Allow unauthorized users to search and spectate.

Shogi.Api/Controllers/SessionsController.cs

@@ -54,6 +54,7 @@ public class SessionsController(
 	/// <param name="sessionId"></param>
 	/// <returns></returns>
 	[HttpGet("{sessionId}")]
+	[AllowAnonymous]
 	public async Task<ActionResult<Session>> GetSession(Guid sessionId)
 	{
 		var session = await application.ReadSession(sessionId.ToString());
@@ -78,12 +79,11 @@ public class SessionsController(
 		};
 	}
 
-	[HttpGet()]
+	[HttpGet]
+	[AllowAnonymous]
 	public async Task<ActionResult<SessionMetadata[]>> ReadAllSessionsMetadata()
 	{
-		var id = this.User.GetId();
-		if (id == null) return this.Unauthorized();
-
+		var id = this.User.GetId() ?? string.Empty;
 		var dtos = await application.ReadAllSessionMetadatas(id);
 		return dtos
 			.Select(dto => new SessionMetadata