Some admin pages are showing up in Google searches on our NopCommerce deployment.
Example page: https://store.domain.tld/admin/customer/Edit/1
Somehow, it has details to the page, who the customer is, etc, even though the page forces a redirect.
Shouldn't the /admin directory be disallowed from the robots.txt?
I am looking at the code and it is not excluded.
https://github.com/nopSolutions/nopCommerce/blob/develop/src/Presentation/Nop.Web/Controllers/CommonController.cs
I can add the exclusion, but admin requires a login anyway.
Why and how are pages from /admin showing up?