Authentication
It's missing completely. Need to decide:
- http basic auth: simple, but probably inconvenient
- something with cookies
- JWT?
Also:
- store update history:
- user A updated rating from X to Y at $date
- user B changed picture to $newPicture
Edited by gbe