auth.token_expired
The magic-link token has passed its 15-minute TTL and can no longer be used.
auth.token_expired is returned when a magic-link sign-in token is submitted after its 15-minute TTL has elapsed. The platform issues these tokens as single-use short-lived links sent via email.
The user clicked the magic-link more than 15 minutes after it was issued. This can happen due to delayed email delivery, the user not checking email promptly, or a client-side redirect loop that re-presents a stale token.
Present the user with an option to request a new magic-link. The existing token cannot be extended or reused.
{
"error": {
"code": "auth.token_expired",
"message": "magic-link token has expired",
"request_id": "req_01900000abc"
}
}