Forbidden origin

A forbidden origin error indicates that the request was made from a browser and the Origin header value is not whitelisted in the application's trusted origins.

Add the origin to the application's trusted origins before retrying.

Response

All error responses follow the Problem Details (RFC 9457) format, which defines the type, title, status, detail, and instance fields.

Here is an example of the response returned for this error:

{  "type": "https://croct.help/api/authentication/forbidden-origin",  "title": "The request origin is not allowed.",  "status": 403,  "detail": "The origin of the request is not authorized to access this resource.",  "instance": "/client/web/content"}