Add beancount passthrough

[ajuvercr]

Set proxypass in nginx from '/bean' or something to beancount Enable Nginx jwt auth https://docs.nginx.com/nginx/admin-guide/security-controls/configuring-jwt-authentication/

For this only_scan has to set jwt cookies I think

[ajuvercr]

Get cookie values https://stackoverflow.com/questions/26128412/how-to-extract-some-value-from-cookie-in-nginx

[ajuvercr]

with zauth you can just get /oauth/grant to check if you are signed in