From f97a75404a5df592e5e82be6203cb64258e50be7 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Mon, 4 Dec 2023 22:41:17 +0500
Subject: [PATCH 01/36] google auth/login WIP

---
 backend/.dockerignore                  |  1 +
 backend/requirements.txt               |  1 +
 backend/src/application/app_core.py    |  4 +-
 backend/src/application/config.py      |  1 +
 backend/src/application/oauth.py       | 89 ++++++++++++++++++++++++++
 backend/src/database/wrapped_models.py |  7 +-
 6 files changed, 100 insertions(+), 3 deletions(-)
 create mode 100644 backend/src/application/oauth.py

diff --git a/backend/.dockerignore b/backend/.dockerignore
index d7261565..c4031c83 100644
--- a/backend/.dockerignore
+++ b/backend/.dockerignore
@@ -7,3 +7,4 @@ __pycache__
 data
 venv
 logs
+client_secret_apps.json
\ No newline at end of file
diff --git a/backend/requirements.txt b/backend/requirements.txt
index 56b3e036..75c6955e 100644
--- a/backend/requirements.txt
+++ b/backend/requirements.txt
@@ -20,3 +20,4 @@ pyjwt == 2.6.0
 gspread == 5.7.2
 sqlalchemy-utils == 0.39.0
 werkzeug == 2.3.7
+flask_oauthlib==0.9.6
\ No newline at end of file
diff --git a/backend/src/application/app_core.py b/backend/src/application/app_core.py
index 63686284..747604cf 100644
--- a/backend/src/application/app_core.py
+++ b/backend/src/application/app_core.py
@@ -4,7 +4,7 @@
 
 import flask_migrate
 import jwt
-from flask import Flask, current_app, g, jsonify, request
+from flask import Flask, current_app, g, request, jsonify
 from flask_cors import CORS
 
 # Добавление автоматически сгенерированных моделей.
@@ -22,6 +22,7 @@
 
 from . import config, exceptions
 from .urls import api_blueprint, public_blueprint
+from .oauth import oauth_blueprint, oauth
 
 
 class FlaskLogged(Flask):
@@ -92,6 +93,7 @@ def before_request():
     with app.app_context():
         app.register_blueprint(api_blueprint)
         app.register_blueprint(public_blueprint)
+        app.register_blueprint(oauth_blueprint, url_prefix='/oauth', oauth=oauth)
 
     try:
         with app.config["AIEYE_CREDENTIALS_PATH"].open() as file:
diff --git a/backend/src/application/config.py b/backend/src/application/config.py
index bb2320b8..0b8ad406 100644
--- a/backend/src/application/config.py
+++ b/backend/src/application/config.py
@@ -21,6 +21,7 @@
 ROOT_PATH = Path(__file__).parent.parent.parent.resolve()
 
 AIEYE_CREDENTIALS_PATH = (ROOT_PATH / "aieye_credentials.json").resolve()
+GOOGLE_CLIENT_SECRET_PATH = (ROOT_PATH / "client_secret_apps.json").resolve()
 
 
 def init_config():
diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
new file mode 100644
index 00000000..0ebbe0c6
--- /dev/null
+++ b/backend/src/application/oauth.py
@@ -0,0 +1,89 @@
+import json
+import secrets
+import string
+
+from flask import Blueprint, redirect, url_for, session, jsonify
+from flask_oauthlib.client import OAuth
+
+from backend.src.application.config import GOOGLE_CLIENT_SECRET_PATH
+from backend.src.database.db import db as core_db
+from backend.src.database.wrapped_models import User, Managers
+
+
+oauth_blueprint = Blueprint('oauth', import_name=__name__, url_prefix="/oauth/",)
+
+with open(GOOGLE_CLIENT_SECRET_PATH) as f:
+    config_data = json.load(f)
+
+oauth = OAuth()
+
+google = oauth.remote_app(
+    'google',
+    consumer_key=config_data['web']['client_id'],
+    consumer_secret=config_data['web']['client_secret'],
+    request_token_params={'scope': 'email'},
+    base_url='https://www.googleapis.com/oauth2/v1/',
+    request_token_url=None,
+    access_token_method='POST',
+    access_token_url='https://accounts.google.com/o/oauth2/token',
+    authorize_url='https://accounts.google.com/o/oauth2/auth',
+)
+
+
+@oauth_blueprint.route('/login')
+def login():
+    return google.authorize(callback=url_for('oauth.authorized', _external=True))
+
+
+@oauth_blueprint.route('/logout')
+def logout():
+    session.pop('google_token', None)
+    return redirect(url_for('index'))
+
+
+@oauth_blueprint.route('/login/authorized')
+def authorized():
+    response = google.authorized_response()
+    if response is None or response.get('access_token') is None:
+        return jsonify({'error': 'Access denied'}), 401
+
+    #TODO:
+    session['google_token'] = (response['access_token'], '')
+    user_info = google.get('userinfo')
+
+    google_user_id = user_info.data['id']
+    email = user_info.data['email']
+    name = user_info.data.get('name', email.split('@')[0])
+
+    existing_user = User.query.filter_by(email=email).first()
+    if existing_user:
+        return jsonify({'message': f'Logged in as: {name} ({email})'})
+    else:
+        password = generate_password()
+        user = User.create_user(username=name, password=password)
+        core_db.session.flush()
+
+        #TODO:
+        manager = Managers(code=google_user_id, name=f"{name} manager", user=user)
+        #core_db.session.add(manager)
+        core_db.session.commit()
+
+        #core_db.session.flush()
+
+        #user.manager = manager
+        user.email = email
+        #core_db.session.add(user)
+        #core_db.session.add(user)
+        core_db.session.commit()
+
+        return jsonify({'message': f'New user created: {name} ({email}) with password: {password}'})
+
+
+@google.tokengetter
+def get_google_oauth_token():
+    return session.get('google_token')
+
+
+def generate_password(length=12):
+    characters = string.ascii_letters + string.digits + string.punctuation
+    return ''.join(secrets.choice(characters) for _ in range(length))
diff --git a/backend/src/database/wrapped_models.py b/backend/src/database/wrapped_models.py
index 157a6b75..1a92f0b6 100644
--- a/backend/src/database/wrapped_models.py
+++ b/backend/src/database/wrapped_models.py
@@ -5,8 +5,7 @@
 import jwt
 from flask import url_for
 from passlib.context import CryptContext
-from sqlalchemy import func, true
-
+from sqlalchemy import func
 from src.application import config, exceptions
 from src.database import generated_models
 from src.database.db import db
@@ -98,3 +97,7 @@ def photo_url(self) -> str:
         if self.photo:
             return url_for("public_blueprint.freelancer_photo", freelancer_id=self.id)
         return None
+
+
+class Managers(generated_models.Manager):
+    pass
\ No newline at end of file

From 2f97169dd0d02141a038218454d7549c5addede5 Mon Sep 17 00:00:00 2001
From: Khvatov Dmitry <dimax4@gmail.com>
Date: Tue, 5 Dec 2023 00:45:46 +0100
Subject: [PATCH 02/36] Fix user creation

---
 backend/.gitignore                     |  1 +
 backend/src/application/oauth.py       | 29 ++++++++++++--------------
 backend/src/database/wrapped_models.py |  2 +-
 docker-compose.dev.yml                 |  1 +
 4 files changed, 16 insertions(+), 17 deletions(-)

diff --git a/backend/.gitignore b/backend/.gitignore
index cf08a16d..9f7a86fe 100644
--- a/backend/.gitignore
+++ b/backend/.gitignore
@@ -2,3 +2,4 @@ logs/
 data/
 *.bak
 aieye_credentials.json
+client_secret_apps.json
diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index 0ebbe0c6..37f8e463 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -5,12 +5,11 @@
 from flask import Blueprint, redirect, url_for, session, jsonify
 from flask_oauthlib.client import OAuth
 
-from backend.src.application.config import GOOGLE_CLIENT_SECRET_PATH
-from backend.src.database.db import db as core_db
-from backend.src.database.wrapped_models import User, Managers
+from src.application.config import GOOGLE_CLIENT_SECRET_PATH
+from src.database.db import db as core_db
+from src.database.wrapped_models import User, Managers
 
-
-oauth_blueprint = Blueprint('oauth', import_name=__name__, url_prefix="/oauth/",)
+oauth_blueprint = Blueprint('oauth', import_name=__name__, url_prefix="/oauth/", )
 
 with open(GOOGLE_CLIENT_SECRET_PATH) as f:
     config_data = json.load(f)
@@ -41,13 +40,14 @@ def logout():
     return redirect(url_for('index'))
 
 
+## go to http://127.0.0.1:5000/oauth/login
 @oauth_blueprint.route('/login/authorized')
 def authorized():
     response = google.authorized_response()
     if response is None or response.get('access_token') is None:
         return jsonify({'error': 'Access denied'}), 401
 
-    #TODO:
+    # TODO:
     session['google_token'] = (response['access_token'], '')
     user_info = google.get('userinfo')
 
@@ -60,20 +60,17 @@ def authorized():
         return jsonify({'message': f'Logged in as: {name} ({email})'})
     else:
         password = generate_password()
-        user = User.create_user(username=name, password=password)
-        core_db.session.flush()
 
-        #TODO:
-        manager = Managers(code=google_user_id, name=f"{name} manager", user=user)
-        #core_db.session.add(manager)
-        core_db.session.commit()
+        user = User.create_user(username=name, password=password)
 
-        #core_db.session.flush()
+        manager = Managers(code=google_user_id, name=f"{name} manager")
+        core_db.session.add(manager)
+        core_db.session.flush()  # Flush here if necessary
 
-        #user.manager = manager
+        # Associate manager with user
+        user.manager_id = manager.id
         user.email = email
-        #core_db.session.add(user)
-        #core_db.session.add(user)
+        core_db.session.add(user)
         core_db.session.commit()
 
         return jsonify({'message': f'New user created: {name} ({email}) with password: {password}'})
diff --git a/backend/src/database/wrapped_models.py b/backend/src/database/wrapped_models.py
index 1a92f0b6..7dbfdf1e 100644
--- a/backend/src/database/wrapped_models.py
+++ b/backend/src/database/wrapped_models.py
@@ -100,4 +100,4 @@ def photo_url(self) -> str:
 
 
 class Managers(generated_models.Manager):
-    pass
\ No newline at end of file
+    pass
diff --git a/docker-compose.dev.yml b/docker-compose.dev.yml
index e4c483e8..7ecbcb1e 100644
--- a/docker-compose.dev.yml
+++ b/docker-compose.dev.yml
@@ -20,6 +20,7 @@ services:
         REQUIREMENTS_FILE: requirements.dev.txt
     volumes:
       - ./logs:/app/backend/logs
+      - ./backend:/app/backend
       - ./backend/src:/app/backend/src
       - ./backend/tests:/app/backend/tests
     ports:

From a8e61a60bcf29c3d92ad30350de63ddd05454536 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Tue, 5 Dec 2023 15:04:57 +0500
Subject: [PATCH 03/36] google auth/login WIP, update

---
 backend/src/application/app_core.py | 10 +++++-----
 backend/src/application/oauth.py    | 19 +++++++++++++++----
 2 files changed, 20 insertions(+), 9 deletions(-)

diff --git a/backend/src/application/app_core.py b/backend/src/application/app_core.py
index 747604cf..bc7509d6 100644
--- a/backend/src/application/app_core.py
+++ b/backend/src/application/app_core.py
@@ -22,7 +22,7 @@
 
 from . import config, exceptions
 from .urls import api_blueprint, public_blueprint
-from .oauth import oauth_blueprint, oauth
+from .oauth import oauth_blueprint
 
 
 class FlaskLogged(Flask):
@@ -51,11 +51,11 @@ def _store_authorized_user_in_context():
     if not auth_header:
         return
 
-    splitted = [item.strip() for item in auth_header.split(" ")]
-    if not splitted or splitted[0].upper() not in ["BEARER", "TOKEN", "JWT"]:
+    split = [item.strip() for item in auth_header.split(" ")]
+    if not split or split[0].upper() not in ["BEARER", "TOKEN", "JWT"]:
         return
 
-    token = splitted[-1]
+    token = split[-1]
     if not token:
         return
 
@@ -93,7 +93,7 @@ def before_request():
     with app.app_context():
         app.register_blueprint(api_blueprint)
         app.register_blueprint(public_blueprint)
-        app.register_blueprint(oauth_blueprint, url_prefix='/oauth', oauth=oauth)
+        app.register_blueprint(oauth_blueprint, url_prefix='/oauth')
 
     try:
         with app.config["AIEYE_CREDENTIALS_PATH"].open() as file:
diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index 37f8e463..9c593b45 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -4,11 +4,13 @@
 
 from flask import Blueprint, redirect, url_for, session, jsonify
 from flask_oauthlib.client import OAuth
-
 from src.application.config import GOOGLE_CLIENT_SECRET_PATH
 from src.database.db import db as core_db
 from src.database.wrapped_models import User, Managers
 
+from src.application.stub_views import anonymous_user_required, authorized_user_required
+from src.database import wrapped_schemas
+
 oauth_blueprint = Blueprint('oauth', import_name=__name__, url_prefix="/oauth/", )
 
 with open(GOOGLE_CLIENT_SECRET_PATH) as f:
@@ -17,7 +19,7 @@
 oauth = OAuth()
 
 google = oauth.remote_app(
-    'google',
+    name='google',
     consumer_key=config_data['web']['client_id'],
     consumer_secret=config_data['web']['client_secret'],
     request_token_params={'scope': 'email'},
@@ -29,11 +31,13 @@
 )
 
 
+@anonymous_user_required
 @oauth_blueprint.route('/login')
 def login():
     return google.authorize(callback=url_for('oauth.authorized', _external=True))
 
 
+@authorized_user_required
 @oauth_blueprint.route('/logout')
 def logout():
     session.pop('google_token', None)
@@ -41,6 +45,7 @@ def logout():
 
 
 ## go to http://127.0.0.1:5000/oauth/login
+@anonymous_user_required
 @oauth_blueprint.route('/login/authorized')
 def authorized():
     response = google.authorized_response()
@@ -56,8 +61,10 @@ def authorized():
     name = user_info.data.get('name', email.split('@')[0])
 
     existing_user = User.query.filter_by(email=email).first()
+
     if existing_user:
-        return jsonify({'message': f'Logged in as: {name} ({email})'})
+        if not existing_user.manager_id:
+            return jsonify({'error': 'Access denied. This user is not a Manager.'}), 401
     else:
         password = generate_password()
 
@@ -73,7 +80,11 @@ def authorized():
         core_db.session.add(user)
         core_db.session.commit()
 
-        return jsonify({'message': f'New user created: {name} ({email}) with password: {password}'})
+        existing_user = user
+
+    token = existing_user.encode_auth_token()
+    current_user = wrapped_schemas.UserSchema().dump(existing_user)
+    return jsonify({"token": token, "current_user": current_user})
 
 
 @google.tokengetter

From aa79c5ebfe1a8cce3960c98dc8d6744cf2001796 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Tue, 5 Dec 2023 18:51:37 +0500
Subject: [PATCH 04/36] google auth/login WIP, update

---
 backend/src/application/oauth.py | 31 +++++++++++++++----------------
 backend/src/utils.py             |  7 +++++++
 2 files changed, 22 insertions(+), 16 deletions(-)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index 9c593b45..2517a36d 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -1,15 +1,13 @@
 import json
-import secrets
-import string
 
-from flask import Blueprint, redirect, url_for, session, jsonify
-from flask_oauthlib.client import OAuth
+from flask import Blueprint, redirect, url_for, session, jsonify, g, current_app
+from flask_oauthlib.client import OAuth, OAuthException
 from src.application.config import GOOGLE_CLIENT_SECRET_PATH
-from src.database.db import db as core_db
-from src.database.wrapped_models import User, Managers
-
 from src.application.stub_views import anonymous_user_required, authorized_user_required
 from src.database import wrapped_schemas
+from src.database.db import db as core_db
+from src.database.wrapped_models import User, Managers
+from src.utils import generate_password
 
 oauth_blueprint = Blueprint('oauth', import_name=__name__, url_prefix="/oauth/", )
 
@@ -40,7 +38,8 @@ def login():
 @authorized_user_required
 @oauth_blueprint.route('/logout')
 def logout():
-    session.pop('google_token', None)
+    g.token_is_deprecated = True
+    # session.pop('google_token', None)
     return redirect(url_for('index'))
 
 
@@ -52,9 +51,10 @@ def authorized():
     if response is None or response.get('access_token') is None:
         return jsonify({'error': 'Access denied'}), 401
 
-    # TODO:
-    session['google_token'] = (response['access_token'], '')
-    user_info = google.get('userinfo')
+    try:
+        user_info = google.get('userinfo')
+    except OAuthException as exc:
+        return jsonify({'error': str(exc)}), 401
 
     google_user_id = user_info.data['id']
     email = user_info.data['email']
@@ -63,11 +63,14 @@ def authorized():
     existing_user = User.query.filter_by(email=email).first()
 
     if existing_user:
+        current_app.logger.debug(f"Specified user with email {email} found")
         if not existing_user.manager_id:
+            current_app.logger.debug(f"Specified user with email {email} is not a manager")
             return jsonify({'error': 'Access denied. This user is not a Manager.'}), 401
     else:
         password = generate_password()
 
+        current_app.logger.debug(f"Creation of a new user with email {email} started")
         user = User.create_user(username=name, password=password)
 
         manager = Managers(code=google_user_id, name=f"{name} manager")
@@ -79,6 +82,7 @@ def authorized():
         user.email = email
         core_db.session.add(user)
         core_db.session.commit()
+        current_app.logger.debug(f"Creation of a new user with email {email} completed")
 
         existing_user = user
 
@@ -90,8 +94,3 @@ def authorized():
 @google.tokengetter
 def get_google_oauth_token():
     return session.get('google_token')
-
-
-def generate_password(length=12):
-    characters = string.ascii_letters + string.digits + string.punctuation
-    return ''.join(secrets.choice(characters) for _ in range(length))
diff --git a/backend/src/utils.py b/backend/src/utils.py
index b9f37599..94fab91f 100644
--- a/backend/src/utils.py
+++ b/backend/src/utils.py
@@ -1,3 +1,5 @@
+import secrets
+import string
 from enum import Enum
 from typing import Optional, Type, TypeVar
 
@@ -28,3 +30,8 @@ def get_full_user_name(obj) -> Optional[str]:
 
     # Use username as last-resort fallback when actual data not available
     return result or getattr(obj, "username", None) or None
+
+
+def generate_password(length=12):
+    characters = string.ascii_letters + string.digits + string.punctuation
+    return ''.join(secrets.choice(characters) for _ in range(length))
\ No newline at end of file

From 9769f0463e4a8d585de35e396522518f458e40e9 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Tue, 5 Dec 2023 19:05:06 +0500
Subject: [PATCH 05/36] google auth/login WIP, update

---
 backend/src/application/oauth.py | 25 ++++++++++---------------
 1 file changed, 10 insertions(+), 15 deletions(-)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index 2517a36d..ebd41d4a 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -1,19 +1,22 @@
 import json
 
-from flask import Blueprint, redirect, url_for, session, jsonify, g, current_app
+from flask import Blueprint, url_for, session, jsonify, current_app
 from flask_oauthlib.client import OAuth, OAuthException
 from src.application.config import GOOGLE_CLIENT_SECRET_PATH
-from src.application.stub_views import anonymous_user_required, authorized_user_required
+from src.application.stub_views import anonymous_user_required
 from src.database import wrapped_schemas
 from src.database.db import db as core_db
 from src.database.wrapped_models import User, Managers
 from src.utils import generate_password
 
-oauth_blueprint = Blueprint('oauth', import_name=__name__, url_prefix="/oauth/", )
 
-with open(GOOGLE_CLIENT_SECRET_PATH) as f:
-    config_data = json.load(f)
+def load_google_config():
+    with open(GOOGLE_CLIENT_SECRET_PATH) as f:
+        return json.load(f)
+
 
+config_data = load_google_config()
+oauth_blueprint = Blueprint('oauth', import_name=__name__, url_prefix="/oauth/", )
 oauth = OAuth()
 
 google = oauth.remote_app(
@@ -35,15 +38,7 @@ def login():
     return google.authorize(callback=url_for('oauth.authorized', _external=True))
 
 
-@authorized_user_required
-@oauth_blueprint.route('/logout')
-def logout():
-    g.token_is_deprecated = True
-    # session.pop('google_token', None)
-    return redirect(url_for('index'))
-
-
-## go to http://127.0.0.1:5000/oauth/login
+# go to http://127.0.0.1:5000/oauth/login
 @anonymous_user_required
 @oauth_blueprint.route('/login/authorized')
 def authorized():
@@ -54,7 +49,7 @@ def authorized():
     try:
         user_info = google.get('userinfo')
     except OAuthException as exc:
-        return jsonify({'error': str(exc)}), 401
+        return jsonify({'error': f'OAuth Exception: {str(exc)}'}), 401
 
     google_user_id = user_info.data['id']
     email = user_info.data['email']

From ca55410d513e12b2822ac611db26a97b2a24d022 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Wed, 6 Dec 2023 10:26:10 +0500
Subject: [PATCH 06/36] google auth/login WIP, logging, refactoring

---
 backend/src/application/oauth.py | 16 ++++++++++++----
 1 file changed, 12 insertions(+), 4 deletions(-)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index ebd41d4a..e4c00a6a 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -2,6 +2,7 @@
 
 from flask import Blueprint, url_for, session, jsonify, current_app
 from flask_oauthlib.client import OAuth, OAuthException
+from http import HTTPStatus
 from src.application.config import GOOGLE_CLIENT_SECRET_PATH
 from src.application.stub_views import anonymous_user_required
 from src.database import wrapped_schemas
@@ -43,13 +44,20 @@ def login():
 @oauth_blueprint.route('/login/authorized')
 def authorized():
     response = google.authorized_response()
-    if response is None or response.get('access_token') is None:
-        return jsonify({'error': 'Access denied'}), 401
+
+    if response is None:
+        current_app.logger.error(f"google.authorized_response() is None")
+        return jsonify({'error': 'Access denied'}), HTTPStatus.UNAUTHORIZED
+
+    if response.get('access_token') is None:
+        current_app.logger.error(f"Unable to retrieve access_token")
+        return jsonify({'error': 'Access denied'}), HTTPStatus.UNAUTHORIZED
 
     try:
         user_info = google.get('userinfo')
     except OAuthException as exc:
-        return jsonify({'error': f'OAuth Exception: {str(exc)}'}), 401
+        current_app.logger.error(f"Unable to retrieve userinfo. Details: {exc}")
+        return jsonify({'error': f'OAuth Exception: {str(exc)}'}), HTTPStatus.UNAUTHORIZED
 
     google_user_id = user_info.data['id']
     email = user_info.data['email']
@@ -61,7 +69,7 @@ def authorized():
         current_app.logger.debug(f"Specified user with email {email} found")
         if not existing_user.manager_id:
             current_app.logger.debug(f"Specified user with email {email} is not a manager")
-            return jsonify({'error': 'Access denied. This user is not a Manager.'}), 401
+            return jsonify({'error': 'Access denied. This user is not a Manager.'}), HTTPStatus.UNAUTHORIZED
     else:
         password = generate_password()
 

From 0ec555e3a3fee59d2abc35ea40639bc49df8b611 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Wed, 6 Dec 2023 13:39:30 +0500
Subject: [PATCH 07/36] add typing

---
 backend/src/utils.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/backend/src/utils.py b/backend/src/utils.py
index 94fab91f..d4d39c2a 100644
--- a/backend/src/utils.py
+++ b/backend/src/utils.py
@@ -32,6 +32,6 @@ def get_full_user_name(obj) -> Optional[str]:
     return result or getattr(obj, "username", None) or None
 
 
-def generate_password(length=12):
+def generate_password(length=12) -> str:
     characters = string.ascii_letters + string.digits + string.punctuation
-    return ''.join(secrets.choice(characters) for _ in range(length))
\ No newline at end of file
+    return ''.join(secrets.choice(characters) for _ in range(length))

From 21241fb57a67cf2974c7186e398c157d0cad75b8 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Wed, 6 Dec 2023 14:15:11 +0500
Subject: [PATCH 08/36] "google token not found" bugfix

---
 backend/src/application/oauth.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index e4c00a6a..333db9a6 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -53,6 +53,9 @@ def authorized():
         current_app.logger.error(f"Unable to retrieve access_token")
         return jsonify({'error': 'Access denied'}), HTTPStatus.UNAUTHORIZED
 
+    # preserve the Google Oauth access token in the session
+    session['google_token'] = (response['access_token'], 'Google Access Token')
+
     try:
         user_info = google.get('userinfo')
     except OAuthException as exc:

From 27d6bd14b901ede7238d51628f112bde87116666 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Thu, 7 Dec 2023 13:49:42 +0500
Subject: [PATCH 09/36] update comment

---
 backend/src/application/oauth.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index 333db9a6..fdbe837c 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -81,7 +81,9 @@ def authorized():
 
         manager = Managers(code=google_user_id, name=f"{name} manager")
         core_db.session.add(manager)
-        core_db.session.flush()  # Flush here if necessary
+        # flushing the session ensures that the primary key of the manager is available for use in
+        # the user.manager_id field
+        core_db.session.flush()
 
         # Associate manager with user
         user.manager_id = manager.id

From 307be0c4e95cacc9ea1979f3039cc4e856737c48 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Thu, 7 Dec 2023 14:26:44 +0500
Subject: [PATCH 10/36] fix broken test

---
 backend/tests/core/test_core.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/backend/tests/core/test_core.py b/backend/tests/core/test_core.py
index 42da0e6c..f02d4ead 100644
--- a/backend/tests/core/test_core.py
+++ b/backend/tests/core/test_core.py
@@ -22,7 +22,7 @@ def test_token_expired_message(self, client, ordinary_user):
         token = jwt.encode(payload, config.SECRET_KEY, algorithm=config.JWT_ALGORITHM)
         time.sleep(3)
         # uri не имеет значения, любое.
-        response = utils.auth_call(client.get, "/api/apps/", token)
+        response = utils.auth_call(client.get, "/api/freelancers/", token)
         assert response.status_code == HTTPStatus.UNAUTHORIZED
 
     @pytest.mark.local

From 6ef6f2c0b7271517972bd4f4e8591e3da04d94b6 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Thu, 7 Dec 2023 14:31:26 +0500
Subject: [PATCH 11/36] add kwargs to User.create_user class method for passing
 additional fields

---
 backend/src/application/oauth.py       | 3 +--
 backend/src/database/wrapped_models.py | 3 ++-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index fdbe837c..efb0f49f 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -77,7 +77,7 @@ def authorized():
         password = generate_password()
 
         current_app.logger.debug(f"Creation of a new user with email {email} started")
-        user = User.create_user(username=name, password=password)
+        user = User.create_user(username=name, password=password, email=email)
 
         manager = Managers(code=google_user_id, name=f"{name} manager")
         core_db.session.add(manager)
@@ -87,7 +87,6 @@ def authorized():
 
         # Associate manager with user
         user.manager_id = manager.id
-        user.email = email
         core_db.session.add(user)
         core_db.session.commit()
         current_app.logger.debug(f"Creation of a new user with email {email} completed")
diff --git a/backend/src/database/wrapped_models.py b/backend/src/database/wrapped_models.py
index 7dbfdf1e..37daf292 100644
--- a/backend/src/database/wrapped_models.py
+++ b/backend/src/database/wrapped_models.py
@@ -31,7 +31,7 @@ def get_password_context(cls):
         return cls._pwcontext
 
     @classmethod
-    def create_user(cls, username: str, password: str, is_admin: bool = False):
+    def create_user(cls, username: str, password: str, is_admin: bool = False, **kwargs):
         # Проверяем, что нет пользователя с таким же username
         existing = User.query.filter(
             func.lower(User.username) == func.lower(username)
@@ -45,6 +45,7 @@ def create_user(cls, username: str, password: str, is_admin: bool = False):
             username=username,
             password=cls.encode_password(password),
             is_admin=is_admin,
+            **kwargs,
         )
         db.session.add(user)
         db.session.commit()

From 60d3fed13bcbb563432e58ba0f8adee1350ed9f8 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Fri, 15 Dec 2023 13:45:27 +0500
Subject: [PATCH 12/36] change incorrect webpackChunkName

---
 client/src/router/index.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/client/src/router/index.js b/client/src/router/index.js
index 90ac0f3c..4c307137 100644
--- a/client/src/router/index.js
+++ b/client/src/router/index.js
@@ -14,7 +14,7 @@ const page_proposals = {
     path: '/proposals',
     name: 'Proposals',
     component: () =>
-        import(/* webpackChunkName: "Proposals2" */ '@/views/Proposals'),
+        import(/* webpackChunkName: "Proposals" */ '@/views/Proposals'),
     meta: {title: 'Proposals', visible_for_all: true},
 };
 

From 8ab72475e18c20cc0e0c22f1a12d0e342c83825c Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Fri, 15 Dec 2023 19:41:00 +0500
Subject: [PATCH 13/36] google auth

---
 backend/src/application/oauth.py | 67 ++++++++++----------------------
 client/public/index.html         |  2 +
 client/src/App.vue               | 63 ++++++++++++++++++++++++++++--
 client/src/config.js             |  1 +
 4 files changed, 84 insertions(+), 49 deletions(-)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index efb0f49f..2ce781a4 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -1,8 +1,10 @@
 import json
-
-from flask import Blueprint, url_for, session, jsonify, current_app
-from flask_oauthlib.client import OAuth, OAuthException
 from http import HTTPStatus
+
+from flask import Blueprint, jsonify, current_app, request
+from google.auth.transport import requests
+from google.oauth2 import id_token
+
 from src.application.config import GOOGLE_CLIENT_SECRET_PATH
 from src.application.stub_views import anonymous_user_required
 from src.database import wrapped_schemas
@@ -18,53 +20,31 @@ def load_google_config():
 
 config_data = load_google_config()
 oauth_blueprint = Blueprint('oauth', import_name=__name__, url_prefix="/oauth/", )
-oauth = OAuth()
-
-google = oauth.remote_app(
-    name='google',
-    consumer_key=config_data['web']['client_id'],
-    consumer_secret=config_data['web']['client_secret'],
-    request_token_params={'scope': 'email'},
-    base_url='https://www.googleapis.com/oauth2/v1/',
-    request_token_url=None,
-    access_token_method='POST',
-    access_token_url='https://accounts.google.com/o/oauth2/token',
-    authorize_url='https://accounts.google.com/o/oauth2/auth',
-)
 
 
 @anonymous_user_required
-@oauth_blueprint.route('/login')
-def login():
-    return google.authorize(callback=url_for('oauth.authorized', _external=True))
-
-
-# go to http://127.0.0.1:5000/oauth/login
-@anonymous_user_required
-@oauth_blueprint.route('/login/authorized')
+@oauth_blueprint.route('/login/authorized', methods=['POST'])
 def authorized():
-    response = google.authorized_response()
-
-    if response is None:
-        current_app.logger.error(f"google.authorized_response() is None")
-        return jsonify({'error': 'Access denied'}), HTTPStatus.UNAUTHORIZED
+    if "credential" not in request.json:
+        return jsonify({'error': 'No credentials'}), HTTPStatus.BAD_REQUEST
 
-    if response.get('access_token') is None:
-        current_app.logger.error(f"Unable to retrieve access_token")
-        return jsonify({'error': 'Access denied'}), HTTPStatus.UNAUTHORIZED
+    credential = request.json["credential"]
+    if not credential:
+        return jsonify({'error': 'No credentials'}), HTTPStatus.BAD_REQUEST
 
-    # preserve the Google Oauth access token in the session
-    session['google_token'] = (response['access_token'], 'Google Access Token')
+    client_id = config_data['web']['client_id']
 
     try:
-        user_info = google.get('userinfo')
-    except OAuthException as exc:
-        current_app.logger.error(f"Unable to retrieve userinfo. Details: {exc}")
-        return jsonify({'error': f'OAuth Exception: {str(exc)}'}), HTTPStatus.UNAUTHORIZED
+        idinfo = id_token.verify_oauth2_token(credential,
+                                              requests.Request(), client_id)
+    except:
+        return jsonify({'error': 'Token verification failed'}), HTTPStatus.BAD_REQUEST
+
+    current_app.logger.debug(f"idinfo = {idinfo}")
 
-    google_user_id = user_info.data['id']
-    email = user_info.data['email']
-    name = user_info.data.get('name', email.split('@')[0])
+    google_user_id = idinfo['sub']
+    email = idinfo['email']
+    name = idinfo['name']
 
     existing_user = User.query.filter_by(email=email).first()
 
@@ -96,8 +76,3 @@ def authorized():
     token = existing_user.encode_auth_token()
     current_user = wrapped_schemas.UserSchema().dump(existing_user)
     return jsonify({"token": token, "current_user": current_user})
-
-
-@google.tokengetter
-def get_google_oauth_token():
-    return session.get('google_token')
diff --git a/client/public/index.html b/client/public/index.html
index 41235286..60851c7e 100644
--- a/client/public/index.html
+++ b/client/public/index.html
@@ -6,6 +6,8 @@
     <meta name="viewport" content="width=device-width,initial-scale=1.0">
     <link rel="icon" href="<%= BASE_URL %>favicon.ico">
     <title><%= htmlWebpackPlugin.options.title %></title>
+
+    <script src="https://accounts.google.com/gsi/client" async defer></script>
   </head>
   <body>
     <noscript>
diff --git a/client/src/App.vue b/client/src/App.vue
index 43b0be22..bda99784 100644
--- a/client/src/App.vue
+++ b/client/src/App.vue
@@ -1,6 +1,6 @@
 <template>
   <div id="app">
-    <Auth :show="showAuth" />
+    <Auth :show="showAuth"/>
     <b-navbar
       toggleable="lg"
       type="dark"
@@ -49,11 +49,15 @@
         class="full-width"
         align="right"
       >
-        <b-nav-item @click="login()"> Log In</b-nav-item>
+        <b-nav-item @click="login()" class="nowrap"> Log In</b-nav-item>
+        <b-nav-item class="nowrap" id="nav-item-google">
+
+          <div class="g_id_signin" id="signin_button" data-type="standard"></div>
+        </b-nav-item>
       </b-navbar-nav>
       <!-- login/logout group end -->
     </b-navbar>
-    <router-view />
+    <router-view/>
   </div>
 </template>
 
@@ -109,6 +113,17 @@ export default {
     }
 
     // console.log('App mounted, is_authorized=' + this.is_authorized + ', is_admin=' + this.is_admin);
+
+    window.addEventListener('load', () => {
+      window.google.accounts.id.initialize({
+        client_id: this.appConfig.clientId,
+        callback: this.handleCredentialResponse,
+      });
+      window.google.accounts.id.renderButton(
+        document.getElementById("signin_button"),
+        {theme: "outline", size: "large"},
+      );
+    })
   },
 
   methods: {
@@ -118,6 +133,44 @@ export default {
     logout() {
       this.$store.dispatch('logout');
     },
+
+    async handleCredentialResponse(response) {
+      console.log(response);
+
+      const credentialData = response.credential;
+
+      fetch(`${this.$hostname}/oauth/login/authorized`, {
+        method: 'POST',
+        headers: {
+          'Content-Type': 'application/json',
+        },
+        body: JSON.stringify({
+          credential: credentialData,
+        }),
+      })
+        .then(response => {
+          if (!response.ok) {
+            throw new Error(`HTTP error. Status: ${response.status}`);
+          }
+          return response.json();
+        })
+        .then(data => {
+          console.debug('backend response:', data);
+
+          localStorage.setItem('jwt', data.token);
+          this.$store.commit('currentUser', data.current_user);
+        })
+        .catch(error => {
+          console.error("error caught during HTTP request")
+          localStorage.removeItem('jwt');
+          console.error('Error making HTTP request to backend:', error);
+
+          this.$store.commit('currentUser', null);
+          this.$store.commit('authStatus', 'FAIL');
+
+          this.$store.commit('authError', error.toString());
+        });
+    },
   },
 };
 </script>
@@ -211,4 +264,8 @@ ul.formulate-input-errors li {
 .form-group[data-type='hidden'] {
   margin-bottom: 0;
 }
+
+#nav-item-google a {
+  padding: 0
+}
 </style>
diff --git a/client/src/config.js b/client/src/config.js
index 55a83919..fa9632e9 100644
--- a/client/src/config.js
+++ b/client/src/config.js
@@ -1,5 +1,6 @@
 const config = {
     //TODO: populate if needed
+  clientId: "put-here-your-client_id-please",
 };
 
 export {config};

From 3a5bd5e7c881d55e3aff367e25f23aa28e712bfd Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Fri, 15 Dec 2023 19:53:00 +0500
Subject: [PATCH 14/36] update

---
 client/src/App.vue | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/client/src/App.vue b/client/src/App.vue
index bda99784..d60a2c18 100644
--- a/client/src/App.vue
+++ b/client/src/App.vue
@@ -121,7 +121,7 @@ export default {
       });
       window.google.accounts.id.renderButton(
         document.getElementById("signin_button"),
-        {theme: "outline", size: "large"},
+        {theme: "outline", size: "medium"},
       );
     })
   },
@@ -135,8 +135,6 @@ export default {
     },
 
     async handleCredentialResponse(response) {
-      console.log(response);
-
       const credentialData = response.credential;
 
       fetch(`${this.$hostname}/oauth/login/authorized`, {

From 2b18e0cafeceaf670943fabe6e8e388db621d4ac Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Fri, 15 Dec 2023 22:55:15 +0500
Subject: [PATCH 15/36] some fixes for situation where user gets logged out

---
 client/src/App.vue               | 40 +++++++++++++++++++++-----------
 client/src/views/shared/Auth.vue |  4 ++++
 2 files changed, 31 insertions(+), 13 deletions(-)

diff --git a/client/src/App.vue b/client/src/App.vue
index d60a2c18..e2038251 100644
--- a/client/src/App.vue
+++ b/client/src/App.vue
@@ -1,6 +1,6 @@
 <template>
   <div id="app">
-    <Auth :show="showAuth"/>
+    <Auth :show="showAuth" />
     <b-navbar
       toggleable="lg"
       type="dark"
@@ -67,7 +67,9 @@ import {mapGetters} from 'vuex';
 export default {
   name: 'App',
   data() {
-    return {showAuth: false};
+    return {
+      showAuth: false,
+    };
   },
   computed: {
     ...mapGetters(['is_authorized', 'is_admin', 'needsAuth']),
@@ -114,7 +116,29 @@ export default {
 
     // console.log('App mounted, is_authorized=' + this.is_authorized + ', is_admin=' + this.is_admin);
 
-    window.addEventListener('load', () => {
+    this.waitForGoogleAPI(() => {
+      this.initGoogleButton();
+    });
+  },
+
+  methods: {
+    login() {
+      this.showAuth = true;
+    },
+    async logout() {
+      await this.$store.dispatch('logout');
+      this.initGoogleButton();
+    },
+    waitForGoogleAPI(callback) {
+      if (window.google) {
+        callback();
+      } else {
+        setTimeout(() => {
+          this.waitForGoogleAPI(callback);
+        }, 100);
+      }
+    },
+    initGoogleButton() {
       window.google.accounts.id.initialize({
         client_id: this.appConfig.clientId,
         callback: this.handleCredentialResponse,
@@ -123,17 +147,7 @@ export default {
         document.getElementById("signin_button"),
         {theme: "outline", size: "medium"},
       );
-    })
-  },
-
-  methods: {
-    login() {
-      this.showAuth = true;
     },
-    logout() {
-      this.$store.dispatch('logout');
-    },
-
     async handleCredentialResponse(response) {
       const credentialData = response.credential;
 
diff --git a/client/src/views/shared/Auth.vue b/client/src/views/shared/Auth.vue
index b5272b25..771db062 100644
--- a/client/src/views/shared/Auth.vue
+++ b/client/src/views/shared/Auth.vue
@@ -4,6 +4,7 @@
         title="Authorization"
         centered
         @ok="onOK"
+        @hide="onModalHide"
     >
         <span class="auth-error-message"> {{ authError }} </span>
 
@@ -78,6 +79,9 @@ export default {
             evt.preventDefault();
             this.fetchJWT(this.form);
         },
+        onModalHide() {
+         this.modalVisible = false;
+      },
     },
 };
 </script>

From 658b709a5f63ec378a73fae0265c697d3305fbd7 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Sat, 16 Dec 2023 15:56:58 +0500
Subject: [PATCH 16/36] add better logging

---
 backend/src/application/oauth.py | 18 ++++++++++--------
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index 2ce781a4..cf216ccf 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -2,6 +2,7 @@
 from http import HTTPStatus
 
 from flask import Blueprint, jsonify, current_app, request
+from google.auth.exceptions import GoogleAuthError
 from google.auth.transport import requests
 from google.oauth2 import id_token
 
@@ -35,23 +36,24 @@ def authorized():
     client_id = config_data['web']['client_id']
 
     try:
-        idinfo = id_token.verify_oauth2_token(credential,
-                                              requests.Request(), client_id)
-    except:
+        decoded_token = id_token.verify_oauth2_token(credential,
+                                                     requests.Request(), client_id)
+    except GoogleAuthError as exc:
+        current_app.logger.error(f"Unable to decode token: {exc}")
         return jsonify({'error': 'Token verification failed'}), HTTPStatus.BAD_REQUEST
 
-    current_app.logger.debug(f"idinfo = {idinfo}")
+    current_app.logger.debug(f"Successfully decoded token: {decoded_token}")
 
-    google_user_id = idinfo['sub']
-    email = idinfo['email']
-    name = idinfo['name']
+    google_user_id = decoded_token['sub']
+    email = decoded_token['email']
+    name = decoded_token['name']
 
     existing_user = User.query.filter_by(email=email).first()
 
     if existing_user:
         current_app.logger.debug(f"Specified user with email {email} found")
         if not existing_user.manager_id:
-            current_app.logger.debug(f"Specified user with email {email} is not a manager")
+            current_app.logger.error(f"Specified user with email {email} is not a manager")
             return jsonify({'error': 'Access denied. This user is not a Manager.'}), HTTPStatus.UNAUTHORIZED
     else:
         password = generate_password()

From 2dcf63b76633fbcbec0e8801b993158290cac47a Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Sat, 16 Dec 2023 16:10:49 +0500
Subject: [PATCH 17/36] fix handleCredentialsResponse

---
 client/src/App.vue | 90 ++++++++++++++++++++++++----------------------
 1 file changed, 48 insertions(+), 42 deletions(-)

diff --git a/client/src/App.vue b/client/src/App.vue
index e2038251..b5c7b102 100644
--- a/client/src/App.vue
+++ b/client/src/App.vue
@@ -49,15 +49,22 @@
         class="full-width"
         align="right"
       >
-        <b-nav-item @click="login()" class="nowrap"> Log In</b-nav-item>
-        <b-nav-item class="nowrap" id="nav-item-google">
+        <b-nav-item
+          class="nowrap"
+          @click="login()"> Log In</b-nav-item>
+        <b-nav-item
+          id="nav-item-google"
+          class="nowrap">
 
-          <div class="g_id_signin" id="signin_button" data-type="standard"></div>
+          <div
+            id="signin_button"
+            class="g_id_signin"
+            data-type="standard"></div>
         </b-nav-item>
       </b-navbar-nav>
       <!-- login/logout group end -->
     </b-navbar>
-    <router-view/>
+    <router-view />
   </div>
 </template>
 
@@ -117,7 +124,7 @@ export default {
     // console.log('App mounted, is_authorized=' + this.is_authorized + ', is_admin=' + this.is_admin);
 
     this.waitForGoogleAPI(() => {
-      this.initGoogleButton();
+      this.initGoogleAuthButton();
     });
   },
 
@@ -127,7 +134,7 @@ export default {
     },
     async logout() {
       await this.$store.dispatch('logout');
-      this.initGoogleButton();
+      this.initGoogleAuthButton();
     },
     waitForGoogleAPI(callback) {
       if (window.google) {
@@ -138,50 +145,49 @@ export default {
         }, 100);
       }
     },
-    initGoogleButton() {
+    initGoogleAuthButton() {
       window.google.accounts.id.initialize({
         client_id: this.appConfig.clientId,
-        callback: this.handleCredentialResponse,
+        callback: this.handleCredentialsResponse,
       });
       window.google.accounts.id.renderButton(
         document.getElementById("signin_button"),
         {theme: "outline", size: "medium"},
       );
     },
-    async handleCredentialResponse(response) {
-      const credentialData = response.credential;
-
-      fetch(`${this.$hostname}/oauth/login/authorized`, {
-        method: 'POST',
-        headers: {
-          'Content-Type': 'application/json',
-        },
-        body: JSON.stringify({
-          credential: credentialData,
-        }),
-      })
-        .then(response => {
-          if (!response.ok) {
-            throw new Error(`HTTP error. Status: ${response.status}`);
-          }
-          return response.json();
-        })
-        .then(data => {
-          console.debug('backend response:', data);
-
-          localStorage.setItem('jwt', data.token);
-          this.$store.commit('currentUser', data.current_user);
-        })
-        .catch(error => {
-          console.error("error caught during HTTP request")
-          localStorage.removeItem('jwt');
-          console.error('Error making HTTP request to backend:', error);
-
-          this.$store.commit('currentUser', null);
-          this.$store.commit('authStatus', 'FAIL');
-
-          this.$store.commit('authError', error.toString());
-        });
+    async handleCredentialsResponse(response) {
+      try {
+        const credentialData = response.credential;
+
+        const requestOptions = {
+          method: 'POST',
+          headers: {
+            'Content-Type': 'application/json',
+          },
+          body: JSON.stringify({
+            credential: credentialData,
+          }),
+        };
+
+        const backendResponse = await fetch(`${this.$hostname}/oauth/login/authorized`, requestOptions);
+
+        if (!backendResponse.ok) {
+          throw new Error(`HTTP error. Status: ${backendResponse.status}`);
+        }
+
+        const data = await backendResponse.json();
+        console.debug('Backend login endpoint\'s response:', data);
+
+        localStorage.setItem('jwt', data.token);
+        this.$store.commit('currentUser', data.current_user);
+      } catch (error) {
+        console.error('Error making HTTP request to backend:', error);
+
+        localStorage.removeItem('jwt');
+        this.$store.commit('currentUser', null);
+        this.$store.commit('authStatus', 'FAIL');
+        this.$store.commit('authError', error.toString());
+      }
     },
   },
 };

From 4bf2c045443e7be3c385afc6d778384b58b1a2ca Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Mon, 18 Dec 2023 11:03:43 +0500
Subject: [PATCH 18/36] fix dialog closing bug

---
 client/src/App.vue               | 10 +++++++++-
 client/src/store/modules/auth.js |  1 +
 client/src/views/shared/Auth.vue |  4 ++++
 3 files changed, 14 insertions(+), 1 deletion(-)

diff --git a/client/src/App.vue b/client/src/App.vue
index b5c7b102..cecf5f3b 100644
--- a/client/src/App.vue
+++ b/client/src/App.vue
@@ -1,6 +1,6 @@
 <template>
   <div id="app">
-    <Auth :show="showAuth" />
+    <Auth :show="showAuth" @auth-dialog-closed="onAuthDialogClosed"  />
     <b-navbar
       toggleable="lg"
       type="dark"
@@ -96,12 +96,15 @@ export default {
     },
     is_authorized: {
       handler(auth) {
+        console.log("App.vue is_authorized handler", !auth && this.needsAuth)
         this.showAuth = !auth && this.needsAuth;
       },
       immediate: true,
     },
     needsAuth: {
       handler(auth) {
+        console.log("App.vue needsAuth handler", auth && !this.is_authorized)
+
         this.showAuth = auth && !this.is_authorized;
       },
       immediate: true,
@@ -129,8 +132,13 @@ export default {
   },
 
   methods: {
+     onAuthDialogClosed() {
+      console.log("Auth dialog closed");
+      this.showAuth = false;
+    },
     login() {
       this.showAuth = true;
+      console.log("App.vue", "Click login()", this.showAuth)
     },
     async logout() {
       await this.$store.dispatch('logout');
diff --git a/client/src/store/modules/auth.js b/client/src/store/modules/auth.js
index b8db47eb..dfeaf058 100644
--- a/client/src/store/modules/auth.js
+++ b/client/src/store/modules/auth.js
@@ -56,6 +56,7 @@ export default {
 
         logout(ctx) {
             localStorage.removeItem('jwt');
+            ctx.commit('is_authorized', false);
             ctx.commit('currentUser', null);
             ctx.commit('authStatus', 'NEED');
         },
diff --git a/client/src/views/shared/Auth.vue b/client/src/views/shared/Auth.vue
index 771db062..4038a738 100644
--- a/client/src/views/shared/Auth.vue
+++ b/client/src/views/shared/Auth.vue
@@ -60,6 +60,7 @@ export default {
     watch: {
         is_authorized: {
             handler(authorized) {
+              console.log("is_authorized handler", authorized, this.needsAuth);
                 if (authorized) this.modalVisible = false;
                 else this.modalVisible = this.needsAuth;
             },
@@ -67,6 +68,7 @@ export default {
         },
         show: {
             handler(val) {
+              console.log("show handler", val);
                 this.modalVisible = val;
             },
             immediate: true,
@@ -80,7 +82,9 @@ export default {
             this.fetchJWT(this.form);
         },
         onModalHide() {
+          console.log("onModalHide", "this.modalVisible false")
          this.modalVisible = false;
+         this.$emit('auth-dialog-closed');
       },
     },
 };

From f188b3145f45955d2f59935228efe73e54997690 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Mon, 18 Dec 2023 11:06:46 +0500
Subject: [PATCH 19/36] delete debug logs

---
 client/src/App.vue               | 5 -----
 client/src/views/shared/Auth.vue | 3 ---
 2 files changed, 8 deletions(-)

diff --git a/client/src/App.vue b/client/src/App.vue
index cecf5f3b..6c9b4e09 100644
--- a/client/src/App.vue
+++ b/client/src/App.vue
@@ -96,15 +96,12 @@ export default {
     },
     is_authorized: {
       handler(auth) {
-        console.log("App.vue is_authorized handler", !auth && this.needsAuth)
         this.showAuth = !auth && this.needsAuth;
       },
       immediate: true,
     },
     needsAuth: {
       handler(auth) {
-        console.log("App.vue needsAuth handler", auth && !this.is_authorized)
-
         this.showAuth = auth && !this.is_authorized;
       },
       immediate: true,
@@ -133,12 +130,10 @@ export default {
 
   methods: {
      onAuthDialogClosed() {
-      console.log("Auth dialog closed");
       this.showAuth = false;
     },
     login() {
       this.showAuth = true;
-      console.log("App.vue", "Click login()", this.showAuth)
     },
     async logout() {
       await this.$store.dispatch('logout');
diff --git a/client/src/views/shared/Auth.vue b/client/src/views/shared/Auth.vue
index 4038a738..56676c03 100644
--- a/client/src/views/shared/Auth.vue
+++ b/client/src/views/shared/Auth.vue
@@ -60,7 +60,6 @@ export default {
     watch: {
         is_authorized: {
             handler(authorized) {
-              console.log("is_authorized handler", authorized, this.needsAuth);
                 if (authorized) this.modalVisible = false;
                 else this.modalVisible = this.needsAuth;
             },
@@ -68,7 +67,6 @@ export default {
         },
         show: {
             handler(val) {
-              console.log("show handler", val);
                 this.modalVisible = val;
             },
             immediate: true,
@@ -82,7 +80,6 @@ export default {
             this.fetchJWT(this.form);
         },
         onModalHide() {
-          console.log("onModalHide", "this.modalVisible false")
          this.modalVisible = false;
          this.$emit('auth-dialog-closed');
       },

From 7e46bf7212ca3b553800e7f98c859dbebc916e8f Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Mon, 18 Dec 2023 11:11:55 +0500
Subject: [PATCH 20/36] simplify checks

---
 backend/src/application/oauth.py | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index cf216ccf..53d218d2 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -26,15 +26,11 @@ def load_google_config():
 @anonymous_user_required
 @oauth_blueprint.route('/login/authorized', methods=['POST'])
 def authorized():
-    if "credential" not in request.json:
-        return jsonify({'error': 'No credentials'}), HTTPStatus.BAD_REQUEST
+    if "credential" not in request.json or not request.json["credential"]:
+        return jsonify({'error': 'Invalid request. No credentials.'}), HTTPStatus.BAD_REQUEST
 
     credential = request.json["credential"]
-    if not credential:
-        return jsonify({'error': 'No credentials'}), HTTPStatus.BAD_REQUEST
-
     client_id = config_data['web']['client_id']
-
     try:
         decoded_token = id_token.verify_oauth2_token(credential,
                                                      requests.Request(), client_id)

From 671ce08fe214cd0e74cdd61d7012e058ec647de3 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Mon, 18 Dec 2023 11:57:54 +0500
Subject: [PATCH 21/36] this was wrong, fix it

---
 client/src/store/modules/auth.js | 1 -
 1 file changed, 1 deletion(-)

diff --git a/client/src/store/modules/auth.js b/client/src/store/modules/auth.js
index dfeaf058..b8db47eb 100644
--- a/client/src/store/modules/auth.js
+++ b/client/src/store/modules/auth.js
@@ -56,7 +56,6 @@ export default {
 
         logout(ctx) {
             localStorage.removeItem('jwt');
-            ctx.commit('is_authorized', false);
             ctx.commit('currentUser', null);
             ctx.commit('authStatus', 'NEED');
         },

From 810d839dced5175ff06b0272b356aad082880dbd Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Wed, 20 Dec 2023 22:54:12 +0500
Subject: [PATCH 22/36] alter users registration process

---
 backend/src/application/oauth.py | 22 ++++------------------
 1 file changed, 4 insertions(+), 18 deletions(-)

diff --git a/backend/src/application/oauth.py b/backend/src/application/oauth.py
index 53d218d2..667d7983 100644
--- a/backend/src/application/oauth.py
+++ b/backend/src/application/oauth.py
@@ -40,7 +40,6 @@ def authorized():
 
     current_app.logger.debug(f"Successfully decoded token: {decoded_token}")
 
-    google_user_id = decoded_token['sub']
     email = decoded_token['email']
     name = decoded_token['name']
 
@@ -48,27 +47,14 @@ def authorized():
 
     if existing_user:
         current_app.logger.debug(f"Specified user with email {email} found")
-        if not existing_user.manager_id:
-            current_app.logger.error(f"Specified user with email {email} is not a manager")
-            return jsonify({'error': 'Access denied. This user is not a Manager.'}), HTTPStatus.UNAUTHORIZED
+        if not existing_user.is_admin:
+            current_app.logger.error(f"Specified user with email {email} already exists and he/she is not an admin")
+            return jsonify({'error': 'This user already exists and he/she is not an admin.'}), HTTPStatus.UNAUTHORIZED
     else:
         password = generate_password()
-
         current_app.logger.debug(f"Creation of a new user with email {email} started")
-        user = User.create_user(username=name, password=password, email=email)
-
-        manager = Managers(code=google_user_id, name=f"{name} manager")
-        core_db.session.add(manager)
-        # flushing the session ensures that the primary key of the manager is available for use in
-        # the user.manager_id field
-        core_db.session.flush()
-
-        # Associate manager with user
-        user.manager_id = manager.id
-        core_db.session.add(user)
-        core_db.session.commit()
+        user = User.create_user(username=name, password=password, email=email, is_admin=True)
         current_app.logger.debug(f"Creation of a new user with email {email} completed")
-
         existing_user = user
 
     token = existing_user.encode_auth_token()

From 3c83c9827403ff413c1c2614fd7a43fdebf1b5a3 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Thu, 21 Dec 2023 17:12:19 +0500
Subject: [PATCH 23/36] work on new task - managers invitation and registration

---
 backend/requirements.txt            |  3 +-
 backend/src/application/app_core.py |  4 +-
 backend/src/application/config.py   | 15 ++++++++
 backend/src/application/schemas.py  |  4 ++
 backend/src/application/urls.py     |  6 +++
 backend/src/application/views.py    | 58 ++++++++++++++++++++++++++++-
 client/src/router/index.js          |  9 +++++
 client/src/store/index.js           |  2 +
 client/src/store/modules/invite.js  | 18 +++++++++
 client/src/store/modules/loading.js |  1 +
 10 files changed, 116 insertions(+), 4 deletions(-)
 create mode 100644 client/src/store/modules/invite.js

diff --git a/backend/requirements.txt b/backend/requirements.txt
index 75c6955e..b9ad6539 100644
--- a/backend/requirements.txt
+++ b/backend/requirements.txt
@@ -20,4 +20,5 @@ pyjwt == 2.6.0
 gspread == 5.7.2
 sqlalchemy-utils == 0.39.0
 werkzeug == 2.3.7
-flask_oauthlib==0.9.6
\ No newline at end of file
+flask_oauthlib==0.9.6
+Flask-Mail == 0.9.1
\ No newline at end of file
diff --git a/backend/src/application/app_core.py b/backend/src/application/app_core.py
index bc7509d6..a368bb58 100644
--- a/backend/src/application/app_core.py
+++ b/backend/src/application/app_core.py
@@ -6,6 +6,7 @@
 import jwt
 from flask import Flask, current_app, g, request, jsonify
 from flask_cors import CORS
+from flask_mail import Mail
 
 # Добавление автоматически сгенерированных моделей.
 try:
@@ -87,8 +88,9 @@ def before_request():
 
     # enable CORS
     CORS(app, resources={r"/*": {"origins": config.FLASK_HTTP_ORIGIN}})
-
+    mail = Mail()
     core_db.init_app(app)
+    mail.init_app(app)
 
     with app.app_context():
         app.register_blueprint(api_blueprint)
diff --git a/backend/src/application/config.py b/backend/src/application/config.py
index 0b8ad406..5ebbf9b9 100644
--- a/backend/src/application/config.py
+++ b/backend/src/application/config.py
@@ -18,6 +18,14 @@
 FLASK_RUN_HOST = "0.0.0.0"
 FLASK_HTTP_ORIGIN = "*"
 
+MAIL_SERVER = "localhost"
+MAIL_PORT = 465
+MAIL_USERNAME = ""
+MAIL_PASSWORD = ""
+MAIL_DEFAULT_SENDER = ""
+MAIL_USE_TLS = False
+MAIL_USE_SSL = True
+
 ROOT_PATH = Path(__file__).parent.parent.parent.resolve()
 
 AIEYE_CREDENTIALS_PATH = (ROOT_PATH / "aieye_credentials.json").resolve()
@@ -27,6 +35,7 @@
 def init_config():
     global DEBUG, SQLALCHEMY_DATABASE_URI, JWT_EXPIRATION_DELTA, SECRET_KEY
     global JSONIFY_MIMETYPE, FLASK_RUN_PORT, FLASK_RUN_HOST, FLASK_HTTP_ORIGIN
+    global MAIL_SERVER, MAIL_PORT, MAIL_USERNAME, MAIL_PASSWORD, MAIL_DEFAULT_SENDER, MAIL_USE_SSL, MAIL_USE_TLS
 
     DEBUG = os.getenv("FLASK_DEBUG", "true").upper() == "TRUE"
     SQLALCHEMY_DATABASE_URI = (
@@ -46,3 +55,9 @@ def init_config():
     FLASK_RUN_PORT = int(os.getenv("FLASK_RUN_PORT", "5000") or "5000")
     FLASK_RUN_HOST = os.getenv("FLASK_RUN_HOST", "0.0.0.0")
     FLASK_HTTP_ORIGIN = os.getenv("FLASK_HTTP_ORIGIN", "*")
+
+    MAIL_SERVER = os.getenv("MAIL_SERVER", "")
+    MAIL_PORT = os.getenv("MAIL_PORT", 465)
+    MAIL_USERNAME = os.getenv("MAIL_USERNAME", "")
+    MAIL_PASSWORD = os.getenv("MAIL_PASSWORD", "")
+    MAIL_DEFAULT_SENDER = os.getenv("MAIL_DEFAULT_SERVER", "")
diff --git a/backend/src/application/schemas.py b/backend/src/application/schemas.py
index 770d6cdd..c559273f 100644
--- a/backend/src/application/schemas.py
+++ b/backend/src/application/schemas.py
@@ -140,3 +140,7 @@ class BulkSkillsSchema(Schema):
 class ChangeProposal2StatusRequestSchema(Schema):
     proposal_id = fields.Integer(allow_none=False, required=True)
     status = fields.Integer(required=True, validate=validate.OneOf(ProposalStatus.values()))
+
+
+class InviteUserRequestSchema(Schema):
+    email = fields.Email(allow_none=False, required=True)
diff --git a/backend/src/application/urls.py b/backend/src/application/urls.py
index e3d014c5..cb3d515c 100644
--- a/backend/src/application/urls.py
+++ b/backend/src/application/urls.py
@@ -55,3 +55,9 @@
     "/freelancer_photo/<int:freelancer_id>.png",
     view_func=views.FreelancerPhoto().as_view("freelancer_photo"),
 )
+api_blueprint.add_url_rule(
+    "/invite/", view_func=views.InviteUser.as_view("invite_user")
+)
+public_blueprint.add_url_rule(
+    "/team_member_registration/", view_func=views.TeamMemberRegistrationPage.as_view("team_member_registration_page")
+)
diff --git a/backend/src/application/views.py b/backend/src/application/views.py
index 40f8d698..d45aca90 100644
--- a/backend/src/application/views.py
+++ b/backend/src/application/views.py
@@ -6,9 +6,10 @@
 from collections import namedtuple
 from datetime import datetime
 from json import JSONDecodeError
+from flask_mail import Message
 
 import marshmallow
-from flask import current_app, g, jsonify, request, send_file, render_template
+from flask import current_app, g, jsonify, request, send_file, render_template, url_for
 from flask.views import MethodView
 from marshmallow import EXCLUDE, ValidationError
 from sqlalchemy import Integer, distinct, func, or_, text, desc, asc
@@ -161,6 +162,59 @@ def post(self):
         return jsonify({"response": response})
 
 
+class InviteUser(MethodView):
+    decorators = [admin_user_required]
+    methods = ["POST"]
+
+    def post(self):
+        try:
+            data = schemas.InviteUserRequestSchema().load(request.json)
+            current_app.logger.debug(
+                'InviteUser view POST call'
+            )
+        except schemas.VALIDATION_EXCEPTIONS as error:
+            raise exceptions.BadRequest(str(error))
+
+        email = data["email"]
+        self.send_invitation_email(email)
+        return {"message": f"Invitation email sent to {email}"}, 200
+
+    @staticmethod
+    def send_invitation_email(email):
+        registration_link = url_for('public_blueprint.team_member_registration_page', _external=True)
+
+        subject = "Invitation to Register"
+        body = f"""Hello!
+                   You have been invited to register on our website.
+                   Follow the link to complete your registration: {registration_link}
+                """
+
+        message = Message(subject, recipients=[email], body=body)
+
+        try:
+            mail = current_app.extensions['mail']
+            current_app.logger.debug(f"Sending invitation email to {email}...")
+            mail.send(message)
+            current_app.logger.debug(f"Invitation email sent")
+        except Exception as e:
+            current_app.logger.error(f"Error sending invitation email to {email}: {str(e)}")
+            raise exceptions.BadRequest(
+                f"Unable to send email to {email}."
+            )
+        else:
+            current_app.logger.debug("Email sent")
+
+        return {"message": f"Invitation email sent to {email}"}, 200
+
+
+class TeamMemberRegistrationPage(MethodView):
+    methods = ["GET"]
+
+    def get(self):
+        # TODO:
+        return render_template("team_member_registratrion.html")
+
+
 class GenerateProposal(MethodView):
     decorators = [authorized_user_required]
     methods = ["POST"]
@@ -169,7 +223,7 @@ def post(self):
         try:
             data = schemas.GenerateProposalRequestSchema().load(request.json)
             current_app.logger.debug(
-                f'GenerateProposal view POST call'
+                'GenerateProposal view POST call'
             )
         except schemas.VALIDATION_EXCEPTIONS as error:
             raise exceptions.BadRequest(str(error))
diff --git a/client/src/router/index.js b/client/src/router/index.js
index 4c307137..520ccdba 100644
--- a/client/src/router/index.js
+++ b/client/src/router/index.js
@@ -66,6 +66,13 @@ const page_skills = {
     meta: {title: 'Skills management'},
 };
 
+const invite_team_member = {
+    path: '/invite',
+    name: 'Invite',
+    component: () => import(/* webpackChunkName: "InvitePage" */ '@/views/InvitePage'),
+    meta: {title: 'Invite team member', visible_for_all: false },
+};
+
 const routes = [
     page_jobs,
     page_proposals,
@@ -75,6 +82,7 @@ const routes = [
     page_managers,
     page_skills,
     page_questions,
+    invite_team_member,
 ];
 
 const router = new VueRouter({
@@ -97,6 +105,7 @@ const router = new VueRouter({
                         page_managers,
                         page_skills,
                         page_questions,
+                        invite_team_member,
                     ],
                 },
             ];
diff --git a/client/src/store/index.js b/client/src/store/index.js
index 8910d607..edc821c0 100644
--- a/client/src/store/index.js
+++ b/client/src/store/index.js
@@ -8,6 +8,7 @@ import interviews from './modules/interviews';
 import job from './modules/job';
 import loading from './modules/loading';
 import proposals from './modules/proposals';
+import invite from './modules/invite';
 
 Vue.use(Vuex);
 
@@ -20,5 +21,6 @@ export default new Vuex.Store({
         proposals,
         generic,
         job,
+        invite,
     },
 });
diff --git a/client/src/store/modules/invite.js b/client/src/store/modules/invite.js
new file mode 100644
index 00000000..0eacb236
--- /dev/null
+++ b/client/src/store/modules/invite.js
@@ -0,0 +1,18 @@
+import {toGetters} from '@/utils';
+
+const state = {
+    inviteStatus: 'INIT',
+};
+
+export default {
+    state,
+    getters: toGetters(state),
+    mutations: {
+        inviteLinkSent(state) {
+            state.inviteStatus = 'SENT';
+        },
+        inviteStatusReset(state) {
+            state.inviteStatus = 'INIT';
+        },
+    },
+};
diff --git a/client/src/store/modules/loading.js b/client/src/store/modules/loading.js
index 79fcf1db..7607efe9 100644
--- a/client/src/store/modules/loading.js
+++ b/client/src/store/modules/loading.js
@@ -71,6 +71,7 @@ export default {
                 else ctx.commit(mutation, data);
                 ctx.commit('fetchingError', '');
             } catch (e) {
+              console.log("ERROR!")
                 if (e.response?.status === 401) ctx.dispatch('logout');
 
                 if (e?.response?.data?.message)

From c96cece26f36cfa769368bdb25996bf78966d2f8 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Thu, 21 Dec 2023 17:17:04 +0500
Subject: [PATCH 24/36] fix typo

---
 backend/src/application/config.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/backend/src/application/config.py b/backend/src/application/config.py
index 5ebbf9b9..719d85e0 100644
--- a/backend/src/application/config.py
+++ b/backend/src/application/config.py
@@ -60,4 +60,4 @@ def init_config():
     MAIL_PORT = os.getenv("MAIL_PORT", 465)
     MAIL_USERNAME = os.getenv("MAIL_USERNAME", "")
     MAIL_PASSWORD = os.getenv("MAIL_PASSWORD", "")
-    MAIL_DEFAULT_SENDER = os.getenv("MAIL_DEFAULT_SERVER", "")
+    MAIL_DEFAULT_SENDER = os.getenv("MAIL_DEFAULT_SENDER", "")

From 3bf62bd33960ca6d876007c6eb6ef91727f6b5ac Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Thu, 21 Dec 2023 17:24:27 +0500
Subject: [PATCH 25/36] InvitePage itself

---
 client/src/views/InvitePage.vue | 115 ++++++++++++++++++++++++++++++++
 1 file changed, 115 insertions(+)
 create mode 100644 client/src/views/InvitePage.vue

diff --git a/client/src/views/InvitePage.vue b/client/src/views/InvitePage.vue
new file mode 100644
index 00000000..4a8cbceb
--- /dev/null
+++ b/client/src/views/InvitePage.vue
@@ -0,0 +1,115 @@
+<template>
+  <div class="container">
+    <div
+      v-if="isLoading"
+      class="load-indicator"
+    />
+    <div v-else>
+      <form class="email-form" @submit.prevent="submitEmail">
+        <label for="email">Email:</label>
+        <input type="email" id="email" v-model="email" required>
+        <button class="btn btn-secondary btn-sm" type="submit">Invite</button>
+      </form>
+
+       <div v-if="inviteStatus === 'SENT'" class="invite-sent-message">
+        <b>Invitation Sent!</b>
+        <p>Thank you for inviting your friend. They will receive an invitation shortly.</p>
+      </div>
+
+      <div v-if="fetchingError" class="error-message">
+        <b>Oops! An error occurred.</b>
+        <p>{{ fetchingError }}</p>
+      </div>
+    </div>
+  </div>
+</template>
+
+
+<script>
+import {mapActions, mapGetters} from "vuex";
+
+export default {
+  name: 'InvitePage',
+  components: {},
+  data() {
+    return {
+      email: '',
+      message: '',
+    };
+
+  },
+  computed: {
+    ...mapGetters(['fetchingError', 'isLoading', 'inviteStatus']),
+  },
+  mounted() {
+        this.$store.commit('inviteStatusReset', 'INIT');
+  },
+  methods: {
+    ...mapActions(['crudCreate']),
+    submitEmail() {
+      console.log('Submitting registration link to email:', this.email);
+      this.$store.commit('inviteStatusReset', 'INIT');
+
+      this.crudCreate({
+        path: '/api/invite/',
+        mutation: 'inviteLinkSent',
+        parameters: {
+          email: this.email,
+        },
+      });
+    },
+  },
+};
+</script>
+
+<style scoped>
+
+
+.email-form {
+  max-width: 400px;
+  padding: 20px;
+  background-color: #f8f8f8;
+  border-radius: 8px;
+  box-shadow: 0 0 10px rgba(0, 0, 0, 0.1);
+}
+
+label {
+  display: block;
+  margin-bottom: 8px;
+}
+
+input {
+  width: 100%;
+  padding: 10px;
+  margin-bottom: 16px;
+  border: 1px solid #ccc;
+  border-radius: 4px;
+}
+
+.invite-sent-message {
+  max-width: 400px;
+  margin-top: 20px;
+  padding: 15px;
+  background-color: #dff0d8;
+  border: 1px solid #d6e9c6;
+  border-radius: 4px;
+  color: #3c763d;
+}
+
+.error-message {
+  max-width: 400px;
+  margin-top: 20px;
+  padding: 15px;
+  background-color: #f2dede;
+  border: 1px solid #ebccd1;
+  border-radius: 4px;
+  color: #a94442;
+}
+
+.error-message b {
+  display: block;
+  margin-bottom: 8px;
+  font-weight: bold;
+  color: #a94442;
+}
+</style>

From 22a97a8e50a83d26dba17a19477e35823e6ddc3e Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Fri, 22 Dec 2023 18:14:56 +0500
Subject: [PATCH 26/36] continue working on a task

---
 backend/src/application/schemas.py            |   8 +
 backend/src/application/urls.py               |   2 +-
 backend/src/application/views.py              |  70 ++++++++-
 backend/src/database/models.py                |  10 ++
 ...5d78287e_add_registration_request_table.py |  35 +++++
 .../templates/team_member_registration.html   | 143 ++++++++++++++++++
 6 files changed, 261 insertions(+), 7 deletions(-)
 create mode 100644 backend/src/migrations/versions/55585d78287e_add_registration_request_table.py
 create mode 100644 backend/src/templates/team_member_registration.html

diff --git a/backend/src/application/schemas.py b/backend/src/application/schemas.py
index c559273f..23e0fd7c 100644
--- a/backend/src/application/schemas.py
+++ b/backend/src/application/schemas.py
@@ -144,3 +144,11 @@ class ChangeProposal2StatusRequestSchema(Schema):
 
 class InviteUserRequestSchema(Schema):
     email = fields.Email(allow_none=False, required=True)
+
+
+class RegistrationRequestSchema(Schema):
+    last_name = fields.String(required=False, allow_none=True)
+    first_name = fields.String(required=False, allow_none=True)
+    middle_name = fields.String(required=False, allow_none=True)
+    username = fields.String(required=True, validate=validate.Length(min=1))
+    password = fields.String(required=True, validate=validate.Length(min=1))
diff --git a/backend/src/application/urls.py b/backend/src/application/urls.py
index cb3d515c..fb625caf 100644
--- a/backend/src/application/urls.py
+++ b/backend/src/application/urls.py
@@ -59,5 +59,5 @@
     "/invite/", view_func=views.InviteUser.as_view("invite_user")
 )
 public_blueprint.add_url_rule(
-    "/team_member_registration/", view_func=views.TeamMemberRegistrationPage.as_view("team_member_registration_page")
+    "/team_member_registration/<uuid>/", view_func=views.TeamMemberRegistrationPage.as_view("team_member_registration_page")
 )
diff --git a/backend/src/application/views.py b/backend/src/application/views.py
index d45aca90..6834ca89 100644
--- a/backend/src/application/views.py
+++ b/backend/src/application/views.py
@@ -35,7 +35,7 @@
 from src.database.generated_models import Manager, FreelancerSkill, Questions, \
     FreelancersQuestionsAnswers, Candidate, CandidateSkill
 from src.database.generated_models import Skill, SkillCategory
-from src.database.models import Application, Proposal, Proposal2StatusRel, ProposalQuestionAnswer
+from src.database.models import Application, Proposal, Proposal2StatusRel, ProposalQuestionAnswer, RegistrationRequest
 from src.database.wrapped_models import Freelancer, User
 from src.database.wrapped_schemas import without_id
 
@@ -181,7 +181,12 @@ def post(self):
 
     @staticmethod
     def send_invitation_email(email):
-        registration_link = url_for('public_blueprint.team_member_registration_page', _external=True)
+        registration_request = RegistrationRequest(email=email)
+        db.session.add(registration_request)
+        db.session.commit()
+
+        uuid = registration_request.uuid
+        registration_link = url_for('public_blueprint.team_member_registration_page', uuid=uuid, _external=True)
 
         subject = "Invitation to Register"
         body = f"""Hello!
@@ -208,11 +213,64 @@ def send_invitation_email(email):
 
 
 class TeamMemberRegistrationPage(MethodView):
-    methods = ["GET"]
+    methods = ["GET", "POST"]
 
-    def get(self):
-        # TODO:
-        return render_template("team_member_registratrion.html")
+    def get(self, uuid):
+        registration_request = RegistrationRequest.query.filter_by(uuid=uuid).first()
+        if not registration_request:
+            return jsonify({"error": "Registration request not found!"}), 404
+
+        if not registration_request.active:
+            return jsonify({"error": "Registration request has already been processed!"}), 404
+
+        return render_template("team_member_registration.html", uuid=uuid)
+
+    def post(self, uuid):
+        registration_request = RegistrationRequest.query.filter_by(uuid=uuid).first()
+        if not registration_request:
+            return jsonify({"error": "Registration request not found!"}), 404
+
+        if not registration_request.active:
+            return jsonify({"error": "Registration request has already been processed!"}), 404
+
+        try:
+            data = schemas.RegistrationRequestSchema().load(request.json)
+        except schemas.VALIDATION_EXCEPTIONS as error:
+            return jsonify({"error": str(error)}), 404
+
+        if User.query.filter(func.lower(User.email) == func.lower(registration_request.email)).count():
+            return jsonify({"error": "This user's email is already occupied, try another please."}), 404
+
+        try:
+            user = User.create_user(email=registration_request.email,
+                                    username=data['username'],
+                                    password=data['password'],
+                                    first_name=data['first_name'],
+                                    last_name=data['last_name'],
+                                    middle_name=data['middle_name'])
+        except exceptions.BadRequest as exc:
+            return jsonify({"error": exc.message}), 404
+
+        manager_code = uuid.replace("-", "")[0:32]
+
+        try:
+            manager = Manager(code=manager_code, name=f"{data['username']} manager")
+            db.session.add(manager)
+            # flushing the session ensures that the primary key of the manager is available for use in
+            # the user.manager_id field
+            db.session.flush()
+
+            # Associate manager with user
+            user.manager_id = manager.id
+            db.session.add(user)
+
+            registration_request.active = False
+            db.session.add(registration_request)
+            db.session.commit()
+        except Exception as exc:
+            return jsonify({"error": str(exc)}), 404
+
+        return jsonify({"message": "Registration successful!"}), 201
 
 
 class GenerateProposal(MethodView):
diff --git a/backend/src/database/models.py b/backend/src/database/models.py
index a0aae2a4..d214aaed 100644
--- a/backend/src/database/models.py
+++ b/backend/src/database/models.py
@@ -3,6 +3,8 @@
 from typing import Final
 
 from alembic_utils.pg_view import PGView
+from sqlalchemy_utils import UUIDType
+import uuid
 
 from src.application.enums import ProposalStatus
 from src.database.db import db
@@ -155,6 +157,14 @@ class ReadByUser(db.Model):
     entity_table = db.Column(db.String(32), index=True)
 
 
+class RegistrationRequest(db.Model):
+    __tablename__ = "registration_request"
+    id = db.Column(db.Integer, primary_key=True, autoincrement=True)
+    email = db.Column(db.String(64), nullable=False)
+    uuid = db.Column(UUIDType(binary=False), nullable=False, unique=True, default=uuid.uuid4)
+    active = db.Column(db.Boolean, nullable=False, default=True)
+
+
 class PGViewModel(db.Model):
     __table_args__ = {"info": {"is_view": True}}
     __view_kind__ = PGView  # May be PGMaterializedView too
diff --git a/backend/src/migrations/versions/55585d78287e_add_registration_request_table.py b/backend/src/migrations/versions/55585d78287e_add_registration_request_table.py
new file mode 100644
index 00000000..03d4fb5e
--- /dev/null
+++ b/backend/src/migrations/versions/55585d78287e_add_registration_request_table.py
@@ -0,0 +1,35 @@
+"""add registration request table
+
+Revision ID: 55585d78287e
+Revises: 3f24cf24019b
+Create Date: 2023-12-21 18:04:23.563250
+
+"""
+from alembic import op
+import sqlalchemy as sa
+import sqlalchemy_utils.types.uuid
+
+# revision identifiers, used by Alembic.
+revision = '55585d78287e'
+down_revision = '3f24cf24019b'
+branch_labels = None
+depends_on = None
+
+
+def upgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    op.create_table('registration_request',
+    sa.Column('id', sa.Integer(), autoincrement=True, nullable=False),
+    sa.Column('email', sa.String(length=64), nullable=False),
+    sa.Column('uuid', sqlalchemy_utils.types.uuid.UUIDType(), nullable=False),
+    sa.Column('active', sa.Boolean(), nullable=False),
+    sa.PrimaryKeyConstraint('id'),
+    sa.UniqueConstraint('uuid')
+    )
+    # ### end Alembic commands ###
+
+
+def downgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    op.drop_table('registration_request')
+    # ### end Alembic commands ###
diff --git a/backend/src/templates/team_member_registration.html b/backend/src/templates/team_member_registration.html
new file mode 100644
index 00000000..0af5fa0b
--- /dev/null
+++ b/backend/src/templates/team_member_registration.html
@@ -0,0 +1,143 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>User Registration Form</title>
+    <style>
+        body {
+            font-family: Arial, sans-serif;
+        }
+
+        h1 {
+            text-align: center;
+        }
+
+        form {
+            max-width: 600px;
+            margin: auto;
+        }
+
+        label {
+            display: block;
+            margin-bottom: 8px;
+        }
+
+        input, select {
+            width: 100%;
+            padding: 8px;
+            margin-bottom: 16px;
+            box-sizing: border-box;
+        }
+
+        button {
+            background-color: #4CAF50;
+            color: white;
+            padding: 10px 15px;
+            border: none;
+            border-radius: 4px;
+            cursor: pointer;
+        }
+
+        button:hover {
+            background-color: #45a049;
+        }
+
+        #errorContainer {
+            color: red;
+            text-align: center;
+        }
+    </style>
+</head>
+<body>
+
+<h1>User Registration</h1>
+
+<form id="registrationForm">
+    <label for="username">Username (required)</label>
+    <input type="text" id="username" name="username">
+
+    <label for="password">Password (required)</label>
+    <input type="text" id="password" name="password">
+
+    <label for="firstname">First Name (optional)</label>
+    <input type="text" id="firstname" name="firstname">
+
+    <label for="lastname">Last Name (optional)</label>
+    <input type="text" id="lastname" name="lastname">
+
+    <label for="middlename">Middle Name (optional)</label>
+    <input type="text" id="middlename" name="middlename">
+
+
+    <button type="button" id="submit" onclick="submitRegistration()">Submit</button>
+</form>
+
+<div id="errorContainer"></div>
+
+<script>
+    function disableForm() {
+        // Disable all input elements in the form
+        const formElements = document.getElementById('registrationForm').elements;
+        for (let i = 0; i < formElements.length; i++) {
+            formElements[i].disabled = true;
+        }
+        // Disable the submit button separately
+        document.getElementById('submit').disabled = true;
+    }
+
+    async function submitRegistration() {
+        const errorContainer = document.getElementById('errorContainer');
+        const button = document.getElementById("submit");
+
+        button.disabled = true;
+        button.textContent = "Submitting...";
+
+        const formData = {
+            username: document.getElementById('username').value,
+            password: document.getElementById('password').value,
+            first_name: document.getElementById('firstname').value,
+            last_name: document.getElementById('lastname').value,
+            middle_name: document.getElementById('middlename').value,
+        };
+
+        try {
+            const response = await fetch('/public/team_member_registration/{{uuid}}/', {
+                method: 'POST',
+                headers: {
+                    'Content-Type': 'application/json'
+                },
+                body: JSON.stringify(formData)
+            });
+
+            if (!response.ok) {
+                const errorObject = await response.json();
+                const errorMessage = errorObject.error;
+                throw new Error(errorMessage);
+            }
+
+            const data = await response.json();
+            console.log(data);
+
+            // Update UI for successful response
+            button.textContent = "Your registration has been processed. Thank you!";
+            button.style.opacity = "0.6";
+            button.style.pointerEvents = "none";
+            button.style.cursor = "default";
+            button.style.transition = "none";
+
+            disableForm();
+        } catch (error) {
+            console.error('Error:', error.message);
+
+            // Display the error message to the user
+            errorContainer.textContent = 'An error occurred: ' + error.message;
+        } finally {
+            button.disabled = false;
+            button.textContent = "Submit";
+        }
+    }
+</script>
+
+</body>
+</html>

From d62d923aa266d71b60856655fb40ebd74c439cce Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Wed, 27 Dec 2023 12:40:26 +0500
Subject: [PATCH 27/36] add email settings

---
 backend/Dockerfile | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/backend/Dockerfile b/backend/Dockerfile
index fcef6c4e..522c3338 100644
--- a/backend/Dockerfile
+++ b/backend/Dockerfile
@@ -8,6 +8,15 @@ ENV FLASK_DEBUG=true
 ENV DB_HOST=db:5434
 ENV SECRET_KEY=muiguyoNoo0kaip1nah3phoi1ouFeuc5aexeeKai2aeY9pohqu5Enohthohng4to
 
+# email settings below
+ENV MAIL_SERVER="localhost"
+ENV MAIL_PORT=465
+ENV MAIL_USERNAME=""
+ENV MAIL_PASSWORD=""
+ENV MAIL_DEFAULT_SENDER=""
+ENV MAIL_USE_TLS=false
+ENV MAIL_USE_SSL=true
+
 COPY requirements.txt requirements.txt
 COPY requirements.dev.txt requirements.dev.txt
 RUN \

From 8b6c5f6a2ee9dae2490896b20a0d981adcdd6d28 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Wed, 27 Dec 2023 12:40:52 +0500
Subject: [PATCH 28/36] minor changes

---
 backend/src/application/views.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/backend/src/application/views.py b/backend/src/application/views.py
index 6834ca89..2ef6ebec 100644
--- a/backend/src/application/views.py
+++ b/backend/src/application/views.py
@@ -201,8 +201,8 @@ def send_invitation_email(email):
             current_app.logger.debug(f"Sending invitation email to {email}...")
             mail.send(message)
             current_app.logger.debug(f"Invitation email sent")
-        except Exception as e:
-            current_app.logger.error(f"Error sending invitation email to {email}: {str(e)}")
+        except Exception as exc:
+            current_app.logger.error(f"Error sending invitation email to {email}: {str(exc)}")
             raise exceptions.BadRequest(
                 f"Unable to send email to {email}."
             )
@@ -251,7 +251,7 @@ def post(self, uuid):
         except exceptions.BadRequest as exc:
             return jsonify({"error": exc.message}), 404
 
-        manager_code = uuid.replace("-", "")[0:32]
+        manager_code = uuid.replace("-", "")[:32]
 
         try:
             manager = Manager(code=manager_code, name=f"{data['username']} manager")

From 1a3fe6d261de702d154b69c6646ed411e7bfae98 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Wed, 27 Dec 2023 17:12:03 +0500
Subject: [PATCH 29/36] resolve merge conflicts

---
 backend/requirements.txt | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/backend/requirements.txt b/backend/requirements.txt
index b9ad6539..f1a4f6c1 100644
--- a/backend/requirements.txt
+++ b/backend/requirements.txt
@@ -20,5 +20,7 @@ pyjwt == 2.6.0
 gspread == 5.7.2
 sqlalchemy-utils == 0.39.0
 werkzeug == 2.3.7
+gevent
+psycogreen
 flask_oauthlib==0.9.6
-Flask-Mail == 0.9.1
\ No newline at end of file
+Flask-Mail == 0.9.1

From c24fe445a20827eb2f53693cdbc802448a4a9caa Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Thu, 28 Dec 2023 15:23:18 +0500
Subject: [PATCH 30/36] improve invitation email template

---
 backend/src/application/views.py | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/backend/src/application/views.py b/backend/src/application/views.py
index 2ef6ebec..8afd6fab 100644
--- a/backend/src/application/views.py
+++ b/backend/src/application/views.py
@@ -189,10 +189,11 @@ def send_invitation_email(email):
         registration_link = url_for('public_blueprint.team_member_registration_page', uuid=uuid, _external=True)
 
         subject = "Invitation to Register"
-        body = f"""Hello!
-                   You have been invited to register on our website.
-                   Follow the link to complete your registration: {registration_link}
-                """
+        body = f"""
+        Hello!
+        You have been invited to register on our website.
+        Follow the link to complete your registration: {registration_link}
+        """
 
         message = Message(subject, recipients=[email], body=body)
 

From be69ef4103bc18bb46d1eb28e188fb8c12dc6650 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Thu, 28 Dec 2023 15:26:22 +0500
Subject: [PATCH 31/36] UI fixes

---
 backend/src/templates/team_member_registration.html | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/backend/src/templates/team_member_registration.html b/backend/src/templates/team_member_registration.html
index 0af5fa0b..d50e1d35 100644
--- a/backend/src/templates/team_member_registration.html
+++ b/backend/src/templates/team_member_registration.html
@@ -126,15 +126,17 @@ <h1>User Registration</h1>
             button.style.cursor = "default";
             button.style.transition = "none";
 
+            errorContainer.textContent = "";
+
             disableForm();
         } catch (error) {
             console.error('Error:', error.message);
 
             // Display the error message to the user
             errorContainer.textContent = 'An error occurred: ' + error.message;
+            button.textContent = "Submit";
         } finally {
             button.disabled = false;
-            button.textContent = "Submit";
         }
     }
 </script>

From 89cb1fdc7133bff686787ad44fd154df8af41b84 Mon Sep 17 00:00:00 2001
From: "Sergey A." <varnie29a@mail.ru>
Date: Thu, 28 Dec 2023 16:07:14 +0500
Subject: [PATCH 32/36] minor improvements

---
 backend/src/application/views.py                    | 3 ++-
 backend/src/templates/team_member_registration.html | 2 +-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/backend/src/application/views.py b/backend/src/application/views.py
index 8afd6fab..db4ba505 100644
--- a/backend/src/application/views.py
+++ b/backend/src/application/views.py
@@ -224,7 +224,8 @@ def get(self, uuid):
         if not registration_request.active:
             return jsonify({"error": "Registration request has already been processed!"}), 404
 
-        return render_template("team_member_registration.html", uuid=uuid)
+        registration_link = url_for('public_blueprint.team_member_registration_page', uuid=uuid)
+        return render_template("team_member_registration.html", registration_link=registration_link)
 
     def post(self, uuid):
         registration_request = RegistrationRequest.query.filter_by(uuid=uuid).first()
diff --git a/backend/src/templates/team_member_registration.html b/backend/src/templates/team_member_registration.html
index d50e1d35..b8f635df 100644
--- a/backend/src/templates/team_member_registration.html
+++ b/backend/src/templates/team_member_registration.html
@@ -102,7 +102,7 @@ <h1>User Registration</h1>
         };
 
         try {
-            const response = await fetch('/public/team_member_registration/{{uuid}}/', {
+            const response = await fetch('{{registration_link}}', {
                 method: 'POST',
                 headers: {
                     'Content-Type': 'application/json'

From 9b940a43adb168760697e10f3b5e69cf053ca7b3 Mon Sep 17 00:00:00 2001
From: Khvatov Dmitry <dimax4@gmail.com>
Date: Mon, 1 Jan 2024 21:14:17 +0100
Subject: [PATCH 33/36] Keep env in .env

---
 .env.example            | 13 +++++++++++++
 backend/Dockerfile      | 14 --------------
 client/.env.development |  1 +
 client/.env.production  |  1 +
 client/Dockerfile.dev   |  2 +-
 client/src/config.js    |  6 ++++--
 docker-compose.dev.yml  |  1 +
 docker-compose.yml      |  1 +
 8 files changed, 22 insertions(+), 17 deletions(-)
 create mode 100644 .env.example
 create mode 100644 client/.env.development
 create mode 100644 client/.env.production

diff --git a/.env.example b/.env.example
new file mode 100644
index 00000000..692c4aac
--- /dev/null
+++ b/.env.example
@@ -0,0 +1,13 @@
+FLASK_APP=app.py
+FLASK_RUN_HOST=0.0.0.0
+FLASK_DEBUG=true
+DB_HOST=db:5434
+SECRET_KEY=muiguyoNoo0kaip1nah3phoi1ouFeuc5aexeeKai2aeY9pohqu5Enohthohng4to
+
+MAIL_SERVER="localhost"
+MAIL_PORT=465
+MAIL_USERNAME=""
+MAIL_PASSWORD=""
+MAIL_DEFAULT_SENDER=""
+MAIL_USE_TLS=false
+MAIL_USE_SSL=true
diff --git a/backend/Dockerfile b/backend/Dockerfile
index 8a61eeb6..ac971920 100644
--- a/backend/Dockerfile
+++ b/backend/Dockerfile
@@ -2,20 +2,6 @@ FROM python:3.9-alpine
 WORKDIR /app/backend
 
 ARG REQUIREMENTS_FILE
-ENV FLASK_APP=app.py
-ENV FLASK_RUN_HOST=0.0.0.0
-ENV FLASK_DEBUG=true
-ENV DB_HOST=db:5434
-ENV SECRET_KEY=muiguyoNoo0kaip1nah3phoi1ouFeuc5aexeeKai2aeY9pohqu5Enohthohng4to
-
-# email settings below
-ENV MAIL_SERVER="localhost"
-ENV MAIL_PORT=465
-ENV MAIL_USERNAME=""
-ENV MAIL_PASSWORD=""
-ENV MAIL_DEFAULT_SENDER=""
-ENV MAIL_USE_TLS=false
-ENV MAIL_USE_SSL=true
 
 COPY requirements.txt requirements.txt
 COPY requirements.dev.txt requirements.dev.txt
diff --git a/client/.env.development b/client/.env.development
new file mode 100644
index 00000000..83a40b18
--- /dev/null
+++ b/client/.env.development
@@ -0,0 +1 @@
+VUE_APP_GOOGLE_CLIENT_ID=266167116264-5kvgj0uelncfoogrmidgfckk2tc45ot2.apps.googleusercontent.com
diff --git a/client/.env.production b/client/.env.production
new file mode 100644
index 00000000..83a40b18
--- /dev/null
+++ b/client/.env.production
@@ -0,0 +1 @@
+VUE_APP_GOOGLE_CLIENT_ID=266167116264-5kvgj0uelncfoogrmidgfckk2tc45ot2.apps.googleusercontent.com
diff --git a/client/Dockerfile.dev b/client/Dockerfile.dev
index a4983e17..f3b1c77d 100644
--- a/client/Dockerfile.dev
+++ b/client/Dockerfile.dev
@@ -7,4 +7,4 @@ RUN npm install
 RUN npm install @vue/cli-service
 
 COPY . .
-CMD ./node_modules/.bin/vue-cli-service serve --port 8080
+CMD ./node_modules/.bin/vue-cli-service serve --port 8080 --mode development
diff --git a/client/src/config.js b/client/src/config.js
index fa9632e9..5a52a9a8 100644
--- a/client/src/config.js
+++ b/client/src/config.js
@@ -1,6 +1,8 @@
+console.log("process.env.VUE_APP_GOOGLE_CLIENT_ID", process.env.VUE_APP_GOOGLE_CLIENT_ID);
+
+// noinspection JSUnresolvedReference
 const config = {
-    //TODO: populate if needed
-  clientId: "put-here-your-client_id-please",
+  clientId: process.env.VUE_APP_GOOGLE_CLIENT_ID,
 };
 
 export {config};
diff --git a/docker-compose.dev.yml b/docker-compose.dev.yml
index 9136b3fc..085e64cb 100644
--- a/docker-compose.dev.yml
+++ b/docker-compose.dev.yml
@@ -28,6 +28,7 @@ services:
       - '5000:5000'
     depends_on:
       - db
+    env_file: .env
     environment:
       FLASK_DEBUG: true
 
diff --git a/docker-compose.yml b/docker-compose.yml
index 2f37cc83..e01bf014 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -21,6 +21,7 @@ services:
     depends_on:
       - db
     command: 'gunicorn --bind 0.0.0.0:5000 app:app --timeout 600 -w 3 --worker-class gevent'
+    env_file: .env
 
   db:
     container_name: silver-bassoon-db

From 539b99e2ffc61b4422b7a24cdb41b26eadc4aa5a Mon Sep 17 00:00:00 2001
From: Khvatov Dmitry <dimax4@gmail.com>
Date: Mon, 1 Jan 2024 21:49:00 +0100
Subject: [PATCH 34/36] Invite user bugfixes

---
 backend/src/application/views.py              | 17 +++++++-------
 .../templates/team_member_registration.html   | 14 +-----------
 client/src/store/modules/loading.js           | 22 +++++++++++--------
 3 files changed, 23 insertions(+), 30 deletions(-)

diff --git a/backend/src/application/views.py b/backend/src/application/views.py
index db4ba505..7b15944b 100644
--- a/backend/src/application/views.py
+++ b/backend/src/application/views.py
@@ -6,11 +6,11 @@
 from collections import namedtuple
 from datetime import datetime
 from json import JSONDecodeError
-from flask_mail import Message
 
 import marshmallow
 from flask import current_app, g, jsonify, request, send_file, render_template, url_for
 from flask.views import MethodView
+from flask_mail import Message
 from marshmallow import EXCLUDE, ValidationError
 from sqlalchemy import Integer, distinct, func, or_, text, desc, asc
 from sqlalchemy.orm import joinedload, aliased
@@ -38,6 +38,7 @@
 from src.database.models import Application, Proposal, Proposal2StatusRel, ProposalQuestionAnswer, RegistrationRequest
 from src.database.wrapped_models import Freelancer, User
 from src.database.wrapped_schemas import without_id
+from src.utils import generate_password
 
 PrepareAppDataResult = namedtuple("PrepareAppDataResult", ["app", "errors"])
 
@@ -176,6 +177,10 @@ def post(self):
             raise exceptions.BadRequest(str(error))
 
         email = data["email"]
+
+        if User.query.filter(func.lower(User.email) == func.lower(email)).count():
+            return jsonify({"message": "This user's email is already occupied, try another please."}), 500
+
         self.send_invitation_email(email)
         return {"message": f"Invitation email sent to {email}"}, 200
 
@@ -240,16 +245,12 @@ def post(self, uuid):
         except schemas.VALIDATION_EXCEPTIONS as error:
             return jsonify({"error": str(error)}), 404
 
-        if User.query.filter(func.lower(User.email) == func.lower(registration_request.email)).count():
-            return jsonify({"error": "This user's email is already occupied, try another please."}), 404
-
         try:
             user = User.create_user(email=registration_request.email,
-                                    username=data['username'],
-                                    password=data['password'],
+                                    username=registration_request.email,
+                                    password=generate_password(),
                                     first_name=data['first_name'],
-                                    last_name=data['last_name'],
-                                    middle_name=data['middle_name'])
+                                    last_name=data['last_name'])
         except exceptions.BadRequest as exc:
             return jsonify({"error": exc.message}), 404
 
diff --git a/backend/src/templates/team_member_registration.html b/backend/src/templates/team_member_registration.html
index b8f635df..16564b2a 100644
--- a/backend/src/templates/team_member_registration.html
+++ b/backend/src/templates/team_member_registration.html
@@ -54,11 +54,6 @@
 <h1>User Registration</h1>
 
 <form id="registrationForm">
-    <label for="username">Username (required)</label>
-    <input type="text" id="username" name="username">
-
-    <label for="password">Password (required)</label>
-    <input type="text" id="password" name="password">
 
     <label for="firstname">First Name (optional)</label>
     <input type="text" id="firstname" name="firstname">
@@ -66,10 +61,6 @@ <h1>User Registration</h1>
     <label for="lastname">Last Name (optional)</label>
     <input type="text" id="lastname" name="lastname">
 
-    <label for="middlename">Middle Name (optional)</label>
-    <input type="text" id="middlename" name="middlename">
-
-
     <button type="button" id="submit" onclick="submitRegistration()">Submit</button>
 </form>
 
@@ -94,11 +85,8 @@ <h1>User Registration</h1>
         button.textContent = "Submitting...";
 
         const formData = {
-            username: document.getElementById('username').value,
-            password: document.getElementById('password').value,
             first_name: document.getElementById('firstname').value,
-            last_name: document.getElementById('lastname').value,
-            middle_name: document.getElementById('middlename').value,
+            last_name: document.getElementById('lastname').value
         };
 
         try {
diff --git a/client/src/store/modules/loading.js b/client/src/store/modules/loading.js
index 7607efe9..fe4c607e 100644
--- a/client/src/store/modules/loading.js
+++ b/client/src/store/modules/loading.js
@@ -71,16 +71,20 @@ export default {
                 else ctx.commit(mutation, data);
                 ctx.commit('fetchingError', '');
             } catch (e) {
-              console.log("ERROR!")
-                if (e.response?.status === 401) ctx.dispatch('logout');
-
-                if (e?.response?.data?.message)
-                    ctx.commit('fetchingError', e.response.data.message);
-                else if (e.message) ctx.commit('fetchingError', e.message);
-                else ctx.commit('fetchingError', e.toString());
+              if (e.response?.status === 401) {
+                ctx.dispatch('logout');
+              }
+              if (e?.response?.data?.message) {
+                ctx.commit('fetchingError', e.response.data.message);
+              } else if (e.message) {
+                ctx.commit('fetchingError', e.message);
+              } else {
+                ctx.commit('fetchingError', e.toString());
+              }
             } finally {
-                if (!parameters?.suppressLoading)
-                    ctx.commit('isLoading', false);
+              if (!parameters?.suppressLoading) {
+                ctx.commit('isLoading', false);
+              }
             }
         },
 

From e6d491689ce3f29bf82944374ef73e637fdb2dde Mon Sep 17 00:00:00 2001
From: Khvatov Dmitry <dimax4@gmail.com>
Date: Mon, 1 Jan 2024 21:52:47 +0100
Subject: [PATCH 35/36] Fix user invite schema

---
 backend/src/application/schemas.py | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/backend/src/application/schemas.py b/backend/src/application/schemas.py
index 23e0fd7c..17486fe9 100644
--- a/backend/src/application/schemas.py
+++ b/backend/src/application/schemas.py
@@ -7,16 +7,16 @@
     validate,
     validates_schema,
 )
+from werkzeug.exceptions import BadRequest
+
 from src.application.enums import GenerateProposalStyle, ProposalStatus
 from src.application.marshmallow_ma import ma
 from src.database import models
-from werkzeug.exceptions import BadRequest
 
 # pylint: disable=invalid-name
 
 VALIDATION_EXCEPTIONS = (BadRequest, TypeError, ValueError, ValidationError)
 
-
 DATE_FORMAT = "%Y-%m-%d"
 
 
@@ -149,6 +149,3 @@ class InviteUserRequestSchema(Schema):
 class RegistrationRequestSchema(Schema):
     last_name = fields.String(required=False, allow_none=True)
     first_name = fields.String(required=False, allow_none=True)
-    middle_name = fields.String(required=False, allow_none=True)
-    username = fields.String(required=True, validate=validate.Length(min=1))
-    password = fields.String(required=True, validate=validate.Length(min=1))

From 5c7afc85ba8cf7bddebed09dc74b75b9874b2780 Mon Sep 17 00:00:00 2001
From: Khvatov Dmitry <dimax4@gmail.com>
Date: Mon, 1 Jan 2024 22:15:12 +0100
Subject: [PATCH 36/36] Various bugfixes + logging

---
 backend/src/application/views.py              | 14 +++++++++--
 backend/src/database/models.py                | 25 +++++++++++--------
 .../templates/team_member_registration.html   | 18 +++++++++++++
 3 files changed, 44 insertions(+), 13 deletions(-)

diff --git a/backend/src/application/views.py b/backend/src/application/views.py
index 7b15944b..f2f0a0b8 100644
--- a/backend/src/application/views.py
+++ b/backend/src/application/views.py
@@ -223,10 +223,13 @@ class TeamMemberRegistrationPage(MethodView):
 
     def get(self, uuid):
         registration_request = RegistrationRequest.query.filter_by(uuid=uuid).first()
+        current_app.logger.info(f"Registration request: {registration_request}")
         if not registration_request:
+            current_app.logger.error(f"Registration request not found: {uuid}")
             return jsonify({"error": "Registration request not found!"}), 404
 
         if not registration_request.active:
+            current_app.logger.error(f"Registration request has already been processed: {uuid}")
             return jsonify({"error": "Registration request has already been processed!"}), 404
 
         registration_link = url_for('public_blueprint.team_member_registration_page', uuid=uuid)
@@ -234,15 +237,19 @@ def get(self, uuid):
 
     def post(self, uuid):
         registration_request = RegistrationRequest.query.filter_by(uuid=uuid).first()
+        current_app.logger.info(f"Registration request: {registration_request}")
         if not registration_request:
+            current_app.logger.error(f"Registration request not found: {uuid}")
             return jsonify({"error": "Registration request not found!"}), 404
 
         if not registration_request.active:
+            current_app.logger.error(f"Registration request has already been processed: {uuid}")
             return jsonify({"error": "Registration request has already been processed!"}), 404
 
         try:
             data = schemas.RegistrationRequestSchema().load(request.json)
         except schemas.VALIDATION_EXCEPTIONS as error:
+            current_app.logger.error(f"Error validating registration request: {str(error)}")
             return jsonify({"error": str(error)}), 404
 
         try:
@@ -252,12 +259,13 @@ def post(self, uuid):
                                     first_name=data['first_name'],
                                     last_name=data['last_name'])
         except exceptions.BadRequest as exc:
+            current_app.logger.error(f"Error creating user: {str(exc)}")
             return jsonify({"error": exc.message}), 404
 
         manager_code = uuid.replace("-", "")[:32]
 
         try:
-            manager = Manager(code=manager_code, name=f"{data['username']} manager")
+            manager = Manager(code=manager_code, name=f"{data['first_name']} {data['last_name']}")
             db.session.add(manager)
             # flushing the session ensures that the primary key of the manager is available for use in
             # the user.manager_id field
@@ -271,8 +279,10 @@ def post(self, uuid):
             db.session.add(registration_request)
             db.session.commit()
         except Exception as exc:
-            return jsonify({"error": str(exc)}), 404
+            current_app.logger.error(f"Error creating manager for user: {str(exc)}")
+            return jsonify({"error": str(exc)}), 500
 
+        current_app.logger.info(f"User {user.username} created successfully")
         return jsonify({"message": "Registration successful!"}), 201
 
 
diff --git a/backend/src/database/models.py b/backend/src/database/models.py
index d214aaed..dc7ce845 100644
--- a/backend/src/database/models.py
+++ b/backend/src/database/models.py
@@ -1,10 +1,10 @@
 from __future__ import annotations
 
+import uuid
 from typing import Final
 
 from alembic_utils.pg_view import PGView
 from sqlalchemy_utils import UUIDType
-import uuid
 
 from src.application.enums import ProposalStatus
 from src.database.db import db
@@ -53,19 +53,19 @@
     "job_id": lambda: db.Column(db.String(32), nullable=True, index=True),
 }
 
-_PROPOSAL_FIELDS: Final = {k: v for k, v in _APPLICATION_FIELDS.items() if k not in {"status", "vendorUID", "vendorOrgUID",
-                                                                                     "openingUID", "modifiedByUserUID",
-                                                                                     "dashroomUID", "vendorSubOrgUID",
-                                                                                     "applicationUID"}} | {
-    "connects_count": lambda: db.Column(db.Integer, nullable=True),
-    "pipeline_id": lambda: db.Column(db.Integer, nullable=True),
-    "time_in_ms": lambda: db.Column(db.Integer, nullable=True),
-    "job_id": lambda: db.Column(db.String(32), nullable=False, index=True)
-}
+_PROPOSAL_FIELDS: Final = {k: v for k, v in _APPLICATION_FIELDS.items() if
+                           k not in {"status", "vendorUID", "vendorOrgUID",
+                                     "openingUID", "modifiedByUserUID",
+                                     "dashroomUID", "vendorSubOrgUID",
+                                     "applicationUID"}} | {
+                              "connects_count": lambda: db.Column(db.Integer, nullable=True),
+                              "pipeline_id": lambda: db.Column(db.Integer, nullable=True),
+                              "time_in_ms": lambda: db.Column(db.Integer, nullable=True),
+                              "job_id": lambda: db.Column(db.String(32), nullable=False, index=True)
+                          }
 
 
 class Application(db.Model):
-
     locals().update({k: v() for k, v in _APPLICATION_FIELDS.items()})
     __tablename__ = "applications"
 
@@ -164,6 +164,9 @@ class RegistrationRequest(db.Model):
     uuid = db.Column(UUIDType(binary=False), nullable=False, unique=True, default=uuid.uuid4)
     active = db.Column(db.Boolean, nullable=False, default=True)
 
+    def __str__(self):
+        return f"{self.email} - {self.uuid}"
+
 
 class PGViewModel(db.Model):
     __table_args__ = {"info": {"is_view": True}}
diff --git a/backend/src/templates/team_member_registration.html b/backend/src/templates/team_member_registration.html
index 16564b2a..4a42e4b0 100644
--- a/backend/src/templates/team_member_registration.html
+++ b/backend/src/templates/team_member_registration.html
@@ -47,6 +47,13 @@
             color: red;
             text-align: center;
         }
+
+        form, #postRegistration {
+            max-width: 600px;
+            margin: auto;
+            text-align: center;
+        }
+
     </style>
 </head>
 <body>
@@ -64,6 +71,11 @@ <h1>User Registration</h1>
     <button type="button" id="submit" onclick="submitRegistration()">Submit</button>
 </form>
 
+<div id="postRegistration" style="display: none; text-align: center;">
+    <p>Your registration has been processed. Thank you!</p>
+    <a href="/">Log in to start using the app</a>
+</div>
+
 <div id="errorContainer"></div>
 
 <script>
@@ -78,6 +90,8 @@ <h1>User Registration</h1>
     }
 
     async function submitRegistration() {
+        const registrationForm = document.getElementById('registrationForm');
+        const postRegistration = document.getElementById('postRegistration');
         const errorContainer = document.getElementById('errorContainer');
         const button = document.getElementById("submit");
 
@@ -104,6 +118,10 @@ <h1>User Registration</h1>
                 throw new Error(errorMessage);
             }
 
+            // On successful registration
+            registrationForm.style.display = 'none'; // Hide the registration form
+            postRegistration.style.display = 'block'; // Show the post-registration message and link
+
             const data = await response.json();
             console.log(data);