Error 20107

Error - 20107

Invalid Access Token signature

The signature for the Access Token provided was invalid.

Check that your code is correctly generating signatures using the algorithm and format expected by the Twilio API.

To check whether the Access Token is structurally correct, you can use the tools available at jwt.io.

Access Tokens are used by multiple Twilio SDKs, including Programmable Voice, Programmable Video, and Programmable Chat. For the details of Twilio's specific Access Token implementation, see the documentation.

Possible Causes

  • The supplied Account SID, API Key or API Secret is incorrect.

Possible Solutions

  • Ensure you're using the correct Account SID for your Live API Credentials.
  • Verify the API Key was generated for the same account as the supplied Account SID. (The API Secret is not the same as the Account Auth Token.)
  • Verify the API Secret is correct for the API Key being used and that no extra characters are included.
  • Check if the API Secret passes signature validation when used at jwt.io.
  • Generate a new API Key and Secret for the Account SID and try again.

Need some help?

We all do sometimes; code is hard. Get help now from our support team, or lean on the wisdom of the crowd browsing the Twilio tag on Stack Overflow.