From 8121be1d961d3b5de72f0968f5170773ff211a8f Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sun, 8 Sep 2024 16:42:32 +0200
Subject: [PATCH 01/15] Add legal information operation site

---
 nix/dev-vm.nix                                |   2 +-
 .../20240908104458_extra_page_table.sql       |  55 +++++++
 ...706_adjust_website_overview_extra_page.sql | 142 ++++++++++++++++++
 .../src/lib/components/WebsiteEditor.svelte   |   3 +
 .../src/lib/templates/blog/BlogArticle.svelte |   2 +-
 .../src/lib/templates/common/Footer.svelte    |   7 +-
 .../src/lib/templates/docs/DocsArticle.svelte |   2 +-
 web-app/src/lib/utils.ts                      |   2 +-
 .../website/[websiteId]/+page.svelte          |   3 +-
 .../legal-information/+page.server.ts         |  80 ++++++++++
 .../legal-information/+page.svelte            | 121 +++++++++++++++
 .../[websiteId]/publish/+page.server.ts       |  62 ++++++++
 .../website/[websiteId]/publish/+page.svelte  |   2 +-
 web-app/tests/collaborator.spec.ts            |  44 ++++++
 web-app/tests/website.spec.ts                 |  23 +++
 15 files changed, 542 insertions(+), 8 deletions(-)
 create mode 100644 rest-api/db/migrations/20240908104458_extra_page_table.sql
 create mode 100644 rest-api/db/migrations/20240908115706_adjust_website_overview_extra_page.sql
 create mode 100644 web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
 create mode 100644 web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte

diff --git a/nix/dev-vm.nix b/nix/dev-vm.nix
index 773664a..48bacd4 100644
--- a/nix/dev-vm.nix
+++ b/nix/dev-vm.nix
@@ -68,7 +68,7 @@
         ];
         locations = {
           "/" = {
-            root = "/var/www/archtika-websites";
+            root = "/var/www/archtika-websites/";
             index = "index.html";
             tryFiles = "$uri $uri/ $uri.html $uri/index.html index.html =404";
             extraConfig = ''
diff --git a/rest-api/db/migrations/20240908104458_extra_page_table.sql b/rest-api/db/migrations/20240908104458_extra_page_table.sql
new file mode 100644
index 0000000..287562f
--- /dev/null
+++ b/rest-api/db/migrations/20240908104458_extra_page_table.sql
@@ -0,0 +1,55 @@
+-- migrate:up
+CREATE TABLE internal.legal_information (
+  website_id UUID PRIMARY KEY REFERENCES internal.website (id) ON DELETE CASCADE,
+  main_content TEXT NOT NULL CHECK (TRIM(main_content) != ''),
+  last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
+  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
+);
+
+CREATE VIEW api.legal_information WITH ( security_invoker = ON
+) AS
+SELECT
+  website_id,
+  main_content,
+  last_modified_at,
+  last_modified_by
+FROM
+  internal.legal_information;
+
+GRANT SELECT, INSERT, UPDATE, DELETE ON internal.legal_information TO authenticated_user;
+
+GRANT SELECT, INSERT, UPDATE, DELETE ON api.legal_information TO authenticated_user;
+
+ALTER TABLE internal.legal_information ENABLE ROW LEVEL SECURITY;
+
+CREATE POLICY view_legal_information ON internal.legal_information
+  FOR SELECT
+    USING (internal.user_has_website_access (website_id, 10));
+
+CREATE POLICY update_legal_information ON internal.legal_information
+  FOR UPDATE
+    USING (internal.user_has_website_access (website_id, 30));
+
+CREATE POLICY delete_legal_information ON internal.legal_information
+  FOR DELETE
+    USING (internal.user_has_website_access (website_id, 30));
+
+CREATE POLICY insert_legal_information ON internal.legal_information
+  FOR INSERT
+    WITH CHECK (internal.user_has_website_access (website_id, 30));
+
+-- migrate:down
+DROP POLICY insert_legal_information ON internal.legal_information;
+
+DROP POLICY delete_legal_information ON internal.legal_information;
+
+DROP POLICY update_legal_information ON internal.legal_information;
+
+DROP POLICY view_legal_information ON internal.legal_information;
+
+ALTER TABLE internal.legal_information DISABLE ROW LEVEL SECURITY;
+
+DROP VIEW api.legal_information;
+
+DROP TABLE internal.legal_information;
+
diff --git a/rest-api/db/migrations/20240908115706_adjust_website_overview_extra_page.sql b/rest-api/db/migrations/20240908115706_adjust_website_overview_extra_page.sql
new file mode 100644
index 0000000..127813c
--- /dev/null
+++ b/rest-api/db/migrations/20240908115706_adjust_website_overview_extra_page.sql
@@ -0,0 +1,142 @@
+-- migrate:up
+CREATE OR REPLACE VIEW api.website_overview WITH ( security_invoker = ON
+) AS
+SELECT
+  w.id,
+  w.user_id,
+  w.content_type,
+  w.title,
+  s.accent_color_light_theme,
+  s.accent_color_dark_theme,
+  s.favicon_image,
+  h.logo_type,
+  h.logo_text,
+  h.logo_image,
+  ho.main_content,
+  f.additional_text,
+  (
+    SELECT
+      JSON_AGG(
+        JSON_BUILD_OBJECT(
+          'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
+)
+)
+    FROM
+      internal.article a
+    WHERE
+      a.website_id = w.id
+) AS articles,
+  CASE WHEN w.content_type = 'Docs' THEN
+  (
+    SELECT
+      JSON_OBJECT_AGG(
+        COALESCE(
+          category_name, 'Uncategorized'
+), articles
+)
+    FROM (
+      SELECT
+        dc.category_name,
+        dc.category_weight AS category_weight,
+        JSON_AGG(
+          JSON_BUILD_OBJECT(
+            'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
+) ORDER BY a.article_weight DESC NULLS LAST
+) AS articles
+      FROM
+        internal.article a
+      LEFT JOIN internal.docs_category dc ON a.category = dc.id
+    WHERE
+      a.website_id = w.id
+    GROUP BY
+      dc.id,
+      dc.category_name,
+      dc.category_weight
+    ORDER BY
+      category_weight DESC NULLS LAST
+) AS categorized_articles)
+ELSE
+  NULL
+  END AS categorized_articles,
+  li.main_content legal_information_main_content
+FROM
+  internal.website w
+  JOIN internal.settings s ON w.id = s.website_id
+  JOIN internal.header h ON w.id = h.website_id
+  JOIN internal.home ho ON w.id = ho.website_id
+  JOIN internal.footer f ON w.id = f.website_id
+  LEFT JOIN internal.legal_information li ON w.id = li.website_id;
+
+GRANT SELECT ON api.website_overview TO authenticated_user;
+
+-- migrate:down
+DROP VIEW api.website_overview;
+
+CREATE VIEW api.website_overview WITH ( security_invoker = ON
+) AS
+SELECT
+  w.id,
+  w.user_id,
+  w.content_type,
+  w.title,
+  s.accent_color_light_theme,
+  s.accent_color_dark_theme,
+  s.favicon_image,
+  h.logo_type,
+  h.logo_text,
+  h.logo_image,
+  ho.main_content,
+  f.additional_text,
+  (
+    SELECT
+      JSON_AGG(
+        JSON_BUILD_OBJECT(
+          'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
+)
+)
+    FROM
+      internal.article a
+    WHERE
+      a.website_id = w.id
+) AS articles,
+  CASE WHEN w.content_type = 'Docs' THEN
+  (
+    SELECT
+      JSON_OBJECT_AGG(
+        COALESCE(
+          category_name, 'Uncategorized'
+), articles
+)
+    FROM (
+      SELECT
+        dc.category_name,
+        dc.category_weight AS category_weight,
+        JSON_AGG(
+          JSON_BUILD_OBJECT(
+            'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
+) ORDER BY a.article_weight DESC NULLS LAST
+) AS articles
+      FROM
+        internal.article a
+      LEFT JOIN internal.docs_category dc ON a.category = dc.id
+    WHERE
+      a.website_id = w.id
+    GROUP BY
+      dc.id,
+      dc.category_name,
+      dc.category_weight
+    ORDER BY
+      category_weight DESC NULLS LAST
+) AS categorized_articles)
+ELSE
+  NULL
+  END AS categorized_articles
+FROM
+  internal.website w
+  JOIN internal.settings s ON w.id = s.website_id
+  JOIN internal.header h ON w.id = h.website_id
+  JOIN internal.home ho ON w.id = ho.website_id
+  JOIN internal.footer f ON w.id = f.website_id;
+
+GRANT SELECT ON api.website_overview TO authenticated_user;
+
diff --git a/web-app/src/lib/components/WebsiteEditor.svelte b/web-app/src/lib/components/WebsiteEditor.svelte
index 9715784..6280bd6 100644
--- a/web-app/src/lib/components/WebsiteEditor.svelte
+++ b/web-app/src/lib/components/WebsiteEditor.svelte
@@ -49,6 +49,9 @@
       <li>
         <a href="/website/{id}/collaborators">Collaborators</a>
       </li>
+      <li>
+        <a href="/website/{id}/legal-information">Legal information</a>
+      </li>
       <li>
         <a href="/website/{id}/publish">Publish</a>
       </li>
diff --git a/web-app/src/lib/templates/blog/BlogArticle.svelte b/web-app/src/lib/templates/blog/BlogArticle.svelte
index e3a8adb..cc9b3d9 100644
--- a/web-app/src/lib/templates/blog/BlogArticle.svelte
+++ b/web-app/src/lib/templates/blog/BlogArticle.svelte
@@ -50,4 +50,4 @@
   </main>
 {/if}
 
-<Footer text={footerAdditionalText} />
+<Footer text={footerAdditionalText} isIndexPage={false} />
diff --git a/web-app/src/lib/templates/common/Footer.svelte b/web-app/src/lib/templates/common/Footer.svelte
index df143f4..289b1fa 100644
--- a/web-app/src/lib/templates/common/Footer.svelte
+++ b/web-app/src/lib/templates/common/Footer.svelte
@@ -1,11 +1,14 @@
 <script lang="ts">
-  const { text }: { text: string } = $props();
+  const { text, isIndexPage = true }: { text: string; isIndexPage?: boolean } = $props();
 </script>
 
 <footer>
   <div class="container">
     <small>
-      {@html text}
+      {@html text.replace(
+        "!!legal",
+        `<a href="${isIndexPage ? "./legal-information" : "../legal-information"}">Legal information</a>`
+      )}
     </small>
   </div>
 </footer>
diff --git a/web-app/src/lib/templates/docs/DocsArticle.svelte b/web-app/src/lib/templates/docs/DocsArticle.svelte
index 2b48c32..b5d9df5 100644
--- a/web-app/src/lib/templates/docs/DocsArticle.svelte
+++ b/web-app/src/lib/templates/docs/DocsArticle.svelte
@@ -42,4 +42,4 @@
   </main>
 {/if}
 
-<Footer text={footerAdditionalText} />
+<Footer text={footerAdditionalText} isIndexPage={false} />
diff --git a/web-app/src/lib/utils.ts b/web-app/src/lib/utils.ts
index 75a6c66..1139da6 100644
--- a/web-app/src/lib/utils.ts
+++ b/web-app/src/lib/utils.ts
@@ -150,7 +150,7 @@ export const md = (markdownContent: string, showToc = true) => {
 };
 
 export const handleImagePaste = async (event: ClipboardEvent, API_BASE_PREFIX: string) => {
-  const clipboardItems = Array.from(event.clipboardData?.items || []);
+  const clipboardItems = Array.from(event.clipboardData?.items ?? []);
   const file = clipboardItems.find((item) => item.type.startsWith("image/"));
 
   if (!file) return null;
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/+page.svelte
index fccabfe..3d3f91f 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/+page.svelte
@@ -39,7 +39,8 @@
   id={data.website.id}
   contentType={data.website.content_type}
   title={data.website.title}
-  {previewContent}
+  previewContent={previewContent ||
+    "Put some markdown content in main content to see a live preview here"}
   previewScrollTop={textareaScrollTop}
 >
   <section id="global">
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
new file mode 100644
index 0000000..dd804bd
--- /dev/null
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
@@ -0,0 +1,80 @@
+import type { Actions, PageServerLoad } from "./$types";
+import { API_BASE_PREFIX } from "$lib/server/utils";
+import { rm } from "node:fs/promises";
+import { join } from "node:path";
+
+export const load: PageServerLoad = async ({ parent, fetch, params, cookies }) => {
+  const legalInformationData = await fetch(
+    `${API_BASE_PREFIX}/legal_information?website_id=eq.${params.websiteId}`,
+    {
+      method: "GET",
+      headers: {
+        "Content-Type": "application/json",
+        Authorization: `Bearer ${cookies.get("session_token")}`,
+        Accept: "application/vnd.pgrst.object+json"
+      }
+    }
+  );
+
+  const legalInformation = legalInformationData.ok ? await legalInformationData.json() : null;
+  const { website } = await parent();
+
+  return {
+    legalInformation,
+    website
+  };
+};
+
+export const actions: Actions = {
+  createUpdateLegalInformation: async ({ request, fetch, cookies, params }) => {
+    const data = await request.formData();
+
+    const res = await fetch(`${API_BASE_PREFIX}/legal_information`, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        Authorization: `Bearer ${cookies.get("session_token")}`,
+        Prefer: "resolution=merge-duplicates",
+        Accept: "application/vnd.pgrst.object+json"
+      },
+      body: JSON.stringify({
+        website_id: params.websiteId,
+        main_content: data.get("main-content")
+      })
+    });
+
+    if (!res.ok) {
+      const response = await res.json();
+      return { success: false, message: response.message };
+    }
+
+    return {
+      success: true,
+      message: `Successfully ${res.status === 201 ? "created" : "updated"} legal information`
+    };
+  },
+  deleteLegalInformation: async ({ fetch, cookies, params }) => {
+    const res = await fetch(
+      `${API_BASE_PREFIX}/legal_information?website_id=eq.${params.websiteId}`,
+      {
+        method: "DELETE",
+        headers: {
+          "Content-Type": "application/json",
+          Authorization: `Bearer ${cookies.get("session_token")}`
+        }
+      }
+    );
+
+    if (!res.ok) {
+      const response = await res.json();
+      return { success: false, message: response.message };
+    }
+
+    await rm(
+      join("/", "var", "www", "archtika-websites", params.websiteId, "legal-information.html"),
+      { force: true }
+    );
+
+    return { success: true, message: `Successfully deleted legal information` };
+  }
+};
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte
new file mode 100644
index 0000000..7fbbece
--- /dev/null
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte
@@ -0,0 +1,121 @@
+<script lang="ts">
+  import { enhance } from "$app/forms";
+  import WebsiteEditor from "$lib/components/WebsiteEditor.svelte";
+  import SuccessOrError from "$lib/components/SuccessOrError.svelte";
+  import LoadingSpinner from "$lib/components/LoadingSpinner.svelte";
+  import Modal from "$lib/components/Modal.svelte";
+  import type { ActionData, PageServerData } from "./$types";
+
+  const { data, form }: { data: PageServerData; form: ActionData } = $props();
+
+  let previewContent = $state(data.legalInformation?.main_content);
+  let mainContentTextarea: HTMLTextAreaElement;
+  let textareaScrollTop = $state(0);
+
+  const updateScrollPercentage = () => {
+    const { scrollTop, scrollHeight, clientHeight } = mainContentTextarea;
+    textareaScrollTop = (scrollTop / (scrollHeight - clientHeight)) * 100;
+  };
+
+  let sending = $state(false);
+</script>
+
+<SuccessOrError success={form?.success} message={form?.message} />
+
+{#if sending}
+  <LoadingSpinner />
+{/if}
+
+<WebsiteEditor
+  id={data.website.id}
+  contentType={data.website.content_type}
+  title={data.website.title}
+  previewContent={previewContent ||
+    "Put some markdown content in main content to see a live preview here"}
+  previewScrollTop={textareaScrollTop}
+>
+  <section id="legal-information">
+    <h2>
+      <a href="#legal-information">Legal information</a>
+    </h2>
+
+    <p>
+      Static websites that do not collect user data and do not use cookies generally have minimal
+      legal obligations regarding privacy policies, imprints, etc. However, it may still be a good
+      idea to include, for example:
+    </p>
+
+    <ol>
+      <li>A simple privacy policy stating that no personal information is collected or stored</li>
+      <li>
+        An imprint (if required by local law) with contact information for the site owner/operator
+      </li>
+    </ol>
+
+    <p>Always consult local laws and regulations for specific requirements in your jurisdiction.</p>
+
+    <p>
+      To include a link to your legal information in the footer, you can write <code>!!legal</code>.
+    </p>
+
+    <form
+      method="POST"
+      action="?/createUpdateLegalInformation"
+      use:enhance={() => {
+        sending = true;
+        return async ({ update }) => {
+          await update({ reset: false });
+          sending = false;
+        };
+      }}
+    >
+      <label>
+        Main content:
+        <textarea
+          name="main-content"
+          rows="20"
+          placeholder="## Impressum
+
+## Privacy policy"
+          bind:value={previewContent}
+          bind:this={mainContentTextarea}
+          onscroll={updateScrollPercentage}
+          required>{data.legalInformation?.main_content ?? ""}</textarea
+        >
+      </label>
+
+      <button type="submit">Submit</button>
+    </form>
+
+    {#if data.legalInformation?.main_content}
+      <Modal id="delete-legal-information" text="Delete">
+        <form
+          action="?/deleteLegalInformation"
+          method="post"
+          use:enhance={() => {
+            sending = true;
+            return async ({ update }) => {
+              await update();
+              window.location.hash = "!";
+              sending = false;
+              previewContent = null;
+            };
+          }}
+        >
+          <h3>Delete legal information</h3>
+          <p>
+            <strong>Caution!</strong>
+            This action will remove the legal information page from the website and delete all data.
+          </p>
+          <button type="submit">Delete legal information</button>
+        </form>
+      </Modal>
+    {/if}
+  </section>
+</WebsiteEditor>
+
+<style>
+  form[action="?/createUpdateLegalInformation"] {
+    margin-block-start: var(--space-s);
+  }
+</style>
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
index cb68fd5..b6a09ae 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
@@ -32,6 +32,7 @@ interface WebsiteData {
   categorized_articles: {
     [key: string]: { title: string; publication_date: string; meta_description: string }[];
   };
+  legal_information_main_content: string | null;
 }
 
 export const load: PageServerLoad = async ({ params, fetch, cookies, parent }) => {
@@ -251,6 +252,67 @@ const generateStaticFiles = async (websiteData: WebsiteData, isPreview: boolean
     await writeFile(join(uploadDir, "articles", `${articleFileName}.html`), articleFileContents);
   }
 
