Developer Tools
HTTP Status Code Reference
Every status code that matters, explained in one plain-English line — searchable.
Updated July 8, 2026
How to use the http status code reference
- 1Search by number, name, or meaning — '429', 'gateway', 'rate'.
- 2Or tap a class dot (2xx–5xx) to filter by category.
- 3Read the one-liner: each is written for the person debugging, not the RFC.
- 4For 4xx, check your request; for 5xx, check their server (or your upstream).
Common uses
- Decoding an unfamiliar status code mid-debugging without RFC spelunking
- Choosing the right code when designing an API's responses
- Settling 401-vs-403 and 400-vs-422 arguments with one link
- Learning the status system's shape for interviews and code review
Frequently asked questions
What's the real difference between 401 and 403?
401 means the server doesn't know who you are — no credentials or invalid ones; authenticating can fix it. 403 means it knows exactly who you are and the answer is still no; better credentials won't help, permissions will. The names (Unauthorized vs Forbidden) are historically swapped from their meanings, which is why everyone confuses them once.
My site shows 502 — is my server down?
A 502 comes from a proxy or load balancer (nginx, Cloudflare) that reached out to your actual application and got garbage or nothing back. So the proxy is fine; the app behind it crashed, isn't listening, or is timing out — check the application process and its logs first.
When should an API return 400 vs 422?
Convention: 400 for requests the server can't even parse (malformed JSON, missing required structure), 422 for requests that parse fine but fail validation (email field isn't an email). Plenty of APIs use 400 for both; consistency within your API matters more than the distinction.
Is 418 I'm a Teapot real?
Genuinely — RFC 2324 (1998), an April Fools spec for the Hyper Text Coffee Pot Control Protocol. It's not part of HTTP proper, but enough servers implement it that it's become the standard easter egg, occasionally pressed into service for blocking unwanted traffic with style.
About this tool
The HTTP status code reference covers the thirty-odd codes developers actually encounter, each explained in one plain-English line focused on what it means for the person debugging: 401 means unauthenticated while 403 means unauthorized-despite-credentials; 502 and 504 blame a proxy's upstream, not the proxy; 422 is the REST validation favorite; 418 is a real RFC and a running joke. Instant search filters by number, name, or meaning — type '4' for client errors, 'rate' for 429, 'teapot' for morale. Color-coded by class so the shape of the system (2xx worked, 4xx you erred, 5xx they erred) is visible at a glance.
Like most tools on UtilityBase, the http status code reference runs entirely in your browser — nothing you enter is uploaded or stored on a server. It's free to use with no account required. Browse more developer tools here.
Was this tool helpful?
Related tools
JWT Decoder
Decode JWT tokens locally — header, payload, and human-readable claims.
Developer Tools
JSON Formatter
Format, validate, and minify JSON with precise error locations.
Developer Tools
Regex Tester
Test regular expressions live with match highlighting, groups, and a cheat sheet.
Developer Tools
Chmod Calculator
Unix file permissions visually: rwx checkboxes ⇄ octal ⇄ symbolic notation.
Developer Tools
What Is My IP
Your public IP, and exactly what it reveals — location, ISP, timezone.
Developer Tools
Code Playground
A live HTML, CSS & JS editor with instant preview, console, and shareable links.
Developer Tools