Switch to authentication using bearer token.

lib/auth.js

@@ -1,12 +1,15 @@
-import { parse } from 'cookie';
 import { parseSecureToken, parseToken } from './crypto';
-import { AUTH_COOKIE_NAME, TOKEN_HEADER } from './constants';
+import { TOKEN_HEADER } from './constants';
 import { getWebsiteById } from './queries';
 
 export async function getAuthToken(req) {
-  const token = parse(req.headers.cookie || '')[AUTH_COOKIE_NAME];
+  try {
+    const token = req.headers.authorization;
 
-  return parseSecureToken(token);
+    return parseSecureToken(token.split(' ')[1]);
+  } catch {
+    return null;
+  }
 }
 
 export async function isValidToken(token, validation) {