From 62c8d8a68731cc74ce74d6da5a0e431c3eda00d4 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marek=20Jais=C5=84ski?= Date: Fri, 8 May 2026 18:44:33 +0000 Subject: [PATCH] Configure Cookie authentication to return 401 for API paths in Server project --- src/NexusReader.Web.New/Program.cs | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/src/NexusReader.Web.New/Program.cs b/src/NexusReader.Web.New/Program.cs index b335169..82cd785 100644 --- a/src/NexusReader.Web.New/Program.cs +++ b/src/NexusReader.Web.New/Program.cs @@ -96,6 +96,18 @@ builder.Services.ConfigureApplicationCookie(options => options.Cookie.HttpOnly = true; options.ExpireTimeSpan = TimeSpan.FromDays(30); options.SlidingExpiration = true; + options.Events.OnRedirectToLogin = context => + { + if (context.Request.Path.StartsWithSegments("/api")) + { + context.Response.StatusCode = 401; + } + else + { + context.Response.Redirect(context.RedirectUri); + } + return Task.CompletedTask; + }; }); builder.Services.Configure(options =>