You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When auth cookie session time expired API methods must return HTTP Status code 401.
Actual behavior
Now, in this case, returned 200 Ok. Response body contains HTML text of page '/Account/Login'. That is, the backend returns us a MVC view of login page instead of 401 Code.
Steps to reproduce
Reduce CookieAuthenticationOptions.ExpireTimeSpan param of appsetings.json to convenient for test purpose. For example to 2 min.
Start storefront with any theme.
Go to the page where angular app of theme call some API method.
Open browsers console on tab network. After the tuned cookie time is expired do page refresh with F5 and see any api calling result response. The response will contain all as described above.
The text was updated successfully, but these errors were encountered:
Expected behavior
When auth cookie session time expired API methods must return HTTP Status code 401.
Actual behavior
Now, in this case, returned 200 Ok. Response body contains HTML text of page '/Account/Login'. That is, the backend returns us a MVC view of login page instead of 401 Code.
Steps to reproduce
The text was updated successfully, but these errors were encountered: