Radobilly

Maybe by brute forcing the default hs256 JWT_ALGORITHM as mentioned [here](https://auth0.com/blog/brute-forcing-hs256-is-possible-the-importance-of-using-strong-keys-to-sign-jwts/) and [here](https://github.com/lmammino/jwt-cracker)