+  if (websiteData.legal_information_main_content) {
+    let head = "";
+    let body = "";
+
+    switch (websiteData.content_type) {
+      case "Blog":
+        {
+          ({ head, body } = render(BlogIndex, {
+            props: {
+              favicon: websiteData.favicon_image
+                ? `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.favicon_image}`
+                : "",
+              title: "Legal information",
+              logoType: websiteData.logo_type,
+              logo:
+                websiteData.logo_type === "text"
+                  ? (websiteData.logo_text ?? "")
+                  : `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.logo_image}`,
+              mainContent: md(websiteData.legal_information_main_content ?? "", false),
+              articles: [],
+              footerAdditionalText: md(websiteData.additional_text ?? "")
+            }
+          }));
+        }
+        break;
+      case "Docs":
+        {
+          ({ head, body } = render(DocsIndex, {
+            props: {
+              favicon: websiteData.favicon_image
+                ? `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.favicon_image}`
+                : "",
+              title: "Legal information",
+              logoType: websiteData.logo_type,
+              logo:
+                websiteData.logo_type === "text"
+                  ? (websiteData.logo_text ?? "")
+                  : `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.logo_image}`,
+              mainContent: md(websiteData.legal_information_main_content ?? "", false),
+              categorizedArticles: {},
+              footerAdditionalText: md(websiteData.additional_text ?? "")
+            }
+          }));
+        }
+        break;
+    }
+
+    const legalInformationFileContents = `
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    ${head}
+  </head>
+  <body>
+    ${body}
+  </body>
+</html>`;
+
+    await writeFile(join(uploadDir, "legal-information.html"), legalInformationFileContents);
+  }
+
   const commonStyles = await readFile(`${process.cwd()}/template-styles/common-styles.css`, {
     encoding: "utf-8"
   });
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
index eaf69dd..023c769 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
@@ -47,7 +47,7 @@
     </form>
 
     {#if data.website.is_published}
-      <section>
+      <section id="publication-status">
         <h3>
           <a href="#publication-status">Publication status</a>
         </h3>
diff --git a/web-app/tests/collaborator.spec.ts b/web-app/tests/collaborator.spec.ts
index a35ae89..828a978 100644
--- a/web-app/tests/collaborator.spec.ts
+++ b/web-app/tests/collaborator.spec.ts
@@ -97,6 +97,11 @@ test.describe.serial("Collaborator tests", () => {
     await page.getByLabel("Username:").click();
     await page.getByLabel("Username:").fill(collabUsername);
     await page.getByRole("button", { name: "Submit" }).click();
+
+    await page.getByRole("link", { name: "Legal information" }).click();
+    await page.getByPlaceholder("## Impressum\n\n## Privacy policy").click();
+    await page.getByPlaceholder("## Impressum\n\n## Privacy policy").fill("## Content");
+    await page.getByRole("button", { name: "Submit" }).click();
   });
 
   for (const permissionLevel of permissionLevels) {
@@ -322,6 +327,45 @@ test.describe.serial("Collaborator tests", () => {
           await expect(page.getByText("You do not have the required")).toBeVisible();
         }
       });
+      test("Create/Update legal information", async ({ page }) => {
+        await page.getByRole("link", { name: "Blog" }).click();
+        await page.getByRole("link", { name: "Legal information" }).click();
+        await page.getByPlaceholder("## Impressum\n\n## Privacy policy").click();
+        await page.getByPlaceholder("## Impressum\n\n## Privacy policy").fill("## Content");
+        await page.getByRole("button", { name: "Submit" }).click();
+
+        if (permissionLevel === 30) {
+          await expect(page.getByText("Successfully created legal")).toBeVisible();
+        } else {
+          await expect(page.getByText("You do not have the required")).toBeVisible();
+        }
+
+        await page.getByPlaceholder("## Impressum\n\n## Privacy policy").click();
+        await page.getByPlaceholder("## Impressum\n\n## Privacy policy").fill("## Content updated");
+        await page.getByRole("button", { name: "Submit" }).click();
+
+        if (permissionLevel === 30) {
+          await expect(page.getByText("Successfully updated legal")).toBeVisible();
+        } else {
+          await expect(page.getByText("You do not have the required")).toBeVisible();
+        }
+      });
+      test("Delete legal information", async ({ page }) => {
+        await page
+          .getByRole("link", {
+            name: [10, 20].includes(permissionLevel) ? "Documentation" : "Blog"
+          })
+          .click();
+        await page.getByRole("link", { name: "Legal information" }).click();
+        await page.getByRole("button", { name: "Delete" }).click();
+        await page.getByRole("button", { name: "Delete legal information" }).click();
+
+        if (permissionLevel === 30) {
+          await expect(page.getByText("Successfully deleted legal")).toBeVisible();
+        } else {
+          await expect(page.getByText("You do not have the required")).toBeVisible();
+        }
+      });
       test("Create category", async ({ page }) => {
         await page.getByRole("link", { name: "Documentation" }).click();
         await page.getByRole("link", { name: "Categories" }).click();
diff --git a/web-app/tests/website.spec.ts b/web-app/tests/website.spec.ts
index 5e68047..6a246ca 100644
--- a/web-app/tests/website.spec.ts
+++ b/web-app/tests/website.spec.ts
@@ -230,6 +230,29 @@ test.describe.serial("Website tests", () => {
         await expect(page.getByText("Successfully removed")).toBeVisible();
       });
     });
+
+    test.describe.serial("Legal information", () => {
+      test("Create/Update legal information", async ({ authenticatedPage: page }) => {
+        await page.getByRole("link", { name: "Blog" }).click();
+        await page.getByRole("link", { name: "Legal information" }).click();
+        await page.getByPlaceholder("## Impressum\n\n## Privacy policy").click();
+        await page.getByPlaceholder("## Impressum\n\n## Privacy policy").fill("## Content");
+        await page.getByRole("button", { name: "Submit" }).click();
+        await expect(page.getByText("Successfully created legal")).toBeVisible();
+
+        await page.getByPlaceholder("## Impressum\n\n## Privacy policy").click();
+        await page.getByPlaceholder("## Impressum\n\n## Privacy policy").fill("## Content updated");
+        await page.getByRole("button", { name: "Submit" }).click();
+        await expect(page.getByText("Successfully updated legal")).toBeVisible();
+      });
+      test("Delete legal information", async ({ authenticatedPage: page }) => {
+        await page.getByRole("link", { name: "Blog" }).click();
+        await page.getByRole("link", { name: "Legal information" }).click();
+        await page.getByRole("button", { name: "Delete" }).click();
+        await page.getByRole("button", { name: "Delete legal information" }).click();
+        await expect(page.getByText("Successfully deleted legal")).toBeVisible();
+      });
+    });
   });
 
   test.describe.serial("Docs", () => {

From c5fbcdc8bd2e6c39cc9e6b79cd87d2c2bf237375 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Tue, 10 Sep 2024 17:29:57 +0200
Subject: [PATCH 02/15] Add TypeScript definitions via pg-to-ts and refactor
 migrations

---
 .../migrations/20240719071602_main_tables.sql |  62 +-
 ...73454_automatic_schema_cache_reloading.sql |   2 +-
 ...240720074103_user_management_roles_jwt.sql | 112 ++--
 ...20240720132802_exposed_views_functions.sql |  97 ++--
 .../20240724191017_row_level_security.sql     |  84 ++-
 .../20240803163047_website_overview_view.sql  |  40 --
 .../20240805132306_last_modified_triggers.sql |  24 +-
 .../20240808141708_collaborator_not_owner.sql |   6 +-
 .../20240810115846_image_upload_function.sql  |   6 +-
 .../20240814175120_full_text_search.sql       |  90 ---
 .../20240825133549_adjust_upload_function.sql |  74 ---
 ...40827090504_categories_and_publication.sql | 120 ----
 ...828132309_adjust_website_overview_view.sql | 108 ----
 .../20240829085258_docs_articles_weight.sql   |  56 --
 ...20240829095918_adjust_website_overview.sql | 140 -----
 ...ite_overview_categorized_articles_sort.sql | 140 -----
 ...240830062353_optional_publication_date.sql |  15 -
 ...112106_website_view_publication_status.sql |  37 --
 ...0240901135831_restrict_file_operations.sql |  76 ---
 .../20240908104458_extra_page_table.sql       |  55 --
 ...706_adjust_website_overview_extra_page.sql | 142 -----
 web-app/package-lock.json                     | 544 ++++++++++++++++++
 web-app/package.json                          |   4 +-
 web-app/src/app.d.ts                          |   5 +-
 web-app/src/lib/components/DateTime.svelte    |   6 +-
 .../src/lib/components/SuccessOrError.svelte  |   3 +-
 web-app/src/lib/db-schema.ts                  | 496 ++++++++++++++++
 .../src/lib/templates/blog/BlogArticle.svelte |  50 +-
 .../src/lib/templates/blog/BlogIndex.svelte   |  45 +-
 .../src/lib/templates/common/Footer.svelte    |   9 +-
 web-app/src/lib/templates/common/Head.svelte  |  21 +-
 web-app/src/lib/templates/common/Nav.svelte   |  50 +-
 .../src/lib/templates/docs/DocsArticle.svelte |  42 +-
 .../src/lib/templates/docs/DocsIndex.svelte   |  41 +-
 web-app/src/lib/utils.ts                      |  19 +
 .../routes/(anonymous)/login/+page.server.ts  |   2 +-
 .../(anonymous)/register/+page.server.ts      |   2 +-
 .../routes/(authenticated)/+page.server.ts    |   9 +-
 .../(authenticated)/account/+page.server.ts   |   2 +-
 .../website/[websiteId]/+layout.server.ts     |   5 +-
 .../website/[websiteId]/+page.server.ts       |   7 +-
 .../[websiteId]/articles/+page.server.ts      |   7 +-
 .../articles/[articleId]/+page.server.ts      |   5 +-
 .../[websiteId]/categories/+page.server.ts    |   9 +-
 .../[websiteId]/collaborators/+page.server.ts |  11 +-
 .../legal-information/+page.server.ts         |   7 +-
 .../legal-information/+page.svelte            |   7 +-
 .../[websiteId]/publish/+page.server.ts       | 247 ++------
 .../website/[websiteId]/publish/+page.svelte  |   8 +-
 web-app/template-styles/common-styles.css     |   8 +-
 50 files changed, 1525 insertions(+), 1632 deletions(-)
 delete mode 100644 rest-api/db/migrations/20240803163047_website_overview_view.sql
 delete mode 100644 rest-api/db/migrations/20240814175120_full_text_search.sql
 delete mode 100644 rest-api/db/migrations/20240825133549_adjust_upload_function.sql
 delete mode 100644 rest-api/db/migrations/20240827090504_categories_and_publication.sql
 delete mode 100644 rest-api/db/migrations/20240828132309_adjust_website_overview_view.sql
 delete mode 100644 rest-api/db/migrations/20240829085258_docs_articles_weight.sql
 delete mode 100644 rest-api/db/migrations/20240829095918_adjust_website_overview.sql
 delete mode 100644 rest-api/db/migrations/20240829180521_adjust_website_overview_categorized_articles_sort.sql
 delete mode 100644 rest-api/db/migrations/20240830062353_optional_publication_date.sql
 delete mode 100644 rest-api/db/migrations/20240830112106_website_view_publication_status.sql
 delete mode 100644 rest-api/db/migrations/20240901135831_restrict_file_operations.sql
 delete mode 100644 rest-api/db/migrations/20240908104458_extra_page_table.sql
 delete mode 100644 rest-api/db/migrations/20240908115706_adjust_website_overview_extra_page.sql
 create mode 100644 web-app/src/lib/db-schema.ts

diff --git a/rest-api/db/migrations/20240719071602_main_tables.sql b/rest-api/db/migrations/20240719071602_main_tables.sql
index 6ec5c94..3dc9e69 100644
--- a/rest-api/db/migrations/20240719071602_main_tables.sql
+++ b/rest-api/db/migrations/20240719071602_main_tables.sql
@@ -1,21 +1,25 @@
 -- migrate:up
+CREATE SCHEMA internal;
+
 CREATE SCHEMA api;
 
+CREATE ROLE authenticator LOGIN NOINHERIT NOCREATEDB NOCREATEROLE NOSUPERUSER;
+
 CREATE ROLE anon NOLOGIN NOINHERIT;
 
-GRANT USAGE ON SCHEMA api TO anon;
-
 CREATE ROLE authenticated_user NOLOGIN NOINHERIT;
 
-GRANT USAGE ON SCHEMA api TO authenticated_user;
-
-CREATE ROLE authenticator LOGIN NOINHERIT NOCREATEDB NOCREATEROLE NOSUPERUSER;
-
 GRANT anon TO authenticator;
 
 GRANT authenticated_user TO authenticator;
 
-CREATE SCHEMA internal;
+GRANT USAGE ON SCHEMA api TO anon;
+
+GRANT USAGE ON SCHEMA api TO authenticated_user;
+
+GRANT USAGE ON SCHEMA internal TO authenticated_user;
+
+ALTER DEFAULT PRIVILEGES REVOKE EXECUTE ON FUNCTIONS FROM PUBLIC;
 
 CREATE TABLE internal.user (
   id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
@@ -30,8 +34,10 @@ CREATE TABLE internal.website (
   content_type VARCHAR(10) CHECK (content_type IN ('Blog', 'Docs')) NOT NULL,
   title VARCHAR(50) NOT NULL CHECK (TRIM(title) != ''),
   created_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
+  is_published BOOLEAN NOT NULL DEFAULT FALSE,
   last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
-  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
+  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL,
+  title_search TSVECTOR GENERATED ALWAYS AS (TO_TSVECTOR('english', title)) STORED
 );
 
 CREATE TABLE internal.media (
@@ -70,19 +76,32 @@ CREATE TABLE internal.home (
   last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
 );
 
+CREATE TABLE internal.docs_category (
+  id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
+  website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE NOT NULL,
+  user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
+  category_name VARCHAR(50) NOT NULL CHECK (TRIM(category_name) != ''),
+  category_weight INTEGER CHECK (category_weight >= 0) NOT NULL,
+  UNIQUE (website_id, category_name),
+  UNIQUE (website_id, category_weight)
+);
+
 CREATE TABLE internal.article (
   id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
   website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE NOT NULL,
-  user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL,
+  user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
   title VARCHAR(100) NOT NULL CHECK (TRIM(title) != ''),
   meta_description VARCHAR(250) CHECK (TRIM(meta_description) != ''),
   meta_author VARCHAR(100) CHECK (TRIM(meta_author) != ''),
   cover_image UUID REFERENCES internal.media (id) ON DELETE SET NULL,
-  publication_date DATE NOT NULL DEFAULT CURRENT_DATE,
+  publication_date DATE DEFAULT CURRENT_DATE,
   main_content TEXT CHECK (TRIM(main_content) != ''),
+  category UUID REFERENCES internal.docs_category (id) ON DELETE SET NULL,
+  article_weight INTEGER CHECK (article_weight IS NULL OR article_weight >= 0),
   created_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
-  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
+  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL,
+  title_description_search TSVECTOR GENERATED ALWAYS AS (TO_TSVECTOR('english', COALESCE(title, '') || ' ' || COALESCE(meta_description, ''))) STORED
 );
 
