Dashboard Renewal Work - Special Pages (4)

In this project, we developed and optimized the reporting processes of various APIs. We focused on Outgoing and Interbank money transfer APIs, Precious Metals buying and selling APIs, Foreign Exchange buying and selling APIs, and Financing APIs. We aimed to create a more effective reporting mechanism by improving the performance, data accuracy, and user-friendly interface of each API.

186583 - [OnPrem] - AirApi Testing - Access Control

SMTP tests were performed. API Call tests were performed. BOA Access was checked. Database tests were performed. IP Whitelist access requests were completed.

205299 - Kuveyt Turk API Market Document Addition - Documentation Section

A URL has been created for the document submitted by our business unit. The generated URL has been added to the documentation menu.

204774 - ÖHVPS Performance Level Report API Integration

We've completed our API development work, and a successful response has been observed when a request is made. The screenshot is below. This work includes the relevant BKM Report. Users will be able to integrate this API with their alert structure.

204935 - DOTNET 8 Conversion

For projects under the responsibility of the Open Banking team, the backend (for the Orchestration, Process, and Business layers) has been converted to .NET8. All projects have gone live. The projects have been successfully built locally and on the server.

204823 - AHLPAY - DOTNET8 Conversion

The .net8 deployment to the company's test environment has been successfully completed. Company testing is awaited.

204807 - SİPER - Query Service Problems

The findings regarding the trench were conveyed to Lokman Demirci's team. The matter was also followed up in meetings.

There was no slowdown in the SP.

204834 - BOA Centralization

All the work was completed and information was given by going to the Dev environment;

204994 - OHVPS - 2.0 Clearing Tripsitis Findings

All test automation scenarios found on Tripsit have been run. Some scenarios appear to fail for us because BKM added them incorrectly, but they are successful. BKM has been notified of this via email. BKM will make the necessary adjustments.

205001 - 1176 - 1177 Clearing of Findings

As part of Finding 1177, a pool-based improvement was made for unwanted exclusion messages to be displayed to customers. In this improvement, the decision was made whether or not error messages would be displayed based on the ShowErrorDetails flag in the pool's appsettings.json file.

204798 - SAGLAMPAY - Process Tracking

As part of this sprint:

YÖS screen bugs were resolved. YÖS certification was successfully obtained in just one week.

204838 - [Management Portal] Custom Environment AntDesign Adaptation

The Custom Environment Dashboard design for the Management Portal has been completed, adapted to AntDesign. Screen development can begin in the next sprint. The design link is below.

205003 - Payment Order Service Not Working for BKM Pool

The bug has been fixed and it has been observed that it works on both hhs1.1 and hhs2.0.

205478 - Closure of the tozel-4 finding

As a result of the checks, it was determined that the test environment of the application in question was open to the outside world. Therefore, attackers can obtain information about the application and its vulnerabilities.

https://www.ncsc.gov.uk/collection/developers-collection/principles/secure-your-development-environment

https://customotomasyon-default-developer.airapi.market/ The test environment must be closed to the outside world.

205488 - data - closing the 0 finding

The tests were completed successfully.

204987 - Ziraat Participation - Authorize Flow Error Review

İnceleme yapılan toplantılarla yapıldı. İnceleme sonucunda consent ekranında sorun olduğu tespit edildi Bunun üzerine firmaya geçici çözüm olması açısından id server ayarlarından olan consentRequired'ın false yapılması söylendi.

204798 - SAGLAMPAY - Process Tracking

YÖS screen bugs have been resolved. YÖS certification was successfully obtained in just one week.

205349 - Fixing bugs in the robust Pay Boa build

Fixing bugs caused by build. After the bugs are fixed, App admins will be moved to the test environment.

213330 - Sağlam Pay - YÖS Certification Processes

Tests were conducted for Sağlam Pay's YÖS certification. These tests included Account Information Service, Payment Order Initiation Service, Event Listening, and Event Subscription Certification.

213332 - API Dashboard Report - Creating Table Structure and Tabular

In this project, we developed and optimized the reporting processes for various APIs. We focused on Outgoing and Interbank money transfer APIs, Precious Metals trading APIs, Foreign Exchange trading APIs, and Financing APIs. We aimed to create a more effective reporting mechanism by improving the performance, data accuracy, and user-friendly interface of each API.

213727 - Corporate Money Transfer API Developments / Phase 2

A process with an approval mechanism was developed for money transfer transactions for corporate companies.

Procedures performed: 1 API was written A table was created for the API 3 Orc. methods were written 3 SPs were written

205322 - KT Bank AG - Sending Messages When the Application Is Not Available

We have completed our development, we need a service end, the team that will write the service asks the requesting team to open a "request record", we will provide the relevant support after the necessary action is taken.

205332 - Visa setups and Establishing a Tokenless Request Structure

Since they don't accept signatures in the integration with Visa, the go-live will be with mTLS. A structure will be established that will allow for token-free requests to be sent to the installations in progress.

API Market Phase 2

205118 - API Market Phase 2 - Email Extension Development

The .tr e-mail address entered in the E-Mail Address field on the API Market Contact Us screen must be considered valid.

The tests were completed successfully.

196019 - API Market Phase 2 - Problem opening old design in live mode

On the password change screen, clicking Applications (as highlighted below) opens the old design. This needs to be corrected. We've updated the application page designs live.

The tests were completed successfully.