diff --git a/restapi/index.php b/restapi/index.php
index 805f7cdbc..6fc693faf 100644
--- a/restapi/index.php
+++ b/restapi/index.php
@@ -1414,10 +1414,10 @@ function checkIfAdmin($request, $response) { /* {{{ */
     global $dms, $userobj;
 
     if(!$userobj) {
-        return $response->withJson(array('success'=>false, 'message'=>'Not logged in', 'data'=>''), 200);
+        return $response->withJson(array('success'=>false, 'message'=>'Not logged in', 'data'=>''), 403);
     }
     if(!$userobj->isAdmin()) {
-        return $response->withJson(array('success'=>false, 'message'=>'You must be logged in with an administrator account to access this resource', 'data'=>''), 200);
+        return $response->withJson(array('success'=>false, 'message'=>'You must be logged in with an administrator account to access this resource', 'data'=>''), 403);
     }
 
     return true;
@@ -1679,7 +1679,7 @@ function changeGroupMembership($request, $response, $args, $operationType) { /*
         {
             $message = 'Could not remove user from group.';
         }
-        return $response->withJson(array('success'=>false, 'message'=>'Something went wrong. ' . $message, 'data'=>''), 200);
+        return $response->withJson(array('success'=>false, 'message'=>'Something went wrong. ' . $message, 'data'=>''), 500);
     }
 
     $data = __getGroupData($group);
@@ -1847,7 +1847,7 @@ function changeFolderAccess($request, $response, $args, $operationType, $userOrG
         {
             $message = 'Could not remove user/group access from this folder.';
         }
-        return $response->withJson(array('success'=>false, 'message'=>'Something went wrong. ' . $message, 'data'=>''), 200);
+        return $response->withJson(array('success'=>false, 'message'=>'Something went wrong. ' . $message, 'data'=>''), 500);
     }
 
     $data = array();
@@ -2028,7 +2028,7 @@ function clearFolderAccessList($request, $response, $args) { /* {{{ */
         return $response->withStatus(404);
     }
     if (!$folder->clearAccessList()) {
-        return $response->withJson(array('success'=>false, 'message'=>'Something went wrong. Could not clear access list for this folder.', 'data'=>''), 200);
+        return $response->withJson(array('success'=>false, 'message'=>'Something went wrong. Could not clear access list for this folder.', 'data'=>''), 500);
     }
     return $response->withJson(array('success'=>true, 'message'=>'', 'data'=>''), 200);
 } /* }}} */