fix

backend/src/middleware/auth.ts

@@ -16,14 +16,17 @@ export async function requireAuth(
 
   // 2. Bearer token auth (iOS / native clients)
   const authHeader = req.headers.authorization;
+  console.log('[requireAuth] authorization header:', authHeader ? `${authHeader.slice(0, 20)}…` : '(none)');
   if (authHeader?.startsWith('Bearer ')) {
     const accessToken = authHeader.slice(7);
     try {
       const user = await verifyBearerToken(accessToken);
       req.user = user;
       return next();
-    } catch {
-      res.status(401).json({ error: 'Unauthorized' });
+    } catch (err) {
+      const message = err instanceof Error ? err.message : String(err);
+      console.error('[requireAuth] verifyBearerToken failed:', err);
+      res.status(401).json({ error: `Unauthorized: ${message}` });
       return;
     }
   }