{
  "type": "https://errors.swepay.com.br/common/unauthorized",
  "service": "common",
  "slug": "unauthorized",
  "httpStatus": 401,
  "title": "Unauthorized",
  "summary": "Authentication is missing or invalid.",
  "description": "The request lacks valid authentication credentials. Either no credential was\nsupplied, or the token presented is expired, malformed, or revoked.\n\nThis is about **authentication** (who you are), not authorization (what you\nmay do). For the latter, see [Forbidden](/common/forbidden).\n",
  "commonCauses": [
    "No `Authorization` header was sent.",
    "The access token is expired or has been revoked.",
    "The token is malformed or signed by an unknown issuer."
  ],
  "clientAction": "Obtain a fresh access token from your identity provider and retry with a\nvalid `Authorization: Bearer <token>` header. If you manage tokens yourself,\nrefresh before expiry rather than waiting for a `401`. Never log or echo the\ntoken value.\n",
  "exampleResponse": {
    "type": "https://errors.swepay.com.br/common/unauthorized",
    "title": "Unauthorized",
    "status": 401,
    "detail": "The access token is expired.",
    "instance": "/v1/certificates"
  },
  "relatedDocs": [
    {
      "label": "RFC 9457 — Problem Details",
      "url": "https://www.rfc-editor.org/rfc/rfc9457"
    },
    {
      "label": "RFC 6750 — Bearer Token Usage",
      "url": "https://www.rfc-editor.org/rfc/rfc6750"
    }
  ],
  "category": "common",
  "deprecated": false,
  "documentation": "https://errors.swepay.com.br/common/unauthorized"
}