From 097ecd64215506e22df789b26df654d998b6bbac Mon Sep 17 00:00:00 2001
From: Khwezi Mngoma <khwezi@msn.com>
Date: Thu, 4 Jun 2026 14:45:33 +0200
Subject: [PATCH 1/2] Configured security

---
 MidrandBookshop/MidrandBookshop.csproj |  4 ++--
 MidrandBookshop/Program.cs             |  1 +
 MidrandBookshop/appsettings.json       |  5 ++++-
 midrandbooks-uat.yml                   | 13 +++++++++++++
 4 files changed, 20 insertions(+), 3 deletions(-)

diff --git a/MidrandBookshop/MidrandBookshop.csproj b/MidrandBookshop/MidrandBookshop.csproj
index c51dc1b..eed9056 100644
--- a/MidrandBookshop/MidrandBookshop.csproj
+++ b/MidrandBookshop/MidrandBookshop.csproj
@@ -18,13 +18,13 @@
   </ItemGroup>
 
   <ItemGroup>
-    <PackageReference Include="LiteCharms.Features" Version="1.71.0" />
+    <PackageReference Include="LiteCharms.Features" Version="1.80.0" />
   </ItemGroup>
 
   <!-- UI -->
   <ItemGroup>
     <PackageReference Include="ANM.Blazored.Toast" Version="0.1.1" />
-    <PackageReference Include="LiteCharms.Features.MidrandBooks" Version="1.71.0" />
+    <PackageReference Include="LiteCharms.Features.MidrandBooks" Version="1.80.0" />
     
     <!-- Global Usings -->
     <Using Include="Blazored.Toast.Services" />
diff --git a/MidrandBookshop/Program.cs b/MidrandBookshop/Program.cs
index 2308885..a3d32c8 100644
--- a/MidrandBookshop/Program.cs
+++ b/MidrandBookshop/Program.cs
@@ -13,6 +13,7 @@ builder.AddMonitoring();
 builder.Services.AddEndpointsApiExplorer();
 
 builder.Services.AddMediator();
+builder.Services.AddAuthentikUiSecurity(builder.Configuration);
 
 builder.Services.AddScoped(typeof(IPipelineBehavior<,>), typeof(TelemetryPipelineBehavior<,>));
 builder.Services.AddScoped(typeof(IPipelineBehavior<,>), typeof(LoggingPipelineBehavior<,>));
diff --git a/MidrandBookshop/appsettings.json b/MidrandBookshop/appsettings.json
index 1b59dae..cefe3b0 100644
--- a/MidrandBookshop/appsettings.json
+++ b/MidrandBookshop/appsettings.json
@@ -1,5 +1,8 @@
 {
-  "HasherSettings": {    
+  "AuthentikSettings": {
+    "Authority": "https://id.khongisa.co.za/application/o/midrand-books-uat/"
+  },
+  "HasherSettings": {
     "MinHashLength": 11
   },
   "BookshopS3Settings": {
diff --git a/midrandbooks-uat.yml b/midrandbooks-uat.yml
index 34bba68..11677e1 100644
--- a/midrandbooks-uat.yml
+++ b/midrandbooks-uat.yml
@@ -26,6 +26,7 @@ data:
   ValidPayfastHosts__4: "ips.payfast.co.za"
   ValidPayfastHosts__5: "api.payfast.co.za"
   ValidPayfastHosts__6: "payment.payfast.io"
+  AuthentikSettings__Authority: "https://id.khongisa.co.za/application/o/midrand-books-api-uat/"
 ---
 apiVersion: v1
 kind: Secret
@@ -41,6 +42,8 @@ data:
   hasher-payfastpassphrase: OUdBSVIwdFdwaFgwcU8=
   bookshop-s3-accesskey: R0s1MTRkMmNlOGRjNjkyMzdhMDVjMDFlZWY=
   bookshop-s3-secretkey: ZWFhZmVkYTFhZWQ0MDllY2ZlNjA3MTRlY2RhNTQ5YjgyYmRmNWEzZGFmOWYxOGRkNjFmNjZiNDk3M2E2NDgyZQ==
+  authentik-clientid: Nm9oZk1lSndQNWR0YWY1RFMzZU9MY2NNSHF6WXlma1YzRTNGeE5Tbw==
+  authentik-clientsecret: TXV2a0FLQklHR3BkdEsyaFlabVU1dFRaUmNuM2FhRzhoMWhlVE1nazFYOGVwczYyMzNCS0REWGdpNXo0T01RalVzMGZEUEFmakpmVVRNN1h3ZjllMU01MTQyVGlvOXRycUdmZTM1THhPaExEUnp6N2gxSm5jVkNLYXZXUllndmQ=
 ---
 apiVersion: v1
 kind: PersistentVolumeClaim
@@ -93,6 +96,16 @@ spec:
             - configMapRef:
                 name: midrandbooks-config
           env:
+            - name: AuthentikSettings__ClientId
+              valueFrom:
+                secretKeyRef:
+                  name: midrandbooksapi-secrets
+                  key: authentik-clientid
+            - name: AuthentikSettings__ClientSecret
+              valueFrom:
+                secretKeyRef:
+                  name: midrandbooksapi-secrets
+                  key: authentik-clientsecret
             - name: BookshopS3Settings__AccessKey
               valueFrom:
                 secretKeyRef:

From 31a640d67245cdbe15d69fdf76955991dd0876f7 Mon Sep 17 00:00:00 2001
From: Khwezi Mngoma <khwezi@msn.com>
Date: Fri, 5 Jun 2026 05:58:05 +0200
Subject: [PATCH 2/2] Stable security

---
 .../Components/Layout/MainLayout.razor        |   2 +-
 .../Components/Pages/Profile.razor            | 359 +++++++++---------
 .../Components/RedirectToLogin.razor          |  10 +
 MidrandBookshop/Components/Routes.razor       |  32 +-
 MidrandBookshop/MidrandBookshop.csproj        |   4 +-
 MidrandBookshop/Program.cs                    |  13 +
 MidrandBookshop/appsettings.json              |   4 +-
 midrandbooks-uat.yml                          |   2 +
 8 files changed, 237 insertions(+), 189 deletions(-)
 create mode 100644 MidrandBookshop/Components/RedirectToLogin.razor

diff --git a/MidrandBookshop/Components/Layout/MainLayout.razor b/MidrandBookshop/Components/Layout/MainLayout.razor
index aaace25..49cd15c 100644
--- a/MidrandBookshop/Components/Layout/MainLayout.razor
+++ b/MidrandBookshop/Components/Layout/MainLayout.razor
@@ -167,7 +167,7 @@
                             <path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2" />
                             <circle cx="12" cy="7" r="4" />
                         </svg>
-                        LogIn
+                        Account
                     </a>
 
                     <a href="/profile" class="btn btn-sm btn-dark rounded-circle d-inline-flex d-md-none align-items-center justify-content-center border-0 p-0 shadow-sm"
diff --git a/MidrandBookshop/Components/Pages/Profile.razor b/MidrandBookshop/Components/Pages/Profile.razor
index 62ca532..64165ed 100644
--- a/MidrandBookshop/Components/Pages/Profile.razor
+++ b/MidrandBookshop/Components/Pages/Profile.razor
@@ -1,198 +1,209 @@
 @page "/profile"
+@using Microsoft.AspNetCore.Components.Authorization
+@inject NavigationManager Navigation
+@rendermode InteractiveServer
 
-<div class="container py-5">
-    <h2 class="fw-bold mb-5 tracking-tight">My Account</h2>
-    <div class="row g-5">
-        <div class="col-md-3">
-            <div class="nav flex-column nav-pills" role="tablist">
-                <button class="nav-link active text-start" data-bs-toggle="pill" data-bs-target="#orders" role="tab">Order History</button>
-                <button class="nav-link text-start" data-bs-toggle="pill" data-bs-target="#shipping" role="tab">Shipping Address</button>
-                <button class="nav-link text-start" data-bs-toggle="pill" data-bs-target="#profile" role="tab">Profile Settings</button>
-                <hr />
-                <button class="nav-link text-danger text-start">Logout</button>
-            </div>
-        </div>
-
-        <div class="col-md-9">
-            <div class="tab-content">
-
-                <div class="tab-pane fade show active" id="orders" role="tabpanel">
-                    <div class="d-flex justify-content-between align-items-center mb-4">
-                        <h5 class="fw-bold m-0">Order History</h5>
+<AuthorizeView>
+    <Authorized>
+        <div class="container py-5">
+            <h2 class="fw-bold mb-5 tracking-tight">My Account</h2>
+            <div class="row g-5">
+                <div class="col-md-3">
+                    <div class="nav flex-column nav-pills" role="tablist">
+                        <button class="nav-link active text-start" data-bs-toggle="pill" data-bs-target="#orders" role="tab">Order History</button>
+                        <button class="nav-link text-start" data-bs-toggle="pill" data-bs-target="#shipping" role="tab">Shipping Address</button>
+                        <button class="nav-link text-start" data-bs-toggle="pill" data-bs-target="#profile" role="tab">Profile Settings</button>
+                        <hr />
+                        <button class="nav-link text-danger text-start" @onclick="TriggerLogout">Logout</button>
                     </div>
+                </div>
 
