If you accidentally set the same JWT secrets for both admin and user, this a good reference to fix it: JWT authentication - HTTP 403 - Invalid credentials - `strapi develop` · Issue #14 · strapi/documentation · GitHub
1 Like