# BBK Proposal [TOC] ## Products ### Banking IDM & Gateway OAuth2 compatible authorization and authentication platform supporting retail and corporate users. And also supporting non-customers such as dealers, potential customers, noname customers etc. * Customizable workflow support for various Strong Customer Authentication (2FA, Mobile Push, Authentication apps) grant flow scenarios * The user can act for himself and on behalf of more than one institution (with scope support) * Psd2 Supported customer(PSU with SCA) and provider(TPP) validation. * API access security with roles and privileges integrated with APISIX® * Allows standards-based integration with applications that support OAuth2 * Supports role-specific API keys, per client configurable claims, consent workflows. * Conforms to industry standard OAuth2 specifications * [RFC 6749: The OAuth 2.0 Authorization Framework](https://www.rfc-editor.org/rfc/rfc6749) * [RFC 6750: OAuth 2.0 Bearer Token Usage](http://tools.ietf.org/html/rfc6750) * [RFC 7519: JSON Web Token (JWT)](https://www.rfc-editor.org/rfc/rfc7519) * [RFC 7636: Proof Key for Code Exchange](https://www.rfc-editor.org/rfc/rfc7636) * [RFC 7662: Token Introspection](http://tools.ietf.org/html/rfc7662) * [RFC 7009: Token Revocation](http://tools.ietf.org/html/rfc7009) * [RFC 8252: OAuth 2.0 for Mobile and Native Apps](http://tools.ietf.org/html/rfc8252) ### Workflow Management Zeebe® and Form.io® powered workflow engine supporting Finite State Machines and Flowchart workflows. For UI, Workflow connected multiplatform frontend is offered to manage all entities in the solutions. Workflow Engine; * Supports combination of state machine and flowchart workflows. * Asynchronous client communication with SignalR® * Role-based Human Task Manager, a repository for human tasks of all workflows. User Interface; * Form.io support for data inputs * Flutter-based mobile, web and desktop support. * Allows full-text and filtered search configuration for entities. * Seamless workflow and form.io integration for creating and modifying records. ### Document and Contact Management It is the subsystem for the process-based creation of physical and digital documents and their approval by users. * Ability to render Plain Text, Html and PDF documents. * Process specific document control set definition and validation. * It is tightly integrated with the workflow management system in document collection and manual control activities. ### Transaction Management It serves to develop standard customer transactions in alternative channels without considering cross-cutting concerns. * Supports two-step (maker/checker, consent/order, simulate/execute) financial transaction scenarios. * Allows multi-factor authentication to be implemented in transactions * It works easily integrated into the real-time fraud control system and can generate actions for additional controls(IVN call for first money transfer to receiver, additional verification factor for phone change). * Dynamically redirects the UI for additional controls (supports mobile and web). ## BBK Implementation ### Internet Banking Service Design In this part of the project, it is aimed to design all banking services(APIs) and schemes based on global standards and to construct the service layer so that they can be consumed by all channels. * The service layer is designed as standards like Psd2, Openbanking.co.uk [FDX](https://financialdataexchange.org), [CDR](https://www.cdr.gov.au) * Shared services such as **Beneficiary Services** are developed. * Flows of financial and non-financial transactions are developed with Workflow Engine and Transaction Management products when necessary. ### Internet Banking IDM and Gateway Integration Three main works are planned in scope. Integration users and their security rights, developing grant flows, developing account center frontend for customers. **Burası anlaşılmıyor 1.madde **Migration için onlardan beklediklerimiz * Integration users and their security rights * Transfer and synchronization integrations of User, Scope and Consent data to Core Banking and other systems * Integrations to control resources and privileges within the gateway * Developing grant flows * Web login authorization flow * Mobile login authorization flow * Password claim and reset flow **Mevcut duruma göre kazanımlar ne açıklanmalı * SSO web site development. Account center for users. (https://account.burgan.com) * Login UI * Password claim and reset UI * Self service API Key issuing UI * Consent management UI ### Document and Contract Management * Integration with Burgan Bank Document Management System ### Business Workflow Development Rebuild existing workflows running on Ultimus BPM using Workflow Engine and improve workflow and user interfaces. Workflows in scope; * Consumer Loans(7 Type) * CRE - New Customer Onboarding * CRE - KYC Update * Credit Card Insurance * Loan Insurance * Future Flows & Modifications