When a route that requires auth is hit, save the route to req.originalUrl and redirect back to that after successful auth.
Sign-in route should not update req.originalUrl (so it redirects back to /join). Or just have sign-in route set req.originalUrl to /join always.