3.2.2.2. General procedure

Establishing a connection

The phases of establishing a connection are as follows:

Phase	Description
1	The client connects to the Deutsche Bundesbank’s ExtraNet by calling up a URL in the following format: https://extranet.bundesbank.de/<Application name>/<Resource>[?Parameter] The server uses a certificate created by the root CA of a public certification authority. Note: HTTPS (TLS 1.2) is the only protocol that may be used.
2	The client receives a cookie with the following name: PD-S-SESSION-ID Caution: The cookie is valid for a maximum of 240 minutes during an active session and a maximum of 30 minutes during an inactive session. After this time, new authentication is required.
3	A login form is transmitted to the client. The client must enter their user ID and password and send the form back to the server with the parameter login-form-type=pwd. Note: For automated access, the variables“user name”and“password”are to be filled in and transmitted by POST request to the following URL: https://extranet.bundesbank.de/pkmslogin.form
4	After successful authentication, the client receives cookies with the following names: PD-ID PD_STATEFUL_<variable>
5	If access is granted, the originally requested application resource (Phase 1) is delivered.

Note: It is important that all cookies transmitted to the client are transmitted to the server with each subsequent request.

Servlet call-up and parameter passing

The phases of servlet call-up and parameter passing are as follows:

Phase	Description
1	A connection to the desired servlet is established using the URL indicated.
2	The required parameters are sent to the servlet as a string (e.g. “parameter x = value y”) via the output data stream (a POST request) of this connection.
3	The servlet’s response is read via the input data stream of the connection.
4	The content of the input data stream is evaluated in accordance with the format used.

Evaluating the servlet’s response

The servlet’s response is evaluated as follows:

Phase	Description
1	The called-up servlet returns a response in the form of an XML page to the caller. This response can be evaluated with the help of an XML parser.
2	To evaluate the answer, the input stream of the servlet connection can be transmitted directly to the parser.

Phase

Description

The called-up servlet returns a response in the form of an XML page to the caller.

This response can be evaluated with the help of an XML parser.

To evaluate the answer, the input stream of the servlet connection can be transmitted directly to the parser.