Restricting Repository Access: How to force login on initial visit and hide all metadata from anonymous users?

[AFA]

Hi DSpace Community,

I am looking for guidance on how to completely restrict our repository so that it requires authentication before displaying any content.

By default, DSpace exposes the homepage and metadata publicly. We want to change this behavior so that when a user visits our DSpace site URL, the system immediately redirects them to the login page. Only after a successful login should the user be allowed to view the homepage, search, or access any metadata and content.

Could anyone point me to the best practices for achieving this workflow? Specifically:

• How do we configure the user interface to force a redirect to the login page upon initial visit?
• Do we need to combine this with database authorization policies (e.g., removing READ from the Anonymous group), or is it handled entirely via frontend routing configuration?

For reference, we are currently using DSpace 9.2

Thank you in advance for your help!

Best regards,