diff --git a/server.py b/server.py
index ed824d9..882e1fa 100644
--- a/server.py
+++ b/server.py
@@ -71,7 +71,7 @@ def protected(wrapped):
 async def login(_, body: LoginRequest):
     hash = api_auth.get(body.username)
     if not hash or not pbkdf2_sha256(10000, salt=b'salt').verify(body.password, hash):
-        return jsonr({'status': 'error', 'message': 'Invalid username or password'})
+        return jsonr({'status': 'error', 'message': 'Invalid username or password'}, 401)
     return jsonr({
         'token': jwt.encode({}, api_secret, algorithm='HS256'),
     })
@@ -106,7 +106,7 @@ async def delete_subscriptions(_, body: UpdateSubscriptionRequest):
         subs = await get_subs(r)
         skipped = requested_subs - subs
         if skipped:
-            return jsonr({'status': 'error', 'message': 'Some subscriptions were not found', 'skipped': sorted(skipped)})
+            return jsonr({'status': 'error', 'message': 'Some subscriptions were not found', 'skipped': sorted(skipped)}, 404)
         await r.srem(REDIS_SUBS_KEY, *requested_subs)
 
     return jsonr({'status': 'ok', 'removed': sorted(requested_subs)})
@@ -127,7 +127,7 @@ async def add_subscriptions(_, body: UpdateSubscriptionRequest):
         subs = await get_subs(r)
         conflicts = requested_subs & subs
         if conflicts:
-            return jsonr({'status': 'error', 'message': 'Some subscriptions already exist', 'conflicts': sorted(conflicts)})
+            return jsonr({'status': 'error', 'message': 'Some subscriptions already exist', 'conflicts': sorted(conflicts)}, 409)
         await r.sadd(REDIS_SUBS_KEY, *body.subs)
 
     return jsonr({'status': 'ok', 'added': sorted(requested_subs)})