The social compass endpoint is returning information even without an active session
Summary
The social compass is returning information without valid credentials. Because of this, the compass is randomly shown on mobile when the tokens are expired. (Even for users that already answered it)
Endpoint https://www.minds.com/api/v3/social-compass/questions
Steps to reproduce
Get request without credentials to https://www.minds.com/api/v3/social-compass/questions
Platform information
API
What is the current bug behavior?
It is returning the social compass information without an active session (answersProvided: false)
What is the expected correct behavior?
it should return a 401
Relevant logs and/or screenshots
Possible fixes
Check for session