Errors

Partner API errors use application/problem+json.

Response Format

{
  "type": "https://api.oceafin.com/problems/partner-auth-failed",
  "title": "PARTNER_AUTH_FAILED",
  "status": 401,
  "code": "PARTNER_AUTH_FAILED",
  "detail": "Missing X-Partner-Client-Id header.",
  "requestId": "partner-request-id",
  "errors": []
}

Field	Meaning
`type`	Stable problem URI.
`title`	Human-readable problem title.
`status`	HTTP status code.
`code`	Stable machine-readable partner error code.
`detail`	Partner-safe explanation.
`requestId`	Request id for support correlation.
`errors`	Optional field-level validation details.

Common Error Codes

Code	Typical cause
`PARTNER_AUTH_FAILED`	Missing/unknown/inactive API client or required auth header.
`PARTNER_SIGNATURE_INVALID`	Signature does not match the request.
`PARTNER_SIGNATURE_EXPIRED`	Timestamp is outside the freshness window.
`PARTNER_NONCE_REPLAYED`	Nonce was already used for this client.
`PARTNER_SCOPE_DENIED`	Client does not have the required route scope.
`PARTNER_PRODUCT_DISABLED`	Product slice is not enabled for the partner.
`PARTNER_CUSTOMER_NOT_FOUND`	Customer does not exist or does not belong to the partner.
`PARTNER_RESOURCE_NOT_FOUND`	Resource does not exist or is not visible to the partner.
`PARTNER_RESOURCE_STATE_INVALID`	Resource is not in a valid state for the action.
`PARTNER_IDEMPOTENCY_CONFLICT`	Same idempotency key was reused with a different request body.
`PARTNER_OPERATION_NOT_APPROVED`	Missing or mismatched operation authorization evidence.
`PARTNER_QUOTE_EXPIRED`	Quote can no longer be used.
`PARTNER_TRAVEL_RULE_REQUIRED`	Crypto deposit needs Travel Rule information.
`PARTNER_PROCESSING_UNAVAILABLE`	Oceafin product processing is temporarily unavailable.

Retry Guidance

Retry with the same Idempotency-Key and same request body when:

The connection times out before a response is received.

The response is PARTNER_PROCESSING_UNAVAILABLE.

Oceafin support advises retry after investigating a transient failure.

Do not retry unchanged when:

The signature is invalid.

The timestamp is stale.

The nonce was replayed.

The idempotency key conflicts with a different request body.

The client lacks a required scope or product enablement.

The resource state is invalid for the requested action.

Include X-Request-Id, endpoint, timestamp, partnerCustomerRef, customerId
when available, and the problem code when contacting Oceafin support. Do not
send client secrets, webhook secrets, raw KYC/KYB files, or raw private keys.

Response Format#

Common Error Codes#

Retry Guidance#

Response Format

Common Error Codes

Retry Guidance