 CREATE TABLE internal.footer (
@@ -92,6 +111,13 @@ CREATE TABLE internal.footer (
   last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
 );
 
+CREATE TABLE internal.legal_information (
+  website_id UUID PRIMARY KEY REFERENCES internal.website (id) ON DELETE CASCADE,
+  main_content TEXT NOT NULL CHECK (TRIM(main_content) != ''),
+  last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
+  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
+);
+
 CREATE TABLE internal.collab (
   website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE,
   user_id UUID REFERENCES internal.user (id) ON DELETE CASCADE,
@@ -117,10 +143,14 @@ DROP TABLE internal.change_log;
 
 DROP TABLE internal.collab;
 
+DROP TABLE internal.legal_information;
+
 DROP TABLE internal.footer;
 
 DROP TABLE internal.article;
 
+DROP TABLE internal.docs_category;
+
 DROP TABLE internal.home;
 
 DROP TABLE internal.header;
@@ -131,15 +161,17 @@ DROP TABLE internal.media;
 
 DROP TABLE internal.website;
 
-DROP SCHEMA api;
-
 DROP TABLE internal.user;
 
-DROP SCHEMA internal;
+DROP SCHEMA api;
 
-DROP ROLE authenticator;
+DROP SCHEMA internal;
 
 DROP ROLE anon;
 
 DROP ROLE authenticated_user;
 
+DROP ROLE authenticator;
+
+ALTER DEFAULT PRIVILEGES GRANT EXECUTE ON FUNCTIONS TO PUBLIC;
+
diff --git a/rest-api/db/migrations/20240720073454_automatic_schema_cache_reloading.sql b/rest-api/db/migrations/20240720073454_automatic_schema_cache_reloading.sql
index 29cbcf9..83b1001 100644
--- a/rest-api/db/migrations/20240720073454_automatic_schema_cache_reloading.sql
+++ b/rest-api/db/migrations/20240720073454_automatic_schema_cache_reloading.sql
@@ -1,6 +1,6 @@
 -- migrate:up
 CREATE FUNCTION pgrst_watch ()
-  RETURNS event_trigger
+  RETURNS EVENT_TRIGGER
   AS $$
 BEGIN
   NOTIFY pgrst,
diff --git a/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql b/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
index c2a106e..19ce8ef 100644
--- a/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
+++ b/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
@@ -45,23 +45,21 @@ CREATE TRIGGER encrypt_pass
   FOR EACH ROW
   EXECUTE FUNCTION internal.encrypt_pass ();
 
-CREATE FUNCTION internal.user_role (username TEXT, PASSWORD TEXT)
-  RETURNS NAME
-  AS $$
+CREATE FUNCTION internal.user_role (username TEXT, pass TEXT, OUT role_name NAME)
+AS $$
 BEGIN
-  RETURN (
-    SELECT
-      ROLE
-    FROM
-      internal.user AS u
-    WHERE
-      u.username = user_role.username
-      AND u.password_hash = CRYPT(user_role.password, u.password_hash));
+  SELECT
+    ROLE INTO role_name
+  FROM
+    internal.user AS u
+  WHERE
+    u.username = user_role.username
+    AND u.password_hash = CRYPT(user_role.pass, u.password_hash);
 END;
 $$
 LANGUAGE plpgsql;
 
-CREATE FUNCTION api.register (username TEXT, PASSWORD TEXT, OUT user_id UUID)
+CREATE FUNCTION api.register (username TEXT, pass TEXT, OUT user_id UUID)
 AS $$
 DECLARE
   _username_length_min CONSTANT INT := 3;
@@ -69,52 +67,48 @@ DECLARE
   _password_length_min CONSTANT INT := 12;
   _password_length_max CONSTANT INT := 128;
 BEGIN
-  IF LENGTH(register.username)
-    NOT BETWEEN _username_length_min AND _username_length_max THEN
-    RAISE string_data_length_mismatch
-    USING message = FORMAT('Username must be between %s and %s characters long', _username_length_min, _username_length_max);
-  END IF;
-    IF EXISTS (
-      SELECT
-        1
-      FROM
-        internal.user AS u
-      WHERE
-        u.username = register.username) THEN
+  CASE WHEN LENGTH(register.username)
+  NOT BETWEEN _username_length_min AND _username_length_max THEN
+  RAISE string_data_length_mismatch
+  USING message = FORMAT('Username must be between %s and %s characters long', _username_length_min, _username_length_max);
+  WHEN EXISTS (
+    SELECT
+      1
+    FROM
+      internal.user AS u
+    WHERE
+      u.username = register.username) THEN
     RAISE unique_violation
-    USING message = 'Username is already taken';
-  END IF;
-    IF LENGTH(register.password)
-      NOT BETWEEN _password_length_min AND _password_length_max THEN
-      RAISE string_data_length_mismatch
-      USING message = FORMAT('Password must be between %s and %s characters long', _password_length_min, _password_length_max);
-    END IF;
-      IF register.password !~ '[a-z]' THEN
+      USING message = 'Username is already taken';
+      WHEN LENGTH(register.pass) NOT BETWEEN _password_length_min AND _password_length_max THEN
+        RAISE string_data_length_mismatch
+        USING message = FORMAT('Password must be between %s and %s characters long', _password_length_min, _password_length_max);
+        WHEN register.pass !~ '[a-z]' THEN
         RAISE invalid_parameter_value
         USING message = 'Password must contain at least one lowercase letter';
-      END IF;
-        IF register.password !~ '[A-Z]' THEN
-          RAISE invalid_parameter_value
-          USING message = 'Password must contain at least one uppercase letter';
-        END IF;
-          IF register.password !~ '[0-9]' THEN
-            RAISE invalid_parameter_value
-            USING message = 'Password must contain at least one number';
-          END IF;
-            IF register.password !~ '[!@#$%^&*(),.?":{}|<>]' THEN
-              RAISE invalid_parameter_value
-              USING message = 'Password must contain at least one special character';
-            END IF;
-              INSERT INTO internal.user (username, password_hash)
-                VALUES (register.username, register.password)
-              RETURNING
-                id INTO user_id;
-END;
+        WHEN register.pass !~ '[A-Z]' THEN
+        RAISE invalid_parameter_value
+        USING message = 'Password must contain at least one uppercase letter';
+        WHEN register.pass !~ '[0-9]' THEN
+        RAISE invalid_parameter_value
+        USING message = 'Password must contain at least one number';
+        WHEN register.pass !~ '[!@#$%^&*(),.?":{}|<>]' THEN
+        RAISE invalid_parameter_value
+        USING message = 'Password must contain at least one special character';
+      ELSE
+          INSERT
+            INTO internal.user (username, password_hash)
+              VALUES (register.username, register.pass)
+            RETURNING
+              id INTO user_id;
+              END
+                CASE;
+        END;
 $$
 LANGUAGE plpgsql
 SECURITY DEFINER;
 
-CREATE FUNCTION api.login (username TEXT, PASSWORD TEXT, OUT token TEXT)
+CREATE FUNCTION api.login (username TEXT, pass TEXT, OUT token TEXT)
 AS $$
 DECLARE
   _role NAME;
@@ -122,7 +116,7 @@ DECLARE
   _exp INTEGER;
 BEGIN
   SELECT
-    internal.user_role (login.username, login.password) INTO _role;
+    internal.user_role (login.username, login.pass) INTO _role;
   IF _role IS NULL THEN
     RAISE invalid_password
     USING message = 'Invalid username or password';
@@ -141,14 +135,14 @@ $$
 LANGUAGE plpgsql
 SECURITY DEFINER;
 
-CREATE FUNCTION api.delete_account (PASSWORD TEXT, OUT was_deleted BOOLEAN)
+CREATE FUNCTION api.delete_account (pass TEXT, OUT was_deleted BOOLEAN)
 AS $$
 DECLARE
   _username TEXT := CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'username';
   _role NAME;
 BEGIN
   SELECT
-    internal.user_role (_username, delete_account.password) INTO _role;
+    internal.user_role (_username, delete_account.pass) INTO _role;
   IF _role IS NULL THEN
     RAISE invalid_password
     USING message = 'Invalid password';
@@ -165,7 +159,13 @@ GRANT EXECUTE ON FUNCTION api.register (TEXT, TEXT) TO anon;
 
 GRANT EXECUTE ON FUNCTION api.login (TEXT, TEXT) TO anon;
 
+GRANT EXECUTE ON FUNCTION api.delete_account (TEXT) TO authenticated_user;
+
 -- migrate:down
+DROP TRIGGER encrypt_pass ON internal.user;
+
+DROP TRIGGER ensure_user_role_exists ON internal.user;
+
 DROP FUNCTION api.register (TEXT, TEXT);
 
 DROP FUNCTION api.login (TEXT, TEXT);
@@ -174,12 +174,8 @@ DROP FUNCTION api.delete_account (TEXT);
 
 DROP FUNCTION internal.user_role (TEXT, TEXT);
 
-DROP TRIGGER encrypt_pass ON internal.user;
-
 DROP FUNCTION internal.encrypt_pass ();
 
-DROP TRIGGER ensure_user_role_exists ON internal.user;
-
 DROP FUNCTION internal.check_role_exists ();
 
 DROP EXTENSION pgjwt;
diff --git a/rest-api/db/migrations/20240720132802_exposed_views_functions.sql b/rest-api/db/migrations/20240720132802_exposed_views_functions.sql
index d273c65..48aeffb 100644
--- a/rest-api/db/migrations/20240720132802_exposed_views_functions.sql
+++ b/rest-api/db/migrations/20240720132802_exposed_views_functions.sql
@@ -2,8 +2,7 @@
 CREATE VIEW api.account WITH ( security_invoker = ON
 ) AS
 SELECT
-  id,
-  username
+  *
 FROM
   internal.user
 WHERE
@@ -23,99 +22,70 @@ FROM
 CREATE VIEW api.website WITH ( security_invoker = ON
 ) AS
 SELECT
-  id,
-  user_id,
-  content_type,
-  title,
-  created_at,
-  last_modified_at,
-  last_modified_by
+  *
 FROM
   internal.website;
 
 CREATE VIEW api.settings WITH ( security_invoker = ON
 ) AS
 SELECT
-  website_id,
-  accent_color_light_theme,
-  accent_color_dark_theme,
-  favicon_image,
-  last_modified_at,
-  last_modified_by
+  *
 FROM
   internal.settings;
 
 CREATE VIEW api.header WITH ( security_invoker = ON
 ) AS
 SELECT
-  website_id,
-  logo_type,
-  logo_text,
-  logo_image,
-  last_modified_at,
-  last_modified_by
+  *
 FROM
   internal.header;
 
 CREATE VIEW api.home WITH ( security_invoker = ON
 ) AS
 SELECT
-  website_id,
-  main_content,
-  last_modified_at,
-  last_modified_by
+  *
 FROM
   internal.home;
 
 CREATE VIEW api.article WITH ( security_invoker = ON
 ) AS
 SELECT
-  id,
-  website_id,
-  user_id,
-  title,
-  meta_description,
-  meta_author,
-  cover_image,
-  publication_date,
-  main_content,
-  created_at,
-  last_modified_at,
-  last_modified_by
+  *
 FROM
   internal.article;
 
+CREATE VIEW api.docs_category WITH ( security_invoker = ON
+) AS
+SELECT
+  *
+FROM
+  internal.docs_category;
+
 CREATE VIEW api.footer WITH ( security_invoker = ON
 ) AS
 SELECT
-  website_id,
-  additional_text,
-  last_modified_at,
-  last_modified_by
+  *
 FROM
   internal.footer;
 
+CREATE VIEW api.legal_information WITH ( security_invoker = ON
+) AS
+SELECT
+  *
+FROM
+  internal.legal_information;
+
 CREATE VIEW api.collab WITH ( security_invoker = ON
 ) AS
 SELECT
-  website_id,
-  user_id,
-  permission_level,
-  added_at,
-  last_modified_at,
-  last_modified_by
+  *
 FROM
   internal.collab;
 
 CREATE VIEW api.change_log WITH ( security_invoker = ON
 ) AS
 SELECT
-  website_id,
-  user_id,
-  change_summary,
-  previous_value,
-  new_value,
-  timestamp
+  *
 FROM
   internal.change_log;
 
@@ -123,9 +93,8 @@ CREATE FUNCTION api.create_website (content_type VARCHAR(10), title VARCHAR(50),
 AS $$
 DECLARE
   _website_id UUID;
-  _user_id UUID;
+  _user_id UUID := (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID;
 BEGIN
-  _user_id := (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID;
   INSERT INTO internal.website (content_type, title)
     VALUES (create_website.content_type, create_website.title)
   RETURNING
@@ -135,8 +104,7 @@ BEGIN
   INSERT INTO internal.header (website_id, logo_text)
     VALUES (_website_id, 'archtika ' || create_website.content_type);
   INSERT INTO internal.home (website_id, main_content)
-    VALUES (_website_id, '
-## About
+    VALUES (_website_id, '## About
 
 archtika is a FLOSS, modern, performant and lightweight CMS (Content Mangement System) in the form of a web application. It allows you to easily create, manage and publish minimal, responsive and SEO friendly blogging and documentation websites with official, professionally designed templates.
 
@@ -148,8 +116,7 @@ For the backend, PostgreSQL is used in combination with PostgREST to create a RE
 
 The web application uses SvelteKit with SSR (Server Side Rendering) and Svelte version 5, currently in beta.
 
-NGINX is used to deploy the websites, serving the static site files from the `/var/www/archtika-websites` directory. The static files can be found in this directory via the path `<user_id>/<website_id>`, which is dynamically created by the web application.
-  ');
+NGINX is used to deploy the websites, serving the static site files from the `/var/www/archtika-websites` directory. The static files can be found in this directory via the path `<user_id>/<website_id>`, which is dynamically created by the web application.');
   INSERT INTO internal.footer (website_id, additional_text)
     VALUES (_website_id, 'archtika is a free, open, modern, performant and lightweight CMS');
   website_id := _website_id;
@@ -187,10 +154,18 @@ GRANT SELECT, INSERT, UPDATE, DELETE ON internal.article TO authenticated_user;
 
 GRANT SELECT, INSERT, UPDATE, DELETE ON api.article TO authenticated_user;
 
+GRANT SELECT, INSERT, UPDATE, DELETE ON internal.docs_category TO authenticated_user;
+
+GRANT SELECT, INSERT, UPDATE, DELETE ON api.docs_category TO authenticated_user;
+
 GRANT SELECT, UPDATE ON internal.footer TO authenticated_user;
 
 GRANT SELECT, UPDATE ON api.footer TO authenticated_user;
 
+GRANT SELECT, INSERT, UPDATE, DELETE ON internal.legal_information TO authenticated_user;
+
+GRANT SELECT, INSERT, UPDATE, DELETE ON api.legal_information TO authenticated_user;
+
 GRANT SELECT, INSERT, UPDATE, DELETE ON internal.collab TO authenticated_user;
 
 GRANT SELECT, INSERT, UPDATE, DELETE ON api.collab TO authenticated_user;
@@ -206,10 +181,14 @@ DROP VIEW api.change_log;
 
 DROP VIEW api.collab;
 
+DROP VIEW api.legal_information;
+
 DROP VIEW api.footer;
 
 DROP VIEW api.home;
 
+DROP VIEW api.docs_category;
+
 DROP VIEW api.article;
 
 DROP VIEW api.header;
diff --git a/rest-api/db/migrations/20240724191017_row_level_security.sql b/rest-api/db/migrations/20240724191017_row_level_security.sql
index 071e102..61c256c 100644
--- a/rest-api/db/migrations/20240724191017_row_level_security.sql
+++ b/rest-api/db/migrations/20240724191017_row_level_security.sql
@@ -13,29 +13,30 @@ ALTER TABLE internal.home ENABLE ROW LEVEL SECURITY;
 
 ALTER TABLE internal.article ENABLE ROW LEVEL SECURITY;
 
+ALTER TABLE internal.docs_category ENABLE ROW LEVEL SECURITY;
+
 ALTER TABLE internal.footer ENABLE ROW LEVEL SECURITY;
 
+ALTER TABLE internal.legal_information ENABLE ROW LEVEL SECURITY;
+
 ALTER TABLE internal.collab ENABLE ROW LEVEL SECURITY;
 
