When trying to access a protected resource e.g. “…./submit”, the login page is shown. After log- in there is a redirected to the “…/submit” page. Up to this point everything works as expected. Clicking the reload button at this point results in a loss of the JWT session and the login page is shown again.