elsif response.status == 401
      response.headers.delete_if { |key| key == "X-Credential-Username" }
      render plain: "Bad credentials", status: :unauthorized
    elsif response.status == 403
      render plain: "Access is denied", status: :forbidden