Quickstart (AXA Partners Developers)

Credit & Lifestyle Protection Quickstart

Everything you need to easily consume our APIs

Overview

Through our API's we seek to deliver an outstanding partnership experience for our channel partners (ease of integration, customer & developer experience and performance) to ensure that AXA Partners CLP remains your partner of choice for B2B2C insurance solutions. Although we have sample swaggers available to view, the final partner swagger will be shared in line with agreed project planning and prioritisation.

The AXA REST API provides programmatic access to read and write AXA data. Key aspects of AXA CLP API's include:

Resources: These are the key abstractions in REST API's, represented by URL's. Clients interact with resources using standard HTTP methods such as GET, POST, PUT, DELETE.

GET - to read a specific item
POST - to create a new item
PUT - to cancel/amend an existing item
DELETE – to delete an existing item

Request and Response Formats: The API accepts and returns data in JSON format. All requests should include the "Content-Type: application/json" header, and responses will also be in JSON format.

Stateless Communication: Each request from a client to the API must contain all the information necessary to fulfil the request. The server does not keep any client state between requests.

Error Handling: In the event of an error, the API will return an appropriate HTTP status code along with a JSON error object containing details about the encountered issue.

Security: Our Security protocols are governed by our Chief Security Officer and incorporate 3 core concepts:

Confidentiality: information is only made available or disclosed to authorized individuals, entities, or processes
Integrity: information is accurate and complete
Availability: information is accessible and usable on demand by an authorized entity

These principles are built into every level of our design and our project development lifecycle. Our APIs incorporate OAuth 2.0 authentication meaning that only authorised entities can connect to our API. Every transaction is secured by private API keys and session tokens as well as data encryption.

More details on Authentication can be found here.

You can begin integration by viewing our range of API's here.