If the backend is about to run on a different host/port than the frontend, make sure to handle `OPTIONS` too and return correct `Access-Control-Allow-Origin` and `Access-Control-Allow-Headers` (e.g. `Content-Type`).
`Authorization: Token jwt.token.here`
##JSON Objects returned by API:
Make sure the right content type like `Content-Type: application/json; charset=utf-8` is correctly returned.