úÎ d None%&*,01234569:;<=?DIOQRTLogin via a form. Basic Auth.¯A cookie. The content cookie itself is a JWT. Another cookie is also used, the contents of which are expected to be send back to the server in a header, for CSRF protection.7A JSON Web Token (JWT) in the the Authorization header: Authorization: Bearer tokenNote that while the token is signed, it is not encrypted. Therefore do not keep in it any information you would not like the client to know.JWTs are described in IETF's #https://tools.ietf.org/html/rfc7519RFC 7519Auth [auth1, auth2] val :> api* represents an API protected *either* by auth1 or auth2+servant-auth-0.3.0.0-ApdbMRKqssd5ssbpKOMgI8 Servant.Auth FormLogin BasicAuthCookieJWTAuth