Missing Authorization - Route Handler
- Vulnerable 1 - API code:
pages/api/example-3-missing-authorization-route-handler/vulnerable.ts - Vulnerable 2 - API code:
pages/api/example-3-missing-authorization-route-handler/vulnerable.ts - Solution 1 - API code:
pages/api/example-3-missing-authorization-route-handler/solution-1.ts - Solution 2 - API code:
pages/api/example-3-missing-authorization-route-handler/solution-2.ts
Below, a list of unpublished blog posts will appear for logged-in users - similar to a "Drafts" list in a CMS.
Each unpublished blog post should only be visible for the owner of the post.
Each unpublished blog post should only be visible for the owner of the post.