This endpoint allows the subscriber to enroll an entire bank account within our system. Their bank sends us a secret token that we can use only for a few operations, such as getting available card, transactions, etc.
/account
Fore Example:

In cUrl:

curl –X POST\
URL/account \
-H ‘Content-Type: application/json’\
-H ‘Authorization: Bearer ****’\
-d ‘{“bank”: “citi”}’

And in Python

endpoint = /account
headers = {“Content-Type”: “application/json”, “Authorization”: f”Bearer: {token}”}
payload = {“bank”: “citi”}
resp = requests.post(
url + endpoint,
json=payload,
headers=headers,
)
When this request is sent the API should reply with a JSON response that contains a secure URL
where the subscriber (or their application’s logic must log in).

Note that this is a safe URL that redirects them to their bank’s website. When they log in with
their username and password, their bank does not share this information with us.