Background:
I am handling authentication in my project using Authentication Handler class. The logic is: token created during login will be verified and if it is valid, then only access to required APIs will be given.
Scenario:
I am logged in the application with valid credentials(I have a token created during login). If I open a page in another tab from the app (using window.open(address, "_blank")), it is opening that page. But when I manually open another tab on browser and enter the same address in address bar, ,it is redirecting me to login page.
Question:
Isn't opening page using window.open and manually entering address in address bar the same thing? How come I have token available in session storage when I am using window.open but not available when I am manually entering url in new tab?
What I have tried:
When redirecting from window.open code, newly opened tab has token present in Session Storage of browser(idk how it got that, did not passed token as query string), but on manually entering url, token is not present in session storage.