Error Handling

When an application error message occurs, an HTTP status code will be returned plus an error message. The return format of the error messages are technical errors and functional errors.

Document History

VersionDateDescription
1.015 Jan 2025Original Digital Version. Aligned with PDF V1.0
1.127 Jan 2025Updated "details" within the responses to "instance", added functional errors & error table.
2.020 Mar 2025Format changes, aligned with VoP single check API. Refer to the detailed changes here.

Go directly to

Status and Error Codes

The table below reflects the used HTTP status codes in case of a technical error.

HTTP Status CodeDescription
200 - OKThe request has succeeded.
400 - Bad requestRequest has malformed missing or non-compliant NDJSON body or URL parameters.
401 - UnauthorisedAuthorisation header missing or invalid token.
403 - ForbiddenToken has incorrect scope or a security policy was violated.
405 - Method Not AllowedThe Requester tried to access the resource with a method that is not supported.
406 - Not AcceptedThe request contained an accept header that requested a content-type other than application/x-ndjson and a character set other than UTF-8.
429 - Too Many RequestsToo many requests towards the endpoint. In this case the response contains a Retry-After header indicating how long the consumer must wait before retrying the operation.
500 - Internal server errorSomething went wrong on the API gateway or service. In this case the body might contain extra details.
503 - Service UnavailableThe service is down for maintenance. The response should include a Retry-After header indicating how long the Requesting PSP must wait before retrying the operation.
504 - Gateway TimeoutThere was no timely response from an upstream server that was needed to complete the request.

Response

  • Name
    X-Request-Id
    Type
    String
    Tag(s)
    Mandatory
    Description

    Value as sent in the corresponding request header.

  • Name
    Content-Type
    Type
    String
    Tag(s)
    Mandatory
    Description

    Content type and encoding of the request.

    • Example: application/json

Example of Error Response Headers

Header nameExample
X-Request-Id123e4567-e89b-12d3-a456-42661417400
Content-Typeapplication/json;charset=utf-8

Body

  • Name
    type
    Type
    String
    Tag(s)
    Mandatory
    Description

    A URI reference [RFC3986] that identifies the problem type.

    • Format: Max. 70 Characters.
  • Name
    code
    Type
    String
    Tag(s)
    Mandatory
    Description

    Message code to explain the nature of the underlying error.

    • Possible Values: Refer to the list here.
  • Name
    title
    Type
    String
    Tag(s)
    Optional
    Description

    Short human readable description of error type. Could be in local language. To be provided by the Responding PSP.

    • Format: Max. 70 Characters.
    • Possible Values: Refer to the list here.
  • Name
    status
    Type
    String
    Tag(s)
    Optional
    Description

    HTTP response code generated by the Server. If contained, this is more relevant as the actual http response code in the actual response, because it is introduced by the Application Server.

  • Name
    detail
    Type
    String
    Tag(s)
    Optional
    Description

    Detailed human readable text specific to this instance of the error.

    • Format: Max. 500 characters.
  • Name
    instance
    Type
    String
    Tag(s)
    Optional
    Description

    This attribute is containing a JSON pointer (as defined in RFC6901) or XPath expression to indicate the path to an issue generating the error in the related request.

    • Format: Max. 256 characters.

Error response

[
    {
        "type": "https://surepay.com/problem-type/invalid-input",
        "code": "FORMAT_ERROR",
        "title": "Invalid input data",
        "status": 400,
        "detail": "Presence of two fields that are mutually exclusive",
        "instance": "/request/body/field-name"
    }
]

Responses within the file submitted

This section outlines errors related to individual transactions within a bulk file. While the Bulk API request may be successful overall, the response file may include errors specific to individual records (per line). The chosen structure is consistent with the error structure in the VOP specification.

File Header

  • Name
    X-Request-Id
    Type
    String
    Tag(s)
    Mandatory
    Description

    Value as sent in the corresponding request header.

  • Name
    Content-Type
    Type
    String
    Tag(s)
    Mandatory
    Description

    Content type and encoding of the request.

    • Example: application/json

Example of Error Response Headers

Header nameExample
X-Request-Id123e4567-e89b-12d3-a456-42661417400
Content-Typeapplication/json;charset=utf-8

File Body

  • Name
    uetr
    Type
    String
    Tag(s)
    Mandatory
    Description

    The Unique End-to-End Transaction Reference (UETR) is an RFC4122 UUID used as a record-level correlation ID to uniquely track and trace individual transactions throughout the process.

