diff --git a/server/src/routes/auth.ts b/server/src/routes/auth.ts
index ff421d0d..3effb0d2 100644
--- a/server/src/routes/auth.ts
+++ b/server/src/routes/auth.ts
@@ -91,7 +91,7 @@ router.get('/current-user', requireSignIn, async (req: AuthenticatedRequest, res
     }
 });
 
-router.post('/generate-api-key', async (req: AuthenticatedRequest, res) => {
+router.post('/generate-api-key', requireSignIn, async (req: AuthenticatedRequest, res) => {
     try {
         if (!req.user) {
             return res.status(401).json({ ok: false, error: 'Unauthorized' });