The login endpoint currently returns the user and their token as a cookie. However, the cookie has the domain attached, which can make re-using the token by other services impossible. This endpoint would allow an authenticated user to fetch their access token so it can be used in an auth header.