diff --git a/backend/config/cors.php b/backend/config/cors.php
index 55f86d9..486120d 100644
--- a/backend/config/cors.php
+++ b/backend/config/cors.php
@@ -15,7 +15,7 @@
     |
     */
 
-    'paths' => ['api/*', 'sanctum/csrf-cookie', 'login'],
+    'paths' => ['api/*', 'sanctum/csrf-cookie', 'login', 'logout'],
 
     'allowed_methods' => ['*'],
 
diff --git a/backend/routes/web.php b/backend/routes/web.php
index 346b944..930ee2c 100644
--- a/backend/routes/web.php
+++ b/backend/routes/web.php
@@ -9,3 +9,5 @@
 
 // We are using sanctum for SPA, which requires web guard
 Route::post('/login', [AuthenticatedUserController::class, 'store']);
+
+Route::post('/logout', [AuthenticatedUserController::class, 'destroy']);