  • Name
    type
    Type
    String
    Tag(s)
    Mandatory
    Description

    A URI reference [RFC3986] that identifies the problem type.

    • Format: Max. 70 Characters.
  • Name
    code
    Type
    String
    Tag(s)
    Mandatory
    Description

    Message code to explain the nature of the underlying error.

    • Possible Values: Refer to the list here.
  • Name
    title
    Type
    String
    Tag(s)
    Optional
    Description

    Short human readable description of error type. Could be in local language. To be provided by the Responding PSP.

    • Format: Max. 70 Characters.
    • Possible Values: Refer to the list here.
  • Name
    status
    Type
    String
    Tag(s)
    Optional
    Description

    HTTP response code generated by the Server. If contained, this is more relevant as the actual http response code in the actual response, because it is introduced by the Application Server.

  • Name
    detail
    Type
    String
    Tag(s)
    Optional
    Description

    Detailed human readable text specific to this instance of the error.

    • Format: Max. 500 characters.
  • Name
    instance
    Type
    String
    Tag(s)
    Optional
    Description

    This attribute is containing a JSON pointer (as defined in RFC6901) or XPath expression to indicate the path to an issue generating the error in the related request.

    • Format: Max. 256 characters.

Error response

{"uetr":"13b8472f-d796-436a-ba76-0be4ec234206","type":"https://surepay.com/problem-type/invalid-input","code":"FORMAT_ERROR","title":"Invalid input data","status":400,"detail":"Presence of two fields that are mutually exclusive","instance":"/request/body/field-name"}
{"uetr":"13b8472f-d796-436a-ba76-0be4ec234207","type":"https://surepay.com/problem-type/invalid-input","code":"FORMAT_ERROR","title":"Invalid input data","status":400,"detail":"Presence of two fields that are mutually exclusive","instance":"/request/body/field-name"}

Functional Errors

Error Message Codes

HTTP Status CodeDescription
FORMAT_ERRORIncorrect data format has been provided, not compliant with the expected specifications (e.g., invalid JSON format, missing or incorrectly formatted fields).
CLIENT_INVALIDThe client is not recognised or is invalid (,an attempt to access resources by an unauthorized client).
CLIENT_INCONSISTENTThe client information provided in the certificate and/or in the request message body is not consistent with related directory information
INTERNAL_SERVER_ERRORAn exception occurred during code execution and the request cannot be further processed.

Error table

The following table contain a list of error code values:

Error Message CodeHTTP CodeTitleDetailer Error
FORMAT_ERROR400INVALID_HEADERThe provided value for the header ‘___’ differs from the expected format. Possible values : X-Request-Id, Accepted-Language, Content-Type and Authorization
FORMAT_ERROR400MANDATORY_HEADER_NOT_PROVIDEDA mandatory header ‘___’ has not been provided, therefore the request cannot be sent. Possible values : 'X-Request-Id', 'Content-Type' and 'Authorization'
FORMAT_ERROR400INVALID_REQUESTThe provided JSON format in the request does not comply with the expected structure.
FORMAT_ERROR400MANDATORY_FIELD_NOT_PROVIDEDThe request is missing the mandatory field ‘____’. Possible values : 'name' or 'identification', 'bicfi' (requesting, agent), 'iban'
FORMAT_ERROR400INVALID_FIELDThe provided value for the field ‘____’ differs from the expected format. Possible values : 'name', 'identification','lei', 'schemeNameCode', 'schemeNameProprietary', 'anyBIC', 'bicfi' (requesting, agent), 'issuer'
FORMAT_ERROR400NAME_TOO_LONGThe value provided in the field ‘name’ is longer than the maximum number of characters: 140.
FORMAT_ERROR400MUTUALLY_EXCLUSIVE_FIELDS_USEDTwo fields mutually exclusive were added in the request. Possible values : 'name' and 'identification'; 'lei', 'anyBIC' and 'others'; 'schemeNameCode' and 'schemeNameProperty'
CLIENT_INVALID401The API Client has a valid certificate but is not contained in the addressed scheme directoryThe Requesting’s PSP is not adherent to the Scheme.
Previous
Next