oauth
OAuth 2.0 / OpenID Connect Errors
Error codes returned in the error field of OAuth 2.0 and OpenID Connect error responses from authorisation servers.
19 codes
· All codes 19 codes
- access_denied Access Denied The resource owner or authorisation server denied the request. The user declined to grant the requested permissions.
- account_selection_required Account Selection Required The end-user must select a session or account at the authorisation server. Returned when prompt=none is requested but multiple sessions exist.
- consent_required Consent Required The authorisation server requires end-user consent. Returned when prompt=none is requested but the user has not previously consented.
- interaction_required Interaction Required The authorisation server requires end-user interaction. Returned when the prompt=none parameter is used but the request cannot be completed without user interaction.
- invalid_client Invalid Client Client authentication failed. The client is unknown, no authentication was provided, or the authentication method is unsupported.
- invalid_grant Invalid Grant The authorisation code, refresh token, or resource owner credentials are invalid, expired, revoked, or do not match the redirect URI used in the authorisation request.
- invalid_request Invalid Request Request is missing a required parameter, includes an unsupported parameter value, contains a duplicate parameter, or is otherwise malformed.
- invalid_request_object Invalid Request Object The request parameter contains an invalid JWT. The request object may be malformed, have an invalid signature, or contain unsupported claims.
- invalid_request_uri Invalid Request URI The request_uri in the authorisation request returns an error or contains invalid data. The URI may have expired or returned a malformed JWT.
- invalid_scope Invalid Scope The requested scope is invalid, unknown, malformed, or exceeds the scope granted by the resource owner.
- login_required Login Required The authorisation server requires end-user authentication. Returned when prompt=none is requested but the user is not authenticated.
- registration_not_supported Registration Not Supported The authorisation server does not support dynamic client registration as required by the request.
- request_not_supported Request Not Supported The authorisation server does not support the use of the request parameter.
- request_uri_not_supported Request URI Not Supported The authorisation server does not support the use of the request_uri parameter.
- server_error Server Error The authorisation server encountered an unexpected condition that prevented it from fulfilling the request. Analogous to HTTP 500.
- temporarily_unavailable Temporarily Unavailable The authorisation server is temporarily unable to handle the request due to overload or scheduled maintenance. Analogous to HTTP 503.
- unauthorized_client Unauthorised Client The authenticated client is not authorised to use this authorisation grant type.
- unsupported_grant_type Unsupported Grant Type The authorisation grant type is not supported by the authorisation server.
- unsupported_response_type Unsupported Response Type The authorisation server does not support the requested response_type value.