282818 - Post-Alpine Migration Testing
Tests have been completed successfully.
279637 - Reset Password Email Editing
Tests have been completed successfully.
275038 - Increasing Redirection URI Character Limit in Application Definitions
Tests have been completed successfully.
281071 - [ZİRAAT KATILIM] - Offline_Access Scope Management
Test Cases Covered:
When the offline_access scope is not defined in the application, providing offline_access in the URL should return an invalid_scope error.
When the offline_access scope is not defined in the application, a refresh token should not be generated.
When the offline_access scope is defined in the application, a refresh token should be generated.
Tests have been completed successfully.
271500 - Kuveyt Türk API Market Independent Deployment Infrastructure Setup (CI/CD, Docker, Kubernetes)
The relevant development and process tracking have been completed. Deployments to both the market and prep environments were carried out smoothly and confirmed to be operational.
236844 - [Management Portal] YOS Environment Dashboard Development UI
Code development for the YOS environment has been completed in accordance with the Airapi Management Portal dashboard designs. Tests have been completed successfully.
251593 - Alarm Management Structure
Customers should be able to set up tenant-based alarm management through the Management Portal.
This structure allows customers to monitor their systems by setting error code thresholds and configuring email groups to receive notifications accordingly.
Key requirements:
A cron job written on Logstash should run at 15-minute intervals and check logs generated in the last 15 minutes (00-15-30-45).
Each time the cron job runs, it should process based on the values defined under Configurations > Alarm Management.
A maximum of 4,000 requests should be checked per run, even if the actual count is higher (to reduce system load).
An Alarm Management button should be added to the relevant screen in the Management Portal.
Tests have been completed successfully.
279798 - Gateway Logs Export Development
Tests have been completed successfully in the test environment.
260479 - Management Portal > Gateway Log Filtering Improvement (Multi-Select)
Tests have been completed successfully in the test environment.
281160 - [ZİRAAT KATILIM] - Customer Scope Consent Viewing and Revocation Developments
Tests have been completed successfully in the test environment.
280916 - Adding Filters to Management Portal Screens
Search, filtering, and sorting features have been added to the Endpoint, Application, Developers, and Gateway Logs screens in the Management Portal to improve the user experience. Column-based search, cross-page result retrieval, maximum character limits, sorting, and filtering behaviors have been implemented according to corporate standards. Additionally, icon updates, filter-based content listing, and UI consistency improvements have been applied.
Endpoint Screen
Screen converted to a table structure.
Pagination set to 10 records per page.
Search added to Name and Path columns (200 characters, searches across all pages).
Application Screen
Search added to Name column (100 characters).
Search added to Application Owner column.
Filter added to Status column; values are listed with active Reset and OK buttons.
Developers Screen
A–Z / Z–A sorting added to First Name column.
Search added to Email column (100 characters, searches across all pages).
Gateway Logs Screen
Status Code and Method fields now support listable filter values.
Icons in Client and Path fields replaced with search icons.
280931 - API Market Phase 1 - UX Bug Fixes
UX bugs reported within the scope of API Market Phase 1 have been resolved.
281297 - KT Bank AG Log Detail Enhancement
In the KT Bank AG (Berlin Group standards) setup, the token sent as Authorization in the header when calling BOA services is now written to pod logs as informational data. Tests have been completed successfully.
280648 - OHVPS Project - Adding New Payment Purpose Values
In line with the requirement announced by BKM on January 28, 2026, new payment purpose types have been added to the OHVPS project's object validations. Length validations have been applied for the description fields present in some of the newly added items.
After testing, it has been confirmed that consents can be created with the new payment purpose values defined by BKM.
280783 - [SağlamPay] - PF Module Controller Structure Setup
Due to the complexity and length of the request/response models in the KT customer information service within the SağlamPay PF module, a controller structure has been established.
The service request/response models were large, complex, and verbose, making the code unreadable.
A controller layer was introduced to organize this complex data workflow in a more structured and manageable way.
The controller structure was also set up to exclude null fields from responses.
The API development has been completed and confirmed to be working on the SağlamPay side.
280794 - [SağlamPay] - IVR Parameter Service Developments
API definitions for IVR Parameter services have been completed.
Successful responses have been received from the Parameter APIs.
Postman templates have been prepared and shared with the relevant teams.
280952 - [SağlamPay] - PF Module Update
Updates have been completed. The following fields have been revised in accordance with Linktera's request:
"merchantBusinessPartner": {
"firstName": "Bahar",
"lastName": "Test",
"email": "[email protected]",
"phoneNumber": "5445537953",
"identityNumber": "11111111111",
"birthDate": "1996-11-20T15:05:50.267Z"
},
"fraudChannelType": "CebimPos"
278765 - [SağlamPay] - Ensuring Regular Server Wake-Up Triggers
The issue of slow responses caused by servers entering sleep mode after 20 minutes of inactivity was discussed with the Application Infrastructure team.
The Application Infrastructure team updated the following settings:
After the changes, response times have noticeably decreased.
Response times dropped from 30–40 seconds before the update to 2 seconds after.
API First integration development has been completed within this scope.
Deployment: 25.02.2026 at 12:30
Token renewal on 401 responses has been implemented using Redis-based locking. The performance improvement process will continue to be monitored by the KM team.
281032 - [KUVEYTTÜRK] - API First Integration Token Caching
Tokens have been centralized in the API First system for all new token acquisition scenarios. Token TTLs stored via Redis are set as follows:
281033 - [KUVEYTTÜRK] - API First System OBA/BOA Integration Documentation
Documentation has been prepared in compliance with the acceptance criteria defined in the task. The document is supported with screenshots. A Postman template has also been added to the final section of the document.
