From 179eddb75ced98d93b0ae195e835591c3e4bfb53 Mon Sep 17 00:00:00 2001
From: Bryan Haberberger <bryan.j.haberberger@slu.edu>
Date: Thu, 26 Mar 2026 10:50:49 -0500
Subject: [PATCH] For consistency and bugs

---
 app.js    | 4 ++--
 tokens.js | 7 +++----
 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/app.js b/app.js
index 68c3541..8562fbb 100644
--- a/app.js
+++ b/app.js
@@ -90,7 +90,7 @@ if(corsAllowedOrigins !== "*") {
       // No CORS for you.
       res.removeHeader("Access-Control-Allow-Origin")
     }
-    next()
+    return next()
   })
 }
 
@@ -110,7 +110,7 @@ app.use('/app/overwrite', overwriteRouter)
 
 // catch 404 and forward to error handler
 app.use(function(req, res, next) {
-  next(createError(404))
+  return next(createError(404))
 })
 
 // error handler
diff --git a/tokens.js b/tokens.js
index 459463c..71a8f20 100644
--- a/tokens.js
+++ b/tokens.js
@@ -63,19 +63,18 @@ async function checkAccessToken(req, res, next) {
         // If the instance of TinyPen is not registered and does not have a token then there is nothing to check.
         // Move on through the middleware.  RERUM will tell you what you did wrong.
         if(!process?.env?.ACCESS_TOKEN) {
-            next()
-            return
+            return next()
         }
         if (isTokenExpired(process.env.ACCESS_TOKEN)) {
             console.log("TinyPen detected an expired access token.  Updating the token now.")
             await generateNewAccessToken()
         }
-        next()    
+        return next()
     }
     catch (err) {
         console.log("TinyPen encountered an error trying to refresh its access token")
         console.error(err)
-        next(err)
+        return next(err)
     }
     
 }