Without login i can able to call/use sendOtp api for phone verification
I forgot to restrict /profile page in my application while doing development.
i can abel to see phone number edit box.
i just entered my phone number and clicked send otp button.
button trigged sendOtp method from client side one and the api returned success message,
i expected api will return 401 because i haven't logged in to the system, so session/cookie is not there
i can abel to see phone number edit box.
i just entered my phone number and clicked send otp button.
button trigged sendOtp method from client side one and the api returned success message,
i expected api will return 401 because i haven't logged in to the system, so session/cookie is not there
