diff --git a/src/Middlewares/authMiddleware.js b/src/Middlewares/authMiddleware.js
index ec05e31..576e1dd 100644
--- a/src/Middlewares/authMiddleware.js
+++ b/src/Middlewares/authMiddleware.js
@@ -1,16 +1,17 @@
-const jwt = require('jsonwebtoken')
+import jwt from 'jsonwebtoken';
 
-exports.verifyWebToken =(req, res, next)=>{
-    const token = res.cookie.token;
+export const verifyWebToken = (req, res, next) => {
+  const token = req.cookies?.token; // corrected from res.cookie.token → req.cookies.token
 
-    if(!token){
-        return res.status(501).json({message:"No access"})
-    }
-    try {
-        const decoded = jwt.verify(token, process.env.JWT_SECRET);
-        req.user = decoded; // attach user data to request
-        next();
-    } catch (err) {
-        res.status(401).json({ message: 'Invalid or expired token.' });
-    }
-}
\ No newline at end of file
+  if (!token) {
+    return res.status(501).json({ message: 'No access' });
+  }
+
+  try {
+    const decoded = jwt.verify(token, process.env.JWT_SECRET);
+    req.user = decoded; // attach user data to request
+    next();
+  } catch (err) {
+    res.status(401).json({ message: 'Invalid or expired token.' });
+  }
+};