Added more strict header allowence and was a error where endpoints for user was not using router, but app.

seasoned_api/src/webserver/controllers/user/login.js

@@ -14,6 +14,7 @@ const userSecurity = new UserSecurity();
 function loginController(req, res) {
   const user = new User(req.body.username);
   const password = req.body.password;
+  // console.log('login: ', req.body)
 
   userSecurity.login(user, password)
   .then(() => {