cluster-424
A recurring auth-middleware shape where an app’s expected session cookie isn’t present on subsequent requests, so redirects occur without authentication despite client-side setup.