diff --git a/src/middleware/user.js b/src/middleware/user.js
index d610ccef0d..0ed315e729 100644
--- a/src/middleware/user.js
+++ b/src/middleware/user.js
@@ -182,6 +182,7 @@ module.exports = function (middleware) {
 		if (allowed) {
 			return next();
 		}
+
 		controllers.helpers.notAllowed(req, res);
 	});
 
diff --git a/src/routes/user.js b/src/routes/user.js
index 6254dcdf5d..9825fa58ea 100644
--- a/src/routes/user.js
+++ b/src/routes/user.js
@@ -47,6 +47,6 @@ module.exports = function (app, name, middleware, controllers) {
 	setupPageRoute(app, `/${name}/:userslug/sessions`, accountMiddlewares, controllers.accounts.sessions.get);
 
 	setupPageRoute(app, '/notifications', [middleware.ensureLoggedIn], controllers.accounts.notifications.get);
-	setupPageRoute(app, `/${name}/:userslug/chats/:roomid?`, middlewares, controllers.accounts.chats.get);
+	setupPageRoute(app, `/${name}/:userslug/chats/:roomid?`, [middleware.exposeUid, middleware.canViewUsers], controllers.accounts.chats.get);
 	setupPageRoute(app, '/chats/:roomid?', [middleware.ensureLoggedIn], controllers.accounts.chats.redirectToChat);
 };