* protects db endpoints with auth data, but will require ui updates to function properly * adds an Authorization header with bearer token to all api/db/* request endpoints * force login if token doesn't exist * remove debug code