Authentication bypass leads to sensitive data exposure (token+secret)

@secalert discovered an information disclosure on our server which took advantage of an authorization error that allowed the viewing of sensitive information on the server. We mitigated the issue and no longer expose such information, and performed an investigation to verify that no unauthorized access had occurred. Thank you @secalert!