403 is the wrong error code for an invalid password

[ctrlcctrlv]

alacrity/src/WebApp.hs

Lines 32 to 36 in 37aebe4

	invalidPassword :: ActionM ()
	invalidPassword = do
	status forbidden403
	text "NG credentials"
	{-# INLINE invalidPassword #-}

403 Forbidden is meant to be used when the user has already logged in, per Mozilla. (They'd know, wouldn't they?)

The code you were looking for was 401 Unauthorized, Ron.

Also, "NG credentials" is not understandable outside Japan. Alacritty shouldn't be so lazy, type a little bit more. I know your hands hurt from punching planks until they bleed, but you can do it. Ganbatte.