pub fn extract_host_token(headers: &HeaderMap) -> Option<(String, String)>Expand description
Pull a host token out of either an Authorization: Bearer ... header or a
session cookie. Returns the token plus a heuristic kind: "jwt" if it
looks like a JWT (three dot-separated segments), otherwise "opaque".