Webler-Group / webler-codes

4 stars 0 forks source link

Restriction for Authenticated Users [Access to some endpoints] #56

Open Bytenol opened 3 months ago

Bytenol commented 3 months ago

Currently, an authenticated user can access the /login page and some other pages like /register which they should not have any access to, after being authenticated.

An authenticated user can therefore re-log in, and this alters their lastLoggedIn... column in the database. This should be prevented. This issue aim at writing a middleware that redirect an authenticated users from accessing a certain page.