-CREATE FUNCTION internal.user_has_website_access (website_id UUID, required_permission INTEGER, collaborator_permission_level INTEGER DEFAULT NULL, collaborator_user_id UUID DEFAULT NULL, article_user_id UUID DEFAULT NULL, raise_error BOOLEAN DEFAULT TRUE)
-  RETURNS BOOLEAN
-  AS $$
+CREATE FUNCTION internal.user_has_website_access (website_id UUID, required_permission INTEGER, collaborator_permission_level INTEGER DEFAULT NULL, collaborator_user_id UUID DEFAULT NULL, article_user_id UUID DEFAULT NULL, raise_error BOOLEAN DEFAULT TRUE, OUT has_access BOOLEAN)
+AS $$
 DECLARE
-  _user_id UUID;
-  _has_access BOOLEAN;
+  _user_id UUID := (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID;
 BEGIN
-  _user_id := (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID;
   SELECT
     EXISTS (
       SELECT
         1
       FROM
-        internal.website
+        internal.website AS w
       WHERE
-        id = website_id
-        AND user_id = _user_id) INTO _has_access;
-  IF _has_access THEN
-    RETURN _has_access;
+        w.id = user_has_website_access.website_id
+        AND w.user_id = _user_id) INTO has_access;
+  IF has_access THEN
+    RETURN;
   END IF;
   SELECT
     EXISTS (
@@ -45,24 +46,25 @@ BEGIN
         internal.collab c
       WHERE
         c.website_id = user_has_website_access.website_id
-        AND c.user_id = (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID
+        AND c.user_id = _user_id
         AND c.permission_level >= user_has_website_access.required_permission
         AND (user_has_website_access.article_user_id IS NULL
           OR (c.permission_level = 30
             OR user_has_website_access.article_user_id = _user_id))
         AND (user_has_website_access.collaborator_permission_level IS NULL
           OR (user_has_website_access.collaborator_user_id != _user_id
-            AND user_has_website_access.collaborator_permission_level < 30))) INTO _has_access;
-  IF NOT _has_access AND user_has_website_access.raise_error THEN
+            AND user_has_website_access.collaborator_permission_level < 30))) INTO has_access;
+  IF NOT has_access AND user_has_website_access.raise_error THEN
     RAISE insufficient_privilege
     USING message = 'You do not have the required permissions for this action.';
   END IF;
-    RETURN _has_access;
 END;
 $$
 LANGUAGE plpgsql
 SECURITY DEFINER;
 
+GRANT EXECUTE ON FUNCTION internal.user_has_website_access (UUID, INTEGER, INTEGER, UUID, UUID, BOOLEAN) TO authenticated_user;
+
 CREATE POLICY view_user ON internal.user
   FOR SELECT
     USING (TRUE);
@@ -127,6 +129,22 @@ CREATE POLICY insert_article ON internal.article
   FOR INSERT
     WITH CHECK (internal.user_has_website_access (website_id, 20));
 
+CREATE POLICY view_categories ON internal.docs_category
+  FOR SELECT
+    USING (internal.user_has_website_access (website_id, 10));
+
+CREATE POLICY update_category ON internal.docs_category
+  FOR UPDATE
+    USING (internal.user_has_website_access (website_id, 20));
+
+CREATE POLICY delete_category ON internal.docs_category
+  FOR DELETE
+    USING (internal.user_has_website_access (website_id, 20, article_user_id => user_id));
+
+CREATE POLICY insert_category ON internal.docs_category
+  FOR INSERT
+    WITH CHECK (internal.user_has_website_access (website_id, 20));
+
 CREATE POLICY view_footer ON internal.footer
   FOR SELECT
     USING (internal.user_has_website_access (website_id, 10));
@@ -135,6 +153,22 @@ CREATE POLICY update_footer ON internal.footer
   FOR UPDATE
     USING (internal.user_has_website_access (website_id, 20));
 
+CREATE POLICY view_legal_information ON internal.legal_information
+  FOR SELECT
+    USING (internal.user_has_website_access (website_id, 10));
+
+CREATE POLICY update_legal_information ON internal.legal_information
+  FOR UPDATE
+    USING (internal.user_has_website_access (website_id, 30));
+
+CREATE POLICY delete_legal_information ON internal.legal_information
+  FOR DELETE
+    USING (internal.user_has_website_access (website_id, 30));
+
+CREATE POLICY insert_legal_information ON internal.legal_information
+  FOR INSERT
+    WITH CHECK (internal.user_has_website_access (website_id, 30));
+
 CREATE POLICY view_collaborations ON internal.collab
   FOR SELECT
     USING (internal.user_has_website_access (website_id, 10));
@@ -184,10 +218,26 @@ DROP POLICY delete_article ON internal.article;
 
 DROP POLICY insert_article ON internal.article;
 
+DROP POLICY view_categories ON internal.docs_category;
+
+DROP POLICY update_category ON internal.docs_category;
+
+DROP POLICY delete_category ON internal.docs_category;
+
+DROP POLICY insert_category ON internal.docs_category;
+
 DROP POLICY view_footer ON internal.footer;
 
 DROP POLICY update_footer ON internal.footer;
 
+DROP POLICY insert_legal_information ON internal.legal_information;
+
+DROP POLICY delete_legal_information ON internal.legal_information;
+
+DROP POLICY update_legal_information ON internal.legal_information;
+
+DROP POLICY view_legal_information ON internal.legal_information;
+
 DROP POLICY view_collaborations ON internal.collab;
 
 DROP POLICY insert_collaborations ON internal.collab;
@@ -212,7 +262,11 @@ ALTER TABLE internal.home DISABLE ROW LEVEL SECURITY;
 
 ALTER TABLE internal.article DISABLE ROW LEVEL SECURITY;
 
+ALTER TABLE internal.docs_category DISABLE ROW LEVEL SECURITY;
+
 ALTER TABLE internal.footer DISABLE ROW LEVEL SECURITY;
 
+ALTER TABLE internal.legal_information DISABLE ROW LEVEL SECURITY;
+
 ALTER TABLE internal.collab DISABLE ROW LEVEL SECURITY;
 
diff --git a/rest-api/db/migrations/20240803163047_website_overview_view.sql b/rest-api/db/migrations/20240803163047_website_overview_view.sql
deleted file mode 100644
index 9978e88..0000000
--- a/rest-api/db/migrations/20240803163047_website_overview_view.sql
+++ /dev/null
@@ -1,40 +0,0 @@
--- migrate:up
-CREATE VIEW api.website_overview WITH ( security_invoker = ON
-) AS
-SELECT
-  w.id,
-  w.user_id,
-  w.content_type,
-  w.title,
-  s.accent_color_light_theme,
-  s.accent_color_dark_theme,
-  s.favicon_image,
-  h.logo_type,
-  h.logo_text,
-  h.logo_image,
-  ho.main_content,
-  f.additional_text,
-  (
-    SELECT
-      JSON_AGG(
-        JSON_BUILD_OBJECT(
-          'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content
-)
-)
-    FROM
-      internal.article a
-    WHERE
-      a.website_id = w.id
-) AS articles
-FROM
-  internal.website w
-  JOIN internal.settings s ON w.id = s.website_id
-  JOIN internal.header h ON w.id = h.website_id
-  JOIN internal.home ho ON w.id = ho.website_id
-  JOIN internal.footer f ON w.id = f.website_id;
-
-GRANT SELECT ON api.website_overview TO authenticated_user;
-
--- migrate:down
-DROP VIEW api.website_overview;
-
diff --git a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
index a830e5a..9a9a07b 100644
--- a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
+++ b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
@@ -12,25 +12,12 @@ BEGIN
       last_modified_at = NEW.last_modified_at,
       last_modified_by = NEW.last_modified_by
     WHERE
-      id = CASE WHEN TG_TABLE_NAME = 'settings' THEN
-        NEW.website_id
-      WHEN TG_TABLE_NAME = 'header' THEN
-        NEW.website_id
-      WHEN TG_TABLE_NAME = 'home' THEN
-        NEW.website_id
-      WHEN TG_TABLE_NAME = 'article' THEN
-        NEW.website_id
-      WHEN TG_TABLE_NAME = 'footer' THEN
-        NEW.website_id
-      WHEN TG_TABLE_NAME = 'collab' THEN
-        NEW.website_id
-      END;
+      id = NEW.website_id;
   END IF;
   RETURN NEW;
 END;
 $$
-LANGUAGE plpgsql
-SECURITY DEFINER;
+LANGUAGE plpgsql;
 
 CREATE TRIGGER update_website_last_modified
   BEFORE UPDATE ON internal.website
@@ -62,6 +49,11 @@ CREATE TRIGGER update_footer_last_modified
   FOR EACH ROW
   EXECUTE FUNCTION internal.update_last_modified ();
 
+CREATE TRIGGER update_legal_information_last_modified
+  BEFORE INSERT OR UPDATE OR DELETE ON internal.legal_information
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.update_last_modified ();
+
 CREATE TRIGGER update_collab_last_modified
   BEFORE UPDATE ON internal.collab
   FOR EACH ROW
@@ -80,6 +72,8 @@ DROP TRIGGER update_article_last_modified ON internal.article;
 
 DROP TRIGGER update_footer_last_modified ON internal.footer;
 
+DROP TRIGGER update_legal_information_last_modified ON internal.legal_information;
+
 DROP TRIGGER update_collab_last_modified ON internal.collab;
 
 DROP FUNCTION internal.update_last_modified ();
diff --git a/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql b/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql
index c9240eb..cc3a11f 100644
--- a/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql
+++ b/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql
@@ -7,10 +7,10 @@ BEGIN
     SELECT
       1
     FROM
-      internal.website
+      internal.website AS w
     WHERE
-      id = NEW.website_id
-      AND user_id = NEW.user_id) THEN
+      w.id = NEW.website_id
+      AND w.user_id = NEW.user_id) THEN
   RAISE foreign_key_violation
   USING message = 'User cannot be added as a collaborator to their own website';
 END IF;
diff --git a/rest-api/db/migrations/20240810115846_image_upload_function.sql b/rest-api/db/migrations/20240810115846_image_upload_function.sql
index e0fbf25..af6d115 100644
--- a/rest-api/db/migrations/20240810115846_image_upload_function.sql
+++ b/rest-api/db/migrations/20240810115846_image_upload_function.sql
@@ -10,7 +10,9 @@ DECLARE
   _original_filename TEXT := _headers ->> 'x-original-filename';
   _allowed_mimetypes TEXT[] := ARRAY['image/png', 'image/jpeg', 'image/webp'];
   _max_file_size INT := 5 * 1024 * 1024;
+  _has_access BOOLEAN;
 BEGIN
+  _has_access = internal.user_has_website_access (_website_id, 20);
   IF OCTET_LENGTH($1) = 0 THEN
     RAISE invalid_parameter_value
     USING message = 'No file data was provided';
@@ -19,7 +21,7 @@ BEGIN
       SELECT
         UNNEST(_allowed_mimetypes)) THEN
       RAISE invalid_parameter_value
-      USING message = 'Invalid MIME type. Allowed types are: png, svg, jpg, webp';
+      USING message = 'Invalid MIME type. Allowed types are: png, jpg, webp';
     END IF;
       IF OCTET_LENGTH($1) > _max_file_size THEN
         RAISE program_limit_exceeded
@@ -46,7 +48,7 @@ BEGIN
     '{ "Content-Disposition": "inline; filename=\"%s\"" },'
     '{ "Cache-Control": "max-age=259200" }]', m.mimetype, m.original_name)
   FROM
-    internal.media m
+    internal.media AS m
   WHERE
     m.id = retrieve_file.id INTO _headers;
   PERFORM
diff --git a/rest-api/db/migrations/20240814175120_full_text_search.sql b/rest-api/db/migrations/20240814175120_full_text_search.sql
deleted file mode 100644
index 7a8e3a3..0000000
--- a/rest-api/db/migrations/20240814175120_full_text_search.sql
+++ /dev/null
@@ -1,90 +0,0 @@
--- migrate:up
-ALTER TABLE internal.website
-  ADD COLUMN title_search TSVECTOR GENERATED ALWAYS AS (TO_TSVECTOR('english', title)) STORED;
-
-CREATE OR REPLACE VIEW api.website WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  user_id,
-  content_type,
-  title,
-  created_at,
-  last_modified_at,
-  last_modified_by,
-  title_search -- New column
-FROM
-  internal.website;
-
-GRANT SELECT, UPDATE, DELETE ON api.website TO authenticated_user;
-
-ALTER TABLE internal.article
-  ADD COLUMN title_description_search TSVECTOR GENERATED ALWAYS AS (TO_TSVECTOR('english', COALESCE(title, '') || ' ' || COALESCE(meta_description, ''))) STORED;
-
-CREATE OR REPLACE VIEW api.article WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  website_id,
-  user_id,
-  title,
-  meta_description,
-  meta_author,
-  cover_image,
-  publication_date,
-  main_content,
-  created_at,
-  last_modified_at,
-  last_modified_by,
-  title_description_search -- New column
-FROM
-  internal.article;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.article TO authenticated_user;
-
--- migrate:down
-DROP VIEW api.article;
-
-CREATE VIEW api.article WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  website_id,
-  user_id,
-  title,
-  meta_description,
-  meta_author,
-  cover_image,
-  publication_date,
-  main_content,
-  created_at,
-  last_modified_at,
-  last_modified_by
-FROM
-  internal.article;
-
-ALTER TABLE internal.article
-  DROP COLUMN title_description_search;
-
-DROP VIEW api.website;
-
-CREATE VIEW api.website WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  user_id,
-  content_type,
-  title,
-  created_at,
-  last_modified_at,
-  last_modified_by
-FROM
-  internal.website;
-
-ALTER TABLE internal.website
-  DROP COLUMN title_search;
-
-GRANT SELECT, UPDATE, DELETE ON api.website TO authenticated_user;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.article TO authenticated_user;
-
diff --git a/rest-api/db/migrations/20240825133549_adjust_upload_function.sql b/rest-api/db/migrations/20240825133549_adjust_upload_function.sql
deleted file mode 100644
index 1723a01..0000000
--- a/rest-api/db/migrations/20240825133549_adjust_upload_function.sql
+++ /dev/null
@@ -1,74 +0,0 @@
--- migrate:up
-CREATE OR REPLACE FUNCTION api.upload_file (BYTEA, OUT file_id UUID)
-AS $$
-DECLARE
-  _headers JSON := CURRENT_SETTING('request.headers', TRUE)::JSON;
-  _website_id UUID := (_headers ->> 'x-website-id')::UUID;
-  _mimetype TEXT := _headers ->> 'x-mimetype';
-  _original_filename TEXT := _headers ->> 'x-original-filename';
-  _allowed_mimetypes TEXT[] := ARRAY['image/png', 'image/jpeg', 'image/webp'];
-  _max_file_size INT := 5 * 1024 * 1024;
-BEGIN
-  IF OCTET_LENGTH($1) = 0 THEN
-    RAISE invalid_parameter_value
-    USING message = 'No file data was provided';
-  END IF;
-    IF _mimetype IS NULL OR _mimetype NOT IN (
-      SELECT
-        UNNEST(_allowed_mimetypes)) THEN
-      RAISE invalid_parameter_value
-      USING message = 'Invalid MIME type. Allowed types are: png, jpg, webp';
-    END IF;
-      IF OCTET_LENGTH($1) > _max_file_size THEN
-        RAISE program_limit_exceeded
-        USING message = FORMAT('File size exceeds the maximum limit of %s MB', _max_file_size / (1024 * 1024));
-      END IF;
-        INSERT INTO internal.media (website_id, blob, mimetype, original_name)
-          VALUES (_website_id, $1, _mimetype, _original_filename)
-        RETURNING
-          id INTO file_id;
-END;
-$$
-LANGUAGE plpgsql
-SECURITY DEFINER;
-
-GRANT EXECUTE ON FUNCTION api.upload_file (BYTEA) TO authenticated_user;
-
--- migrate:down
-DROP FUNCTION api.upload_file (BYTEA);
-
-CREATE FUNCTION api.upload_file (BYTEA, OUT file_id UUID)
-AS $$
-DECLARE
-  _headers JSON := CURRENT_SETTING('request.headers', TRUE)::JSON;
-  _website_id UUID := (_headers ->> 'x-website-id')::UUID;
-  _mimetype TEXT := _headers ->> 'x-mimetype';
-  _original_filename TEXT := _headers ->> 'x-original-filename';
-  _allowed_mimetypes TEXT[] := ARRAY['image/png', 'image/jpeg', 'image/webp'];
-  _max_file_size INT := 5 * 1024 * 1024;
-BEGIN
-  IF OCTET_LENGTH($1) = 0 THEN
-    RAISE invalid_parameter_value
-    USING message = 'No file data was provided';
-  END IF;
-    IF _mimetype IS NULL OR _mimetype NOT IN (
-      SELECT
-        UNNEST(_allowed_mimetypes)) THEN
-      RAISE invalid_parameter_value
-      USING message = 'Invalid MIME type. Allowed types are: png, svg, jpg, webp';
-    END IF;
-      IF OCTET_LENGTH($1) > _max_file_size THEN
-        RAISE program_limit_exceeded
-        USING message = FORMAT('File size exceeds the maximum limit of %s MB', _max_file_size / (1024 * 1024));
-      END IF;
-        INSERT INTO internal.media (website_id, blob, mimetype, original_name)
-          VALUES (_website_id, $1, _mimetype, _original_filename)
-        RETURNING
-          id INTO file_id;
-END;
-$$
-LANGUAGE plpgsql
-SECURITY DEFINER;
-
-GRANT EXECUTE ON FUNCTION api.upload_file (BYTEA) TO authenticated_user;
-
diff --git a/rest-api/db/migrations/20240827090504_categories_and_publication.sql b/rest-api/db/migrations/20240827090504_categories_and_publication.sql
deleted file mode 100644
index a44ab59..0000000
--- a/rest-api/db/migrations/20240827090504_categories_and_publication.sql
+++ /dev/null
@@ -1,120 +0,0 @@
--- migrate:up
-CREATE TABLE internal.docs_category (
-  id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
-  website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE NOT NULL,
-  user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
-  category_name VARCHAR(50) NOT NULL CHECK (TRIM(category_name) != ''),
-  category_weight INTEGER CHECK (category_weight >= 0) NOT NULL,
-  UNIQUE (website_id, category_name),
-  UNIQUE (website_id, category_weight)
-);
-
-ALTER TABLE internal.website
-  ADD COLUMN is_published BOOLEAN NOT NULL DEFAULT FALSE;
-
-ALTER TABLE internal.article
-  ADD COLUMN category UUID REFERENCES internal.docs_category (id) ON DELETE SET NULL;
-
-ALTER TABLE internal.article
-  ALTER COLUMN user_id SET DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID;
-
-ALTER TABLE internal.docs_category ENABLE ROW LEVEL SECURITY;
-
-CREATE POLICY view_categories ON internal.docs_category
-  FOR SELECT
-    USING (internal.user_has_website_access (website_id, 10));
-
-CREATE POLICY update_category ON internal.docs_category
-  FOR UPDATE
-    USING (internal.user_has_website_access (website_id, 20));
-
-CREATE POLICY delete_category ON internal.docs_category
-  FOR DELETE
-    USING (internal.user_has_website_access (website_id, 20, article_user_id => user_id));
-
-CREATE POLICY insert_category ON internal.docs_category
-  FOR INSERT
-    WITH CHECK (internal.user_has_website_access (website_id, 20));
-
-CREATE VIEW api.docs_category WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  website_id,
-  user_id,
-  category_name,
-  category_weight
-FROM
-  internal.docs_category;
-
-CREATE OR REPLACE VIEW api.article WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  website_id,
-  user_id,
-  title,
-  meta_description,
-  meta_author,
-  cover_image,
-  publication_date,
-  main_content,
-  created_at,
-  last_modified_at,
-  last_modified_by,
-  title_description_search,
-  category -- New column
-FROM
-  internal.article;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON internal.docs_category TO authenticated_user;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.docs_category TO authenticated_user;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.article TO authenticated_user;
-
--- migrate:down
-DROP POLICY view_categories ON internal.docs_category;
-
-DROP POLICY update_category ON internal.docs_category;
-
-DROP POLICY delete_category ON internal.docs_category;
-
-DROP POLICY insert_category ON internal.docs_category;
-
-DROP VIEW api.article;
-
-CREATE VIEW api.article WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  website_id,
-  user_id,
-  title,
-  meta_description,
-  meta_author,
-  cover_image,
-  publication_date,
-  main_content,
-  created_at,
-  last_modified_at,
-  last_modified_by,
-  title_description_search
-FROM
-  internal.article;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.article TO authenticated_user;
-
-DROP VIEW api.docs_category;
-
-ALTER TABLE internal.article
-  DROP COLUMN category;
-
-DROP TABLE internal.docs_category;
-
-ALTER TABLE internal.website
-  DROP COLUMN is_published;
-
-ALTER TABLE internal.article
-  ALTER COLUMN user_id DROP DEFAULT;
-
diff --git a/rest-api/db/migrations/20240828132309_adjust_website_overview_view.sql b/rest-api/db/migrations/20240828132309_adjust_website_overview_view.sql
deleted file mode 100644
index 75d7865..0000000
--- a/rest-api/db/migrations/20240828132309_adjust_website_overview_view.sql
+++ /dev/null
@@ -1,108 +0,0 @@
--- migrate:up
-CREATE OR REPLACE VIEW api.website_overview WITH ( security_invoker = ON
-) AS
-SELECT
-  w.id,
-  w.user_id,
-  w.content_type,
-  w.title,
-  s.accent_color_light_theme,
-  s.accent_color_dark_theme,
-  s.favicon_image,
-  h.logo_type,
-  h.logo_text,
-  h.logo_image,
-  ho.main_content,
-  f.additional_text,
-  (
-    SELECT
-      JSON_AGG(
-        JSON_BUILD_OBJECT(
-          'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-)
-    FROM
-      internal.article a
-    WHERE
-      a.website_id = w.id
-) AS articles,
-  CASE WHEN w.content_type = 'Docs' THEN
-  (
-    SELECT
-      JSON_OBJECT_AGG(
-        COALESCE(
-          category_name, 'Uncategorized'
-), articles
-)
-    FROM (
-      SELECT
-        dc.category_name,
-        dc.category_weight AS category_weight,
-        JSON_AGG(
-          JSON_BUILD_OBJECT(
-            'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-) AS articles
-      FROM
-        internal.article a
-      LEFT JOIN internal.docs_category dc ON a.category = dc.id
-    WHERE
-      a.website_id = w.id
-    GROUP BY
-      dc.id,
-      dc.category_name,
-      dc.category_weight
-    ORDER BY
-      category_weight DESC
-) AS categorized_articles)
-ELSE
-  NULL
-  END AS categorized_articles
-FROM
-  internal.website w
-  JOIN internal.settings s ON w.id = s.website_id
-  JOIN internal.header h ON w.id = h.website_id
-  JOIN internal.home ho ON w.id = ho.website_id
-  JOIN internal.footer f ON w.id = f.website_id;
-
-GRANT SELECT ON api.website_overview TO authenticated_user;
-
--- migrate:down
-DROP VIEW api.website_overview;
-
-CREATE VIEW api.website_overview WITH ( security_invoker = ON
-) AS
-SELECT
-  w.id,
-  w.user_id,
-  w.content_type,
-  w.title,
-  s.accent_color_light_theme,
-  s.accent_color_dark_theme,
-  s.favicon_image,
-  h.logo_type,
-  h.logo_text,
-  h.logo_image,
-  ho.main_content,
-  f.additional_text,
-  (
-    SELECT
-      JSON_AGG(
-        JSON_BUILD_OBJECT(
-          'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content
-)
-)
-    FROM
-      internal.article a
-    WHERE
-      a.website_id = w.id
-) AS articles
-FROM
-  internal.website w
-  JOIN internal.settings s ON w.id = s.website_id
-  JOIN internal.header h ON w.id = h.website_id
-  JOIN internal.home ho ON w.id = ho.website_id
-  JOIN internal.footer f ON w.id = f.website_id;
-
-GRANT SELECT ON api.website_overview TO authenticated_user;
-
diff --git a/rest-api/db/migrations/20240829085258_docs_articles_weight.sql b/rest-api/db/migrations/20240829085258_docs_articles_weight.sql
deleted file mode 100644
index f61f7f2..0000000
--- a/rest-api/db/migrations/20240829085258_docs_articles_weight.sql
+++ /dev/null
@@ -1,56 +0,0 @@
--- migrate:up
-ALTER TABLE internal.article
-  ADD COLUMN article_weight INTEGER CHECK (article_weight IS NULL
-    OR article_weight >= 0);
-
-CREATE OR REPLACE VIEW api.article WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  website_id,
-  user_id,
-  title,
-  meta_description,
-  meta_author,
-  cover_image,
-  publication_date,
-  main_content,
-  created_at,
-  last_modified_at,
-  last_modified_by,
-  title_description_search,
-  category,
-  article_weight -- New column
-FROM
-  internal.article;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.article TO authenticated_user;
-
--- migrate:down
-DROP VIEW api.article;
-
-CREATE VIEW api.article WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  website_id,
-  user_id,
-  title,
-  meta_description,
-  meta_author,
-  cover_image,
-  publication_date,
-  main_content,
-  created_at,
-  last_modified_at,
-  last_modified_by,
-  title_description_search,
-  category
-FROM
-  internal.article;
-
-ALTER TABLE internal.article
-  DROP COLUMN article_weight;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.article TO authenticated_user;
-
diff --git a/rest-api/db/migrations/20240829095918_adjust_website_overview.sql b/rest-api/db/migrations/20240829095918_adjust_website_overview.sql
deleted file mode 100644
index 27583fd..0000000
--- a/rest-api/db/migrations/20240829095918_adjust_website_overview.sql
+++ /dev/null
@@ -1,140 +0,0 @@
--- migrate:up
-CREATE OR REPLACE VIEW api.website_overview WITH ( security_invoker = ON
-) AS
-SELECT
-  w.id,
-  w.user_id,
-  w.content_type,
-  w.title,
-  s.accent_color_light_theme,
-  s.accent_color_dark_theme,
-  s.favicon_image,
-  h.logo_type,
-  h.logo_text,
-  h.logo_image,
-  ho.main_content,
-  f.additional_text,
-  (
-    SELECT
-      JSON_AGG(
-        JSON_BUILD_OBJECT(
-          'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-)
-    FROM
-      internal.article a
-    WHERE
-      a.website_id = w.id
-) AS articles,
-  CASE WHEN w.content_type = 'Docs' THEN
-  (
-    SELECT
-      JSON_OBJECT_AGG(
-        COALESCE(
-          category_name, 'Uncategorized'
-), articles
-)
-    FROM (
-      SELECT
-        dc.category_name,
-        dc.category_weight AS category_weight,
-        JSON_AGG(
-          JSON_BUILD_OBJECT(
-            'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-) AS articles
-      FROM
-        internal.article a
-      LEFT JOIN internal.docs_category dc ON a.category = dc.id
-    WHERE
-      a.website_id = w.id
-    GROUP BY
-      dc.id,
-      dc.category_name,
-      dc.category_weight
-    ORDER BY
-      category_weight DESC NULLS LAST
-) AS categorized_articles)
-ELSE
-  NULL
-  END AS categorized_articles
-FROM
-  internal.website w
-  JOIN internal.settings s ON w.id = s.website_id
-  JOIN internal.header h ON w.id = h.website_id
-  JOIN internal.home ho ON w.id = ho.website_id
-  JOIN internal.footer f ON w.id = f.website_id;
-
-GRANT SELECT ON api.website_overview TO authenticated_user;
-
--- migrate:down
-DROP VIEW api.website_overview;
-
-CREATE VIEW api.website_overview WITH ( security_invoker = ON
-) AS
-SELECT
-  w.id,
-  w.user_id,
-  w.content_type,
-  w.title,
-  s.accent_color_light_theme,
-  s.accent_color_dark_theme,
-  s.favicon_image,
-  h.logo_type,
-  h.logo_text,
-  h.logo_image,
-  ho.main_content,
-  f.additional_text,
-  (
-    SELECT
-      JSON_AGG(
-        JSON_BUILD_OBJECT(
-          'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-)
-    FROM
-      internal.article a
-    WHERE
-      a.website_id = w.id
-) AS articles,
-  CASE WHEN w.content_type = 'Docs' THEN
-  (
-    SELECT
-      JSON_OBJECT_AGG(
-        COALESCE(
-          category_name, 'Uncategorized'
-), articles
-)
-    FROM (
-      SELECT
-        dc.category_name,
-        dc.category_weight AS category_weight,
-        JSON_AGG(
-          JSON_BUILD_OBJECT(
-            'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-) AS articles
-      FROM
-        internal.article a
-      LEFT JOIN internal.docs_category dc ON a.category = dc.id
-    WHERE
-      a.website_id = w.id
-    GROUP BY
-      dc.id,
-      dc.category_name,
-      dc.category_weight
-    ORDER BY
-      category_weight DESC
-) AS categorized_articles)
-ELSE
-  NULL
-  END AS categorized_articles
-FROM
-  internal.website w
-  JOIN internal.settings s ON w.id = s.website_id
-  JOIN internal.header h ON w.id = h.website_id
-  JOIN internal.home ho ON w.id = ho.website_id
-  JOIN internal.footer f ON w.id = f.website_id;
-
-GRANT SELECT ON api.website_overview TO authenticated_user;
-
diff --git a/rest-api/db/migrations/20240829180521_adjust_website_overview_categorized_articles_sort.sql b/rest-api/db/migrations/20240829180521_adjust_website_overview_categorized_articles_sort.sql
deleted file mode 100644
