Authenticating Node-RED web sockets