diff --git a/.gitignore b/.gitignore
index 6ccfd2f..d43b7d0 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,35 @@
-node_modules
-.next
-.venv
+# Node / Next.js
+node_modules/
+.next/
+out/
+dist/
+
+# Logs
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+
+# Environment files
+.env
+.env.local
+.env.development.local
+.env.test.local
+.env.production.local
+
+# FastAPI / Python
+__pycache__/
+*.pyc
+*.pyo
+*.pyd
+*.sqlite3
+*.db
+
+# Virtual environments
+.venv/
+venv/
+env/
+
+# IDE / Editor
+.vscode/
+.idea/
+*.swp
diff --git a/app/admin/page.tsx b/app/admin/page.tsx
index 662ac69..62568f5 100644
--- a/app/admin/page.tsx
+++ b/app/admin/page.tsx
@@ -1,492 +1,483 @@
-'use client';
-
-import React, { useEffect, useMemo, useState } from 'react';
-import { useRouter } from 'next/navigation';
-
-type SystemSettings = {
-  model: string;
-  systemPrompt: string;
-  temperature: number; // 0–2
-  maxTokens: number; // >=1
-  retrievalDepth: number; // >=0
-  rateLimit: number; // >=1 (requests/min)
-};
-
-const DEFAULT_SETTINGS: SystemSettings = {
-  model: 'gpt-4o-mini',
-  systemPrompt:
-    'You are an internal assistant. Answer concisely and follow safety and privacy policies. Do not reveal secrets.',
-  temperature: 0.2,
-  maxTokens: 1024,
-  retrievalDepth: 5,
-  rateLimit: 60,
-};
-
-const HARD_CODED_USERNAME = 'admin';
-const HARD_CODED_PASSWORD = 'secret';
-const ADMIN_TOKEN_KEY = 'admin_token';
-const LOCAL_STORAGE_KEY = 'admin_settings_v1';
-
-// Safe normalization + bounds
-function normalizeSettings(obj: Partial<SystemSettings> | null): SystemSettings {
-  const s = obj ?? {};
-  const temperature =
-    typeof s.temperature === 'number' ? Math.min(2, Math.max(0, s.temperature)) : DEFAULT_SETTINGS.temperature;
-  const maxTokens =
-    typeof s.maxTokens === 'number' ? Math.max(1, Math.floor(s.maxTokens)) : DEFAULT_SETTINGS.maxTokens;
-  const retrievalDepth =
-    typeof s.retrievalDepth === 'number' ? Math.max(0, Math.floor(s.retrievalDepth)) : DEFAULT_SETTINGS.retrievalDepth;
-  const rateLimit =
-    typeof s.rateLimit === 'number' ? Math.max(1, Math.floor(s.rateLimit)) : DEFAULT_SETTINGS.rateLimit;
-
-  return {
-    model: typeof s.model === 'string' && s.model.trim() ? s.model.trim() : DEFAULT_SETTINGS.model,
-    systemPrompt:
-      typeof s.systemPrompt === 'string' && s.systemPrompt.trim()
-        ? s.systemPrompt
-        : DEFAULT_SETTINGS.systemPrompt,
-    temperature,
-    maxTokens,
-    retrievalDepth,
-    rateLimit,
-  };
-}
-
-export default function AdminPageClient() {
+"use client";
+
+import { useEffect, useMemo, useState } from "react";
+import { useRouter, useSearchParams } from "next/navigation";
+import { ProtectedRoute } from "@/components/auth/ProtectedRoute";
+import { useAuth } from "@/contexts/AuthContext";
+import { adminApi, AdminStats, SystemSettings, User } from "@/lib/api/admin";
+import { ApiError } from "@/lib/api/client";
+import { UserManagement } from "@/components/admin/UserManagement";
+import { Header } from "@/components/layout/Header";
+import { ApiKeyManagement } from "@/components/admin/ApiKeyManagement";
+
+type TabKey = "stats" | "users" | "settings" | "api-keys";
+const DEFAULT_MODELS = [
+  "GPT-2 (Local)",
+  "GPT-3.5 Turbo",
+  "GPT-4",
+  "GPT-4o Mini",
+];
+
+const TAB_CONFIG: { key: TabKey; label: string; description: string }[] = [
+  {
+    key: "stats",
+    label: "Overview",
+    description: "Metrics and usage",
+  },
+  {
+    key: "users",
+    label: "Users",
+    description: "Manage accounts and roles",
+  },
+  {
+    key: "settings",
+    label: "LLM Settings",
+    description: "Control model, tokens, limits",
+  },
+  {
+    key: "api-keys",
+    label: "API Keys",
+    description: "Manage access keys",
+  },
+];
+
+function AdminPageContent() {
+  const { logout } = useAuth();
   const router = useRouter();
-
-  const [authed, setAuthed] = useState<boolean>(() => {
-    try {
-      return sessionStorage.getItem(ADMIN_TOKEN_KEY) === 'ok';
-    } catch {
-      return false;
-    }
-  });
-  const [username, setUsername] = useState('');
-  const [password, setPassword] = useState('');
-
-  const [loading, setLoading] = useState(false);
+  const searchParams = useSearchParams();
+  const [activeTab, setActiveTab] = useState<TabKey>("stats");
+  const [stats, setStats] = useState<AdminStats | null>(null);
+  const [users, setUsers] = useState<User[]>([]);
   const [settings, setSettings] = useState<SystemSettings | null>(null);
-  const [saving, setSaving] = useState(false);
-  const [message, setMessage] = useState('');
-  const [error, setError] = useState('');
-
-  const [testPrompt, setTestPrompt] = useState('');
-  const [testing, setTesting] = useState(false);
-  const [testResult, setTestResult] = useState<string | null>(null);
+  const [modelOptions, setModelOptions] = useState<string[]>(DEFAULT_MODELS);
+  const [apiKeys, setApiKeys] = useState<any[]>([]);
+  const [loading, setLoading] = useState(true);
+  const [error, setError] = useState("");
 
-  // Derived validation state
-  const validation = useMemo(() => {
-    const issues: string[] = [];
-    if (!settings) return issues;
-    if (!settings.model.trim()) issues.push('Model is required.');
-    if (settings.temperature < 0 || settings.temperature > 2) issues.push('Temperature must be between 0 and 2.');
-    if (!Number.isFinite(settings.maxTokens) || settings.maxTokens < 1) issues.push('Max tokens must be >= 1.');
-    if (!Number.isFinite(settings.retrievalDepth) || settings.retrievalDepth < 0)
-      issues.push('Retrieval depth must be >= 0.');
-    if (!Number.isFinite(settings.rateLimit) || settings.rateLimit < 1)
-      issues.push('Rate limit must be >= 1 requests/min.');
-    if (!settings.systemPrompt.trim()) issues.push('System prompt is required.');
-    return issues;
-  }, [settings]);
+  const navButtons = useMemo(() => TAB_CONFIG, []);
 
   useEffect(() => {
-    if (authed) {
-      loadSettings();
+    const tabParam = searchParams.get("tab") as TabKey | null;
+    if (
+      tabParam &&
+      ["stats", "users", "settings", "api-keys"].includes(tabParam)
+    ) {
+      setActiveTab(tabParam);
     }
-  }, [authed]);
+  }, [searchParams]);
+
+  useEffect(() => {
+    loadData();
+  }, [activeTab]);
 
-  async function loadSettings() {
+  const loadData = async () => {
     setLoading(true);
-    setError('');
+    setError("");
     try {
-      const res = await fetch('/api/admin/settings');
-      if (res.ok) {
-        const json = await res.json();
-        const normalized = normalizeSettings(json);
-        setSettings(normalized);
-        try {
-          localStorage.setItem(LOCAL_STORAGE_KEY, JSON.stringify(normalized));
-        } catch {}
-        setLoading(false);
-        return;
-      } else {
-        setError(`Failed to load from server: ${res.status} ${res.statusText}`);
+      if (activeTab === "stats") {
+        const data = await adminApi.getStats();
+        setStats(data);
+      } else if (activeTab === "users") {
+        const data = await adminApi.getUsers();
+        setUsers(data);
+      } else if (activeTab === "settings") {
+        const [settingsData, modelsData] = await Promise.all([
+          adminApi.getSystemSettings(),
+          adminApi.getAvailableModels().catch(() => DEFAULT_MODELS),
+        ]);
+        const mergedModels = Array.from(
+          new Set([...(modelsData || DEFAULT_MODELS), settingsData.model])
+        );
+        setSettings(settingsData);
+        setModelOptions(mergedModels);
+      } else if (activeTab === "api-keys") {
+        const keys = await adminApi.getApiKeys();
+        setApiKeys(keys);
       }
-    } catch {
-      // ignore; fallback below
-    }
-
-    try {
-      const local = localStorage.getItem(LOCAL_STORAGE_KEY);
-      if (local) {
-        setSettings(normalizeSettings(JSON.parse(local)));
+    } catch (err) {
+      if (err instanceof ApiError) {
+        setError(err.message || "Failed to load data");
       } else {
-        setSettings(DEFAULT_SETTINGS);
+        setError("An unexpected error occurred");
       }
-    } catch {
-      setSettings(DEFAULT_SETTINGS);
     } finally {
       setLoading(false);
     }
-  }
+  };
 
-  function notify(msg: string) {
-    setMessage(msg);
-    setTimeout(() => setMessage(''), 3000);
-  }
+  const handleTabChange = (tab: TabKey) => {
+    setActiveTab(tab);
+    router.replace(`/admin?tab=${tab}`);
+  };
 
-  async function handleSave(e?: React.FormEvent) {
-    if (e) e.preventDefault();
+  const handleUpdateSettings = async (
+    updatedSettings: Partial<SystemSettings>
+  ) => {
     if (!settings) return;
-
-    // Block save if invalid
-    if (validation.length > 0) {
-      setError(validation.join(' '));
-      return;
-    }
-
-    setSaving(true);
-    setError('');
-    const payload = normalizeSettings(settings);
     try {
-      const res = await fetch('/api/admin/settings', {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        body: JSON.stringify(payload),
-      });
-      if (res.ok) {
-        const saved = await res.json().catch(() => null);
-        const normalized = normalizeSettings(saved || payload);
-        setSettings(normalized);
-        try {
-          localStorage.setItem(LOCAL_STORAGE_KEY, JSON.stringify(normalized));
-        } catch {}
-        notify('Settings saved.');
+      const updated = await adminApi.updateSystemSettings(updatedSettings);
+      setSettings(updated);
+    } catch (err) {
+      if (err instanceof ApiError) {
+        setError(err.message || "Failed to update settings");
       } else {
-        // Persist locally on server error
-        try {
-          localStorage.setItem(LOCAL_STORAGE_KEY, JSON.stringify(payload));
-        } catch {}
-        setError(`Save failed: ${res.status} ${res.statusText}`);
-        notify('Saved to localStorage (server error).');
+        setError("An unexpected error occurred");
       }
-    } catch {
-      // Persist locally on network error
-      try {
-        localStorage.setItem(LOCAL_STORAGE_KEY, JSON.stringify(payload));
-      } catch {}
-      setError('Network error while saving settings.');
-      notify('Saved to localStorage (network error).');
-    } finally {
-      setSaving(false);
     }
-  }
+  };
 
-  async function handleTest() {
-    if (!settings) return;
-    if (!testPrompt || testPrompt.trim().length === 0) {
-      setError('Test prompt cannot be empty.');
-      return;
-    }
-    if (validation.length > 0) {
-      setError('Fix settings validation issues before running a test.');
-      return;
-    }
-    setTesting(true);
-    setTestResult(null);
-    setError('');
-    try {
-      const res = await fetch('/api/admin/test', {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        body: JSON.stringify({ prompt: testPrompt, settings: normalizeSettings(settings) }),
-      });
-      if (res.ok) {
-        const json = await res.json().catch(() => null);
-        if (json && typeof json.output === 'string') {
-          setTestResult(json.output);
-        } else if (typeof json === 'string') {
-          setTestResult(json);
-        } else {
-          setTestResult(JSON.stringify(json, null, 2));
-        }
-      } else {
-        setError(`Test failed: ${res.status} ${res.statusText}`);
-      }
-    } catch {
-      setError('Network error while running test.');
-    } finally {
-      setTesting(false);
-    }
-  }
+  const handleLogout = async () => {
+    await logout();
+    router.push("/login");
+  };
 
-  function handleLogin(e?: React.FormEvent) {
-    if (e) e.preventDefault();
-    if (username === HARD_CODED_USERNAME && password === HARD_CODED_PASSWORD) {
-      try {
-        sessionStorage.setItem(ADMIN_TOKEN_KEY, 'ok');
-      } catch {}
-      setAuthed(true);
-      notify('Logged in (development only).');
-    } else {
-      setError('Invalid username or password.');
-    }
-  }
+  return (
+    <div className="min-h-screen bg-gray-50 dark:bg-gray-900">
+      <Header />
+      <div className="max-w-7xl mx-auto px-4 sm:px-6 lg:px-8 py-8">
+        {/* Dashboard Header */}
+        <div className="mb-8 flex flex-col md:flex-row md:items-center md:justify-between gap-4">
+          <div>
+            <h1 className="text-3xl font-bold text-gray-900 dark:text-white">
+              Admin Dashboard
+            </h1>
+            <p className="mt-2 text-gray-600 dark:text-gray-400">
+              Central control center for the platform
+            </p>
+          </div>
+        </div>
 
-  function handleLogout() {
-    try {
-      sessionStorage.removeItem(ADMIN_TOKEN_KEY);
-    } catch {}
-    setAuthed(false);
-    setUsername('');
-    setPassword('');
-    setSettings(null);
-    setMessage('');
-    setError('');
-    setTestPrompt('');
-    setTestResult(null);
-  }
+        {/* Dashboard Menu */}
+        <div className="grid grid-cols-1 sm:grid-cols-3 gap-4 mb-8">
+          {navButtons.map((item) => {
+            const isActive = activeTab === item.key;
+            return (
+              <button
+                key={item.key}
+                onClick={() => handleTabChange(item.key)}
+                className={`group text-left rounded-xl border transition-all duration-200 p-5 bg-white dark:bg-gray-800 ${
+                  isActive
+                    ? "border-blue-500 shadow-lg shadow-blue-500/10"
+                    : "border-gray-200 dark:border-gray-700 hover:border-blue-400 hover:shadow-lg hover:shadow-blue-500/10"
+                }`}
+              >
+                <div className="flex items-center justify-between">
+                  <div className="text-sm font-semibold text-gray-900 dark:text-white">
+                    {item.label}
+                  </div>
+                  <span
+                    className={`text-xs px-2 py-1 rounded-full ${
+                      isActive
+                        ? "bg-blue-100 text-blue-700 dark:bg-blue-900/30 dark:text-blue-200"
+                        : "bg-gray-100 text-gray-600 dark:bg-gray-800 dark:text-gray-300"
+                    }`}
+                  >
+                    {isActive ? "Active" : "Inactive"}
+                  </span>
+                </div>
+                <p className="mt-2 text-sm text-gray-600 dark:text-gray-400">
+                  {item.description}
+                </p>
+              </button>
+            );
+          })}
+        </div>
 
-  if (!authed) {
-    return (
-      <div className="min-h-screen flex items-center justify-center bg-gray-50 p-4">
-        <div className="w-full max-w-md bg-white rounded shadow p-6">
-          <h2 className="text-xl font-semibold mb-4">Admin Login (dev only)</h2>
-          {error && <div className="mb-3 text-red-600">{error}</div>}
-          <form onSubmit={handleLogin} className="space-y-4">
-            <div>
-              <label className="block text-sm font-medium text-gray-700 mb-1">Username</label>
-              <input
-                value={username}
-                onChange={(e) => setUsername(e.target.value)}
-                className="w-full border rounded px-3 py-2"
-                autoFocus
-              />
-            </div>
-            <div>
-              <label className="block text-sm font-medium text-gray-700 mb-1">Password</label>
-              <input
-                value={password}
-                onChange={(e) => setPassword(e.target.value)}
-                type="password"
-                className="w-full border rounded px-3 py-2"
-              />
-            </div>
-            <div className="flex items-center justify-between">
-              <div className="text-sm text-gray-500">username: admin / password: secret</div>
-              <button type="submit" className="px-4 py-2 bg-blue-600 text-white rounded">
-                Login
+        {/* Tabs */}
+        <div className="mb-6 border-b border-gray-200 dark:border-gray-700">
+          <nav className="flex space-x-8">
+            {TAB_CONFIG.map((tab) => (
+              <button
+                key={tab.key}
+                onClick={() => handleTabChange(tab.key)}
+                className={`py-4 px-1 border-b-2 font-medium text-sm capitalize transition-colors ${
+                  activeTab === tab.key
+                    ? "border-blue-500 text-blue-600 dark:text-blue-400"
+                    : "border-transparent text-gray-500 hover:text-gray-700 hover:border-gray-300 dark:text-gray-400 dark:hover:text-gray-300"
+                }`}
+              >
+                {tab.label}
               </button>
-            </div>
-          </form>
+            ))}
+          </nav>
         </div>
-      </div>
-    );
-  }
 
-  return (
-    <div className="min-h-screen bg-gray-100 p-6">
-      <div className="max-w-5xl mx-auto">
-        <div className="flex items-center justify-between mb-6">
-          <h1 className="text-2xl font-semibold">Admin — Prompt & Model Settings</h1>
-          <div className="flex items-center gap-3">
-            <button onClick={() => router.push('/')} className="px-3 py-2 border rounded bg-white">
-              Back to Chat
-            </button>
-            <button onClick={handleLogout} className="px-3 py-2 border rounded bg-white">
-              Logout
-            </button>
+        {/* Error Banner */}
+        {error && (
+          <div className="mb-6 bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
+            {error}
           </div>
-        </div>
+        )}
 
-        {loading || !settings ? (
-          <div className="p-6 bg-white rounded shadow text-gray-500">Loading settings...</div>
+        {/* Content */}
+        {loading ? (
+          <div className="flex items-center justify-center py-12">
+            <div className="animate-spin rounded-full h-12 w-12 border-b-2 border-blue-600"></div>
+          </div>
         ) : (
-          <div className="bg-white rounded shadow p-6 space-y-6">
-            {error && <div className="text-red-600">{error}</div>}
-            {message && <div className="text-green-600">{message}</div>}
-
-            <form onSubmit={handleSave} className="space-y-6">
-              <div className="grid grid-cols-1 md:grid-cols-2 gap-4">
-                <div>
-                  <label className="block text-sm font-medium text-gray-700 mb-1">Model</label>
-                  <input
-                    value={settings.model}
-                    onChange={(e) => setSettings({ ...settings, model: e.target.value })}
-                    className="w-full border rounded px-3 py-2"
-                  />
-                </div>
-
+          <div className="bg-white dark:bg-gray-800 rounded-xl shadow-lg border border-gray-200 dark:border-gray-700 p-6">
+            {activeTab === "stats" &&
+              (stats ? (
                 <div>
-                  <label className="block text-sm font-medium text-gray-700 mb-1">Temperature</label>
-                  <input
-                    type="number"
-                    step="0.1"
-                    min={0}
-                    max={2}
-                    value={settings.temperature}
-                    onChange={(e) =>
-                      setSettings({
-                        ...settings,
-                        temperature: Math.min(2, Math.max(0, parseFloat(e.target.value) || 0)),
-                      })
-                    }
-                    className="w-full border rounded px-3 py-2"
-                  />
+                  <h2 className="text-2xl font-semibold text-gray-900 dark:text-white mb-6">
+                    Statistics
+                  </h2>
+                  <div className="grid grid-cols-1 md:grid-cols-2 lg:grid-cols-4 gap-6">
+                    <div className="bg-blue-50 dark:bg-blue-900/20 p-6 rounded-lg">
+                      <div className="text-sm text-blue-600 dark:text-blue-400 font-medium mb-2">
+                        Total Users
+                      </div>
+                      <div className="text-3xl font-bold text-blue-900 dark:text-blue-100">
+                        {stats.totalUsers}
+                      </div>
+                    </div>
+                    <div className="bg-indigo-50 dark:bg-indigo-900/20 p-6 rounded-lg">
+                      <div className="text-sm text-indigo-600 dark:text-indigo-400 font-medium mb-2">
+                        Total Conversations
+                      </div>
+                      <div className="text-3xl font-bold text-indigo-900 dark:text-indigo-100">
+                        {stats.totalConversations}
+                      </div>
+                    </div>
+                    <div className="bg-purple-50 dark:bg-purple-900/20 p-6 rounded-lg">
+                      <div className="text-sm text-purple-600 dark:text-purple-400 font-medium mb-2">
+                        Total Messages
+                      </div>
+                      <div className="text-3xl font-bold text-purple-900 dark:text-purple-100">
+                        {stats.totalMessages}
+                      </div>
+                    </div>
+                    <div className="bg-green-50 dark:bg-green-900/20 p-6 rounded-lg">
+                      <div className="text-sm text-green-600 dark:text-green-400 font-medium mb-2">
+                        Active Users
+                      </div>
+                      <div className="text-3xl font-bold text-green-900 dark:text-green-100">
+                        {stats.activeUsers}
+                      </div>
+                    </div>
+                  </div>
                 </div>
-
-                <div>
-                  <label className="block text-sm font-medium text-gray-700 mb-1">Max Tokens</label>
-                  <input
-                    type="number"
-                    min={1}
-                    value={settings.maxTokens}
-                    onChange={(e) =>
-                      setSettings({
-                        ...settings,
-                        maxTokens: Math.max(1, parseInt(e.target.value || '1')),
-                      })
-                    }
-                    className="w-full border rounded px-3 py-2"
-                  />
+              ) : (
+                <div className="text-center py-12 text-gray-500 dark:text-gray-400">
+                  No statistics data available
                 </div>
-
-                <div>
-                  <label className="block text-sm font-medium text-gray-700 mb-1">Retrieval Depth</label>
-                  <input
-                    type="number"
-                    min={0}
-                    value={settings.retrievalDepth}
-                    onChange={(e) =>
-                      setSettings({
-                        ...settings,
-                        retrievalDepth: Math.max(0, parseInt(e.target.value || '0')),
-                      })
-                    }
-                    className="w-full border rounded px-3 py-2"
-                  />
+              ))}
+
+            {activeTab === "users" && (
+              <UserManagement initialUsers={users} onUpdate={loadData} />
+            )}
+
+            {activeTab === "settings" &&
+              (settings ? (
+                <SystemSettingsForm
+                  settings={settings}
+                  availableModels={modelOptions}
+                  onUpdate={handleUpdateSettings}
+                />
+              ) : (
+                <div className="text-center py-12 text-gray-500 dark:text-gray-400">
+                  No settings data available
                 </div>
+              ))}
 
-                <div>
-                  <label className="block text-sm font-medium text-gray-700 mb-1">Rate Limit (requests/min)</label>
-                  <input
-                    type="number"
-                    min={1}
-                    value={settings.rateLimit}
-                    onChange={(e) =>
-                      setSettings({
-                        ...settings,
-                        rateLimit: Math.max(1, parseInt(e.target.value || '1')),
-                      })
-                    }
-                    className="w-full border rounded px-3 py-2"
-                  />
-                </div>
-              </div>
+            {activeTab === "api-keys" && (
+              <ApiKeyManagement apiKeys={apiKeys} onKeysUpdated={loadData} />
+            )}
+          </div>
+        )}
+      </div>
+    </div>
+  );
+}
 
-              <div>
-                <label className="block text-sm font-medium text-gray-700 mb-1">System Prompt</label>
-                <textarea
-                  rows={6}
-                  value={settings.systemPrompt}
-                  onChange={(e) => setSettings({ ...settings, systemPrompt: e.target.value })}
-                  className="w-full border rounded px-3 py-2"
-                />
-                <p className="mt-2 text-sm text-gray-500">
-                  The system prompt controls assistant behavior. Sanitize and validate all prompt changes
-                  server-side before applying in production.
-                </p>
-              </div>
+function SystemSettingsForm({
+  settings,
+  availableModels,
+  onUpdate,
+}: {
+  settings: SystemSettings;
+  availableModels: string[];
+  onUpdate: (settings: Partial<SystemSettings>) => Promise<void>;
+}) {
+  const [formData, setFormData] = useState(settings);
+  const [loading, setLoading] = useState(false);
+  const [saved, setSaved] = useState(" ");
 
-              {validation.length > 0 && (
-                <div className="rounded border border-red-300 bg-red-50 p-3 text-sm text-red-700">
-                  <ul className="list-disc pl-5">
-                    {validation.map((v, i) => (
-                      <li key={i}>{v}</li>
-                    ))}
-                  </ul>
-                </div>
-              )}
+  useEffect(() => {
+    setFormData(settings);
+  }, [settings]);
 
