Skip to content
This repository has been archived by the owner on Jun 20, 2023. It is now read-only.

/admin is not hidden to non-administrative users #34

Open
coffeexcode opened this issue Feb 26, 2021 · 0 comments
Open

/admin is not hidden to non-administrative users #34

coffeexcode opened this issue Feb 26, 2021 · 0 comments

Comments

@coffeexcode
Copy link

Severity

Medium

Environment

Windows 10 Desktop
Chrome

Steps to reproduce:

  1. Run the application
  2. Choose Canada
  3. Sign in to any "buyer or seller" account
  4. Navigate to /admin

Expected:

The page should not load and re-direct to a different page

Actual:

The admin page loads. Even if the actions are protected at API/Backend level, I shouldn't be able to see any administrative content.

Screenshot:

image
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@coffeexcode