fints-lib
v0.12.0
Published
FinTS client library with psd2 support
Downloads
1,349
Maintainers
larsdeckerReadme
fints-lib
A client library for communicating with FinTS servers.
Note: This is a fork and continuation of Prior99/fints. Published as
fints-libon npm.
⚠️ FinTS 4.1 / FinTS 4.0 – Experimental Support
Experimental — use with caution in production
This library ships a FinTS4Client that implements the FinTS 4.1 XML-based protocol. This support is experimental:
- Most German retail banks use FinTS 3.0. FinTS 4.1 is only deployed by a small number of banks and aggregators. If you are unsure which version your bank uses, start with
PinTanClient. - FinTS 4.0 does not exist as a broadly standardised version. "FinTS 4.x" refers to the XML-based successor family; the only released version of this family is 4.1. Any "4.0" fallback in the negotiation logic is a defensive measure for non-standard server implementations.
- TAN support is partial. Interactive PIN+TAN, chipTAN, and pushTAN challenges are handled via a
tanCallback, but complex multi-step flows (e.g. HHD Flickercode, QR-TAN) may require additional handling on your side. - BPD/UPD parsing applies best-effort heuristics. Different banks use slightly different element names and nesting structures in their XML responses. The parser tries several fallback paths, but previously unseen banks may require additional mapping.
- No write operations.
FinTS4Clientis read-only (accounts, balances, camt statements). Transfers and direct debits are only available inPinTanClient(FinTS 3.0).
Installation
npm install fints-lib
# or
yarn add fints-libQuick Start Examples
FinTS 3.0 — Stable (recommended)
import { PinTanClient } from "fints-lib";
const client = new PinTanClient({
url: "https://banking.example.com/fints",
name: "username",
pin: "12345",
blz: "12345678",
});
const accounts = await client.accounts();
const balance = await client.balance(accounts[0]);
console.log(`Balance: ${balance.value.value} ${balance.value.currency}`);FinTS 4.1 — Experimental (XML-based)
import { FinTS4Client } from "fints-lib";
// ⚠️ Experimental. Most banks still use FinTS 3.0.
const client = new FinTS4Client({
url: "https://banking.example.com/fints41",
name: "username",
pin: "12345",
blz: "12345678",
});
const accounts = await client.accounts();
const balance = await client.balance(accounts[0]);
const statements = await client.camtStatements(accounts[0]);Fetching Transactions (FinTS 3.0)
import { PinTanClient } from "fints-lib";
const client = new PinTanClient({ /* ... */ });
const accounts = await client.accounts();
const startDate = new Date("2024-01-01");
const endDate = new Date("2024-12-31");
const statements = await client.statements(accounts[0], startDate, endDate);
statements.forEach((statement) => {
statement.transactions.forEach((tx) => {
console.log(` ${tx.descriptionStructured?.bookingText}: ${tx.amount} ${tx.currency}`);
});
});Handling login TAN challenges (FinTS 3.0)
Some banks require a TAN as part of the login dialog. When that happens the library raises a TanRequiredError:
import { TanRequiredError, TanProcessStep } from "fints-lib";
try {
const accounts = await client.accounts();
} catch (error) {
if (error instanceof TanRequiredError) {
console.log("TAN Challenge:", error.challengeText);
console.log("Process Step:", error.getStepDescription());
const dialog = await client.completeLogin(error.dialog, error.transactionReference, "123456");
const accounts = await client.accounts(dialog);
await dialog.end();
}
}Interactive TAN via callback (FinTS 4.1 — Experimental)
import { FinTS4Client } from "fints-lib";
import * as readline from "readline";
async function promptTan(challenge: { challengeText?: string; transactionReference: string }): Promise<string> {
const rl = readline.createInterface({ input: process.stdin, output: process.stdout });
return new Promise((resolve) => {
rl.question(`TAN: ${challenge.challengeText ?? ""}\nEnter TAN: `, (tan) => { rl.close(); resolve(tan.trim()); });
});
}
const client = new FinTS4Client({
url: "https://banking.example.com/fints41",
