Hi Jonatan, yes, that’s correct.
I have a Wishlist item out on this if you’d like to add your vote;
The solution I have so far is pretty limited- it can detect whether you’re logged in to a specific page or folder, and based on that, it can handle navigation, So essentially, I’m “security” the CMS pages by controlling who gets to click the links to them.
The pages themselves are not actually secured, so if you have the URL, or Google picks them up, it currently can’t block those users.
If you’re adept at js/jQuery, you might be able to fix the page-load-timing issue I’m having that would fix that.