diff --git a/src/routes/router.js b/src/routes/router.js
index 7ef7d17..e668986 100644
--- a/src/routes/router.js
+++ b/src/routes/router.js
@@ -1,8 +1,8 @@
 const router = require('express').Router();
-const auth = require('./validate.js');
+// const auth = require('./validate.js');
 
 router.post('/authenticate', require('./authenticate'));
-router.get('/', auth, require('./home.js'));
+router.get('/', require('./home.js'));
 router.get('/register', require('./register.js'));
 router.get('/login', require('./login.js'));
 router.get('/profile', require('./profile.js'));
diff --git a/src/routes/validate.js b/src/routes/validate.js
index ca98107..9e84870 100644
--- a/src/routes/validate.js
+++ b/src/routes/validate.js
@@ -1,3 +1,18 @@
+const jwt = require('jsonwebtoken');
+
 module.exports = (req, res, next) => {
-  return next();
+  const token = req.cookies.token;
+
+  // verify jwt if it exists
+  if (token) {
+    return jwt.verify(token, process.env.SECRET, (err) => {
+      if (err) return res.status(500).send('Error reading JWT.');
+
+      // continue if verification is successful
+      return next();
+    });
+  }
+
+  // if jwt doesn't exist, display message to user
+  return res.status(403).send('You need to log in to view this page.');
 };