Argus Fingerprinting
Troubleshooting
Argus console messages, HTTP statuses, local testing, and a "nothing happens" checklist.
Argus logs a short message to the console on failure. Match it below.
Error reference
| Console message | HTTP | Cause | Fix |
|---|---|---|---|
Invalid or unverified site-id. | 401 | The site-id isn't found, the domain isn't verified, or the site is banned. | Finish domain verification and confirm the site-id is copied exactly. |
Please upgrade your account at https://api-armor.com | 402 | The account's plan isn't Developer or Pro. | Upgrade your plan. |
This domain is not registered for the provided site-id. | 403 | The request's Origin doesn't match the verified domain (and isn't a loopback origin). | Embed the snippet on the verified domain or a subdomain of it. |
Fingerprint request failed. | 503 / other | The service or its datastore is temporarily unavailable. | Retry; if it persists, check status and contact support. |
Missing site-id attribute on the dfs.min.js <script> tag. | — | The site-id attribute is absent or empty on the tag. | Add site-id="aa-argus-…" to the <script> tag. |
Testing locally
You don't need to deploy to test. Loopback origins are always allowed:
http://localhost:3000(and any*.localhost)http://127.0.0.1http://[::1]
Your site-id and plan still apply, but the origin check is skipped, so the snippet works on your dev server even though the origin isn't your registered domain.
Debug mode
Add debug="true" to the tag to print a colored readout (and a one-time DevTools nudge) to the console:
<script
site-id="aa-argus-YOUR-SITE-ID"
debug="true"
src="https://fpcdn.api-armor.com/js/dfs.min.js"
></script>On failure, debug mode also prints the error body, which includes the type (auth, payment, origin, unavailable) — match it to the table above.
"Nothing happens" checklist
- No
site-id? The SDK logs the missing-attribute message and stops. Add the attribute. window.AAArgusisundefined? It's populated asynchronously — poll with theonArgushelper from Quick start.undefined= still running;null= failed.- Script never loads? Check your Content-Security-Policy allows
script-src https://fpcdn.api-armor.com, and that an ad-blocker isn't blocking it. - Works locally but 403 in production? The production origin must match the verified domain — re-check the domain you registered.