-              <div className="flex items-center justify-end gap-3">
-                <button
-                  type="button"
-                  onClick={() => {
-                    setSettings(DEFAULT_SETTINGS);
-                    notify('Restored defaults (local only until saved).');
-                  }}
-                  className="px-4 py-2 border rounded"
-                >
-                  Reset to Defaults
-                </button>
-                <button
-                  type="submit"
-                  disabled={saving || validation.length > 0}
-                  className="px-4 py-2 bg-blue-600 text-white rounded hover:bg-blue-700 disabled:opacity-50"
-                >
-                  {saving ? 'Saving...' : 'Save Settings'}
-                </button>
-              </div>
-            </form>
+  const handleSubmit = async (e: React.FormEvent) => {
+    e.preventDefault();
+    setLoading(true);
+    setSaved(" ");
+    try {
+      const payload = {
+        ...formData,
+        temperature: Math.min(2, Math.max(0, formData.temperature)),
+        maxTokens: Math.min(4096, Math.max(1, formData.maxTokens)),
+      };
+      await onUpdate(payload);
+      setSaved("Settings saved");
+    } finally {
+      setLoading(false);
+    }
+  };
 
-            <div className="border-t pt-6">
-              <h3 className="text-lg font-medium mb-2">Real-time Test</h3>
-              <p className="text-sm text-gray-600 mb-3">
-                Send a single test prompt using the current settings to validate behavior.
-                Keep inputs safe and policy-compliant.
-              </p>
+  return (
+    <div>
+      <div className="flex items-center justify-between mb-6">
+        <div>
+          <h2 className="text-2xl font-semibold text-gray-900 dark:text-white">
+            LLM Control Settings
+          </h2>
+          <p className="text-sm text-gray-600 dark:text-gray-400 mt-1">
+            Configure model, temperature, tokens, and limits
+          </p>
+        </div>
+        {saved.trim() && (
+          <span className="text-sm text-green-600 dark:text-green-400 bg-green-50 dark:bg-green-900/20 border border-green-200 dark:border-green-800 rounded-full px-3 py-1">
+            {saved}
+          </span>
+        )}
+      </div>
 
-              <div className="grid grid-cols-1 md:grid-cols-2 gap-4">
-                <div>
-                  <label className="block text-sm font-medium text-gray-700 mb-1">Test Prompt</label>
-                  <textarea
-                    rows={4}
-                    value={testPrompt}
-                    onChange={(e) => setTestPrompt(e.target.value)}
-                    className="w-full border rounded px-3 py-2"
-                  />
-                  <div className="flex items-center gap-2 mt-3">
-                    <button
-                      onClick={handleTest}
-                      disabled={testing || validation.length > 0}
-                      className="px-4 py-2 bg-green-600 text-white rounded hover:bg-green-700 disabled:opacity-50"
-                    >
-                      {testing ? 'Testing...' : 'Run Test'}
-                    </button>
-                    <button
-                      onClick={() =>
-                        setTestPrompt(
-                          `Please summarize the following system instructions in one sentence: ${settings.systemPrompt}`
-                        )
-                      }
-                      className="px-3 py-2 border rounded"
-                    >
-                      Auto-fill
-                    </button>
-                    <div className="text-sm text-gray-500">Model: {settings.model}</div>
-                  </div>
-                </div>
+      <form onSubmit={handleSubmit} className="space-y-6">
+        <div className="grid grid-cols-1 md:grid-cols-2 gap-6">
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2">
+              Model
+            </label>
+            <select
+              value={formData.model}
+              onChange={(e) =>
+                setFormData({ ...formData, model: e.target.value })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            >
+              {(availableModels && availableModels.length > 0
+                ? Array.from(new Set([...availableModels, formData.model]))
+                : Array.from(new Set([...DEFAULT_MODELS, formData.model]))
+              ).map((model) => (
+                <option key={model} value={model}>
+                  {model}
+                </option>
+              ))}
+            </select>
+            <p className="mt-1 text-xs text-gray-500 dark:text-gray-400">
+              Select the deployed LLM backend
+            </p>
+          </div>
 
-                <div>
-                  <label className="block text-sm font-medium text-gray-700 mb-1">Test Output</label>
-                  <div className="min-h-[140px] p-3 bg-gray-50 border rounded text-sm">
-                    {testing && <div className="text-gray-500">Running test...</div>}
-                    {!testing && testResult && <pre className="whitespace-pre-wrap">{testResult}</pre>}
-                    {!testing && testResult === null && <div className="text-gray-400">No test run yet.</div>}
-                  </div>
-                </div>
-              </div>
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2">
+              Temperature
+            </label>
+            <div className="flex items-center gap-3">
+              <input
+                type="range"
+                min="0"
+                max="2"
+                step="0.05"
+                value={formData.temperature}
+                onChange={(e) =>
+                  setFormData({
+                    ...formData,
+                    temperature: parseFloat(e.target.value),
+                  })
+                }
+                className="flex-1"
+              />
+              <span className="w-14 text-sm text-gray-700 dark:text-gray-300 text-right">
+                {formData.temperature.toFixed(2)}
+              </span>
             </div>
+            <p className="mt-1 text-xs text-gray-500 dark:text-gray-400">
+              Controls randomness (0 = deterministic, 2 = creative)
+            </p>
+          </div>
 
-            <div className="text-xs text-gray-500">
-              Note: This temporary admin uses hardcoded credentials and client-side sessionStorage.
-              Replace with proper authentication and authorization, and ensure server-side validation and
-              auditing of all setting changes before use in production.
-            </div>
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2">
+              Max Tokens
+            </label>
+            <input
+              type="number"
+              min="1"
+              max="4096"
+              value={formData.maxTokens}
+              onChange={(e) =>
+                setFormData({
+                  ...formData,
+                  maxTokens: parseInt(e.target.value) || 0,
+                })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            />
+            <p className="mt-1 text-xs text-gray-500 dark:text-gray-400">
+              Limit generated tokens (1 - 4096)
+            </p>
           </div>
-        )}
-      </div>
+
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2">
+              Rate Limit (requests/min)
+            </label>
+            <input
+              type="number"
+              min="1"
+              value={formData.rateLimit}
+              onChange={(e) =>
+                setFormData({
+                  ...formData,
+                  rateLimit: parseInt(e.target.value) || 0,
+                })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            />
+            <p className="mt-1 text-xs text-gray-500 dark:text-gray-400">
+              Throttle requests to protect the service
+            </p>
+          </div>
+        </div>
+
+        <div>
+          <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2">
+            System Prompt
+          </label>
+          <textarea
+            value={formData.systemPrompt}
+            onChange={(e) =>
+              setFormData({ ...formData, systemPrompt: e.target.value })
+            }
+            rows={4}
+            className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+          />
+        </div>
+
+        <div className="flex justify-end gap-3">
+          {saved.trim() && (
+            <span className="text-sm text-green-600 dark:text-green-400">
+              {saved}
+            </span>
+          )}
+          <button
+            type="submit"
+            disabled={loading}
+            className="inline-flex items-center px-4 py-2 text-sm font-medium text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 rounded-lg shadow-sm focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 disabled:opacity-50"
+          >
+            {loading ? "Saving..." : "Save Settings"}
+          </button>
+        </div>
+      </form>
     </div>
   );
 }
+
+export default function AdminPage() {
+  return (
+    <ProtectedRoute>
+      <AdminPageContent />
+    </ProtectedRoute>
+  );
+}
diff --git a/app/chat/page.tsx b/app/chat/page.tsx
index b9dd5a2..80f1bd7 100644
--- a/app/chat/page.tsx
+++ b/app/chat/page.tsx
@@ -1,22 +1,25 @@
-'use client';
-
-import { useState, useEffect } from 'react';
-import { useRouter } from 'next/navigation';
-import { ProtectedRoute } from '@/components/auth/ProtectedRoute';
-import { ChatWindow } from '@/components/chat/ChatWindow';
-import { ConversationSidebar } from '@/components/chat/ConversationSidebar';
-import { useAuth } from '@/contexts/AuthContext';
-import { chatApi, Message, Conversation } from '@/lib/api/chat';
-import { ApiError } from '@/lib/api/client';
+"use client";
+
+import { useState, useEffect } from "react";
+import { useRouter } from "next/navigation";
+import { ProtectedRoute } from "@/components/auth/ProtectedRoute";
+import { ChatWindow } from "@/components/chat/ChatWindow";
+import { ConversationSidebar } from "@/components/chat/ConversationSidebar";
+import { Header } from "@/components/layout/Header";
+import { useAuth } from "@/contexts/AuthContext";
+import { chatApi, Message, Conversation } from "@/lib/api/chat";
+import { ApiError } from "@/lib/api/client";
 
 function ChatPageContent() {
   const { user, logout } = useAuth();
   const router = useRouter();
   const [messages, setMessages] = useState<Message[]>([]);
   const [conversations, setConversations] = useState<Conversation[]>([]);
-  const [currentConversationId, setCurrentConversationId] = useState<string | undefined>();
+  const [currentConversationId, setCurrentConversationId] = useState<
+    string | undefined
+  >();
   const [isLoading, setIsLoading] = useState(false);
-  const [error, setError] = useState('');
+  const [error, setError] = useState("");
 
   useEffect(() => {
     if (!user) {
@@ -27,7 +30,7 @@ function ChatPageContent() {
     }
     setCurrentConversationId(undefined);
     setMessages([]);
-    setError('');
+    setError("");
     loadConversations();
   }, [user]);
 
@@ -48,7 +51,7 @@ function ChatPageContent() {
       const data = await chatApi.getConversations();
       setConversations(data);
     } catch (err) {
-      console.error('Failed to load conversations:', err);
+      console.error("Failed to load conversations:", err);
     }
   };
 
@@ -57,19 +60,19 @@ function ChatPageContent() {
       const data = await chatApi.getConversationHistory(conversationId);
       setMessages(data.messages);
     } catch (err) {
-      console.error('Failed to load conversation history:', err);
-      setError('Failed to load conversation');
+      console.error("Failed to load conversation history:", err);
+      setError("Failed to load conversation");
     }
   };
 
   const handleSendMessage = async (messageText: string) => {
     if (!user) {
-      setError('You must be logged in to send a message.');
+      setError("You must be logged in to send a message.");
       return;
     }
 
     setIsLoading(true);
-    setError('');
+    setError("");
 
     try {
       const response = await chatApi.sendMessage({
@@ -81,7 +84,7 @@ function ChatPageContent() {
       const userMessage: Message = {
         id: `temp-${Date.now()}`,
         content: messageText,
-        role: 'user',
+        role: "user",
         timestamp: new Date().toISOString(),
         conversationId: response.conversationId,
       };
@@ -100,9 +103,9 @@ function ChatPageContent() {
       await loadConversations();
     } catch (err) {
       if (err instanceof ApiError) {
-        setError(err.message || 'Failed to send message');
+        setError(err.message || "Failed to send message");
       } else {
-        setError('An unexpected error occurred');
+        setError("An unexpected error occurred");
       }
     } finally {
       setIsLoading(false);
@@ -116,7 +119,7 @@ function ChatPageContent() {
   const handleNewConversation = () => {
     setCurrentConversationId(undefined);
     setMessages([]);
-    setError('');
+    setError("");
   };
 
   const handleDeleteConversation = async (conversationId: string) => {
@@ -128,113 +131,68 @@ function ChatPageContent() {
       }
       await loadConversations();
     } catch (err) {
-      console.error('Failed to delete conversation:', err);
+      console.error("Failed to delete conversation:", err);
     }
   };
 
   const handleLogout = async () => {
     await logout();
-    router.push('/');
+    router.push("/");
   };
 
   return (
-    <div className="flex h-screen bg-gray-100 dark:bg-gray-900">
-      {/* Sidebar */}
-      <ConversationSidebar
-        conversations={conversations}
-        currentConversationId={currentConversationId}
-        onSelectConversation={handleSelectConversation}
-        onNewConversation={handleNewConversation}
-        onDeleteConversation={handleDeleteConversation}
-      />
-
-      {/* Main Chat Area */}
-      <div className="flex-1 flex flex-col">
-        {/* Header */}
-        <header className="bg-white dark:bg-gray-800 border-b border-gray-200 dark:border-gray-700 px-6 py-4">
-          <div className="flex items-center justify-between">
-            <div>
-              <h1 className="text-xl font-semibold text-gray-900 dark:text-white">
-                Opportunity Center Chat
-              </h1>
-              <p className="text-sm text-gray-500 dark:text-gray-400">
-                {user?.name || user?.email}
-              </p>
-            </div>
-            <div className="flex items-center gap-4">
-              <button
-                onClick={() => router.push('/settings')}
-                className="p-2 hover:bg-gray-100 dark:hover:bg-gray-700 rounded-lg transition-colors"
-                title="Settings"
-              >
-                <svg
-                  className="w-5 h-5 text-gray-600 dark:text-gray-400"
-                  fill="none"
-                  stroke="currentColor"
-                  viewBox="0 0 24 24"
-                >
-                  <path
-                    strokeLinecap="round"
-                    strokeLinejoin="round"
-                    strokeWidth={2}
-                    d="M10.325 4.317c.426-1.756 2.924-1.756 3.35 0a1.724 1.724 0 002.573 1.066c1.543-.94 3.31.826 2.37 2.37a1.724 1.724 0 001.065 2.572c1.756.426 1.756 2.924 0 3.35a1.724 1.724 0 00-1.066 2.573c.94 1.543-.826 3.31-2.37 2.37a1.724 1.724 0 00-2.572 1.065c-.426 1.756-2.924 1.756-3.35 0a1.724 1.724 0 00-2.573-1.066c-1.543.94-3.31-.826-2.37-2.37a1.724 1.724 0 00-1.065-2.572c-1.756-.426-1.756-2.924 0-3.35a1.724 1.724 0 001.066-2.573c-.94-1.543.826-3.31 2.37-2.37.996.608 2.296.07 2.572-1.065z"
-                  />
-                  <path
-                    strokeLinecap="round"
-                    strokeLinejoin="round"
-                    strokeWidth={2}
-                    d="M15 12a3 3 0 11-6 0 3 3 0 016 0z"
-                  />
-                </svg>
-              </button>
-              {user?.role === 'admin' && (
+    <div className="flex h-screen flex-col bg-gray-100 dark:bg-gray-900">
+      <Header />
+      <div className="flex flex-1 overflow-hidden">
+        {/* Sidebar */}
+        <ConversationSidebar
+          conversations={conversations}
+          currentConversationId={currentConversationId}
+          onSelectConversation={handleSelectConversation}
+          onNewConversation={handleNewConversation}
+          onDeleteConversation={handleDeleteConversation}
+        />
+
+        {/* Main Chat Area */}
+        <div className="flex-1 flex flex-col">
+          {/* Error Banner */}
+          {error && (
+            <div className="bg-red-50 dark:bg-red-900/20 border-b border-red-200 dark:border-red-800 px-6 py-3">
+              <div className="flex items-center justify-between">
+                <p className="text-sm text-red-700 dark:text-red-400">
+                  {error}
+                </p>
                 <button
-                  onClick={() => router.push('/admin')}
-                  className="px-4 py-2 text-sm font-medium text-gray-700 dark:text-gray-300 hover:bg-gray-100 dark:hover:bg-gray-700 rounded-lg transition-colors"
+                  onClick={() => setError("")}
+                  className="text-red-700 dark:text-red-400 hover:text-red-900 dark:hover:text-red-300"
                 >
-                  Admin
+                  <svg
+                    className="w-5 h-5"
+                    fill="none"
+                    stroke="currentColor"
+                    viewBox="0 0 24 24"
+                  >
+                    <path
+                      strokeLinecap="round"
+                      strokeLinejoin="round"
+                      strokeWidth={2}
+                      d="M6 18L18 6M6 6l12 12"
+                    />
+                  </svg>
                 </button>
-              )}
-              <button
-                onClick={handleLogout}
-                className="px-4 py-2 text-sm font-medium text-gray-700 dark:text-gray-300 hover:bg-gray-100 dark:hover:bg-gray-700 rounded-lg transition-colors"
-              >
-                Logout
-              </button>
-            </div>
-          </div>
-        </header>
-
-        {/* Error Banner */}
-        {error && (
-          <div className="bg-red-50 dark:bg-red-900/20 border-b border-red-200 dark:border-red-800 px-6 py-3">
-            <div className="flex items-center justify-between">
-              <p className="text-sm text-red-700 dark:text-red-400">{error}</p>
-              <button
-                onClick={() => setError('')}
-                className="text-red-700 dark:text-red-400 hover:text-red-900 dark:hover:text-red-300"
-              >
-                <svg className="w-5 h-5" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                  <path
-                    strokeLinecap="round"
-                    strokeLinejoin="round"
-                    strokeWidth={2}
-                    d="M6 18L18 6M6 6l12 12"
-                  />
-                </svg>
-              </button>
+              </div>
             </div>
+          )}
+
+          {/* Chat Window */}
+          <div className="flex-1 overflow-hidden">
+            <ChatWindow
+              messages={messages}
+              onSendMessage={handleSendMessage}
+              isLoading={isLoading}
+              conversationId={currentConversationId}
+            />
           </div>
-        )}
-
-        {/* Chat Window */}
-        <div className="flex-1 overflow-hidden">
-          <ChatWindow
-            messages={messages}
-            onSendMessage={handleSendMessage}
-            isLoading={isLoading}
-            conversationId={currentConversationId}
-          />
         </div>
       </div>
     </div>
diff --git a/app/login/page.tsx b/app/login/page.tsx
index f8f83d3..ba9929c 100644
--- a/app/login/page.tsx
+++ b/app/login/page.tsx
@@ -1,32 +1,32 @@
-'use client';
+"use client";
 
-import { useState } from 'react';
-import { useRouter } from 'next/navigation';
-import Link from 'next/link';
-import { useAuth } from '@/contexts/AuthContext';
-import { ApiError } from '@/lib/api/client';
+import { useState } from "react";
+import { useRouter } from "next/navigation";
+import Link from "next/link";
+import { useAuth } from "@/contexts/AuthContext";
+import { ApiError } from "@/lib/api/client";
 
 export default function LoginPage() {
-  const [email, setEmail] = useState('');
-  const [password, setPassword] = useState('');
-  const [error, setError] = useState('');
+  const [email, setEmail] = useState("");
+  const [password, setPassword] = useState("");
+  const [error, setError] = useState("");
   const [loading, setLoading] = useState(false);
   const { login } = useAuth();
   const router = useRouter();
 
   const handleSubmit = async (e: React.FormEvent) => {
     e.preventDefault();
-    setError('');
+    setError("");
     setLoading(true);
 
     try {
       await login({ email, password });
-      router.push('/chat');
+      router.push("/chat");
     } catch (err) {
       if (err instanceof ApiError) {
-        setError(err.message || 'Login failed. Please check your credentials.');
+        setError(err.message || "Login failed. Please check your credentials.");
       } else {
-        setError('An unexpected error occurred');
+        setError("An unexpected error occurred");
       }
     } finally {
       setLoading(false);
@@ -34,92 +34,143 @@ export default function LoginPage() {
   };
 
   return (
-    <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
-      <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
-        <div>
-          <div className="flex justify-center">
-            <div className="w-12 h-12 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
-              <svg
-                className="w-7 h-7 text-white"
-                fill="none"
-                stroke="currentColor"
-                viewBox="0 0 24 24"
-              >
-                <path
-                  strokeLinecap="round"
-                  strokeLinejoin="round"
-                  strokeWidth={2}
-                  d="M8 10h.01M12 10h.01M16 10h.01M9 16H5a2 2 0 01-2-2V6a2 2 0 012-2h14a2 2 0 012 2v8a2 2 0 01-2 2h-5l-5 5v-5z"
-                />
-              </svg>
-            </div>
-          </div>
-          <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
-            Sign in to your account
-          </h2>
-          <p className="mt-2 text-center text-sm text-gray-600 dark:text-gray-400">
-            Or{' '}
-            <Link
-              href="/register"
-              className="font-medium text-blue-600 hover:text-blue-500 dark:text-blue-400"
+    <div className="min-h-screen bg-white dark:bg-gray-900 flex flex-col">
+      {/* Header */}
+      <header className="container mx-auto px-4 sm:px-6 lg:px-8 py-6 flex items-center justify-between">
+        <Link href="/" className="flex items-center gap-3">
+          <div className="w-10 h-10 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
+            <svg
+              className="w-6 h-6 text-white"
+              fill="none"
+              stroke="currentColor"
+              viewBox="0 0 24 24"
             >
-              create a new account
-            </Link>
-          </p>
-        </div>
-        <form className="mt-8 space-y-6" onSubmit={handleSubmit}>
-          {error && (
-            <div className="bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
-              {error}
-            </div>
-          )}
-          <div className="space-y-4">
-            <div>
-              <label htmlFor="email" className="block text-sm font-medium text-gray-700 dark:text-gray-300">
-                Email address
-              </label>
-              <input
-                id="email"
-                name="email"
-                type="email"
-                autoComplete="email"
-                required
-                value={email}
-                onChange={(e) => setEmail(e.target.value)}
-                className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
-                placeholder="Enter your email"
+              <path
+                strokeLinecap="round"
+                strokeLinejoin="round"
+                strokeWidth={2}
+                d="M8 10h.01M12 10h.01M16 10h.01M9 16H5a2 2 0 01-2-2V6a2 2 0 012-2h14a2 2 0 012 2v8a2 2 0 01-2 2h-5l-5 5v-5z"
               />
-            </div>
-            <div>
-              <label htmlFor="password" className="block text-sm font-medium text-gray-700 dark:text-gray-300">
-                Password
-              </label>
-              <input
-                id="password"
-                name="password"
-                type="password"
-                autoComplete="current-password"
-                required
-                value={password}
-                onChange={(e) => setPassword(e.target.value)}
-                className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
-                placeholder="Enter your password"
-              />
-            </div>
+            </svg>
           </div>
+          <span className="text-xl font-semibold text-gray-900 dark:text-white">
+            Opportunity Center
+          </span>
+        </Link>
+      </header>
 
-          <div>
-            <button
-              type="submit"
-              disabled={loading}
-              className="group relative w-full flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-lg text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 disabled:opacity-50 disabled:cursor-not-allowed transition-all"
-            >
-              {loading ? 'Signing in...' : 'Sign in'}
-            </button>
+      {/* Main Content */}
+      <main className="flex-1 flex items-center justify-center px-4 py-12">
+        <div className="w-full max-w-md">
+          {/* Card */}
+          <div className="bg-gray-50 dark:bg-gray-800 rounded-2xl shadow-lg p-8">
+            {/* Heading */}
+            <div className="mb-8">
+              <h1 className="text-3xl font-bold text-gray-900 dark:text-white mb-2">
+                Welcome Back
+              </h1>
+              <p className="text-gray-600 dark:text-gray-400">
+                Sign in to your account to continue
+              </p>
+            </div>
+
+            {/* Error Message */}
+            {error && (
+              <div className="mb-6 bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg text-sm">
+                {error}
+              </div>
+            )}
+
+            {/* Form */}
+            <form className="space-y-6" onSubmit={handleSubmit}>
+              {/* Email Field */}
+              <div>
+                <label
+                  htmlFor="email"
+                  className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2"
+                >
+                  Email Address
+                </label>
+                <input
+                  id="email"
+                  name="email"
+                  type="email"
+                  autoComplete="email"
+                  required
+                  value={email}
+                  onChange={(e) => setEmail(e.target.value)}
+                  className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 text-gray-900 dark:text-white placeholder-gray-400 dark:placeholder-gray-500 rounded-lg focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent bg-white dark:bg-gray-700 transition-colors"
+                  placeholder="you@example.com"
+                />
+              </div>
+
+              {/* Password Field */}
+              <div>
+                <label
+                  htmlFor="password"
+                  className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2"
+                >
+                  Password
+                </label>
+                <input
+                  id="password"
+                  name="password"
+                  type="password"
+                  autoComplete="current-password"
+                  required
+                  value={password}
+                  onChange={(e) => setPassword(e.target.value)}
+                  className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 text-gray-900 dark:text-white placeholder-gray-400 dark:placeholder-gray-500 rounded-lg focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent bg-white dark:bg-gray-700 transition-colors"
+                  placeholder="••••••••"
+                />
+              </div>
+
+              {/* Forgot Password Link */}
+              <div className="text-right">
+                <Link
+                  href="/recovery"
+                  className="text-sm font-medium text-blue-600 hover:text-blue-700 dark:text-blue-400 dark:hover:text-blue-300 transition-colors"
+                >
+                  Forgot password?
+                </Link>
+              </div>
+
+              {/* Submit Button */}
+              <button
+                type="submit"
+                disabled={loading}
+                className="w-full py-2 px-4 bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 text-white font-semibold rounded-lg transition-all duration-200 disabled:opacity-50 disabled:cursor-not-allowed"
+              >
+                {loading ? "Signing in..." : "Sign In"}
+              </button>
+            </form>
+
+            {/* Divider */}
+            <div className="my-8 border-t border-gray-200 dark:border-gray-700"></div>
+
+            {/* Sign Up Link */}
+            <p className="text-center text-gray-600 dark:text-gray-400">
+              Don&apos;t have an account?{" "}
+              <Link
+                href="/register"
+                className="font-medium text-blue-600 hover:text-blue-700 dark:text-blue-400 dark:hover:text-blue-300 transition-colors"
+              >
+                Create one now
+              </Link>
+            </p>
           </div>
-        </form>
-      </div>
+        </div>
+      </main>
+
+      {/* Footer */}
+      <footer className="border-t border-gray-200 dark:border-gray-800 py-6">
+        <div className="container mx-auto px-4 sm:px-6 lg:px-8">
+          <p className="text-center text-sm text-gray-600 dark:text-gray-400">
+            &copy; 2024 North Seattle College Opportunity Center. All rights
+            reserved.
+          </p>
+        </div>
+      </footer>
     </div>
   );
 }
-
diff --git a/app/page.tsx b/app/page.tsx
index ef62e81..c1b3872 100644
--- a/app/page.tsx
+++ b/app/page.tsx
@@ -1,102 +1,110 @@
 "use client";
 
