documentation/content/en/entities/Error.md

---
title: Error
description: Represents an error message.
menu:
  docs:
    parent: entities
aliases: [
	"/entities/error",
	"/entities/Error",
  "/api/entities/error",
	"/api/entities/Error",
]
---

## Example

```json
{
  "error": "invalid_grant",
  "error_description": "The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client."
}
```

{{< hint style="info" >}}
**The most important part of an error response is the HTTP status code.** Standard semantics are followed. The body of an error is a JSON object containing more information, if available.
{{< /hint >}}

## Attributes

### `error` {#error}

**Description:** The error message.\
**Type:** String\
**Version history:**\
0.6.0 - added

### `error_description` {{%optional%}} {#error_description}

**Description:** A longer description of the error, mainly provided with the OAuth API.\
**Type:** String\
**Version history:**\
0.6.0 - added

## Possible reasons {#reasons}

### 400 - Bad request

#### ParameterMissing {#parameter-missing}

Error: {string}. Appears when a required parameter is missing from the API call.

### 401 - Unauthorized {#401}

#### require_authenticated_user! {#auth}

Error: This API requires an authenticated user. Appears when the instance is in secure mode, which disables all public use of API methods.

### 403 - Forbidden {#403}

#### NotPermitted {#not-permitted}

Error: This action is not allowed. Appears when trying to call a method that you do not have permission for (such as admin or staff methods), or performing actions you are not allowed to do (such as following a user that blocks you).

#### current_user.disabled? {#disabled}

Error: Your login is currently disabled. Appears when the OAuth token's authorized user has had their account disabled by a moderator.

#### !current_user.confirmed? {#unconfirmed}

Error: Your login is missing a confirmed e-mail address. Appears when the email address associated with the OAuth token's authorized user's account has not yet been confirmed.

#### !current_user.approved? {#unapproved}

Error: Your login is currently pending approval. Appears when the OAuth token's authorized user has signed up on an instance with approval-required registrations, and the user has not yet had their account approved by a moderator.

### 404 - Not found {#404}

#### RecordNotFound {#not-found}

Error: Record not found. Appears when an entity record does not exist, or the authorized user is not within the audience of a private entity.operates on a user.

### 422 - Unprocessable entity {#422}

#### RecordInvalid {#invalid}

Error: {string}. May appear when entity creation failed.

#### RecordNotUnique {#not-unique}

Error: Duplicate record. Appears when you are trying to pin an account or status that is already pinned.

#### !current_user {#user-required}

Error: This method requires an authenticated user. Appears when using an OAuth token without an authorized user (or no token at all), while trying to call an API method that requires a user to be processed.

### 429 - Too many requests {#429}

Error: {translated string}. Appears when you have exceeded the rate limit. See [Rate limits]({{< relref "api/rate-limits" >}}) for more information.

### 503 - Remote service unavailable {#503}

#### UnexpectedResponseError {#unexpected-response}

Error: Remote data could not be fetched. Appears when Mastodon calls a remote service (such as WebFinger from another instance) which returns an error.

#### SSLError {#ssl}

Error: Remote SSL certificate could not be verified. Appears when a remote service is called, but it has an invalid SSL certificate.

#### NetworkingError {#networking-error}

Error: There was a temporary problem serving your request, please try again. Appears when there was a failed call to an S3 storage server.

#### RaceConditionError {#race-condition}

Error: There was a temporary problem serving your request, please try again. Appears when there was an error due to a race condition in server-side code.

