I created an ASP .NET Core 3.1 website which uses MVC (at least to the best of my understanding). Apart from the login page I use cookie auth to restrict access. One of the
