badLockedDomainRequest — Bad Locked Domain Request

Your request violated a locked domain policy (for Google accounts). This often means an OAuth token was passed in an unauthorized way (e.g., in the URL for a format that forbids it). If you're manually calling Google APIs, put the OAuth token in the Authorization header, not in the query string. Riposte handles token placement for you, so this error should be rare unless there's a misconfiguration. Review your integration and remove any disallowed query parameters.