Skip to main content

[403] Forbidden

Access to resource is forbidden as the authorization provided either has wrong scope or environment.

Invalid access scope

access token can't be used to access the particular resource, check access scope for the given token.

note

Check the JWT token scope claims to ensure they include the necessary permissions for this endpoint. Use jwt.io to decode and inspect your token.

If in doubt, inspect the returned JWT token using jwt.io.

Depending on the service, the JWT token should look something like this:

{
  "scope": [
    "account_info",
    "account_owner",
    "account_transactions"
  ],
  ...
  "channel": "api",
  "environment": "sandbox",
  ...
  "iat": 1717758436,
  "exp": 1717762036
}

Invalid access environment

The access token was issued for a different environment (e.g., sandbox vs production)
Sanbox access is not possible / not supported for given resource

note

Ensure your API credentials and access token match the target environment. Sandbox tokens cannot be used in production and vice versa.

Domain not allowed

origin header / domain is not whitelisted.

Either request comes from an unknown domain or domain needs to be whitelisted.

Invalid access scope
Invalid access environment
Domain not allowed