name: "username",
pin: "12345",
blz: "12345678",
tanCallback: promptTan, // invoked automatically when the bank issues a challenge
});
const accounts = await client.accounts();
const statements = await client.camtStatements(accounts[0]);Submitting SEPA credit transfers Submitting SEPA direct debits
Features
- FinTS 3.0 (Stable): Full support for FinTS 3.0 (HBCI 300) — accounts, balances, statements, credit transfers, direct debits
- FinTS 4.1 (Experimental): XML-based protocol — accounts, balances, camt.053 statements, interactive TAN, version negotiation
- Enhanced Error Handling: Comprehensive error code mapping with specific exception types
- Timeout & Retry: Configurable HTTP timeouts and automatic retry with exponential backoff
- Multi-Step TAN Flows: Enhanced support for complex TAN authentication flows
- Parse MT940, camt.052, camt.053 statement formats
- Extract SEPA reference tags from transaction descriptions
Configuration Options
FinTS 3.0 (PinTanClient)
const client = new PinTanClient({
url: "https://example.com/fints",
name: "username",
pin: "12345",
blz: "12345678",
timeout: 45000, // ms, default 30000
maxRetries: 5, // default 3
retryDelay: 2000, // ms, default 1000
debug: true, // logs XML – disable in production
});FinTS 4.1 (FinTS4Client — Experimental)
import { FinTS4Client, createTlsAgent } from "fints-lib";
import fs from "fs";
const client = new FinTS4Client({
url: "https://example.com/fints41",
name: "username",
pin: "12345",
blz: "12345678",
timeout: 45000,
maxRetries: 3,
debug: false,
// Interactive TAN callback (invoked automatically on 0030 challenges):
tanCallback: async (challenge) => promptUser(challenge.challengeText),
// Preferred HBCI version — falls back to "4.0", then "3.0" on rejection:
preferredHbciVersion: "4.1",
// Custom TLS agent for banks with private CA certificates (Node.js only):
fetchOptions: {
agent: createTlsAgent({
ca: fs.readFileSync("/path/to/bank-ca.pem", "utf8"),
}),
},
});Error Handling
import {
FinTSError,
AuthenticationError,
PinError,
StrongAuthenticationRequiredError,
} from "fints-lib";
try {
const accounts = await client.accounts();
} catch (error) {
if (error instanceof PinError) {
console.error("PIN is incorrect:", error.message);
} else if (error instanceof AuthenticationError) {
console.error("Authentication failed:", error.message);
} else if (error instanceof StrongAuthenticationRequiredError) {
console.error("PSD2 strong customer authentication required:", error.message);
} else if (error instanceof FinTSError) {
console.error("FinTS error:", error.code, error.message);
}
}FinTS 4.1 TAN errors
When a FinTS 4.1 server requires a TAN but no tanCallback is configured, a FinTS4TanRequiredError is thrown:
import { FinTS4Client, FinTS4TanRequiredError } from "fints-lib";
try {
const statements = await client.camtStatements(accounts[0]);
} catch (error) {
if (error instanceof FinTS4TanRequiredError) {
console.error("TAN required:", error.challengeText);
// Solution: configure tanCallback in FinTS4Client
}
}Common Use Cases
Check Account Balance
const accounts = await client.accounts();
const balance = await client.balance(accounts[0]);
console.log(`Current Balance: ${balance.value.value} ${balance.value.currency}`);Fetch Recent Transactions
const endDate = new Date();
const startDate = new Date(endDate.getTime() - 30 * 24 * 60 * 60 * 1000);
const statements = await client.statements(accounts[0], startDate, endDate);
statements.forEach((statement) => {
statement.transactions.forEach((tx) => {
console.log(`${tx.amount} ${tx.currency} — ${tx.purpose || ""}`);
});
});Working with Environment Variables (Recommended)
if (!process.env.FINTS_URL || !process.env.FINTS_USERNAME || !process.env.FINTS_PIN || !process.env.FINTS_BLZ) {
throw new Error("Required environment variables are not set");
}
const client = new PinTanClient({
url: process.env.FINTS_URL,
name: process.env.FINTS_USERNAME,
pin: process.env.FINTS_PIN,
blz: process.env.FINTS_BLZ,
debug: process.env.NODE_ENV === "development",
});Submitting a credit transfer
