Connexion

* 541: SECURITY: use `Authorization` header instead of URL params when trying to verify OAuth tokens against TokenInfo endpoint (this might be a **BREAKING CHANGE** for TokenInfo endpoints not supporting the `Authorization` header)
* 523, 545: minor fixes / refactoring

* 526: enable the [use of Flask-Injector](https://medium.com/ssola/building-microservices-with-python-part-i-5240a8dcc2fb) again
* 504: allow `http.HTTPStatus` enums as response status codes

* 500: preserve the multiplicity of array type query parameters (e.g. `?items=1&items=2&items=3|4`)

* 497: fix KeyError if not `Content-Type` in request headers
* 485: fix string type mapping for Python 2

* 495: use env markers for dependencies

* 492: build universal wheel (py2.py3)
* 487: validate responses against "default" response definition