diff --git a/web.go b/web.go
index 87cbd18..64f8de7 100644
--- a/web.go
+++ b/web.go
@@ -192,7 +192,7 @@ func protectedMiddleware() gin.HandlerFunc {
 		}
 
 		authToken, err := c.Cookie("authToken")
-		if err != nil || authToken != config.LocalAuthToken {
+		if err != nil || authToken != config.LocalAuthToken || authToken == "" {
 			c.JSON(http.StatusUnauthorized, gin.H{"error": "Unauthorized"})
 			c.Abort()
 			return