Error Codes
Standard SecureSign error codes and HTTP status mapping.
Error Format
{"success":false,"error":{"code":"SS_PIN_INVALID","message":"Incorrect PIN. 2 attempts remaining.","httpStatus":401}}Code Reference
| Code | HTTP | Description |
|---|---|---|
| SS_TOKEN_NOT_FOUND | 404 | No DSC token connected |
| SS_PIN_INVALID | 401 | Incorrect PIN |
| SS_PIN_BLOCKED | 403 | Token blocked after max PIN retries |
| SS_CERT_EXPIRED | 400 | Signing certificate expired |
| SS_CERT_REVOKED | 400 | Certificate revoked (CRL/OCSP) |
| SS_DOMAIN_NOT_ALLOWED | 403 | Origin not in domain whitelist |
| SS_API_KEY_INVALID | 401 | Invalid or revoked API key |
| SS_PERMISSION_DENIED | 403 | USB permission denied (Android) |
| SS_DESKTOP_SOFTWARE_NOT_RUNNING | 503 | SecureSign Desktop Software not installed or not running |
| SS_AGENT_NOT_RUNNING | 503 | Legacy alias for SS_DESKTOP_SOFTWARE_NOT_RUNNING |
| SS_SIGN_CANCELLED | 400 | User cancelled signing |
| SS_HASH_INVALID | 400 | Malformed or unsupported hash |
| SS_RATE_LIMITED | 429 | API rate limit exceeded |