Hi @michalpij. Not sure I'm following what you wrote above.

Are you saying some routes are being exposed to unauthorized users?

Routes like /admin and /teachers check the role to make sure the user is authorized in their +page.server.ts files.