-                    <div class="d-flex flex-column gap-3">
-                        @if (orderHistory != null)
-                        {
-                            @foreach (var order in orderHistory)
+                <div class="col-md-9">
+                    <div class="tab-content">
+
+                        <div class="tab-pane fade show active" id="orders" role="tabpanel">
+                            <div class="d-flex justify-content-between align-items-center mb-4">
+                                <h5 class="fw-bold m-0">Order History</h5>
+                            </div>
+
+                            <div class="d-flex flex-column gap-3">
+                                @if (orderHistory != null)
+                                {
+                                    @foreach (var order in orderHistory)
+                                    {
+                                        <div class="card p-4 shadow-sm order-history-card">
+                                            <div class="d-flex flex-column flex-sm-row justify-content-between align-items-start gap-3">
+
+                                                <div class="flex-grow-1 w-100">
+                                                    <div class="order-meta-track mb-2">
+                                                        <div class="meta-item-id">
+                                                            <span class="fw-bold text-dark">@order.OrderId</span>
+                                                        </div>
+                                                        <div class="meta-item-date">
+                                                            <span class="text-muted small">@order.OrderDate.ToString("MMM dd, yyyy")</span>
+                                                        </div>
+                                                        <div class="meta-item-status">
+                                                            <span class="badge @(order.Status?.ToLower() == "shipped" ? "status-shipped" : "status-delivered") text-uppercase">
+                                                                @order.Status
+                                                            </span>
+                                                        </div>
+                                                    </div>
+
+                                                    <h6 class="mb-2">
+                                                        <a href="/products/@order.ProductId" class="product-link fw-medium" title="@order.ProductTitle">
+                                                            @order.ProductTitle
+                                                        </a>
+                                                    </h6>
+
+                                                    <div class="d-flex align-items-center text-secondary small">
+                                                        <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24" width="12" height="12" fill="currentColor" class="me-1 text-muted flex-shrink-0">
+                                                            <path d="M12 2C8.13 2 5 5.13 5 9c0 5.25 7 13 7 13s7-7.75 7-13c0-3.87-3.13-7-7-7zm0 9.5c-1.38 0-2.5-1.12-2.5-2.5s1.12-2.5 2.5-2.5 2.5 1.12 2.5 2.5-1.12 2.5-2.5 2.5z" />
+                                                        </svg>
+                                                        <span class="text-muted">Shipped to:</span>&nbsp;@order.ShippingAddressName
+                                                    </div>
+                                                </div>
+
+                                                <div class="d-flex flex-row flex-sm-column align-items-center align-items-sm-end justify-content-between w-100 w-sm-auto pt-2 pt-sm-0 border-top border-sm-top-0 border-light">
+                                                    <div class="text-sm-end mb-sm-2">
+                                                        <span class="text-muted xx-small d-block text-uppercase font-monospace tracking-wider">Total Paid</span>
+                                                        <span class="fw-bold text-dark fs-5">R @order.Total.ToString("N2")</span>
+                                                    </div>
+
+                                                    <button class="btn btn-link p-0 text-dark action-btn mt-sm-1" title="Download Invoice" @onclick="() => DownloadInvoice(order.OrderId)">
+                                                        <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24" class="svg-icon">
+                                                            <path d="M19 12v7H5v-7H3v7c0 1.1.9 2 2 2h14c1.1 0 2-.9 2-2v-7h-2zm-6 .67l2.59-2.58L17 11.5l-5 5-5-5 1.41-1.41L11 12.67V3h2v9.67z" />
+                                                        </svg>
+                                                    </button>
+                                                </div>
+
+                                            </div>
+                                        </div>
+                                    }
+                                }
+                                else
+                                {
+                                    <div class="card p-4 text-center text-muted">
+                                        Loading order history...
+                                    </div>
+                                }
+                            </div>
+                        </div>
+
+                        <div class="tab-pane fade" id="shipping" role="tabpanel">
+                            <div class="d-flex justify-content-between align-items-center mb-4">
+                                <h5 class="fw-bold m-0">Saved Addresses</h5>
+                                @if (!showAddForm && editingAddress == null)
+                                {
+                                    <button class="btn btn-dark btn-sm rounded-pill px-4" @onclick="OpenAddForm">+ Add New</button>
+                                }
+                            </div>
+
+                            @if (showAddForm)
                             {
-                                <div class="card p-4 shadow-sm order-history-card">
-                                    <div class="d-flex flex-column flex-sm-row justify-content-between align-items-start gap-3">
-
-                                        <div class="flex-grow-1 w-100">
-                                            <div class="order-meta-track mb-2">
-                                                <div class="meta-item-id">
-                                                    <span class="fw-bold text-dark">@order.OrderId</span>
-                                                </div>
-                                                <div class="meta-item-date">
-                                                    <span class="text-muted small">@order.OrderDate.ToString("MMM dd, yyyy")</span>
-                                                </div>
-                                                <div class="meta-item-status">
-                                                    <span class="badge @(order.Status?.ToLower() == "shipped" ? "status-shipped" : "status-delivered") text-uppercase">
-                                                        @order.Status
-                                                    </span>
-                                                </div>
-                                            </div>
-
-                                            <h6 class="mb-2">
-                                                <a href="/products/@order.ProductId" class="product-link fw-medium" title="@order.ProductTitle">
-                                                    @order.ProductTitle
-                                                </a>
-                                            </h6>
-
-                                            <div class="d-flex align-items-center text-secondary small">
-                                                <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24" width="12" height="12" fill="currentColor" class="me-1 text-muted flex-shrink-0">
-                                                    <path d="M12 2C8.13 2 5 5.13 5 9c0 5.25 7 13 7 13s7-7.75 7-13c0-3.87-3.13-7-7-7zm0 9.5c-1.38 0-2.5-1.12-2.5-2.5s1.12-2.5 2.5-2.5 2.5 1.12 2.5 2.5-1.12 2.5-2.5 2.5z" />
-                                                </svg>
-                                                <span class="text-muted">Shipped to:</span>&nbsp;@order.ShippingAddressName
-                                            </div>
-                                        </div>
-
-                                        <div class="d-flex flex-row flex-sm-column align-items-center align-items-sm-end justify-content-between w-100 w-sm-auto pt-2 pt-sm-0 border-top border-sm-top-0 border-light">
-                                            <div class="text-sm-end mb-sm-2">
-                                                <span class="text-muted xx-small d-block text-uppercase font-monospace tracking-wider">Total Paid</span>
-                                                <span class="fw-bold text-dark fs-5">R @order.Total.ToString("N2")</span>
-                                            </div>
-
-                                            <button class="btn btn-link p-0 text-dark action-btn mt-sm-1" title="Download Invoice" @onclick="() => DownloadInvoice(order.OrderId)">
-                                                <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24" class="svg-icon">
-                                                    <path d="M19 12v7H5v-7H3v7c0 1.1.9 2 2 2h14c1.1 0 2-.9 2-2v-7h-2zm-6 .67l2.59-2.58L17 11.5l-5 5-5-5 1.41-1.41L11 12.67V3h2v9.67z" />
-                                                </svg>
-                                            </button>
-                                        </div>
-
+                                <div class="card p-4 border shadow-sm mb-4 bg-light">
+                                    <div class="d-flex justify-content-between align-items-center mb-3">
+                                        <h6 class="fw-bold m-0">New Address</h6>
+                                        <button type="button" class="btn-close" @onclick="() => showAddForm = false"></button>
+                                    </div>
+                                    <input type="text" class="form-control mb-2" placeholder="Address Name (e.g. Home, Office)" @bind="newAddressName" />
+                                    <input type="text" class="form-control mb-2" placeholder="Street Address" @bind="newStreetAddress" />
+                                    <div class="d-flex gap-2 mb-3">
+                                        <input type="text" class="form-control" placeholder="City" @bind="newCity" />
+                                        <input type="text" class="form-control" placeholder="Postal Code" @bind="newPostalCode" />
+                                    </div>
+                                    <div class="mb-3 d-flex gap-3">
+                                        <label class="pointer-label"><input type="checkbox" @bind="isBilling" /> Billing</label>
+                                        <label class="pointer-label"><input type="checkbox" @bind="isShipping" /> Shipping</label>
+                                    </div>
+                                    <div class="d-flex">
+                                        <button class="btn btn-dark btn-sm rounded-pill px-4" @onclick="SaveAddress">Save Address</button>
                                     </div>
                                 </div>
                             }
-                        }
-                        else
-                        {
-                            <div class="card p-4 text-center text-muted">
-                                Loading order history...
-                            </div>
-                        }
-                    </div>
-                </div>
 
