Enable Bank ID in your services
The Finnish Bank ID consists of a set of Finnish banks. These are:
- Danske Bank
- POP Pankki
- Oma Säästöpankki
Bank ID specific implementation
To create a sign order with authentication-based signing, please have a look at the
authentication-based signing page. Note: To find the SSN of a signer, read
The Bank ID specific values are listed in the table below:
|AuthenticationID||This element can be used to indicate that Bank ID is one of the eID's the signer can sign with. ||fi_tupas|
The SignerID element can specify which user that shall sign the document.
IDValue: The SSN value.
|forcepkivendor||The forcepkivendor parameter can be used to point the user directly to this eID.
Read more about forcepkivendor. ||abs:fi_tupas|
SDO seal and customer signature
To seal signed documents (SDOs) and to enable merchant signing for customer using Bank ID, a certificate will be created for the purpose. This certificate will be issued from a Nets internal utility CA and will be added during customer on-boarding.
To use the merchant signing feature with this certificate for some or all of your documents, add the below to your sign order:
Handling of SSN
The SSN will be incorporated as the subject serial number in the signing certificate and included as a part of the SDO if this has been a part of the authentication response. This may however differ from bank to bank. It also requires that the customer are allowed to get SSN in return.
How to find the SSN?
The SSN of a signer can be fetched from E-Signing using the
GetSignature call. This requires that the SignerID was set in the sign order. The SSN is returned in the SignerID / IDValue element of the response.
Use the GetSDODetails function to inspect the content of the SDO and return the SSN. For Bank ID this can be found in the UniqueId element in SDOSignature / SignerCertificateInfo.
See the SDOSignatures element.
Direct the user directly to a bank - skip step 2
The "Step 2" page where the user select the bank to sign with can be skipped if you already know which bank the user will sign with. This can be done by appending the forcebank parameter to the sign URL. Read more about the different sign URL parameters.
Document types and sizes
The following document formats are supported using Bank ID:
The size limit of a document is set to 5 MB base64 encoded document. An encoded document adds approximately 30 % extra to a non-encoded document.