Bug Report

Plugin Version

Version 3.5.3

Bug description

in the autologin route when the token is expired the plugin is returning 400 http code (Bad Request) while the expected code is 401 (Unauthorized)
I am using an http client that uses an Authenticator which expects 401 in order to execute a 'refresh token' operation.