import { PinTanClient, TanRequiredError, CreditTransferRequest } from "fints-lib";
const transfer: CreditTransferRequest = {
debtorName: "John Doe",
creditor: { name: "ACME GmbH", iban: "DE44500105175407324931", bic: "INGDDEFFXXX" },
amount: 100.0,
remittanceInformation: "Invoice 0815",
};
try {
const submission = await client.creditTransfer(account, transfer);
console.log(submission.taskId);
} catch (error) {
if (error instanceof TanRequiredError) {
const submission = error.creditTransferSubmission!;
const completed = await client.completeCreditTransfer(
error.dialog, error.transactionReference, "123456", submission,
);
console.log(completed.taskId);
}
}Submitting a direct debit
import { PinTanClient, TanRequiredError, DirectDebitRequest } from "fints-lib";
const debit: DirectDebitRequest = {
creditorName: "ACME GmbH",
creditorId: "DE98ZZZ09999999999",
debtor: { name: "John Doe", iban: "DE02120300000000202051" },
amount: 42.5,
mandateId: "MANDATE-123",
mandateSignatureDate: new Date("2022-01-10"),
requestedCollectionDate: new Date(),
remittanceInformation: "Invoice 0815",
};
try {
const submission = await client.directDebit(account, debit);
console.log(submission.taskId);
} catch (error) {
if (error instanceof TanRequiredError) {
const submission = error.directDebitSubmission!;
const completed = await client.completeDirectDebit(
error.dialog, error.transactionReference, "123456", submission,
);
console.log(completed.taskId);
}
}Resources
Installation
npm install fints-lib
# or
yarn add fints-libQuick Start Examples
Basic Account Information
import { PinTanClient } from "fints-lib";
// Initialize client with minimal configuration
const client = new PinTanClient({
url: "https://banking.example.com/fints",
name: "username",
pin: "12345",
blz: "12345678",
});
// Fetch all accounts
const accounts = await client.accounts();
console.log(accounts); // List of all accounts
// Get balance for first account
const balance = await client.balance(accounts[0]);
console.log(`Balance: ${balance.value.value} ${balance.value.currency}`);Fetching Transactions
import { PinTanClient } from "fints-lib";
const client = new PinTanClient({
url: "https://banking.example.com/fints",
name: "username",
pin: "12345",
blz: "12345678",
});
const accounts = await client.accounts();
// Fetch transactions for a date range
const startDate = new Date("2024-01-01");
const endDate = new Date("2024-12-31");
const statements = await client.statements(accounts[0], startDate, endDate);
// Process transactions
statements.forEach((statement) => {
console.log(`Statement from ${statement.date}`);
statement.transactions.forEach((tx) => {
console.log(` ${tx.descriptionStructured?.bookingText}: ${tx.amount} ${tx.currency}`);
});
});Handling login TAN challenges
Some banks require a TAN as part of the login dialog. When that happens the library raises a TanRequiredError. The error now includes enhanced information about the TAN process state and context. You can complete the login by submitting the TAN and continue working with the returned dialog:
import { TanRequiredError, TanProcessStep } from "fints-lib";
try {
const accounts = await client.accounts();
} catch (error) {
if (error instanceof TanRequiredError) {
// Enhanced error information
console.log("TAN Challenge:", error.challengeText);
console.log("Process Step:", error.getStepDescription());
console.log("Triggering Segment:", error.triggeringSegment);
console.log("Is Multi-Step:", error.isMultiStep());
// Complete the login with TAN
const dialog = await client.completeLogin(error.dialog, error.transactionReference, "123456");
const accounts = await client.accounts(dialog);
await dialog.end();
}
}Submitting SEPA credit transfers Submitting SEPA direct debits
Features
- FinTS 3.0 Compatibility: Full support for FinTS 3.0 (HBCI version 300) protocol
- Enhanced Error Handling: Comprehensive error code mapping with specific exception types
- Timeout & Retry: Configurable HTTP timeouts and automatic retry with exponential backoff
- Multi-Step TAN Flows: Enhanced support for complex TAN authentication flows
- Load list of accounts.
