Bug Details:
Monthly report trigger is exposed publicly without authentication
Test Case 1:
Step 1: Send an unauthenticated GET request to /test/send-monthly.
Step 2: Observe the backend response.
Expected Output:
A report-triggering endpoint should require authorization or should not be publicly exposed at all.
Actual Output:
The route returned HTTP 200 with a success response and directly triggered the monthly mail routine without authentication.
Bug Details:
Monthly report trigger is exposed publicly without authentication
Test Case 1:
Step 1: Send an unauthenticated GET request to /test/send-monthly.
Step 2: Observe the backend response.
Expected Output:
A report-triggering endpoint should require authorization or should not be publicly exposed at all.
Actual Output:
The route returned HTTP 200 with a success response and directly triggered the monthly mail routine without authentication.