- Documentation
- What's with the OPTIONS stuff? Can we add headers, or turn it off, or what?
- Take code which adds auth info to requests out of the Auth modules
- Only have one login/refresh request going at a time, track it with promises or something
- Customize what happens after successful login (i.e. not always location.path redirect)