-                <div class="tab-pane fade" id="shipping" role="tabpanel">
-                    <div class="d-flex justify-content-between align-items-center mb-4">
-                        <h5 class="fw-bold m-0">Saved Addresses</h5>
-                        @if (!showAddForm && editingAddress == null)
-                        {
-                            <button class="btn btn-dark btn-sm rounded-pill px-4" @onclick="OpenAddForm">+ Add New</button>
-                        }
-                    </div>
-
-                    @if (showAddForm)
-                    {
-                        <div class="card p-4 border shadow-sm mb-4 bg-light">
-                            <div class="d-flex justify-content-between align-items-center mb-3">
-                                <h6 class="fw-bold m-0">New Address</h6>
-                                <button type="button" class="btn-close" @onclick="() => showAddForm = false"></button>
-                            </div>
-                            <input type="text" class="form-control mb-2" placeholder="Address Name (e.g. Home, Office)" @bind="newAddressName" />
-                            <input type="text" class="form-control mb-2" placeholder="Street Address" @bind="newStreetAddress" />
-                            <div class="d-flex gap-2 mb-3">
-                                <input type="text" class="form-control" placeholder="City" @bind="newCity" />
-                                <input type="text" class="form-control" placeholder="Postal Code" @bind="newPostalCode" />
-                            </div>
-                            <div class="mb-3 d-flex gap-3">
-                                <label class="pointer-label"><input type="checkbox" @bind="isBilling" /> Billing</label>
-                                <label class="pointer-label"><input type="checkbox" @bind="isShipping" /> Shipping</label>
-                            </div>
-                            <div class="d-flex">
-                                <button class="btn btn-dark btn-sm rounded-pill px-4" @onclick="SaveAddress">Save Address</button>
-                            </div>
-                        </div>
-                    }
-
-                    @if (editingAddress != null)
-                    {
-                        <div class="card p-4 border shadow-sm mb-4 bg-light">
-                            <div class="d-flex justify-content-between align-items-center mb-3">
-                                <h6 class="fw-bold m-0">Edit Address</h6>
-                                <button type="button" class="btn-close" @onclick="CancelEditing"></button>
-                            </div>
-                            <input type="text" class="form-control mb-2" placeholder="Address Name" @bind="editingAddress.Name" />
-                            <input type="text" class="form-control mb-2" placeholder="Street Address" @bind="editingAddress.Street" />
-                            <div class="d-flex gap-2 mb-3">
-                                <input type="text" class="form-control" placeholder="City" @bind="editingAddress.City" />
-                                <input type="text" class="form-control" placeholder="Postal Code" @bind="editingAddress.PostalCode" />
-                            </div>
-                            <div class="mb-3 d-flex gap-3">
-                                <label class="pointer-label"><input type="checkbox" @bind="editingAddress.IsBilling" /> Billing</label>
-                                <label class="pointer-label"><input type="checkbox" @bind="editingAddress.IsShipping" /> Shipping</label>
-                            </div>
-                            <div class="d-flex">
-                                <button class="btn btn-dark btn-sm rounded-pill px-4" @onclick="UpdateAddress">Update Address</button>
-                            </div>
-                        </div>
-                    }
-
-                    @foreach (var addr in savedAddresses)
-                    {
-                        <div class="card p-4 shadow-sm mb-3 address-card">
-                            <div class="d-flex justify-content-between align-items-start">
-                                <div>
-                                    <h6 class="fw-bold mb-1">@addr.Name</h6>
-                                    <p class="mb-2 text-muted">@addr.Street, @addr.City, @addr.PostalCode</p>
-                                    <div class="d-flex gap-2 text-uppercase font-monospace text-muted small">
-                                        @if (addr.IsBilling)
-                                        {
-                                            <span class="badge badge-tag">[Billing]</span>
-                                        }
-                                        @if (addr.IsShipping)
-                                        {
-                                            <span class="badge badge-tag">[Shipping]</span>
-                                        }
+                            @if (editingAddress != null)
+                            {
+                                <div class="card p-4 border shadow-sm mb-4 bg-light">
+                                    <div class="d-flex justify-content-between align-items-center mb-3">
+                                        <h6 class="fw-bold m-0">Edit Address</h6>
+                                        <button type="button" class="btn-close" @onclick="CancelEditing"></button>
+                                    </div>
+                                    <input type="text" class="form-control mb-2" placeholder="Address Name" @bind="editingAddress.Name" />
+                                    <input type="text" class="form-control mb-2" placeholder="Street Address" @bind="editingAddress.Street" />
+                                    <div class="d-flex gap-2 mb-3">
+                                        <input type="text" class="form-control" placeholder="City" @bind="editingAddress.City" />
+                                        <input type="text" class="form-control" placeholder="Postal Code" @bind="editingAddress.PostalCode" />
+                                    </div>
+                                    <div class="mb-3 d-flex gap-3">
+                                        <label class="pointer-label"><input type="checkbox" @bind="editingAddress.IsBilling" /> Billing</label>
+                                        <label class="pointer-label"><input type="checkbox" @bind="editingAddress.IsShipping" /> Shipping</label>
+                                    </div>
+                                    <div class="d-flex">
+                                        <button class="btn btn-dark btn-sm rounded-pill px-4" @onclick="UpdateAddress">Update Address</button>
                                     </div>
                                 </div>
+                            }
 