-import { useState, useEffect } from "react";
-
-const translations = [
-  { lang: "English", text: "Start Chatting" },
-  { lang: "Spanish", text: "Comenzar a Chatear" },
-  { lang: "Swahili", text: "Anza Kuzungumza" },
-  { lang: "Chinese", text: "开始聊天" },
-  { lang: "Vietnamese", text: "Bắt đầu trò chuyện" },
-];
-
 export default function Home() {
-  const [currentIndex, setCurrentIndex] = useState(0);
-
-  useEffect(() => {
-    const interval = setInterval(() => {
-      setCurrentIndex((prev) => (prev + 1) % translations.length);
-    }, 2000); // Change every 2 seconds
-
-    return () => clearInterval(interval);
-  }, []);
-
   return (
-    <div className="min-h-screen bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900">
+    <div className="min-h-screen bg-white dark:bg-gray-900 flex flex-col">
       {/* Header */}
-      <header className="container mx-auto px-4 sm:px-6 lg:px-8 py-6">
-        <nav className="flex items-center justify-between">
-          <div />
-          <a
-            href="/login"
-            className="px-4 py-2 bg-white dark:bg-gray-800 text-gray-900 dark:text-white font-semibold rounded-full border-2 border-gray-200 dark:border-gray-700 hover:border-blue-500 dark:hover:border-blue-500 transition-all duration-200"
-          >
-            Sign In
-          </a>
-        </nav>
+      <header className="container mx-auto px-4 sm:px-6 lg:px-8 py-6 flex items-center justify-between">
+        <div className="flex items-center gap-3">
+          <div className="w-10 h-10 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
+            <svg
+              className="w-6 h-6 text-white"
+              fill="none"
+              stroke="currentColor"
+              viewBox="0 0 24 24"
+            >
+              <path
+                strokeLinecap="round"
+                strokeLinejoin="round"
+                strokeWidth={2}
+                d="M8 10h.01M12 10h.01M16 10h.01M9 16H5a2 2 0 01-2-2V6a2 2 0 012-2h14a2 2 0 012 2v8a2 2 0 01-2 2h-5l-5 5v-5z"
+              />
+            </svg>
+          </div>
+          <span className="text-xl font-semibold text-gray-900 dark:text-white">
+            Opportunity Center
+          </span>
+        </div>
+        <a
+          href="/login"
+          className="px-4 py-2 text-gray-700 dark:text-gray-300 hover:text-blue-600 dark:hover:text-blue-400 font-medium transition-colors"
+        >
+          Sign In
+        </a>
       </header>
 
       {/* Hero Section */}
-      <main className="container mx-auto px-4 sm:px-6 lg:px-8 pt-6 pb-12 sm:pt-8 sm:pb-16 lg:pt-10 lg:pb-20">
-        <div className="max-w-4xl mx-auto text-center">
-          {/* Main Heading */}
-          <img
-            src="/assets/nsc_mascot.png"
-            alt="North Seattle College Logo"
-            className="h-50 mx-auto mb-6"
-          />
-          <h1 className="text-4xl sm:text-5xl lg:text-6xl font-bold text-gray-900 dark:text-white mb-6 leading-tight">
-            North Seattle College
-            <span className="block text-transparent bg-clip-text bg-gradient-to-r from-blue-600 to-indigo-600">
-              Opportunitiy Center
-            </span>
-          </h1>
-
-          {/* Subheading */}
-          <p className="text-lg sm:text-xl text-gray-600 dark:text-gray-300 mb-8 max-w-2xl mx-auto leading-relaxed">
-            Get instant answers, find resources, and discover opportunities
-            tailored to your needs. Our intelligent chatbot is here to help you
-            24/7.
-          </p>
-
-          {/* CTA Button */}
-          <div className="flex flex-col sm:flex-row gap-4 justify-center items-center mb-16">
-            <a
-              href="/chat"
-              className="group relative px-8 py-4 bg-gradient-to-r from-blue-600 to-indigo-600 text-white font-semibold rounded-full shadow-lg hover:shadow-xl transform hover:scale-105 transition-all duration-200 flex items-center gap-2"
-            >
-              <span className="relative inline-block min-w-[180px] text-center h-6 flex items-center justify-center">
-                <span
-                  key={currentIndex}
-                  className="absolute inset-0 flex items-center justify-center animate-fade-in"
+      <main className="flex-1 flex items-center justify-center">
+        <div className="container mx-auto px-4 sm:px-6 lg:px-8 py-20">
+          <div className="max-w-3xl mx-auto text-center">
+            {/* Logo */}
+            <img
+              src="/assets/nsc_mascot.png"
+              alt="North Seattle College Logo"
+              className="h-32 w-32 mx-auto mb-8 object-contain"
+            />
+
+            {/* Main Heading */}
+            <h1 className="text-5xl sm:text-6xl lg:text-7xl font-bold text-gray-900 dark:text-white mb-6 leading-tight">
+              North Seattle College
+            </h1>
+
+            <p className="text-2xl font-semibold text-transparent bg-clip-text bg-gradient-to-r from-blue-600 to-indigo-600 mb-6">
+              Opportunity Center
+            </p>
+
+            {/* Subheading */}
+            <p className="text-lg text-gray-600 dark:text-gray-300 mb-12 max-w-2xl mx-auto leading-relaxed">
+              Your intelligent assistant for finding resources, opportunities,
+              and guidance. Available 24/7 to support your success.
+            </p>
+
+            {/* CTA Buttons */}
+            <div className="flex flex-col sm:flex-row gap-4 justify-center items-center">
+              <a
+                href="/chat"
+                className="px-8 py-4 bg-gradient-to-r from-blue-600 to-indigo-600 text-white font-semibold rounded-lg shadow-lg hover:shadow-xl hover:from-blue-700 hover:to-indigo-700 transition-all duration-200 flex items-center gap-2 group"
+              >
+                Start Chatting
+                <svg
+                  className="w-5 h-5 group-hover:translate-x-1 transition-transform"
+                  fill="none"
+                  stroke="currentColor"
+                  viewBox="0 0 24 24"
                 >
-                  {translations[currentIndex].text}
-                </span>
-              </span>
-              <svg
-                className="w-5 h-5 group-hover:translate-x-1 transition-transform flex-shrink-0"
-                fill="none"
-                stroke="currentColor"
-                viewBox="0 0 24 24"
+                  <path
+                    strokeLinecap="round"
+                    strokeLinejoin="round"
+                    strokeWidth={2}
+                    d="M13 7l5 5m0 0l-5 5m5-5H6"
+                  />
+                </svg>
+              </a>
+              <a
+                href="/register"
+                className="px-8 py-4 bg-gray-100 dark:bg-gray-800 text-gray-900 dark:text-white font-semibold rounded-lg border-2 border-gray-300 dark:border-gray-700 hover:border-blue-500 dark:hover:border-blue-500 transition-all duration-200"
               >
-                <path
-                  strokeLinecap="round"
-                  strokeLinejoin="round"
-                  strokeWidth={2}
-                  d="M13 7l5 5m0 0l-5 5m5-5H6"
-                />
-              </svg>
-            </a>
+                Create Account
+              </a>
+            </div>
           </div>
+        </div>
+      </main>
 
-          {/* Chat Preview Mockup */}
-          <div className="max-w-2xl mx-auto">
-            <div className="bg-white dark:bg-gray-800 rounded-2xl shadow-2xl p-6 sm:p-8 border border-gray-200 dark:border-gray-700">
-              {/* Chat Header */}
-              <div className="flex items-center gap-3 mb-6 pb-4 border-b border-gray-200 dark:border-gray-700">
-                <div className="w-10 h-10 rounded-full bg-gradient-to-br from-blue-500 to-indigo-500 flex items-center justify-center">
+      {/* Features Section */}
+      <section className="bg-gray-50 dark:bg-gray-800 py-20">
+        <div className="container mx-auto px-4 sm:px-6 lg:px-8">
+          <div className="max-w-3xl mx-auto">
+            <h2 className="text-3xl font-bold text-gray-900 dark:text-white mb-12 text-center">
+              Why Choose Us
+            </h2>
+
+            <div className="grid grid-cols-1 md:grid-cols-3 gap-8">
+              {/* Feature 1 */}
+              <div className="flex flex-col items-center text-center">
+                <div className="w-12 h-12 rounded-lg bg-blue-100 dark:bg-blue-900 flex items-center justify-center mb-4">
                   <svg
-                    className="w-6 h-6 text-white"
+                    className="w-6 h-6 text-blue-600 dark:text-blue-400"
                     fill="none"
                     stroke="currentColor"
                     viewBox="0 0 24 24"
@@ -105,185 +113,79 @@ export default function Home() {
                       strokeLinecap="round"
                       strokeLinejoin="round"
                       strokeWidth={2}
-                      d="M9.663 17h4.673M12 3v1m6.364 1.636l-.707.707M21 12h-1M4 12H3m3.343-5.657l-.707-.707m2.828 9.9a5 5 0 117.072 0l-.548.547A3.374 3.374 0 0014 18.469V19a2 2 0 11-4 0v-.531c0-.895-.356-1.754-.988-2.386l-.548-.547z"
+                      d="M13 10V3L4 14h7v7l9-11h-7z"
                     />
                   </svg>
                 </div>
-                <div>
-                  <h3 className="font-semibold text-gray-900 dark:text-white">
-                    AI Assistant
-                  </h3>
-                  <p className="text-sm text-gray-500 dark:text-gray-400">
-                    Online • Ready to help
-                  </p>
-                </div>
+                <h3 className="text-lg font-semibold text-gray-900 dark:text-white mb-2">
+                  Instant Answers
+                </h3>
+                <p className="text-gray-600 dark:text-gray-400">
+                  Get immediate responses to your questions and needs
+                </p>
               </div>
 
-              {/* Chat Messages */}
-              <div className="space-y-4">
-                {/* Bot Message */}
-                <div className="flex gap-3">
-                  <div className="w-8 h-8 rounded-full bg-gradient-to-br from-blue-500 to-indigo-500 flex-shrink-0"></div>
-                  <div className="flex-1">
-                    <div className="bg-gray-100 dark:bg-gray-700 rounded-2xl rounded-tl-sm px-4 py-3">
-                      <p className="text-gray-800 dark:text-gray-200">
-                        Hello! I&apos;m here to help you find opportunities and
-                        resources. What can I assist you with today?
-                      </p>
-                    </div>
-                    <p className="text-xs text-gray-500 dark:text-gray-400 mt-1 ml-2">
-                      Just now
-                    </p>
-                  </div>
-                </div>
-
-                {/* User Message */}
-                <div className="flex gap-3 justify-end">
-                  <div className="flex-1 max-w-[80%]">
-                    <div className="bg-gradient-to-r from-blue-600 to-indigo-600 text-white rounded-2xl rounded-tr-sm px-4 py-3 ml-auto">
-                      <p>I&apos;m looking for career development opportunities</p>
-                    </div>
-                    <p className="text-xs text-gray-500 dark:text-gray-400 mt-1 mr-2 text-right">
-                      Just now
-                    </p>
-                  </div>
-                  <div className="w-8 h-8 rounded-full bg-gray-300 dark:bg-gray-600 flex-shrink-0"></div>
-                </div>
-
-                {/* Typing Indicator */}
-                <div className="flex gap-3">
-                  <div className="w-8 h-8 rounded-full bg-gradient-to-br from-blue-500 to-indigo-500 flex-shrink-0"></div>
-                  <div className="flex-1">
-                    <div className="bg-gray-100 dark:bg-gray-700 rounded-2xl rounded-tl-sm px-4 py-3 w-20">
-                      <div className="flex gap-1">
-                        <div
-                          className="w-2 h-2 bg-gray-400 dark:bg-gray-500 rounded-full animate-bounce"
-                          style={{ animationDelay: "0ms" }}
-                        ></div>
-                        <div
-                          className="w-2 h-2 bg-gray-400 dark:bg-gray-500 rounded-full animate-bounce"
-                          style={{ animationDelay: "150ms" }}
-                        ></div>
-                        <div
-                          className="w-2 h-2 bg-gray-400 dark:bg-gray-500 rounded-full animate-bounce"
-                          style={{ animationDelay: "300ms" }}
-                        ></div>
-                      </div>
-                    </div>
-                  </div>
+              {/* Feature 2 */}
+              <div className="flex flex-col items-center text-center">
+                <div className="w-12 h-12 rounded-lg bg-indigo-100 dark:bg-indigo-900 flex items-center justify-center mb-4">
+                  <svg
+                    className="w-6 h-6 text-indigo-600 dark:text-indigo-400"
+                    fill="none"
+                    stroke="currentColor"
+                    viewBox="0 0 24 24"
+                  >
+                    <path
+                      strokeLinecap="round"
+                      strokeLinejoin="round"
+                      strokeWidth={2}
+                      d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"
+                    />
+                  </svg>
                 </div>
+                <h3 className="text-lg font-semibold text-gray-900 dark:text-white mb-2">
+                  Secure & Private
+                </h3>
+                <p className="text-gray-600 dark:text-gray-400">
+                  Enterprise-grade security for all your conversations
+                </p>
               </div>
 
-              {/* Input Area */}
-              <div className="mt-6 pt-4 border-t border-gray-200 dark:border-gray-700">
-                <div className="flex items-center gap-3 bg-gray-50 dark:bg-gray-900 rounded-full px-4 py-3">
-                  <input
-                    type="text"
-                    placeholder="Type your message..."
-                    className="flex-1 bg-transparent border-none outline-none text-gray-900 dark:text-white placeholder-gray-400"
-                    disabled
-                  />
-                  <button className="w-8 h-8 rounded-full bg-gradient-to-r from-blue-600 to-indigo-600 flex items-center justify-center hover:opacity-80 transition-opacity">
-                    <svg
-                      className="w-5 h-5 text-white"
-                      fill="none"
-                      stroke="currentColor"
-                      viewBox="0 0 24 24"
-                    >
-                      <path
-                        strokeLinecap="round"
-                        strokeLinejoin="round"
-                        strokeWidth={2}
-                        d="M12 19l9 2-9-18-9 18 9-2zm0 0v-8"
-                      />
-                    </svg>
-                  </button>
+              {/* Feature 3 */}
+              <div className="flex flex-col items-center text-center">
+                <div className="w-12 h-12 rounded-lg bg-purple-100 dark:bg-purple-900 flex items-center justify-center mb-4">
+                  <svg
+                    className="w-6 h-6 text-purple-600 dark:text-purple-400"
+                    fill="none"
+                    stroke="currentColor"
+                    viewBox="0 0 24 24"
+                  >
+                    <path
+                      strokeLinecap="round"
+                      strokeLinejoin="round"
+                      strokeWidth={2}
+                      d="M12 8v4l3 3m6-3a9 9 0 11-18 0 9 9 0 0118 0z"
+                    />
+                  </svg>
                 </div>
+                <h3 className="text-lg font-semibold text-gray-900 dark:text-white mb-2">
+                  Always Available
+                </h3>
+                <p className="text-gray-600 dark:text-gray-400">
+                  Get help 24/7, whenever you need it
+                </p>
               </div>
             </div>
           </div>
-
-          {/* Features Section */}
-          <div className="mt-20 grid grid-cols-1 md:grid-cols-3 gap-8">
-            <div className="p-6 bg-white dark:bg-gray-800 rounded-xl shadow-lg border border-gray-200 dark:border-gray-700">
-              <div className="w-12 h-12 rounded-lg bg-blue-100 dark:bg-blue-900 flex items-center justify-center mb-4">
-                <svg
-                  className="w-6 h-6 text-blue-600 dark:text-blue-400"
-                  fill="none"
-                  stroke="currentColor"
-                  viewBox="0 0 24 24"
-                >
-                  <path
-                    strokeLinecap="round"
-                    strokeLinejoin="round"
-                    strokeWidth={2}
-                    d="M13 10V3L4 14h7v7l9-11h-7z"
-                  />
-                </svg>
-              </div>
-              <h3 className="text-xl font-semibold text-gray-900 dark:text-white mb-2">
-                Instant Responses
-              </h3>
-              <p className="text-gray-600 dark:text-gray-400">
-                Get immediate answers to your questions without waiting
-              </p>
-            </div>
-
-            <div className="p-6 bg-white dark:bg-gray-800 rounded-xl shadow-lg border border-gray-200 dark:border-gray-700">
-              <div className="w-12 h-12 rounded-lg bg-indigo-100 dark:bg-indigo-900 flex items-center justify-center mb-4">
-                <svg
-                  className="w-6 h-6 text-indigo-600 dark:text-indigo-400"
-                  fill="none"
-                  stroke="currentColor"
-                  viewBox="0 0 24 24"
-                >
-                  <path
-                    strokeLinecap="round"
-                    strokeLinejoin="round"
-                    strokeWidth={2}
-                    d="M9 12l2 2 4-4m5.618-4.016A11.955 11.955 0 0112 2.944a11.955 11.955 0 01-8.618 3.04A12.02 12.02 0 003 9c0 5.591 3.824 10.29 9 11.622 5.176-1.332 9-6.03 9-11.622 0-1.042-.133-2.052-.382-3.016z"
-                  />
-                </svg>
-              </div>
-              <h3 className="text-xl font-semibold text-gray-900 dark:text-white mb-2">
-                Secure & Private
-              </h3>
-              <p className="text-gray-600 dark:text-gray-400">
-                Your conversations are protected with enterprise-grade security
-              </p>
-            </div>
-
-            <div className="p-6 bg-white dark:bg-gray-800 rounded-xl shadow-lg border border-gray-200 dark:border-gray-700">
-              <div className="w-12 h-12 rounded-lg bg-purple-100 dark:bg-purple-900 flex items-center justify-center mb-4">
-                <svg
-                  className="w-6 h-6 text-purple-600 dark:text-purple-400"
-                  fill="none"
-                  stroke="currentColor"
-                  viewBox="0 0 24 24"
-                >
-                  <path
-                    strokeLinecap="round"
-                    strokeLinejoin="round"
-                    strokeWidth={2}
-                    d="M12 8v4l3 3m6-3a9 9 0 11-18 0 9 9 0 0118 0z"
-                  />
-                </svg>
-              </div>
-              <h3 className="text-xl font-semibold text-gray-900 dark:text-white mb-2">
-                24/7 Available
-              </h3>
-              <p className="text-gray-600 dark:text-gray-400">
-                Access help anytime, anywhere, whenever you need it
-              </p>
-            </div>
-          </div>
         </div>
-      </main>
+      </section>
 
