Skip to main content

Error envelope

All error responses use a consistent JSON envelope: 
{
  "success": false,
  "error": "Human-readable message",
  "code": "MACHINE_READABLE_CODE"
}
The code field is a stable, machine-readable identifier you can match on without parsing the message string.

Common status code patterns

  • 200 / 201: successful read or mutation.
  • 400: invalid payload or missing required fields (VALIDATION_ERROR).
  • 401: authentication missing or invalid (UNAUTHORIZED).
  • 404: resource not found (NOT_FOUND).
  • 409: state conflict such as duplicate action or prerequisite not met (CONFLICT).
  • 500: unexpected server-side failure (INTERNAL_ERROR).

Domain-specific error codes

Quest and reward routes propagate typed errors from the server action layer. When the action throws a domain error, the route preserves the original HTTP status and error code instead of collapsing to a generic 500. Common codes you may encounter:
CodeStatusDescription
VALIDATION_ERROR400Missing or invalid request fields
UNAUTHORIZED401No valid session token
NOT_FOUND404Quest, step, or reward does not exist
CONFLICT409Reward already redeemed or must be claimed first
QUEST_DAILY_VISIT_NOT_ELIGIBLE400Daily visit already recorded or not eligible
INTERNAL_ERROR500Unexpected failure

Error handling guidance

  • Match on the code field for programmatic error handling rather than parsing the error message.
  • Treat all writes as potentially retriable only when idempotency is guaranteed by route semantics.
  • Surface response body messages in client logs for operational debugging.

Where to verify

Route-specific responses are defined in OpenAPI endpoint docs under the API Reference Endpoints group.