WAX OAuth Errors

OAuth request errors return a standard JSON error response. These error response objects include the following parameters:

Parameter Description
error An error code
error_description A human-readable error message

Example Error Responses

Invalid Bearer Token Response

{
    "error": "invalid_token",
    "error_description": "Bearer token is not valid"
}

Invalid Scope Response

{
    "error": "insufficient_scope",
    "error_description": "You lack the required scope to perform this action"
}

Invalid Refresh Token

{
    "error": "invalid_grant",
    "error_description": "Provided refresh token does not exist, has been revoked, or does not belong to this client"
}

OAuth Error Codes

Error Code Description
invalid_request Your request was not well-formed (e.g. you were missing an input parameter)
invalid_client Your client credentials were incorrect
invalid_grant Your authorization code or refresh token is invalid
unauthorized_client Your OAuth client credentials are not authorized to do what you're trying to do
unsupported_grant_type You're trying to use a grant_type that this server doesn't support
invalid_scope You requested a scope that does not exist or that you aren't entitled to request
insufficient_scope You tried to perform an operation that requires a scope you don't have
access_denied The user denied access to their account
invalid_token The bearer token you tried to use is not valid. Possible error_description messages include:
  • Bearer token is not valid
  • Bearer token has expired
  • Bearer token has been revoked

What's Next