Chapter 8. OAuth Error Codes

Refer to the following error codes and explanations when troubleshooting problems that relate to OAuth:

  • 400 Error: Bad Request. You omitted a required parameter or Yahoo couldn't make sense of a parameter you supplied. Maybe it was a unrecognized User token or perhaps a location Yahoo couldn't make sense of.
    • version_rejected: You used a version of OAuth used is not supported.
    • parameter_absent: Your request has a missing parameter. If all parameters are present, a common reason for this error is typos in the Authorization header. Check for spelling errors, misplaced single/double quotes. etc. Remember that each OAuth Protocol parameter value must to be enclosed in double quotes.
    • parameter_rejected: You sent a duplicate parameter in your request.
    • timestamp_refused: The timestamp provided is invalid (either it doesn't have the right format, or it's out of the acceptable window).
    • nonce_used: The nonce received is not acceptable.
    • signature_method_rejected: The signature method used is unsupported.
    • signature_invalid: The signature provided does not match the one calculated by the service.
    • consumer_key_unknown: The consumer key provided is unsupported.
    • token_expired: The access token provided is valid, but has expired.
    • token_rejected: The access token provided does not have the right format
    • additional_authorization_required: The access token does not have the correct access scopes.
    • permission_denied: The access session handle (ASH) has expired or is invalid. This error usually occurs when refreshing the Access Token.
  • 401 Error: Unauthorized. This error is normally caused by a problem with the OAuth parameters attached to your request. The OAuth signature or OAuth Verifier may be incorrect or one of the tokens is in a bad state (e.g. you used a request token instead of an access token).
  • 403 Error: Forbidden. Your User hasn't granted your application permission to complete the requested operation (or maybe the User's account has been temporarily suspended).
  • 500 Error: Internal Error. An internal error within Yahoo occurred. Please let us know if this error persists.
  • 501 Error: Unsupported HTTP Method. You are using an unsupported HTTP method.

Table of Contents