api_key.expired
The API key JWT is past its exp claim and can no longer authenticate requests.
api_key.expired is returned when the exp claim in the API key JWT is in the past. Expired keys are rejected before any scope or resource check. This is distinct from the key being revoked (api_key.revoked).
The API key was minted with an expiry timestamp that has now passed. This may happen if keys are minted with short TTLs for security and not rotated in time.
Revoke the expired key and mint a new one with an appropriate expiry. Update all services using the old key before the new key's expiry.
{
"error": {
"code": "api_key.expired",
"message": "API key has expired",
"request_id": "req_01900000abc"
}
}