const _authorizeFolderActivityStream = function (ctx, folderId, token, callback) {
  if (isObject(token)) {
    if (not(Signature.verifyExpiringResourceSignature(ctx, folderId, token.expires, token.signature))) {
      return callback({ code: 401, msg: 'Invalid signature' });
    }