While investigating !367 (merged) I have noticed that the Swaggger UI doesn't add the correct Bearer keyword necessary to send correctly-authenticated requests to the server:

That Authorization header is wrong, it should have been:

Authorization: Bearer eyJhbGciOiJIUzUxMiJ9.eyJkYXQiOnsibm9kZV9pZCI6OCwidXNlcl9pZCI6Mn19.00H1X592VarTPrGhy4oelAJbjSRZw1tSs3ILC0w2CkUsAqSWiukmG3Z8Q4AlPTvyQACJkY_PrlOEjZ4SLC8zUw'