Server middleware checks the token?

📌 Middleware example:

function auth(req, res, next) {

const token = req.headers.authorization?.split(' ')[1];
if (!token) return res.status(401).send('Unauthorized');

try {

const user = jwt.verify(token, 'secret');
req.user = user;

next();

} catch {

res.status(403).send('Invalid token');

}
}