- Load list of statements and transactions in specified range.
- Fetch current account balances.
- List depot holdings.
- Initiate SEPA credit transfers (pain.001) with TAN handling.
- Submit SEPA direct debit orders (pain.008) with TAN handling.
- Parse statement MT940 format.
- Parse transaction descriptions.
- Extract reference tags from transactions.
- List supported TAN methods.
- Parse basic metadata.
Configuration Options
Basic Configuration
const client = new PinTanClient({
url: "https://example.com/fints",
name: "username",
pin: 12345,
blz: 12345678,
});Advanced Configuration with Timeout & Retry
const client = new PinTanClient({
url: "https://example.com/fints",
name: "username",
pin: 12345,
blz: 12345678,
// Optional: Configure HTTP timeout (default: 30000ms)
timeout: 45000,
// Optional: Configure max retry attempts (default: 3)
maxRetries: 5,
// Optional: Configure retry delay for exponential backoff (default: 1000ms)
retryDelay: 2000,
// Optional: Enable debug mode
debug: true,
});Error Handling
The library now provides comprehensive error handling with specific exception types:
import {
FinTSError,
AuthenticationError,
PinError,
OrderRejectedError,
DialogAbortedError,
StrongAuthenticationRequiredError,
} from "fints-lib";
try {
const accounts = await client.accounts();
} catch (error) {
if (error instanceof PinError) {
console.error("PIN is incorrect:", error.message);
} else if (error instanceof AuthenticationError) {
console.error("Authentication failed:", error.message);
} else if (error instanceof StrongAuthenticationRequiredError) {
console.error("Strong customer authentication (PSD2) required:", error.message);
} else if (error instanceof FinTSError) {
console.error("FinTS error:", error.code, error.message);
}
}Error Code Mapping
All FinTS error codes are now mapped to descriptive messages:
import { formatErrorCode, getErrorCodeInfo } from "fints-lib";
// Get detailed information about an error code
const info = getErrorCodeInfo("9942"); // PIN incorrect
console.log(info.category); // "error"
console.log(info.message); // "PIN falsch"
// Format error code with message
const formatted = formatErrorCode("9942", "Custom message");
// Output: "[9942] PIN falsch - Custom message"Common Use Cases
Check Account Balance
import { PinTanClient } from "fints-lib";
const client = new PinTanClient({
url: process.env.FINTS_URL,
name: process.env.FINTS_USERNAME,
pin: process.env.FINTS_PIN,
blz: process.env.FINTS_BLZ,
});
const accounts = await client.accounts();
// Get balance for a specific account
const balance = await client.balance(accounts[0]);
console.log(`Current Balance: ${balance.value.value} ${balance.value.currency}`);
console.log(`Available: ${balance.availableBalance?.value || "N/A"}`);Fetch Recent Transactions
import { PinTanClient } from "fints-lib";
const client = new PinTanClient({
url: process.env.FINTS_URL,
name: process.env.FINTS_USERNAME,
pin: process.env.FINTS_PIN,
blz: process.env.FINTS_BLZ,
});
const accounts = await client.accounts();
// Get transactions from the last 30 days
const endDate = new Date();
const startDate = new Date(endDate.getTime() - 30 * 24 * 60 * 60 * 1000);
const statements = await client.statements(accounts[0], startDate, endDate);
statements.forEach((statement) => {
console.log(`\nStatement: ${statement.date}`);
statement.transactions.forEach((tx) => {
const booking = tx.descriptionStructured?.bookingText || "Transaction";
const purpose = tx.purpose || "";
