Sonny Labs Docs
Error codes

auth.forbidden

The principal is authenticated but is not allowed to perform this operation.

auth.forbidden is returned at HTTP 403.

When this fires

Emitted by the dashboard BFF when the WorkOS session is valid but the user's role does not grant the requested action — typically attempting an admin-only operation as a non-admin.

What to do

Ask an admin in your organization to perform the action, or to elevate your role. Branch on this code to render a permissions hint rather than a re-auth prompt.

See also

  • SDK reference — the Python and TypeScript SDKs raise typed exceptions for codes in this namespace.
  • Error code index — every code the runtime can return.

auth.api_key.expired

The API key authenticated correctly but its `expires_at` is in the past.

auth.forbidden_scope

The credential is valid but does not carry the scope this operation requires.

On this page

When this firesWhat to doSee also