diff --git a/js/user.js b/js/user.js
index a6a4c21..8997344 100644
--- a/js/user.js
+++ b/js/user.js
@@ -54,6 +54,12 @@ function setCookie(cname, cvalue, exdays) {
   document.cookie = cname + "=" + cvalue + ";" + expires + ";path=/";
 }
 
+function logout() {
+  localStorage.setItem("priv_key","")
+  localStorage.setItem("decryption_key","")
+  location.assign('/logout')
+}
+
 async function setuser() {
   if(getCookie("priv_key") != "") {
     localStorage.setItem("priv_key",getCookie("priv_key"))
diff --git a/server.js b/server.js
index 19e8afc..a2bd310 100644
--- a/server.js
+++ b/server.js
@@ -701,6 +701,11 @@ router.get("/avatars/*", (request, response, next) => {
   response.status(404).send("No avatar with that name found")
 })
 
+router.get("/logout",async function(req,res) {
+  res.cookie("AUTH_COOKIE","", { maxAge: 0, httpOnly: true, secure: DID_I_FINALLY_ADD_HTTPS })
+  res.redirect("/")
+})
+
 router.get("/*", (request, response, next) => {
   if(!increaseUSERCall(request,response))return
   let originalUrl = request.originalUrl.split("?").shift()
@@ -719,8 +724,6 @@ router.get("/*", (request, response, next) => {
   response.status(404).send("No file with that name found")
 })
 
-
-
 router.post("/register",async function(req,res) {
   for (let i = 0; i < 10; i++) { //don't want people spam registering
     if(!increaseAPICall(req,res))return;
diff --git a/views/user.html b/views/user.html
index 184d7e7..5118cf4 100644
--- a/views/user.html
+++ b/views/user.html
@@ -34,6 +34,8 @@
       <button onclick="location.assign('/changeUsername')">Want to change your username?</button>
       <br>
       <button onclick="location.assign('/posts')">Want to chat with some cool fellas?</button>
+      <br>
+      <button onclick="logout()">Logout</button>
     </div>
   </main>
   <footer>