400 Bad Request | Malformed request body or missing required parameter | Check the endpoint schema in the Developer Portal | Validate your JSON body or query parameters against the schema |
401 Unauthorized | Token missing, expired, or wrong format | Check the Authorization header value and format | Re-copy the token from the profile detail; rotate if expired |
401 (JWT) | JWT signature invalid or claims wrong | Verify the HMAC secret matches what Zerq has configured | Ensure the client_id and client_secret used for signing match the profile |
401 (OIDC) | Token issued by wrong IdP, or expired | Check the iss claim matches the configured OIDC issuer | Obtain a fresh token from the correct identity provider |
403 Forbidden | Client not assigned to collection, or profile inactive | Check client collection assignment and profile active status | Ask your admin to assign the client to the collection or re-enable the profile |
403 (IP blocked) | Request IP not on profile allowlist | Check the profile IP restrictions | Ask admin to add your IP, or connect from an allowed network |
403 (header) | Wrong X-Client-ID or X-Profile-ID | Double-check both header values | Copy directly from the Management UI or Developer Portal auth headers panel |
404 Not Found | Proxy not found or not published | Confirm the path pattern and that the proxy is published | Check collection and proxy status in the Management UI |
405 Method Not Allowed | Profile allowed_methods restriction | Confirm the method is in the profile's allowed list | Ask admin to update the profile, or use the correct method |
429 Too Many Requests | Rate limit or quota exhausted | Check the Retry-After header | Wait and retry; ask admin if quota needs to be increased |
502 Bad Gateway | Upstream service unreachable | Check upstream health and connection credentials | Verify the collection target URL is correct and upstream is running |