When a developer tests an invalid user login in a RESTful application deployed with Amazon API Gateway and AWS Lambda, and encounters an HTTP 405 error, what is the appropriate HTTP error response for invalid credentials?