Free · No signup

HTTP Status Codes Reference

Every registered HTTP status code, searchable and filterable by class — with plain-English explanations of what each one actually means.

100

Continue

The server received the request headers; the client should proceed to send the body.

Details
101

Switching Protocols

The server agrees to switch protocols as requested via the Upgrade header (e.g. to WebSocket).

Details
102

Processing

WebDAV: the server has accepted the request but has not completed it yet.

Details
103

Early Hints

Preliminary headers (mostly Link preload hints) sent before the final response.

Details
200

OK

The request succeeded. The standard response for successful HTTP requests.

Details
201

Created

The request succeeded and a new resource was created — typical for POST endpoints.

Details
202

Accepted

The request was accepted for asynchronous processing; completion is not guaranteed.

Details
203

Non-Authoritative Information

The response was modified by a transforming proxy from the origin's 200 response.

Details
204

No Content

The request succeeded but there is no body to return — common for DELETE or PUT.

Details
205

Reset Content

The request succeeded; the client should reset the document view (e.g. clear a form).

Details
206

Partial Content

The server is delivering only part of the resource due to a Range header.

Details
207

Multi-Status

WebDAV: the body contains multiple status codes for multiple sub-operations.

Details
208

Already Reported

WebDAV: members of a binding were already enumerated in a previous reply.

Details
226

IM Used

The response is a delta (instance manipulation) applied to the current resource.

Details
300

Multiple Choices

Several representations exist for the resource; the client should pick one.

Details
301

Moved Permanently

The resource moved permanently to a new URL. Browsers and crawlers update their references.

Details
302

Found

Temporary redirect. The client should keep using the original URL for future requests.

Details
303

See Other

The response is at a different URI and should be fetched with GET — typical after a POST.

Details
304

Not Modified

The cached version is still valid; the server sends no body. Driven by If-None-Match / If-Modified-Since.

Details
305

Use Proxy

Deprecated: the resource must be accessed through the proxy given in the Location header.

Details
307

Temporary Redirect

Like 302, but the client must not change the HTTP method when following the redirect.

Details
308

Permanent Redirect

Like 301, but the client must not change the HTTP method when following the redirect.

Details
400

Bad Request

The server cannot process the request due to a client error — malformed syntax, invalid parameters or body.

Details
401

Unauthorized

Authentication is required or has failed. The response includes a WWW-Authenticate challenge.

Details
402

Payment Required

Reserved; used in practice by some APIs to signal exhausted quota or required payment.

Details
403

Forbidden

The server understood the request but refuses it — authentication won't help.

Details
404

Not Found

The resource does not exist at this URL. The most common HTTP error on the web.

Details
405

Method Not Allowed

The HTTP method is not supported for this resource — e.g. POST on a read-only endpoint.

Details
406

Not Acceptable

No representation matches the request's Accept headers.

Details
407

Proxy Authentication Required

Like 401, but authentication is required by an intermediate proxy.

Details
408

Request Timeout

The server timed out waiting for the client to finish sending the request.

Details
409

Conflict

The request conflicts with the resource's current state — e.g. concurrent edits or duplicate creation.

Details
410

Gone

The resource existed but was permanently removed; unlike 404, this is intentional and final.

Details
411

Length Required

The server requires a Content-Length header and the request did not provide one.

Details
412

Precondition Failed

A conditional header (If-Match, If-Unmodified-Since…) evaluated to false.

Details
413

Content Too Large

The request body exceeds what the server is willing to process.

Details
414

URI Too Long

The request URI is longer than the server accepts — often a symptom of data in the query string.

Details
415

Unsupported Media Type

The request body's Content-Type is not supported by the endpoint.

Details
416

Range Not Satisfiable

The Range header asks for a portion the resource cannot supply.

Details
417

Expectation Failed

The Expect request header could not be met by the server.

Details
418

I'm a teapot

April Fools' RFC 2324: the server refuses to brew coffee in a teapot. Sometimes used as an easter egg.

Details
421

Misdirected Request

The request was sent to a server unable to produce a response (e.g. wrong TLS SNI).

