In the case that a user puts a disallowed character into the wifi name or password fields you will get one of these return codes (which one? don’t know yet) and should display to the user that they can’t use ’ \ , or other special chars.
@Adam_Soltys @ttk2 I’m going with 400 Bad Request, I’ve used it on similar occasions before (/exits endpoints), so it feels sane to stick with that.