diff --git a/app.js b/app.js
index b6fb4a0e097f282ea915b3a8b973cd1ede3931c7..31b03ff185f524acf9627a6dde20c33177c02125 100644
--- a/app.js
+++ b/app.js
@@ -32,7 +32,7 @@ app.use(bodyParser.json());
 
 // การตั้งค่า Session
 app.use(session({
-  secret: process.env.SESSION_SECRET,
+  secret: process.env.SESSION_SECRET || 'beaglelover',
   resave: false,
   saveUninitialized: false
 }));
diff --git a/db.js b/db.js
index c4cdfabd68e2929ccb0cab87afcbbffc26e6e443..761aab0c2f7789bcacd7e8b162eddccb74061d27 100644
--- a/db.js
+++ b/db.js
@@ -4,10 +4,10 @@ const mysql = require('mysql2/promise');
 
 // สร้าง connection pool
 const pool = mysql.createPool({
-  host: process.env.DB_HOST || '10.104.20.250',
+  host: process.env.DB_HOST || 'localhost',
   port: process.env.DB_PORT || '3306',
   user: process.env.DB_USER || 'root',
-  password: process.env.DB_PASS || 'TKAzta61467',
+  password: process.env.DB_PASS || '',
   database: process.env.DB_NAME || 'club_db',
 });
 
diff --git a/package.json b/package.json
index 125ab9a0f015fd11cbd16bca6d6875e1b2b77742..41be33abc8114850de5be2174051e62cee2dbe47 100644
--- a/package.json
+++ b/package.json
@@ -8,7 +8,6 @@
   "keywords": [],
   "author": "",
   "license": "ISC",
-  "description": "",
   "dependencies": {
     "axios": "^1.8.1",
     "bcrypt": "^5.1.1",
@@ -23,5 +22,6 @@
     "mysql2": "^3.14.0",
     "nodemon": "^3.1.9",
     "openai": "^4.86.1"
-  }
+  },
+  "description": ""
 }
diff --git a/routes/auth.js b/routes/auth.js
index cbaee2fb0c739adf1fcb4b0b88819d46d4020f42..a4fd139415f6d6fa319818c2add69968692af409 100644
--- a/routes/auth.js
+++ b/routes/auth.js
@@ -11,7 +11,8 @@ router.get('/login', (req, res) => {
 router.post('/login', async (req, res) => {
   const { username, password } = req.body;
   try {
-    const [users] = await db.query('SELECT * FROM user WHERE username = ?', [username]);
+    // เปลี่ยนจาก `user` เป็น `users`
+    const [users] = await db.query('SELECT * FROM users WHERE username = ?', [username]);
     if (users.length === 0) {
       return res.render('auth/login', { error: 'ชื่อผู้ใช้หรือรหัสผ่านไม่ถูกต้อง' });
     }
@@ -38,8 +39,9 @@ router.post('/register', async (req, res) => {
   const { username, email, password, phone, f_name, l_name, club_id } = req.body;
   try {
     const hashedPassword = await bcrypt.hash(password, 10);
+    // เปลี่ยนจาก `user` เป็น `users`
     await db.query(
-      `INSERT INTO user 
+      `INSERT INTO users 
         (username, email, password, phone, f_name, l_name, club_id, role)
         VALUES (?, ?, ?, ?, ?, ?, ?, 'member')`,
       [username, email, hashedPassword, phone, f_name, l_name, club_id || null]
@@ -58,4 +60,4 @@ router.get('/logout', (req, res) => {
   });
 });
 
-module.exports = router;
\ No newline at end of file
+module.exports = router;