index e62b2b1..0000000
--- a/rest-api/db/migrations/20240829180521_adjust_website_overview_categorized_articles_sort.sql
+++ /dev/null
@@ -1,140 +0,0 @@
--- migrate:up
-CREATE OR REPLACE VIEW api.website_overview WITH ( security_invoker = ON
-) AS
-SELECT
-  w.id,
-  w.user_id,
-  w.content_type,
-  w.title,
-  s.accent_color_light_theme,
-  s.accent_color_dark_theme,
-  s.favicon_image,
-  h.logo_type,
-  h.logo_text,
-  h.logo_image,
-  ho.main_content,
-  f.additional_text,
-  (
-    SELECT
-      JSON_AGG(
-        JSON_BUILD_OBJECT(
-          'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-)
-    FROM
-      internal.article a
-    WHERE
-      a.website_id = w.id
-) AS articles,
-  CASE WHEN w.content_type = 'Docs' THEN
-  (
-    SELECT
-      JSON_OBJECT_AGG(
-        COALESCE(
-          category_name, 'Uncategorized'
-), articles
-)
-    FROM (
-      SELECT
-        dc.category_name,
-        dc.category_weight AS category_weight,
-        JSON_AGG(
-          JSON_BUILD_OBJECT(
-            'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-) ORDER BY a.article_weight DESC NULLS LAST
-) AS articles
-      FROM
-        internal.article a
-      LEFT JOIN internal.docs_category dc ON a.category = dc.id
-    WHERE
-      a.website_id = w.id
-    GROUP BY
-      dc.id,
-      dc.category_name,
-      dc.category_weight
-    ORDER BY
-      category_weight DESC NULLS LAST
-) AS categorized_articles)
-ELSE
-  NULL
-  END AS categorized_articles
-FROM
-  internal.website w
-  JOIN internal.settings s ON w.id = s.website_id
-  JOIN internal.header h ON w.id = h.website_id
-  JOIN internal.home ho ON w.id = ho.website_id
-  JOIN internal.footer f ON w.id = f.website_id;
-
-GRANT SELECT ON api.website_overview TO authenticated_user;
-
--- migrate:down
-DROP VIEW api.website_overview;
-
-CREATE VIEW api.website_overview WITH ( security_invoker = ON
-) AS
-SELECT
-  w.id,
-  w.user_id,
-  w.content_type,
-  w.title,
-  s.accent_color_light_theme,
-  s.accent_color_dark_theme,
-  s.favicon_image,
-  h.logo_type,
-  h.logo_text,
-  h.logo_image,
-  ho.main_content,
-  f.additional_text,
-  (
-    SELECT
-      JSON_AGG(
-        JSON_BUILD_OBJECT(
-          'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-)
-    FROM
-      internal.article a
-    WHERE
-      a.website_id = w.id
-) AS articles,
-  CASE WHEN w.content_type = 'Docs' THEN
-  (
-    SELECT
-      JSON_OBJECT_AGG(
-        COALESCE(
-          category_name, 'Uncategorized'
-), articles
-)
-    FROM (
-      SELECT
-        dc.category_name,
-        dc.category_weight AS category_weight,
-        JSON_AGG(
-          JSON_BUILD_OBJECT(
-            'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-) AS articles
-      FROM
-        internal.article a
-      LEFT JOIN internal.docs_category dc ON a.category = dc.id
-    WHERE
-      a.website_id = w.id
-    GROUP BY
-      dc.id,
-      dc.category_name,
-      dc.category_weight
-    ORDER BY
-      category_weight DESC NULLS LAST
-) AS categorized_articles)
-ELSE
-  NULL
-  END AS categorized_articles
-FROM
-  internal.website w
-  JOIN internal.settings s ON w.id = s.website_id
-  JOIN internal.header h ON w.id = h.website_id
-  JOIN internal.home ho ON w.id = ho.website_id
-  JOIN internal.footer f ON w.id = f.website_id;
-
-GRANT SELECT ON api.website_overview TO authenticated_user;
-
diff --git a/rest-api/db/migrations/20240830062353_optional_publication_date.sql b/rest-api/db/migrations/20240830062353_optional_publication_date.sql
deleted file mode 100644
index 8ab6c0b..0000000
--- a/rest-api/db/migrations/20240830062353_optional_publication_date.sql
+++ /dev/null
@@ -1,15 +0,0 @@
--- migrate:up
-ALTER TABLE internal.article
-  ALTER COLUMN publication_date DROP NOT NULL;
-
--- migrate:down
-UPDATE
-  internal.article
-SET
-  publication_date = CURRENT_DATE
-WHERE
-  publication_date IS NULL;
-
-ALTER TABLE internal.article
-  ALTER COLUMN publication_date SET NOT NULL;
-
diff --git a/rest-api/db/migrations/20240830112106_website_view_publication_status.sql b/rest-api/db/migrations/20240830112106_website_view_publication_status.sql
deleted file mode 100644
index c305909..0000000
--- a/rest-api/db/migrations/20240830112106_website_view_publication_status.sql
+++ /dev/null
@@ -1,37 +0,0 @@
--- migrate:up
-CREATE OR REPLACE VIEW api.website WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  user_id,
-  content_type,
-  title,
-  created_at,
-  last_modified_at,
-  last_modified_by,
-  title_search,
-  is_published -- New column
-FROM
-  internal.website;
-
-GRANT SELECT, UPDATE, DELETE ON api.website TO authenticated_user;
-
--- migrate:down
-DROP VIEW api.website;
-
-CREATE OR REPLACE VIEW api.website WITH ( security_invoker = ON
-) AS
-SELECT
-  id,
-  user_id,
-  content_type,
-  title,
-  created_at,
-  last_modified_at,
-  last_modified_by,
-  title_search
-FROM
-  internal.website;
-
-GRANT SELECT, UPDATE, DELETE ON api.website TO authenticated_user;
-
diff --git a/rest-api/db/migrations/20240901135831_restrict_file_operations.sql b/rest-api/db/migrations/20240901135831_restrict_file_operations.sql
deleted file mode 100644
index 98ffa23..0000000
--- a/rest-api/db/migrations/20240901135831_restrict_file_operations.sql
+++ /dev/null
@@ -1,76 +0,0 @@
--- migrate:up
-CREATE OR REPLACE FUNCTION api.upload_file (BYTEA, OUT file_id UUID)
-AS $$
-DECLARE
-  _headers JSON := CURRENT_SETTING('request.headers', TRUE)::JSON;
-  _website_id UUID := (_headers ->> 'x-website-id')::UUID;
-  _mimetype TEXT := _headers ->> 'x-mimetype';
-  _original_filename TEXT := _headers ->> 'x-original-filename';
-  _allowed_mimetypes TEXT[] := ARRAY['image/png', 'image/jpeg', 'image/webp'];
-  _max_file_size INT := 5 * 1024 * 1024;
-  _has_access BOOLEAN;
-BEGIN
-  _has_access = internal.user_has_website_access (_website_id, 20);
-  IF OCTET_LENGTH($1) = 0 THEN
-    RAISE invalid_parameter_value
-    USING message = 'No file data was provided';
-  END IF;
-    IF _mimetype IS NULL OR _mimetype NOT IN (
-      SELECT
-        UNNEST(_allowed_mimetypes)) THEN
-      RAISE invalid_parameter_value
-      USING message = 'Invalid MIME type. Allowed types are: png, jpg, webp';
-    END IF;
-      IF OCTET_LENGTH($1) > _max_file_size THEN
-        RAISE program_limit_exceeded
-        USING message = FORMAT('File size exceeds the maximum limit of %s MB', _max_file_size / (1024 * 1024));
-      END IF;
-        INSERT INTO internal.media (website_id, blob, mimetype, original_name)
-          VALUES (_website_id, $1, _mimetype, _original_filename)
-        RETURNING
-          id INTO file_id;
-END;
-$$
-LANGUAGE plpgsql
-SECURITY DEFINER;
-
-GRANT EXECUTE ON FUNCTION api.upload_file (BYTEA) TO authenticated_user;
-
--- migrate:down
-DROP FUNCTION api.upload_file (BYTEA);
-
-CREATE FUNCTION api.upload_file (BYTEA, OUT file_id UUID)
-AS $$
-DECLARE
-  _headers JSON := CURRENT_SETTING('request.headers', TRUE)::JSON;
-  _website_id UUID := (_headers ->> 'x-website-id')::UUID;
-  _mimetype TEXT := _headers ->> 'x-mimetype';
-  _original_filename TEXT := _headers ->> 'x-original-filename';
-  _allowed_mimetypes TEXT[] := ARRAY['image/png', 'image/jpeg', 'image/webp'];
-  _max_file_size INT := 5 * 1024 * 1024;
-BEGIN
-  IF OCTET_LENGTH($1) = 0 THEN
-    RAISE invalid_parameter_value
-    USING message = 'No file data was provided';
-  END IF;
-    IF _mimetype IS NULL OR _mimetype NOT IN (
-      SELECT
-        UNNEST(_allowed_mimetypes)) THEN
-      RAISE invalid_parameter_value
-      USING message = 'Invalid MIME type. Allowed types are: png, jpg, webp';
-    END IF;
-      IF OCTET_LENGTH($1) > _max_file_size THEN
-        RAISE program_limit_exceeded
-        USING message = FORMAT('File size exceeds the maximum limit of %s MB', _max_file_size / (1024 * 1024));
-      END IF;
-        INSERT INTO internal.media (website_id, blob, mimetype, original_name)
-          VALUES (_website_id, $1, _mimetype, _original_filename)
-        RETURNING
-          id INTO file_id;
-END;
-$$
-LANGUAGE plpgsql
-SECURITY DEFINER;
-
-GRANT EXECUTE ON FUNCTION api.upload_file (BYTEA) TO authenticated_user;
-
diff --git a/rest-api/db/migrations/20240908104458_extra_page_table.sql b/rest-api/db/migrations/20240908104458_extra_page_table.sql
deleted file mode 100644
index 287562f..0000000
--- a/rest-api/db/migrations/20240908104458_extra_page_table.sql
+++ /dev/null
@@ -1,55 +0,0 @@
--- migrate:up
-CREATE TABLE internal.legal_information (
-  website_id UUID PRIMARY KEY REFERENCES internal.website (id) ON DELETE CASCADE,
-  main_content TEXT NOT NULL CHECK (TRIM(main_content) != ''),
-  last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
-  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
-);
-
-CREATE VIEW api.legal_information WITH ( security_invoker = ON
-) AS
-SELECT
-  website_id,
-  main_content,
-  last_modified_at,
-  last_modified_by
-FROM
-  internal.legal_information;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON internal.legal_information TO authenticated_user;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.legal_information TO authenticated_user;
-
-ALTER TABLE internal.legal_information ENABLE ROW LEVEL SECURITY;
-
-CREATE POLICY view_legal_information ON internal.legal_information
-  FOR SELECT
-    USING (internal.user_has_website_access (website_id, 10));
-
-CREATE POLICY update_legal_information ON internal.legal_information
-  FOR UPDATE
-    USING (internal.user_has_website_access (website_id, 30));
-
-CREATE POLICY delete_legal_information ON internal.legal_information
-  FOR DELETE
-    USING (internal.user_has_website_access (website_id, 30));
-
-CREATE POLICY insert_legal_information ON internal.legal_information
-  FOR INSERT
-    WITH CHECK (internal.user_has_website_access (website_id, 30));
-
--- migrate:down
-DROP POLICY insert_legal_information ON internal.legal_information;
-
-DROP POLICY delete_legal_information ON internal.legal_information;
-
-DROP POLICY update_legal_information ON internal.legal_information;
-
-DROP POLICY view_legal_information ON internal.legal_information;
-
-ALTER TABLE internal.legal_information DISABLE ROW LEVEL SECURITY;
-
-DROP VIEW api.legal_information;
-
-DROP TABLE internal.legal_information;
-
diff --git a/rest-api/db/migrations/20240908115706_adjust_website_overview_extra_page.sql b/rest-api/db/migrations/20240908115706_adjust_website_overview_extra_page.sql
deleted file mode 100644
index 127813c..0000000
--- a/rest-api/db/migrations/20240908115706_adjust_website_overview_extra_page.sql
+++ /dev/null
@@ -1,142 +0,0 @@
--- migrate:up
-CREATE OR REPLACE VIEW api.website_overview WITH ( security_invoker = ON
-) AS
-SELECT
-  w.id,
-  w.user_id,
-  w.content_type,
-  w.title,
-  s.accent_color_light_theme,
-  s.accent_color_dark_theme,
-  s.favicon_image,
-  h.logo_type,
-  h.logo_text,
-  h.logo_image,
-  ho.main_content,
-  f.additional_text,
-  (
-    SELECT
-      JSON_AGG(
-        JSON_BUILD_OBJECT(
-          'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-)
-    FROM
-      internal.article a
-    WHERE
-      a.website_id = w.id
-) AS articles,
-  CASE WHEN w.content_type = 'Docs' THEN
-  (
-    SELECT
-      JSON_OBJECT_AGG(
-        COALESCE(
-          category_name, 'Uncategorized'
-), articles
-)
-    FROM (
-      SELECT
-        dc.category_name,
-        dc.category_weight AS category_weight,
-        JSON_AGG(
-          JSON_BUILD_OBJECT(
-            'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-) ORDER BY a.article_weight DESC NULLS LAST
-) AS articles
-      FROM
-        internal.article a
-      LEFT JOIN internal.docs_category dc ON a.category = dc.id
-    WHERE
-      a.website_id = w.id
-    GROUP BY
-      dc.id,
-      dc.category_name,
-      dc.category_weight
-    ORDER BY
-      category_weight DESC NULLS LAST
-) AS categorized_articles)
-ELSE
-  NULL
-  END AS categorized_articles,
-  li.main_content legal_information_main_content
-FROM
-  internal.website w
-  JOIN internal.settings s ON w.id = s.website_id
-  JOIN internal.header h ON w.id = h.website_id
-  JOIN internal.home ho ON w.id = ho.website_id
-  JOIN internal.footer f ON w.id = f.website_id
-  LEFT JOIN internal.legal_information li ON w.id = li.website_id;
-
-GRANT SELECT ON api.website_overview TO authenticated_user;
-
--- migrate:down
-DROP VIEW api.website_overview;
-
-CREATE VIEW api.website_overview WITH ( security_invoker = ON
-) AS
-SELECT
-  w.id,
-  w.user_id,
-  w.content_type,
-  w.title,
-  s.accent_color_light_theme,
-  s.accent_color_dark_theme,
-  s.favicon_image,
-  h.logo_type,
-  h.logo_text,
-  h.logo_image,
-  ho.main_content,
-  f.additional_text,
-  (
-    SELECT
-      JSON_AGG(
-        JSON_BUILD_OBJECT(
-          'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-)
-)
-    FROM
-      internal.article a
-    WHERE
-      a.website_id = w.id
-) AS articles,
-  CASE WHEN w.content_type = 'Docs' THEN
-  (
-    SELECT
-      JSON_OBJECT_AGG(
-        COALESCE(
-          category_name, 'Uncategorized'
-), articles
-)
-    FROM (
-      SELECT
-        dc.category_name,
-        dc.category_weight AS category_weight,
-        JSON_AGG(
-          JSON_BUILD_OBJECT(
-            'id', a.id, 'title', a.title, 'meta_description', a.meta_description, 'meta_author', a.meta_author, 'cover_image', a.cover_image, 'publication_date', a.publication_date, 'main_content', a.main_content, 'created_at', a.created_at, 'last_modified_at', a.last_modified_at
-) ORDER BY a.article_weight DESC NULLS LAST
-) AS articles
-      FROM
-        internal.article a
-      LEFT JOIN internal.docs_category dc ON a.category = dc.id
-    WHERE
-      a.website_id = w.id
-    GROUP BY
-      dc.id,
-      dc.category_name,
-      dc.category_weight
-    ORDER BY
-      category_weight DESC NULLS LAST
-) AS categorized_articles)
-ELSE
-  NULL
-  END AS categorized_articles
-FROM
-  internal.website w
-  JOIN internal.settings s ON w.id = s.website_id
-  JOIN internal.header h ON w.id = h.website_id
-  JOIN internal.home ho ON w.id = ho.website_id
-  JOIN internal.footer f ON w.id = f.website_id;
-
-GRANT SELECT ON api.website_overview TO authenticated_user;
-
diff --git a/web-app/package-lock.json b/web-app/package-lock.json
index 2346dee..5553359 100644
--- a/web-app/package-lock.json
+++ b/web-app/package-lock.json
@@ -28,6 +28,7 @@
         "eslint-config-prettier": "9.1.0",
         "eslint-plugin-svelte": "2.43.0",
         "globals": "15.9.0",
+        "pg-to-ts": "4.1.1",
         "prettier": "3.3.3",
         "prettier-plugin-svelte": "3.2.6",
         "svelte": "5.0.0-next.220",
@@ -1631,6 +1632,16 @@
         "dequal": "^2.0.3"
       }
     },
+    "node_modules/assert-options": {
+      "version": "0.8.0",
+      "resolved": "https://registry.npmjs.org/assert-options/-/assert-options-0.8.0.tgz",
+      "integrity": "sha512-qSELrEaEz4sGwTs4Qh+swQkjiHAysC4rot21+jzXU86dJzNG+FDqBzyS3ohSoTRf4ZLA3FSwxQdiuNl5NXUtvA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=10.0.0"
+      }
+    },
     "node_modules/asynckit": {
       "version": "0.4.0",
       "resolved": "https://registry.npmjs.org/asynckit/-/asynckit-0.4.0.tgz",
@@ -1700,6 +1711,16 @@
         "node": ">=8.0.0"
       }
     },
+    "node_modules/buffer-writer": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/buffer-writer/-/buffer-writer-2.0.0.tgz",
+      "integrity": "sha512-a7ZpuTZU1TRtnwyCNW3I5dc0wWNC3VR9S++Ewyk2HHZdrO3CQJqSpd+95Us590V6AL7JqUAH2IwZ/398PmNFgw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=4"
+      }
+    },
     "node_modules/builtin-modules": {
       "version": "3.3.0",
       "resolved": "https://registry.npmjs.org/builtin-modules/-/builtin-modules-3.3.0.tgz",
@@ -1781,6 +1802,100 @@
         "fsevents": "~2.3.2"
       }
     },
+    "node_modules/cliui": {
+      "version": "8.0.1",
+      "resolved": "https://registry.npmjs.org/cliui/-/cliui-8.0.1.tgz",
+      "integrity": "sha512-BSeNnyus75C4//NQ9gQt1/csTXyo/8Sb+afLAkzAptFuMsod9HFokGNudZpi/oQV73hnVK+sR+5PVRMd+Dr7YQ==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "string-width": "^4.2.0",
+        "strip-ansi": "^6.0.1",
+        "wrap-ansi": "^7.0.0"
+      },
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/cliui/node_modules/ansi-regex": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz",
+      "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/cliui/node_modules/ansi-styles": {
+      "version": "4.3.0",
+      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-4.3.0.tgz",
+      "integrity": "sha512-zbB9rCJAT1rbjiVDb2hqKFHNYLxgtk8NURxZ3IZwD3F6NtxbXZQCnnSi1Lkx+IDohdPlFp222wVALIheZJQSEg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "color-convert": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=8"
+      },
+      "funding": {
+        "url": "https://github.com/chalk/ansi-styles?sponsor=1"
+      }
+    },
+    "node_modules/cliui/node_modules/emoji-regex": {
+      "version": "8.0.0",
+      "resolved": "https://registry.npmjs.org/emoji-regex/-/emoji-regex-8.0.0.tgz",
+      "integrity": "sha512-MSjYzcWNOA0ewAHpz0MxpYFvwg6yjy1NG3xteoqz644VCo/RPgnr1/GGt+ic3iJTzQ8Eu3TdM14SawnVUmGE6A==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/cliui/node_modules/string-width": {
+      "version": "4.2.3",
+      "resolved": "https://registry.npmjs.org/string-width/-/string-width-4.2.3.tgz",
+      "integrity": "sha512-wKyQRQpjJ0sIp62ErSZdGsjMJWsap5oRNihHhu6G7JVO/9jIB6UyevL+tXuOqrng8j/cxKTWyWUwvSTriiZz/g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "emoji-regex": "^8.0.0",
+        "is-fullwidth-code-point": "^3.0.0",
+        "strip-ansi": "^6.0.1"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/cliui/node_modules/strip-ansi": {
+      "version": "6.0.1",
+      "resolved": "https://registry.npmjs.org/strip-ansi/-/strip-ansi-6.0.1.tgz",
+      "integrity": "sha512-Y38VPSHcqkFrCpFnQ9vuSXmquuv5oXOKpGeT6aGrr3o3Gc9AlVa6JBfUSOCnbxGGZF+/0ooI7KrPuUSztUdU5A==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ansi-regex": "^5.0.1"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/cliui/node_modules/wrap-ansi": {
+      "version": "7.0.0",
+      "resolved": "https://registry.npmjs.org/wrap-ansi/-/wrap-ansi-7.0.0.tgz",
+      "integrity": "sha512-YVGIj2kamLSTxw6NsZjoBxfSwsn0ycdesmc4p+Q21c5zPuZ1pl+NfxVdxPtdHvmNVOQ6XSYG4AUtyt/Fi7D16Q==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ansi-styles": "^4.0.0",
+        "string-width": "^4.1.0",
+        "strip-ansi": "^6.0.0"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/chalk/wrap-ansi?sponsor=1"
+      }
+    },
     "node_modules/color-convert": {
       "version": "2.0.1",
       "resolved": "https://registry.npmjs.org/color-convert/-/color-convert-2.0.1.tgz",
@@ -1813,6 +1928,20 @@
