high

403 Forbidden

The server understood the request but refuses to authorize it. Authentication won't help — the user lacks permissions.

Common Causes

  1. 1Insufficient permissions/role
  2. 2IP address blocked
  3. 3CORS policy blocking the request
  4. 4Rate limit or WAF rule triggered

How to Fix

Check CORS configuration

// Server-side
res.setHeader('Access-Control-Allow-Origin', 'https://yourdomain.com');
res.setHeader('Access-Control-Allow-Methods', 'GET, POST, PUT, DELETE');
res.setHeader('Access-Control-Allow-Headers', 'Content-Type, Authorization');

Configure CORS headers if the 403 is caused by cross-origin requests.

How ObserveOne Helps

ObserveOne tracks permission errors and identifies misconfigured access policies.

Start Monitoring Free

Related Errors