Fix access_token refresh bug
Add identity check to fix a bug that was encountered when access_token could not be refreshed (TypeError: 'NoneType' object is not subscriptable). Raise HTTPUnauthorized error if identity is not found, for example when user's account is deleted while the user is logged in to the app.
Edited by Veera Alt