'Blazor server side Cookie Authentication - direct link work even user is not authenticated

I'm follow this tutorial for simple cookie auth in Blazor server side.

for the most part i got it working but user can still access the page mark with

@attribute [Authorize(Roles = "User, Admin")]

via direct link.

the navi link that I have on the menu marked with will not show unless user login. so i believe it work.

the first comment in the tutorial said change:

<routeview routedata="@routeData" defaultlayout="@typeof(MainLayout)"/>

to

<authorizerouteview routedata="@routeData" defaultlayout="@typeof(MainLayout)"/>

and the whole site is blank

blazorblazor-server-side


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

Blazor Textfield Oninput User Typing Delay

Blazor @attribute [Authorize] tag is not working

Can Blazor create wasm modules without any UI references or code?

How to host an ASP.NET Core Blazor WebAssembly Hosted App on AWS?

How to host an ASP.NET Core Blazor WebAssembly Hosted App on AWS?

How to use Bootstrap modal in Blazor client app?

Better way to get browser culture in Blazor webassembly / client app

basic component layout inheritance blazor

Component attributes do not support complex content (mixed C# and markup)

How do I set focus to a text box in Blazor

How to acess the appsettings in blazor webassembly

How to use alert(),confirm() and prompt() function using Blazor?

Static Web Apps shows "Refused to apply style from <URL> because its MIME type ('text/html') is not a supported stylesheet MIME type"

Injecting AuthenticationStateProvider into an API Controller in a Blazor Server app

How to publish Blazor WebAssembly with ASP.NET Core hosted