Dotnet API Testing

Trying to figure out a way to unit test our auth0 protected endpoints. This API is written with dotnet core 5.0. We are hoping to utilize scoped permissions and currently have that all working. The endpoints are protected and we can auth no problem. The issue that comes is unit testing the endpoints to verify our permissions are properly configured and provide sanity checks moving forward with the project. However, when I stand up an instance of the controller and provide a mock repository, I can get the data with no authentication measures. Kind of a catch 22 since we can easily test the endpoints logic, but, cannot test the endpoints protection mechanisms. Any insight would be greatly appreciated.