Guides
Application DashboardSystem Status
Start typing to search…

Getting started with Account-on-file Payments

Pay by bank solution supporting variable value end user and merchant initiated payments ideal for loan collections, faster return deposit and frequently returning checkout use cases.

Overview

Account-on-file Payments enable you to initiate payments on behalf of your customers using long-lived authorisation. Once a customer grants consent through their bank, you can initiate multiple payments on demand within the approved limits, without requiring the customer to re-authorise each payment.

This model is designed for repeat or ongoing payments, such as express checkout, deposits, or collections.

Prerequisites

  1. Configured application for Open Finance
  2. Created a Payment Destination
  3. Created a Customer

How it works

The Account-on-file payment flow consists of the following steps:

  1. Create an Account-on-file consent that defines the permitted limits and parameters for future payments.
  2. Use LinkSDK to guide the customer through consent review and redirect them to their bank for authorisation.
  3. Initiate payments programmatically using backend-to-backend API calls, within the scope of the authorised consent.
  4. Receive real-time payment and consent status updates via webhooks.


Account-on-file flow diagram

sequenceDiagram
    autonumber
    actor C as Customer
    participant APP as Your app (frontend)
    participant SDK as Lean LinkSDK
    participant BE as Your backend
    participant LEAN as Lean API

    %% 1) Create consent (backend-to-backend)
    rect rgba(255,255,255,0.1)
    Note over BE,LEAN: 1) Create an Account-on-file consent
    BE->>+LEAN: POST /consents/account-on-file
    LEAN-->>-BE: 200 OK (consent_id)
    end

    %% 2) Authorise consent (LinkSDK + bank redirect)
    rect rgba(245,255,255,0.1)
    Note over APP,SDK: 2) Authorise the consent via LinkSDK
    APP->>SDK: authorizeConsent(consent_id)
    SDK-->>C: Show consent review screens
    Note over C,LEAN: Customer is redirected to their bank to authorise consent
    Note over APP,SDK: Capture the redirect back to your app
    APP->>SDK: captureRedirect()
    SDK-->>C: Show consent authorisation result
    end

    %% 3) Initiate payments (backend-to-backend) within consent scope
    rect rgba(255,255,255,0.1)
    Note over BE,LEAN: 3) Initiate payments
    BE->>+LEAN: POST /payments/account-on-file
    LEAN-->>-BE: 200 OK (payment_id)
    end

    %% 4) Webhooks (payment updates)
    rect rgba(255,255,255,0.1)
    Note over LEAN,BE: 4) Receive payment status updates
    LEAN-->>BE: Webhook: [payment.created, payment.updated]
    end
    
    %% 4) Webhooks (consent updates can arrive anytime after creation/authorisation)
    rect rgba(255,255,255,0.1)
    Note over LEAN,BE: 4) Receive consent status updates
    LEAN-->>BE: Webhook: [consent.status.updated]
    end

Updated 3 days ago

What’s Next