I have a question about the Chained Auth allowed in the API for 2.3.
Is this an "AND" or a "OR" setup?
The way I read it right now its an AND meaning you would need JWT and AuthToken. Im actually looking for an "OR" solution, at accept APIToken keys or a JWT for the same API.
It looks like with 2.3 I can do on my own with a CustomKeyCheck plugin if necessary, but im just looking to see whats supported out of the box.