OAuth error codes
When the third-party application makes an invalid request to Magento, the following OAuth-related errors can occur:
| HTTP code | Error code | Text representation | Description |
|---|---|---|---|
| 400 | 1 | version_rejected |
The oauth_version parameter does not correspond to the “1.0” value. |
| 400 | 2 | parameter_absent |
A required parameter is missing in the request. The name of the missing parameter is specified additionally in the response. |
| 400 | 3 | parameter_rejected |
The type of the parameter or its value do not meet the protocol requirements (for example, array is passed instead of the string). |
| 400 | 4 | timestamp_refused |
The timestamp value in the oauth_timestamp parameter is incorrect. |
| 401 | 5 | nonce_used |
The nonce-timestamp combination has already been used. |
| 400 | 6 | signature_method_rejected |
The signature method is not supported. The following methods are supported: HMAC-SHA1. |
| 401 | 7 | signature_invalid |
The signature is invalid. |
| 401 | 8 | consumer_key_rejected |
The Consumer Key has incorrect length or does not exist. |
| 401 | 9 | token_used |
An attempt of authorization of an already authorized token or an attempt to exchange a not temporary token for a permanent one. |
| 401 | 10 | token_expired |
The temporary token has expired. At the moment, the mechanism of expiration of temporary tokens is not implemented and the current error is not used. |
| 401 | 11 | token_revoke |
The token is revoked by the user who authorized it. |
| 401 | 12 | token_rejected |
The token is not valid, or does not exist, or is not valid for using in the current type of request. |
| 401 | 13 | verifier_invalid |
The confirmation string does not correspond to the token. |