So we are using the HTML5 viewer inside of an application that communicates with a dedicated report server application that we developed through Ajax requests. We have some security measures in place for authentication but I feel as though we are currently going about it the wrong way. We're using Bearer token authentication to retrieve principals on both ends of the pipeline. How should I go about passing the token from one end (the viewer) to the other (the server) such that it gets passed back and forth for ALL requests.