title: ConsentRequestsIDPutResponseWeb
type: object
description: |
  The object sent in a `PUT /consentRequests/{ID}` request.

  Schema used in the request consent phase of the account linking web flow,
  the result is the PISP being instructed on a specific URL where this
  supposed user should be redirected. This URL should be a place where
  the user can prove their identity (e.g., by logging in).
properties:
  scopes:
    type: array
    minLength: 1
    maxLength: 256
    items:
      $ref: ./Scope.yaml
  authChannels:
    type: array
    minLength: 1
    maxLength: 1
    items:
      $ref: ./ConsentRequestChannelTypeWeb.yaml
  # The callback uri that the user will be redirected to after completing the
  # out of band WEB authentication with the DFSP. Used to allow the DFSP to
  # whitelist the PISP's url ahead of time.
  callbackUri:
    $ref: ./Uri.yaml
  # The callback uri that the pisp app should redirect to for user to complete their
  # login.
  authUri:
    $ref: ./Uri.yaml
  extensionList:
    $ref: ./ExtensionList.yaml
required:
  - scopes
  - authChannels
  - callbackUri
  - authUri
additionalProperties: false