diff --git a/.gitignore b/.gitignore
index 751513c..aa24275 100644
--- a/.gitignore
+++ b/.gitignore
@@ -19,9 +19,11 @@ app.config.timestamp_*.js
 .classpath
 *.launch
 .settings/
+tasks
 
 # Temp
 gitignore
+#*_migration_source
 
 # System Files
 .DS_Store
diff --git a/public/BlackLogo.png b/public/BlackLogo.png
new file mode 100644
index 0000000..f3d495d
Binary files /dev/null and b/public/BlackLogo.png differ
diff --git a/public/Cave/0.png b/public/Cave/0.png
new file mode 100755
index 0000000..f3258bd
Binary files /dev/null and b/public/Cave/0.png differ
diff --git a/public/Cave/1.png b/public/Cave/1.png
new file mode 100755
index 0000000..dccd408
Binary files /dev/null and b/public/Cave/1.png differ
diff --git a/public/Cave/2.png b/public/Cave/2.png
new file mode 100755
index 0000000..b0083b4
Binary files /dev/null and b/public/Cave/2.png differ
diff --git a/public/Cave/3.png b/public/Cave/3.png
new file mode 100755
index 0000000..ba83786
Binary files /dev/null and b/public/Cave/3.png differ
diff --git a/public/Cave/4.png b/public/Cave/4.png
new file mode 100755
index 0000000..afd4fbd
Binary files /dev/null and b/public/Cave/4.png differ
diff --git a/public/Cave/5.png b/public/Cave/5.png
new file mode 100755
index 0000000..2b262c7
Binary files /dev/null and b/public/Cave/5.png differ
diff --git a/public/Cave/6.png b/public/Cave/6.png
new file mode 100755
index 0000000..215888b
Binary files /dev/null and b/public/Cave/6.png differ
diff --git a/public/Cave/7.png b/public/Cave/7.png
new file mode 100755
index 0000000..5c65621
Binary files /dev/null and b/public/Cave/7.png differ
diff --git a/public/LineageIcon.png b/public/LineageIcon.png
new file mode 100644
index 0000000..27d7862
Binary files /dev/null and b/public/LineageIcon.png differ
diff --git a/public/Mirror.png b/public/Mirror.png
new file mode 100644
index 0000000..4b32edc
Binary files /dev/null and b/public/Mirror.png differ
diff --git a/public/StormyMountain/0.png b/public/StormyMountain/0.png
new file mode 100755
index 0000000..28150f6
Binary files /dev/null and b/public/StormyMountain/0.png differ
diff --git a/public/StormyMountain/1.png b/public/StormyMountain/1.png
new file mode 100755
index 0000000..de7783f
Binary files /dev/null and b/public/StormyMountain/1.png differ
diff --git a/public/StormyMountain/10.png b/public/StormyMountain/10.png
new file mode 100755
index 0000000..b272d92
Binary files /dev/null and b/public/StormyMountain/10.png differ
diff --git a/public/StormyMountain/11.png b/public/StormyMountain/11.png
new file mode 100755
index 0000000..5f0976c
Binary files /dev/null and b/public/StormyMountain/11.png differ
diff --git a/public/StormyMountain/2.png b/public/StormyMountain/2.png
new file mode 100755
index 0000000..b2a58bc
Binary files /dev/null and b/public/StormyMountain/2.png differ
diff --git a/public/StormyMountain/3.png b/public/StormyMountain/3.png
new file mode 100755
index 0000000..9f91684
Binary files /dev/null and b/public/StormyMountain/3.png differ
diff --git a/public/StormyMountain/4.png b/public/StormyMountain/4.png
new file mode 100755
index 0000000..e58d707
Binary files /dev/null and b/public/StormyMountain/4.png differ
diff --git a/public/StormyMountain/5.png b/public/StormyMountain/5.png
new file mode 100755
index 0000000..d96cb04
Binary files /dev/null and b/public/StormyMountain/5.png differ
diff --git a/public/StormyMountain/6.png b/public/StormyMountain/6.png
new file mode 100755
index 0000000..21a3830
Binary files /dev/null and b/public/StormyMountain/6.png differ
diff --git a/public/StormyMountain/7.png b/public/StormyMountain/7.png
new file mode 100755
index 0000000..55c75b1
Binary files /dev/null and b/public/StormyMountain/7.png differ
diff --git a/public/StormyMountain/8.png b/public/StormyMountain/8.png
new file mode 100755
index 0000000..d2430b9
Binary files /dev/null and b/public/StormyMountain/8.png differ
diff --git a/public/StormyMountain/9.png b/public/StormyMountain/9.png
new file mode 100755
index 0000000..790d89a
Binary files /dev/null and b/public/StormyMountain/9.png differ
diff --git a/public/StormyMountain/Stormy_Mountains_Rain.gif b/public/StormyMountain/Stormy_Mountains_Rain.gif
new file mode 100755
index 0000000..934eb79
Binary files /dev/null and b/public/StormyMountain/Stormy_Mountains_Rain.gif differ
diff --git a/public/WhiteLogo.png b/public/WhiteLogo.png
new file mode 100644
index 0000000..4309156
Binary files /dev/null and b/public/WhiteLogo.png differ
diff --git a/public/bitcoin.jpg b/public/bitcoin.jpg
new file mode 100644
index 0000000..48b1a87
Binary files /dev/null and b/public/bitcoin.jpg differ
diff --git a/public/blueprint.jpg b/public/blueprint.jpg
new file mode 100644
index 0000000..87eae4c
Binary files /dev/null and b/public/blueprint.jpg differ
diff --git a/public/blur_SH_water.jpg b/public/blur_SH_water.jpg
new file mode 100644
index 0000000..3b41cce
Binary files /dev/null and b/public/blur_SH_water.jpg differ
diff --git a/public/blur_SH_water_uncompressed.jpg b/public/blur_SH_water_uncompressed.jpg
new file mode 100644
index 0000000..8d94447
Binary files /dev/null and b/public/blur_SH_water_uncompressed.jpg differ
diff --git a/public/favicon.ico b/public/favicon.ico
index fb282da..f384885 100644
Binary files a/public/favicon.ico and b/public/favicon.ico differ
diff --git a/public/google-play-badge.png b/public/google-play-badge.png
new file mode 100644
index 0000000..131f3ac
Binary files /dev/null and b/public/google-play-badge.png differ
diff --git a/public/just box.png b/public/just box.png
new file mode 100644
index 0000000..2f5a6aa
Binary files /dev/null and b/public/just box.png differ
diff --git a/public/manhattan-night-skyline.jpg b/public/manhattan-night-skyline.jpg
new file mode 100644
index 0000000..a74b4a3
Binary files /dev/null and b/public/manhattan-night-skyline.jpg differ
diff --git a/public/me_in_flannel.jpg b/public/me_in_flannel.jpg
new file mode 100644
index 0000000..05e9bc3
Binary files /dev/null and b/public/me_in_flannel.jpg differ
diff --git a/public/pic01.jpg b/public/pic01.jpg
new file mode 100644
index 0000000..2c4200c
Binary files /dev/null and b/public/pic01.jpg differ
diff --git a/public/pic02.jpg b/public/pic02.jpg
new file mode 100644
index 0000000..34ac5e8
Binary files /dev/null and b/public/pic02.jpg differ
diff --git a/public/pic03.jpg b/public/pic03.jpg
new file mode 100644
index 0000000..db24317
Binary files /dev/null and b/public/pic03.jpg differ
diff --git a/public/shapes-app-store-qr.jpg b/public/shapes-app-store-qr.jpg
new file mode 100644
index 0000000..656a5c9
Binary files /dev/null and b/public/shapes-app-store-qr.jpg differ
diff --git a/public/textures/grass/Grass_001_COLOR.JPG b/public/textures/grass/Grass_001_COLOR.JPG
new file mode 100755
index 0000000..1cf1fba
Binary files /dev/null and b/public/textures/grass/Grass_001_COLOR.JPG differ
diff --git a/public/textures/grass/Grass_001_DISP.JPG b/public/textures/grass/Grass_001_DISP.JPG
new file mode 100755
index 0000000..afdc1e6
Binary files /dev/null and b/public/textures/grass/Grass_001_DISP.JPG differ
diff --git a/public/textures/grass/Grass_001_NRM.JPG b/public/textures/grass/Grass_001_NRM.JPG
new file mode 100755
index 0000000..2e201aa
Binary files /dev/null and b/public/textures/grass/Grass_001_NRM.JPG differ
diff --git a/public/textures/grass/Grass_001_OCC.JPG b/public/textures/grass/Grass_001_OCC.JPG
new file mode 100755
index 0000000..3d97e5c
Binary files /dev/null and b/public/textures/grass/Grass_001_OCC.JPG differ
diff --git a/public/textures/rocky_terrain/rocky_terrain_02_ao_1k.jpg b/public/textures/rocky_terrain/rocky_terrain_02_ao_1k.jpg
new file mode 100755
index 0000000..929bf38
Binary files /dev/null and b/public/textures/rocky_terrain/rocky_terrain_02_ao_1k.jpg differ
diff --git a/public/textures/rocky_terrain/rocky_terrain_02_arm_1k.jpg b/public/textures/rocky_terrain/rocky_terrain_02_arm_1k.jpg
new file mode 100755
index 0000000..6c869b6
Binary files /dev/null and b/public/textures/rocky_terrain/rocky_terrain_02_arm_1k.jpg differ
diff --git a/public/textures/rocky_terrain/rocky_terrain_02_diff_1k.jpg b/public/textures/rocky_terrain/rocky_terrain_02_diff_1k.jpg
new file mode 100755
index 0000000..e39dab1
Binary files /dev/null and b/public/textures/rocky_terrain/rocky_terrain_02_diff_1k.jpg differ
diff --git a/public/textures/rocky_terrain/rocky_terrain_02_disp_1k.png b/public/textures/rocky_terrain/rocky_terrain_02_disp_1k.png
new file mode 100755
index 0000000..b1de248
Binary files /dev/null and b/public/textures/rocky_terrain/rocky_terrain_02_disp_1k.png differ
diff --git a/public/textures/rocky_terrain/rocky_terrain_02_nor_gl_1k.jpg b/public/textures/rocky_terrain/rocky_terrain_02_nor_gl_1k.jpg
new file mode 100755
index 0000000..3aadbf5
Binary files /dev/null and b/public/textures/rocky_terrain/rocky_terrain_02_nor_gl_1k.jpg differ
diff --git a/public/textures/rocky_terrain_2/rocky_terrain_ao_2k.jpg b/public/textures/rocky_terrain_2/rocky_terrain_ao_2k.jpg
new file mode 100755
index 0000000..3ac7516
Binary files /dev/null and b/public/textures/rocky_terrain_2/rocky_terrain_ao_2k.jpg differ
diff --git a/public/textures/rocky_terrain_2/rocky_terrain_arm_2k.jpg b/public/textures/rocky_terrain_2/rocky_terrain_arm_2k.jpg
new file mode 100755
index 0000000..fc1a2c2
Binary files /dev/null and b/public/textures/rocky_terrain_2/rocky_terrain_arm_2k.jpg differ
diff --git a/public/textures/rocky_terrain_2/rocky_terrain_diff_2k.jpg b/public/textures/rocky_terrain_2/rocky_terrain_diff_2k.jpg
new file mode 100755
index 0000000..bfaec16
Binary files /dev/null and b/public/textures/rocky_terrain_2/rocky_terrain_diff_2k.jpg differ
diff --git a/public/textures/rocky_terrain_2/rocky_terrain_diff_2k.png b/public/textures/rocky_terrain_2/rocky_terrain_diff_2k.png
new file mode 100755
index 0000000..d13a931
Binary files /dev/null and b/public/textures/rocky_terrain_2/rocky_terrain_diff_2k.png differ
diff --git a/public/textures/rocky_terrain_2/rocky_terrain_disp_2k.jpg b/public/textures/rocky_terrain_2/rocky_terrain_disp_2k.jpg
new file mode 100755
index 0000000..cbe65d4
Binary files /dev/null and b/public/textures/rocky_terrain_2/rocky_terrain_disp_2k.jpg differ
diff --git a/public/textures/rocky_terrain_2/rocky_terrain_disp_2k.png b/public/textures/rocky_terrain_2/rocky_terrain_disp_2k.png
new file mode 100755
index 0000000..f832b8c
Binary files /dev/null and b/public/textures/rocky_terrain_2/rocky_terrain_disp_2k.png differ
diff --git a/public/textures/rocky_terrain_2/rocky_terrain_nor_dx_2k.exr b/public/textures/rocky_terrain_2/rocky_terrain_nor_dx_2k.exr
new file mode 100755
index 0000000..d4a8569
Binary files /dev/null and b/public/textures/rocky_terrain_2/rocky_terrain_nor_dx_2k.exr differ
diff --git a/public/textures/rocky_terrain_2/rocky_terrain_nor_gl_2k.exr b/public/textures/rocky_terrain_2/rocky_terrain_nor_gl_2k.exr
new file mode 100755
index 0000000..dc46cfd
Binary files /dev/null and b/public/textures/rocky_terrain_2/rocky_terrain_nor_gl_2k.exr differ
diff --git a/public/textures/rocky_terrain_2/rocky_terrain_rough_2k.exr b/public/textures/rocky_terrain_2/rocky_terrain_rough_2k.exr
new file mode 100755
index 0000000..10ab171
Binary files /dev/null and b/public/textures/rocky_terrain_2/rocky_terrain_rough_2k.exr differ
diff --git a/src/components/CountdownCircleTimer.tsx b/src/components/CountdownCircleTimer.tsx
new file mode 100644
index 0000000..6f0188a
--- /dev/null
+++ b/src/components/CountdownCircleTimer.tsx
@@ -0,0 +1,73 @@
+import { Component, createEffect, onCleanup } from "solid-js";
+
+interface CountdownCircleTimerProps {
+  duration: number;
+  initialRemainingTime: number;
+  size: number;
+  strokeWidth: number;
+  colors: string;
+  children: () => any;
+}
+
+const CountdownCircleTimer: Component<CountdownCircleTimerProps> = (props) => {
+  const radius = (props.size - props.strokeWidth) / 2;
+  const circumference = radius * 2 * Math.PI;
+  
+  // Calculate progress (0 to 1)
+  const progress = () => props.initialRemainingTime / props.duration;
+  const strokeDashoffset = () => circumference * (1 - progress());
+
+  return (
+    <div
+      style={{
+        position: "relative",
+        width: `${props.size}px`,
+        height: `${props.size}px`,
+      }}
+    >
+      <svg
+        width={props.size}
+        height={props.size}
+        style={{ transform: "rotate(-90deg)" }}
+      >
+        {/* Background circle */}
+        <circle
+          cx={props.size / 2}
+          cy={props.size / 2}
+          r={radius}
+          fill="none"
+          stroke="#e5e7eb"
+          stroke-width={props.strokeWidth}
+        />
+        {/* Progress circle */}
+        <circle
+          cx={props.size / 2}
+          cy={props.size / 2}
+          r={radius}
+          fill="none"
+          stroke={props.colors}
+          stroke-width={props.strokeWidth}
+          stroke-dasharray={circumference}
+          stroke-dashoffset={strokeDashoffset()}
+          stroke-linecap="round"
+          style={{
+            transition: "stroke-dashoffset 0.5s linear",
+          }}
+        />
+      </svg>
+      {/* Timer text in center */}
+      <div
+        style={{
+          position: "absolute",
+          top: "50%",
+          left: "50%",
+          transform: "translate(-50%, -50%)",
+        }}
+      >
+        {props.children()}
+      </div>
+    </div>
+  );
+};
+
+export default CountdownCircleTimer;
diff --git a/src/components/icons/Eye.tsx b/src/components/icons/Eye.tsx
new file mode 100644
index 0000000..545748f
--- /dev/null
+++ b/src/components/icons/Eye.tsx
@@ -0,0 +1,36 @@
+import { Component } from "solid-js";
+
+interface EyeProps {
+  strokeWidth: number;
+  height: number;
+  width: number;
+  class?: string;
+}
+
+const Eye: Component<EyeProps> = (props) => {
+  return (
+    <svg
+      xmlns="http://www.w3.org/2000/svg"
+      fill="none"
+      viewBox="0 0 24 24"
+      stroke-width={props.strokeWidth}
+      stroke="currentColor"
+      height={props.height}
+      width={props.width}
+      class={props.class}
+    >
+      <path
+        stroke-linecap="round"
+        stroke-linejoin="round"
+        d="M2.036 12.322a1.012 1.012 0 010-.639C3.423 7.51 7.36 4.5 12 4.5c4.638 0 8.573 3.007 9.963 7.178.07.207.07.431 0 .639C20.577 16.49 16.64 19.5 12 19.5c-4.638 0-8.573-3.007-9.963-7.178z"
+      />
+      <path
+        stroke-linecap="round"
+        stroke-linejoin="round"
+        d="M15 12a3 3 0 11-6 0 3 3 0 016 0z"
+      />
+    </svg>
+  );
+};
+
+export default Eye;
diff --git a/src/components/icons/EyeSlash.tsx b/src/components/icons/EyeSlash.tsx
new file mode 100644
index 0000000..df2c2aa
--- /dev/null
+++ b/src/components/icons/EyeSlash.tsx
@@ -0,0 +1,31 @@
+import { Component } from "solid-js";
+
+interface EyeSlashProps {
+  strokeWidth: number;
+  height: number;
+  width: number;
+  class?: string;
+}
+
+const EyeSlash: Component<EyeSlashProps> = (props) => {
+  return (
+    <svg
+      xmlns="http://www.w3.org/2000/svg"
+      fill="none"
+      viewBox="0 0 24 24"
+      stroke-width={props.strokeWidth}
+      stroke="currentColor"
+      height={props.height}
+      width={props.width}
+      class={props.class}
+    >
+      <path
+        stroke-linecap="round"
+        stroke-linejoin="round"
+        d="M3.98 8.223A10.477 10.477 0 001.934 12C3.226 16.338 7.244 19.5 12 19.5c.993 0 1.953-.138 2.863-.395M6.228 6.228A10.45 10.45 0 0112 4.5c4.756 0 8.773 3.162 10.065 7.498a10.523 10.523 0 01-4.293 5.774M6.228 6.228L3 3m3.228 3.228l3.65 3.65m7.894 7.894L21 21m-3.228-3.228l-3.65-3.65m0 0a3 3 0 10-4.243-4.243m4.242 4.242L9.88 9.88"
+      />
+    </svg>
+  );
+};
+
+export default EyeSlash;
diff --git a/src/components/icons/GitHub.tsx b/src/components/icons/GitHub.tsx
new file mode 100644
index 0000000..1bac3af
--- /dev/null
+++ b/src/components/icons/GitHub.tsx
@@ -0,0 +1,24 @@
+import { Component } from "solid-js";
+
+interface GitHubProps {
+  height?: string | number;
+  width?: string | number;
+  fill?: string;
+}
+
+const GitHub: Component<GitHubProps> = (props) => {
+  return (
+    <svg
+      xmlns="http://www.w3.org/2000/svg"
+      viewBox="0 0 496 512"
+      height={props.height}
+      width={props.width}
+      fill={props.fill || ""}
+      class={props.fill ? "" : "fill-black dark:fill-white"}
+    >
+      <path d="M165.9 397.4c0 2-2.3 3.6-5.2 3.6-3.3.3-5.6-1.3-5.6-3.6 0-2 2.3-3.6 5.2-3.6 3-.3 5.6 1.3 5.6 3.6zm-31.1-4.5c-.7 2 1.3 4.3 4.3 4.9 2.6 1 5.6 0 6.2-2s-1.3-4.3-4.3-5.2c-2.6-.7-5.5.3-6.2 2.3zm44.2-1.7c-2.9.7-4.9 2.6-4.6 4.9.3 2 2.9 3.3 5.9 2.6 2.9-.7 4.9-2.6 4.6-4.6-.3-1.9-3-3.2-5.9-2.9zM244.8 8C106.1 8 0 113.3 0 252c0 110.9 69.8 205.8 169.5 239.2 12.8 2.3 17.3-5.6 17.3-12.1 0-6.2-.3-40.4-.3-61.4 0 0-70 15-84.7-29.8 0 0-11.4-29.1-27.8-36.6 0 0-22.9-15.7 1.6-15.4 0 0 24.9 2 38.6 25.8 21.9 38.6 58.6 27.5 72.9 20.9 2.3-16 8.8-27.1 16-33.7-55.9-6.2-112.3-14.3-112.3-110.5 0-27.5 7.6-41.3 23.6-58.9-2.6-6.5-11.1-33.3 2.6-67.9 20.9-6.5 69 27 69 27 20-5.6 41.5-8.5 62.8-8.5s42.8 2.9 62.8 8.5c0 0 48.1-33.6 69-27 13.7 34.7 5.2 61.4 2.6 67.9 16 17.7 25.8 31.5 25.8 58.9 0 96.5-58.9 104.2-114.8 110.5 9.2 7.9 17 22.9 17 46.4 0 33.7-.3 75.4-.3 83.6 0 6.5 4.6 14.4 17.3 12.1C428.2 457.8 496 362.9 496 252 496 113.3 383.5 8 244.8 8zM97.2 352.9c-1.3 1-1 3.3.7 5.2 1.6 1.6 3.9 2.3 5.2 1 1.3-1 1-3.3-.7-5.2-1.6-1.6-3.9-2.3-5.2-1zm-10.8-8.1c-.7 1.3.3 2.9 2.3 3.9 1.6 1 3.6.7 4.3-.7.7-1.3-.3-2.9-2.3-3.9-2-.6-3.6-.3-4.3.7zm32.4 35.6c-1.6 1.3-1 4.3 1.3 6.2 2.3 2.3 5.2 2.6 6.5 1 1.3-1.3.7-4.3-1.3-6.2-2.2-2.3-5.2-2.6-6.5-1zm-11.4-14.7c-1.6 1-1.6 3.6 0 5.9 1.6 2.3 4.3 3.3 5.6 2.3 1.6-1.3 1.6-3.9 0-6.2-1.4-2.3-4-3.3-5.6-2z" />
+    </svg>
+  );
+};
+
+export default GitHub;
diff --git a/src/components/icons/GoogleLogo.tsx b/src/components/icons/GoogleLogo.tsx
new file mode 100644
index 0000000..3e5703c
--- /dev/null
+++ b/src/components/icons/GoogleLogo.tsx
@@ -0,0 +1,37 @@
+import { Component } from "solid-js";
+
+interface GoogleLogoProps {
+  height: number;
+  width: number;
+}
+
+const GoogleLogo: Component<GoogleLogoProps> = (props) => {
+  return (
+    <svg
+      xmlns="http://www.w3.org/2000/svg"
+      height={props.height}
+      viewBox="0 0 24 24"
+      width={props.width}
+    >
+      <path
+        d="M22.56 12.25c0-.78-.07-1.53-.2-2.25H12v4.26h5.92c-.26 1.37-1.04 2.53-2.21 3.31v2.77h3.57c2.08-1.92 3.28-4.74 3.28-8.09z"
+        fill="#4285F4"
+      />
+      <path
+        d="M12 23c2.97 0 5.46-.98 7.28-2.66l-3.57-2.77c-.98.66-2.23 1.06-3.71 1.06-2.86 0-5.29-1.93-6.16-4.53H2.18v2.84C3.99 20.53 7.7 23 12 23z"
+        fill="#34A853"
+      />
+      <path
+        d="M5.84 14.09c-.22-.66-.35-1.36-.35-2.09s.13-1.43.35-2.09V7.07H2.18C1.43 8.55 1 10.22 1 12s.43 3.45 1.18 4.93l2.85-2.22.81-.62z"
+        fill="#FBBC05"
+      />
+      <path
+        d="M12 5.38c1.62 0 3.06.56 4.21 1.64l3.15-3.15C17.45 2.09 14.97 1 12 1 7.7 1 3.99 3.47 2.18 7.07l3.66 2.84c.87-2.6 3.3-4.53 6.16-4.53z"
+        fill="#EA4335"
+      />
+      <path d="M1 1h22v22H1z" fill="none" />
+    </svg>
+  );
+};
+
+export default GoogleLogo;
diff --git a/src/components/ui/Button.tsx b/src/components/ui/Button.tsx
new file mode 100644
index 0000000..27e7deb
--- /dev/null
+++ b/src/components/ui/Button.tsx
@@ -0,0 +1,90 @@
+import { JSX, splitProps, Show } from "solid-js";
+
+export interface ButtonProps extends JSX.ButtonHTMLAttributes<HTMLButtonElement> {
+  variant?: "primary" | "secondary" | "danger" | "ghost";
+  size?: "sm" | "md" | "lg";
+  loading?: boolean;
+  fullWidth?: boolean;
+}
+
+/**
+ * Reusable button component with variants and loading state
+ */
+export default function Button(props: ButtonProps) {
+  const [local, others] = splitProps(props, [
+    "variant",
+    "size",
+    "loading",
+    "fullWidth",
+    "class",
+    "children",
+    "disabled",
+  ]);
+
+  const variant = () => local.variant || "primary";
+  const size = () => local.size || "md";
+
+  const baseClasses = "flex justify-center items-center rounded font-semibold transition-all duration-300 ease-out disabled:opacity-50 disabled:cursor-not-allowed";
+
+  const variantClasses = () => {
+    switch (variant()) {
+      case "primary":
+        return "bg-blue-400 hover:bg-blue-500 active:scale-90 dark:bg-blue-600 dark:hover:bg-blue-700 text-white shadow-lg shadow-blue-300 dark:shadow-blue-700";
+      case "secondary":
+        return "bg-gray-200 hover:bg-gray-300 dark:bg-gray-700 dark:hover:bg-gray-600 text-gray-900 dark:text-white";
+      case "danger":
+        return "bg-red-500 hover:bg-red-600 active:scale-90 text-white shadow-lg shadow-red-300 dark:shadow-red-700";
+      case "ghost":
+        return "bg-transparent hover:bg-gray-100 dark:hover:bg-gray-800 text-gray-700 dark:text-gray-300";
+      default:
+        return "";
+    }
+  };
+
+  const sizeClasses = () => {
+    switch (size()) {
+      case "sm":
+        return "px-3 py-1.5 text-sm";
+      case "md":
+        return "px-4 py-2 text-base";
+      case "lg":
+        return "px-6 py-3 text-lg";
+      default:
+        return "";
+    }
+  };
+
+  const widthClass = () => (local.fullWidth ? "w-full" : "");
+
+  return (
+    <button
+      {...others}
+      disabled={local.disabled || local.loading}
+      class={`${baseClasses} ${variantClasses()} ${sizeClasses()} ${widthClass()} ${local.class || ""}`}
+    >
+      <Show when={local.loading} fallback={local.children}>
+        <svg
+          class="animate-spin h-5 w-5 mr-2"
+          xmlns="http://www.w3.org/2000/svg"
+          fill="none"
+          viewBox="0 0 24 24"
+        >
+          <circle
+            class="opacity-25"
+            cx="12"
+            cy="12"
+            r="10"
+            stroke="currentColor"
+            stroke-width="4"
+          />
+          <path
+            class="opacity-75"
+            fill="currentColor"
+            d="M4 12a8 8 0 018-8V0C5.373 0 0 5.373 0 12h4zm2 5.291A7.962 7.962 0 014 12H0c0 3.042 1.135 5.824 3 7.938l3-2.647z"
+          />
+        </svg>
+        Loading...
+      </Show>
+    </button>
+  );
+}
diff --git a/src/components/ui/Input.tsx b/src/components/ui/Input.tsx
new file mode 100644
index 0000000..24f5152
--- /dev/null
+++ b/src/components/ui/Input.tsx
@@ -0,0 +1,45 @@
+import { JSX, splitProps } from "solid-js";
+
+export interface InputProps extends JSX.InputHTMLAttributes<HTMLInputElement> {
+  label?: string;
+  error?: string;
+  helperText?: string;
+}
+
+/**
+ * Reusable input component with label and error handling
+ * Styled to match Next.js migration source (underlined input style)
+ */
+export default function Input(props: InputProps) {
+  const [local, others] = splitProps(props, ["label", "error", "helperText", "class"]);
+
+  return (
+    <div class="input-group">
+      <input
+        {...others}
+        placeholder=" "
+        class={`underlinedInput bg-transparent ${local.class || ""}`}
+        aria-invalid={!!local.error}
+        aria-describedby={local.error ? `${others.id}-error` : undefined}
+      />
+      <span class="bar"></span>
+      {local.label && (
+        <label class="underlinedInputLabel">{local.label}</label>
+      )}
+      {local.error && (
+        <span
+          id={`${others.id}-error`}
+          class="text-xs text-red-500 mt-1 block"
+          role="alert"
+        >
+          {local.error}
+        </span>
+      )}
+      {local.helperText && !local.error && (
+        <span class="text-xs text-gray-500 mt-1 block">
+          {local.helperText}
+        </span>
+      )}
+    </div>
+  );
+}
diff --git a/src/lib/SOLID-PATTERNS.md b/src/lib/SOLID-PATTERNS.md
new file mode 100644
index 0000000..177a0fe
--- /dev/null
+++ b/src/lib/SOLID-PATTERNS.md
@@ -0,0 +1,441 @@
+# React to SolidJS Conversion Patterns
+
+This guide documents common patterns for converting React code to SolidJS for this migration.
+
+## Table of Contents
+- [State Management](#state-management)
+- [Effects](#effects)
+- [Refs](#refs)
+- [Routing](#routing)
+- [Conditional Rendering](#conditional-rendering)
+- [Lists](#lists)
+- [Forms](#forms)
+- [Event Handlers](#event-handlers)
+
+## State Management
+
+### React (useState)
+```tsx
+import { useState } from "react";
+
+const [count, setCount] = useState(0);
+const [user, setUser] = useState<User | null>(null);
+
+// Update
+setCount(count + 1);
+setCount(prev => prev + 1);
+setUser({ ...user, name: "John" });
+```
+
+### Solid (createSignal)
+```tsx
+import { createSignal } from "solid-js";
+
+const [count, setCount] = createSignal(0);
+const [user, setUser] = createSignal<User | null>(null);
+
+// Update - note the function call to read value
+setCount(count() + 1);
+setCount(prev => prev + 1);
+setUser({ ...user(), name: "John" });
+
+// ⚠️ Important: Always call the signal to read its value
+console.log(count()); // ✅ Correct
+console.log(count);   // ❌ Wrong - this is the function itself
+```
+
+## Effects
+
+### React (useEffect)
+```tsx
+import { useEffect } from "react";
+
+// Run once on mount
+useEffect(() => {
+  console.log("Mounted");
+  
+  return () => {
+    console.log("Cleanup");
+  };
+}, []);
+
+// Run when dependency changes
+useEffect(() => {
+  console.log(count);
+}, [count]);
+```
+
+### Solid (createEffect / onMount / onCleanup)
+```tsx
+import { createEffect, onMount, onCleanup } from "solid-js";
+
+// Run once on mount
+onMount(() => {
+  console.log("Mounted");
+});
+
+// Cleanup
+onCleanup(() => {
+  console.log("Cleanup");
+});
+
+// Run when dependency changes (automatic tracking)
+createEffect(() => {
+  console.log(count()); // Automatically tracks count signal
+});
+
+// ⚠️ Important: Effects automatically track any signal reads
+// No dependency array needed!
+```
+
+## Refs
+
+### React (useRef)
+```tsx
+import { useRef } from "react";
+
+const inputRef = useRef<HTMLInputElement>(null);
+
+// Access
+inputRef.current?.focus();
+
+// In JSX
+<input ref={inputRef} />
+```
+
+### Solid (let binding or signal)
+```tsx
+// Method 1: Direct binding (preferred for simple cases)
+let inputRef: HTMLInputElement | undefined;
+
+// Access
+inputRef?.focus();
+
+// In JSX
+<input ref={inputRef} />
+
+// Method 2: Using a signal (for reactive refs)
+import { createSignal } from "solid-js";
+
+const [inputRef, setInputRef] = createSignal<HTMLInputElement>();
+
+// Access
+inputRef()?.focus();
+
+// In JSX
+<input ref={setInputRef} />
+```
+
+## Routing
+
+### React (Next.js)
+```tsx
+import Link from "next/link";
+import { useRouter } from "next/navigation";
+
+// Link component
+<Link href="/about">About</Link>
+
+// Programmatic navigation
+const router = useRouter();
+router.push("/dashboard");
+router.back();
+router.refresh();
+```
+
+### Solid (SolidStart)
+```tsx
+import { A, useNavigate } from "@solidjs/router";
+
+// Link component
+<A href="/about">About</A>
+
+// Programmatic navigation
+const navigate = useNavigate();
+navigate("/dashboard");
+navigate(-1); // Go back
+// Note: No refresh() - Solid is reactive by default
+```
+
+## Conditional Rendering
+
+### React
+```tsx
+// Using && operator
+{isLoggedIn && <Dashboard />}
+
+// Using ternary
+{isLoggedIn ? <Dashboard /> : <Login />}
+
+// Using if statement
+if (loading) return <Spinner />;
+return <Content />;
+```
+
+### Solid
+```tsx
+import { Show } from "solid-js";
+
+// Using Show component (recommended)
+<Show when={isLoggedIn()}>
+  <Dashboard />
+</Show>
+
+// With fallback
+<Show when={isLoggedIn()} fallback={<Login />}>
+  <Dashboard />
+</Show>
+
+// ⚠️ Important: Can still use && and ternary, but Show is more efficient
+// because it doesn't recreate the DOM on every change
+
+// Early return still works
+if (loading()) return <Spinner />;
+return <Content />;
+```
+
+## Lists
+
+### React
+```tsx
+// Using map
+{users.map(user => (
+  <div key={user.id}>{user.name}</div>
+))}
+
+// With index
+{users.map((user, index) => (
+  <div key={index}>{user.name}</div>
+))}
+```
+
+### Solid
+```tsx
+import { For, Index } from "solid-js";
+
+// Using For (when items have stable keys)
+<For each={users()}>
+  {(user) => <div>{user.name}</div>}
+</For>
+
+// With index
+<For each={users()}>
+  {(user, index) => <div>{index()} - {user.name}</div>}
+</For>
+
+// Using Index (when items have no stable identity, keyed by index)
+<Index each={users()}>
+  {(user, index) => <div>{index} - {user().name}</div>}
+</Index>
+
+// ⚠️ Key differences:
+// - For: Better when items have stable identity (keyed by reference)
+// - Index: Better when items change frequently (keyed by index)
+// - Note the () on user in Index component
+```
+
+## Forms
+
+### React
+```tsx
+import { useState } from "react";
+
+const [email, setEmail] = useState("");
+
+const handleSubmit = (e: React.FormEvent) => {
+  e.preventDefault();
+  console.log(email);
+};
+
+<form onSubmit={handleSubmit}>
+  <input
+    type="email"
+    value={email}
+    onChange={(e) => setEmail(e.target.value)}
+  />
+</form>
+```
+
+### Solid
+```tsx
+import { createSignal } from "solid-js";
+
+const [email, setEmail] = createSignal("");
+
+const handleSubmit = (e: Event) => {
+  e.preventDefault();
+  console.log(email());
+};
+
+<form onSubmit={handleSubmit}>
+  <input
+    type="email"
+    value={email()}
+    onInput={(e) => setEmail(e.currentTarget.value)}
+  />
+</form>
+
+// ⚠️ Important differences:
+// - Use onInput instead of onChange for real-time updates
+// - onChange fires on blur in Solid
+// - Use e.currentTarget instead of e.target for type safety
+```
+
+## Event Handlers
+
+### React
+```tsx
+// Inline
+<button onClick={() => setCount(count + 1)}>
+
+// Function reference
+<button onClick={handleClick}>
+
+// With parameters
+<button onClick={(e) => handleClick(e, id)}>
+```
+
+### Solid
+```tsx
+// Inline - same as React
+<button onClick={() => setCount(count() + 1)}>
+
+// Function reference - same as React
+<button onClick={handleClick}>
+
+// With parameters - same as React
+<button onClick={(e) => handleClick(e, id)}>
+
+// Alternative syntax with array (for optimization)
+<button onClick={[handleClick, id]}>
+
+// ⚠️ Important: Remember to call signals with ()
+<button onClick={() => setCount(count() + 1)}>  // ✅
+<button onClick={() => setCount(count + 1)}>    // ❌
+```
+
+## Server Actions to tRPC
+
+### React (Next.js Server Actions)
+```tsx
+"use server";
+
+export async function updateProfile(displayName: string) {
+  const userId = cookies().get("userIDToken");
+  await db.execute("UPDATE User SET display_name = ? WHERE id = ?", 
+    [displayName, userId]);
+  return { success: true };
+}
+
+// Client usage
+import { updateProfile } from "./actions";
+
+const result = await updateProfile("John");
+```
+
+### Solid (tRPC)
+```tsx
+// Server (in src/server/api/routers/user.ts)
+updateDisplayName: publicProcedure
+  .input(z.object({ displayName: z.string() }))
+  .mutation(async ({ input, ctx }) => {
+    const userId = await getUserID(ctx.event);
+    const conn = ConnectionFactory();
+    await conn.execute({
+      sql: "UPDATE User SET display_name = ? WHERE id = ?",
+      args: [input.displayName, userId]
+    });
+    return { success: true };
+  })
+
+// Client usage
+import { api } from "~/lib/api";
+
+const result = await api.user.updateDisplayName.mutate({ 
+  displayName: "John" 
+});
+```
+
+## Common Gotchas
+
+### 1. Reading Signal Values
+```tsx
+// ❌ WRONG
+const value = mySignal;  // This is the function, not the value!
+
+// ✅ CORRECT
+const value = mySignal(); // Call it to get the value
+```
+
+### 2. Updating Objects in Signals
+```tsx
+// ❌ WRONG - Mutating directly
+const [user, setUser] = createSignal({ name: "John" });
+user().name = "Jane"; // This won't trigger reactivity!
+
+// ✅ CORRECT - Create new object
+setUser({ ...user(), name: "Jane" });
+
+// ✅ ALSO CORRECT - Using produce (from solid-js/store)
+import { produce } from "solid-js/store";
+setUser(produce(u => { u.name = "Jane"; }));
+```
+
+### 3. Conditional Effects
+```tsx
+// ❌ WRONG - Effect won't re-run when condition changes
+if (someCondition()) {
+  createEffect(() => {
+    // This only creates the effect if condition is true initially
+  });
+}
+
+// ✅ CORRECT - Effect tracks condition reactively
+createEffect(() => {
+  if (someCondition()) {
+    // This runs whenever condition or dependencies change
+  }
+});
+```
+
+### 4. Cleanup in Effects
+```tsx
+// ❌ WRONG
+createEffect(() => {
+  const timer = setInterval(() => {}, 1000);
+  // No cleanup!
+});
+
+// ✅ CORRECT
+createEffect(() => {
+  const timer = setInterval(() => {}, 1000);
+  
+  onCleanup(() => {
+    clearInterval(timer);
+  });
+});
+```
+
+## Quick Reference Card
+
+| React | Solid | Notes |
+|-------|-------|-------|
+| `useState` | `createSignal` | Call signal to read: `count()` |
+| `useEffect` | `createEffect` | Auto-tracks dependencies |
+| `useRef` | `let` binding | Or use signal for reactive refs |
+| `useRouter()` | `useNavigate()` | Different API |
+| `Link` | `A` | Different import |
+| `{cond && <A />}` | `<Show when={cond()}><A /></Show>` | Show is more efficient |
+| `{arr.map()}` | `<For each={arr()}></For>` | For is more efficient |
+| `onChange` | `onInput` | onChange fires on blur |
+| `e.target` | `e.currentTarget` | Better types |
+| "use server" | tRPC router | Different architecture |
+
+## Tips for Success
+
+1. **Always call signals to read their values**: `count()` not `count`
+2. **Use Show and For components**: More efficient than && and map
+3. **Effects auto-track**: No dependency arrays needed
+4. **Immutable updates**: Always create new objects when updating signals
+5. **Use onCleanup**: Clean up timers, subscriptions, etc.
+6. **Type safety**: SolidJS has excellent TypeScript support - use it!
diff --git a/src/lib/cookies.client.ts b/src/lib/cookies.client.ts
new file mode 100644
index 0000000..f2cbd85
--- /dev/null
+++ b/src/lib/cookies.client.ts
@@ -0,0 +1,72 @@
+/**
+ * Client-side cookie utilities
+ * For use in browser/client components only
+ */
+
+/**
+ * Get cookie value on the client (browser)
+ */
+export function getClientCookie(name: string): string | undefined {
+  if (typeof document === "undefined") return undefined;
+  
+  const value = `; ${document.cookie}`;
+  const parts = value.split(`; ${name}=`);
+  
+  if (parts.length === 2) {
+    return parts.pop()?.split(";").shift();
+  }
+  
+  return undefined;
+}
+
+/**
+ * Set cookie on the client (browser)
+ */
+export function setClientCookie(
+  name: string,
+  value: string,
+  options?: {
+    maxAge?: number;
+    expires?: Date;
+    path?: string;
+    secure?: boolean;
+    sameSite?: "strict" | "lax" | "none";
+  }
+) {
+  if (typeof document === "undefined") return;
+  
+  let cookieString = `${name}=${value}`;
+  
+  if (options?.maxAge) {
+    cookieString += `; max-age=${options.maxAge}`;
+  }
+  
+  if (options?.expires) {
+    cookieString += `; expires=${options.expires.toUTCString()}`;
+  }
+  
+  if (options?.path) {
+    cookieString += `; path=${options.path}`;
+  } else {
+    cookieString += "; path=/";
+  }
+  
+  if (options?.secure) {
+    cookieString += "; secure";
+  }
+  
+  if (options?.sameSite) {
+    cookieString += `; samesite=${options.sameSite}`;
+  }
+  
+  document.cookie = cookieString;
+}
+
+/**
+ * Delete cookie on the client (browser)
+ */
+export function deleteClientCookie(name: string) {
+  if (typeof document === "undefined") return;
+  
+  document.cookie = `${name}=; max-age=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/`;
+}
diff --git a/src/lib/cookies.ts b/src/lib/cookies.ts
new file mode 100644
index 0000000..906b699
--- /dev/null
+++ b/src/lib/cookies.ts
@@ -0,0 +1,111 @@
+/**
+ * Cookie utilities for SolidStart
+ * Provides client and server-side cookie management
+ */
+
+import { getCookie as getServerCookie, setCookie as setServerCookie } from "vinxi/http";
+import type { H3Event } from "vinxi/http";
+
+/**
+ * Get cookie value on the server
+ */
+export function getCookie(event: H3Event, name: string): string | undefined {
+  return getServerCookie(event, name);
+}
+
+/**
+ * Set cookie on the server
+ */
+export function setCookie(
+  event: H3Event,
+  name: string,
+  value: string,
+  options?: {
+    maxAge?: number;
+    expires?: Date;
+    httpOnly?: boolean;
+    secure?: boolean;
+    sameSite?: "strict" | "lax" | "none";
+    path?: string;
+  }
+) {
+  setServerCookie(event, name, value, options);
+}
+
+/**
+ * Delete cookie on the server
+ */
+export function deleteCookie(event: H3Event, name: string) {
+  setServerCookie(event, name, "", {
+    maxAge: 0,
+    expires: new Date("2016-10-05"),
+  });
+}
+
+/**
+ * Get cookie value on the client (browser)
+ */
+export function getClientCookie(name: string): string | undefined {
+  if (typeof document === "undefined") return undefined;
+  
+  const value = `; ${document.cookie}`;
+  const parts = value.split(`; ${name}=`);
+  
+  if (parts.length === 2) {
+    return parts.pop()?.split(";").shift();
+  }
+  
+  return undefined;
+}
+
+/**
+ * Set cookie on the client (browser)
+ */
+export function setClientCookie(
+  name: string,
+  value: string,
+  options?: {
+    maxAge?: number;
+    expires?: Date;
+    path?: string;
+    secure?: boolean;
+    sameSite?: "strict" | "lax" | "none";
+  }
+) {
+  if (typeof document === "undefined") return;
+  
+  let cookieString = `${name}=${value}`;
+  
+  if (options?.maxAge) {
+    cookieString += `; max-age=${options.maxAge}`;
+  }
+  
+  if (options?.expires) {
+    cookieString += `; expires=${options.expires.toUTCString()}`;
+  }
+  
+  if (options?.path) {
+    cookieString += `; path=${options.path}`;
+  } else {
+    cookieString += "; path=/";
+  }
+  
+  if (options?.secure) {
+    cookieString += "; secure";
+  }
+  
+  if (options?.sameSite) {
+    cookieString += `; samesite=${options.sameSite}`;
+  }
+  
+  document.cookie = cookieString;
+}
+
+/**
+ * Delete cookie on the client (browser)
+ */
+export function deleteClientCookie(name: string) {
+  if (typeof document === "undefined") return;
+  
+  document.cookie = `${name}=; max-age=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/`;
+}
diff --git a/src/lib/validation.ts b/src/lib/validation.ts
new file mode 100644
index 0000000..fe9fcd6
--- /dev/null
+++ b/src/lib/validation.ts
@@ -0,0 +1,95 @@
+/**
+ * Form validation utilities
+ */
+
+/**
+ * Validate email format
+ */
+export function isValidEmail(email: string): boolean {
+  const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+  return emailRegex.test(email);
+}
+
+/**
+ * Validate password strength
+ */
+export function validatePassword(password: string): {
+  isValid: boolean;
+  errors: string[];
+} {
+  const errors: string[] = [];
+  
+  if (password.length < 8) {
+    errors.push("Password must be at least 8 characters long");
+  }
+  
+  // Optional: Add more password requirements
+  // if (!/[A-Z]/.test(password)) {
+  //   errors.push("Password must contain at least one uppercase letter");
+  // }
+  // if (!/[a-z]/.test(password)) {
+  //   errors.push("Password must contain at least one lowercase letter");
+  // }
+  // if (!/[0-9]/.test(password)) {
+  //   errors.push("Password must contain at least one number");
+  // }
+  
+  return {
+    isValid: errors.length === 0,
+    errors,
+  };
+}
+
+/**
+ * Check if two passwords match
+ */
+export function passwordsMatch(password: string, confirmation: string): boolean {
+  return password === confirmation && password.length > 0;
+}
+
+/**
+ * Validate display name
+ */
+export function isValidDisplayName(name: string): boolean {
+  return name.trim().length >= 1 && name.trim().length <= 50;
+}
+
+/**
+ * Sanitize user input (basic XSS prevention)
+ */
+export function sanitizeInput(input: string): string {
+  return input
+    .replace(/</g, "&lt;")
+    .replace(/>/g, "&gt;")
+    .replace(/"/g, "&quot;")
+    .replace(/'/g, "&#x27;")
+    .replace(/\//g, "&#x2F;");
+}
+
+/**
+ * Check if string is a valid URL
+ */
+export function isValidUrl(url: string): boolean {
+  try {
+    new URL(url);
+    return true;
+  } catch {
+    return false;
+  }
+}
+
+/**
+ * Validate file type for uploads
+ */
+export function isValidImageType(file: File): boolean {
+  const validTypes = ["image/jpeg", "image/jpg", "image/png", "image/gif", "image/webp"];
+  return validTypes.includes(file.type);
+}
+
+/**
+ * Validate file size (in bytes)
+ */
+export function isValidFileSize(file: File, maxSizeMB: number = 5): boolean {
+  const maxBytes = maxSizeMB * 1024 * 1024;
+  return file.size <= maxBytes;
+}
diff --git a/src/routes/api/auth/callback/github.ts b/src/routes/api/auth/callback/github.ts
new file mode 100644
index 0000000..c306e57
--- /dev/null
+++ b/src/routes/api/auth/callback/github.ts
@@ -0,0 +1,54 @@
+import type { APIEvent } from "@solidjs/start/server";
+import { appRouter } from "~/server/api/root";
+import { createTRPCContext } from "~/server/api/utils";
+
+export async function GET(event: APIEvent) {
+  const url = new URL(event.request.url);
+  const code = url.searchParams.get("code");
+  const error = url.searchParams.get("error");
+
+  // Handle OAuth error (user denied access, etc.)
+  if (error) {
+    return new Response(null, {
+      status: 302,
+      headers: { Location: `/login?error=${encodeURIComponent(error)}` },
+    });
+  }
+
+  // Missing authorization code
+  if (!code) {
+    return new Response(null, {
+      status: 302,
+      headers: { Location: "/login?error=missing_code" },
+    });
+  }
+
+  try {
+    // Create tRPC caller to invoke the githubCallback procedure
+    const ctx = await createTRPCContext(event);
+    const caller = appRouter.createCaller(ctx);
+
+    // Call the GitHub callback handler
+    const result = await caller.auth.githubCallback({ code });
+
+    if (result.success) {
+      // Redirect to account page on success
+      return new Response(null, {
+        status: 302,
+        headers: { Location: result.redirectTo || "/account" },
+      });
+    } else {
+      // Redirect to login with error
+      return new Response(null, {
+        status: 302,
+        headers: { Location: "/login?error=auth_failed" },
+      });
+    }
+  } catch (error) {
+    console.error("GitHub OAuth callback error:", error);
+    return new Response(null, {
+      status: 302,
+      headers: { Location: "/login?error=server_error" },
+    });
+  }
+}
diff --git a/src/routes/api/auth/callback/google.ts b/src/routes/api/auth/callback/google.ts
new file mode 100644
index 0000000..d99e4c2
--- /dev/null
+++ b/src/routes/api/auth/callback/google.ts
@@ -0,0 +1,54 @@
+import type { APIEvent } from "@solidjs/start/server";
+import { appRouter } from "~/server/api/root";
+import { createTRPCContext } from "~/server/api/utils";
+
+export async function GET(event: APIEvent) {
+  const url = new URL(event.request.url);
+  const code = url.searchParams.get("code");
+  const error = url.searchParams.get("error");
+
+  // Handle OAuth error (user denied access, etc.)
+  if (error) {
+    return new Response(null, {
+      status: 302,
+      headers: { Location: `/login?error=${encodeURIComponent(error)}` },
+    });
+  }
+
+  // Missing authorization code
+  if (!code) {
+    return new Response(null, {
+      status: 302,
+      headers: { Location: "/login?error=missing_code" },
+    });
+  }
+
+  try {
+    // Create tRPC caller to invoke the googleCallback procedure
+    const ctx = await createTRPCContext(event);
+    const caller = appRouter.createCaller(ctx);
+
+    // Call the Google callback handler
+    const result = await caller.auth.googleCallback({ code });
+
+    if (result.success) {
+      // Redirect to account page on success
+      return new Response(null, {
+        status: 302,
+        headers: { Location: result.redirectTo || "/account" },
+      });
+    } else {
+      // Redirect to login with error
+      return new Response(null, {
+        status: 302,
+        headers: { Location: "/login?error=auth_failed" },
+      });
+    }
+  } catch (error) {
+    console.error("Google OAuth callback error:", error);
+    return new Response(null, {
+      status: 302,
+      headers: { Location: "/login?error=server_error" },
+    });
+  }
+}
diff --git a/src/routes/api/auth/email-login-callback.ts b/src/routes/api/auth/email-login-callback.ts
new file mode 100644
index 0000000..c1c5cb0
--- /dev/null
+++ b/src/routes/api/auth/email-login-callback.ts
@@ -0,0 +1,63 @@
+import type { APIEvent } from "@solidjs/start/server";
+import { appRouter } from "~/server/api/root";
+import { createTRPCContext } from "~/server/api/utils";
+
+export async function GET(event: APIEvent) {
+  const url = new URL(event.request.url);
+  const email = url.searchParams.get("email");
+  const token = url.searchParams.get("token");
+  const rememberMeParam = url.searchParams.get("rememberMe");
+
+  // Parse rememberMe parameter
+  const rememberMe = rememberMeParam === "true";
+
+  // Missing required parameters
+  if (!email || !token) {
+    return new Response(null, {
+      status: 302,
+      headers: { Location: "/login?error=missing_params" },
+    });
+  }
+
+  try {
+    // Create tRPC caller to invoke the emailLogin procedure
+    const ctx = await createTRPCContext(event);
+    const caller = appRouter.createCaller(ctx);
+
+    // Call the email login handler
+    const result = await caller.auth.emailLogin({
+      email,
+      token,
+      rememberMe,
+    });
+
+    if (result.success) {
+      // Redirect to account page on success
+      return new Response(null, {
+        status: 302,
+        headers: { Location: result.redirectTo || "/account" },
+      });
+    } else {
+      // Redirect to login with error
+      return new Response(null, {
+        status: 302,
+        headers: { Location: "/login?error=auth_failed" },
+      });
+    }
+  } catch (error) {
+    console.error("Email login callback error:", error);
+    
+    // Check if it's a token expiration error
+    const errorMessage = error instanceof Error ? error.message : "server_error";
+    const isTokenError = errorMessage.includes("expired") || errorMessage.includes("invalid");
+    
+    return new Response(null, {
+      status: 302,
+      headers: { 
+        Location: isTokenError 
+          ? "/login?error=link_expired" 
+          : "/login?error=server_error" 
+      },
+    });
+  }
+}
diff --git a/src/routes/api/auth/email-verification-callback.ts b/src/routes/api/auth/email-verification-callback.ts
new file mode 100644
index 0000000..72f02c1
--- /dev/null
+++ b/src/routes/api/auth/email-verification-callback.ts
@@ -0,0 +1,200 @@
+import type { APIEvent } from "@solidjs/start/server";
+import { appRouter } from "~/server/api/root";
+import { createTRPCContext } from "~/server/api/utils";
+
+export async function GET(event: APIEvent) {
+  const url = new URL(event.request.url);
+  const email = url.searchParams.get("email");
+  const token = url.searchParams.get("token");
+
+  // Missing required parameters
+  if (!email || !token) {
+    return new Response(
+      `
+      <!DOCTYPE html>
+      <html>
+      <head>
+        <title>Email Verification Error</title>
+        <style>
+          body {
+            font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, sans-serif;
+            display: flex;
+            justify-content: center;
+            align-items: center;
+            min-height: 100vh;
+            margin: 0;
+            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
+          }
+          .container {
+            background: white;
+            padding: 2rem;
+            border-radius: 1rem;
+            box-shadow: 0 10px 25px rgba(0,0,0,0.2);
+            text-align: center;
+            max-width: 400px;
+          }
+          h1 { color: #e53e3e; margin-bottom: 1rem; }
+          p { color: #4a5568; margin-bottom: 1.5rem; }
+          a {
+            display: inline-block;
+            padding: 0.75rem 1.5rem;
+            background: #667eea;
+            color: white;
+            text-decoration: none;
+            border-radius: 0.5rem;
+            transition: background 0.3s;
+          }
+          a:hover { background: #5a67d8; }
+        </style>
+      </head>
+      <body>
+        <div class="container">
+          <h1>❌ Verification Failed</h1>
+          <p>Invalid verification link. Please check your email and try again.</p>
+          <a href="/login">Return to Login</a>
+        </div>
+      </body>
+      </html>
+      `,
+      {
+        status: 400,
+        headers: { "Content-Type": "text/html" },
+      }
+    );
+  }
+
+  try {
+    // Create tRPC caller to invoke the emailVerification procedure
+    const ctx = await createTRPCContext(event);
+    const caller = appRouter.createCaller(ctx);
+
+    // Call the email verification handler
+    const result = await caller.auth.emailVerification({
+      email,
+      token,
+    });
+
+    if (result.success) {
+      // Show success page
+      return new Response(
+        `
+        <!DOCTYPE html>
+        <html>
+        <head>
+          <title>Email Verified</title>
+          <style>
+            body {
+              font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, sans-serif;
+              display: flex;
+              justify-content: center;
+              align-items: center;
+              min-height: 100vh;
+              margin: 0;
+              background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
+            }
+            .container {
+              background: white;
+              padding: 2rem;
+              border-radius: 1rem;
+              box-shadow: 0 10px 25px rgba(0,0,0,0.2);
+              text-align: center;
+              max-width: 400px;
+            }
+            h1 { color: #48bb78; margin-bottom: 1rem; }
+            p { color: #4a5568; margin-bottom: 1.5rem; }
+            .checkmark {
+              font-size: 4rem;
+              margin-bottom: 1rem;
+            }
+            a {
+              display: inline-block;
+              padding: 0.75rem 1.5rem;
+              background: #48bb78;
+              color: white;
+              text-decoration: none;
+              border-radius: 0.5rem;
+              transition: background 0.3s;
+            }
+            a:hover { background: #38a169; }
+          </style>
+        </head>
+        <body>
+          <div class="container">
+            <div class="checkmark">✓</div>
+            <h1>Email Verified!</h1>
+            <p>${result.message || "Your email has been successfully verified."}</p>
+            <a href="/login">Continue to Login</a>
+          </div>
+        </body>
+        </html>
+        `,
+        {
+          status: 200,
+          headers: { "Content-Type": "text/html" },
+        }
+      );
+    } else {
+      throw new Error("Verification failed");
+    }
+  } catch (error) {
+    console.error("Email verification callback error:", error);
+
+    // Check if it's a token expiration error
+    const errorMessage = error instanceof Error ? error.message : "server_error";
+    const isTokenError = errorMessage.includes("expired") || errorMessage.includes("invalid");
+
+    return new Response(
+      `
+      <!DOCTYPE html>
+      <html>
+      <head>
+        <title>Email Verification Error</title>
+        <style>
+          body {
+            font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, sans-serif;
+            display: flex;
+            justify-content: center;
+            align-items: center;
+            min-height: 100vh;
+            margin: 0;
+            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
+          }
+          .container {
+            background: white;
+            padding: 2rem;
+            border-radius: 1rem;
+            box-shadow: 0 10px 25px rgba(0,0,0,0.2);
+            text-align: center;
+            max-width: 400px;
+          }
+          h1 { color: #e53e3e; margin-bottom: 1rem; }
+          p { color: #4a5568; margin-bottom: 1.5rem; }
+          a {
+            display: inline-block;
+            padding: 0.75rem 1.5rem;
+            background: #667eea;
+            color: white;
+            text-decoration: none;
+            border-radius: 0.5rem;
+            transition: background 0.3s;
+            margin: 0.5rem;
+          }
+          a:hover { background: #5a67d8; }
+        </style>
+      </head>
+      <body>
+        <div class="container">
+          <h1>❌ Verification Failed</h1>
+          <p>${isTokenError ? "This verification link has expired. Please request a new verification email." : "An error occurred during verification. Please try again."}</p>
+          <a href="/login">Return to Login</a>
+        </div>
+      </body>
+      </html>
+      `,
+      {
+        status: 400,
+        headers: { "Content-Type": "text/html" },
+      }
+    );
+  }
+}
diff --git a/src/routes/login.tsx b/src/routes/login.tsx
new file mode 100644
index 0000000..6ecd1be
--- /dev/null
+++ b/src/routes/login.tsx
@@ -0,0 +1,582 @@
+import { createSignal, createEffect, onCleanup, Show } from "solid-js";
+import { A, useNavigate, useSearchParams } from "@solidjs/router";
+import GoogleLogo from "~/components/icons/GoogleLogo";
+import GitHub from "~/components/icons/GitHub";
+import Eye from "~/components/icons/Eye";
+import EyeSlash from "~/components/icons/EyeSlash";
+import CountdownCircleTimer from "~/components/CountdownCircleTimer";
+import { isValidEmail, validatePassword } from "~/lib/validation";
+import { getClientCookie } from "~/lib/cookies.client";
+
+export default function LoginPage() {
+  const navigate = useNavigate();
+  const [searchParams] = useSearchParams();
+
+  // State management
+  const [register, setRegister] = createSignal(false);
+  const [error, setError] = createSignal("");
+  const [loading, setLoading] = createSignal(false);
+  const [usePassword, setUsePassword] = createSignal(false);
+  const [countDown, setCountDown] = createSignal(0);
+  const [emailSent, setEmailSent] = createSignal(false);
+  const [showPasswordError, setShowPasswordError] = createSignal(false);
+  const [showPasswordSuccess, setShowPasswordSuccess] = createSignal(false);
+  const [showPasswordInput, setShowPasswordInput] = createSignal(false);
+  const [showPasswordConfInput, setShowPasswordConfInput] = createSignal(false);
+  const [passwordsMatch, setPasswordsMatch] = createSignal(false);
+  const [showPasswordLengthWarning, setShowPasswordLengthWarning] = createSignal(false);
+  const [passwordLengthSufficient, setPasswordLengthSufficient] = createSignal(false);
+  const [passwordBlurred, setPasswordBlurred] = createSignal(false);
+
+  // Form refs
+  let emailRef: HTMLInputElement | undefined;
+  let passwordRef: HTMLInputElement | undefined;
+  let passwordConfRef: HTMLInputElement | undefined;
+  let rememberMeRef: HTMLInputElement | undefined;
+  let timerInterval: number | undefined;
+
+  // Environment variables
+  const googleClientId = import.meta.env.VITE_GOOGLE_CLIENT_ID;
+  const githubClientId = import.meta.env.VITE_GITHUB_CLIENT_ID;
+  const domain = import.meta.env.VITE_DOMAIN || "https://www.freno.me";
+
+  // Calculate remaining time from cookie
+  const calcRemainder = (timer: string) => {
+    const expires = new Date(timer);
+    const remaining = expires.getTime() - Date.now();
+    const remainingInSeconds = remaining / 1000;
+
+    if (remainingInSeconds <= 0) {
+      setCountDown(0);
+      if (timerInterval) {
+        clearInterval(timerInterval);
+      }
+    } else {
+      setCountDown(remainingInSeconds);
+    }
+  };
+
+  // Check for existing timer on mount
+  createEffect(() => {
+    const timer = getClientCookie("emailLoginLinkRequested");
+    if (timer) {
+      timerInterval = setInterval(() => calcRemainder(timer), 1000) as unknown as number;
+      onCleanup(() => {
+        if (timerInterval) {
+          clearInterval(timerInterval);
+        }
+      });
+    }
+  });
+
+  // Check for OAuth/callback errors in URL
+  createEffect(() => {
+    const errorParam = searchParams.error;
+    if (errorParam) {
+      const errorMessages: Record<string, string> = {
+        missing_code: "OAuth authorization failed - missing code",
+        auth_failed: "Authentication failed - please try again",
+        server_error: "Server error - please try again later",
+        missing_params: "Invalid login link - missing parameters",
+        link_expired: "Login link has expired - please request a new one",
+        access_denied: "Access denied - you cancelled the login",
+      };
+      setError(errorMessages[errorParam] || "An error occurred during login");
+    }
+  });
+
+  // Form submission handler
+  const formHandler = async (e: Event) => {
+    e.preventDefault();
+    setLoading(true);
+    setError("");
+    setShowPasswordError(false);
+    setShowPasswordSuccess(false);
+
+    try {
+      if (register()) {
+        // Registration flow
+        if (!emailRef || !passwordRef || !passwordConfRef) {
+          setError("Please fill in all fields");
+          setLoading(false);
+          return;
+        }
+
+        const email = emailRef.value;
+        const password = passwordRef.value;
+        const passwordConf = passwordConfRef.value;
+
+        // Validate inputs
+        if (!isValidEmail(email)) {
+          setError("Invalid email address");
+          setLoading(false);
+          return;
+        }
+
+        const passwordValidation = validatePassword(password);
+        if (!passwordValidation.isValid) {
+          setError(passwordValidation.errors[0] || "Invalid password");
+          setLoading(false);
+          return;
+        }
+
+        if (password !== passwordConf) {
+          setError("passwordMismatch");
+          setLoading(false);
+          return;
+        }
+
+        // Call registration endpoint
+        const response = await fetch("/api/trpc/auth.emailRegistration", {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({ email, password, passwordConfirmation: passwordConf }),
+        });
+
+        const result = await response.json();
+
+        if (response.ok && result.result?.data) {
+          navigate("/account");
+        } else {
+          const errorMsg = result.error?.message || result.result?.data?.message || "Registration failed";
+          if (errorMsg.includes("duplicate") || errorMsg.includes("already exists")) {
+            setError("duplicate");
+          } else {
+            setError(errorMsg);
+          }
+        }
+      } else if (usePassword()) {
+        // Password login flow
+        if (!emailRef || !passwordRef || !rememberMeRef) {
+          setError("Please fill in all fields");
+          setLoading(false);
+          return;
+        }
+
+        const email = emailRef.value;
+        const password = passwordRef.value;
+        const rememberMe = rememberMeRef.checked;
+
+        const response = await fetch("/api/trpc/auth.emailPasswordLogin", {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({ email, password, rememberMe }),
+        });
+
+        const result = await response.json();
+
+        if (response.ok && result.result?.data?.success) {
+          setShowPasswordSuccess(true);
+          setTimeout(() => {
+            navigate(-1); // Go back
+            window.location.reload(); // Refresh to update session
+          }, 500);
+        } else {
+          setShowPasswordError(true);
+        }
+      } else {
+        // Email link login flow
+        if (!emailRef || !rememberMeRef) {
+          setError("Please enter your email");
+          setLoading(false);
+          return;
+        }
+
+        const email = emailRef.value;
+        const rememberMe = rememberMeRef.checked;
+
+        if (!isValidEmail(email)) {
+          setError("Invalid email address");
+          setLoading(false);
+          return;
+        }
+
+        const response = await fetch("/api/trpc/auth.requestEmailLinkLogin", {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({ email, rememberMe }),
+        });
+
+        const result = await response.json();
+
+        if (response.ok && result.result?.data?.success) {
+          setEmailSent(true);
+          const timer = getClientCookie("emailLoginLinkRequested");
+          if (timer) {
+            if (timerInterval) {
+              clearInterval(timerInterval);
+            }
+            timerInterval = setInterval(() => calcRemainder(timer), 1000) as unknown as number;
+          }
+        } else {
+          const errorMsg = result.error?.message || result.result?.data?.message || "Failed to send email";
+          setError(errorMsg);
+        }
+      }
+    } catch (err: any) {
+      console.error("Login error:", err);
+      setError(err.message || "An error occurred");
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  // Countdown timer render function
+  const renderTime = () => {
+    return (
+      <div class="timer">
+        <div class="value">{countDown().toFixed(0)}</div>
+      </div>
+    );
+  };
+
+  // Password validation helpers
+  const checkForMatch = (newPassword: string, newPasswordConf: string) => {
+    setPasswordsMatch(newPassword === newPasswordConf);
+  };
+
+  const checkPasswordLength = (password: string) => {
+    if (password.length >= 8) {
+      setPasswordLengthSufficient(true);
+      setShowPasswordLengthWarning(false);
+    } else {
+      setPasswordLengthSufficient(false);
+      if (passwordBlurred()) {
+        setShowPasswordLengthWarning(true);
+      }
+    }
+  };
+
+  const passwordLengthBlurCheck = () => {
+    if (!passwordLengthSufficient() && passwordRef && passwordRef.value !== "") {
+      setShowPasswordLengthWarning(true);
+    }
+    setPasswordBlurred(true);
+  };
+
+  const handleNewPasswordChange = (e: Event) => {
+    const target = e.target as HTMLInputElement;
+    checkPasswordLength(target.value);
+  };
+
+  const handlePasswordConfChange = (e: Event) => {
+    const target = e.target as HTMLInputElement;
+    if (passwordRef) {
+      checkForMatch(passwordRef.value, target.value);
+    }
+  };
+
+  const handlePasswordBlur = () => {
+    passwordLengthBlurCheck();
+  };
+
+  return (
+    <div class="flex h-[100dvh] flex-row justify-evenly">
+      {/* Logo section - hidden on mobile */}
+      <div class="hidden md:flex">
+        <div class="vertical-rule-around z-0 flex justify-center">
+          <picture class="-mr-8">
+            <source srcSet="/WhiteLogo.png" media="(prefers-color-scheme: dark)" />
+            <img src="/BlackLogo.png" alt="logo" width={64} height={64} />
+          </picture>
+        </div>
+      </div>
+
+      {/* Main content */}
+      <div class="pt-24 md:pt-48">
+        {/* Error message */}
+        <div class="absolute -mt-12 text-center text-3xl italic text-red-400">
+          <Show when={error() === "passwordMismatch"}>Passwords did not match!</Show>
+          <Show when={error() === "duplicate"}>Email Already Exists!</Show>
+        </div>
+
+        {/* Title */}
+        <div class="py-2 pl-6 text-2xl md:pl-0">{register() ? "Register" : "Login"}</div>
+
+        {/* Toggle Register/Login */}
+        <Show
+          when={!register()}
+          fallback={
+            <div class="py-4 text-center md:min-w-[475px]">
+              Already have an account?
+              <button
+                onClick={() => {
+                  setRegister(false);
+                  setUsePassword(false);
+                }}
+                class="pl-1 text-blue-400 underline dark:text-blue-600 hover:text-blue-300 dark:hover:text-blue-500"
+              >
+                Click here to Login
+              </button>
+            </div>
+          }
+        >
+          <div class="py-4 text-center md:min-w-[475px]">
+            Don't have an account yet?
+            <button
+              onClick={() => {
+                setRegister(true);
+                setUsePassword(false);
+              }}
+              class="pl-1 text-blue-400 underline dark:text-blue-600 hover:text-blue-300 dark:hover:text-blue-500"
+            >
+              Click here to Register
+            </button>
+          </div>
+        </Show>
+
+        {/* Form */}
+        <form onSubmit={formHandler} class="flex flex-col px-2 py-4">
+          {/* Email input */}
+          <div class="flex justify-center">
+            <div class="input-group mx-4">
+              <input
+                type="text"
+                required
+                ref={emailRef}
+                placeholder=" "
+                class="underlinedInput bg-transparent"
+              />
+              <span class="bar"></span>
+              <label class="underlinedInputLabel">Email</label>
+            </div>
+          </div>
+
+          {/* Password input - shown for login with password or registration */}
+          <Show when={usePassword() || register()}>
+            <div class="-mt-4 flex justify-center">
+              <div class="input-group mx-4 flex">
+                <input
+                  type={showPasswordInput() ? "text" : "password"}
+                  required
+                  minLength={8}
+                  ref={passwordRef}
+                  onInput={register() ? handleNewPasswordChange : undefined}
+                  onBlur={register() ? handlePasswordBlur : undefined}
+                  placeholder=" "
+                  class="underlinedInput bg-transparent"
+                />
+                <span class="bar"></span>
+                <label class="underlinedInputLabel">Password</label>
+              </div>
+              <button
+                onClick={() => {
+                  setShowPasswordInput(!showPasswordInput());
+                  passwordRef?.focus();
+                }}
+                class="absolute ml-60 mt-14"
+                type="button"
+              >
+                <Show
+                  when={showPasswordInput()}
+                  fallback={
+                    <EyeSlash
+                      height={24}
+                      width={24}
+                      strokeWidth={1}
+                      class="stroke-zinc-900 dark:stroke-white"
+                    />
+                  }
+                >
+                  <Eye
+                    height={24}
+                    width={24}
+                    strokeWidth={1}
+                    class="stroke-zinc-900 dark:stroke-white"
+                  />
+                </Show>
+              </button>
+            </div>
+            <div
+              class={`${
+                showPasswordLengthWarning() ? "" : "select-none opacity-0"
+              } text-center text-red-500 transition-opacity duration-200 ease-in-out`}
+            >
+              Password too short! Min Length: 8
+            </div>
+          </Show>
+
+          {/* Password confirmation - shown only for registration */}
+          <Show when={register()}>
+            <div class="-mt-4 flex justify-center">
+              <div class="input-group mx-4">
+                <input
+                  type={showPasswordConfInput() ? "text" : "password"}
+                  required
+                  minLength={8}
+                  ref={passwordConfRef}
+                  onInput={handlePasswordConfChange}
+                  placeholder=" "
+                  class="underlinedInput bg-transparent"
+                />
+                <span class="bar"></span>
+                <label class="underlinedInputLabel">Confirm Password</label>
+              </div>
+              <button
+                onClick={() => {
+                  setShowPasswordConfInput(!showPasswordConfInput());
+                  passwordConfRef?.focus();
+                }}
+                class="absolute ml-60 mt-14"
+                type="button"
+              >
+                <Show
+                  when={showPasswordConfInput()}
+                  fallback={
+                    <EyeSlash
+                      height={24}
+                      width={24}
+                      strokeWidth={1}
+                      class="stroke-zinc-900 dark:stroke-white"
+                    />
+                  }
+                >
+                  <Eye
+                    height={24}
+                    width={24}
+                    strokeWidth={1}
+                    class="stroke-zinc-900 dark:stroke-white"
+                  />
+                </Show>
+              </button>
+            </div>
+            <div
+              class={`${
+                !passwordsMatch() &&
+                passwordLengthSufficient() &&
+                passwordConfRef &&
+                passwordConfRef.value.length >= 6
+                  ? ""
+                  : "select-none opacity-0"
+              } text-center text-red-500 transition-opacity duration-200 ease-in-out`}
+            >
+              Passwords do not match!
+            </div>
+          </Show>
+
+          {/* Remember Me checkbox */}
+          <div class="mx-auto flex pt-4">
+            <input type="checkbox" class="my-auto" ref={rememberMeRef} />
+            <div class="my-auto px-2 text-sm font-normal">Remember Me</div>
+          </div>
+
+          {/* Error/Success messages */}
+          <div
+            class={`${
+              showPasswordError()
+                ? "text-red-500"
+                : showPasswordSuccess()
+                ? "text-green-500"
+                : "select-none opacity-0"
+            } flex min-h-[16px] justify-center italic transition-opacity duration-300 ease-in-out`}
+          >
+            <Show when={showPasswordError()}>Credentials did not match any record</Show>
+            <Show when={showPasswordSuccess()}>Login Success! Redirecting...</Show>
+          </div>
+
+          {/* Submit button or countdown timer */}
+          <div class="flex justify-center py-4">
+            <Show
+              when={!register() && !usePassword() && countDown() > 0}
+              fallback={
+                <button
+                  type="submit"
+                  disabled={loading()}
+                  class={`${
+                    loading()
+                      ? "bg-zinc-400"
+                      : "bg-blue-400 hover:bg-blue-500 active:scale-90 dark:bg-blue-600 dark:hover:bg-blue-700"
+                  } flex w-36 justify-center rounded py-3 text-white shadow-lg shadow-blue-300 transition-all duration-300 ease-out dark:shadow-blue-700`}
+                >
+                  {register() ? "Sign Up" : usePassword() ? "Sign In" : "Get Link"}
+                </button>
+              }
+            >
+              <CountdownCircleTimer
+                duration={120}
+                initialRemainingTime={countDown()}
+                size={48}
+                strokeWidth={6}
+                colors="#60a5fa"
+              >
+                {renderTime}
+              </CountdownCircleTimer>
+            </Show>
+
+            {/* Toggle password/email link */}
+            <Show when={!register() && !usePassword()}>
+              <button
+                type="button"
+                onClick={() => setUsePassword(true)}
+                class="hover-underline-animation my-auto ml-2 px-2 text-sm"
+              >
+                Use Password
+              </button>
+            </Show>
+            <Show when={usePassword()}>
+              <button
+                type="button"
+                onClick={() => setUsePassword(false)}
+                class="hover-underline-animation my-auto ml-2 px-2 text-sm"
+              >
+                Use Email Link
+              </button>
+            </Show>
+          </div>
+        </form>
+
+        {/* Password reset link */}
+        <Show when={usePassword()}>
+          <div class="pb-4 text-center text-sm">
+            Trouble Logging In?{" "}
+            <A
+              class="text-blue-500 underline underline-offset-4 hover:text-blue-400"
+              href="/login/request-password-reset"
+            >
+              Reset Password
+            </A>
+          </div>
+        </Show>
+
+        {/* Email sent confirmation */}
+        <div
+          class={`${
+            emailSent() ? "" : "user-select opacity-0"
+          } flex min-h-[16px] justify-center text-center italic text-green-400 transition-opacity duration-300 ease-in-out`}
+        >
+          <Show when={emailSent()}>Email Sent!</Show>
+        </div>
+
+        {/* Or divider */}
+        <div class="rule-around text-center">Or</div>
+
+        {/* OAuth buttons */}
+        <div class="my-2 flex justify-center">
+          <div class="mx-auto mb-4 flex flex-col">
+            {/* Google OAuth */}
+            <A
+              href={`https://accounts.google.com/o/oauth2/v2/auth?client_id=${googleClientId}&redirect_uri=${domain}/api/auth/callback/google&response_type=code&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email`}
+              class="my-4 flex w-80 flex-row justify-between rounded border border-zinc-800 bg-white px-4 py-2 text-black shadow-md transition-all duration-300 ease-out hover:bg-zinc-100 active:scale-95 dark:border dark:border-zinc-50 dark:bg-zinc-800 dark:text-white dark:hover:bg-zinc-700"
+            >
+              {register() ? "Register " : "Sign in "} with Google
+              <span class="my-auto">
+                <GoogleLogo height={24} width={24} />
+              </span>
+            </A>
+
+            {/* GitHub OAuth */}
+            <A
+              href={`https://github.com/login/oauth/authorize?client_id=${githubClientId}&redirect_uri=${domain}/api/auth/callback/github&scope=user`}
+              class="my-4 flex w-80 flex-row justify-between rounded bg-zinc-600 px-4 py-2 text-white shadow-md transition-all duration-300 ease-out hover:bg-zinc-700 active:scale-95"
+            >
+              {register() ? "Register " : "Sign in "} with Github
+              <span class="my-auto">
+                <GitHub height={24} width={24} fill="white" />
+              </span>
+            </A>
+          </div>
+        </div>
+      </div>
+    </div>
+  );
+}
diff --git a/src/routes/test-utils.tsx b/src/routes/test-utils.tsx
new file mode 100644
index 0000000..bf18e1b
--- /dev/null
+++ b/src/routes/test-utils.tsx
@@ -0,0 +1,169 @@
+import { createSignal } from "solid-js";
+import Input from "~/components/ui/Input";
+import Button from "~/components/ui/Button";
+import { isValidEmail, validatePassword, passwordsMatch } from "~/lib/validation";
+
+/**
+ * Test page to validate Task 01 components and utilities
+ * Navigate to /test-utils to view
+ */
+export default function TestUtilsPage() {
+  const [email, setEmail] = createSignal("");
+  const [password, setPassword] = createSignal("");
+  const [passwordConf, setPasswordConf] = createSignal("");
+  const [loading, setLoading] = createSignal(false);
+
+  const emailError = () => {
+    if (!email()) return undefined;
+    return isValidEmail(email()) ? undefined : "Invalid email format";
+  };
+
+  const passwordError = () => {
+    if (!password()) return undefined;
+    const validation = validatePassword(password());
+    return validation.isValid ? undefined : validation.errors.join(", ");
+  };
+
+  const passwordMatchError = () => {
+    if (!passwordConf()) return undefined;
+    return passwordsMatch(password(), passwordConf()) 
+      ? undefined 
+      : "Passwords do not match";
+  };
+
+  const handleSubmit = async (e: Event) => {
+    e.preventDefault();
+    setLoading(true);
+    
+    // Simulate API call
+    await new Promise(resolve => setTimeout(resolve, 2000));
+    
+    alert(`Form submitted!\nEmail: ${email()}\nPassword: ${password()}`);
+    setLoading(false);
+  };
+
+  return (
+    <main class="min-h-screen bg-gray-100 p-8">
+      <div class="max-w-2xl mx-auto">
+        <div class="bg-white rounded-lg shadow-lg p-6 mb-6">
+          <h1 class="text-3xl font-bold mb-2">Task 01 - Utility Testing</h1>
+          <p class="text-gray-600 mb-4">
+            Testing shared utilities, types, and UI components
+          </p>
+        </div>
+
+        <div class="bg-white rounded-lg shadow p-6 mb-6">
+          <h2 class="text-xl font-bold mb-4">Form Components & Validation</h2>
+          
+          <form onSubmit={handleSubmit} class="space-y-4">
+            <Input
+              type="email"
+              label="Email Address"
+              value={email()}
+              onInput={(e) => setEmail(e.currentTarget.value)}
+              error={emailError()}
+              helperText="Enter a valid email address"
+              required
+            />
+
+            <Input
+              type="password"
+              label="Password"
+              value={password()}
+              onInput={(e) => setPassword(e.currentTarget.value)}
+              error={passwordError()}
+              helperText="Minimum 8 characters"
+              required
+            />
+
+            <Input
+              type="password"
+              label="Confirm Password"
+              value={passwordConf()}
+              onInput={(e) => setPasswordConf(e.currentTarget.value)}
+              error={passwordMatchError()}
+              required
+            />
+
+            <div class="flex gap-2">
+              <Button
+                type="submit"
+                variant="primary"
+                loading={loading()}
+                disabled={
+                  !isValidEmail(email()) ||
+                  !validatePassword(password()).isValid ||
+                  !passwordsMatch(password(), passwordConf())
+                }
+              >
+                Submit
+              </Button>
+
+              <Button
+                type="button"
+                variant="secondary"
+                onClick={() => {
+                  setEmail("");
+                  setPassword("");
+                  setPasswordConf("");
+                }}
+              >
+                Reset
+              </Button>
+
+              <Button
+                type="button"
+                variant="danger"
+                onClick={() => alert("Danger action!")}
+              >
+                Delete
+              </Button>
+
+              <Button
+                type="button"
+                variant="ghost"
+                onClick={() => alert("Ghost action!")}
+              >
+                Cancel
+              </Button>
+            </div>
+          </form>
+        </div>
+
+        <div class="bg-white rounded-lg shadow p-6">
+          <h2 class="text-xl font-bold mb-4">Validation Status</h2>
+          
+          <div class="space-y-2 text-sm">
+            <div class="flex items-center gap-2">
+              <span class={`w-3 h-3 rounded-full ${isValidEmail(email()) ? "bg-green-500" : "bg-gray-300"}`} />
+              <span>Email Valid: {isValidEmail(email()) ? "✓" : "✗"}</span>
+            </div>
+
+            <div class="flex items-center gap-2">
+              <span class={`w-3 h-3 rounded-full ${validatePassword(password()).isValid ? "bg-green-500" : "bg-gray-300"}`} />
+              <span>Password Valid: {validatePassword(password()).isValid ? "✓" : "✗"}</span>
+            </div>
+
+            <div class="flex items-center gap-2">
+              <span class={`w-3 h-3 rounded-full ${passwordsMatch(password(), passwordConf()) ? "bg-green-500" : "bg-gray-300"}`} />
+              <span>Passwords Match: {passwordsMatch(password(), passwordConf()) ? "✓" : "✗"}</span>
+            </div>
+          </div>
+        </div>
+
+        <div class="bg-blue-50 border border-blue-200 rounded p-4 mt-6">
+          <h3 class="font-bold text-blue-800 mb-2">✅ Task 01 Complete</h3>
+          <ul class="text-sm text-blue-700 space-y-1">
+            <li>✓ User types created</li>
+            <li>✓ Cookie utilities created</li>
+            <li>✓ Validation helpers created</li>
+            <li>✓ Input component created</li>
+            <li>✓ Button component created</li>
+            <li>✓ Conversion patterns documented</li>
+            <li>✓ Build successful</li>
+          </ul>
+        </div>
+      </div>
+    </main>
+  );
+}
diff --git a/src/routes/test.tsx b/src/routes/test.tsx
index 6d2079a..4665e82 100644
--- a/src/routes/test.tsx
+++ b/src/routes/test.tsx
@@ -5,78 +5,854 @@ type EndpointTest = {
   router: string;
   procedure: string;
   method: "query" | "mutation";
-  input?: object;
+  sampleInput?: object;
   description: string;
+  requiresAuth?: boolean;
+  requiresAdmin?: boolean;
 };
 
-const endpoints: EndpointTest[] = [
-  // JSON Service (no input needed)
+type RouterSection = {
+  name: string;
+  description: string;
+  endpoints: EndpointTest[];
+};
+
+const routerSections: RouterSection[] = [
+  // ============================================================
+  // Example Router
+  // ============================================================
   {
-    name: "Get Attacks",
-    router: "lineage.jsonService",
-    procedure: "attacks",
-    method: "query",
-    description: "Get all attack data",
-  },
-  {
-    name: "Get Conditions",
-    router: "lineage.jsonService",
-    procedure: "conditions",
-    method: "query",
-    description: "Get all condition data",
-  },
-  {
-    name: "Get Dungeons",
-    router: "lineage.jsonService",
-    procedure: "dungeons",
-    method: "query",
-    description: "Get all dungeon data",
-  },
-  {
-    name: "Get Enemies",
-    router: "lineage.jsonService",
-    procedure: "enemies",
-    method: "query",
-    description: "Get all enemy data",
-  },
-  {
-    name: "Get Items",
-    router: "lineage.jsonService",
-    procedure: "items",
-    method: "query",
-    description: "Get all item data",
-  },
-  {
-    name: "Get Misc",
-    router: "lineage.jsonService",
-    procedure: "misc",
-    method: "query",
-    description: "Get all misc data",
+    name: "Example Router",
+    description: "Example endpoints demonstrating public, protected, and admin procedures",
+    endpoints: [
+      {
+        name: "Hello",
+        router: "example",
+        procedure: "hello",
+        method: "query",
+        description: "Simple hello world endpoint",
+        sampleInput: "World",
+      },
+      {
+        name: "Get Profile",
+        router: "example",
+        procedure: "getProfile",
+        method: "query",
+        description: "Get authenticated user profile",
+        requiresAuth: true,
+      },
+      {
+        name: "Admin Dashboard",
+        router: "example",
+        procedure: "adminDashboard",
+        method: "query",
+        description: "Access admin dashboard",
+        requiresAdmin: true,
+      },
+    ],
   },
 
-  // Misc
+  // ============================================================
+  // Auth Router
+  // ============================================================
   {
-    name: "Offline Secret",
-    router: "lineage.misc",
-    procedure: "offlineSecret",
-    method: "query",
-    description: "Get offline serialization secret",
+    name: "Auth Router",
+    description: "OAuth callbacks and email-based authentication",
+    endpoints: [
+      {
+        name: "Email Registration",
+        router: "auth",
+        procedure: "emailRegistration",
+        method: "mutation",
+        description: "Register new user with email/password",
+        sampleInput: {
+          email: "newuser@example.com",
+          password: "SecurePass123!",
+          passwordConfirmation: "SecurePass123!",
+        },
+      },
+      {
+        name: "Email Password Login",
+        router: "auth",
+        procedure: "emailPasswordLogin",
+        method: "mutation",
+        description: "Login with email and password",
+        sampleInput: {
+          email: "test@example.com",
+          password: "SecurePass123!",
+          rememberMe: true,
+        },
+      },
+      {
+        name: "Request Email Link Login",
+        router: "auth",
+        procedure: "requestEmailLinkLogin",
+        method: "mutation",
+        description: "Request magic link login email",
+        sampleInput: {
+          email: "test@example.com",
+          rememberMe: false,
+        },
+      },
+      {
+        name: "Email Login (with token)",
+        router: "auth",
+        procedure: "emailLogin",
+        method: "mutation",
+        description: "Complete magic link login",
+        sampleInput: {
+          email: "test@example.com",
+          token: "eyJhbGciOiJIUzI1NiJ9...",
+          rememberMe: true,
+        },
+      },
+      {
+        name: "Request Password Reset",
+        router: "auth",
+        procedure: "requestPasswordReset",
+        method: "mutation",
+        description: "Send password reset email",
+        sampleInput: {
+          email: "test@example.com",
+        },
+      },
+      {
+        name: "Reset Password",
+        router: "auth",
+        procedure: "resetPassword",
+        method: "mutation",
+        description: "Reset password with token from email",
+        sampleInput: {
+          token: "eyJhbGciOiJIUzI1NiJ9...",
+          newPassword: "NewSecurePass123!",
+          newPasswordConfirmation: "NewSecurePass123!",
+        },
+      },
+      {
+        name: "Resend Email Verification",
+        router: "auth",
+        procedure: "resendEmailVerification",
+        method: "mutation",
+        description: "Resend verification email",
+        sampleInput: {
+          email: "test@example.com",
+        },
+      },
+      {
+        name: "Email Verification",
+        router: "auth",
+        procedure: "emailVerification",
+        method: "mutation",
+        description: "Verify email with token",
+        sampleInput: {
+          email: "test@example.com",
+          token: "eyJhbGciOiJIUzI1NiJ9...",
+        },
+      },
+      {
+        name: "Sign Out",
+        router: "auth",
+        procedure: "signOut",
+        method: "mutation",
+        description: "Clear session cookies and sign out",
+      },
+      {
+        name: "GitHub Callback",
+        router: "auth",
+        procedure: "githubCallback",
+        method: "mutation",
+        description: "Complete GitHub OAuth flow",
+        sampleInput: { code: "github_oauth_code_here" },
+      },
+      {
+        name: "Google Callback",
+        router: "auth",
+        procedure: "googleCallback",
+        method: "mutation",
+        description: "Complete Google OAuth flow",
+        sampleInput: { code: "google_oauth_code_here" },
+      },
+    ],
   },
 
-  // PvP
+  // ============================================================
+  // Database Router
+  // ============================================================
   {
-    name: "Get Opponents",
-    router: "lineage.pvp",
-    procedure: "getOpponents",
-    method: "query",
-    description: "Get 3 random PvP opponents",
+    name: "Database - Comment Reactions",
+    description: "Add/remove reactions to comments",
+    endpoints: [
+      {
+        name: "Get Comment Reactions",
+        router: "database",
+        procedure: "getCommentReactions",
+        method: "query",
+        description: "Get all reactions for a comment",
+        sampleInput: { commentID: "comment_123" },
+      },
+      {
+        name: "Add Comment Reaction",
+        router: "database",
+        procedure: "addCommentReaction",
+        method: "mutation",
+        description: "Add a reaction to a comment",
+        sampleInput: {
+          type: "👍",
+          comment_id: "comment_123",
+          user_id: "user_123",
+        },
+      },
+      {
+        name: "Remove Comment Reaction",
+        router: "database",
+        procedure: "removeCommentReaction",
+        method: "mutation",
+        description: "Remove a reaction from a comment",
+        sampleInput: {
+          type: "👍",
+          comment_id: "comment_123",
+          user_id: "user_123",
+        },
+      },
+    ],
+  },
+  {
+    name: "Database - Comments",
+    description: "Fetch comments for posts",
+    endpoints: [
+      {
+        name: "Get All Comments",
+        router: "database",
+        procedure: "getAllComments",
+        method: "query",
+        description: "Fetch all comments in the system",
+      },
+      {
+        name: "Get Comments by Post ID",
+        router: "database",
+        procedure: "getCommentsByPostId",
+        method: "query",
+        description: "Fetch comments for a specific post",
+        sampleInput: { post_id: "post_123" },
+      },
+    ],
+  },
+  {
+    name: "Database - Posts",
+    description: "CRUD operations for blog/project posts",
+    endpoints: [
+      {
+        name: "Get Post by ID",
+        router: "database",
+        procedure: "getPostById",
+        method: "query",
+        description: "Fetch a post by ID with tags",
+        sampleInput: { category: "blog", id: 1 },
+      },
+      {
+        name: "Get Post by Title",
+        router: "database",
+        procedure: "getPostByTitle",
+        method: "query",
+        description: "Fetch post with comments, likes, and tags",
+        sampleInput: { category: "project", title: "My Project" },
+      },
+      {
+        name: "Create Post",
+        router: "database",
+        procedure: "createPost",
+        method: "mutation",
+        description: "Create a new blog/project post",
+        sampleInput: {
+          category: "blog",
+          title: "Test Post",
+          subtitle: "A test subtitle",
+          body: "Post content here",
+          banner_photo: null,
+          published: false,
+          tags: ["tech", "coding"],
+          author_id: "user_123",
+        },
+      },
+      {
+        name: "Update Post",
+        router: "database",
+        procedure: "updatePost",
+        method: "mutation",
+        description: "Update an existing post",
+        sampleInput: {
+          id: 1,
+          title: "Updated Title",
+          published: true,
+          author_id: "user_123",
+        },
+      },
+    ],
+  },
+  {
+    name: "Database - Post Likes",
+    description: "Like/unlike posts",
+    endpoints: [
+      {
+        name: "Add Post Like",
+        router: "database",
+        procedure: "addPostLike",
+        method: "mutation",
+        description: "Add a like to a post",
+        sampleInput: { user_id: "user_123", post_id: "post_123" },
+      },
+      {
+        name: "Remove Post Like",
+        router: "database",
+        procedure: "removePostLike",
+        method: "mutation",
+        description: "Remove a like from a post",
+        sampleInput: { user_id: "user_123", post_id: "post_123" },
+      },
+    ],
+  },
+  {
+    name: "Database - Users",
+    description: "User profile and data management",
+    endpoints: [
+      {
+        name: "Get User by ID",
+        router: "database",
+        procedure: "getUserById",
+        method: "query",
+        description: "Fetch complete user data by ID",
+        sampleInput: { id: "user_123" },
+      },
+      {
+        name: "Get User Public Data",
+        router: "database",
+        procedure: "getUserPublicData",
+        method: "query",
+        description: "Fetch public user data (email, name, image)",
+        sampleInput: { id: "user_123" },
+      },
+      {
+        name: "Get User Image",
+        router: "database",
+        procedure: "getUserImage",
+        method: "query",
+        description: "Fetch user image URL",
+        sampleInput: { id: "user_123" },
+      },
+      {
+        name: "Update User Image",
+        router: "database",
+        procedure: "updateUserImage",
+        method: "mutation",
+        description: "Update user profile image",
+        sampleInput: { id: "user_123", imageURL: "path/to/image.jpg" },
+      },
+      {
+        name: "Update User Email",
+        router: "database",
+        procedure: "updateUserEmail",
+        method: "mutation",
+        description: "Update user email address",
+        sampleInput: {
+          id: "user_123",
+          newEmail: "new@example.com",
+          oldEmail: "old@example.com",
+        },
+      },
+    ],
+  },
+
+  // ============================================================
+  // User Router
+  // ============================================================
+  {
+    name: "User Router",
+    description: "User profile management and account operations",
+    endpoints: [
+      {
+        name: "Get Profile",
+        router: "user",
+        procedure: "getProfile",
+        method: "query",
+        description: "Get current user's profile",
+        requiresAuth: true,
+      },
+      {
+        name: "Update Email",
+        router: "user",
+        procedure: "updateEmail",
+        method: "mutation",
+        description: "Update user's email address",
+        sampleInput: { email: "newemail@example.com" },
+        requiresAuth: true,
+      },
+      {
+        name: "Update Display Name",
+        router: "user",
+        procedure: "updateDisplayName",
+        method: "mutation",
+        description: "Update user's display name",
+        sampleInput: { displayName: "New Display Name" },
+        requiresAuth: true,
+      },
+      {
+        name: "Update Profile Image",
+        router: "user",
+        procedure: "updateProfileImage",
+        method: "mutation",
+        description: "Update user's profile image URL",
+        sampleInput: { imageUrl: "https://example.com/image.jpg" },
+        requiresAuth: true,
+      },
+      {
+        name: "Change Password",
+        router: "user",
+        procedure: "changePassword",
+        method: "mutation",
+        description: "Change password (requires old password)",
+        sampleInput: {
+          oldPassword: "oldpass123",
+          newPassword: "newpass123",
+          newPasswordConfirmation: "newpass123",
+        },
+        requiresAuth: true,
+      },
+      {
+        name: "Set Password",
+        router: "user",
+        procedure: "setPassword",
+        method: "mutation",
+        description: "Set password for OAuth users",
+        sampleInput: {
+          newPassword: "newpass123",
+          newPasswordConfirmation: "newpass123",
+        },
+        requiresAuth: true,
+      },
+      {
+        name: "Delete Account",
+        router: "user",
+        procedure: "deleteAccount",
+        method: "mutation",
+        description: "Delete account (anonymize user data)",
+        sampleInput: { password: "mypassword123" },
+        requiresAuth: true,
+      },
+    ],
+  },
+
+  // ============================================================
+  // Misc Router
+  // ============================================================
+  {
+    name: "Misc - Downloads",
+    description: "Generate signed URLs for downloadable assets",
+    endpoints: [
+      {
+        name: "Get Download URL",
+        router: "misc",
+        procedure: "getDownloadUrl",
+        method: "query",
+        description: "Get signed S3 URL for asset download",
+        sampleInput: { asset_name: "shapes-with-abigail" },
+      },
+    ],
+  },
+  {
+    name: "Misc - S3 Operations",
+    description: "S3 image upload/delete operations",
+    endpoints: [
+      {
+        name: "Get Pre-Signed URL",
+        router: "misc",
+        procedure: "getPreSignedURL",
+        method: "mutation",
+        description: "Get signed URL for S3 upload",
+        sampleInput: {
+          type: "blog",
+          title: "my-post",
+          filename: "image.jpg",
+        },
+      },
+      {
+        name: "Delete Image",
+        router: "misc",
+        procedure: "deleteImage",
+        method: "mutation",
+        description: "Delete image from S3 and update DB",
+        sampleInput: {
+          key: "blog/my-post/image.jpg",
+          newAttachmentString: "[]",
+          type: "Post",
+          id: 1,
+        },
+      },
+      {
+        name: "Simple Delete Image",
+        router: "misc",
+        procedure: "simpleDeleteImage",
+        method: "mutation",
+        description: "Delete image from S3 only",
+        sampleInput: { key: "blog/my-post/image.jpg" },
+      },
+    ],
+  },
+  {
+    name: "Misc - Password Utilities",
+    description: "Password hashing and verification",
+    endpoints: [
+      {
+        name: "Hash Password",
+        router: "misc",
+        procedure: "hashPassword",
+        method: "mutation",
+        description: "Hash a password with bcrypt",
+        sampleInput: { password: "mypassword123" },
+      },
+      {
+        name: "Check Password",
+        router: "misc",
+        procedure: "checkPassword",
+        method: "mutation",
+        description: "Verify password against hash",
+        sampleInput: {
+          password: "mypassword123",
+          hash: "$2b$10$...",
+        },
+      },
+    ],
+  },
+
+  // ============================================================
+  // Lineage Router
+  // ============================================================
+  {
+    name: "Lineage - JSON Service",
+    description: "Static game data - no authentication required",
+    endpoints: [
+      {
+        name: "Get Items",
+        router: "lineage.jsonService",
+        procedure: "items",
+        method: "query",
+        description: "Get all item data (weapons, armor, potions, etc.)",
+      },
+      {
+        name: "Get Attacks",
+        router: "lineage.jsonService",
+        procedure: "attacks",
+        method: "query",
+        description: "Get all attack and spell data",
+      },
+      {
+        name: "Get Conditions",
+        router: "lineage.jsonService",
+        procedure: "conditions",
+        method: "query",
+        description: "Get all condition and debilitation data",
+      },
+      {
+        name: "Get Dungeons",
+        router: "lineage.jsonService",
+        procedure: "dungeons",
+        method: "query",
+        description: "Get all dungeon and encounter data",
+      },
+      {
+        name: "Get Enemies",
+        router: "lineage.jsonService",
+        procedure: "enemies",
+        method: "query",
+        description: "Get all enemy and boss data",
+      },
+      {
+        name: "Get Misc",
+        router: "lineage.jsonService",
+        procedure: "misc",
+        method: "query",
+        description: "Get misc game data (jobs, activities, etc.)",
+      },
+    ],
+  },
+  {
+    name: "Lineage - Authentication",
+    description: "User registration and login endpoints",
+    endpoints: [
+      {
+        name: "Email Registration",
+        router: "lineage.auth",
+        procedure: "emailRegistration",
+        method: "mutation",
+        description: "Register new user with email/password",
+        sampleInput: {
+          email: "test@example.com",
+          password: "password123",
+          password_conf: "password123",
+        },
+      },
+      {
+        name: "Email Login",
+        router: "lineage.auth",
+        procedure: "emailLogin",
+        method: "mutation",
+        description: "Login with email/password (requires verified email)",
+        sampleInput: { email: "test@example.com", password: "password123" },
+        requiresAuth: true,
+      },
+      {
+        name: "Email Verification",
+        router: "lineage.auth",
+        procedure: "emailVerification",
+        method: "mutation",
+        description: "Verify email with token from email",
+        sampleInput: { token: "eyJhbGciOiJIUzI1NiJ9..." },
+      },
+      {
+        name: "Refresh Verification Email",
+        router: "lineage.auth",
+        procedure: "refreshVerification",
+        method: "mutation",
+        description: "Resend verification email",
+        sampleInput: { email: "test@example.com" },
+      },
+      {
+        name: "Refresh Auth Token",
+        router: "lineage.auth",
+        procedure: "refreshToken",
+        method: "mutation",
+        description: "Refresh expired JWT token",
+        sampleInput: {
+          email: "test@example.com",
+          authToken: "eyJhbGciOiJIUzI1NiJ9...",
+        },
+        requiresAuth: true,
+      },
+      {
+        name: "Google Registration",
+        router: "lineage.auth",
+        procedure: "googleRegistration",
+        method: "mutation",
+        description: "Register/login with Google OAuth",
+        sampleInput: { idToken: "google_id_token_here" },
+      },
+      {
+        name: "Apple Registration",
+        router: "lineage.auth",
+        procedure: "appleRegistration",
+        method: "mutation",
+        description: "Register/login with Apple Sign In",
+        sampleInput: {
+          userString: "apple_user_string_here",
+          email: "user@privaterelay.appleid.com",
+        },
+      },
+      {
+        name: "Apple Get Email",
+        router: "lineage.auth",
+        procedure: "appleGetEmail",
+        method: "mutation",
+        description: "Get email from Apple user string",
+        sampleInput: { userString: "apple_user_string_here" },
+      },
+    ],
+  },
+  {
+    name: "Lineage - Database Management",
+    description: "User database credentials and deletion workflow",
+    endpoints: [
+      {
+        name: "Get Credentials",
+        router: "lineage.database",
+        procedure: "credentials",
+        method: "mutation",
+        description: "Get per-user database credentials",
+        sampleInput: {
+          email: "test@example.com",
+          provider: "email",
+          authToken: "jwt_token_here",
+        },
+        requiresAuth: true,
+      },
+      {
+        name: "Init Deletion",
+        router: "lineage.database",
+        procedure: "deletionInit",
+        method: "mutation",
+        description: "Start 24hr database deletion countdown",
+        sampleInput: {
+          email: "test@example.com",
+          db_name: "db_name",
+          db_token: "db_token",
+          authToken: "jwt_token",
+        },
+        requiresAuth: true,
+      },
+      {
+        name: "Check Deletion Status",
+        router: "lineage.database",
+        procedure: "deletionCheck",
+        method: "mutation",
+        description: "Check if deletion is scheduled",
+        sampleInput: {
+          email: "test@example.com",
+          db_name: "db_name",
+          db_token: "db_token",
+          authToken: "jwt_token",
+        },
+        requiresAuth: true,
+      },
+      {
+        name: "Cancel Deletion",
+        router: "lineage.database",
+        procedure: "deletionCancel",
+        method: "mutation",
+        description: "Cancel scheduled database deletion",
+        sampleInput: {
+          email: "test@example.com",
+          db_name: "db_name",
+          db_token: "db_token",
+          authToken: "jwt_token",
+        },
+        requiresAuth: true,
+      },
+      {
+        name: "Deletion Cron",
+        router: "lineage.database",
+        procedure: "deletionCron",
+        method: "query",
+        description: "Cleanup expired databases (runs via cron)",
+      },
+    ],
+  },
+  {
+    name: "Lineage - PvP",
+    description: "Player vs Player matchmaking and battle system",
+    endpoints: [
+      {
+        name: "Register Character",
+        router: "lineage.pvp",
+        procedure: "registerCharacter",
+        method: "mutation",
+        description: "Register/update character for PvP",
+        sampleInput: {
+          character: {
+            playerClass: "Mage",
+            name: "TestMage",
+            maxHealth: 100,
+            maxSanity: 100,
+            maxMana: 150,
+            baseManaRegen: 10,
+            strength: 5,
+            intelligence: 15,
+            dexterity: 10,
+            resistanceTable: "{}",
+            damageTable: "{}",
+            attackStrings: "[]",
+            knownSpells: "[]",
+          },
+          linkID: "unique_player_id_here",
+        },
+      },
+      {
+        name: "Get Opponents",
+        router: "lineage.pvp",
+        procedure: "getOpponents",
+        method: "query",
+        description: "Get 3 random PvP opponents",
+      },
+      {
+        name: "Record Battle Result",
+        router: "lineage.pvp",
+        procedure: "battleResult",
+        method: "mutation",
+        description: "Record PvP battle outcome",
+        sampleInput: {
+          winnerID: "player_id_1",
+          loserID: "player_id_2",
+        },
+      },
+    ],
+  },
+  {
+    name: "Lineage - Misc",
+    description: "Analytics, device tokens, and utility endpoints",
+    endpoints: [
+      {
+        name: "Track Analytics",
+        router: "lineage.misc",
+        procedure: "analytics",
+        method: "mutation",
+        description: "Store player analytics data",
+        sampleInput: {
+          playerID: "player_123",
+          dungeonProgression: { dungeon_1: 5 },
+          playerClass: "Mage",
+          spellCount: 10,
+          proficiencies: { fire: 3 },
+          jobs: { blacksmith: 2 },
+          resistanceTable: { fire: 10 },
+          damageTable: { physical: 5 },
+        },
+      },
+      {
+        name: "Update Device Token",
+        router: "lineage.misc",
+        procedure: "tokens",
+        method: "mutation",
+        description: "Register/update push notification token",
+        sampleInput: { token: "device_push_token_here" },
+      },
+      {
+        name: "Offline Secret",
+        router: "lineage.misc",
+        procedure: "offlineSecret",
+        method: "query",
+        description: "Get offline serialization secret",
+      },
+    ],
+  },
+  {
+    name: "Lineage - Maintenance (Admin Only)",
+    description: "Database cleanup and administrative endpoints",
+    endpoints: [
+      {
+        name: "Find Loose Databases",
+        router: "lineage.maintenance",
+        procedure: "findLooseDatabases",
+        method: "query",
+        description: "Find orphaned databases not linked to users",
+        requiresAdmin: true,
+      },
+      {
+        name: "Cleanup Expired Databases",
+        router: "lineage.maintenance",
+        procedure: "cleanupExpiredDatabases",
+        method: "query",
+        description: "Delete databases past 24hr deletion window",
+        requiresAdmin: true,
+      },
+    ],
   },
 ];
 
 export default function TestPage() {
+  const [expandedSections, setExpandedSections] = createSignal<Set<string>>(
+    new Set(),
+  );
   const [results, setResults] = createSignal<Record<string, any>>({});
   const [loading, setLoading] = createSignal<Record<string, boolean>>({});
   const [errors, setErrors] = createSignal<Record<string, string>>({});
+  const [inputEdits, setInputEdits] = createSignal<Record<string, string>>({});
+
+  const toggleSection = (sectionName: string) => {
+    const expanded = new Set(expandedSections());
+    if (expanded.has(sectionName)) {
+      expanded.delete(sectionName);
+    } else {
+      expanded.add(sectionName);
+    }
+    setExpandedSections(expanded);
+  };
 
   const testEndpoint = async (endpoint: EndpointTest) => {
     const key = `${endpoint.router}.${endpoint.procedure}`;
@@ -84,12 +860,37 @@ export default function TestPage() {
     setErrors({ ...errors(), [key]: "" });
 
     try {
-      const url = `/api/trpc/${endpoint.router}.${endpoint.procedure}`;
-      const response = await fetch(url, {
+      // Get input - either from edited JSON or sample
+      let input = endpoint.sampleInput;
+      const editedInput = inputEdits()[key];
+      if (editedInput) {
+        try {
+          // Try to parse as JSON (handles objects, arrays, strings in quotes, numbers, booleans)
+          input = JSON.parse(editedInput);
+        } catch (e) {
+          throw new Error("Invalid JSON in input field");
+        }
+      }
+
+      let url = `/api/trpc/${endpoint.router}.${endpoint.procedure}`;
+      const options: RequestInit = {
         method: endpoint.method === "query" ? "GET" : "POST",
-        headers: endpoint.input ? { "Content-Type": "application/json" } : {},
-        body: endpoint.input ? JSON.stringify(endpoint.input) : undefined,
-      });
+        headers: {},
+      };
+
+      // For queries, input goes in URL parameter
+      if (endpoint.method === "query" && input !== undefined) {
+        const encodedInput = encodeURIComponent(JSON.stringify(input));
+        url += `?input=${encodedInput}`;
+      }
+      
+      // For mutations, input goes in body
+      if (endpoint.method === "mutation" && input !== undefined) {
+        options.headers = { "Content-Type": "application/json" };
+        options.body = JSON.stringify(input);
+      }
+
+      const response = await fetch(url, options);
 
       if (!response.ok) {
         throw new Error(`HTTP ${response.status}: ${await response.text()}`);
@@ -104,69 +905,164 @@ export default function TestPage() {
     }
   };
 
-  const testAll = async () => {
-    for (const endpoint of endpoints) {
-      await testEndpoint(endpoint);
-      // Small delay to avoid overwhelming the server
-      await new Promise((resolve) => setTimeout(resolve, 100));
-    }
+  const updateInput = (key: string, value: string) => {
+    setInputEdits({ ...inputEdits(), [key]: value });
   };
 
   return (
     <main class="min-h-screen bg-gray-100 p-8">
       <div class="max-w-6xl mx-auto">
         <div class="bg-white rounded-lg shadow-lg p-6 mb-6">
-          <h1 class="text-3xl font-bold mb-2">Lineage API Testing Dashboard</h1>
-          <p class="text-gray-600 mb-4">Test all migrated tRPC endpoints</p>
+          <h1 class="text-3xl font-bold mb-2">tRPC API Testing Dashboard</h1>
+          <p class="text-gray-600 mb-4">
+            Complete API coverage: Example, Auth, Database, User, Misc, and Lineage routers
+          </p>
 
-          <button
-            onClick={testAll}
-            class="bg-blue-600 hover:bg-blue-700 text-white font-semibold py-2 px-6 rounded transition"
-          >
-            Test All Endpoints
-          </button>
+          <div class="bg-blue-50 border border-blue-200 rounded p-4">
+            <p class="text-sm text-blue-800">
+              <strong>Quick Start:</strong> Expand any section below to test
+              endpoints. Public endpoints work immediately. Auth-required
+              endpoints need valid tokens.
+            </p>
+          </div>
         </div>
 
         <div class="space-y-4">
-          <For each={endpoints}>
-            {(endpoint) => {
-              const key = `${endpoint.router}.${endpoint.procedure}`;
+          <For each={routerSections}>
+            {(section) => {
+              const isExpanded = () => expandedSections().has(section.name);
+
               return (
-                <div class="bg-white rounded-lg shadow p-6">
-                  <div class="flex justify-between items-start mb-3">
-                    <div>
-                      <h3 class="text-xl font-semibold">{endpoint.name}</h3>
-                      <p class="text-sm text-gray-600">
-                        {endpoint.description}
+                <div class="bg-white rounded-lg shadow">
+                  {/* Section Header */}
+                  <button
+                    onClick={() => toggleSection(section.name)}
+                    class="w-full px-6 py-4 flex justify-between items-center hover:bg-gray-50 transition"
+                  >
+                    <div class="text-left">
+                      <h2 class="text-xl font-bold text-gray-800">
+                        {section.name}
+                      </h2>
+                      <p class="text-sm text-gray-600">{section.description}</p>
+                      <p class="text-xs text-gray-500 mt-1">
+                        {section.endpoints.length} endpoint
+                        {section.endpoints.length !== 1 ? "s" : ""}
                       </p>
-                      <code class="text-xs bg-gray-100 px-2 py-1 rounded mt-1 inline-block">
-                        {key}
-                      </code>
                     </div>
-                    <button
-                      onClick={() => testEndpoint(endpoint)}
-                      disabled={loading()[key]}
-                      class="bg-green-600 hover:bg-green-700 disabled:bg-gray-400 text-white font-semibold py-2 px-4 rounded transition"
-                    >
-                      {loading()[key] ? "Testing..." : "Test"}
-                    </button>
-                  </div>
-
-                  <Show when={errors()[key]}>
-                    <div class="bg-red-50 border border-red-200 rounded p-3 mb-3">
-                      <p class="text-red-800 text-sm font-semibold">Error:</p>
-                      <p class="text-red-600 text-sm">{errors()[key]}</p>
+                    <div class="text-2xl text-gray-400">
+                      {isExpanded() ? "−" : "+"}
                     </div>
-                  </Show>
+                  </button>
 
-                  <Show when={results()[key]}>
-                    <div class="bg-gray-50 rounded p-3">
-                      <p class="text-sm font-semibold text-gray-700 mb-2">
-                        Response:
-                      </p>
-                      <pre class="text-xs overflow-auto max-h-60 bg-gray-900 text-green-400 p-3 rounded">
-                        {JSON.stringify(results()[key], null, 2)}
-                      </pre>
+                  {/* Section Content */}
+                  <Show when={isExpanded()}>
+                    <div class="border-t border-gray-200 p-6 space-y-4">
+                      <For each={section.endpoints}>
+                        {(endpoint) => {
+                          const key = `${endpoint.router}.${endpoint.procedure}`;
+                          const hasInput = endpoint.sampleInput !== undefined;
+                          const displayInput = () => {
+                            if (inputEdits()[key]) {
+                              return inputEdits()[key];
+                            }
+                            // Handle primitive values (string, number, boolean)
+                            if (typeof endpoint.sampleInput === 'string') {
+                              return `"${endpoint.sampleInput}"`;
+                            }
+                            if (typeof endpoint.sampleInput === 'number' || typeof endpoint.sampleInput === 'boolean') {
+                              return String(endpoint.sampleInput);
+                            }
+                            // Handle objects and arrays
+                            return JSON.stringify(endpoint.sampleInput, null, 2);
+                          };
+
+                          return (
+                            <div class="border border-gray-200 rounded-lg p-4 bg-gray-50">
+                              {/* Endpoint Header */}
+                              <div class="flex justify-between items-start mb-3">
+                                <div class="flex-1">
+                                  <div class="flex items-center gap-2">
+                                    <h3 class="text-lg font-semibold text-gray-800">
+                                      {endpoint.name}
+                                    </h3>
+                                    <Show when={endpoint.requiresAuth}>
+                                      <span class="text-xs bg-yellow-100 text-yellow-800 px-2 py-1 rounded">
+                                        🔒 Auth Required
+                                      </span>
+                                    </Show>
+                                    <Show when={endpoint.requiresAdmin}>
+                                      <span class="text-xs bg-red-100 text-red-800 px-2 py-1 rounded">
+                                        👑 Admin Only
+                                      </span>
+                                    </Show>
+                                  </div>
+                                  <p class="text-sm text-gray-600 mt-1">
+                                    {endpoint.description}
+                                  </p>
+                                  <div class="flex gap-2 mt-2">
+                                    <code class="text-xs bg-gray-200 px-2 py-1 rounded">
+                                      {key}
+                                    </code>
+                                    <span class="text-xs bg-blue-100 text-blue-800 px-2 py-1 rounded">
+                                      {endpoint.method === "query"
+                                        ? "GET"
+                                        : "POST"}
+                                    </span>
+                                  </div>
+                                </div>
+                                <button
+                                  onClick={() => testEndpoint(endpoint)}
+                                  disabled={loading()[key]}
+                                  class="bg-green-600 hover:bg-green-700 disabled:bg-gray-400 text-white font-semibold py-2 px-4 rounded transition whitespace-nowrap ml-4"
+                                >
+                                  {loading()[key] ? "Testing..." : "Test"}
+                                </button>
+                              </div>
+
+                              {/* Input Editor */}
+                              <Show when={hasInput}>
+                                <div class="mb-3">
+                                  <label class="text-xs font-semibold text-gray-700 mb-1 block">
+                                    Request Body (edit JSON):
+                                  </label>
+                                  <textarea
+                                    value={displayInput()}
+                                    onInput={(e) =>
+                                      updateInput(key, e.currentTarget.value)
+                                    }
+                                    class="w-full font-mono text-xs bg-white border border-gray-300 rounded p-2 min-h-[100px]"
+                                    spellcheck={false}
+                                  />
+                                </div>
+                              </Show>
+
+                              {/* Error Display */}
+                              <Show when={errors()[key]}>
+                                <div class="bg-red-50 border border-red-200 rounded p-3 mb-3">
+                                  <p class="text-red-800 text-sm font-semibold">
+                                    Error:
+                                  </p>
+                                  <p class="text-red-600 text-sm font-mono">
+                                    {errors()[key]}
+                                  </p>
+                                </div>
+                              </Show>
+
+                              {/* Results Display */}
+                              <Show when={results()[key]}>
+                                <div class="bg-gray-900 rounded p-3">
+                                  <p class="text-xs font-semibold text-green-400 mb-2">
+                                    ✓ Response:
+                                  </p>
+                                  <pre class="text-xs overflow-auto max-h-60 text-green-400">
+                                    {JSON.stringify(results()[key], null, 2)}
+                                  </pre>
+                                </div>
+                              </Show>
+                            </div>
+                          );
+                        }}
+                      </For>
                     </div>
                   </Show>
                 </div>
@@ -175,72 +1071,93 @@ export default function TestPage() {
           </For>
         </div>
 
+        {/* Footer Instructions */}
         <div class="bg-white rounded-lg shadow-lg p-6 mt-6">
-          <h2 class="text-2xl font-bold mb-4">Testing Instructions</h2>
+          <h2 class="text-2xl font-bold mb-4">Testing Guide</h2>
 
           <div class="space-y-4 text-gray-700">
             <div>
-              <h3 class="font-semibold text-lg mb-2">
-                ✅ Endpoints on This Page
-              </h3>
-              <p>These endpoints require no authentication or setup:</p>
-              <ul class="list-disc ml-6 mt-2 space-y-1">
-                <li>All JSON Service endpoints (game data)</li>
-                <li>Offline Secret</li>
-                <li>Get PvP Opponents</li>
+              <h3 class="font-semibold text-lg mb-2">🟢 No Auth Required</h3>
+              <ul class="list-disc ml-6 space-y-1 text-sm">
+                <li>
+                  <strong>Example Router</strong> - Hello endpoint
+                </li>
+                <li>
+                  <strong>Lineage JSON Service</strong> - All 6 endpoints work
+                  immediately
+                </li>
+                <li>
+                  <strong>Database</strong> - All endpoints (comments, posts, users, reactions, likes)
+                </li>
+                <li>
+                  <strong>Misc</strong> - Downloads, S3 operations, password utilities
+                </li>
+                <li>
+                  <strong>Lineage Misc</strong> - Offline Secret, Get Opponents
+                </li>
+                <li>
+                  <strong>Lineage PvP</strong> - Get Opponents
+                </li>
               </ul>
             </div>
 
             <div>
-              <h3 class="font-semibold text-lg mb-2">
-                🔐 Manual Testing Required
-              </h3>
-              <p class="mb-2">
-                For authentication-required endpoints, use curl or Postman:
+              <h3 class="font-semibold text-lg mb-2">🟡 Auth Required</h3>
+              <p class="text-sm mb-2">
+                These need valid JWT tokens from login/registration:
               </p>
-
-              <div class="bg-gray-900 text-green-400 p-4 rounded text-xs space-y-2">
-                <div>
-                  <p class="text-gray-400"># Email Registration</p>
-                  <code>
-                    curl -X POST
-                    http://localhost:3001/api/trpc/lineage.auth.emailRegistration
-                    \
-                  </code>
-                  <br />
-                  <code> -H "Content-Type: application/json" \</code>
-                  <br />
-                  <code>
-                    {" "}
-                    -d '{"{"}
-                    "email":"test@example.com","password":"pass123","password_conf":"pass123"
-                    {"}"}'
-                  </code>
-                </div>
-
-                <div class="mt-4">
-                  <p class="text-gray-400"># Get Items (query)</p>
-                  <code>
-                    curl
-                    http://localhost:3000/api/trpc/lineage.jsonService.items
-                  </code>
-                </div>
-              </div>
+              <ul class="list-disc ml-6 space-y-1 text-sm">
+                <li><strong>Example Router</strong> - Get Profile</li>
+                <li><strong>User Router</strong> - All endpoints (profile updates, password, account deletion)</li>
+                <li><strong>Lineage Auth</strong> - Email Login, Refresh Token</li>
+                <li><strong>Lineage Database</strong> - Get Credentials, Deletion endpoints</li>
+              </ul>
             </div>
 
             <div>
-              <h3 class="font-semibold text-lg mb-2">📚 Full Documentation</h3>
-              <p>
-                See <code>tasks/lineage-testing-guide.md</code> for complete
-                testing instructions including:
+              <h3 class="font-semibold text-lg mb-2">🔴 Admin Required</h3>
+              <p class="text-sm mb-2">
+                Maintenance endpoints require admin privileges (userIDToken
+                cookie with ADMIN_ID).
               </p>
-              <ul class="list-disc ml-6 mt-2 space-y-1">
-                <li>All 27 endpoint examples</li>
-                <li>Authentication workflows</li>
-                <li>Database verification queries</li>
-                <li>Integration testing scenarios</li>
+              <ul class="list-disc ml-6 space-y-1 text-sm">
+                <li><strong>Example Router</strong> - Admin Dashboard</li>
+                <li><strong>Lineage Maintenance</strong> - Find Loose Databases, Cleanup Expired</li>
               </ul>
             </div>
+
+            <div>
+              <h3 class="font-semibold text-lg mb-2">📝 Typical Workflows</h3>
+              <ol class="list-decimal ml-6 space-y-2 text-sm">
+                <li>
+                  <strong>Test public endpoints:</strong> Start with Example Hello, 
+                  Lineage JSON Service, or Database queries
+                </li>
+                <li>
+                  <strong>OAuth flow:</strong> Use Auth router callbacks with OAuth codes 
+                  from GitHub/Google
+                </li>
+                <li>
+                  <strong>Email auth flow:</strong> Register → verify email → login → use JWT
+                </li>
+                <li>
+                  <strong>Blog/Project management:</strong> Create posts → add comments/likes → 
+                  upload images via S3
+                </li>
+                <li>
+                  <strong>Lineage game data:</strong> Fetch JSON data → register character → 
+                  find PvP opponents
+                </li>
+              </ol>
+            </div>
+
+            <div class="bg-yellow-50 border border-yellow-200 rounded p-4 mt-4">
+              <p class="text-sm text-yellow-800">
+                <strong>Note:</strong> Some endpoints require specific setup (e.g., OAuth codes, 
+                existing database records, valid S3 keys). Check the sample input to understand 
+                what data each endpoint expects.
+              </p>
+            </div>
           </div>
         </div>
       </div>
diff --git a/src/server/api/root.ts b/src/server/api/root.ts
index e9b5a15..99c2c9a 100644
--- a/src/server/api/root.ts
+++ b/src/server/api/root.ts
@@ -3,6 +3,7 @@ import { authRouter } from "./routers/auth";
 import { databaseRouter } from "./routers/database";
 import { lineageRouter } from "./routers/lineage";
 import { miscRouter } from "./routers/misc";
+import { userRouter } from "./routers/user";
 import { createTRPCRouter } from "./utils";
 
 export const appRouter = createTRPCRouter({
@@ -10,7 +11,8 @@ export const appRouter = createTRPCRouter({
   auth: authRouter,
   database: databaseRouter,
   lineage: lineageRouter,
-  misc: miscRouter
+  misc: miscRouter,
+  user: userRouter
 });
 
 export type AppRouter = typeof appRouter;
diff --git a/src/server/api/routers/auth.ts b/src/server/api/routers/auth.ts
index b1bc07d..67463ab 100644
--- a/src/server/api/routers/auth.ts
+++ b/src/server/api/routers/auth.ts
@@ -3,28 +3,51 @@ import { z } from "zod";
 import { TRPCError } from "@trpc/server";
 import { v4 as uuidV4 } from "uuid";
 import { env } from "~/env/server";
-import { ConnectionFactory } from "~/server/utils";
+import { ConnectionFactory, hashPassword, checkPassword } from "~/server/utils";
 import { SignJWT, jwtVerify } from "jose";
-import { setCookie } from "vinxi/http";
+import { setCookie, getCookie } from "vinxi/http";
+import type { User } from "~/types/user";
 
 // Helper to create JWT token
-async function createJWT(userId: string): Promise<string> {
+async function createJWT(userId: string, expiresIn: string = "14d"): Promise<string> {
   const secret = new TextEncoder().encode(env.JWT_SECRET_KEY);
   const token = await new SignJWT({ id: userId })
     .setProtectedHeader({ alg: "HS256" })
-    .setExpirationTime("14d") // 14 days
+    .setExpirationTime(expiresIn)
     .sign(secret);
   return token;
 }
 
-// User type for database rows
-interface User {
-  id: string;
-  email?: string;
-  display_name?: string;
-  provider?: string;
-  image?: string;
-  email_verified?: boolean;
+// Helper to send email via Brevo/SendInBlue
+async function sendEmail(to: string, subject: string, htmlContent: string) {
+  const apiKey = env.SENDINBLUE_KEY;
+  const apiUrl = "https://api.sendinblue.com/v3/smtp/email";
+
+  const sendinblueData = {
+    sender: {
+      name: "freno.me",
+      email: "no_reply@freno.me",
+    },
+    to: [{ email: to }],
+    htmlContent,
+    subject,
+  };
+
+  const response = await fetch(apiUrl, {
+    method: "POST",
+    headers: {
+      accept: "application/json",
+      "api-key": apiKey,
+      "content-type": "application/json",
+    },
+    body: JSON.stringify(sendinblueData),
+  });
+
+  if (!response.ok) {
+    throw new Error("Failed to send email");
+  }
+
+  return response;
 }
 
 export const authRouter = createTRPCRouter({
@@ -323,4 +346,471 @@ export const authRouter = createTRPCRouter({
         });
       }
     }),
+
+  // Email/password registration
+  emailRegistration: publicProcedure
+    .input(
+      z.object({
+        email: z.string().email(),
+        password: z.string().min(8),
+        passwordConfirmation: z.string().min(8),
+      }),
+    )
+    .mutation(async ({ input, ctx }) => {
+      const { email, password, passwordConfirmation } = input;
+
+      if (password !== passwordConfirmation) {
+        throw new TRPCError({
+          code: "BAD_REQUEST",
+          message: "passwordMismatch",
+        });
+      }
+
+      const passwordHash = await hashPassword(password);
+      const conn = ConnectionFactory();
+      const userId = uuidV4();
+
+      try {
+        await conn.execute({
+          sql: "INSERT INTO User (id, email, password_hash, provider) VALUES (?, ?, ?, ?)",
+          args: [userId, email, passwordHash, "email"],
+        });
+
+        // Create JWT token
+        const token = await createJWT(userId);
+
+        // Set cookie
+        setCookie(ctx.event.nativeEvent, "userIDToken", token, {
+          maxAge: 60 * 60 * 24 * 14, // 14 days
+          path: "/",
+          httpOnly: true,
+          secure: env.NODE_ENV === "production",
+          sameSite: "lax",
+        });
+
+        return { success: true, message: "success" };
+      } catch (e) {
+        console.error("Registration error:", e);
+        throw new TRPCError({
+          code: "BAD_REQUEST",
+          message: "duplicate",
+        });
+      }
+    }),
+
+  // Email/password login
+  emailPasswordLogin: publicProcedure
+    .input(
+      z.object({
+        email: z.string().email(),
+        password: z.string(),
+        rememberMe: z.boolean().optional(),
+      }),
+    )
+    .mutation(async ({ input, ctx }) => {
+      const { email, password, rememberMe } = input;
+
+      const conn = ConnectionFactory();
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE email = ? AND provider = ?",
+        args: [email, "email"],
+      });
+
+      if (res.rows.length === 0) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "no-match",
+        });
+      }
+
+      const user = res.rows[0] as unknown as User;
+
+      if (!user.password_hash) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "no-match",
+        });
+      }
+
+      const passwordMatch = await checkPassword(password, user.password_hash);
+
+      if (!passwordMatch) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "no-match",
+        });
+      }
+
+      // Create JWT token with appropriate expiry
+      const expiresIn = rememberMe ? "14d" : "12h";
+      const token = await createJWT(user.id, expiresIn);
+
+      // Set cookie
+      const cookieOptions: any = {
+        path: "/",
+        httpOnly: true,
+        secure: env.NODE_ENV === "production",
+        sameSite: "lax",
+      };
+
+      if (rememberMe) {
+        cookieOptions.maxAge = 60 * 60 * 24 * 14; // 14 days
+      }
+
+      setCookie(ctx.event.nativeEvent, "userIDToken", token, cookieOptions);
+
+      return { success: true, message: "success" };
+    }),
+
+  // Request email login link
+  requestEmailLinkLogin: publicProcedure
+    .input(
+      z.object({
+        email: z.string().email(),
+        rememberMe: z.boolean().optional(),
+      }),
+    )
+    .mutation(async ({ input, ctx }) => {
+      const { email, rememberMe } = input;
+
+      // Check rate limiting
+      const requested = getCookie(ctx.event.nativeEvent, "emailLoginLinkRequested");
+      if (requested) {
+        const expires = new Date(requested);
+        const remaining = expires.getTime() - Date.now();
+        if (remaining > 0) {
+          throw new TRPCError({
+            code: "TOO_MANY_REQUESTS",
+            message: "countdown not expired",
+          });
+        }
+      }
+
+      const conn = ConnectionFactory();
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE email = ?",
+        args: [email],
+      });
+
+      if (res.rows.length === 0) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "User not found",
+        });
+      }
+
+      // Create JWT token for email link (15min expiry)
+      const secret = new TextEncoder().encode(env.JWT_SECRET_KEY);
+      const token = await new SignJWT({ email, rememberMe: rememberMe ?? false })
+        .setProtectedHeader({ alg: "HS256" })
+        .setExpirationTime("15m")
+        .sign(secret);
+
+      // Send email
+      const domain = env.VITE_DOMAIN || env.NEXT_PUBLIC_DOMAIN;
+      const htmlContent = `<html>
+<head>
+    <style>
+        .center {
+            display: flex;
+            justify-content: center;
+            align-items: center;
+            text-align: center;
+        }
+        .button {
+            display: inline-block;
+            padding: 10px 20px;
+            text-align: center;
+            text-decoration: none;
+            color: #ffffff;
+            background-color: #007BFF;
+            border-radius: 6px;
+            transition: background-color 0.3s;
+        }
+        .button:hover {
+            background-color: #0056b3;
+        }
+    </style>
+</head>
+<body>
+    <div class="center">
+        <p>Click the button below to log in</p>
+    </div>
+    <br/>
+    <div class="center">
+        <a href="${domain}/api/auth/email-login-callback?email=${email}&token=${token}&rememberMe=${rememberMe}" class="button">Log In</a>
+    </div>
+    <div class="center">
+        <p>You can ignore this if you did not request this email, someone may have requested it in error</p>
+    </div>
+</body>
+</html>`;
+
+      await sendEmail(email, "freno.me login link", htmlContent);
+
+      // Set rate limit cookie (2 minutes)
+      const exp = new Date(Date.now() + 2 * 60 * 1000);
+      setCookie(ctx.event.nativeEvent, "emailLoginLinkRequested", exp.toUTCString(), {
+        maxAge: 2 * 60,
+        path: "/",
+      });
+
+      return { success: true, message: "email sent" };
+    }),
+
+  // Request password reset
+  requestPasswordReset: publicProcedure
+    .input(z.object({ email: z.string().email() }))
+    .mutation(async ({ input, ctx }) => {
+      const { email } = input;
+
+      // Check rate limiting
+      const requested = getCookie(ctx.event.nativeEvent, "passwordResetRequested");
+      if (requested) {
+        const expires = new Date(requested);
+        const remaining = expires.getTime() - Date.now();
+        if (remaining > 0) {
+          throw new TRPCError({
+            code: "TOO_MANY_REQUESTS",
+            message: "countdown not expired",
+          });
+        }
+      }
+
+      const conn = ConnectionFactory();
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE email = ?",
+        args: [email],
+      });
+
+      if (res.rows.length === 0) {
+        // Don't reveal if user exists
+        return { success: true, message: "email sent" };
+      }
+
+      const user = res.rows[0] as unknown as User;
+
+      // Create JWT token with user ID (15min expiry)
+      const secret = new TextEncoder().encode(env.JWT_SECRET_KEY);
+      const token = await new SignJWT({ id: user.id })
+        .setProtectedHeader({ alg: "HS256" })
+        .setExpirationTime("15m")
+        .sign(secret);
+
+      // Send email
+      const domain = env.VITE_DOMAIN || env.NEXT_PUBLIC_DOMAIN;
+      const htmlContent = `<html>
+<head>
+    <style>
+        .center {
+            display: flex;
+            justify-content: center;
+            align-items: center;
+            text-align: center;
+        }
+        .button {
+            display: inline-block;
+            padding: 10px 20px;
+            text-align: center;
+            text-decoration: none;
+            color: #ffffff;
+            background-color: #007BFF;
+            border-radius: 6px;
+            transition: background-color 0.3s;
+        }
+        .button:hover {
+            background-color: #0056b3;
+        }
+    </style>
+</head>
+<body>
+    <div class="center">
+        <p>Click the button below to reset password</p>
+    </div>
+    <br/>
+    <div class="center">
+        <a href="${domain}/login/password-reset?token=${token}" class="button">Reset Password</a>
+    </div>
+    <div class="center">
+        <p>You can ignore this if you did not request this email, someone may have requested it in error</p>
+    </div>
+</body>
+</html>`;
+
+      await sendEmail(email, "password reset", htmlContent);
+
+      // Set rate limit cookie (5 minutes)
+      const exp = new Date(Date.now() + 5 * 60 * 1000);
+      setCookie(ctx.event.nativeEvent, "passwordResetRequested", exp.toUTCString(), {
+        maxAge: 5 * 60,
+        path: "/",
+      });
+
+      return { success: true, message: "email sent" };
+    }),
+
+  // Reset password with token
+  resetPassword: publicProcedure
+    .input(
+      z.object({
+        token: z.string(),
+        newPassword: z.string().min(8),
+        newPasswordConfirmation: z.string().min(8),
+      }),
+    )
+    .mutation(async ({ input, ctx }) => {
+      const { token, newPassword, newPasswordConfirmation } = input;
+
+      if (newPassword !== newPasswordConfirmation) {
+        throw new TRPCError({
+          code: "BAD_REQUEST",
+          message: "Password Mismatch",
+        });
+      }
+
+      try {
+        // Verify JWT token
+        const secret = new TextEncoder().encode(env.JWT_SECRET_KEY);
+        const { payload } = await jwtVerify(token, secret);
+
+        if (!payload.id || typeof payload.id !== "string") {
+          throw new TRPCError({
+            code: "UNAUTHORIZED",
+            message: "bad token",
+          });
+        }
+
+        const conn = ConnectionFactory();
+        const passwordHash = await hashPassword(newPassword);
+
+        await conn.execute({
+          sql: "UPDATE User SET password_hash = ? WHERE id = ?",
+          args: [passwordHash, payload.id],
+        });
+
+        // Clear any session cookies
+        setCookie(ctx.event.nativeEvent, "emailToken", "", {
+          maxAge: 0,
+          path: "/",
+        });
+        setCookie(ctx.event.nativeEvent, "userIDToken", "", {
+          maxAge: 0,
+          path: "/",
+        });
+
+        return { success: true, message: "success" };
+      } catch (error) {
+        if (error instanceof TRPCError) {
+          throw error;
+        }
+        console.error("Password reset error:", error);
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "token expired",
+        });
+      }
+    }),
+
+  // Resend email verification
+  resendEmailVerification: publicProcedure
+    .input(z.object({ email: z.string().email() }))
+    .mutation(async ({ input, ctx }) => {
+      const { email } = input;
+
+      // Check rate limiting
+      const requested = getCookie(ctx.event.nativeEvent, "emailVerificationRequested");
+      if (requested) {
+        const time = parseInt(requested);
+        const currentTime = Date.now();
+        const difference = (currentTime - time) / (1000 * 60);
+        
+        if (difference < 15) {
+          throw new TRPCError({
+            code: "TOO_MANY_REQUESTS",
+            message: "Please wait before requesting another verification email",
+          });
+        }
+      }
+
+      const conn = ConnectionFactory();
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE email = ?",
+        args: [email],
+      });
+
+      if (res.rows.length === 0) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "User not found",
+        });
+      }
+
+      // Create JWT token (15min expiry)
+      const secret = new TextEncoder().encode(env.JWT_SECRET_KEY);
+      const token = await new SignJWT({ email })
+        .setProtectedHeader({ alg: "HS256" })
+        .setExpirationTime("15m")
+        .sign(secret);
+
+      // Send email
+      const domain = env.VITE_DOMAIN || env.NEXT_PUBLIC_DOMAIN;
+      const htmlContent = `<html>
+<head>
+    <style>
+        .center {
+            display: flex;
+            justify-content: center;
+            align-items: center;
+            text-align: center;
+        }
+        .button {
+            display: inline-block;
+            padding: 10px 20px;
+            text-align: center;
+            text-decoration: none;
+            color: #ffffff;
+            background-color: #007BFF;
+            border-radius: 6px;
+            transition: background-color 0.3s;
+        }
+        .button:hover {
+            background-color: #0056b3;
+        }
+    </style>
+</head>
+<body>
+    <div class="center">
+        <p>Click the button below to verify email</p>
+    </div>
+    <br/>
+    <div class="center">
+        <a href="${domain}/api/auth/email-verification-callback?email=${email}&token=${token}" class="button">Verify Email</a>
+    </div>
+</body>
+</html>`;
+
+      await sendEmail(email, "freno.me email verification", htmlContent);
+
+      // Set rate limit cookie
+      setCookie(ctx.event.nativeEvent, "emailVerificationRequested", Date.now().toString(), {
+        maxAge: 15 * 60,
+        path: "/",
+      });
+
+      return { success: true, message: "Verification email sent" };
+    }),
+
+  // Sign out
+  signOut: publicProcedure.mutation(async ({ ctx }) => {
+    setCookie(ctx.event.nativeEvent, "userIDToken", "", {
+      maxAge: 0,
+      path: "/",
+    });
+    setCookie(ctx.event.nativeEvent, "emailToken", "", {
+      maxAge: 0,
+      path: "/",
+    });
+
+    return { success: true };
+  }),
 });
\ No newline at end of file
diff --git a/src/server/api/routers/user.ts b/src/server/api/routers/user.ts
new file mode 100644
index 0000000..0f314e0
--- /dev/null
+++ b/src/server/api/routers/user.ts
@@ -0,0 +1,357 @@
+import { createTRPCRouter, publicProcedure } from "../utils";
+import { z } from "zod";
+import { TRPCError } from "@trpc/server";
+import { env } from "~/env/server";
+import { ConnectionFactory, getUserID, hashPassword, checkPassword } from "~/server/utils";
+import { setCookie } from "vinxi/http";
+import type { User } from "~/types/user";
+import { toUserProfile } from "~/types/user";
+
+export const userRouter = createTRPCRouter({
+  // Get current user profile
+  getProfile: publicProcedure.query(async ({ ctx }) => {
+    const userId = await getUserID(ctx.event.nativeEvent);
+
+    if (!userId) {
+      throw new TRPCError({
+        code: "UNAUTHORIZED",
+        message: "Not authenticated",
+      });
+    }
+
+    const conn = ConnectionFactory();
+    const res = await conn.execute({
+      sql: "SELECT * FROM User WHERE id = ?",
+      args: [userId],
+    });
+
+    if (res.rows.length === 0) {
+      throw new TRPCError({
+        code: "NOT_FOUND",
+        message: "User not found",
+      });
+    }
+
+    const user = res.rows[0] as unknown as User;
+    return toUserProfile(user);
+  }),
+
+  // Update email
+  updateEmail: publicProcedure
+    .input(z.object({ email: z.string().email() }))
+    .mutation(async ({ input, ctx }) => {
+      const userId = await getUserID(ctx.event.nativeEvent);
+
+      if (!userId) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "Not authenticated",
+        });
+      }
+
+      const { email } = input;
+      const conn = ConnectionFactory();
+
+      await conn.execute({
+        sql: "UPDATE User SET email = ?, email_verified = ? WHERE id = ?",
+        args: [email, 0, userId],
+      });
+
+      // Fetch updated user
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE id = ?",
+        args: [userId],
+      });
+
+      const user = res.rows[0] as unknown as User;
+
+      // Set email cookie for verification flow
+      setCookie(ctx.event.nativeEvent, "emailToken", email, {
+        path: "/",
+      });
+
+      return toUserProfile(user);
+    }),
+
+  // Update display name
+  updateDisplayName: publicProcedure
+    .input(z.object({ displayName: z.string().min(1).max(50) }))
+    .mutation(async ({ input, ctx }) => {
+      const userId = await getUserID(ctx.event.nativeEvent);
+
+      if (!userId) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "Not authenticated",
+        });
+      }
+
+      const { displayName } = input;
+      const conn = ConnectionFactory();
+
+      await conn.execute({
+        sql: "UPDATE User SET display_name = ? WHERE id = ?",
+        args: [displayName, userId],
+      });
+
+      // Fetch updated user
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE id = ?",
+        args: [userId],
+      });
+
+      const user = res.rows[0] as unknown as User;
+      return toUserProfile(user);
+    }),
+
+  // Update profile image
+  updateProfileImage: publicProcedure
+    .input(z.object({ imageUrl: z.string().url() }))
+    .mutation(async ({ input, ctx }) => {
+      const userId = await getUserID(ctx.event.nativeEvent);
+
+      if (!userId) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "Not authenticated",
+        });
+      }
+
+      const { imageUrl } = input;
+      const conn = ConnectionFactory();
+
+      await conn.execute({
+        sql: "UPDATE User SET image = ? WHERE id = ?",
+        args: [imageUrl, userId],
+      });
+
+      // Fetch updated user
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE id = ?",
+        args: [userId],
+      });
+
+      const user = res.rows[0] as unknown as User;
+      return toUserProfile(user);
+    }),
+
+  // Change password (requires old password)
+  changePassword: publicProcedure
+    .input(
+      z.object({
+        oldPassword: z.string(),
+        newPassword: z.string().min(8),
+        newPasswordConfirmation: z.string().min(8),
+      }),
+    )
+    .mutation(async ({ input, ctx }) => {
+      const userId = await getUserID(ctx.event.nativeEvent);
+
+      if (!userId) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "Not authenticated",
+        });
+      }
+
+      const { oldPassword, newPassword, newPasswordConfirmation } = input;
+
+      if (newPassword !== newPasswordConfirmation) {
+        throw new TRPCError({
+          code: "BAD_REQUEST",
+          message: "Password Mismatch",
+        });
+      }
+
+      const conn = ConnectionFactory();
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE id = ?",
+        args: [userId],
+      });
+
+      if (res.rows.length === 0) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "User not found",
+        });
+      }
+
+      const user = res.rows[0] as unknown as User;
+
+      if (!user.password_hash) {
+        throw new TRPCError({
+          code: "BAD_REQUEST",
+          message: "No password set",
+        });
+      }
+
+      const passwordMatch = await checkPassword(oldPassword, user.password_hash);
+
+      if (!passwordMatch) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "Password did not match record",
+        });
+      }
+
+      // Update password
+      const newPasswordHash = await hashPassword(newPassword);
+      await conn.execute({
+        sql: "UPDATE User SET password_hash = ? WHERE id = ?",
+        args: [newPasswordHash, userId],
+      });
+
+      // Clear session cookies (force re-login)
+      setCookie(ctx.event.nativeEvent, "emailToken", "", {
+        maxAge: 0,
+        path: "/",
+      });
+      setCookie(ctx.event.nativeEvent, "userIDToken", "", {
+        maxAge: 0,
+        path: "/",
+      });
+
+      return { success: true, message: "success" };
+    }),
+
+  // Set password (for OAuth users who don't have password)
+  setPassword: publicProcedure
+    .input(
+      z.object({
+        newPassword: z.string().min(8),
+        newPasswordConfirmation: z.string().min(8),
+      }),
+    )
+    .mutation(async ({ input, ctx }) => {
+      const userId = await getUserID(ctx.event.nativeEvent);
+
+      if (!userId) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "Not authenticated",
+        });
+      }
+
+      const { newPassword, newPasswordConfirmation } = input;
+
+      if (newPassword !== newPasswordConfirmation) {
+        throw new TRPCError({
+          code: "BAD_REQUEST",
+          message: "Password Mismatch",
+        });
+      }
+
+      const conn = ConnectionFactory();
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE id = ?",
+        args: [userId],
+      });
+
+      if (res.rows.length === 0) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "User not found",
+        });
+      }
+
+      const user = res.rows[0] as unknown as User;
+
+      if (user.password_hash) {
+        throw new TRPCError({
+          code: "BAD_REQUEST",
+          message: "Password exists",
+        });
+      }
+
+      // Set password
+      const passwordHash = await hashPassword(newPassword);
+      await conn.execute({
+        sql: "UPDATE User SET password_hash = ? WHERE id = ?",
+        args: [passwordHash, userId],
+      });
+
+      // Clear session cookies (force re-login)
+      setCookie(ctx.event.nativeEvent, "emailToken", "", {
+        maxAge: 0,
+        path: "/",
+      });
+      setCookie(ctx.event.nativeEvent, "userIDToken", "", {
+        maxAge: 0,
+        path: "/",
+      });
+
+      return { success: true, message: "success" };
+    }),
+
+  // Delete account (anonymize data)
+  deleteAccount: publicProcedure
+    .input(z.object({ password: z.string() }))
+    .mutation(async ({ input, ctx }) => {
+      const userId = await getUserID(ctx.event.nativeEvent);
+
+      if (!userId) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "Not authenticated",
+        });
+      }
+
+      const { password } = input;
+      const conn = ConnectionFactory();
+
+      const res = await conn.execute({
+        sql: "SELECT * FROM User WHERE id = ?",
+        args: [userId],
+      });
+
+      if (res.rows.length === 0) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "User not found",
+        });
+      }
+
+      const user = res.rows[0] as unknown as User;
+
+      if (!user.password_hash) {
+        throw new TRPCError({
+          code: "BAD_REQUEST",
+          message: "Password required",
+        });
+      }
+
+      const passwordMatch = await checkPassword(password, user.password_hash);
+
+      if (!passwordMatch) {
+        throw new TRPCError({
+          code: "UNAUTHORIZED",
+          message: "Password Did Not Match",
+        });
+      }
+
+      // Anonymize user data (don't hard delete)
+      await conn.execute({
+        sql: `UPDATE User SET 
+          email = ?, 
+          email_verified = ?, 
+          password_hash = ?, 
+          display_name = ?, 
+          provider = ?, 
+          image = ? 
+          WHERE id = ?`,
+        args: [null, 0, null, "user deleted", null, null, userId],
+      });
+
+      // Clear session cookies
+      setCookie(ctx.event.nativeEvent, "emailToken", "", {
+        maxAge: 0,
+        path: "/",
+      });
+      setCookie(ctx.event.nativeEvent, "userIDToken", "", {
+        maxAge: 0,
+        path: "/",
+      });
+
+      return { success: true, message: "deleted" };
+    }),
+});
diff --git a/src/types/user.ts b/src/types/user.ts
new file mode 100644
index 0000000..1250484
--- /dev/null
+++ b/src/types/user.ts
@@ -0,0 +1,70 @@
+/**
+ * User type definitions matching database schema
+ */
+
+export interface User {
+  id: string;
+  email: string | null;
+  email_verified: number; // SQLite boolean (0 or 1)
+  password_hash: string | null;
+  display_name: string | null;
+  provider: "email" | "google" | "apple" | null;
+  image: string | null;
+  apple_user_string: string | null;
+  database_name: string | null;
+  database_token: string | null;
+  database_url: string | null;
+  db_destroy_date: string | null;
+  created_at: string;
+  updated_at: string;
+}
+
+/**
+ * Client-safe user data (excludes sensitive fields)
+ */
+export interface UserProfile {
+  id: string;
+  email?: string;
+  emailVerified: boolean;
+  displayName?: string;
+  provider?: "email" | "google" | "apple";
+  image?: string;
+  hasPassword: boolean;
+}
+
+/**
+ * Convert database User to client-safe UserProfile
+ */
+export function toUserProfile(user: User): UserProfile {
+  return {
+    id: user.id,
+    email: user.email ?? undefined,
+    emailVerified: user.email_verified === 1,
+    displayName: user.display_name ?? undefined,
+    provider: user.provider ?? undefined,
+    image: user.image ?? undefined,
+    hasPassword: !!user.password_hash,
+  };
+}
+
+/**
+ * JWT payload for session tokens
+ */
+export interface SessionPayload {
+  id: string; // user ID
+  email?: string;
+}
+
+/**
+ * JWT payload for email verification
+ */
+export interface EmailVerificationPayload {
+  email: string;
+}
+
+/**
+ * JWT payload for password reset
+ */
+export interface PasswordResetPayload {
+  email: string;
+}