I found out that one web page that I thought was protected from unauthorized access is in fact non protected.
An user can copy the link, then still can access this page without having to be logged in.
How I can force the user to log in even if he tries to do a copy/paste ? (he knows what the link looks like).
Thanks in advance for you help