Skip to main content

Error shape

Errors generally return: 
{
  "statusCode": 400,
  "message": "Bad request"
}

Common status codes

  • 400: validation failure, malformed payload, invalid IDs, or business rule failure
  • 401: unauthorized request when a deeper service-level auth check fails
  • 403: missing auth header, invalid token, expired key, or forbidden auth type
  • 404: missing resource
  • 409: conflict
  • 429: throttled request
  • 500: unexpected server error
Missing credentials: 
{
  "statusCode": 403,
  "message": "Authorization header not found - Access Restricted!"
}
Invalid credentials: 
{
  "statusCode": 403,
  "message": "Invalid token - Access Restricted!"
}
Wrong credential type for an endpoint: 
{
  "statusCode": 403,
  "message": "This endpoint does not accept the provided credential type."
}

Integration advice

  • Treat 400 responses as actionable request issues.
  • Retry 429, 502, 503, and 504 with backoff if your workflow is idempotent.
  • Log both the statusCode and message fields from failed responses.