Cookie-based authentication
Using cookie-based authentication, we can probably reduce the need for the signature token, maybe even entirely. This means fewer calls to the api/keycloak, and also has other benefits. The urls would become more static, which also means better utilization of browser caching, for example for image preview in the file browser.