I did consider using basic auth, but using a Bearer token is a bit simpler deployment-wise.
Already deployed and tested.
