Azure
Access to pages is possible without login even its required
Bug description
Access to pages are possible without login or are quickly displayed, before redirected to the login page.
Reproduction steps
Open the following pages directly:
- https://api-management-service-name.developer.azure-api.net/profile
- https://api-management-service-name.developer.azure-api.net/change-password
When accessing https://api-management-service-name.developer.azure-api.net/reports it will be just displayed, even it make no sense to show it whithout user relation.
Expected behavior
If a user is not authenticated, the user should be redirected to the login-page without loading the page and the requested origin page should be put as returnUrl query parameter.
Is your portal managed or self-hosted?
Managed
Release tag or commit SHA (if using self-hosted version)
release 2.4.1
Environment
- Operating system: Windows 10
- Browser: Google Chrome
- Version: 84.0.4147.89
We're now working on defining the scope of a feature that will enable content access control in the developer portal. If you're interested in this improvement, please respond to our survey: https://aka.ms/apim/survey/devportal/accesscontrol - your feedback will help us better understand your requirements and design the right solution. The survey closes on Friday, November 5.
We're now working on defining the scope of a feature that will enable content access control in the developer portal. If you're interested in this improvement, please respond to our survey: https://aka.ms/apim/survey/devportal/accesscontrol - your feedback will help us better understand your requirements and design the right solution. The survey closes on Friday, November 5.
Just a reminder that the survey closes in 2 days.