Skip to content
Patomic

not_found

HTTP/1.1 404 Not Found
{
  "error": {
    "type": "not_found_error",
    "code": "not_found",
    "message": "No API key matched the request.",
    "docs_url": "https://docs.patomic.dev/errors/not-found",
    "request_id": "…",
    "suggestion": "Check that the identifier is correct and that you have access to the resource."
  }
}

What it means

Section titled “What it means”

The resource you addressed (by id, in a path or filter) does not exist, or does exist but isn’t owned by the authenticated user.

Why both cases return 404

Section titled “Why both cases return 404”

By design. If the response distinguished “this id doesn’t exist” from “this id exists but isn’t yours”, an attacker could enumerate ids on other users’ accounts. A uniform 404 prevents that.

How to fix

Section titled “How to fix”
  • Check the id. Patomic ids have predictable prefixes — apk_ for keys, usr_ for users, aud_ for audit entries. A typo will return 404.
  • Check ownership. Use GET /v1/keys with your authenticated key to list everything you own.
  • Check that you haven’t already revoked the resource. A revoked key still appears in GET /v1/keys with revoked_at non-null.
Section titled “Related”