// Fix: IONOS strips Authorization header — pass it through for WP REST API
  if ( ! isset( $_SERVER['HTTP_AUTHORIZATION'] ) ) {
      if ( isset( $_SERVER['REDIRECT_HTTP_AUTHORIZATION'] ) ) {
          $_SERVER['HTTP_AUTHORIZATION'] = $_SERVER['REDIRECT_HTTP_AUTHORIZATION'];
      }
  }