When using JWTAuthenticationToken currently if the session cookies are sent, JWT will overwrite the AuthenticationToken already in place with JWTAuthenicationToken.