API Key Validation
Requests without valid API keys are rejected with 401 Unauthorized.
Authentication Tests
18 tests verify token validation, session handling, and authorization checks.
JWT Token Validation
JWT tokens are validated for signature, expiration, and claims.