       {/* Footer */}
-      <footer className="container mx-auto px-4 sm:px-6 lg:px-8 py-8 mt-16 border-t border-gray-200 dark:border-gray-700">
-        <div className="text-center text-gray-600 dark:text-gray-400">
-          <p>&copy; 2024 Opportunity Center. All rights reserved.</p>
+      <footer className="border-t border-gray-200 dark:border-gray-800 py-8">
+        <div className="container mx-auto px-4 sm:px-6 lg:px-8">
+          <p className="text-center text-gray-600 dark:text-gray-400">
+            &copy; 2024 North Seattle College Opportunity Center. All rights
+            reserved.
+          </p>
         </div>
       </footer>
     </div>
diff --git a/app/recovery/page.tsx b/app/recovery/page.tsx
new file mode 100644
index 0000000..2f5d4aa
--- /dev/null
+++ b/app/recovery/page.tsx
@@ -0,0 +1,138 @@
+"use client";
+
+import Link from "next/link";
+
+export default function RecoveryPage() {
+  return (
+    <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
+      <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
+        <div>
+          <div className="flex justify-center">
+            <div className="w-12 h-12 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
+              <svg
+                className="w-7 h-7 text-white"
+                fill="none"
+                stroke="currentColor"
+                viewBox="0 0 24 24"
+              >
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M15 7a2 2 0 012 2m4 0a6 6 0 01-7.743 5.743L11 17H9v2H7v2H4a1 1 0 01-1-1v-2.586a1 1 0 01.293-.707l5.964-5.964A6 6 0 1121 9z"
+                />
+              </svg>
+            </div>
+          </div>
+          <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
+            Account Recovery
+          </h2>
+          <p className="mt-2 text-center text-sm text-gray-600 dark:text-gray-400">
+            Choose a recovery option to regain access to your account
+          </p>
+        </div>
+
+        <div className="mt-8 space-y-4">
+          {/* Password Reset Option */}
+          <Link
+            href="/recovery/reset-password"
+            className="block w-full p-6 border-2 border-gray-200 dark:border-gray-700 rounded-xl hover:border-blue-500 dark:hover:border-blue-400 transition-all group"
+          >
+            <div className="flex items-start gap-4">
+              <div className="flex-shrink-0 w-12 h-12 rounded-lg bg-blue-50 dark:bg-blue-900/20 flex items-center justify-center group-hover:bg-blue-100 dark:group-hover:bg-blue-900/30 transition-colors">
+                <svg
+                  className="w-6 h-6 text-blue-600 dark:text-blue-400"
+                  fill="none"
+                  stroke="currentColor"
+                  viewBox="0 0 24 24"
+                >
+                  <path
+                    strokeLinecap="round"
+                    strokeLinejoin="round"
+                    strokeWidth={2}
+                    d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"
+                  />
+                </svg>
+              </div>
+              <div className="flex-1">
+                <h3 className="text-lg font-semibold text-gray-900 dark:text-white group-hover:text-blue-600 dark:group-hover:text-blue-400 transition-colors">
+                  Reset Password
+                </h3>
+                <p className="mt-1 text-sm text-gray-600 dark:text-gray-400">
+                  Receive a secure link via email to create a new password
+                </p>
+              </div>
+              <svg
+                className="w-5 h-5 text-gray-400 group-hover:text-blue-600 dark:group-hover:text-blue-400 transition-colors"
+                fill="none"
+                stroke="currentColor"
+                viewBox="0 0 24 24"
+              >
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M9 5l7 7-7 7"
+                />
+              </svg>
+            </div>
+          </Link>
+
+          {/* Username Recovery Option */}
+          <Link
+            href="/recovery/username"
+            className="block w-full p-6 border-2 border-gray-200 dark:border-gray-700 rounded-xl hover:border-blue-500 dark:hover:border-blue-400 transition-all group"
+          >
+            <div className="flex items-start gap-4">
+              <div className="flex-shrink-0 w-12 h-12 rounded-lg bg-indigo-50 dark:bg-indigo-900/20 flex items-center justify-center group-hover:bg-indigo-100 dark:group-hover:bg-indigo-900/30 transition-colors">
+                <svg
+                  className="w-6 h-6 text-indigo-600 dark:text-indigo-400"
+                  fill="none"
+                  stroke="currentColor"
+                  viewBox="0 0 24 24"
+                >
+                  <path
+                    strokeLinecap="round"
+                    strokeLinejoin="round"
+                    strokeWidth={2}
+                    d="M16 7a4 4 0 11-8 0 4 4 0 018 0zM12 14a7 7 0 00-7 7h14a7 7 0 00-7-7z"
+                  />
+                </svg>
+              </div>
+              <div className="flex-1">
+                <h3 className="text-lg font-semibold text-gray-900 dark:text-white group-hover:text-blue-600 dark:group-hover:text-blue-400 transition-colors">
+                  Recover Email
+                </h3>
+                <p className="mt-1 text-sm text-gray-600 dark:text-gray-400">
+                  Get your email address sent to your registered contact
+                </p>
+              </div>
+              <svg
+                className="w-5 h-5 text-gray-400 group-hover:text-blue-600 dark:group-hover:text-blue-400 transition-colors"
+                fill="none"
+                stroke="currentColor"
+                viewBox="0 0 24 24"
+              >
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M9 5l7 7-7 7"
+                />
+              </svg>
+            </div>
+          </Link>
+        </div>
+
+        <div className="mt-6 text-center">
+          <Link
+            href="/login"
+            className="text-sm font-medium text-gray-600 dark:text-gray-400 hover:text-blue-600 dark:hover:text-blue-400"
+          >
+            ← Back to login
+          </Link>
+        </div>
+      </div>
+    </div>
+  );
+}
diff --git a/app/recovery/reset-password/[token]/page.tsx b/app/recovery/reset-password/[token]/page.tsx
new file mode 100644
index 0000000..73f1cbb
--- /dev/null
+++ b/app/recovery/reset-password/[token]/page.tsx
@@ -0,0 +1,307 @@
+"use client";
+
+import { useState, useEffect } from "react";
+import { useRouter, useParams } from "next/navigation";
+import Link from "next/link";
+
+export default function ResetPasswordWithTokenPage() {
+  const [password, setPassword] = useState("");
+  const [confirmPassword, setConfirmPassword] = useState("");
+  const [loading, setLoading] = useState(false);
+  const [error, setError] = useState("");
+  const [success, setSuccess] = useState(false);
+  const [validating, setValidating] = useState(true);
+  const [tokenValid, setTokenValid] = useState(false);
+  const router = useRouter();
+  const params = useParams();
+  const token = params.token as string;
+
+  useEffect(() => {
+    // Validate token on mount
+    const validateToken = async () => {
+      try {
+        const response = await fetch(
+          `http://localhost:8000/api/auth/validate-reset-token?token=${token}`
+        );
+
+        if (response.ok) {
+          setTokenValid(true);
+        } else {
+          setTokenValid(false);
+          setError("This reset link is invalid or has expired");
+        }
+      } catch (err) {
+        setTokenValid(false);
+        setError("Failed to validate reset link");
+      } finally {
+        setValidating(false);
+      }
+    };
+
+    if (token) {
+      validateToken();
+    } else {
+      setValidating(false);
+      setError("No reset token provided");
+    }
+  }, [token]);
+
+  const handleSubmit = async (e: React.FormEvent) => {
+    e.preventDefault();
+    setError("");
+
+    if (password !== confirmPassword) {
+      setError("Passwords do not match");
+      return;
+    }
+
+    if (password.length < 8) {
+      setError("Password must be at least 8 characters long");
+      return;
+    }
+
+    setLoading(true);
+
+    try {
+      const response = await fetch(
+        "http://localhost:8000/api/auth/reset-password",
+        {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+          },
+          body: JSON.stringify({ token, new_password: password }),
+        }
+      );
+
+      const data = await response.json();
+
+      if (!response.ok) {
+        throw new Error(data.detail || "Failed to reset password");
+      }
+
+      setSuccess(true);
+      setTimeout(() => {
+        router.push("/login");
+      }, 3000);
+    } catch (err) {
+      setError(err instanceof Error ? err.message : "An error occurred");
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  if (validating) {
+    return (
+      <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
+        <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
+          <div className="text-center">
+            <div className="inline-block animate-spin rounded-full h-12 w-12 border-b-2 border-blue-600"></div>
+            <p className="mt-4 text-gray-600 dark:text-gray-400">
+              Validating reset link...
+            </p>
+          </div>
+        </div>
+      </div>
+    );
+  }
+
+  if (!tokenValid) {
+    return (
+      <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
+        <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
+          <div>
+            <div className="flex justify-center">
+              <div className="w-16 h-16 rounded-full bg-red-100 dark:bg-red-900/20 flex items-center justify-center">
+                <svg
+                  className="w-10 h-10 text-red-600 dark:text-red-400"
+                  fill="none"
+                  stroke="currentColor"
+                  viewBox="0 0 24 24"
+                >
+                  <path
+                    strokeLinecap="round"
+                    strokeLinejoin="round"
+                    strokeWidth={2}
+                    d="M6 18L18 6M6 6l12 12"
+                  />
+                </svg>
+              </div>
+            </div>
+            <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
+              Invalid Reset Link
+            </h2>
+            <div className="mt-4 bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 rounded-lg p-4">
+              <p className="text-sm text-red-800 dark:text-red-200 text-center">
+                {error}
+              </p>
+            </div>
+          </div>
+
+          <div className="flex flex-col gap-3">
+            <button
+              onClick={() => router.push("/recovery/reset-password")}
+              className="w-full py-2 px-4 border border-transparent text-sm font-medium rounded-lg text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 transition-all"
+            >
+              Request New Reset Link
+            </button>
+            <Link
+              href="/login"
+              className="w-full py-2 px-4 border border-gray-300 dark:border-gray-600 text-sm font-medium rounded-lg text-gray-700 dark:text-gray-300 hover:bg-gray-50 dark:hover:bg-gray-700 transition-all text-center"
+            >
+              Return to Login
+            </Link>
+          </div>
+        </div>
+      </div>
+    );
+  }
+
+  if (success) {
+    return (
+      <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
+        <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
+          <div>
+            <div className="flex justify-center">
+              <div className="w-16 h-16 rounded-full bg-green-100 dark:bg-green-900/20 flex items-center justify-center">
+                <svg
+                  className="w-10 h-10 text-green-600 dark:text-green-400"
+                  fill="none"
+                  stroke="currentColor"
+                  viewBox="0 0 24 24"
+                >
+                  <path
+                    strokeLinecap="round"
+                    strokeLinejoin="round"
+                    strokeWidth={2}
+                    d="M5 13l4 4L19 7"
+                  />
+                </svg>
+              </div>
+            </div>
+            <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
+              Password Reset Successful
+            </h2>
+            <div className="mt-4 bg-green-50 dark:bg-green-900/20 border border-green-200 dark:border-green-800 rounded-lg p-4">
+              <p className="text-sm text-green-800 dark:text-green-200 text-center">
+                Your password has been successfully reset!
+              </p>
+              <p className="text-sm text-green-700 dark:text-green-300 text-center mt-2">
+                Redirecting to login page...
+              </p>
+            </div>
+          </div>
+
+          <button
+            onClick={() => router.push("/login")}
+            className="w-full py-2 px-4 border border-transparent text-sm font-medium rounded-lg text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 transition-all"
+          >
+            Go to Login Now
+          </button>
+        </div>
+      </div>
+    );
+  }
+
+  return (
+    <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
+      <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
+        <div>
+          <div className="flex justify-center">
+            <div className="w-12 h-12 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
+              <svg
+                className="w-7 h-7 text-white"
+                fill="none"
+                stroke="currentColor"
+                viewBox="0 0 24 24"
+              >
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"
+                />
+              </svg>
+            </div>
+          </div>
+          <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
+            Create New Password
+          </h2>
+          <p className="mt-2 text-center text-sm text-gray-600 dark:text-gray-400">
+            Enter your new password below
+          </p>
+        </div>
+
+        <form className="mt-8 space-y-6" onSubmit={handleSubmit}>
+          {error && (
+            <div className="bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
+              {error}
+            </div>
+          )}
+
+          <div>
+            <label
+              htmlFor="password"
+              className="block text-sm font-medium text-gray-700 dark:text-gray-300"
+            >
+              New Password
+            </label>
+            <input
+              id="password"
+              name="password"
+              type="password"
+              autoComplete="new-password"
+              required
+              value={password}
+              onChange={(e) => setPassword(e.target.value)}
+              className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
+              placeholder="Enter new password"
+            />
+            <p className="mt-1 text-xs text-gray-500 dark:text-gray-400">
+              Must be at least 8 characters long
+            </p>
+          </div>
+
+          <div>
+            <label
+              htmlFor="confirm-password"
+              className="block text-sm font-medium text-gray-700 dark:text-gray-300"
+            >
+              Confirm Password
+            </label>
+            <input
+              id="confirm-password"
+              name="confirm-password"
+              type="password"
+              autoComplete="new-password"
+              required
+              value={confirmPassword}
+              onChange={(e) => setConfirmPassword(e.target.value)}
+              className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
+              placeholder="Confirm new password"
+            />
+          </div>
+
+          <div>
+            <button
+              type="submit"
+              disabled={loading}
+              className="w-full flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-lg text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 disabled:opacity-50 disabled:cursor-not-allowed transition-all"
+            >
+              {loading ? "Resetting..." : "Reset Password"}
+            </button>
+          </div>
+
+          <div className="text-center">
+            <Link
+              href="/login"
+              className="text-sm font-medium text-gray-600 dark:text-gray-400 hover:text-blue-600 dark:hover:text-blue-400"
+            >
+              ← Back to login
+            </Link>
+          </div>
+        </form>
+      </div>
+    </div>
+  );
+}
diff --git a/app/recovery/reset-password/page.tsx b/app/recovery/reset-password/page.tsx
new file mode 100644
index 0000000..d2c382d
--- /dev/null
+++ b/app/recovery/reset-password/page.tsx
@@ -0,0 +1,182 @@
+"use client";
+
+import { useState } from "react";
+import Link from "next/link";
+import { useRouter } from "next/navigation";
+
+export default function ResetPasswordPage() {
+  const [email, setEmail] = useState("");
+  const [loading, setLoading] = useState(false);
+  const [error, setError] = useState("");
+  const [success, setSuccess] = useState(false);
+  const router = useRouter();
+
+  const handleSubmit = async (e: React.FormEvent) => {
+    e.preventDefault();
+    setError("");
+    setLoading(true);
+
+    try {
+      const response = await fetch(
+        "http://localhost:8000/api/auth/reset-password-request",
+        {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+          },
+          body: JSON.stringify({ email }),
+        }
+      );
+
+      const data = await response.json();
+
+      if (!response.ok) {
+        throw new Error(data.detail || "Failed to send reset link");
+      }
+
+      setSuccess(true);
+    } catch (err) {
+      setError(err instanceof Error ? err.message : "An error occurred");
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  if (success) {
+    return (
+      <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
+        <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
+          <div>
+            <div className="flex justify-center">
+              <div className="w-16 h-16 rounded-full bg-green-100 dark:bg-green-900/20 flex items-center justify-center">
+                <svg
+                  className="w-10 h-10 text-green-600 dark:text-green-400"
+                  fill="none"
+                  stroke="currentColor"
+                  viewBox="0 0 24 24"
+                >
+                  <path
+                    strokeLinecap="round"
+                    strokeLinejoin="round"
+                    strokeWidth={2}
+                    d="M5 13l4 4L19 7"
+                  />
+                </svg>
+              </div>
+            </div>
+            <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
+              Check Your Email
+            </h2>
+            <div className="mt-4 bg-green-50 dark:bg-green-900/20 border border-green-200 dark:border-green-800 rounded-lg p-4">
+              <p className="text-sm text-green-800 dark:text-green-200 text-center">
+                We've sent a password reset link to <strong>{email}</strong>
+              </p>
+              <p className="text-sm text-green-700 dark:text-green-300 text-center mt-2">
+                Please check your inbox and click the link to reset your
+                password.
+              </p>
+            </div>
+            <p className="mt-4 text-sm text-gray-600 dark:text-gray-400 text-center">
+              The link will expire in 1 hour for security reasons.
+            </p>
+          </div>
+
+          <div className="flex flex-col gap-3">
+            <button
+              onClick={() => router.push("/login")}
+              className="w-full py-2 px-4 border border-transparent text-sm font-medium rounded-lg text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 transition-all"
+            >
+              Return to Login
+            </button>
+            <button
+              onClick={() => setSuccess(false)}
+              className="w-full py-2 px-4 border border-gray-300 dark:border-gray-600 text-sm font-medium rounded-lg text-gray-700 dark:text-gray-300 hover:bg-gray-50 dark:hover:bg-gray-700 transition-all"
+            >
+              Send Another Link
+            </button>
+          </div>
+        </div>
+      </div>
+    );
+  }
+
+  return (
+    <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
+      <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
+        <div>
+          <div className="flex justify-center">
+            <div className="w-12 h-12 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
+              <svg
+                className="w-7 h-7 text-white"
+                fill="none"
+                stroke="currentColor"
+                viewBox="0 0 24 24"
+              >
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"
+                />
+              </svg>
+            </div>
+          </div>
+          <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
+            Reset Your Password
+          </h2>
+          <p className="mt-2 text-center text-sm text-gray-600 dark:text-gray-400">
+            Enter your email address and we'll send you a link to reset your
+            password
+          </p>
+        </div>
+
+        <form className="mt-8 space-y-6" onSubmit={handleSubmit}>
+          {error && (
+            <div className="bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
+              {error}
+            </div>
+          )}
+
+          <div>
+            <label
+              htmlFor="email"
+              className="block text-sm font-medium text-gray-700 dark:text-gray-300"
+            >
+              Email address
+            </label>
+            <input
+              id="email"
+              name="email"
+              type="email"
+              autoComplete="email"
+              required
+              value={email}
+              onChange={(e) => setEmail(e.target.value)}
+              className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
+              placeholder="Enter your email"
+            />
+          </div>
+
+          <div>
+            <button
+              type="submit"
+              disabled={loading}
+              className="w-full flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-lg text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 disabled:opacity-50 disabled:cursor-not-allowed transition-all"
+            >
+              {loading ? "Sending..." : "Send Reset Link"}
+            </button>
+          </div>
+
+          <div className="text-center">
+            <Link
+              href="/recovery"
+              className="text-sm font-medium text-gray-600 dark:text-gray-400 hover:text-blue-600 dark:hover:text-blue-400"
+            >
+              ← Back to recovery options
+            </Link>
+          </div>
+        </form>
+      </div>
+    </div>
+  );
+}
diff --git a/app/recovery/username/page.tsx b/app/recovery/username/page.tsx
new file mode 100644
index 0000000..820f03c
--- /dev/null
+++ b/app/recovery/username/page.tsx
@@ -0,0 +1,185 @@
+"use client";
+
+import { useState } from "react";
+import Link from "next/link";
+import { useRouter } from "next/navigation";
+
+export default function UsernameRecoveryPage() {
+  const [email, setEmail] = useState("");
+  const [loading, setLoading] = useState(false);
+  const [error, setError] = useState("");
+  const [success, setSuccess] = useState(false);
+  const [username, setUsername] = useState("");
+  const router = useRouter();
+
+  const handleSubmit = async (e: React.FormEvent) => {
+    e.preventDefault();
+    setError("");
+    setLoading(true);
+
+    try {
+      const response = await fetch(
+        "http://localhost:8000/api/auth/recover-username",
+        {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+          },
+          body: JSON.stringify({ email }),
+        }
+      );
+
+      const data = await response.json();
+
+      if (!response.ok) {
+        throw new Error(data.detail || "Failed to recover username");
+      }
+
+      setUsername(data.username);
+      setSuccess(true);
+    } catch (err) {
+      setError(err instanceof Error ? err.message : "An error occurred");
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  if (success) {
+    return (
+      <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
+        <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
+          <div>
+            <div className="flex justify-center">
+              <div className="w-16 h-16 rounded-full bg-green-100 dark:bg-green-900/20 flex items-center justify-center">
+                <svg
+                  className="w-10 h-10 text-green-600 dark:text-green-400"
+                  fill="none"
+                  stroke="currentColor"
+                  viewBox="0 0 24 24"
+                >
+                  <path
+                    strokeLinecap="round"
+                    strokeLinejoin="round"
+                    strokeWidth={2}
+                    d="M5 13l4 4L19 7"
+                  />
+                </svg>
+              </div>
+            </div>
+            <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
+              Username Found
+            </h2>
+            <div className="mt-4 bg-green-50 dark:bg-green-900/20 border border-green-200 dark:border-green-800 rounded-lg p-4">
+              <p className="text-sm text-green-800 dark:text-green-200 text-center">
+                Your username is:
+              </p>
+              <p className="text-lg font-bold text-green-900 dark:text-green-100 text-center mt-2 break-all">
+                {username}
+              </p>
+            </div>
+            <p className="mt-4 text-sm text-gray-600 dark:text-gray-400 text-center">
+              We've also sent this information to <strong>{email}</strong>
+            </p>
+          </div>
+
+          <div className="flex flex-col gap-3">
+            <button
+              onClick={() => router.push("/login")}
+              className="w-full py-2 px-4 border border-transparent text-sm font-medium rounded-lg text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 transition-all"
+            >
+              Go to Login
+            </button>
+            <button
+              onClick={() => {
+                setSuccess(false);
+                setEmail("");
+              }}
+              className="w-full py-2 px-4 border border-gray-300 dark:border-gray-600 text-sm font-medium rounded-lg text-gray-700 dark:text-gray-300 hover:bg-gray-50 dark:hover:bg-gray-700 transition-all"
+            >
+              Recover Another Username
+            </button>
+          </div>
+        </div>
+      </div>
+    );
+  }
+
+  return (
+    <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
+      <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
+        <div>
+          <div className="flex justify-center">
+            <div className="w-12 h-12 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
+              <svg
+                className="w-7 h-7 text-white"
+                fill="none"
+                stroke="currentColor"
+                viewBox="0 0 24 24"
+              >
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M16 7a4 4 0 11-8 0 4 4 0 018 0zM12 14a7 7 0 00-7 7h14a7 7 0 00-7-7z"
+                />
+              </svg>
+            </div>
+          </div>
+          <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
+            Recover Username
+          </h2>
+          <p className="mt-2 text-center text-sm text-gray-600 dark:text-gray-400">
+            Enter the email address associated with your account
+          </p>
+        </div>
+
+        <form className="mt-8 space-y-6" onSubmit={handleSubmit}>
+          {error && (
+            <div className="bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
+              {error}
+            </div>
+          )}
+
+          <div>
+            <label
+              htmlFor="email"
+              className="block text-sm font-medium text-gray-700 dark:text-gray-300"
+            >
+              Email address
+            </label>
+            <input
+              id="email"
+              name="email"
+              type="email"
+              autoComplete="email"
+              required
+              value={email}
+              onChange={(e) => setEmail(e.target.value)}
+              className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
+              placeholder="Enter your email"
+            />
+          </div>
+
+          <div>
+            <button
+              type="submit"
+              disabled={loading}
+              className="w-full flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-lg text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 disabled:opacity-50 disabled:cursor-not-allowed transition-all"
+            >
+              {loading ? "Searching..." : "Recover Username"}
+            </button>
+          </div>
+
+          <div className="text-center">
+            <Link
+              href="/recovery"
+              className="text-sm font-medium text-gray-600 dark:text-gray-400 hover:text-blue-600 dark:hover:text-blue-400"
+            >
+              ← Back to recovery options
+            </Link>
+          </div>
+        </form>
+      </div>
+    </div>
+  );
+}
diff --git a/app/register/page.tsx b/app/register/page.tsx
index 7805041..2c5cebe 100644
--- a/app/register/page.tsx
+++ b/app/register/page.tsx
@@ -1,32 +1,32 @@
-'use client';
+"use client";
 
-import { useState } from 'react';
-import { useRouter } from 'next/navigation';
-import Link from 'next/link';
-import { useAuth } from '@/contexts/AuthContext';
-import { ApiError } from '@/lib/api/client';
+import { useState } from "react";
+import { useRouter } from "next/navigation";
+import Link from "next/link";
+import { useAuth } from "@/contexts/AuthContext";
+import { ApiError } from "@/lib/api/client";
 
 export default function RegisterPage() {
-  const [name, setName] = useState('');
-  const [email, setEmail] = useState('');
-  const [password, setPassword] = useState('');
-  const [confirmPassword, setConfirmPassword] = useState('');
-  const [error, setError] = useState('');
+  const [name, setName] = useState("");
+  const [email, setEmail] = useState("");
+  const [password, setPassword] = useState("");
+  const [confirmPassword, setConfirmPassword] = useState("");
+  const [error, setError] = useState("");
   const [loading, setLoading] = useState(false);
   const { register } = useAuth();
   const router = useRouter();
 
   const handleSubmit = async (e: React.FormEvent) => {
     e.preventDefault();
-    setError('');
+    setError("");
 
     if (password !== confirmPassword) {
-      setError('Passwords do not match');
+      setError("Passwords do not match");
       return;
     }
 
     if (password.length < 8) {
-      setError('Password must be at least 8 characters');
+      setError("Password must be at least 8 characters");
       return;
     }
 
@@ -34,12 +34,12 @@ export default function RegisterPage() {
 
     try {
       await register({ name, email, password });
-      router.push('/chat');
+      router.push("/chat");
     } catch (err) {
       if (err instanceof ApiError) {
-        setError(err.message || 'Registration failed. Please try again.');
+        setError(err.message || "Registration failed. Please try again.");
       } else {
-        setError('An unexpected error occurred');
+        setError("An unexpected error occurred");
       }
     } finally {
       setLoading(false);
@@ -47,123 +47,177 @@ export default function RegisterPage() {
   };
 
   return (
-    <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-blue-50 via-white to-indigo-50 dark:from-gray-900 dark:via-gray-800 dark:to-gray-900 px-4">
-      <div className="max-w-md w-full space-y-8 bg-white dark:bg-gray-800 p-8 rounded-2xl shadow-xl">
-        <div>
-          <div className="flex justify-center">
-            <div className="w-12 h-12 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
-              <svg
-                className="w-7 h-7 text-white"
-                fill="none"
-                stroke="currentColor"
-                viewBox="0 0 24 24"
-              >
-                <path
-                  strokeLinecap="round"
-                  strokeLinejoin="round"
-                  strokeWidth={2}
-                  d="M18 9v3m0 0v3m0-3h3m-3 0h-3m-2-5a4 4 0 11-8 0 4 4 0 018 0zM3 20a6 6 0 0112 0v1H3v-1z"
-                />
-              </svg>
-            </div>
-          </div>
-          <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
-            Create your account
-          </h2>
-          <p className="mt-2 text-center text-sm text-gray-600 dark:text-gray-400">
-            Or{' '}
-            <Link
-              href="/login"
-              className="font-medium text-blue-600 hover:text-blue-500 dark:text-blue-400"
+    <div className="min-h-screen bg-white dark:bg-gray-900 flex flex-col">
+      {/* Header */}
+      <header className="container mx-auto px-4 sm:px-6 lg:px-8 py-6 flex items-center justify-between">
+        <Link href="/" className="flex items-center gap-3">
+          <div className="w-10 h-10 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
+            <svg
+              className="w-6 h-6 text-white"
+              fill="none"
+              stroke="currentColor"
+              viewBox="0 0 24 24"
             >
-              sign in to existing account
-            </Link>
-          </p>
-        </div>
-        <form className="mt-8 space-y-6" onSubmit={handleSubmit}>
-          {error && (
-            <div className="bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
-              {error}
-            </div>
-          )}
-          <div className="space-y-4">
-            <div>
-              <label htmlFor="name" className="block text-sm font-medium text-gray-700 dark:text-gray-300">
-                Full Name
-              </label>
-              <input
-                id="name"
-                name="name"
-                type="text"
-                required
-                value={name}
-                onChange={(e) => setName(e.target.value)}
-                className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
-                placeholder="Enter your name"
-              />
-            </div>
-            <div>
-              <label htmlFor="email" className="block text-sm font-medium text-gray-700 dark:text-gray-300">
-                Email address
-              </label>
-              <input
-                id="email"
-                name="email"
-                type="email"
-                autoComplete="email"
-                required
-                value={email}
-                onChange={(e) => setEmail(e.target.value)}
-                className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
-                placeholder="Enter your email"
+              <path
+                strokeLinecap="round"
+                strokeLinejoin="round"
+                strokeWidth={2}
+                d="M8 10h.01M12 10h.01M16 10h.01M9 16H5a2 2 0 01-2-2V6a2 2 0 012-2h14a2 2 0 012 2v8a2 2 0 01-2 2h-5l-5 5v-5z"
               />
-            </div>
-            <div>
-              <label htmlFor="password" className="block text-sm font-medium text-gray-700 dark:text-gray-300">
-                Password
-              </label>
-              <input
-                id="password"
-                name="password"
-                type="password"
-                autoComplete="new-password"
-                required
-                value={password}
-                onChange={(e) => setPassword(e.target.value)}
-                className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
-                placeholder="Enter your password"
-              />
-            </div>
-            <div>
-              <label htmlFor="confirmPassword" className="block text-sm font-medium text-gray-700 dark:text-gray-300">
-                Confirm Password
-              </label>
-              <input
-                id="confirmPassword"
-                name="confirmPassword"
-                type="password"
-                autoComplete="new-password"
-                required
-                value={confirmPassword}
-                onChange={(e) => setConfirmPassword(e.target.value)}
-                className="mt-1 appearance-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-white rounded-lg focus:outline-none focus:ring-blue-500 focus:border-blue-500 focus:z-10 sm:text-sm bg-white dark:bg-gray-700"
-                placeholder="Confirm your password"
-              />
-            </div>
+            </svg>
           </div>
+          <span className="text-xl font-semibold text-gray-900 dark:text-white">
+            Opportunity Center
+          </span>
+        </Link>
+      </header>
 
