After login to the web site there is a token valid for 15 minutes. In this time you are able to work on the side. After this 15 minutes the session token gets invalid. Which HTTP error code is correct? Actually we are using the 404 error code is this correct?