fullstackhero · jcarlosmanuel · May 20, 2022
diff --git a/src/Client.Infrastructure/Auth/Jwt/JwtAuthenticationHeaderHandler.cs b/src/Client.Infrastructure/Auth/Jwt/JwtAuthenticationHeaderHandler.cs
@@ -16,8 +16,10 @@ public JwtAuthenticationHeaderHandler(IAccessTokenProviderAccessor tokenProvider
 
     protected override async Task<HttpResponseMessage> SendAsync(HttpRequestMessage request, CancellationToken cancellationToken)
     {
-        // skip token endpoints
-        if (request.RequestUri?.AbsolutePath.Contains("/tokens") is not true)
+        // skip token endpoints and pages with attribute [AllowAnonymous]
+        if (request.RequestUri?.AbsolutePath.Contains("/tokens") is not true &&
+          request.RequestUri?.AbsolutePath.Contains("/self-register") is not true &&
+          request.RequestUri?.AbsolutePath.Contains("/forgot-password") is not true)
         {
             if (await _tokenProviderAccessor.TokenProvider.GetAccessTokenAsync() is string token)
             {
@@ -31,4 +33,4 @@ protected override async Task<HttpResponseMessage> SendAsync(HttpRequestMessage
 
         return await base.SendAsync(request, cancellationToken);
     }
-}
+}