The backend calls to the API server implement the requested fetch request on the server. This includes Account creation/edit, login/logout and password edit/reset.
Upon a successful login the API Server will send an
httpOnly cookie that contains a Json Web Token. Future API requests will discover this cookie and restore the validated User from the provided token values.