Open Sovamorco opened 6 months ago
We should not pass user id as part of a request, instead we should separately authenticate each request server-side
We should not pass user id as part of a request, instead we should separately authenticate each request server-side