amazone/server/middlewares/verify-token.js

const jwt = require('jsonwebtoken')

module.exports = function ( req, res, next ) {
  let token = req.headers['x-access-token'] || req.headers['authorization']
  let checkBearer = 'Bearer '

  if (token.startsWith(checkBearer)) {
    token = token.slice(checkBearer.length, token.length)    
  }

  if (token) {
    jwt.verify(token, process.env.SECRET, (err, decoded) => {
      if (err) {
        res.json({
          success: false,
          message: 'Failed to authenticate'
        })
      } else {
        req.decoded = decoded
        next()
      }
    })
  } else {
    res.json({
      success: false,
      message: 'No token provided'
    })
  }
}