-          <div>
-            <button
-              type="submit"
-              disabled={loading}
-              className="group relative w-full flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-lg text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 disabled:opacity-50 disabled:cursor-not-allowed transition-all"
-            >
-              {loading ? 'Creating account...' : 'Create account'}
-            </button>
+      {/* Main Content */}
+      <main className="flex-1 flex items-center justify-center px-4 py-12">
+        <div className="w-full max-w-md">
+          {/* Card */}
+          <div className="bg-gray-50 dark:bg-gray-800 rounded-2xl shadow-lg p-8">
+            {/* Heading */}
+            <div className="mb-8">
+              <h1 className="text-3xl font-bold text-gray-900 dark:text-white mb-2">
+                Create Account
+              </h1>
+              <p className="text-gray-600 dark:text-gray-400">
+                Sign up to get started
+              </p>
+            </div>
+
+            {/* Error Message */}
+            {error && (
+              <div className="mb-6 bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg text-sm">
+                {error}
+              </div>
+            )}
+
+            {/* Form */}
+            <form className="space-y-6" onSubmit={handleSubmit}>
+              {/* Name Field */}
+              <div>
+                <label
+                  htmlFor="name"
+                  className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2"
+                >
+                  Full Name
+                </label>
+                <input
+                  id="name"
+                  name="name"
+                  type="text"
+                  required
+                  value={name}
+                  onChange={(e) => setName(e.target.value)}
+                  className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 text-gray-900 dark:text-white placeholder-gray-400 dark:placeholder-gray-500 rounded-lg focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent bg-white dark:bg-gray-700 transition-colors"
+                  placeholder="John Doe"
+                />
+              </div>
+
+              {/* Email Field */}
+              <div>
+                <label
+                  htmlFor="email"
+                  className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2"
+                >
+                  Email Address
+                </label>
+                <input
+                  id="email"
+                  name="email"
+                  type="email"
+                  autoComplete="email"
+                  required
+                  value={email}
+                  onChange={(e) => setEmail(e.target.value)}
+                  className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 text-gray-900 dark:text-white placeholder-gray-400 dark:placeholder-gray-500 rounded-lg focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent bg-white dark:bg-gray-700 transition-colors"
+                  placeholder="you@example.com"
+                />
+              </div>
+
+              {/* Password Field */}
+              <div>
+                <label
+                  htmlFor="password"
+                  className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2"
+                >
+                  Password
+                </label>
+                <input
+                  id="password"
+                  name="password"
+                  type="password"
+                  autoComplete="new-password"
+                  required
+                  value={password}
+                  onChange={(e) => setPassword(e.target.value)}
+                  className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 text-gray-900 dark:text-white placeholder-gray-400 dark:placeholder-gray-500 rounded-lg focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent bg-white dark:bg-gray-700 transition-colors"
+                  placeholder="••••••••"
+                />
+                <p className="text-xs text-gray-500 dark:text-gray-400 mt-1">
+                  Must be at least 8 characters
+                </p>
+              </div>
+
+              {/* Confirm Password Field */}
+              <div>
+                <label
+                  htmlFor="confirmPassword"
+                  className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2"
+                >
+                  Confirm Password
+                </label>
+                <input
+                  id="confirmPassword"
+                  name="confirmPassword"
+                  type="password"
+                  autoComplete="new-password"
+                  required
+                  value={confirmPassword}
+                  onChange={(e) => setConfirmPassword(e.target.value)}
+                  className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 text-gray-900 dark:text-white placeholder-gray-400 dark:placeholder-gray-500 rounded-lg focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent bg-white dark:bg-gray-700 transition-colors"
+                  placeholder="••••••••"
+                />
+              </div>
+
+              {/* Submit Button */}
+              <button
+                type="submit"
+                disabled={loading}
+                className="w-full py-2 px-4 bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 text-white font-semibold rounded-lg transition-all duration-200 disabled:opacity-50 disabled:cursor-not-allowed"
+              >
+                {loading ? "Creating account..." : "Create Account"}
+              </button>
+            </form>
+
+            {/* Divider */}
+            <div className="my-8 border-t border-gray-200 dark:border-gray-700"></div>
+
+            {/* Sign In Link */}
+            <p className="text-center text-gray-600 dark:text-gray-400">
+              Already have an account?{" "}
+              <Link
+                href="/login"
+                className="font-medium text-blue-600 hover:text-blue-700 dark:text-blue-400 dark:hover:text-blue-300 transition-colors"
+              >
+                Sign in
+              </Link>
+            </p>
           </div>
-        </form>
-      </div>
+        </div>
+      </main>
+
+      {/* Footer */}
+      <footer className="border-t border-gray-200 dark:border-gray-800 py-6">
+        <div className="container mx-auto px-4 sm:px-6 lg:px-8">
+          <p className="text-center text-sm text-gray-600 dark:text-gray-400">
+            &copy; 2024 North Seattle College Opportunity Center. All rights
+            reserved.
+          </p>
+        </div>
+      </footer>
     </div>
   );
 }
-
diff --git a/backend/__pycache__/__init__.cpython-313.pyc b/backend/__pycache__/__init__.cpython-313.pyc
deleted file mode 100644
index 89e1d88..0000000
Binary files a/backend/__pycache__/__init__.cpython-313.pyc and /dev/null differ
diff --git a/backend/__pycache__/llm_model.cpython-313.pyc b/backend/__pycache__/llm_model.cpython-313.pyc
deleted file mode 100644
index acfb970..0000000
Binary files a/backend/__pycache__/llm_model.cpython-313.pyc and /dev/null differ
diff --git a/backend/__pycache__/main.cpython-313.pyc b/backend/__pycache__/main.cpython-313.pyc
deleted file mode 100644
index ba9aa62..0000000
Binary files a/backend/__pycache__/main.cpython-313.pyc and /dev/null differ
diff --git a/backend/main.py b/backend/main.py
index 0738204..cc28300 100644
--- a/backend/main.py
+++ b/backend/main.py
@@ -1,55 +1,34 @@
 from __future__ import annotations
 
-# Standard libs
-from datetime import datetime
+from datetime import datetime, timedelta
 from typing import List, Literal, Optional
 from uuid import uuid4
+import hashlib
+import secrets
+import os
 
-# FastAPI / Pydantic
-from fastapi import FastAPI, HTTPException, Request
+from fastapi import FastAPI, HTTPException, Request, Depends, Header
 from fastapi.middleware.cors import CORSMiddleware
 from pydantic import BaseModel
 
-# Local LLM interface (synchronous helper used by chat endpoint)
 from backend.llm_model import generate_text
 
-# LLM proxy router (optional). If backend/llm_proxy.py is not present, register an empty router.
-try:
-    # Allows /api/llm/* routes when llm_proxy module exists
-    from backend.llm_proxy import router as llm_router
-except ImportError:
-    # Fallback so app startup does not fail when the module is absent
-    from fastapi import APIRouter
-    llm_router = APIRouter()
-
-# --- App setup ---
-# Create FastAPI app and set metadata
-app = FastAPI(title="Opportunity Center Chat Backend", version="1.0.0")
+# Enable mock auth bypass in development/testing
+MOCK_AUTH_ENABLED = os.getenv("MOCK_AUTH_ENABLED", "true").lower() == "true"
+
 
-# Health check endpoint (lightweight)
-@app.get("/__health")
-def health():
-    return {"status": "ok"}
+app = FastAPI(title="Opportunity Center Chat Backend", version="1.0.0")
 
-# Configure CORS for local Next.js frontend during development.
-# If you deploy to production, update allow_origins to exact domain(s).
+# Configure CORS
 app.add_middleware(
     CORSMiddleware,
-    allow_origins=["http://localhost:3000"],  # Next.js frontend origin
+    allow_origins=["http://localhost:3000"],  # Next.js frontend
     allow_credentials=True,
     allow_methods=["*"],
     allow_headers=["*"],
 )
 
-# Include the LLM proxy router (Hugging Face or other provider)
-# This mounts any routes defined in backend/llm_proxy.py under the main app.
-app.include_router(llm_router)
-
-
-# --- Pydantic models (API request/response shapes) ---
-
 class ChatMessage(BaseModel):
-    """Represents a single chat message in a conversation."""
     id: str
     content: str
     role: Literal["user", "assistant"]
@@ -58,19 +37,16 @@ class ChatMessage(BaseModel):
 
 
 class SendMessageRequest(BaseModel):
-    """Payload sent by the frontend when posting a user message."""
     message: str
     conversationId: Optional[str] = None
 
 
 class SendMessageResponse(BaseModel):
-    """Response for a posted message that includes the assistant reply and conversation id."""
     message: ChatMessage
     conversationId: str
 
 
 class ConversationSummary(BaseModel):
-    """Summary metadata for a conversation (used in conversation list)."""
     id: str
     title: str
     createdAt: str
@@ -78,41 +54,167 @@ class ConversationSummary(BaseModel):
     messageCount: int
 
 
+class ApiKeyRequest(BaseModel):
+    name: str
+    title: str
+    createdAt: str
+    updatedAt: str
+    messageCount: int
+
+
 class ChatHistoryResponse(BaseModel):
-    """Response payload when retrieving the messages for a conversation."""
     messages: List[ChatMessage]
     conversationId: str
 
 
-# --- In-memory data stores (simple for demo / dev) ---
-# conversation_messages: user_id -> conversation_id -> list[ChatMessage]
+class LoginRequest(BaseModel):
+    email: str
+    password: str
+
+
+class RegisterRequest(BaseModel):
+    email: str
+    password: str
+    name: str
+
+
+class UserResponse(BaseModel):
+    id: str
+    email: str
+    name: str
+    role: str
+    createdAt: str
+
+
+class AuthResponse(BaseModel):
+    token: str
+    user: UserResponse
+
+
+# --- Data ---
+
 conversation_messages: dict[str, dict[str, list[ChatMessage]]] = {}
-# conversation_metadata: user_id -> conversation_id -> metadata (title, created_at, updated_at)
 conversation_metadata: dict[str, dict[str, dict[str, datetime | str]]] = {}
 
+# Session management
+sessions: dict[str, dict] = {}  # token -> {user_id, expires_at, created_at}
+SESSION_TIMEOUT_MINUTES = 60  # Configurable session timeout
+
+# Password storage (in production, use proper password hashing library like bcrypt)
+user_passwords: dict[str, str] = {}  # user_id -> hashed_password
+
+# Password reset tokens
+reset_tokens: dict[str, dict] = {}  # token -> {user_id, email, expires_at, created_at}
+RESET_TOKEN_TIMEOUT_MINUTES = 60  # Reset link valid for 1 hour
+
+
+def hash_password(password: str) -> str:
+    """Hash password using SHA-256 with salt"""
+    salt = secrets.token_hex(16)
+    pwd_hash = hashlib.sha256((password + salt).encode()).hexdigest()
+    return f"{salt}${pwd_hash}"
+
+
+def verify_password(password: str, hashed: str) -> bool:
+    """Verify password against hash"""
+    try:
+        salt, pwd_hash = hashed.split('$')
+        return hashlib.sha256((password + salt).encode()).hexdigest() == pwd_hash
+    except:
+        return False
+
+
+def create_session(user_id: str) -> str:
+    """Create a new session token"""
+    token = secrets.token_urlsafe(32)
+    sessions[token] = {
+        "user_id": user_id,
+        "created_at": datetime.utcnow(),
+        "expires_at": datetime.utcnow() + timedelta(minutes=SESSION_TIMEOUT_MINUTES),
+        "last_activity": datetime.utcnow()
+    }
+    return token
+
+
+def validate_session(token: str) -> Optional[str]:
+    """Validate session and return user_id if valid"""
+    if not token or token not in sessions:
+        return None
+    
+    session = sessions[token]
+    now = datetime.utcnow()
+    
+    # Check if session expired
+    if now > session["expires_at"]:
+        del sessions[token]
+        return None
+    
+    # Update last activity and extend expiration
+    session["last_activity"] = now
+    session["expires_at"] = now + timedelta(minutes=SESSION_TIMEOUT_MINUTES)
+    
+    return session["user_id"]
+
+
+def require_auth(authorization: Optional[str] = Header(None)) -> str:
+    """Dependency to require authentication"""
+    if not authorization or not authorization.startswith("Bearer "):
+        # Allow mock bypass when enabled (dev/test only)
+        if MOCK_AUTH_ENABLED:
+            return "test-user"
+        raise HTTPException(status_code=401, detail="Missing or invalid authorization header")
+
+    token = authorization.replace("Bearer ", "")
+
+    # Mock token shortcut
+    if MOCK_AUTH_ENABLED and token == "mock-test-token":
+        return "test-user"
+
+    user_id = validate_session(token)
+
+    if not user_id:
+        raise HTTPException(status_code=401, detail="Invalid or expired session")
+
+    return user_id
+
+
+def require_role(required_role: str):
+    """Dependency factory to require specific role"""
+    def role_checker(user_id: str = Depends(require_auth)) -> str:
+        user = next((u for u in users_db if u["id"] == user_id), None)
+        if not user:
+            raise HTTPException(status_code=404, detail="User not found")
+        
+        user_role = user["role"]
+        
+        # Role hierarchy: super-admin > admin > user
+        role_hierarchy = {"super-admin": 3, "admin": 2, "user": 1}
+        required_level = role_hierarchy.get(required_role, 0)
+        user_level = role_hierarchy.get(user_role, 0)
+        
+        if user_level < required_level:
+            raise HTTPException(status_code=403, detail="Insufficient permissions")
+        
+        return user_id
+    return role_checker
+
 
-# --- Helper functions ---
 def _get_user_id(request: Request) -> str:
-    """
-    Determine the "user" for this request.
-    In this demo we support an 'x-user-id' header to separate data per user.
-    Default to 'admin' if not provided.
-    """
-    return request.headers.get("x-user-id") or "admin"
+    user_id = request.headers.get("x-user-id")
+    if not user_id:
+        raise HTTPException(status_code=400, detail="Missing X-User-Id header.")
+    return user_id
 
 
 def _get_user_message_store(user_id: str) -> dict[str, list[ChatMessage]]:
-    """Get or create the message store for a user."""
     return conversation_messages.setdefault(user_id, {})
 
 
 def _get_user_metadata_store(user_id: str) -> dict[str, dict[str, datetime | str]]:
-    """Get or create the metadata store for a user."""
     return conversation_metadata.setdefault(user_id, {})
 
 
 def _derive_title(text: str) -> str:
-    """Create a short conversation title from the first user message."""
     cleaned = text.strip()
     if not cleaned:
         return "New Conversation"
@@ -120,7 +222,6 @@ def _derive_title(text: str) -> str:
 
 
 def _create_conversation(user_id: str, first_user_message: str) -> str:
-    """Create a new conversation and return its id."""
     user_meta = _get_user_metadata_store(user_id)
     user_messages = _get_user_message_store(user_id)
     conv_id = str(uuid4())
@@ -134,23 +235,18 @@ def _create_conversation(user_id: str, first_user_message: str) -> str:
     return conv_id
 
 
-def _ensure_conversation(user_id: str, conversation_id: Optional[str], user_message: str) -> str:
-    """
-    Ensure a conversation exists:
-    - If conversation_id provided and known, return it.
-    - Else create a new conversation seeded with the user message.
-    """
+def _ensure_conversation(
+    user_id: str, conversation_id: Optional[str], user_message: str
+) -> str:
     user_meta = _get_user_metadata_store(user_id)
     if conversation_id and conversation_id in user_meta:
         return conversation_id
     return _create_conversation(user_id, user_message)
 
 
-def _store_message(user_id: str, conversation_id: str, role: Literal["user", "assistant"], content: str) -> ChatMessage:
-    """
-    Append a message to the conversation message list and update metadata.
-    Raises 404 if conversation not found.
-    """
+def _store_message(
+    user_id: str, conversation_id: str, role: Literal["user", "assistant"], content: str
+) -> ChatMessage:
     user_messages = _get_user_message_store(user_id)
     user_meta = _get_user_metadata_store(user_id)
 
@@ -166,7 +262,6 @@ def _store_message(user_id: str, conversation_id: str, role: Literal["user", "as
     )
     user_messages[conversation_id].append(message)
 
-    # Update conversation metadata (updated_at and possibly title)
     meta = user_meta[conversation_id]
     meta["updated_at"] = datetime.utcnow()
     if role == "user" and (not meta.get("title") or meta["title"] == "New Conversation"):
@@ -175,35 +270,24 @@ def _store_message(user_id: str, conversation_id: str, role: Literal["user", "as
     return message
 
 
-def strip_signature(text: str) -> str:
-    """
-    Remove common trailing sign-offs or 'Conclusion' blocks from model output.
-    Keeps and returns only the first meaningful part of the output.
-    """
-    import re
-
-    if not text:
-        return text
+def _build_prompt(user_id: str, conversation_id: str) -> str:
+    history = _get_user_message_store(user_id).get(conversation_id, [])
+    recent_history = history[-10:]
 
-    # Split on common closing phrases and keep the text before them.
-    parts = re.split(
-        r'\n\s*(?:Regards|Best regards|Sincerely|Conclusion|Thanks|Thank you)[\s,:-]?.*$',
-        text,
-        flags=re.IGNORECASE | re.MULTILINE,
+    latest_user = next(
+        (msg for msg in reversed(recent_history) if msg.role == "user"), None
     )
-    return parts[0].strip()
 
+    history_lines = []
+    for msg in recent_history:
+        role = "User" if msg.role == "user" else "Assistant"
+        history_lines.append(f"{role}: {msg.content}")
+    history_block = "\n".join(history_lines)
 
-def _build_prompt(user_id: str, conversation_id: str) -> str:
-    """
-    Build a deterministic prompt for the LLM based on recent conversation history.
-    - Includes a system instruction to constrain output style and length.
-    - Uses the last ~10 messages to provide context.
-    """
-    history = _get_user_message_store(user_id).get(conversation_id, [])
-    recent_history = history[-10:]
-    latest_user = next((msg for msg in reversed(recent_history) if msg.role == "user"), None)
-    latest_content = latest_user.content if latest_user else ""
+    if not latest_user:
+        latest_content = ""
+    else:
+        latest_content = latest_user.content
 
     system = (
         "You are a helpful assistant for the Opportunity Center. "
@@ -212,10 +296,6 @@ def _build_prompt(user_id: str, conversation_id: str) -> str:
         "Keep replies under 80 words."
     )
 
-    # Turn message history into a simple chat log for the prompt
-    history_lines = [f"{'User' if msg.role == 'user' else 'Assistant'}: {msg.content}" for msg in recent_history]
-    history_block = "\n".join(history_lines)
-
     return (
         f"{system}\n\n"
         f"Recent conversation:\n{history_block}\n\n"
@@ -226,7 +306,6 @@ def _build_prompt(user_id: str, conversation_id: str) -> str:
 
 
 def _conversation_summary(user_id: str, conversation_id: str) -> ConversationSummary:
-    """Create a ConversationSummary from stored metadata and messages."""
     user_meta = _get_user_metadata_store(user_id)
     user_messages = _get_user_message_store(user_id)
 
@@ -237,7 +316,6 @@ def _conversation_summary(user_id: str, conversation_id: str) -> ConversationSum
     messages = user_messages.get(conversation_id, [])
 
     title = meta.get("title", "New Conversation")
-    # If the title is not set, derive it from the first user message
     if (not title or title == "New Conversation") and messages:
         for msg in messages:
             if msg.role == "user":
@@ -252,20 +330,206 @@ def _conversation_summary(user_id: str, conversation_id: str) -> ConversationSum
         messageCount=len(messages),
     )
 
-
-# --- Endpoints (public API surface) ---
+# --- Endpoints ---
 
 @app.get("/")
 async def root():
-    """Root endpoint describing the API."""
     return {"message": "Opportunity Center Chat API", "status": "ok"}
 
 
+# --- Auth Endpoints ---
+
+@app.post("/api/auth/register", response_model=AuthResponse)
+def register(req: RegisterRequest):
+    # Check if user already exists
+    existing_user = next((u for u in users_db if u["email"] == req.email), None)
+    if existing_user:
+        raise HTTPException(status_code=400, detail="Email already registered")
+    
+    # Hash password
+    hashed_pwd = hash_password(req.password)
+    
+    # Create new user
+    new_user = {
+        "id": f"user-{len(users_db) + 1}",
+        "email": req.email,
+        "name": req.name,
+        "role": "user",
+        "createdAt": datetime.utcnow().isoformat() + "Z"
+    }
+    users_db.append(new_user)
+    user_passwords[new_user["id"]] = hashed_pwd
+    
+    # Create session
+    token = create_session(new_user["id"])
+    
+    return AuthResponse(
+        token=token,
+        user=UserResponse(**new_user)
+    )
+
+
+@app.post("/api/auth/login", response_model=AuthResponse)
+def login(req: LoginRequest):
+    # Find user by email
+    user = next((u for u in users_db if u["email"] == req.email), None)
+    if not user:
+        raise HTTPException(status_code=401, detail="Invalid email or password")
+    
+    # Verify password
+    stored_password = user_passwords.get(user["id"])
+    if not stored_password or not verify_password(req.password, stored_password):
+        raise HTTPException(status_code=401, detail="Invalid email or password")
+    
+    # Create session
+    token = create_session(user["id"])
+    
+    return AuthResponse(
+        token=token,
+        user=UserResponse(**user)
+    )
+
+
+@app.post("/api/auth/logout")
+def logout(authorization: Optional[str] = Header(None)):
+    if authorization and authorization.startswith("Bearer "):
+        token = authorization.replace("Bearer ", "")
+        if token in sessions:
+            del sessions[token]
+    return {"message": "Logged out successfully"}
+
+
+@app.get("/api/auth/me", response_model=UserResponse)
+def get_current_user(user_id: str = Depends(require_auth)):
+    user = next((u for u in users_db if u["id"] == user_id), None)
+    if not user:
+        raise HTTPException(status_code=404, detail="User not found")
+    return UserResponse(**user)
+
+
+@app.post("/api/auth/refresh", response_model=AuthResponse)
+def refresh_token(user_id: str = Depends(require_auth)):
+    user = next((u for u in users_db if u["id"] == user_id), None)
+    if not user:
+        raise HTTPException(status_code=401, detail="Invalid token")
+    
+    # Create new session
+    token = create_session(user["id"])
+    return AuthResponse(
+        token=token,
+        user=UserResponse(**user)
+    )
+
+
+class PasswordResetRequest(BaseModel):
+    email: str
+
+
+class PasswordResetSubmit(BaseModel):
+    token: str
+    new_password: str
+
+
+class UsernameRecoveryRequest(BaseModel):
+    email: str
+
+
+@app.post("/api/auth/reset-password-request")
+def request_password_reset(request: PasswordResetRequest):
+    """Request a password reset link"""
+    user = next((u for u in users_db if u["email"] == request.email), None)
+    
+    # Always return success to prevent email enumeration
+    # In production, send actual email here
+    if user:
+        # Generate reset token
+        token = secrets.token_urlsafe(32)
+        reset_tokens[token] = {
+            "user_id": user["id"],
+            "email": user["email"],
+            "created_at": datetime.utcnow(),
+            "expires_at": datetime.utcnow() + timedelta(minutes=RESET_TOKEN_TIMEOUT_MINUTES)
+        }
+        
+        # In production, send email with link: http://localhost:3000/recovery/reset-password/{token}
+        print(f"Password reset link for {request.email}: http://localhost:3000/recovery/reset-password/{token}")
+    
+    return {
+        "message": "If an account exists with this email, a password reset link has been sent",
+        "success": True
+    }
+
+
+@app.get("/api/auth/validate-reset-token")
+def validate_reset_token(token: str):
+    """Validate a password reset token"""
+    if token not in reset_tokens:
+        raise HTTPException(status_code=400, detail="Invalid reset token")
+    
+    token_data = reset_tokens[token]
+    now = datetime.utcnow()
+    
+    if now > token_data["expires_at"]:
+        del reset_tokens[token]
+        raise HTTPException(status_code=400, detail="Reset token has expired")
+    
+    return {"valid": True}
+
+
+@app.post("/api/auth/reset-password")
+def reset_password(request: PasswordResetSubmit):
+    """Reset password using valid token"""
+    if request.token not in reset_tokens:
+        raise HTTPException(status_code=400, detail="Invalid reset token")
+    
+    token_data = reset_tokens[request.token]
+    now = datetime.utcnow()
+    
+    if now > token_data["expires_at"]:
+        del reset_tokens[request.token]
+        raise HTTPException(status_code=400, detail="Reset token has expired")
+    
+    # Update password
+    user_id = token_data["user_id"]
+    user_passwords[user_id] = hash_password(request.new_password)
+    
+    # Invalidate token
+    del reset_tokens[request.token]
+    
+    # Invalidate all sessions for this user
+    tokens_to_delete = [t for t, s in sessions.items() if s["user_id"] == user_id]
+    for t in tokens_to_delete:
+        del sessions[t]
+    
+    return {
+        "message": "Password has been reset successfully",
+        "success": True
+    }
+
+
+@app.post("/api/auth/recover-username")
+def recover_username(request: UsernameRecoveryRequest):
+    """Recover username by email"""
+    user = next((u for u in users_db if u["email"] == request.email), None)
+    
+    if not user:
+        raise HTTPException(status_code=404, detail="No account found with this email address")
+    
+    # In production, send email with username
+    print(f"Username recovery for {request.email}: {user['email']}")
+    
+    return {
+        "message": "Username has been sent to your email",
+        "username": user["email"],  # In this app, email is the username
+        "success": True
+    }
+
+
 @app.get("/api/chat/conversations", response_model=List[ConversationSummary])
 def list_conversations(request: Request):
-    """List all conversations for the requesting user (summary metadata)."""
     user_id = _get_user_id(request)
     user_meta = _get_user_metadata_store(user_id)
+
     summaries = [_conversation_summary(user_id, conv_id) for conv_id in user_meta]
     summaries.sort(key=lambda s: s.updatedAt, reverse=True)
     return summaries
@@ -273,71 +537,351 @@ def list_conversations(request: Request):
 