## See also

{{< caption-link url="https://github.com/mastodon/mastodon/blob/master/app/controllers/api/base_controller.rb" caption="app/controllers/api/base_controller.rb" >}}
Update content for 4.0 (part 1) (#991) * add rules * join date on profiles * deprecate follow scope * deprecate identity proofs * familiar followers * use definition lists instead of tables for defining activitypub properties * reformat notifications page into markdown * fix broken links to publicKey header * Application website is now nullable * update environment variables added and removed * fix typo * fix heading level * min_id and max_id can be used at the same time (3.3) * fix typo * new tootctl options * reformat tootctl page to use definition lists for params * add rules and configuration to Instance * fix typo * refactor instance api page * 3.3.0 duration on mutes * 3.3.0 mute_expires_at * improve section headings * 3.4.0 resend email confirmation api * 3.4.0 policy on push subscriptions * 3.4.0 add details to account registration error * refactor accounts api page and start adding relrefs to entity pages * 3.4.0 accounts/lookup api * add see also to accounts methods * add more see-also links * 3.5.0 appeal mod decisions * 3.5.0 reformat reports and add category/rule_ids params * document report entity and missing responses * fix typos * fix relrefs and url schema, add aliases to old urls * add archetypes for new methods/entities * update archetypes with see-also stubs * clearer presentation of rate limits * announcements api methods * refactor apps methods * refactor bookmarks methods + some anchors * refactor conversations methods * custom_emojis methods refactor * anchors * refactor directory methods * refactor domain_blocks methods * add see also to emails methods * fix page relref shortcodes to specific methods + refactor endorsements methods * min_id max_id * refactor favourites methods * refactor featured_tags methods * refactor filters methods, make path params consistent, i18n required shortcode * follow_requests methods * lists methods * markers methods * forgot to add entity links * media methods, also fix formatting of some json errors * mutes methods, add more see-also links * oembed methods * preferences methods * proofs methods * push methods * suggestions methods * 3.5.0 add new trend types, fix formatting * refactor streaming methods * refactor oauth methods * note that streaming api casts payload to string * refactor search methods * refactor polls methods * remove unnecessary link * reformat scheduled_statuses methods * reformat timelines methods * reformat statuses methods * 3.5.0 editing statuses * consistent use of array brackets in form data parameters * update dev setup guide, add vagrant and clean up text * add admin/accounts methods * 3.6 role entity * admin/accounts methods v2 * minor fix * stub admin/reports methods * document admin reports * add 403 example to methods archetype * cleanup entities for admin reports and add new attrs * 3.6.0 domain allows methods + normalize admin entity namespace * fix search-and-replace error * add aliases for admin entities * 3.6.0 canonical email blocks entity * 3.5.0 admin/retention api * 3.5.0 add admin::ip doc * 3.5.0 admin/reports * 3.6.0 admin/domain_allows * 3.5.0 admin/dimensions * 3.6.0 permissions and roles * minor formatting fix * add anchor link to headings * checkpoint * add update commands to dev env setup guide * change mentions of v3.6 to v4.0 * tootctl now uses custom roles * fix formatting * v2 instance api * update frontmatter, add better titles to pages * minor wording change * consistency * add more aliases * add placeholders and WIP notices * explain link pagination and stub out todos * switch baseURL to https * 422 on reports with rules but category!=violation * document bug fixes * fix typo * remove duplicate API method definition * s/tootsuite/mastodon for github links * remove unnecessary escaping * s/tootsuite/mastodon in Entity archetype * add missing nullable shortcode * clarify oauth scope when requesting a user token * api/v2/media now synchronous for images * DISALLOW_UNAUTHENTICATED_API_ACCESS * add undocumented env variables * add instance domain blocks and extended description api * add SMTP_ENABLE_STARTTLS * add description to SMTP_ENABLE_STARTTLS * take suggestions from open PRs * normalize links and flavour language * Fully document streaming API based on source code * Add mention of MIME types * bump to ruby 3.0.4 * clarify how to check on async media processing * validation of replies_policy * remove TODOs on admin account action * EmailDomainBlocks * IpBlocks * Admin::DomainBlock * remove TODOs * following hashtags * followed_tags * remove reference to unused parameter * add new oauth scopes for admin blocks and allows * fix command signature for i18n-tasks normalize * reformat code structure page * document fixes for following tags (assume 4.0.3) * Add warning about pre-4.0 hardcoded roles * add note about case sensitivity * remove use of 'simply' from docs * remove reference to silencing * add reference to IDN normalization for verified links * add lang parameter 2022-11-20 07:34:38 +01:00			`---`
			`title: Error`
			`description: Represents an error message.`
			`menu:`
			`docs:`
			`parent: entities`
			`aliases: [`
			`"/entities/error",`
			`"/entities/Error",`
			`"/api/entities/error",`
			`"/api/entities/Error",`
			`]`
			`---`