console.log(` ${booking}: ${tx.amount} ${tx.currency}`);
if (purpose) console.log(` Purpose: ${purpose}`);
});
});List All Accounts with Details
import { PinTanClient } from "fints-lib";
const client = new PinTanClient({
url: process.env.FINTS_URL,
name: process.env.FINTS_USERNAME,
pin: process.env.FINTS_PIN,
blz: process.env.FINTS_BLZ,
});
const accounts = await client.accounts();
console.log(`Found ${accounts.length} account(s):\n`);
for (const account of accounts) {
console.log(`Account: ${account.accountName || "Unnamed"}`);
console.log(` IBAN: ${account.iban}`);
console.log(` Type: ${account.accountType || "N/A"}`);
console.log(` Number: ${account.accountNumber || "N/A"}`);
try {
const balance = await client.balance(account);
console.log(` Balance: ${balance.value.value} ${balance.value.currency}`);
} catch (error) {
console.log(` Balance: Unable to retrieve`);
}
console.log();
}Working with Environment Variables (Recommended)
import { PinTanClient } from "fints-lib";
// Create client using environment variables for credentials
// Ensure environment variables are set before running
if (!process.env.FINTS_URL || !process.env.FINTS_USERNAME || !process.env.FINTS_PIN || !process.env.FINTS_BLZ) {
throw new Error("Required environment variables are not set");
}
const client = new PinTanClient({
url: process.env.FINTS_URL,
name: process.env.FINTS_USERNAME,
pin: process.env.FINTS_PIN,
blz: process.env.FINTS_BLZ,
debug: process.env.NODE_ENV === "development",
});
// Example .env file:
// FINTS_URL=https://banking.example.com/fints
// FINTS_USERNAME=myusername
// FINTS_PIN=mypin
// FINTS_BLZ=12345678
// NODE_ENV=developmentMissing
Submitting a credit transfer
import { PinTanClient, TanRequiredError, CreditTransferRequest } from "fints-lib";
const client = new PinTanClient({
url: "https://example.com/fints",
name: "username",
pin: 12345,
blz: 12345678,
});
const accounts = await client.accounts();
const account = accounts[0];
const transfer: CreditTransferRequest = {
debtorName: "John Doe",
creditor: {
name: "ACME GmbH",
iban: "DE44500105175407324931",
bic: "INGDDEFFXXX",
},
amount: 100.0,
remittanceInformation: "Invoice 0815",
};
try {
const submission = await client.creditTransfer(account, transfer);
console.log(submission.taskId);
} catch (error) {
if (error instanceof TanRequiredError) {
const submission = error.creditTransferSubmission!;
const completed = await client.completeCreditTransfer(
error.dialog,
error.transactionReference,
"123456",
submission,
);
console.log(completed.taskId);
}
}Submitting a direct debit
import { PinTanClient, TanRequiredError, DirectDebitRequest } from "fints-lib";
const client = new PinTanClient({
url: "https://example.com/fints",
name: "username",
pin: 12345,
blz: 12345678,
});
const accounts = await client.accounts();
const account = accounts[0];
const debit: DirectDebitRequest = {
creditorName: "ACME GmbH",
creditorId: "DE98ZZZ09999999999",
debtor: {
name: "John Doe",
iban: "DE02120300000000202051",
},
amount: 42.5,
mandateId: "MANDATE-123",
mandateSignatureDate: new Date("2022-01-10"),
requestedCollectionDate: new Date(),
remittanceInformation: "Invoice 0815",
};
try {
const submission = await client.directDebit(account, debit);
console.log(submission.taskId);
} catch (error) {
if (error instanceof TanRequiredError) {
const submission = error.directDebitSubmission!;
const completed = await client.completeDirectDebit(
error.dialog,
error.transactionReference,
"123456",
submission,
);
console.log(completed.taskId);
}
}