Authenticated but can visit signup and home page

Question

Authenticated but can visit signup and home page

Opened this issue a year ago · 1 comments

Describe behavior

I can still access the home screen (the "/" route) even after login, which exposes the login and signup buttons on the navbar, allowing me to visit the signup page while already logged in.

Possible fix

Modify Route guard to prevent user from seeing the home page after being authenticated

Answer 1 · 2023-08-20T18:59:20.000Z

Hello @teyim,

Thank you for taking the time to report this issue.

Could you please provide more details regarding the specific vulnerabilities or threats that users may face as a result of this access? Additionally, if possible, could you explain how this could be exploited or cause harm? Any examples of how users may be negatively impacted would also be helpful.

We look forward to hearing back from you and continuing this discussion.