Each service decodes and verifies the jwt token before_response. If the token is invalid, need to return something to the user forcing them to log in again
This also applies if the token is valid but the user does not have the x-basic-user role. Individual endpoints may require other roles.
Each service decodes and verifies the jwt token before_response. If the token is invalid, need to return something to the user forcing them to log in again
This also applies if the token is valid but the user does not have the x-basic-user role. Individual endpoints may require other roles.