Appearance
Are you an LLM? You can read better optimized documentation at /guide/strong-customer-authentication/errors.md for this page in Markdown format
Errors
Find below the codes and messages for SCA-related errors.
Authentication errors
| HTTP | code | message | Description |
|---|---|---|---|
| 400 | authentication_error | The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed. | The SCA proof is missing |
| 403 | sca_forbidden | The authentication requires a valid ScaProof. | The SCA proof is older than 180 days. |
| 400 | authentication_error | The user credentials were incorrect. | No SCA proof recorded during the last 180 days. |
SCA Proof errors
| HTTP | code | message | Description |
|---|---|---|---|
| 500 | sca_error | The SCA wallet does not belong to the user. | |
| 403 | sca_forbidden | Delay between SCA proof and JWT creation is over. | SCA proof has expired. |
| 400 | sca_bad_request | The sca proof is already used. | SCA proofs must be unique. |
| 401 | sca_unauthorized | The SCA proof must come from the same ScaWallet used to generate your JWT. | Mismatch between the SCA wallet and the SCA proof. |
| 403 | sca_forbidden | The ScaWallet must be active and not locked. | |
| 500 | sca_error | The ScaProof is invalid. | Mobile SDK only. The SCA proof is either not properly formatted or not readable. |
| 500 | sca_error | The certificate from sca proof cannot be parsed. | Mobile SDK only. |
| 500 | sca_error | The certificate of the ScaProof is expired. | Mobile SDK only. |
| 500 | sca_error | The identifier of the ScaProof is invalid. | Mobile SDK only. |
| 500 | sca_error | The amr of the ScaProof is invalid. | Mobile SDK only. |
| 500 | sca_error | The sub value of the ScaProof is invalid | Mobile SDK only. |
| 500 | sca_error | The ScaProof signature is invalid | Mobile SDK only. |
| 500 | sca_error | The ScaProof is expired or iat is in the future | Mobile SDK only. |
| 500 | sca_error | No Entrust public keys were retrieved. | Mobile SDK only. |
| 500 | sca_error | The ScaProof certificate cannot be verified. | Mobile SDK only. |
| 500 | sca_error | The ScaProof is invalid. | Web Native only. |
| 500 | sca_error | An error occurred while decrypting the passcode. | Web Native only. |
| 500 | sca_error | The user has no passcode registered. | Web Native only. |
| 500 | sca_error | The passcode is not valid. | Web Native only. |
| 500 | sca_error | The data are not valid. | Web Native only. |
| 500 | sca_error | Unable to load the data | Web Native only. |
| 500 | sca_error | The SCA Wallet is not found | Web Native only. |
| 500 | sca_error | The SCA wallet has no authenticator to validate the SCA proof. | Web Native only. |
| 500 | sca_error | The SCA proof is invalid. | Web Native only. |
Per-operation SCA errors
| HTTP | code | message | Description |
|---|---|---|---|
| 400 | sca_bad_request | The sca field is required. | |
| 401 | sca_unauthorized | The sca proof is invalid. | |
| 400 | sca_bad_request | The sca proof amr is invalid. | |
| 400 | sca_bad_request | The sca proof is invalid. | The SCA proof message URL is missing. |
| 400 | sca_bad_request | The message in the sca proof is invalid. | The SCA proof message body is missing or not readable. |
| 400 | sca_bad_request | The message in the sca proof is invalid. | The SCA proof message is not valid. |
Per-session SCA errors
| HTTP | code | message |
|---|---|---|
| 403 | sca_forbidden | The ScaWallet must be active and not locked. |
| 401 | sca_session_expired | Your session has expired. |
SCA Wallet errors
| HTTP | code | message | Description |
|---|---|---|---|
| 400 | input_validation_error | webauthn is invalid. | Web Native only. |
| 400 | input_validation_error | passcode is invalid. | Web Native only. |
| 400 | input_validation_error | The password must be at least 6 characters | Web Native only. |
| 400 | functional_error | The maximum number of scaWallets is reached | |
| 400 | input_validation_error | The passcode is already defined. | Web Native only. |
| 400 | input_validation_error | The maximum number of scaWallets is reached for userId {userId}. | |
| 400 | functional_error | The sca field is required. | |
| 400 | functional_error | The ScaWallet is deleted. | When attempting to lock the SCA Wallet. |
| 400 | input_validation_error | The ScaWallet is already locked. | |
| 403 | functional_error | The user {userId} is not authorized. | |
| 403 | authorization_error | Forbidden access for the current scope | |
| 404 | resource_not_found_error | The resource was not found | The SCA Wallet not found |
| 400 | input_validation_error | The ScaWallet is already unlocked. | |
| 400 | input_validation_error | The ScaWallet is deleted. | When attempting to unlock or delete the SCA Wallet. |
| 400 | unexpected_error | The wallet with identifier {walletId} is not active. | |
| 400 | input_validation_error | The new passcode and confirm passcode do not match. | |
| 400 | input_validation_error | The user has no passcode defined. | |
| 400 | input_validation_error | The ScaWallet is already deleted. | When attempting to swap SCA Wallets. |
External Operation errors
| HTTP | code | message |
|---|---|---|
| 400 | functional_error | ResourceIds is required |
| 400 | input_validation_error | The resource ids field is required when action name is externalGetStatement. |
| 400 | functional_error | Update of {actionName} is not allowed |
| 400 | input_validation_error | The following resource are already saved : {resource_id} |