Skip to content

Forbidden

URI: https://docs.ankatech.co/errors/forbidden
HTTP Status: 403 Forbidden

When you see this

You are authenticated but do not have permission to perform the requested operation or access the specified resource.

Common Causes

  • Account Activation Required: Your administrator account requires password activation before login. This occurs when a tenant was provisioned with account activation enabled. You must use the activation token provided during provisioning to set your password via POST /api/v1/public/activate-account.
  • Your credentials (API key, token, or session) are valid but lack the required role or scope.
  • You attempted an operation not allowed by key lifecycle policy (e.g. trying to sign with an expired key).
  • You tried to access another user's or tenant's resource without proper authorization.
  • You invoked an endpoint restricted to admins or specific service accounts.

How to Resolve

For Account Activation Required:

  1. Locate the activation token provided when your tenant was provisioned.
  2. Call POST /api/v1/public/activate-account with:
  3. token: Your activation token (single-use, 24-hour expiration)
  4. newPassword: Your new password (minimum 12 characters with complexity requirements)
  5. After successful activation, login normally with your new password.

For Permission Issues:

  1. Verify you are using the correct API credentials and that they have the necessary roles/scopes.
  2. Check the resource's ownership or tenancy—ensure your token is scoped to that project or key.
  3. Review the API's authorization requirements in the documentation.
  4. If you believe you should have access, contact your administrator to request the necessary permissions.

If you continue to receive a 403 error after these steps, please consult the full API Reference.