278608 - KT YÖS Card Transactions MCC Grouping Process Integration
As part of KT YÖS 2.0, each transaction in the card movements list includes a Merchant Category Code (MCC). This code is used to categorize transactions into groups such as education, health, and shopping.
By integrating with the process provided by the KT card team, all transaction categories have been parsed and the category name and category ratio information are now returned in a format suitable for the mobile UI team.
Process integration has been completed and shared with the card team. This development can only be tested locally, and local tests were successful. The card team will test within 2 weeks; if any issues arise, a bug report will be created.
Development and testing are considered complete at this stage.
278568 - Payment Request Project - Adding New Payment Purpose Values
The newly added payment purpose values have also been integrated into the Airapi application. Tests conducted via Tripsit have confirmed that all values are functioning as expected.
244013 - DestekBank HHS 2.0 BOA Code Migrations
Code migrations have been completed in the necessary BOA projects for the HHS 2.0 project. Current definitions have been migrated to the Airapi HHS environment. Message definitions have been transferred. Updated configurations have been applied via PYS and the Tripsit system. A successful consent has been obtained by sending a request through Tripsit.
281041 - [AKITERA] - Blockchain Infrastructure Work
(Details to be added.)
281873 - SEO Improvements - Phase 2
The SEO report submitted to our team has been thoroughly reviewed, and following a meeting with the business unit, the necessary technical improvements have been identified and implemented.
Issues identified during analysis:
Content was only visible after JavaScript rendering.
Page titles were loading late.
JavaScript-generated links were not crawlable by search engines.
Multiple or missing H1 tags and H1/H2 hierarchy inconsistencies.
Restrictions on the crawlability of JS/CSS assets.
Improvements implemented:
Content and key tags are now directly accessible in HTML, reducing JavaScript dependency.
SSR/Pre-render improvements have been made, and search engine bot crawling performance has been enhanced.
The H1/H2 heading structure has been fully standardized and heading hierarchy has been corrected.
HTML accessibility of menus and internal links has been strengthened.
JavaScript-delayed title loading has been optimized.
AI-based search tests revealed that competitors were ranking higher, primarily due to missing structured data. Accordingly, the necessary schema.org structured data markup has been added and rich result compatibility has been achieved.
Outcomes of these improvements:
Search engine crawling and indexing quality has been improved.
Heading and content structure now complies with SEO standards.
A structure supporting visibility in AI-driven search results has been established.
Content semantic integrity and accessibility have been enhanced.
246922 - [ID Server] - Redis Infrastructure Adjustments
This task was opened due to ID Server errors caused by the DB team enabling security settings on Redis for security reasons. The necessary adjustments have been made to ensure no issues occur when the settings are enabled. ✅ Completed.
262951 - KT Sub-Environment 401 Error Resolution
The Gateway Endpoint service had environment-dependent controls removed and this change had been deployed up to the test environment, causing the endpoint list to be fetched from appsettings instead of the database. Since the called API was not in that list, a 404 Not Found error was returned.
The issue was identified by downloading and reviewing the test environment code. Reverting the code to its previous state resolved the problem.
Additionally, on the KM side, 9 primitive libraries used by BOA.Common were bound to their appropriate versions in the Gateway project via app.config.
The pre-existing 401 issue was resolved through work done as part of the Identity Server Redis migration.
262663 - Bank Login Screen - Login with TCKN (National ID)
Development to enable login with TCKN (Turkish National ID) on Bank Login screens has been completed and confirmed to work during testing.
This enhancement improves the customer login experience and will be deployed to the production environment.
Both authorization flow paths — requests going through BKM and responses coming back via BKM — have been tested.
281306 - Inactive APIs Appearing in Go-Live Requests
Development has been completed to ensure that endpoints with an inactive Go-Live policy are correctly listed in the Developer Portal.
Endpoints that have been deactivated will no longer appear in the list, ensuring accurate and up-to-date information flow in both management and development processes.
290071 - [KUVEYTTÜRK] - On-Prem BKM AirApi Test Environment Wildcard Certificate Migration
The certificate update and infrastructure change for the test Airapi environment have been completed, migrating to wildcard certificate usage. This eliminates the approximately $4,000–$5,000 annual cost the organization was incurring for certificate renewals.
Changes made:
Addresses updated in the BKM PYS system.
Internal DNS definitions renewed.
Certificate renewals performed on WAF, Load Balancer, and Server layers.
Addresses registered on the BKM side have been updated.
290229 - [KT Bank AG] - Account and Payment Service Error Fixes
The relevant services have been reviewed and all identified errors have been resolved. All services are now ready for audit.
290232 - [SağlamPay] - PF Module Service Code Updates
Requested changes within the SağlamPay PF module have been completed at the code level. All specified modifications have been applied.
PORTAL
TASK
ISSUE
ACTION
STATUS
HHS Regular Payment Plan Status Change Event Notifications
HHS Consent Approval Screen Error When Only 1 Card Exists287761
Definitions in Airapi WhiteList Are Not Being Validated — Requests Can Be Made Even Without a Definition
Alias Field Being Saved as NULL on HHS Regular Payment Order Approval Screen
TurkOnay HHS API Version Update
Developer Portal Logo Tenant ID Not Being Generated
Airapi YÖS 2.0 — Retrieving Sender Account Information from HHS in ITO and DTO Consents284043
YÖS ITO and DTO New Consent Creation Services — Removing drmKod Duplication
HHS Payment Order Consent — Incorrect Path Display
VKB - HHS Regular Payment grckTutar Issue
TCMB — Optional Parameter Adjustments in HHS Transactions Service
ClientId Case-Insensitive Matching Issue in MsSQL
SignUp Email Subject Corrupted
Management Portal — System Redirecting User to Change Password Page When Switching Environments