 @app.get("/api/chat/conversations/{conversation_id}", response_model=ChatHistoryResponse)
 def get_conversation(conversation_id: str, request: Request):
-    """Return full message list for a conversation."""
     user_id = _get_user_id(request)
     user_messages = _get_user_message_store(user_id)
+
     if conversation_id not in user_messages:
         raise HTTPException(status_code=404, detail="Conversation not found.")
-    return ChatHistoryResponse(messages=user_messages[conversation_id], conversationId=conversation_id)
+
+    return ChatHistoryResponse(
+        messages=user_messages[conversation_id],
+        conversationId=conversation_id,
+    )
+
+
+# --- API Key Management ---
+
+api_keys_db = {}  # key_id -> {id, name, key_hash, createdAt, lastUsed}
+api_key_usage_logs = []  # List of {keyId, action, timestamp}
+
+
+def hash_api_key(key: str) -> str:
+    """Hash API key using SHA-256 with salt"""
+    salt = secrets.token_hex(16)
+    key_hash = hashlib.sha256((key + salt).encode()).hexdigest()
+    return f"{salt}${key_hash}"
+
+
+def verify_api_key(key: str, hashed: str) -> bool:
+    """Verify API key against hash"""
+    try:
+        salt, key_hash = hashed.split('$')
+        return hashlib.sha256((key + salt).encode()).hexdigest() == key_hash
+    except:
+        return False
+
+
+def generate_api_key() -> str:
+    """Generate a cryptographically secure API key"""
+    return "sk_" + secrets.token_urlsafe(32)
+
+
+def mask_api_key(key: str) -> str:
+    """Return masked key (show last 4 chars only)"""
+    if len(key) <= 4:
+        return "*" * len(key)
+    return "*" * (len(key) - 4) + key[-4:]
+
+
+# --- Admin Endpoints ---
+
+# Available LLM models (would come from DB/service in production)
+available_models = [
+    "GPT-2 (Local)",
+    "GPT-3.5 Turbo",
+    "GPT-4",
+    "GPT-4o Mini",
+]
+
+# In-memory system settings
+system_settings = {
+    "model": available_models[0],
+    "temperature": 0.2,
+    "maxTokens": 80,
+    "systemPrompt": "You are a helpful assistant for the Opportunity Center. Provide concise answers to questions.",
+    "rateLimit": 60
+}
+
+# Mock users database - Universal test user with admin role
+users_db = [
+    {
+        "id": "test-user",
+        "name": "Test User",
+        "email": "test@example.com",
+        "role": "admin",
+        "createdAt": "2024-01-01T00:00:00Z"
+    }
+]
+
+# Initialize default passwords (password: "admin123" for all)
+for user in users_db:
+    user_passwords[user["id"]] = hash_password("admin123")
+
+@app.get("/api/admin/stats")
+def get_admin_stats(user_id: str = Depends(require_role("admin"))):
+    # Calculate actual stats from stored data
+    total_users = len(users_db)
+    total_conversations = sum(len(convs) for convs in conversation_messages.values())
+    total_messages = sum(
+        len(messages) 
+        for user_convs in conversation_messages.values() 
+        for messages in user_convs.values()
+    )
+    # Count users with at least one conversation
+    active_users = sum(1 for user_convs in conversation_messages.values() if user_convs)
+    
+    return {
+        "totalUsers": total_users,
+        "totalConversations": total_conversations,
+        "totalMessages": total_messages,
+        "activeUsers": active_users,
+    }
+
+@app.get("/api/admin/users")
+def get_admin_users(user_id: str = Depends(require_role("admin"))):
+    return users_db
+
+@app.post("/api/admin/users")
+def create_admin_user(data: dict, user_id: str = Depends(require_role("admin"))):
+    # Check if user already exists
+    existing_user = next((u for u in users_db if u["email"] == data.get("email")), None)
+    if existing_user:
+        raise HTTPException(status_code=400, detail="Email already exists")
+    
+    # Only super-admin can create admin or super-admin users
+    requesting_user = next((u for u in users_db if u["id"] == user_id), None)
+    new_role = data.get("role", "user")
+    
+    if new_role in ["admin", "super-admin"] and requesting_user["role"] != "super-admin":
+        raise HTTPException(status_code=403, detail="Only super-admin can create admin users")
+    
+    # Hash password
+    password = data.get("password", "password123")
+    hashed_pwd = hash_password(password)
+    
+    # Create new user
+    new_user = {
+        "id": f"user-{len(users_db) + 1}",
+        "name": data.get("name"),
+        "email": data.get("email"),
+        "role": new_role,
+        "createdAt": datetime.utcnow().isoformat() + "Z"
+    }
+    users_db.append(new_user)
+    user_passwords[new_user["id"]] = hashed_pwd
+    return new_user
+
+@app.get("/api/admin/settings")
+def get_admin_settings(user_id: str = Depends(require_role("admin"))):
+    return {
+        **system_settings,
+        "sessionTimeoutMinutes": SESSION_TIMEOUT_MINUTES
+    }
+
+
+@app.get("/api/admin/models")
+def get_available_models(user_id: str = Depends(require_role("admin"))):
+    return {"models": available_models}
+
+@app.put("/api/admin/settings")
+def update_admin_settings(settings: dict, user_id: str = Depends(require_role("super-admin"))):
+    # Only super-admin can update settings
+    global SESSION_TIMEOUT_MINUTES
+    
+    # Update timeout if provided
+    if "sessionTimeoutMinutes" in settings:
+        SESSION_TIMEOUT_MINUTES = settings["sessionTimeoutMinutes"]
+    
+    # Update only provided fields
+    for key, value in settings.items():
+        if key in system_settings:
+            system_settings[key] = value
+    
+    return {
+        **system_settings,
+        "sessionTimeoutMinutes": SESSION_TIMEOUT_MINUTES
+    }
+
+@app.get("/api/admin/users/{user_id}")
+def get_admin_user(user_id: str, admin_user_id: str = Depends(require_role("admin"))):
+    user = next((u for u in users_db if u["id"] == user_id), None)
+    if not user:
+        raise HTTPException(status_code=404, detail="User not found")
+    return user
+
+@app.put("/api/admin/users/{user_id}")
+def update_admin_user(user_id: str, data: dict, admin_user_id: str = Depends(require_role("admin"))):
+    user = next((u for u in users_db if u["id"] == user_id), None)
+    if not user:
+        raise HTTPException(status_code=404, detail="User not found")
+    
+    # Check role change permissions
+    if "role" in data:
+        requesting_user = next((u for u in users_db if u["id"] == admin_user_id), None)
+        new_role = data["role"]
+        
+        # Only super-admin can change roles to admin or super-admin
+        if new_role in ["admin", "super-admin"] and requesting_user["role"] != "super-admin":
+            raise HTTPException(status_code=403, detail="Only super-admin can assign admin roles")
+        
+        # Cannot demote the last super-admin
+        if user["role"] == "super-admin" and new_role != "super-admin":
+            super_admin_count = sum(1 for u in users_db if u["role"] == "super-admin")
+            if super_admin_count <= 1:
+                raise HTTPException(status_code=400, detail="Cannot demote the last super-admin")
+    
+    # Update user fields
+    for key, value in data.items():
+        if key in user and key != "id":
+            user[key] = value
+    return user
+
+@app.delete("/api/admin/users/{user_id}")
+def delete_admin_user(user_id: str, admin_user_id: str = Depends(require_role("admin"))):
+    global users_db
+    user = next((u for u in users_db if u["id"] == user_id), None)
+    if not user:
+        raise HTTPException(status_code=404, detail="User not found")
+    
+    # Cannot delete yourself
+    if user_id == admin_user_id:
+        raise HTTPException(status_code=400, detail="Cannot delete your own account")
+    
+    # Cannot delete the last super-admin
+    if user["role"] == "super-admin":
+        super_admin_count = sum(1 for u in users_db if u["role"] == "super-admin")
+        if super_admin_count <= 1:
+            raise HTTPException(status_code=400, detail="Cannot delete the last super-admin")
+    
+    # Only super-admin can delete admin users
+    requesting_user = next((u for u in users_db if u["id"] == admin_user_id), None)
+    if user["role"] in ["admin", "super-admin"] and requesting_user["role"] != "super-admin":
+        raise HTTPException(status_code=403, detail="Only super-admin can delete admin users")
+    
+    users_db = [u for u in users_db if u["id"] != user_id]
+    if user_id in user_passwords:
+        del user_passwords[user_id]
+    return {"message": "User deleted successfully"}
+
+
+@app.get("/api/admin/api-keys")
+def get_api_keys(user_id: str = Depends(require_role("admin"))):
+    """Get all API keys (masked)"""
+    keys = [
+        {
+            "id": key_data["id"],
+            "name": key_data["name"],
+            "key": mask_api_key(key_data["key_hash"]),  # Masked
+            "createdAt": key_data["createdAt"],
+            "lastUsed": key_data.get("lastUsed"),
+        }
+        for key_data in api_keys_db.values()
+    ]
+    return keys
+
+
+@app.post("/api/admin/api-keys")
+def create_api_key(
+    request: ApiKeyRequest, user_id: str = Depends(require_role("super-admin"))
+):
+    """Create a new API key (only super-admin)"""
+    # Generate a new key
+    new_key = generate_api_key()
+    key_id = str(uuid4())
+    
+    # Hash and store
+    key_hash = hash_api_key(new_key)
+    api_keys_db[key_id] = {
+        "id": key_id,
+        "name": request.name or f"Key {len(api_keys_db) + 1}",
+        "key_hash": key_hash,
+        "createdAt": datetime.utcnow().isoformat() + "Z",
+        "lastUsed": None,
+    }
+    
+    # Log the creation
+    api_key_usage_logs.append({
+        "keyId": key_id,
+        "action": "created",
+        "timestamp": datetime.utcnow().isoformat() + "Z",
+    })
+    
+    # Return full key only once (will not be retrievable later)
+    return {
+        "id": key_id,
+        "name": api_keys_db[key_id]["name"],
+        "key": mask_api_key(key_hash),  # Masked for consistency
+        "fullKey": new_key,  # Only shown here
+        "createdAt": api_keys_db[key_id]["createdAt"],
+        "lastUsed": None,
+    }
+
+
+@app.delete("/api/admin/api-keys/{key_id}")
+def revoke_api_key(
+    key_id: str, user_id: str = Depends(require_role("super-admin"))
+):
+    """Revoke (delete) an API key"""
+    if key_id not in api_keys_db:
+        raise HTTPException(status_code=404, detail="API key not found")
+    
+    del api_keys_db[key_id]
+    
+    # Log the revocation
+    api_key_usage_logs.append({
+        "keyId": key_id,
+        "action": "revoked",
+        "timestamp": datetime.utcnow().isoformat() + "Z",
+    })
+    
+    return {"message": "API key revoked successfully"}
+
 
 
-@app.post("/api/chat/message", response_model=SendMessageResponse)
 def chat_with_llm(req: SendMessageRequest, request: Request):
-    """
-    Handle a user message: store the user message, build a prompt from recent history,
-    call the local LLM helper (backend.llm_model.generate_text), store the assistant reply,
-    and return the assistant message to the frontend.
-    """
     user_id = _get_user_id(request)
     message_text = req.message.strip()
     if not message_text:
         raise HTTPException(status_code=400, detail="Message must not be empty.")
 
-    # Ensure conversation exists, append the user message
     conversation_id = _ensure_conversation(user_id, req.conversationId, message_text)
+
+    # Add the user message to history before calling the model
     _store_message(user_id, conversation_id, "user", message_text)
 
-    # Build a controlled prompt for the model
     prompt = _build_prompt(user_id, conversation_id)
 
-    # Call the LLM helper.
-    # Note: generate_text is expected to be synchronous and return a short string reply.
-    # This implementation wraps errors into HTTPExceptions for clarity to the frontend.
     try:
         reply_text = generate_text(
             prompt=prompt,
             max_new_tokens=80,
             temperature=0.2,
             top_p=0.8,
-            do_sample=True,
+            do_sample=False,
             wrap_prompt=False,
             strip_after="Answer:",
         )
     except ValueError as e:
-        # Validation errors from the LLM helper (e.g., invalid parameters)
         raise HTTPException(status_code=400, detail=str(e))
     except Exception:
-        # Generic failure (model call / infra) -> 500
         raise HTTPException(status_code=500, detail="LLM generation failed.")
 
-    # Guard against empty replies
-    if not reply_text:
-        raise HTTPException(status_code=500, detail="Empty LLM reply.")
-
-    # Clean the raw model reply to strip common sign‑offs
-    clean_reply = strip_signature(reply_text).strip()
+    assistant_message = _store_message(user_id, conversation_id, "assistant", reply_text)
 
-    assistant_message = _store_message(user_id, conversation_id, "assistant", clean_reply)
-    return SendMessageResponse(message=assistant_message, conversationId=conversation_id)
+    return SendMessageResponse(
+        message=assistant_message,
+        conversationId=conversation_id,
+    )
 
 
 @app.delete("/api/chat/conversations/{conversation_id}")
 def delete_conversation(conversation_id: str, request: Request):
-    """Delete a conversation and its messages for the user."""
     user_id = _get_user_id(request)
     user_meta = _get_user_metadata_store(user_id)
+
     if conversation_id not in user_meta:
         raise HTTPException(status_code=404, detail="Conversation not found.")
+
     _get_user_message_store(user_id).pop(conversation_id, None)
     user_meta.pop(conversation_id, None)
     return {"message": "Conversation deleted."}
@@ -345,130 +889,19 @@ def delete_conversation(conversation_id: str, request: Request):
 
 @app.delete("/api/chat/conversations/{conversation_id}/messages")
 def clear_conversation_messages(conversation_id: str, request: Request):
-    """Clear messages in a conversation without removing the conversation metadata."""
     user_id = _get_user_id(request)
     user_meta = _get_user_metadata_store(user_id)
     user_messages = _get_user_message_store(user_id)
+
     if conversation_id not in user_meta:
         raise HTTPException(status_code=404, detail="Conversation not found.")
+
     user_messages[conversation_id] = []
     user_meta[conversation_id]["updated_at"] = datetime.utcnow()
     return {"message": "Conversation messages cleared."}
 
 
-# --- Admin endpoints for diagnostics and settings (demo) ---
-
-@app.get("/api/admin/stats")
-def get_admin_stats(request: Request):
-    user_id = _get_user_id(request)
-    user_meta = _get_user_metadata_store(user_id)
-    user_msgs = _get_user_message_store(user_id)
-    total_conversations = len(user_meta)
-    total_messages = sum(len(user_msgs.get(cid, [])) for cid in user_msgs)
-    active_users = 1 if total_conversations > 0 else 0
-    return {
-        "totalUsers": 1,  # or len(global_metadata_store) if you track all users
-        "totalConversations": total_conversations,
-        "totalMessages": total_messages,
-        "activeUsers": active_users,
-    }
-
-
-
-@app.get("/api/admin/users")
-def get_admin_users():
-    """
-    Return a list of users derived from conversation_metadata.
-    Note: This is a demo helper; in production use a proper user store.
-    """
-    users = []
-    for user_id, metas in conversation_metadata.items():
-        created_iso = (
-            next(iter(metas.values()))["created_at"].isoformat()
-            if metas
-            else datetime.utcnow().isoformat()
-        )
-        users.append({
-            "id": user_id,
-            "name": user_id,
-            "email": f"{user_id}@example.com",
-            "role": "admin" if user_id == "admin" else "user",
-            "createdAt": created_iso,
-        })
-    return users
-
-
-# --- Admin models and endpoints (settings / test) ---
-
-class AdminSettings(BaseModel):
-    """Settings that the admin UI can read/write (demo only)."""
-    model: str
-    systemPrompt: str
-    temperature: float
-    maxTokens: int
-    retrievalDepth: int
-    rateLimit: int
-
-
-# In-memory persisted admin settings for the lifetime of the process (demo)
-admin_settings_store = AdminSettings(
-    model="gpt-4o-mini",
-    systemPrompt="You are an internal assistant. Answer concisely and follow safety policies.",
-    temperature=0.2,
-    maxTokens=1024,
-    retrievalDepth=5,
-    rateLimit=60,
-)
-
-
-class TestRequest(BaseModel):
-    """Request shape used by admin test endpoint."""
-    prompt: str
-    settings: AdminSettings
-
-
-class TestResponse(BaseModel):
-    """Response shape returned by admin test endpoint."""
-    output: str
-    settings_used: AdminSettings
-
-
-@app.get("/api/admin/settings", response_model=AdminSettings)
-def get_admin_settings():
-    """Return current admin settings (persisted for this process)."""
-    return admin_settings_store
-
-
-@app.post("/api/admin/settings", response_model=AdminSettings)
-def update_admin_settings(settings: AdminSettings):
-    """Persist and echo admin settings (demo-only persistence in-memory)."""
-    global admin_settings_store
-    admin_settings_store = settings
-    return admin_settings_store
-
-
-@app.get("/api/admin/test")
-def admin_test_get():
-    """Simple GET test endpoint used by the frontend to verify connectivity."""
-    return {"status": "ok", "message": "Admin test GET endpoint working"}
-
-
-@app.post("/api/admin/test", response_model=TestResponse)
-def admin_test(req: TestRequest):
-    """
-    Admin test endpoint - validates prompt and echoes a response.
-    Useful for verifying the settings form and basic request handling.
-    """
-    if not req.prompt.strip():
-        raise HTTPException(status_code=400, detail="Prompt must not be empty.")
-    return {
-        "output": f"Echo: {req.prompt}",
-        "settings_used": req.settings,
-    }
-
 
-# --- Entrypoint for local dev ---
 if __name__ == "__main__":
     import uvicorn
-    # Run the app for local development. Use `python -m uvicorn backend.main:app --reload` in production/dev flow.
     uvicorn.run(app, host="0.0.0.0", port=8000)
diff --git a/bash.exe.stackdump b/bash.exe.stackdump
new file mode 100644
index 0000000..6f2a1e4
--- /dev/null
+++ b/bash.exe.stackdump
@@ -0,0 +1,15 @@
+Stack trace:
+Frame        Function    Args
+000FFFFB1B0  00180064365 (0018027B968, 00180266FD1, 00000000059, 000FFFFB690)
+000FFFFB6E0  001800499D2 (00180269795, 00100000000, 00000000000, 00000000001)
+000FFFFC6F0  00180049A11 (00000000000, 00000000000, 00000000059, 0000000000D)
+000FFFFC770  00180071EAB (000FFFFC870, 000FFFFC840, 000FFFFC870, 000FFFFC870)
+000FFFFC7C0  0018007426D (00180269795, 000FFFFC880, 00180102115, 0000000000D)
+000FFFFC820  0018005B9A2 (000FFFFC9C0, 00000000000, 00000000000, 000FFFFFFFF)
+000FFFFC8D0  0018005C8F7 (00000000002, 00000000000, 00000000000, 555C5C5C3A5C6300)
+000FFFFCA70  0018005CD7B (00000000001, 000FFFFCBA0, 001800DC3EF, 00000000000)
+000FFFFCB50  0018005D115 (00180154C95, 00000000000, FFFFFFFFFFFFFF32, 00000000000)
+000FFFFCCE0  0018004A1A8 (00000000000, 00000000000, 00000000000, 00000000000)
+000FFFFCDA0  00180048A2A (00000000000, 00000000000, 00000000000, 00000000000)
+000FFFFCE50  00180048AEC (00000000000, 00000000000, 00000000000, 00000000000)
+End of stack trace
diff --git a/components/admin/ApiKeyManagement.tsx b/components/admin/ApiKeyManagement.tsx
new file mode 100644
index 0000000..00860b9
--- /dev/null
+++ b/components/admin/ApiKeyManagement.tsx
@@ -0,0 +1,246 @@
+"use client";
+
+import { useState } from "react";
+import { adminApi, ApiKey } from "@/lib/api/admin";
+import { ApiError } from "@/lib/api/client";
+
+export function ApiKeyManagement({
+  apiKeys,
+  onKeysUpdated,
+}: {
+  apiKeys: ApiKey[];
+  onKeysUpdated: () => Promise<void>;
+}) {
+  const [showCreateForm, setShowCreateForm] = useState(false);
+  const [keyName, setKeyName] = useState("");
+  const [loading, setLoading] = useState(false);
+  const [error, setError] = useState("");
+  const [success, setSuccess] = useState("");
+  const [newKeyDisplayed, setNewKeyDisplayed] = useState<{
+    key: string;
+    name: string;
+  } | null>(null);
+  const [copied, setCopied] = useState(false);
+
+  const handleCreateKey = async (e: React.FormEvent) => {
+    e.preventDefault();
+    setError("");
+    setSuccess("");
+    setLoading(true);
+
+    try {
+      const response = await adminApi.createApiKey(keyName || "Unnamed Key");
+      setNewKeyDisplayed({
+        key: response.fullKey,
+        name: response.name,
+      });
+      setKeyName("");
+      setSuccess(
+        "API key created successfully! Copy it now (shown only once)."
+      );
+      await onKeysUpdated();
+    } catch (err) {
+      if (err instanceof ApiError) {
+        setError(err.message || "Failed to create API key");
+      } else {
+        setError("An unexpected error occurred");
+      }
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  const handleRevokeKey = async (keyId: string) => {
+    if (!confirm("Are you sure you want to revoke this API key?")) return;
+
+    setError("");
+    setLoading(true);
+
+    try {
+      await adminApi.revokeApiKey(keyId);
+      setSuccess("API key revoked successfully");
+      await onKeysUpdated();
+    } catch (err) {
+      if (err instanceof ApiError) {
+        setError(err.message || "Failed to revoke API key");
+      } else {
+        setError("An unexpected error occurred");
+      }
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  const copyToClipboard = (text: string) => {
+    navigator.clipboard.writeText(text);
+    setCopied(true);
+    setTimeout(() => setCopied(false), 2000);
+  };
+
+  const maskKey = (key: string) => {
+    if (key.length <= 4) return "*".repeat(key.length);
+    return "*".repeat(key.length - 4) + key.slice(-4);
+  };
+
+  return (
+    <div>
+      <div className="mb-6">
+        <div className="flex items-center justify-between mb-4">
+          <div>
+            <h2 className="text-2xl font-semibold text-gray-900 dark:text-white">
+              API Key Management
+            </h2>
+            <p className="text-sm text-gray-600 dark:text-gray-400 mt-1">
+              Create and manage access keys for API calls
+            </p>
+          </div>
+          <button
+            onClick={() => setShowCreateForm(!showCreateForm)}
+            className="inline-flex items-center px-4 py-2 text-sm font-medium text-white bg-gradient-to-r from-blue-600 to-indigo-600 hover:from-blue-700 hover:to-indigo-700 rounded-lg shadow-sm focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500"
+          >
+            + Add Key
+          </button>
+        </div>
+
+        {error && (
+          <div className="mb-4 bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
+            {error}
+          </div>
+        )}
+
+        {success && (
+          <div className="mb-4 bg-green-50 dark:bg-green-900/20 border border-green-200 dark:border-green-800 text-green-700 dark:text-green-400 px-4 py-3 rounded-lg">
+            {success}
+          </div>
+        )}
+
+        {showCreateForm && (
+          <form
+            onSubmit={handleCreateKey}
+            className="bg-gray-50 dark:bg-gray-900 p-4 rounded-lg border border-gray-200 dark:border-gray-700 mb-4"
+          >
+            <div className="mb-4">
+              <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-2">
+                Key Name (optional)
+              </label>
+              <input
+                type="text"
+                value={keyName}
+                onChange={(e) => setKeyName(e.target.value)}
+                placeholder="e.g., Production API Key"
+                className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+              />
+            </div>
+            <div className="flex gap-2">
+              <button
+                type="submit"
+                disabled={loading}
+                className="px-4 py-2 text-sm font-medium text-white bg-blue-600 hover:bg-blue-700 rounded-lg disabled:opacity-50"
+              >
+                {loading ? "Creating..." : "Create Key"}
+              </button>
+              <button
+                type="button"
+                onClick={() => setShowCreateForm(false)}
+                className="px-4 py-2 text-sm font-medium text-gray-700 dark:text-gray-300 bg-gray-200 dark:bg-gray-700 hover:bg-gray-300 dark:hover:bg-gray-600 rounded-lg"
+              >
+                Cancel
+              </button>
+            </div>
+          </form>
+        )}
+      </div>
+
+      {newKeyDisplayed && (
+        <div className="mb-6 bg-yellow-50 dark:bg-yellow-900/20 border border-yellow-200 dark:border-yellow-800 rounded-lg p-4">
+          <div className="mb-3">
+            <p className="text-sm font-medium text-yellow-800 dark:text-yellow-200">
+              New API Key (copy now, won't be shown again):
+            </p>
+            <p className="text-xs text-yellow-700 dark:text-yellow-300 mt-1">
+              Name: {newKeyDisplayed.name}
+            </p>
+          </div>
+          <div className="flex items-center gap-2">
+            <code className="flex-1 bg-white dark:bg-gray-800 px-3 py-2 rounded border border-yellow-200 dark:border-yellow-700 text-sm font-mono text-gray-900 dark:text-gray-100 break-all">
+              {newKeyDisplayed.key}
+            </code>
+            <button
+              onClick={() => copyToClipboard(newKeyDisplayed.key)}
+              className="px-3 py-2 text-sm font-medium text-white bg-yellow-600 hover:bg-yellow-700 rounded-lg"
+            >
+              {copied ? "Copied!" : "Copy"}
+            </button>
+          </div>
+        </div>
+      )}
+
+      <div className="overflow-x-auto">
+        <table className="w-full">
+          <thead className="bg-gray-100 dark:bg-gray-900 border-b border-gray-200 dark:border-gray-700">
+            <tr>
+              <th className="px-6 py-3 text-left text-sm font-semibold text-gray-900 dark:text-white">
+                Name
+              </th>
+              <th className="px-6 py-3 text-left text-sm font-semibold text-gray-900 dark:text-white">
+                Key
+              </th>
+              <th className="px-6 py-3 text-left text-sm font-semibold text-gray-900 dark:text-white">
+                Created
+              </th>
+              <th className="px-6 py-3 text-left text-sm font-semibold text-gray-900 dark:text-white">
+                Last Used
+              </th>
+              <th className="px-6 py-3 text-left text-sm font-semibold text-gray-900 dark:text-white">
+                Actions
+              </th>
+            </tr>
+          </thead>
+          <tbody className="divide-y divide-gray-200 dark:divide-gray-700">
+            {apiKeys.length === 0 ? (
+              <tr>
+                <td
+                  colSpan={5}
+                  className="px-6 py-8 text-center text-gray-500 dark:text-gray-400"
+                >
+                  No API keys yet. Create one to get started.
+                </td>
+              </tr>
+            ) : (
+              apiKeys.map((apiKey) => (
+                <tr
+                  key={apiKey.id}
+                  className="hover:bg-gray-50 dark:hover:bg-gray-800 transition-colors"
+                >
+                  <td className="px-6 py-4 text-sm text-gray-900 dark:text-white font-medium">
+                    {apiKey.name}
+                  </td>
+                  <td className="px-6 py-4 text-sm text-gray-600 dark:text-gray-400 font-mono">
+                    {maskKey(apiKey.key)}
+                  </td>
+                  <td className="px-6 py-4 text-sm text-gray-600 dark:text-gray-400">
+                    {new Date(apiKey.createdAt).toLocaleDateString()}
+                  </td>
+                  <td className="px-6 py-4 text-sm text-gray-600 dark:text-gray-400">
+                    {apiKey.lastUsed
+                      ? new Date(apiKey.lastUsed).toLocaleDateString()
+                      : "Never"}
+                  </td>
+                  <td className="px-6 py-4 text-sm">
+                    <button
+                      onClick={() => handleRevokeKey(apiKey.id)}
+                      disabled={loading}
+                      className="px-3 py-1 text-sm font-medium text-white bg-red-600 hover:bg-red-700 rounded disabled:opacity-50"
+                    >
+                      Revoke
+                    </button>
+                  </td>
+                </tr>
+              ))
+            )}
+          </tbody>
+        </table>
+      </div>
+    </div>
+  );
+}
diff --git a/components/admin/UserManagement.tsx b/components/admin/UserManagement.tsx
new file mode 100644
index 0000000..1204134
--- /dev/null
+++ b/components/admin/UserManagement.tsx
@@ -0,0 +1,759 @@
+"use client";
+
+import { useState } from "react";
+import { User } from "@/lib/api/auth";
+import { adminApi } from "@/lib/api/admin";
+import { ApiError } from "@/lib/api/client";
+
+interface UserManagementProps {
+  initialUsers: User[];
+  onUpdate: () => void;
+}
+
+type SortField = "name" | "email" | "role" | "createdAt";
+type SortOrder = "asc" | "desc";
+
+export function UserManagement({
+  initialUsers,
+  onUpdate,
+}: UserManagementProps) {
+  const [users, setUsers] = useState<User[]>(initialUsers);
+  const [showAddModal, setShowAddModal] = useState(false);
+  const [showEditModal, setShowEditModal] = useState(false);
+  const [showDeleteModal, setShowDeleteModal] = useState(false);
+  const [selectedUser, setSelectedUser] = useState<User | null>(null);
+  const [sortField, setSortField] = useState<SortField>("createdAt");
+  const [sortOrder, setSortOrder] = useState<SortOrder>("desc");
+  const [currentPage, setCurrentPage] = useState(1);
+  const [searchTerm, setSearchTerm] = useState("");
+  const itemsPerPage = 10;
+
+  // Filter and sort users
+  const filteredUsers = users.filter(
+    (user) =>
+      user.name.toLowerCase().includes(searchTerm.toLowerCase()) ||
+      user.email.toLowerCase().includes(searchTerm.toLowerCase()) ||
+      user.role.toLowerCase().includes(searchTerm.toLowerCase())
+  );
+
+  const sortedUsers = [...filteredUsers].sort((a, b) => {
+    let aVal = a[sortField];
+    let bVal = b[sortField];
+
+    if (sortField === "createdAt") {
+      aVal = new Date(aVal).getTime();
+      bVal = new Date(bVal).getTime();
+    }
+
+    if (aVal < bVal) return sortOrder === "asc" ? -1 : 1;
+    if (aVal > bVal) return sortOrder === "asc" ? 1 : -1;
+    return 0;
+  });
+
+  // Pagination
+  const totalPages = Math.ceil(sortedUsers.length / itemsPerPage);
+  const startIndex = (currentPage - 1) * itemsPerPage;
+  const paginatedUsers = sortedUsers.slice(
+    startIndex,
+    startIndex + itemsPerPage
+  );
+
+  const handleSort = (field: SortField) => {
+    if (sortField === field) {
+      setSortOrder(sortOrder === "asc" ? "desc" : "asc");
+    } else {
+      setSortField(field);
+      setSortOrder("asc");
+    }
+  };
+
+  const handleAddUser = () => {
+    setShowAddModal(true);
+  };
+
+  const handleEditUser = (user: User) => {
+    setSelectedUser(user);
+    setShowEditModal(true);
+  };
+
+  const handleDeleteUser = (user: User) => {
+    setSelectedUser(user);
+    setShowDeleteModal(true);
+  };
+
+  const refreshUsers = async () => {
+    try {
+      const updatedUsers = await adminApi.getUsers();
+      setUsers(updatedUsers);
+      onUpdate();
+    } catch (error) {
+      console.error("Failed to refresh users:", error);
+    }
+  };
+
+  const SortIcon = ({ field }: { field: SortField }) => {
+    if (sortField !== field) {
+      return (
+        <svg
+          className="w-4 h-4 text-gray-400"
+          fill="none"
+          stroke="currentColor"
+          viewBox="0 0 24 24"
+        >
+          <path
+            strokeLinecap="round"
+            strokeLinejoin="round"
+            strokeWidth={2}
+            d="M7 16V4m0 0L3 8m4-4l4 4m6 0v12m0 0l4-4m-4 4l-4-4"
+          />
+        </svg>
+      );
+    }
+    return sortOrder === "asc" ? (
+      <svg
+        className="w-4 h-4 text-blue-600"
+        fill="none"
+        stroke="currentColor"
+        viewBox="0 0 24 24"
+      >
+        <path
+          strokeLinecap="round"
+          strokeLinejoin="round"
+          strokeWidth={2}
+          d="M5 15l7-7 7 7"
+        />
+      </svg>
+    ) : (
+      <svg
+        className="w-4 h-4 text-blue-600"
+        fill="none"
+        stroke="currentColor"
+        viewBox="0 0 24 24"
+      >
+        <path
+          strokeLinecap="round"
+          strokeLinejoin="round"
+          strokeWidth={2}
+          d="M19 9l-7 7-7-7"
+        />
+      </svg>
+    );
+  };
+
+  return (
+    <div>
+      <div className="flex justify-between items-center mb-6">
+        <h2 className="text-2xl font-semibold text-gray-900 dark:text-white">
+          User Management
+        </h2>
+        <button
+          onClick={handleAddUser}
+          className="px-4 py-2 bg-gradient-to-r from-blue-600 to-indigo-600 text-white rounded-lg hover:from-blue-700 hover:to-indigo-700 transition-all flex items-center gap-2"
+        >
+          <svg
+            className="w-5 h-5"
+            fill="none"
+            stroke="currentColor"
+            viewBox="0 0 24 24"
+          >
+            <path
+              strokeLinecap="round"
+              strokeLinejoin="round"
+              strokeWidth={2}
+              d="M12 4v16m8-8H4"
+            />
+          </svg>
+          Add User
+        </button>
+      </div>
+
+      {/* Search Bar */}
+      <div className="mb-4">
+        <input
+          type="text"
+          placeholder="Search users by name, email, or role..."
+          value={searchTerm}
+          onChange={(e) => {
+            setSearchTerm(e.target.value);
+            setCurrentPage(1);
+          }}
+          className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+        />
+      </div>
+
+      {/* Users Table */}
+      <div className="overflow-x-auto">
+        <table className="min-w-full divide-y divide-gray-200 dark:divide-gray-700">
+          <thead className="bg-gray-50 dark:bg-gray-700">
+            <tr>
+              <th
+                onClick={() => handleSort("name")}
+                className="px-6 py-3 text-left text-xs font-medium text-gray-500 dark:text-gray-300 uppercase tracking-wider cursor-pointer hover:bg-gray-100 dark:hover:bg-gray-600"
+              >
+                <div className="flex items-center gap-2">
+                  Name
+                  <SortIcon field="name" />
+                </div>
+              </th>
+              <th
+                onClick={() => handleSort("email")}
+                className="px-6 py-3 text-left text-xs font-medium text-gray-500 dark:text-gray-300 uppercase tracking-wider cursor-pointer hover:bg-gray-100 dark:hover:bg-gray-600"
+              >
+                <div className="flex items-center gap-2">
+                  Email
+                  <SortIcon field="email" />
+                </div>
+              </th>
+              <th
+                onClick={() => handleSort("role")}
+                className="px-6 py-3 text-left text-xs font-medium text-gray-500 dark:text-gray-300 uppercase tracking-wider cursor-pointer hover:bg-gray-100 dark:hover:bg-gray-600"
+              >
+                <div className="flex items-center gap-2">
+                  Role
+                  <SortIcon field="role" />
+                </div>
+              </th>
+              <th className="px-6 py-3 text-left text-xs font-medium text-gray-500 dark:text-gray-300 uppercase tracking-wider">
+                Status
+              </th>
+              <th
+                onClick={() => handleSort("createdAt")}
+                className="px-6 py-3 text-left text-xs font-medium text-gray-500 dark:text-gray-300 uppercase tracking-wider cursor-pointer hover:bg-gray-100 dark:hover:bg-gray-600"
+              >
+                <div className="flex items-center gap-2">
+                  Created
+                  <SortIcon field="createdAt" />
+                </div>
+              </th>
+              <th className="px-6 py-3 text-right text-xs font-medium text-gray-500 dark:text-gray-300 uppercase tracking-wider">
+                Actions
+              </th>
+            </tr>
+          </thead>
+          <tbody className="bg-white dark:bg-gray-800 divide-y divide-gray-200 dark:divide-gray-700">
+            {paginatedUsers.map((user) => (
+              <tr
+                key={user.id}
+                className="hover:bg-gray-50 dark:hover:bg-gray-700/50"
+              >
+                <td className="px-6 py-4 whitespace-nowrap text-sm font-medium text-gray-900 dark:text-white">
+                  {user.name}
+                </td>
+                <td className="px-6 py-4 whitespace-nowrap text-sm text-gray-500 dark:text-gray-400">
+                  {user.email}
+                </td>
+                <td className="px-6 py-4 whitespace-nowrap">
+                  <span
+                    className={`px-2 inline-flex text-xs leading-5 font-semibold rounded-full ${
+                      user.role === "super-admin"
+                        ? "bg-red-100 text-red-800 dark:bg-red-900 dark:text-red-200"
+                        : user.role === "admin"
+                        ? "bg-purple-100 text-purple-800 dark:bg-purple-900 dark:text-purple-200"
+                        : "bg-gray-100 text-gray-800 dark:bg-gray-700 dark:text-gray-200"
+                    }`}
+                  >
+                    {user.role === "super-admin"
+                      ? "Super Admin"
+                      : user.role.charAt(0).toUpperCase() + user.role.slice(1)}
+                  </span>
+                </td>
+                <td className="px-6 py-4 whitespace-nowrap">
+                  <span className="px-2 inline-flex text-xs leading-5 font-semibold rounded-full bg-green-100 text-green-800 dark:bg-green-900 dark:text-green-200">
+                    Active
+                  </span>
+                </td>
+                <td className="px-6 py-4 whitespace-nowrap text-sm text-gray-500 dark:text-gray-400">
+                  {new Date(user.createdAt).toLocaleDateString()}
+                </td>
+                <td className="px-6 py-4 whitespace-nowrap text-right text-sm font-medium">
+                  <button
+                    onClick={() => handleEditUser(user)}
+                    className="text-blue-600 hover:text-blue-900 dark:text-blue-400 dark:hover:text-blue-300 mr-4"
+                  >
+                    Edit
+                  </button>
+                  <button
+                    onClick={() => handleDeleteUser(user)}
+                    className="text-red-600 hover:text-red-900 dark:text-red-400 dark:hover:text-red-300"
+                  >
+                    Delete
+                  </button>
+                </td>
+              </tr>
+            ))}
+          </tbody>
+        </table>
+      </div>
+
+      {/* Pagination */}
+      {totalPages > 1 && (
+        <div className="mt-4 flex items-center justify-between">
+          <div className="text-sm text-gray-700 dark:text-gray-300">
+            Showing {startIndex + 1} to{" "}
+            {Math.min(startIndex + itemsPerPage, sortedUsers.length)} of{" "}
+            {sortedUsers.length} users
+          </div>
+          <div className="flex gap-2">
+            <button
+              onClick={() => setCurrentPage(currentPage - 1)}
+              disabled={currentPage === 1}
+              className="px-3 py-1 border border-gray-300 dark:border-gray-600 rounded-md text-sm font-medium text-gray-700 dark:text-gray-300 hover:bg-gray-50 dark:hover:bg-gray-700 disabled:opacity-50 disabled:cursor-not-allowed"
+            >
+              Previous
+            </button>
+            {Array.from({ length: totalPages }, (_, i) => i + 1).map((page) => (
+              <button
+                key={page}
+                onClick={() => setCurrentPage(page)}
+                className={`px-3 py-1 border rounded-md text-sm font-medium ${
+                  currentPage === page
+                    ? "bg-blue-600 text-white border-blue-600"
+                    : "border-gray-300 dark:border-gray-600 text-gray-700 dark:text-gray-300 hover:bg-gray-50 dark:hover:bg-gray-700"
+                }`}
+              >
+                {page}
+              </button>
+            ))}
+            <button
+              onClick={() => setCurrentPage(currentPage + 1)}
+              disabled={currentPage === totalPages}
+              className="px-3 py-1 border border-gray-300 dark:border-gray-600 rounded-md text-sm font-medium text-gray-700 dark:text-gray-300 hover:bg-gray-50 dark:hover:bg-gray-700 disabled:opacity-50 disabled:cursor-not-allowed"
+            >
+              Next
+            </button>
+          </div>
+        </div>
+      )}
+
+      {/* Add User Modal */}
+      {showAddModal && (
+        <AddUserModal
+          onClose={() => setShowAddModal(false)}
+          onSuccess={refreshUsers}
+        />
+      )}
+
+      {/* Edit User Modal */}
+      {showEditModal && selectedUser && (
+        <EditUserModal
+          user={selectedUser}
+          onClose={() => {
+            setShowEditModal(false);
+            setSelectedUser(null);
+          }}
+          onSuccess={refreshUsers}
+        />
+      )}
+
+      {/* Delete Confirmation Modal */}
+      {showDeleteModal && selectedUser && (
+        <DeleteUserModal
+          user={selectedUser}
+          onClose={() => {
+            setShowDeleteModal(false);
+            setSelectedUser(null);
+          }}
+          onSuccess={refreshUsers}
+        />
+      )}
+    </div>
+  );
+}
+
+// Add User Modal Component
+function AddUserModal({
+  onClose,
+  onSuccess,
+}: {
+  onClose: () => void;
+  onSuccess: () => void;
+}) {
+  const [formData, setFormData] = useState({
+    name: "",
+    email: "",
+    role: "user" as "user" | "admin" | "super-admin",
+    password: "",
+  });
+  const [loading, setLoading] = useState(false);
+  const [error, setError] = useState("");
+
+  const handleSubmit = async (e: React.FormEvent) => {
+    e.preventDefault();
+    setLoading(true);
+    setError("");
+
+    try {
+      await adminApi.createUser(formData);
+      onSuccess();
+      onClose();
+    } catch (err) {
+      if (err instanceof ApiError) {
+        setError(err.message || "Failed to create user");
+      } else {
+        setError("An unexpected error occurred");
+      }
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  return (
+    <div className="fixed inset-0 bg-black bg-opacity-50 flex items-center justify-center z-50">
+      <div className="bg-white dark:bg-gray-800 rounded-xl shadow-xl max-w-md w-full mx-4 p-6">
+        <div className="flex justify-between items-center mb-4">
+          <h3 className="text-xl font-semibold text-gray-900 dark:text-white">
+            Add New User
+          </h3>
+          <button
+            onClick={onClose}
+            className="text-gray-400 hover:text-gray-600 dark:hover:text-gray-300"
+          >
+            <svg
+              className="w-6 h-6"
+              fill="none"
+              stroke="currentColor"
+              viewBox="0 0 24 24"
+            >
+              <path
+                strokeLinecap="round"
+                strokeLinejoin="round"
+                strokeWidth={2}
+                d="M6 18L18 6M6 6l12 12"
+              />
+            </svg>
+          </button>
+        </div>
+
+        {error && (
+          <div className="mb-4 bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
+            {error}
+          </div>
+        )}
+
+        <form onSubmit={handleSubmit} className="space-y-4">
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">
+              Name
+            </label>
+            <input
+              type="text"
+              required
+              value={formData.name}
+              onChange={(e) =>
+                setFormData({ ...formData, name: e.target.value })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            />
+          </div>
+
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">
+              Email
+            </label>
+            <input
+              type="email"
+              required
+              value={formData.email}
+              onChange={(e) =>
+                setFormData({ ...formData, email: e.target.value })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            />
+          </div>
+
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">
+              Password
+            </label>
+            <input
+              type="password"
+              required
+              value={formData.password}
+              onChange={(e) =>
+                setFormData({ ...formData, password: e.target.value })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            />
+          </div>
+
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">
+              Role
+            </label>
+            <select
+              value={formData.role}
+              onChange={(e) =>
+                setFormData({
+                  ...formData,
+                  role: e.target.value as "user" | "admin" | "super-admin",
+                })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            >
+              <option value="user">User</option>
+              <option value="admin">Admin</option>
+              <option value="super-admin">Super Admin</option>
+            </select>
+          </div>
+
+          <div className="flex gap-3 pt-4">
+            <button
+              type="button"
+              onClick={onClose}
+              className="flex-1 px-4 py-2 border border-gray-300 dark:border-gray-600 text-gray-700 dark:text-gray-300 rounded-lg hover:bg-gray-50 dark:hover:bg-gray-700"
+            >
+              Cancel
+            </button>
+            <button
+              type="submit"
+              disabled={loading}
+              className="flex-1 px-4 py-2 bg-gradient-to-r from-blue-600 to-indigo-600 text-white rounded-lg hover:from-blue-700 hover:to-indigo-700 disabled:opacity-50 disabled:cursor-not-allowed"
+            >
+              {loading ? "Creating..." : "Create User"}
+            </button>
+          </div>
+        </form>
+      </div>
+    </div>
+  );
+}
+
+// Edit User Modal Component
+function EditUserModal({
+  user,
+  onClose,
+  onSuccess,
+}: {
+  user: User;
+  onClose: () => void;
+  onSuccess: () => void;
+}) {
+  const [formData, setFormData] = useState({
+    name: user.name,
+    email: user.email,
+    role: user.role,
+  });
+  const [loading, setLoading] = useState(false);
+  const [error, setError] = useState("");
+
+  const handleSubmit = async (e: React.FormEvent) => {
+    e.preventDefault();
+    setLoading(true);
+    setError("");
+
+    try {
+      await adminApi.updateUser(user.id, formData);
+      onSuccess();
+      onClose();
+    } catch (err) {
+      if (err instanceof ApiError) {
+        setError(err.message || "Failed to update user");
+      } else {
+        setError("An unexpected error occurred");
+      }
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  return (
+    <div className="fixed inset-0 bg-black bg-opacity-50 flex items-center justify-center z-50">
+      <div className="bg-white dark:bg-gray-800 rounded-xl shadow-xl max-w-md w-full mx-4 p-6">
+        <div className="flex justify-between items-center mb-4">
+          <h3 className="text-xl font-semibold text-gray-900 dark:text-white">
+            Edit User
+          </h3>
+          <button
+            onClick={onClose}
+            className="text-gray-400 hover:text-gray-600 dark:hover:text-gray-300"
+          >
+            <svg
+              className="w-6 h-6"
+              fill="none"
+              stroke="currentColor"
+              viewBox="0 0 24 24"
+            >
+              <path
+                strokeLinecap="round"
+                strokeLinejoin="round"
+                strokeWidth={2}
+                d="M6 18L18 6M6 6l12 12"
+              />
+            </svg>
+          </button>
+        </div>
+
+        {error && (
+          <div className="mb-4 bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
+            {error}
+          </div>
+        )}
+
+        <form onSubmit={handleSubmit} className="space-y-4">
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">
+              Name
+            </label>
+            <input
+              type="text"
+              required
+              value={formData.name}
+              onChange={(e) =>
+                setFormData({ ...formData, name: e.target.value })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            />
+          </div>
+
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">
+              Email
+            </label>
+            <input
+              type="email"
+              required
+              value={formData.email}
+              onChange={(e) =>
+                setFormData({ ...formData, email: e.target.value })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            />
+          </div>
+
+          <div>
+            <label className="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">
+              Role
+            </label>
+            <select
+              value={formData.role}
+              onChange={(e) =>
+                setFormData({
+                  ...formData,
+                  role: e.target.value as "user" | "admin" | "super-admin",
+                })
+              }
+              className="w-full px-4 py-2 border border-gray-300 dark:border-gray-600 rounded-lg focus:ring-2 focus:ring-blue-500 focus:border-blue-500 bg-white dark:bg-gray-700 text-gray-900 dark:text-white"
+            >
+              <option value="user">User</option>
+              <option value="admin">Admin</option>
+              <option value="super-admin">Super Admin</option>
+            </select>
+          </div>
+
+          <div className="flex gap-3 pt-4">
+            <button
+              type="button"
+              onClick={onClose}
+              className="flex-1 px-4 py-2 border border-gray-300 dark:border-gray-600 text-gray-700 dark:text-gray-300 rounded-lg hover:bg-gray-50 dark:hover:bg-gray-700"
+            >
+              Cancel
+            </button>
+            <button
+              type="submit"
+              disabled={loading}
+              className="flex-1 px-4 py-2 bg-gradient-to-r from-blue-600 to-indigo-600 text-white rounded-lg hover:from-blue-700 hover:to-indigo-700 disabled:opacity-50 disabled:cursor-not-allowed"
+            >
+              {loading ? "Saving..." : "Save Changes"}
+            </button>
+          </div>
+        </form>
+      </div>
+    </div>
+  );
+}
+
+// Delete User Modal Component
+function DeleteUserModal({
+  user,
+  onClose,
+  onSuccess,
+}: {
+  user: User;
+  onClose: () => void;
+  onSuccess: () => void;
+}) {
+  const [loading, setLoading] = useState(false);
+  const [error, setError] = useState("");
+
+  const handleDelete = async () => {
+    setLoading(true);
+    setError("");
+
+    try {
+      await adminApi.deleteUser(user.id);
+      onSuccess();
+      onClose();
+    } catch (err) {
+      if (err instanceof ApiError) {
+        setError(err.message || "Failed to delete user");
+      } else {
+        setError("An unexpected error occurred");
+      }
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  return (
+    <div className="fixed inset-0 bg-black bg-opacity-50 flex items-center justify-center z-50">
+      <div className="bg-white dark:bg-gray-800 rounded-xl shadow-xl max-w-md w-full mx-4 p-6">
+        <div className="flex justify-between items-center mb-4">
+          <h3 className="text-xl font-semibold text-gray-900 dark:text-white">
+            Delete User
+          </h3>
+          <button
+            onClick={onClose}
+            className="text-gray-400 hover:text-gray-600 dark:hover:text-gray-300"
+          >
+            <svg
+              className="w-6 h-6"
+              fill="none"
+              stroke="currentColor"
+              viewBox="0 0 24 24"
+            >
+              <path
+                strokeLinecap="round"
+                strokeLinejoin="round"
+                strokeWidth={2}
+                d="M6 18L18 6M6 6l12 12"
+              />
+            </svg>
+          </button>
+        </div>
+
+        {error && (
+          <div className="mb-4 bg-red-50 dark:bg-red-900/20 border border-red-200 dark:border-red-800 text-red-700 dark:text-red-400 px-4 py-3 rounded-lg">
+            {error}
+          </div>
+        )}
+
+        <div className="mb-6">
+          <p className="text-gray-700 dark:text-gray-300">
+            Are you sure you want to delete user <strong>{user.name}</strong> (
+            {user.email})?
+          </p>
+          <p className="text-red-600 dark:text-red-400 mt-2">
+            This action cannot be undone.
+          </p>
+        </div>
+
+        <div className="flex gap-3">
+          <button
+            type="button"
+            onClick={onClose}
+            className="flex-1 px-4 py-2 border border-gray-300 dark:border-gray-600 text-gray-700 dark:text-gray-300 rounded-lg hover:bg-gray-50 dark:hover:bg-gray-700"
+          >
+            Cancel
+          </button>
+          <button
+            onClick={handleDelete}
+            disabled={loading}
+            className="flex-1 px-4 py-2 bg-red-600 text-white rounded-lg hover:bg-red-700 disabled:opacity-50 disabled:cursor-not-allowed"
+          >
+            {loading ? "Deleting..." : "Delete User"}
+          </button>
+        </div>
+      </div>
+    </div>
+  );
+}
diff --git a/components/auth/ProtectedRoute.tsx b/components/auth/ProtectedRoute.tsx
index d0118ab..8b584bb 100644
--- a/components/auth/ProtectedRoute.tsx
+++ b/components/auth/ProtectedRoute.tsx
@@ -1,8 +1,8 @@
-'use client';
+"use client";
 
-import { useEffect } from 'react';
-import { useRouter } from 'next/navigation';
-import { useAuth } from '@/contexts/AuthContext';
+import { useEffect } from "react";
+import { useRouter } from "next/navigation";
+import { useAuth } from "@/contexts/AuthContext";
 
 interface ProtectedRouteProps {
   children: React.ReactNode;
@@ -10,9 +10,14 @@ interface ProtectedRouteProps {
 }
 
 // Mock auth mode - bypasses authentication checks
-const USE_MOCK_AUTH = process.env.NEXT_PUBLIC_USE_MOCK_AUTH === 'true' || process.env.NODE_ENV === 'development';
+const USE_MOCK_AUTH =
+  process.env.NEXT_PUBLIC_USE_MOCK_AUTH === "true" ||
+  process.env.NODE_ENV === "development";
 
-export function ProtectedRoute({ children, requireAdmin = false }: ProtectedRouteProps) {
+export function ProtectedRoute({
+  children,
+  requireAdmin = false,
+}: ProtectedRouteProps) {
   const { user, loading, isAuthenticated, isAdmin } = useAuth();
   const router = useRouter();
 
@@ -24,15 +29,22 @@ export function ProtectedRoute({ children, requireAdmin = false }: ProtectedRout
 
     if (!loading) {
       if (!isAuthenticated) {
-        router.push('/login');
+        router.push("/login");
       } else if (requireAdmin && !isAdmin) {
-        router.push('/chat');
+        router.push("/chat");
       }
     }
   }, [loading, isAuthenticated, isAdmin, requireAdmin, router]);
 
-  // In testing mode, always allow access
+  // In testing mode, still wait for auth to initialize
   if (USE_MOCK_AUTH) {
+    if (loading) {
+      return (
+        <div className="flex items-center justify-center min-h-screen">
+          <div className="animate-spin rounded-full h-12 w-12 border-b-2 border-blue-600"></div>
+        </div>
+      );
+    }
     return <>{children}</>;
   }
 
@@ -50,4 +62,3 @@ export function ProtectedRoute({ children, requireAdmin = false }: ProtectedRout
 
   return <>{children}</>;
 }
-
diff --git a/components/layout/Header.tsx b/components/layout/Header.tsx
new file mode 100644
index 0000000..1e83b3a
--- /dev/null
+++ b/components/layout/Header.tsx
@@ -0,0 +1,128 @@
+"use client";
+
+import { useRouter } from "next/navigation";
+import Link from "next/link";
+import { useAuth } from "@/contexts/AuthContext";
+
+export function Header() {
+  const { user, logout, isAdmin } = useAuth();
+  const router = useRouter();
+
+  const handleLogout = async () => {
+    await logout();
+    router.push("/login");
+  };
+
+  if (!user) {
+    return null;
+  }
+
+  return (
+    <header className="bg-white dark:bg-gray-800 border-b border-gray-200 dark:border-gray-700 sticky top-0 z-10">
+      <div className="max-w-7xl mx-auto px-4 sm:px-6 lg:px-8">
+        <div className="flex justify-between items-center h-16">
+          {/* Logo/Brand */}
+          <Link href="/chat" className="flex items-center gap-3">
+            <div className="w-8 h-8 rounded-lg bg-gradient-to-br from-blue-600 to-indigo-600 flex items-center justify-center">
+              <svg
+                className="w-5 h-5 text-white"
+                fill="none"
+                stroke="currentColor"
+                viewBox="0 0 24 24"
+              >
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M8 10h.01M12 10h.01M16 10h.01M9 16H5a2 2 0 01-2-2V6a2 2 0 012-2h14a2 2 0 012 2v8a2 2 0 01-2 2h-5l-5 5v-5z"
+                />
+              </svg>
+            </div>
+            <span className="text-xl font-semibold text-gray-900 dark:text-white">
+              Chatbot
+            </span>
+          </Link>
+
+          {/* User Menu */}
+          <div className="flex items-center gap-4">
+            {/* User Info */}
+            <div className="hidden sm:flex items-center gap-3">
+              <div className="text-right">
+                <div className="text-sm font-medium text-gray-900 dark:text-white">
+                  {user.name}
+                </div>
+                <div className="text-xs text-gray-500 dark:text-gray-400">
+                  {user.role === "super-admin"
+                    ? "Super Admin"
+                    : user.role.charAt(0).toUpperCase() + user.role.slice(1)}
+                </div>
+              </div>
+              <div className="w-10 h-10 rounded-full bg-gradient-to-br from-blue-500 to-indigo-600 flex items-center justify-center text-white font-semibold">
+                {user.name.charAt(0).toUpperCase()}
+              </div>
+            </div>
+
+            {/* Admin Link */}
+            {isAdmin && (
+              <Link
+                href="/admin"
+                className="px-3 py-2 text-sm font-medium text-gray-700 dark:text-gray-300 hover:text-blue-600 dark:hover:text-blue-400 transition-colors"
+              >
+                Admin
+              </Link>
+            )}
+
+            {/* Settings Link */}
+            <Link
+              href="/settings"
+              className="p-2 text-gray-600 dark:text-gray-400 hover:text-gray-900 dark:hover:text-white transition-colors"
+              title="Settings"
+            >
+              <svg
+                className="w-5 h-5"
+                fill="none"
+                stroke="currentColor"
+                viewBox="0 0 24 24"
+              >
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M10.325 4.317c.426-1.756 2.924-1.756 3.35 0a1.724 1.724 0 002.573 1.066c1.543-.94 3.31.826 2.37 2.37a1.724 1.724 0 001.065 2.572c1.756.426 1.756 2.924 0 3.35a1.724 1.724 0 00-1.066 2.573c.94 1.543-.826 3.31-2.37 2.37a1.724 1.724 0 00-2.572 1.065c-.426 1.756-2.924 1.756-3.35 0a1.724 1.724 0 00-2.573-1.066c-1.543.94-3.31-.826-2.37-2.37a1.724 1.724 0 00-1.065-2.572c-1.756-.426-1.756-2.924 0-3.35a1.724 1.724 0 001.066-2.573c-.94-1.543.826-3.31 2.37-2.37.996.608 2.296.07 2.572-1.065z"
+                />
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M15 12a3 3 0 11-6 0 3 3 0 016 0z"
+                />
+              </svg>
+            </Link>
+
+            {/* Logout Button */}
+            <button
+              onClick={handleLogout}
+              className="px-4 py-2 text-sm font-medium text-white bg-gradient-to-r from-red-600 to-red-700 hover:from-red-700 hover:to-red-800 rounded-lg transition-all flex items-center gap-2"
+              title="Logout"
+            >
+              <svg
+                className="w-4 h-4"
+                fill="none"
+                stroke="currentColor"
+                viewBox="0 0 24 24"
+              >
+                <path
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth={2}
+                  d="M17 16l4-4m0 0l-4-4m4 4H7m6 4v1a3 3 0 01-3 3H6a3 3 0 01-3-3V7a3 3 0 013-3h4a3 3 0 013 3v1"
+                />
+              </svg>
+              <span className="hidden sm:inline">Logout</span>
+            </button>
+          </div>
+        </div>
+      </div>
+    </header>
+  );
+}
diff --git a/conda.bat b/conda.bat
new file mode 100644
index 0000000..e69de29
diff --git a/contexts/AuthContext.tsx b/contexts/AuthContext.tsx
index a91e013..99fcfd9 100644
--- a/contexts/AuthContext.tsx
+++ b/contexts/AuthContext.tsx
@@ -1,8 +1,14 @@
-'use client';
-
-import React, { createContext, useContext, useEffect, useState, useCallback } from 'react';
-import { authApi, User, LoginCredentials, RegisterData } from '@/lib/api/auth';
-import { ApiError, apiClient } from '@/lib/api/client';
+"use client";
+
+import React, {
+  createContext,
+  useContext,
+  useEffect,
+  useState,
+  useCallback,
+} from "react";
+import { authApi, User, LoginCredentials, RegisterData } from "@/lib/api/auth";
+import { ApiError, apiClient } from "@/lib/api/client";
 
 interface AuthContextType {
   user: User | null;
@@ -18,23 +24,34 @@ interface AuthContextType {
 const AuthContext = createContext<AuthContextType | undefined>(undefined);
 
 // Mock user for testing - set to true to bypass authentication
-const USE_MOCK_AUTH = process.env.NEXT_PUBLIC_USE_MOCK_AUTH === 'true' || process.env.NODE_ENV === 'development';
+const USE_MOCK_AUTH =
+  process.env.NEXT_PUBLIC_USE_MOCK_AUTH === "true" ||
+  process.env.NODE_ENV === "development";
 
 const MOCK_USER: User = {
-  id: 'test-user-123',
-  email: 'test@example.com',
-  name: 'Test User',
-  role: 'admin', // Set to 'admin' for testing admin features
-  createdAt: new Date().toISOString(),
+  id: "test-user",
+  email: "test@example.com",
+  name: "Test User",
+  role: "admin",
+  createdAt: "2024-01-01T00:00:00Z",
 };
 
+const MOCK_TOKEN = "mock-test-token";
+
 export function AuthProvider({ children }: { children: React.ReactNode }) {
   const [user, setUser] = useState<User | null>(null);
   const [loading, setLoading] = useState(true);
+  const [lastActivity, setLastActivity] = useState<number>(Date.now());
 
   const applyUser = useCallback((nextUser: User | null) => {
     setUser(nextUser);
     apiClient.setUserId(nextUser?.id ?? null);
+    if (USE_MOCK_AUTH) {
+      apiClient.setToken(nextUser ? MOCK_TOKEN : null);
+    }
+    if (nextUser) {
+      setLastActivity(Date.now());
+    }
   }, []);
 
   const refreshUser = useCallback(async () => {
@@ -51,7 +68,7 @@ export function AuthProvider({ children }: { children: React.ReactNode }) {
     } catch (error) {
       applyUser(null);
       if (error instanceof ApiError && error.status !== 401) {
-        console.error('Failed to fetch user:', error);
+        console.error("Failed to fetch user:", error);
       }
     } finally {
       setLoading(false);
@@ -62,6 +79,45 @@ export function AuthProvider({ children }: { children: React.ReactNode }) {
     refreshUser();
   }, [refreshUser]);
 
+  // Session timeout handler
+  useEffect(() => {
+    if (!user || USE_MOCK_AUTH) return;
+
+    const SESSION_TIMEOUT_MS = 60 * 60 * 1000; // 60 minutes
+    const WARNING_TIME_MS = 5 * 60 * 1000; // 5 minutes before timeout
+
+    const checkTimeout = () => {
+      const now = Date.now();
+      const timeSinceActivity = now - lastActivity;
+
+      if (timeSinceActivity >= SESSION_TIMEOUT_MS) {
+        // Session expired
+        logout();
+        if (typeof window !== "undefined") {
+          window.location.href = "/login?reason=timeout";
+        }
+      } else if (timeSinceActivity >= SESSION_TIMEOUT_MS - WARNING_TIME_MS) {
+        // Show warning (could implement a toast notification here)
+        console.warn("Session will expire soon");
+      }
+    };
+
+    // Check every minute
+    const interval = setInterval(checkTimeout, 60 * 1000);
+
+    // Update activity on user interactions
+    const updateActivity = () => setLastActivity(Date.now());
+    const events = ["mousedown", "keydown", "scroll", "touchstart"];
+    events.forEach((event) => window.addEventListener(event, updateActivity));
+
+    return () => {
+      clearInterval(interval);
+      events.forEach((event) =>
+        window.removeEventListener(event, updateActivity)
+      );
+    };
+  }, [user, lastActivity]);
+
   const login = async (credentials: LoginCredentials) => {
     // In testing mode, automatically succeed with mock user
     if (USE_MOCK_AUTH) {
@@ -76,7 +132,7 @@ export function AuthProvider({ children }: { children: React.ReactNode }) {
       if (error instanceof ApiError) {
         throw error;
       }
-      throw new Error('Login failed');
+      throw new Error("Login failed");
     }
   };
 
@@ -94,7 +150,7 @@ export function AuthProvider({ children }: { children: React.ReactNode }) {
       if (error instanceof ApiError) {
         throw error;
       }
-      throw new Error('Registration failed');
+      throw new Error("Registration failed");
     }
   };
 
@@ -108,7 +164,7 @@ export function AuthProvider({ children }: { children: React.ReactNode }) {
     try {
       await authApi.logout();
     } catch (error) {
-      console.error('Logout error:', error);
+      console.error("Logout error:", error);
     } finally {
       applyUser(null);
     }
@@ -118,7 +174,7 @@ export function AuthProvider({ children }: { children: React.ReactNode }) {
     user,
     loading,
     isAuthenticated: !!user,
-    isAdmin: user?.role === 'admin',
+    isAdmin: user?.role === "admin" || user?.role === "super-admin",
     login,
     register,
     logout,
@@ -131,7 +187,7 @@ export function AuthProvider({ children }: { children: React.ReactNode }) {
 export function useAuth() {
   const context = useContext(AuthContext);
   if (context === undefined) {
-    throw new Error('useAuth must be used within an AuthProvider');
+    throw new Error("useAuth must be used within an AuthProvider");
   }
   return context;
 }
diff --git a/deactivate b/deactivate
new file mode 100644
index 0000000..e69de29
diff --git a/lib/api/admin.ts b/lib/api/admin.ts
index 241e754..29c80df 100644
--- a/lib/api/admin.ts
+++ b/lib/api/admin.ts
@@ -2,8 +2,8 @@
  * Admin API endpoints
  */
 
-import { apiClient } from './client';
-import { User } from './auth';
+import { apiClient } from "./client";
+import { User } from "./auth";
 
 export interface AdminStats {
   totalUsers: number;
@@ -20,13 +20,21 @@ export interface SystemSettings {
   rateLimit: number;
 }
 
+export interface ApiKey {
+  id: string;
+  name: string;
+  key: string;
+  createdAt: string;
+  lastUsed: string | null;
+}
+
 export const adminApi = {
   async getStats(): Promise<AdminStats> {
-    return apiClient.get<AdminStats>('/admin/stats');
+    return apiClient.get<AdminStats>("/admin/stats");
   },
 
   async getUsers(): Promise<User[]> {
-    return apiClient.get<User[]>('/admin/users');
+    return apiClient.get<User[]>("/admin/users");
   },
 
   async getUser(userId: string): Promise<User> {
@@ -42,11 +50,42 @@ export const adminApi = {
   },
 
   async getSystemSettings(): Promise<SystemSettings> {
-    return apiClient.get<SystemSettings>('/admin/settings');
+    return apiClient.get<SystemSettings>("/admin/settings");
   },
 
-  async updateSystemSettings(settings: Partial<SystemSettings>): Promise<SystemSettings> {
-    return apiClient.put<SystemSettings>('/admin/settings', settings);
+  async updateSystemSettings(
+    settings: Partial<SystemSettings>
+  ): Promise<SystemSettings> {
+    return apiClient.put<SystemSettings>("/admin/settings", settings);
+  },
+
+  async getAvailableModels(): Promise<string[]> {
+    const { models } = await apiClient.get<{ models: string[] }>(
+      "/admin/models"
+    );
+    return models;
+  },
+
+  async getApiKeys(): Promise<ApiKey[]> {
+    return apiClient.get<ApiKey[]>("/admin/api-keys");
   },
-};
 
+  async createApiKey(name: string): Promise<ApiKey & { fullKey: string }> {
+    return apiClient.post<ApiKey & { fullKey: string }>("/admin/api-keys", {
+      name,
+    });
+  },
+
+  async revokeApiKey(keyId: string): Promise<void> {
+    return apiClient.delete(`/admin/api-keys/${keyId}`);
+  },
+
+  async createUser(data: {
+    name: string;
+    email: string;
+    role: string;
+    password: string;
+  }): Promise<User> {
+    return apiClient.post<User>("/admin/users", data);
+  },
+};
diff --git a/lib/api/auth.ts b/lib/api/auth.ts
index 211f651..48a5ef9 100644
--- a/lib/api/auth.ts
+++ b/lib/api/auth.ts
@@ -2,7 +2,7 @@
  * Authentication API endpoints
  */
 
-import { apiClient } from './client';
+import { apiClient } from "./client";
 
 export interface LoginCredentials {
   email: string;
@@ -24,36 +24,41 @@ export interface User {
   id: string;
   email: string;
   name: string;
-  role: 'user' | 'admin';
+  role: "user" | "admin" | "super-admin";
   createdAt: string;
 }
 
 export const authApi = {
   async login(credentials: LoginCredentials): Promise<AuthResponse> {
-    const response = await apiClient.post<AuthResponse>('/auth/login', credentials);
+    const response = await apiClient.post<AuthResponse>(
+      "/auth/login",
+      credentials
+    );
     apiClient.setToken(response.token);
+    apiClient.setUserId(response.user.id);
     return response;
   },
 
   async register(data: RegisterData): Promise<AuthResponse> {
-    const response = await apiClient.post<AuthResponse>('/auth/register', data);
+    const response = await apiClient.post<AuthResponse>("/auth/register", data);
     apiClient.setToken(response.token);
+    apiClient.setUserId(response.user.id);
     return response;
   },
 
   async logout(): Promise<void> {
-    await apiClient.post('/auth/logout');
+    await apiClient.post("/auth/logout");
     apiClient.setToken(null);
+    apiClient.setUserId(null);
   },
 
   async getCurrentUser(): Promise<User> {
-    return apiClient.get<User>('/auth/me');
+    return apiClient.get<User>("/auth/me");
   },
 
   async refreshToken(): Promise<AuthResponse> {
-    const response = await apiClient.post<AuthResponse>('/auth/refresh');
+    const response = await apiClient.post<AuthResponse>("/auth/refresh");
     apiClient.setToken(response.token);
     return response;
   },
 };
-
diff --git a/package-lock.json b/package-lock.json
index 2c8c271..4c530d4 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -68,6 +68,7 @@
       "integrity": "sha512-e7jT4DxYvIDLk1ZHmU/m/mB19rex9sv0c2ftBtjSBv+kVM/902eh0fINUzD7UwLLNR+jU585GxUJ8/EBfAM5fw==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "@babel/code-frame": "^7.27.1",
         "@babel/generator": "^7.28.5",
@@ -1562,6 +1563,7 @@
       "integrity": "sha512-6mDvHUFSjyT2B2yeNx2nUgMxh9LtOWvkhIU3uePn2I2oyNymUAX1NIsdgviM4CH+JSrp2D2hsMvJOkxY+0wNRA==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "csstype": "^3.0.2"
       }
@@ -1622,6 +1624,7 @@
       "integrity": "sha512-6m1I5RmHBGTnUGS113G04DMu3CpSdxCAU/UvtjNWL4Nuf3MW9tQhiJqRlHzChIkhy6kZSAQmc+I1bcGjE3yNKg==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "@typescript-eslint/scope-manager": "8.46.3",
         "@typescript-eslint/types": "8.46.3",
@@ -2152,6 +2155,7 @@
       "integrity": "sha512-NZyJarBfL7nWwIq+FDL6Zp/yHEhePMNnnJ0y3qfieCrmNvYct8uvtiV41UvlSe6apAfk0fY1FbWx+NwfmpvtTg==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "bin": {
         "acorn": "bin/acorn"
       },
@@ -2493,6 +2497,7 @@
         }
       ],
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "baseline-browser-mapping": "^2.8.19",
         "caniuse-lite": "^1.0.30001751",
@@ -3070,6 +3075,7 @@
       "integrity": "sha512-BhHmn2yNOFA9H9JmmIVKJmd288g9hrVRDkdoIgRCRuSySRUHH7r/DI6aAXW9T1WwUuY3DFgrcaqB+deURBLR5g==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "@eslint-community/eslint-utils": "^4.8.0",
         "@eslint-community/regexpp": "^4.12.1",
@@ -3255,6 +3261,7 @@
       "integrity": "sha512-whOE1HFo/qJDyX4SnXzP4N6zOWn79WhnCUY/iDR0mPfQZO8wcYE4JClzI2oZrhBnnMUCBCHZhO6VQyoBU95mZA==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "@rtsao/scc": "^1.1.0",
         "array-includes": "^3.1.9",
@@ -5433,6 +5440,7 @@
       "resolved": "https://registry.npmjs.org/react/-/react-19.2.0.tgz",
       "integrity": "sha512-tmbWg6W31tQLeB5cdIBOicJDJRR2KzXsV7uSK9iNfLWQ5bIZfxuPEHp7M8wiHyHnn0DD1i7w3Zmin0FtkrwoCQ==",
       "license": "MIT",
+      "peer": true,
       "engines": {
         "node": ">=0.10.0"
       }
@@ -5442,6 +5450,7 @@
       "resolved": "https://registry.npmjs.org/react-dom/-/react-dom-19.2.0.tgz",
       "integrity": "sha512-UlbRu4cAiGaIewkPyiRGJk0imDN2T3JjieT6spoL2UeSf5od4n5LB/mQ4ejmxhCFT1tYe8IvaFulzynWovsEFQ==",
       "license": "MIT",
+      "peer": true,
       "dependencies": {
         "scheduler": "^0.27.0"
       },
@@ -6130,6 +6139,7 @@
       "integrity": "sha512-5gTmgEY/sqK6gFXLIsQNH19lWb4ebPDLA4SdLP7dsWkIXHWlG66oPuVvXSGFPppYZz8ZDZq0dYYrbHfBCVUb1Q==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "engines": {
         "node": ">=12"
       },
@@ -6292,6 +6302,7 @@
       "integrity": "sha512-jl1vZzPDinLr9eUt3J/t7V6FgNEw9QjvBPdysz9KfQDD41fQrC2Y4vKQdiaUpFT4bXlb1RHhLpp8wtm6M5TgSw==",
       "dev": true,
       "license": "Apache-2.0",
+      "peer": true,
       "bin": {
         "tsc": "bin/tsc",
         "tsserver": "bin/tsserver"
@@ -6567,6 +6578,7 @@
       "integrity": "sha512-JInaHOamG8pt5+Ey8kGmdcAcg3OL9reK8ltczgHTAwNhMys/6ThXHityHxVV2p3fkw/c+MAvBHFVYHFZDmjMCQ==",
       "dev": true,
       "license": "MIT",
+      "peer": true,
       "funding": {
         "url": "https://github.com/sponsors/colinhacks"
       }