Skip to main content
Canonical error codes and verdicts used across the Truthlock platform. These codes are stable and can be used for programmatic error handling.

Verification Verdicts

VerdictCLI ExitDescription
VALID0Attestation verified successfully
ALTERED10Payload hash does not match
REVOKED11Attestation has been revoked
KEY_COMPROMISED12Signing key marked as compromised
KEY_EXPIRED13Signing key has expired
LOG_PROOF_FAILED14Transparency log proof verification failed
SIGNATURE_INVALID15Cryptographic signature verification failed

API Error Codes

CodeHTTPDescription
INVALID_INPUT400Request validation failed
NOT_FOUND404Resource not found
UNAUTHORIZED401Authentication required
FORBIDDEN403Permission denied
CONFLICT409Resource state conflict
ISSUER_NOT_TRUSTED403Issuer must be in trusted status
KEY_INACTIVE400Signing key is not active
POLICY_VIOLATION403Request violates active policy

Error Response Format

{
  "code": "ISSUER_NOT_TRUSTED",
  "message": "Issuer must be in trusted status to mint attestations",
  "details": {
    "issuer_id": "uuid",
    "current_status": "pending"
  },
  "trace_id": "abc123xyz"
}

Canonical Enums

Algorithm

* Ed25519 * P-256 * P-384

Issuer Status

  • pending * trusted * suspended * revoked

Trust Tier

  • self_issued * verified_org * regulated_issuer

Key Status

  • ACTIVE * DISABLED * EXPIRED * COMPROMISED

Attestation Status

* ACTIVE * REVOKED * SUPERSEDED

Risk Rating

  • unknown * low * medium * high * critical