			`## Example`

			```json
			`{`
			`"error": "invalid_grant",`
			`"error_description": "The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client."`
			`}`
			```

			`{{< hint style="info" >}}`
			`The most important part of an error response is the HTTP status code. Standard semantics are followed. The body of an error is a JSON object containing more information, if available.`
			`{{< /hint >}}`

			`## Attributes`

			### `error` {#error}

			`Description: The error message.\`
			`Type: String\`
			`Version history:\`
			`0.6.0 - added`

			### `error_description` {{%optional%}} {#error_description}

			`Description: A longer description of the error, mainly provided with the OAuth API.\`
			`Type: String\`
			`Version history:\`
			`0.6.0 - added`

			`## Possible reasons {#reasons}`

			`### 400 - Bad request`

			`#### ParameterMissing {#parameter-missing}`

			`Error: {string}. Appears when a required parameter is missing from the API call.`

			`### 401 - Unauthorized {#401}`

			`#### require_authenticated_user! {#auth}`

			`Error: This API requires an authenticated user. Appears when the instance is in secure mode, which disables all public use of API methods.`

			`### 403 - Forbidden {#403}`

			`#### NotPermitted {#not-permitted}`

			`Error: This action is not allowed. Appears when trying to call a method that you do not have permission for (such as admin or staff methods), or performing actions you are not allowed to do (such as following a user that blocks you).`

			`#### current_user.disabled? {#disabled}`

			`Error: Your login is currently disabled. Appears when the OAuth token's authorized user has had their account disabled by a moderator.`

			`#### !current_user.confirmed? {#unconfirmed}`

			`Error: Your login is missing a confirmed e-mail address. Appears when the email address associated with the OAuth token's authorized user's account has not yet been confirmed.`

			`#### !current_user.approved? {#unapproved}`

			`Error: Your login is currently pending approval. Appears when the OAuth token's authorized user has signed up on an instance with approval-required registrations, and the user has not yet had their account approved by a moderator.`

			`### 404 - Not found {#404}`

			`#### RecordNotFound {#not-found}`

			`Error: Record not found. Appears when an entity record does not exist, or the authorized user is not within the audience of a private entity.operates on a user.`

			`### 422 - Unprocessable entity {#422}`

			`#### RecordInvalid {#invalid}`

			`Error: {string}. May appear when entity creation failed.`

			`#### RecordNotUnique {#not-unique}`

			`Error: Duplicate record. Appears when you are trying to pin an account or status that is already pinned.`

			`#### !current_user {#user-required}`

			`Error: This method requires an authenticated user. Appears when using an OAuth token without an authorized user (or no token at all), while trying to call an API method that requires a user to be processed.`

			`### 429 - Too many requests {#429}`

			`Error: {translated string}. Appears when you have exceeded the rate limit. See [Rate limits]({{< relref "api/rate-limits" >}}) for more information.`

			`### 503 - Remote service unavailable {#503}`

			`#### UnexpectedResponseError {#unexpected-response}`

			`Error: Remote data could not be fetched. Appears when Mastodon calls a remote service (such as WebFinger from another instance) which returns an error.`

			`#### SSLError {#ssl}`

			`Error: Remote SSL certificate could not be verified. Appears when a remote service is called, but it has an invalid SSL certificate.`

			`#### NetworkingError {#networking-error}`

			`Error: There was a temporary problem serving your request, please try again. Appears when there was a failed call to an S3 storage server.`

			`#### RaceConditionError {#race-condition}`

			`Error: There was a temporary problem serving your request, please try again. Appears when there was an error due to a race condition in server-side code.`

			`## See also`

			`{{< caption-link url="https://github.com/mastodon/mastodon/blob/master/app/controllers/api/base_controller.rb" caption="app/controllers/api/base_controller.rb" >}}`