You have to authenticate the user before "logoutCurrentUser" in routes,
Since it's not authenticated that means anyone can logout the user