         "node": ">= 0.8"
       }
     },
+    "node_modules/commander": {
+      "version": "2.20.3",
+      "resolved": "https://registry.npmjs.org/commander/-/commander-2.20.3.tgz",
+      "integrity": "sha512-GpVkmM8vF2vQUkj2LvZmD35JxeJOLCwJ9cUkugyk2nuhbv3+mJvpLYYt+0+USMxE+oj+ey/lJEnhZw75x/OMcQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/commandpost": {
+      "version": "1.4.0",
+      "resolved": "https://registry.npmjs.org/commandpost/-/commandpost-1.4.0.tgz",
+      "integrity": "sha512-aE2Y4MTFJ870NuB/+2z1cXBhSBBzRydVVjzhFC4gtenEhpnj15yu0qptWGJsO9YGrcPZ3ezX8AWb1VA391MKpQ==",
+      "dev": true,
+      "license": "MIT"
+    },
     "node_modules/commondir": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/commondir/-/commondir-1.0.1.tgz",
@@ -1985,6 +2114,43 @@
       "dev": true,
       "license": "MIT"
     },
+    "node_modules/editorconfig": {
+      "version": "0.15.3",
+      "resolved": "https://registry.npmjs.org/editorconfig/-/editorconfig-0.15.3.tgz",
+      "integrity": "sha512-M9wIMFx96vq0R4F+gRpY3o2exzb8hEj/n9S8unZtHSvYjibBp/iMufSzvmOcV/laG0ZtuTVGtiJggPOSW2r93g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "commander": "^2.19.0",
+        "lru-cache": "^4.1.5",
+        "semver": "^5.6.0",
+        "sigmund": "^1.0.1"
+      },
+      "bin": {
+        "editorconfig": "bin/editorconfig"
+      }
+    },
+    "node_modules/editorconfig/node_modules/lru-cache": {
+      "version": "4.1.5",
+      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-4.1.5.tgz",
+      "integrity": "sha512-sWZlbEP2OsHNkXrMl5GYk/jKk70MBng6UU4YI/qGDYbgf6YbP4EvmqISbXCoJiRKs+1bSpFHVgQxvJ17F2li5g==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "pseudomap": "^1.0.2",
+        "yallist": "^2.1.2"
+      }
+    },
+    "node_modules/editorconfig/node_modules/semver": {
+      "version": "5.7.2",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-5.7.2.tgz",
+      "integrity": "sha512-cBznnQ9KjJqU67B52RMC65CMarK2600WFnbkcaiwWq3xy/5haFJlshgnpjovMVJ+Hff49d8GEn0b87C5pDQ10g==",
+      "dev": true,
+      "license": "ISC",
+      "bin": {
+        "semver": "bin/semver"
+      }
+    },
     "node_modules/emoji-regex": {
       "version": "9.2.2",
       "resolved": "https://registry.npmjs.org/emoji-regex/-/emoji-regex-9.2.2.tgz",
@@ -2050,6 +2216,16 @@
         "@esbuild/win32-x64": "0.21.5"
       }
     },
+    "node_modules/escalade": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/escalade/-/escalade-3.2.0.tgz",
+      "integrity": "sha512-WUj2qlxaQtO4g6Pq5c29GTcWGDyd8itL8zTlipgECz3JesAiiOKotd8JU6otB3PACgG6xkJUyVhboMS+bje/jA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6"
+      }
+    },
     "node_modules/escape-string-regexp": {
       "version": "4.0.0",
       "resolved": "https://registry.npmjs.org/escape-string-regexp/-/escape-string-regexp-4.0.0.tgz",
@@ -2541,6 +2717,16 @@
         "url": "https://github.com/sponsors/ljharb"
       }
     },
+    "node_modules/get-caller-file": {
+      "version": "2.0.5",
+      "resolved": "https://registry.npmjs.org/get-caller-file/-/get-caller-file-2.0.5.tgz",
+      "integrity": "sha512-DyFP3BM/3YHTQOCUL/w0OZHR0lpKeGrxotcHWcqNEdnltqFwXVfhEBQ94eIo34AfQpo0rGki4cyIiftY06h2Fg==",
+      "dev": true,
+      "license": "ISC",
+      "engines": {
+        "node": "6.* || 8.* || >= 10.*"
+      }
+    },
     "node_modules/github-slugger": {
       "version": "2.0.0",
       "resolved": "https://registry.npmjs.org/github-slugger/-/github-slugger-2.0.0.tgz",
@@ -3077,6 +3263,13 @@
         "url": "https://github.com/sponsors/sindresorhus"
       }
     },
+    "node_modules/lodash": {
+      "version": "4.17.21",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz",
+      "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==",
+      "dev": true,
+      "license": "MIT"
+    },
     "node_modules/lodash.merge": {
       "version": "4.6.2",
       "resolved": "https://registry.npmjs.org/lodash.merge/-/lodash.merge-4.6.2.tgz",
@@ -3361,6 +3554,13 @@
       "dev": true,
       "license": "BlueOak-1.0.0"
     },
+    "node_modules/packet-reader": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/packet-reader/-/packet-reader-1.0.0.tgz",
+      "integrity": "sha512-HAKu/fG3HpHFO0AA8WE8q2g+gBJaZ9MG7fcKk+IJPLTGAD6Psw4443l+9DGRbOIh3/aXr7Phy0TjilYivJo5XQ==",
+      "dev": true,
+      "license": "MIT"
+    },
     "node_modules/parent-module": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/parent-module/-/parent-module-1.0.1.tgz",
@@ -3440,6 +3640,142 @@
         "url": "https://github.com/sponsors/isaacs"
       }
     },
+    "node_modules/pg": {
+      "version": "8.8.0",
+      "resolved": "https://registry.npmjs.org/pg/-/pg-8.8.0.tgz",
+      "integrity": "sha512-UXYN0ziKj+AeNNP7VDMwrehpACThH7LUl/p8TDFpEUuSejCUIwGSfxpHsPvtM6/WXFy6SU4E5RG4IJV/TZAGjw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "buffer-writer": "2.0.0",
+        "packet-reader": "1.0.0",
+        "pg-connection-string": "^2.5.0",
+        "pg-pool": "^3.5.2",
+        "pg-protocol": "^1.5.0",
+        "pg-types": "^2.1.0",
+        "pgpass": "1.x"
+      },
+      "engines": {
+        "node": ">= 8.0.0"
+      },
+      "peerDependencies": {
+        "pg-native": ">=3.0.1"
+      },
+      "peerDependenciesMeta": {
+        "pg-native": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/pg-connection-string": {
+      "version": "2.6.4",
+      "resolved": "https://registry.npmjs.org/pg-connection-string/-/pg-connection-string-2.6.4.tgz",
+      "integrity": "sha512-v+Z7W/0EO707aNMaAEfiGnGL9sxxumwLl2fJvCQtMn9Fxsg+lPpPkdcyBSv/KFgpGdYkMfn+EI1Or2EHjpgLCA==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/pg-int8": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/pg-int8/-/pg-int8-1.0.1.tgz",
+      "integrity": "sha512-WCtabS6t3c8SkpDBUlb1kjOs7l66xsGdKpIPZsg4wR+B3+u9UAum2odSsF9tnvxg80h4ZxLWMy4pRjOsFIqQpw==",
+      "dev": true,
+      "license": "ISC",
+      "engines": {
+        "node": ">=4.0.0"
+      }
+    },
+    "node_modules/pg-minify": {
+      "version": "1.6.2",
+      "resolved": "https://registry.npmjs.org/pg-minify/-/pg-minify-1.6.2.tgz",
+      "integrity": "sha512-1KdmFGGTP6jplJoI8MfvRlfvMiyBivMRP7/ffh4a11RUFJ7kC2J0ZHlipoKiH/1hz+DVgceon9U2qbaHpPeyPg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8.0"
+      }
+    },
+    "node_modules/pg-pool": {
+      "version": "3.6.2",
+      "resolved": "https://registry.npmjs.org/pg-pool/-/pg-pool-3.6.2.tgz",
+      "integrity": "sha512-Htjbg8BlwXqSBQ9V8Vjtc+vzf/6fVUuak/3/XXKA9oxZprwW3IMDQTGHP+KDmVL7rtd+R1QjbnCFPuTHm3G4hg==",
+      "dev": true,
+      "license": "MIT",
+      "peerDependencies": {
+        "pg": ">=8.0"
+      }
+    },
+    "node_modules/pg-promise": {
+      "version": "10.15.4",
+      "resolved": "https://registry.npmjs.org/pg-promise/-/pg-promise-10.15.4.tgz",
+      "integrity": "sha512-BKlHCMCdNUmF6gagVbehRWSEiVcZzPVltEx14OJExR9Iz9/1R6KETDWLLGv2l6yRqYFnEZZy1VDjRhArzeIGrw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "assert-options": "0.8.0",
+        "pg": "8.8.0",
+        "pg-minify": "1.6.2",
+        "spex": "3.2.0"
+      },
+      "engines": {
+        "node": ">=12.0"
+      }
+    },
+    "node_modules/pg-protocol": {
+      "version": "1.6.1",
+      "resolved": "https://registry.npmjs.org/pg-protocol/-/pg-protocol-1.6.1.tgz",
+      "integrity": "sha512-jPIlvgoD63hrEuihvIg+tJhoGjUsLPn6poJY9N5CnlPd91c2T18T/9zBtLxZSb1EhYxBRoZJtzScCaWlYLtktg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/pg-to-ts": {
+      "version": "4.1.1",
+      "resolved": "https://registry.npmjs.org/pg-to-ts/-/pg-to-ts-4.1.1.tgz",
+      "integrity": "sha512-wc/ZXMMQrxu42mnl6eEdMgT31S9rvA/Oh9I9PchovUwoJLzEg0osGQjxiQOLjAdz3Ti45o749XREJ2s+xncZ6w==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "lodash": "^4.17.21",
+        "pg-promise": "^10.11.1",
+        "typescript-formatter": "^7.0.1",
+        "yargs": "^17.3.1"
+      },
+      "bin": {
+        "pg-to-ts": "dist/cli.js"
+      },
+      "engines": {
+        "node": ">=8.15.1"
+      },
+      "peerDependencies": {
+        "typescript": ">=4.1"
+      }
+    },
+    "node_modules/pg-types": {
+      "version": "2.2.0",
+      "resolved": "https://registry.npmjs.org/pg-types/-/pg-types-2.2.0.tgz",
+      "integrity": "sha512-qTAAlrEsl8s4OiEQY69wDvcMIdQN6wdz5ojQiOy6YRMuynxenON0O5oCpJI6lshc6scgAY8qvJ2On/p+CXY0GA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "pg-int8": "1.0.1",
+        "postgres-array": "~2.0.0",
+        "postgres-bytea": "~1.0.0",
+        "postgres-date": "~1.0.4",
+        "postgres-interval": "^1.1.0"
+      },
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/pgpass": {
+      "version": "1.0.5",
+      "resolved": "https://registry.npmjs.org/pgpass/-/pgpass-1.0.5.tgz",
+      "integrity": "sha512-FdW9r/jQZhSeohs1Z3sI1yxFQNFvMcnmfuj4WBMUTxOrAyLMaTcE1aAMBiTlbMNaXvBCQuVi0R7hd8udDSP7ug==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "split2": "^4.1.0"
+      }
+    },
     "node_modules/picocolors": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/picocolors/-/picocolors-1.0.1.tgz",
@@ -3624,6 +3960,49 @@
         "node": ">=4"
       }
     },
+    "node_modules/postgres-array": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/postgres-array/-/postgres-array-2.0.0.tgz",
+      "integrity": "sha512-VpZrUqU5A69eQyW2c5CA1jtLecCsN2U/bD6VilrFDWq5+5UIEVO7nazS3TEcHf1zuPYO/sqGvUvW62g86RXZuA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/postgres-bytea": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/postgres-bytea/-/postgres-bytea-1.0.0.tgz",
+      "integrity": "sha512-xy3pmLuQqRBZBXDULy7KbaitYqLcmxigw14Q5sj8QBVLqEwXfeybIKVWiqAXTlcvdvb0+xkOtDbfQMOf4lST1w==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/postgres-date": {
+      "version": "1.0.7",
+      "resolved": "https://registry.npmjs.org/postgres-date/-/postgres-date-1.0.7.tgz",
+      "integrity": "sha512-suDmjLVQg78nMK2UZ454hAG+OAW+HQPZ6n++TNDUX+L0+uUlLywnoxJKDou51Zm+zTCjrCl0Nq6J9C5hP9vK/Q==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/postgres-interval": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/postgres-interval/-/postgres-interval-1.2.0.tgz",
+      "integrity": "sha512-9ZhXKM/rw350N1ovuWHbGxnGh/SNJ4cnxHiM0rxE4VN41wsg8P8zWn9hv/buK00RP4WvlOyr/RBDiptyxVbkZQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "xtend": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
     "node_modules/prelude-ls": {
       "version": "1.2.1",
       "resolved": "https://registry.npmjs.org/prelude-ls/-/prelude-ls-1.2.1.tgz",
@@ -3661,6 +4040,13 @@
         "svelte": "^3.2.0 || ^4.0.0-next.0 || ^5.0.0-next.0"
       }
     },
+    "node_modules/pseudomap": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/pseudomap/-/pseudomap-1.0.2.tgz",
+      "integrity": "sha512-b/YwNhb8lk1Zz2+bXXpS/LK9OisiZZ1SNsSLxN1x2OXVEhW2Ckr/7mWE5vrC1ZTiJlD9g19jWszTmJsB+oEpFQ==",
+      "dev": true,
+      "license": "ISC"
+    },
     "node_modules/psl": {
       "version": "1.9.0",
       "resolved": "https://registry.npmjs.org/psl/-/psl-1.9.0.tgz",
@@ -3716,6 +4102,16 @@
         "node": ">=8.10.0"
       }
     },
+    "node_modules/require-directory": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/require-directory/-/require-directory-2.1.1.tgz",
+      "integrity": "sha512-fGxEI7+wsG9xrvdjsrlmL22OMTTiHRwAMroiEeMgq8gzoLC/PQr7RsRDSTLUg/bZAZtF+TVIkHc6/4RIKrui+Q==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
     "node_modules/requires-port": {
       "version": "1.0.0",
       "resolved": "https://registry.npmjs.org/requires-port/-/requires-port-1.0.0.tgz",
@@ -3974,6 +4370,13 @@
         "node": ">=8"
       }
     },
+    "node_modules/sigmund": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/sigmund/-/sigmund-1.0.1.tgz",
+      "integrity": "sha512-fCvEXfh6NWpm+YSuY2bpXb/VIihqWA6hLsgboC+0nl71Q7N7o2eaCW8mJa/NLvQhs6jpd3VZV4UiUQlV6+lc8g==",
+      "dev": true,
+      "license": "ISC"
+    },
     "node_modules/signal-exit": {
       "version": "4.1.0",
       "resolved": "https://registry.npmjs.org/signal-exit/-/signal-exit-4.1.0.tgz",
@@ -4028,6 +4431,26 @@
         "node": ">=0.10.0"
       }
     },
+    "node_modules/spex": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/spex/-/spex-3.2.0.tgz",
+      "integrity": "sha512-9srjJM7NaymrpwMHvSmpDeIK5GoRMX/Tq0E8aOlDPS54dDnDUIp30DrP9SphMPEETDLzEM9+4qo+KipmbtPecg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=4.5"
+      }
+    },
+    "node_modules/split2": {
+      "version": "4.2.0",
+      "resolved": "https://registry.npmjs.org/split2/-/split2-4.2.0.tgz",
+      "integrity": "sha512-UcjcJOWknrNkF6PLX83qcHM6KHgVKNkV62Y8a5uYDVv9ydGQVwAHMKqHdJje1VTWpljG0WYpCDhrCdAOYH4TWg==",
+      "dev": true,
+      "license": "ISC",
+      "engines": {
+        "node": ">= 10.x"
+      }
+    },
     "node_modules/string-width": {
       "version": "5.1.2",
       "resolved": "https://registry.npmjs.org/string-width/-/string-width-5.1.2.tgz",
@@ -4517,6 +4940,26 @@
         }
       }
     },
+    "node_modules/typescript-formatter": {
+      "version": "7.2.2",
+      "resolved": "https://registry.npmjs.org/typescript-formatter/-/typescript-formatter-7.2.2.tgz",
+      "integrity": "sha512-V7vfI9XArVhriOTYHPzMU2WUnm5IMdu9X/CPxs8mIMGxmTBFpDABlbkBka64PZJ9/xgQeRpK8KzzAG4MPzxBDQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "commandpost": "^1.0.0",
+        "editorconfig": "^0.15.0"
+      },
+      "bin": {
+        "tsfmt": "bin/tsfmt"
+      },
+      "engines": {
+        "node": ">= 4.2.0"
+      },
+      "peerDependencies": {
+        "typescript": "^2.1.6 || >=2.7.0-dev || >=2.8.0-dev || >=2.9.0-dev || >=3.0.0-dev"
+      }
+    },
     "node_modules/undici-types": {
       "version": "6.13.0",
       "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-6.13.0.tgz",
@@ -4857,6 +5300,33 @@
       "integrity": "sha512-JZnDKK8B0RCDw84FNdDAIpZK+JuJw+s7Lz8nksI7SIuU3UXJJslUthsi+uWBUYOwPFwW7W7PRLRfUKpxjtjFCw==",
       "license": "MIT"
     },
+    "node_modules/xtend": {
+      "version": "4.0.2",
+      "resolved": "https://registry.npmjs.org/xtend/-/xtend-4.0.2.tgz",
+      "integrity": "sha512-LKYU1iAXJXUgAXn9URjiu+MWhyUXHsvfp7mcuYm9dSUKK0/CjtrUwFAxD82/mCWbtLsGjFIad0wIsod4zrTAEQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.4"
+      }
+    },
+    "node_modules/y18n": {
+      "version": "5.0.8",
+      "resolved": "https://registry.npmjs.org/y18n/-/y18n-5.0.8.tgz",
+      "integrity": "sha512-0pfFzegeDWJHJIAmTLRP2DwHjdF5s7jo9tuztdQxAhINCdvS+3nGINqPd00AphqJR/0LhANUS6/+7SCb98YOfA==",
+      "dev": true,
+      "license": "ISC",
+      "engines": {
+        "node": ">=10"
+      }
+    },
+    "node_modules/yallist": {
+      "version": "2.1.2",
+      "resolved": "https://registry.npmjs.org/yallist/-/yallist-2.1.2.tgz",
+      "integrity": "sha512-ncTzHV7NvsQZkYe1DW7cbDLm0YpzHmZF5r/iyP3ZnQtMiJ+pjzisCiMNI+Sj+xQF5pXhSHxSB3uDbsBTzY/c2A==",
+      "dev": true,
+      "license": "ISC"
+    },
     "node_modules/yaml": {
       "version": "1.10.2",
       "resolved": "https://registry.npmjs.org/yaml/-/yaml-1.10.2.tgz",
@@ -4867,6 +5337,80 @@
         "node": ">= 6"
       }
     },
+    "node_modules/yargs": {
+      "version": "17.7.2",
+      "resolved": "https://registry.npmjs.org/yargs/-/yargs-17.7.2.tgz",
+      "integrity": "sha512-7dSzzRQ++CKnNI/krKnYRV7JKKPUXMEh61soaHKg9mrWEhzFWhFnxPxGl+69cD1Ou63C13NUPCnmIcrvqCuM6w==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "cliui": "^8.0.1",
+        "escalade": "^3.1.1",
+        "get-caller-file": "^2.0.5",
+        "require-directory": "^2.1.1",
+        "string-width": "^4.2.3",
+        "y18n": "^5.0.5",
+        "yargs-parser": "^21.1.1"
+      },
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/yargs-parser": {
+      "version": "21.1.1",
+      "resolved": "https://registry.npmjs.org/yargs-parser/-/yargs-parser-21.1.1.tgz",
+      "integrity": "sha512-tVpsJW7DdjecAiFpbIB1e3qxIQsE6NoPc5/eTdrbbIC4h0LVsWhnoa3g+m2HclBIujHzsxZ4VJVA+GUuc2/LBw==",
+      "dev": true,
+      "license": "ISC",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/yargs/node_modules/ansi-regex": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz",
+      "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/yargs/node_modules/emoji-regex": {
+      "version": "8.0.0",
+      "resolved": "https://registry.npmjs.org/emoji-regex/-/emoji-regex-8.0.0.tgz",
+      "integrity": "sha512-MSjYzcWNOA0ewAHpz0MxpYFvwg6yjy1NG3xteoqz644VCo/RPgnr1/GGt+ic3iJTzQ8Eu3TdM14SawnVUmGE6A==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/yargs/node_modules/string-width": {
+      "version": "4.2.3",
+      "resolved": "https://registry.npmjs.org/string-width/-/string-width-4.2.3.tgz",
+      "integrity": "sha512-wKyQRQpjJ0sIp62ErSZdGsjMJWsap5oRNihHhu6G7JVO/9jIB6UyevL+tXuOqrng8j/cxKTWyWUwvSTriiZz/g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "emoji-regex": "^8.0.0",
+        "is-fullwidth-code-point": "^3.0.0",
+        "strip-ansi": "^6.0.1"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/yargs/node_modules/strip-ansi": {
+      "version": "6.0.1",
+      "resolved": "https://registry.npmjs.org/strip-ansi/-/strip-ansi-6.0.1.tgz",
+      "integrity": "sha512-Y38VPSHcqkFrCpFnQ9vuSXmquuv5oXOKpGeT6aGrr3o3Gc9AlVa6JBfUSOCnbxGGZF+/0ooI7KrPuUSztUdU5A==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ansi-regex": "^5.0.1"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
     "node_modules/yocto-queue": {
       "version": "0.1.0",
       "resolved": "https://registry.npmjs.org/yocto-queue/-/yocto-queue-0.1.0.tgz",
diff --git a/web-app/package.json b/web-app/package.json
index 524b70b..10947da 100644
--- a/web-app/package.json
+++ b/web-app/package.json
@@ -10,7 +10,8 @@
     "check": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json",
     "check:watch": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json --watch",
     "lint": "prettier --check . && eslint .",
-    "format": "prettier --write ."
+    "format": "prettier --write .",
+    "gents": "pg-to-ts generate -c postgres://postgres@localhost:15432/archtika -o src/lib/db-schema.ts -s internal"
   },
   "devDependencies": {
     "@playwright/test": "1.40.0",
@@ -26,6 +27,7 @@
     "eslint-config-prettier": "9.1.0",
     "eslint-plugin-svelte": "2.43.0",
     "globals": "15.9.0",
+    "pg-to-ts": "4.1.1",
     "prettier": "3.3.3",
     "prettier-plugin-svelte": "3.2.6",
     "svelte": "5.0.0-next.220",
diff --git a/web-app/src/app.d.ts b/web-app/src/app.d.ts
index fd9a3e9..1966d68 100644
--- a/web-app/src/app.d.ts
+++ b/web-app/src/app.d.ts
@@ -1,9 +1,6 @@
 // See https://kit.svelte.dev/docs/types#app
 // for information about these interfaces
-interface User {
-  id: string;
-  username: string;
-}
+import type { User } from "$lib/db-schema";
 