-                                <div class="d-flex align-items-center gap-2 actions-container">
-                                    <label class="small text-muted d-flex align-items-center gap-1 m-0 pointer-label me-2">
-                                        <input type="checkbox" checked="@addr.IsPrimary" @onchange="(e) => SetPrimary(addr, e)" /> Primary
-                                    </label>
+                            @foreach (var addr in savedAddresses)
+                            {
+                                <div class="card p-4 shadow-sm mb-3 address-card">
+                                    <div class="d-flex justify-content-between align-items-start">
+                                        <div>
+                                            <h6 class="fw-bold mb-1">@addr.Name</h6>
+                                            <p class="mb-2 text-muted">@addr.Street, @addr.City, @addr.PostalCode</p>
+                                            <div class="d-flex gap-2 text-uppercase font-monospace text-muted small">
+                                                @if (addr.IsBilling)
+                                                {
+                                                    <span class="badge badge-tag">[Billing]</span>
+                                                }
+                                                @if (addr.IsShipping)
+                                                {
+                                                    <span class="badge badge-tag">[Shipping]</span>
+                                                }
+                                            </div>
+                                        </div>
 
-                                    <button class="btn btn-link p-0 text-dark action-btn" title="Edit Address" @onclick="() => StartEditing(addr)">
-                                        <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24" class="svg-icon">
-                                            <path d="M3 17.25V21h3.75L17.81 9.94l-3.75-3.75L3 17.25zM20.71 7.04c.39-.39.39-1.02 0-1.41l-2.34-2.34c-.39-.39-1.02-.39-1.41 0l-1.83 1.83 3.75 3.75 1.83-1.83z" />
-                                        </svg>
-                                    </button>
+                                        <div class="d-flex align-items-center gap-2 actions-container">
+                                            <label class="small text-muted d-flex align-items-center gap-1 m-0 pointer-label me-2">
+                                                <input type="checkbox" checked="@addr.IsPrimary" @onchange="(e) => SetPrimary(addr, e)" /> Primary
+                                            </label>
 
-                                    <button class="btn btn-link p-0 text-danger action-btn" title="Delete Address" @onclick="() => DeleteAddress(addr)">
-                                        <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24" class="svg-icon">
-                                            <path d="M6 19c0 1.1.9 2 2 2h8c1.1 0 2-.9 2-2V7H6v12zM19 4h-3.5l-1-1h-5l-1 1H5v2h14V4z" />
-                                        </svg>
-                                    </button>
+                                            <button class="btn btn-link p-0 text-dark action-btn" title="Edit Address" @onclick="() => StartEditing(addr)">
+                                                <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24" class="svg-icon">
+                                                    <path d="M3 17.25V21h3.75L17.81 9.94l-3.75-3.75L3 17.25zM20.71 7.04c.39-.39.39-1.02 0-1.41l-2.34-2.34c-.39-.39-1.02-.39-1.41 0l-1.83 1.83 3.75 3.75 1.83-1.83z" />
+                                                </svg>
+                                            </button>
+
+                                            <button class="btn btn-link p-0 text-danger action-btn" title="Delete Address" @onclick="() => DeleteAddress(addr)">
+                                                <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24" class="svg-icon">
+                                                    <path d="M6 19c0 1.1.9 2 2 2h8c1.1 0 2-.9 2-2V7H6v12zM19 4h-3.5l-1-1h-5l-1 1H5v2h14V4z" />
+                                                </svg>
+                                            </button>
+                                        </div>
+                                    </div>
                                 </div>
+                            }
+                        </div>
+
+                        <div class="tab-pane fade" id="profile" role="tabpanel">
+                            <div class="d-flex justify-content-between align-items-center mb-4">
+                                <h5 class="fw-bold m-0">Profile Settings</h5>
+                            </div>
+                            <div class="card p-4 shadow-sm">
+                                <p class="text-muted mb-0">Manage your password and profile data here.</p>
                             </div>
                         </div>
-                    }
-                </div>
 
