# access-denied

<Badge variant="warning">403 Forbidden</Badge> <Badge variant="muted">access-denied</Badge>

| Field           | Value                                          |
|-----------------|------------------------------------------------|
| **Type URI**    | `https://docs.kordiam.app/docs/errors/access-denied` |
| **HTTP Status** | `403 Forbidden`                                |

## Description
The request was authenticated successfully, but the caller is not allowed to perform the requested
action on the target resource.

## Response Example
```json
{
  "type": "https://docs.kordiam.app/docs/errors/access-denied",
  "title": "Access Denied",
  "status": 403,
  "detail": "Access denied",
  "instance": "/api/v2/elements/42",
  "traceId": "abc-123-def"
}
```

## Common Causes
- The authenticated caller does not have access to the requested resource or operation.
- The request attempts to access a resource outside the caller's allowed organization context.
- Your API client lacks the role or scope required for this operation.

## How to Fix

1. Verify that the authenticated API client is allowed to use the endpoint.
2. Confirm the target resource belongs to an organization context visible to the caller.
3. If access should be allowed, contact support with the `traceId`.