Details
422

Unprocessable Content

The request is well-formed but semantically invalid — the classic validation-error response for APIs.

Details
423

Locked

WebDAV: the resource is locked.

Details
424

Failed Dependency

WebDAV: the request failed because a previous dependent request failed.

Details
425

Too Early

The server refuses to process a request that might be replayed (TLS early data).

Details
426

Upgrade Required

The client must switch to a different protocol (given in the Upgrade header).

Details
428

Precondition Required

The server requires the request to be conditional to prevent lost-update conflicts.

Details
429

Too Many Requests

The client exceeded a rate limit. Check the Retry-After header before retrying.

Details
431

Request Header Fields Too Large

Headers (individually or collectively) exceed the server's limits — often oversized cookies.

Details
451

Unavailable For Legal Reasons

Access is denied for legal reasons, such as censorship or court order.

Details
500

Internal Server Error

A generic unhandled error on the server. The catch-all when nothing more specific applies.

Details
501

Not Implemented

The server does not recognise or support the request method or functionality.

Details
502

Bad Gateway

A gateway or reverse proxy received an invalid response from the upstream server.

Details
503

Service Unavailable

The server is temporarily unable to handle the request — overload, maintenance or a crashed backend.

Details
504

Gateway Timeout

A gateway or reverse proxy did not receive a timely response from the upstream server.

Details
505

HTTP Version Not Supported

The HTTP protocol version used in the request is not supported.

Details
506

Variant Also Negotiates

Server misconfiguration in transparent content negotiation.

Details
507

Insufficient Storage

WebDAV: the server cannot store the representation needed to complete the request.

Details
508

Loop Detected

WebDAV: the server detected an infinite loop while processing the request.

Details
510

Not Extended

Further extensions to the request are required for the server to fulfil it.

Details
511

Network Authentication Required

The client must authenticate to gain network access — typical of captive portals.

Details

Instant search — no account, no limits.

The five status code classes

1xx

1xx — Informational. Interim responses while the server continues processing: protocol switches, early hints. Rarely seen by end users.

2xx

2xx — Success. The request was received, understood and accepted. 200 OK is the default; APIs also use 201 for creation and 204 for empty responses.

3xx

3xx — Redirection. The client must take additional action, usually following a Location header. 301/308 are permanent, 302/307 temporary, 304 means "use your cache".

4xx

4xx — Client errors. The request itself is at fault: bad syntax (400), missing authentication (401), forbidden (403), missing resource (404) or rate limited (429).

5xx

5xx — Server errors. The server failed to fulfil a valid request: unhandled exceptions (500), broken upstreams (502), overload or maintenance (503), upstream timeouts (504). These are the codes worth monitoring and alerting on.

Get alerted the moment your API returns a 5xx

ContinuumNexus checks your endpoints from multiple regions and emails you as soon as a status code goes wrong.

Frequently asked questions

What is the difference between 502, 503 and 504?
All three come from a gateway or load balancer in front of your app. 502 means the upstream returned an invalid response, 503 means the service is unavailable (overload, maintenance, crashed backend), and 504 means the upstream did not answer in time.
What is the difference between 401 and 403?
401 Unauthorized means "you are not authenticated" — supply valid credentials and retry. 403 Forbidden means "you are authenticated but not allowed" — retrying with the same credentials will not help.
Should I use 301 or 302 for redirects?
Use 301 (or 308) when the move is permanent — browsers cache it and search engines transfer ranking signals. Use 302 (or 307) for temporary moves. If the HTTP method must be preserved, prefer 307/308 over 302/301.
What does 429 Too Many Requests mean?
The server is rate limiting you: you sent more requests than allowed in a time window. Honour the Retry-After response header, add backoff to your client, or request a higher quota.
Which status codes should an uptime monitor treat as "down"?
Any 5xx is a server-side failure and should alert. Whether 4xx counts depends on context: a 404 on your health endpoint is a deployment bug, while a 401 may simply mean the monitor lacks credentials. Monitoring tools like ContinuumNexus let you assert the exact expected status code.