This is a django based CI/CD application that can be used by doctors and patients. The application provides role-based access to doctors, patients, and admin. Doctors can log in to view all the patient’s profiles, and add prescriptions to them. The Doctor can also view all the registered medicines on the portal along with their details. The patients can view all the doctors. A patient's record can only be viewed either by the doctor or the patient itself.
In App's homepage, In middle card there is a button "View Doctors". It is redirecting to all_doctors page, but It should not behave like this because doctors can be viewed only by logged In patient.
In this case a user id for that patient will be created in database and he/she will also be able to login ad well and when he/she logs in and try to view his/her own details, route is breaking.