# Endpoint error codes

# Authorization endpoint errors

The following error codes may occur in the response of the Authorization endpoint:

If the user cannot complete the login successfully, the error and error_description parameters are appended to the redirect URL. The redirect URL is then called automatically.

Example redirect URL from Demo Auth:

https://demo-auth.doccheck.com/login_check_oauth?error=R0100_PROFESSION_NOT_ALLOWED&error_description=Your+profession+Dentist+is+not+allowed+for+this+login.+Allowed+professions+are%3A+Physician%2C+Industry+%2F+agency+employee

# Error codes – Authorization endpoint

Constant	Error code	Description
`PROFESSION_NOT_ALLOWED`	`R0100_PROFESSION_NOT_ALLOWED`	Your profession `{user_profession}` is not allowed for this login. Allowed professions are: `{available_professions}`
`USER_NOT_VERIFIED`	`R0050_USER_NOT_VERIFIED`	You need to upload a professional verification to access this application.
`USER_EMAIL_NOT_ACTIVATED`	`R0080_USER_EMAIL_NOT_ACTIVATED`	You need to activate your email address to access this application.
`USER_EMAIL_DOMAIN_CHECK_FAILED`	`R00XX1_USER_EMAIL_DOMAIN_CHECK_FAILED`	Your email address is not allowed for this application (email domain).
`USER_IP_CHECK_FAILED`	`R00XX2_USER_IP_CHECK_FAILED`	Access to this application could not be granted based on your IP address.
`TEST_USER_SCOPE_DOES_NOT_MATCH`	`R00XX3_TEST_USER_SCOPE_DOES_NOT_MATCH`	The Test-User is not allowed for this application.
`COMPANY_PASSWORD_SCOPE_DOES_NOT_MATCH`	`R1002_COMPANY_PASSWORD_SCOPE_DOES_NOT_MATCH`	The company password is not allowed for this application.
`INVALID_PROFESSION_ID`	`R0200_INVALID_PROFESSION_ID`	The profession ID is invalid.
`TEST_USER_EXPIRED`	`R3001_TEST_USER_EXPIRED`	The Test-User is no longer valid.
`COMPANY_PASSWORD_EXPIRED`	`R3000_COMPANY_PASSWORD_EXPIRED`	The company password is no longer valid.

# Access token endpoint errors

The following error codes may occur in the response of the Access token endpoint:

# Example error scenarios – Access token endpoint

Case	Status	Response
client_id missing	`400`	{ "error": "invalid_request", "error_description": "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed.", "hint": "Check the `client_id` parameter" }
client_secret missing	`400`	{ "error": "invalid_request", "error_description": "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed.", "hint": "Check the `client_secret` parameter" }
code missing	`400`	{ "error": "invalid_request", "error_description": "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed.", "hint": "Check the `code` parameter" }
invalid/missing grant_type	`400`	`{ "error": "unsupported_grant_type", "error_description": "The authorization grant type is not supported by the authorization server.", "hint": "Check that all required parameters have been provided" }`

← Refresh token endpoint
/oauth/endpoints/refresh-token_endpoint.html Guidelines →
/additional-information/guidelines.html