Token Validation Error

The authorization server responds with an HTTP 400 (Bad Request) status code (unless specified otherwise) and includes the following parameters with the response:

Token Validation Error Parameters
Parameter Description
error Specifies a single error code returned from the authorization server.

Required.

Refer to table Token Validation Error Codes for the error codes.

Token Validation Error Codes
Error Code Description
invalid_request
  The request is missing a required parameter, includes an unsupported parameter value (other than grant type), repeats a parameter, includes multiple credentials, utilizes more than one mechanism for authenticating the client, or is otherwise malformed.
invalid_grant
  The provided authorization grant (e.g., authorization code, resource owner credentials) or refresh token is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.
error_description
  Optional. Human-readable ASCII [USASCII] text providing additional information, used to assist the client developer in understanding the error that occurred.
error_uri
  Optional. A URI identifying a human-readable web page with information about the error, used to provide the client developer with additional information about the error.
Note: Values for the invalid_grant, error_description, and error_uri, parameters must not include characters outside the set %x20-21 / %x23-5B / %x5D-7E.

Token Validation Error Example

The error response is a HTTP response using the "application/json" media type as follows: 

HTTP/1.1 400 Bad Request 

    Content-Type: application/json;charset=UTF-8 

    Cache-Control: no-store 

    Pragma: no-cache 

{ 

        "error":"invalid_grant" 

}