delete sending UserSerializer on response
-> this might be the reason why Miguel could access to user data from outside of database, check it again please!
now you can check user authentication by calling user_is_logged_in(request) periodically from frontend.
delete sending UserSerializer on response -> this might be the reason why Miguel could access to user data from outside of database, check it again please!