20th June 2018
We have now successfully tested all HMRC API’s
We are using HMRC’s generated test data which is working well
We are now progressing with our own database design to accommodate the new workflow
For those going through the same process, our more detailed summary can be seen below

Types of API endpoints in MTD:

  1. unrestricted endpoint
  2. application-restricted
  3. user-restricted

Application-restricted endpoint follows OAuth protocol to do two step verification, from that you can retrieve an access_token (expired in 4 hours) to access the API.

Step 1: Request authorisation (GET)

Step 2: (POST) Receive authorisation results from redirection UR & get authorisation code then request for access_token