Open Daniel-Dragon opened 6 years ago
If someone hits an endpoint with an invalid token it should only strip the token from the request, not fail like it does now.
Hit any endpoint with an expired or invalid token.
It should strip the token from the request and allow the endpoint to check if they need to be logged in.
If someone hits an endpoint with an invalid token it should only strip the token from the request, not fail like it does now.
Reproduce
Hit any endpoint with an expired or invalid token.
Expected Results
It should strip the token from the request and allow the endpoint to check if they need to be logged in.