-                <div class="tab-pane fade" id="profile" role="tabpanel">
-                    <div class="d-flex justify-content-between align-items-center mb-4">
-                        <h5 class="fw-bold m-0">Profile Settings</h5>
-                    </div>
-                    <div class="card p-4 shadow-sm">
-                        <p class="text-muted mb-0">Manage your password and profile data here.</p>
                     </div>
                 </div>
-
             </div>
         </div>
-    </div>
-</div>
+    </Authorized>
+    
+    <NotAuthorized>
+        <RedirectToLogin />
+    </NotAuthorized>
+</AuthorizeView>
 
 @code {
     private bool showAddForm = false;
@@ -216,6 +227,8 @@
         new AddressItem { Id = 3, Name = "Midrand Books Warehouse", Street = "Unit 8, Corporate Park North", City = "Randjespark", PostalCode = "1683", IsBilling = false, IsShipping = true, IsPrimary = false }
     };
 
+    private void TriggerLogout() => Navigation.NavigateTo("/logout", forceLoad: true);
+
     private void DownloadInvoice(string orderId)
     {
         // Handle invoice downloading logic here
diff --git a/MidrandBookshop/Components/RedirectToLogin.razor b/MidrandBookshop/Components/RedirectToLogin.razor
new file mode 100644
index 0000000..68ff98c
--- /dev/null
+++ b/MidrandBookshop/Components/RedirectToLogin.razor
@@ -0,0 +1,10 @@
+@inject NavigationManager Navigation
+
+@code {
+    protected override void OnInitialized()
+    {
+        var returnUrl = Navigation.ToBaseRelativePath(Navigation.Uri);
+
+        Navigation.NavigateTo($"/login?redirectUri={Uri.EscapeDataString(returnUrl)}", forceLoad: true);
+    }
+}
\ No newline at end of file
diff --git a/MidrandBookshop/Components/Routes.razor b/MidrandBookshop/Components/Routes.razor
index 71c38b1..6a23f48 100644
--- a/MidrandBookshop/Components/Routes.razor
+++ b/MidrandBookshop/Components/Routes.razor
@@ -1,12 +1,20 @@
-@using MidrandBookshop.Components.Pages
-<Router AppAssembly="@typeof(Program).Assembly">
-    <Found Context="routeData">
-        <RouteView RouteData="@routeData" DefaultLayout="@typeof(MainLayout)" />
-        <FocusOnNavigate RouteData="@routeData" Selector="h1" />
-    </Found>
-    <NotFound>
-        <LayoutView Layout="@typeof(MainLayout)">
-            <NotFound />
-        </LayoutView>
-    </NotFound>
-</Router>
\ No newline at end of file
+@using Microsoft.AspNetCore.Components.Authorization
+@using MidrandBookshop.Components.Pages
+
+<CascadingAuthenticationState>
+    <Router AppAssembly="@typeof(Program).Assembly">
+        <Found Context="routeData">
+            <AuthorizeRouteView RouteData="@routeData" DefaultLayout="@typeof(MainLayout)">
+                <NotAuthorized>                    
+                    <RedirectToLogin />
+                </NotAuthorized>
+            </AuthorizeRouteView>
+            <FocusOnNavigate RouteData="@routeData" Selector="h1" />
+        </Found>
+        <NotFound>
+            <LayoutView Layout="@typeof(MainLayout)">
+                <NotFound />
+            </LayoutView>
+        </NotFound>
+    </Router>
+</CascadingAuthenticationState>
\ No newline at end of file
diff --git a/MidrandBookshop/MidrandBookshop.csproj b/MidrandBookshop/MidrandBookshop.csproj
index eed9056..fd401c4 100644
--- a/MidrandBookshop/MidrandBookshop.csproj
+++ b/MidrandBookshop/MidrandBookshop.csproj
@@ -18,13 +18,13 @@
   </ItemGroup>
 
