Secure endpoints are only accessible to authenticated users. This means that users need to login before doing a request to these endpoints.
The endpoint expects a valid Access token, which is generated during login and stored in a httpOnly cookie. To include this token in the request you need to use the credentials flag in the request options.
Accessing a secure endpoint: