diff --git a/pkg/api/middleware/auth.go b/pkg/api/middleware/auth.go
index eac1c6a..f6fb742 100644
--- a/pkg/api/middleware/auth.go
+++ b/pkg/api/middleware/auth.go
@@ -37,6 +37,12 @@ func UserSession(authService *authz.Service) gin.HandlerFunc {
 			return
 		}
 
+		// If the request is not GET and disabled, deny it
+		if ctx.Request.Method != "GET" && !user.Active {
+			ctx.JSON(http.StatusForbidden, gin.H{"error": "User is disabled"})
+			ctx.Abort()
+		}
+
 		// Get user session
 		userSession, err := authService.GetUserAuthProfile(ctx, sessionId)
 		if err != nil {