{
  "type": "https://errors.swepay.com.br/common/forbidden",
  "service": "common",
  "slug": "forbidden",
  "httpStatus": 403,
  "title": "Forbidden",
  "summary": "Authenticated, but not allowed to perform this action.",
  "description": "The request was authenticated, but the caller is not permitted to perform\nthe requested operation on the target resource. The credential is valid — it\nsimply lacks the required permission, scope, or an active subscription.\n\nUnlike [Unauthorized](/common/unauthorized), refreshing the token will **not**\nhelp; the principal genuinely lacks access.\n",
  "commonCauses": [
    "The token is missing the scope or role required for this operation.",
    "The tenant is suspended, cancelled, or its trial has expired.",
    "The resource belongs to a different tenant than the caller."
  ],
  "clientAction": "Confirm the authenticated principal has the required scope and that the\ntenant's subscription is active. If the tenant is **suspended, cancelled, or\non an expired trial**, billing must be resolved before access is restored —\ncontact your account owner. Retrying without changing permissions will keep\nfailing.\n",
  "exampleResponse": {
    "type": "https://errors.swepay.com.br/common/forbidden",
    "title": "Forbidden",
    "status": 403,
    "detail": "Your subscription is not active. Renew to restore access.",
    "instance": "/v1/certificates"
  },
  "relatedDocs": [
    {
      "label": "RFC 9457 — Problem Details",
      "url": "https://www.rfc-editor.org/rfc/rfc9457"
    }
  ],
  "category": "common",
  "deprecated": false,
  "documentation": "https://errors.swepay.com.br/common/forbidden"
}