Sonny Labs Docs
Error codes

auth.scope.insufficient

Backend variant of `auth.forbidden_scope` emitted by the scope-enforcement filter.

auth.scope.insufficient is returned at HTTP 403.

When this fires

The Java backend's ScopeEnforcementFilter emits this code when an authenticated principal hits an endpoint whose x-required-scopes are not a subset of the principal's granted scopes.

What to do

Same remediation as auth.forbidden_scope. Both codes describe the same underlying condition; the dashboard BFF tags 403s as auth.forbidden_scope while the backend filter tags them as auth.scope.insufficient.

See also

  • SDK reference — the Python and TypeScript SDKs raise typed exceptions for codes in this namespace.
  • Error code index — every code the runtime can return.

auth.no_org_context

The request authenticated but no `org_id` was bound to the session — typically a misconfigured caller.

auth.scope.missing

Alias of `auth.scope.insufficient` retained for SDK dispatch compatibility.

On this page

When this firesWhat to doSee also