XSS/CSRF safe JWT auth designed for SPA
Refresh action doesn't return refresh token anymore.
Refresh by access method signature is updated; Refresh expiration bug fix;
Dependencies upgrade