Probably finally starting to understand the basics of how JSON Web Tokens actually work and starting to mess with request headers in api requests. (I'm used to traditional, third-party api GET requests but not changing the headers in the request / accept, content-type, authorization, etc)
Slowly but surely =]