# AIS Upload Session Initiation POST /partner/v3/shops/:shopUuid/account-statements/initiate-retrieval Once the customer selects a bank, the AIS upload session can be started using the POST /api/partner/v3/shops/:shopUuid/account-statements/initiate-retrieval API request. The response includes the redirect URL to which the customer should be forwarded to complete the AIS upload process. Once that process is complete, the customer will be redirected back to your site, to the return URL you have indicated in the request body. To learn the new decision which the application has received after the AIS upload and processing, the GET /partner/v3/shops/:shopUuid/applications/:applicationUuid endpoint needs to be polled until there is a new decisionStatus. The usual processing time is within 1 working day. Endpoint: POST /partner/v3/shops/{shopUuid}/account-statements/initiate-retrieval Security: bearerAuth ## Path parameters: - `shopUuid` (string, required) The unique identifier of the shop. Example: "a93f1f44-d5dd-4469-bfcc-c1de9e969213" ## Request fields (application/json): - `applicationUuid` (string, required) The application for which the AIS upload session is being started. The credit application UUID is included in the response to the POST /application request which submits the credit application to Inbank. Example: "42c939bc-1111-2222-3333-b84fea5b86f6" - `returnUrl` (string, required) The URL to which the customer should be redirected back after the AIS upload process is complete. Example: "https://test.com" - `bankId` (string, required) The ID of the bank selected by the customer for the AIS upload process. The IDs are included in the response to the GET /account-statements/bank-list request. Example: 24 - `locale` (string, required) The locale which will be used in the AIS upload process. Available options: et, lv, lt, pl, cz, ru. Example: "en" ## Response 201 fields (application/json): - `retrievalId` (string) Retrieval ID. Example: "b7cfdbc3-1111-2222-3333-6c42b60129b8" - `redirectUrl` (string) Redirect URL. Example: "https://ob.nordigen.com/psd2/start/1e2d261a2d9d/SWEDBANK" ## Response 401 fields (application/json): - `message` (string) Unauthorized Example: "unauthorized" ## Response 403 fields (application/json): - `message` (string) Unauthorized access Example: "User is not authorized to access this resource with an explicit deny" ## Response 404 fields (application/json): - `message` (string) Not Found Example: "not_found" ## Response 500 fields (application/json): - `message` (string) Internal server error Example: "internal_server_error"