All requests must include JWT Bearer Token as Authorization header