Error codes

invalid_auth_format

The Authorization header isn't in the expected format.

Status: 401 · Code: invalid_auth_format

The header is present but not shaped like Bearer sk_....

Common causes

Missing the Bearer prefix — just passing the raw key
Lowercase bearer instead of Bearer (some HTTP clients normalise this; ours is strict)
Using Basic auth
Extra spaces or tabs between Bearer and the key

How to fix

The header must be exactly:

Authorization: Bearer sk_live_xxxxxxxxxxxxxxxx

Single space, capital B, sk_live_ or sk_test_ prefix.

invalid_api_key

The API key you sent is not valid.

validation_error

One or more fields on your request failed validation.

On this page

Common causes How to fix Related