   <ItemGroup>
-    <PackageReference Include="LiteCharms.Features" Version="1.80.0" />
+    <PackageReference Include="LiteCharms.Features" Version="1.82.0" />
   </ItemGroup>
 
   <!-- UI -->
   <ItemGroup>
     <PackageReference Include="ANM.Blazored.Toast" Version="0.1.1" />
-    <PackageReference Include="LiteCharms.Features.MidrandBooks" Version="1.80.0" />
+    <PackageReference Include="LiteCharms.Features.MidrandBooks" Version="1.82.0" />
     
     <!-- Global Usings -->
     <Using Include="Blazored.Toast.Services" />
diff --git a/MidrandBookshop/Program.cs b/MidrandBookshop/Program.cs
index a3d32c8..b2257d3 100644
--- a/MidrandBookshop/Program.cs
+++ b/MidrandBookshop/Program.cs
@@ -1,9 +1,12 @@
 using LiteCharms.Features.Extensions;
 using LiteCharms.Features.Mediator;
 using LiteCharms.Features.MidrandBooks.Extensions;
+using Microsoft.AspNetCore.HttpOverrides;
 using MidrandBookshop.Components;
 using static LiteCharms.Features.Extensions.Quartz;
 
+AppContext.SetSwitch("Microsoft.IdentityModel.DisableTelemetry", true);
+
 var builder = WebApplication.CreateBuilder(args);
 
 builder.Services.AddRazorComponents()
@@ -31,9 +34,19 @@ builder.Services.AddMidrandShopDatabase(builder.Configuration);
 builder.Services.AddMidrandShopPostgresHealthCheck();
 builder.Services.AddMidrandShopQuartzHealthCheck();
 builder.Services.AddHealthChecksSupport(builder.Configuration);
+builder.Services.AddCascadingAuthenticationState();
+
+builder.Services.Configure<ForwardedHeadersOptions>(options =>
+{
+    options.ForwardedHeaders = ForwardedHeaders.XForwardedFor | ForwardedHeaders.XForwardedProto;
+    options.KnownProxies.Clear();
+});
 
 var app = builder.Build();
 
+app.UseForwardedHeaders();
+app.AddSecurityEndpoints();
+
 var schedulerFactory = app.Services.GetRequiredService<ISchedulerFactory>();
 var scheduler = await schedulerFactory.GetScheduler(MidrandShopSchedulerName);
 
diff --git a/MidrandBookshop/appsettings.json b/MidrandBookshop/appsettings.json
index cefe3b0..fb852fd 100644
--- a/MidrandBookshop/appsettings.json
+++ b/MidrandBookshop/appsettings.json
@@ -1,6 +1,8 @@
 {
   "AuthentikSettings": {
-    "Authority": "https://id.khongisa.co.za/application/o/midrand-books-uat/"
+    "Authority": "https://id.khongisa.co.za/application/o/midrand-books-uat/",
+    "MetadataEndpoint": "https://id.khongisa.co.za/application/o/midrand-books-uat/.well-known/openid-configuration",
+    "RevokationEndpoint": "https://id.khongisa.co.za/application/o/revoke/"
   },
   "HasherSettings": {
     "MinHashLength": 11
diff --git a/midrandbooks-uat.yml b/midrandbooks-uat.yml
index 11677e1..58211af 100644
--- a/midrandbooks-uat.yml
+++ b/midrandbooks-uat.yml
@@ -27,6 +27,8 @@ data:
   ValidPayfastHosts__5: "api.payfast.co.za"
   ValidPayfastHosts__6: "payment.payfast.io"
   AuthentikSettings__Authority: "https://id.khongisa.co.za/application/o/midrand-books-api-uat/"
+  AuthentikSettings__MetadataEndpoint: "https://id.khongisa.co.za/application/o/midrand-books-uat/.well-known/openid-configuration"
+  AuthentikSettings__RevokationEndpoint: "https://id.khongisa.co.za/application/o/revoke/"
 ---
 apiVersion: v1
 kind: Secret