Btw, Lemmy’s HTTP API design choices boggle my mind sometimes. You guys use GET, POST, and PUT, but not DELETE, while also PUT acts partially as PATCH?!

EDIT: Also, why isn’t the bearer token sent in Authorization header?!