On Electron, we want to make sure that only Electron's browser-windows access the backend services.
Expects the token to be passed via cookies by default.
Returns the token to compare to when authorizing requests.
Validates a token.
This method both checks the shape of the parsed token data and its actual value.
Parsed object sent by the client as the token.