Troubleshooting error 2204 & 2205 - "You're not authorized to do that"

Error code 2204 & 2205 are authorisation errors, meaning the signature you used in running your query is not authorised to perform the job.

This error is indicative of one of the following possible issues:

• Signature Miscalculation: The correct API key is not being used for the intended environment (Sandbox/Production).

• Hitting the Wrong URL: The signature, though correctly generated, is used to send requests to the wrong url (environment)

• The generation of the signature does not follow the instructions in the documentation

• Incorrect timestamp: The Timestamp sent in the request body does not adhere to the format: “yyyy-MM-dd’T’HH:mm:ss.fffK”

• The timestamp sent in the request body is not the same as the timestamp used to generate the signature: Ensure that the timestamp in your request body matches the exact timestamp used to generate the signature, rather than generating a new timestamp.

Signature Miscalculation

1. Wrong environment API key - Confirm you're using the right environment API key i.e. for sandbox signature, you will use sandbox API key, likewise for production signature you will use production API key. You can switch between sandbox and production by using the toggle in the portal.

2. Missed a step in calculating the signature - You can follow these instructions to calculate your signature.

Hitting the Wrong URL

For the Rest API you must call the correct url of the environment you're running jobs in. The Smile ID Mobile SDKs & Server-Side Libraries handle the right url to call based on environment variable you set. The base urls for production and sandbox are as follows: