the issue is, i guess the way SuperTokens issues JWTs is explicitly session-based. i can't simply send a generic request to the "/getJWT" endpoint (say with a known client ID and secret) and send back a token.