 declare global {
   namespace App {
diff --git a/web-app/src/lib/components/DateTime.svelte b/web-app/src/lib/components/DateTime.svelte
index d569147..4bc6bae 100644
--- a/web-app/src/lib/components/DateTime.svelte
+++ b/web-app/src/lib/components/DateTime.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-  const { date }: { date: string } = $props();
+  const { date }: { date: Date } = $props();
 
   const options: Intl.DateTimeFormatOptions = {
     year: "numeric",
@@ -11,6 +11,6 @@
   };
 </script>
 
-<time datetime={new Date(date).toLocaleString("sv").replace(" ", "T")}>
-  {new Date(date).toLocaleString("en-us", { ...options })}
+<time datetime={date.toLocaleString("sv").replace(" ", "T")}>
+  {date.toLocaleString("en-us", { ...options })}
 </time>
diff --git a/web-app/src/lib/components/SuccessOrError.svelte b/web-app/src/lib/components/SuccessOrError.svelte
index f7bd87f..8a13858 100644
--- a/web-app/src/lib/components/SuccessOrError.svelte
+++ b/web-app/src/lib/components/SuccessOrError.svelte
@@ -1,6 +1,5 @@
 <script lang="ts">
-  const { success, message }: { success: boolean | undefined; message: string | undefined } =
-    $props();
+  const { success, message }: { success?: boolean; message?: string } = $props();
 </script>
 
 {#if success}
diff --git a/web-app/src/lib/db-schema.ts b/web-app/src/lib/db-schema.ts
new file mode 100644
index 0000000..219493e
--- /dev/null
+++ b/web-app/src/lib/db-schema.ts
@@ -0,0 +1,496 @@
+/* tslint:disable */
+/* eslint-disable */
+
+/**
+ * AUTO-GENERATED FILE - DO NOT EDIT!
+ *
+ * This file was automatically generated by pg-to-ts v.4.1.1
+ * $ pg-to-ts generate -c postgres://username:password@localhost:15432/archtika -t article -t change_log -t collab -t docs_category -t footer -t header -t home -t legal_information -t media -t settings -t user -t website -s internal
+ *
+ */
+
+export type Json = unknown;
+
+// Table article
+export interface Article {
+  id: string;
+  website_id: string;
+  user_id: string | null;
+  title: string;
+  meta_description: string | null;
+  meta_author: string | null;
+  cover_image: string | null;
+  publication_date: Date | null;
+  main_content: string | null;
+  created_at: Date;
+  last_modified_at: Date;
+  last_modified_by: string | null;
+  title_description_search: any | null;
+  category: string | null;
+  article_weight: number | null;
+}
+export interface ArticleInput {
+  id?: string;
+  website_id: string;
+  user_id?: string | null;
+  title: string;
+  meta_description?: string | null;
+  meta_author?: string | null;
+  cover_image?: string | null;
+  publication_date?: Date | null;
+  main_content?: string | null;
+  created_at?: Date;
+  last_modified_at?: Date;
+  last_modified_by?: string | null;
+  title_description_search?: any | null;
+  category?: string | null;
+  article_weight?: number | null;
+}
+const article = {
+  tableName: "article",
+  columns: [
+    "id",
+    "website_id",
+    "user_id",
+    "title",
+    "meta_description",
+    "meta_author",
+    "cover_image",
+    "publication_date",
+    "main_content",
+    "created_at",
+    "last_modified_at",
+    "last_modified_by",
+    "title_description_search",
+    "category",
+    "article_weight"
+  ],
+  requiredForInsert: ["website_id", "title"],
+  primaryKey: "id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    user_id: { table: "user", column: "id", $type: null as unknown as User },
+    cover_image: { table: "media", column: "id", $type: null as unknown as Media },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User },
+    category: { table: "docs_category", column: "id", $type: null as unknown as DocsCategory }
+  },
+  $type: null as unknown as Article,
+  $input: null as unknown as ArticleInput
+} as const;
+
+// Table change_log
+export interface ChangeLog {
+  website_id: string;
+  user_id: string;
+  change_summary: string;
+  previous_value: Json | null;
+  new_value: Json | null;
+  timestamp: Date;
+}
+export interface ChangeLogInput {
+  website_id: string;
+  user_id?: string;
+  change_summary: string;
+  previous_value?: Json | null;
+  new_value?: Json | null;
+  timestamp?: Date;
+}
+const change_log = {
+  tableName: "change_log",
+  columns: ["website_id", "user_id", "change_summary", "previous_value", "new_value", "timestamp"],
+  requiredForInsert: ["website_id", "change_summary"],
+  primaryKey: "website_id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    user_id: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as ChangeLog,
+  $input: null as unknown as ChangeLogInput
+} as const;
+
+// Table collab
+export interface Collab {
+  website_id: string;
+  user_id: string;
+  permission_level: number;
+  added_at: Date;
+  last_modified_at: Date;
+  last_modified_by: string | null;
+}
+export interface CollabInput {
+  website_id: string;
+  user_id: string;
+  permission_level?: number;
+  added_at?: Date;
+  last_modified_at?: Date;
+  last_modified_by?: string | null;
+}
+const collab = {
+  tableName: "collab",
+  columns: [
+    "website_id",
+    "user_id",
+    "permission_level",
+    "added_at",
+    "last_modified_at",
+    "last_modified_by"
+  ],
+  requiredForInsert: ["website_id", "user_id"],
+  primaryKey: "website_id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    user_id: { table: "user", column: "id", $type: null as unknown as User },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as Collab,
+  $input: null as unknown as CollabInput
+} as const;
+
+// Table docs_category
+export interface DocsCategory {
+  id: string;
+  website_id: string;
+  user_id: string | null;
+  category_name: string;
+  category_weight: number;
+}
+export interface DocsCategoryInput {
+  id?: string;
+  website_id: string;
+  user_id?: string | null;
+  category_name: string;
+  category_weight: number;
+}
+const docs_category = {
+  tableName: "docs_category",
+  columns: ["id", "website_id", "user_id", "category_name", "category_weight"],
+  requiredForInsert: ["website_id", "category_name", "category_weight"],
+  primaryKey: "id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    user_id: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as DocsCategory,
+  $input: null as unknown as DocsCategoryInput
+} as const;
+
+// Table footer
+export interface Footer {
+  website_id: string;
+  additional_text: string;
+  last_modified_at: Date;
+  last_modified_by: string | null;
+}
+export interface FooterInput {
+  website_id: string;
+  additional_text: string;
+  last_modified_at?: Date;
+  last_modified_by?: string | null;
+}
+const footer = {
+  tableName: "footer",
+  columns: ["website_id", "additional_text", "last_modified_at", "last_modified_by"],
+  requiredForInsert: ["website_id", "additional_text"],
+  primaryKey: "website_id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as Footer,
+  $input: null as unknown as FooterInput
+} as const;
+
+// Table header
+export interface Header {
+  website_id: string;
+  logo_type: string;
+  logo_text: string | null;
+  logo_image: string | null;
+  last_modified_at: Date;
+  last_modified_by: string | null;
+}
+export interface HeaderInput {
+  website_id: string;
+  logo_type?: string;
+  logo_text?: string | null;
+  logo_image?: string | null;
+  last_modified_at?: Date;
+  last_modified_by?: string | null;
+}
+const header = {
+  tableName: "header",
+  columns: [
+    "website_id",
+    "logo_type",
+    "logo_text",
+    "logo_image",
+    "last_modified_at",
+    "last_modified_by"
+  ],
+  requiredForInsert: ["website_id"],
+  primaryKey: "website_id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    logo_image: { table: "media", column: "id", $type: null as unknown as Media },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as Header,
+  $input: null as unknown as HeaderInput
+} as const;
+
+// Table home
+export interface Home {
+  website_id: string;
+  main_content: string;
+  last_modified_at: Date;
+  last_modified_by: string | null;
+}
+export interface HomeInput {
+  website_id: string;
+  main_content: string;
+  last_modified_at?: Date;
+  last_modified_by?: string | null;
+}
+const home = {
+  tableName: "home",
+  columns: ["website_id", "main_content", "last_modified_at", "last_modified_by"],
+  requiredForInsert: ["website_id", "main_content"],
+  primaryKey: "website_id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as Home,
+  $input: null as unknown as HomeInput
+} as const;
+
+// Table legal_information
+export interface LegalInformation {
+  website_id: string;
+  main_content: string;
+  last_modified_at: Date;
+  last_modified_by: string | null;
+}
+export interface LegalInformationInput {
+  website_id: string;
+  main_content: string;
+  last_modified_at?: Date;
+  last_modified_by?: string | null;
+}
+const legal_information = {
+  tableName: "legal_information",
+  columns: ["website_id", "main_content", "last_modified_at", "last_modified_by"],
+  requiredForInsert: ["website_id", "main_content"],
+  primaryKey: "website_id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as LegalInformation,
+  $input: null as unknown as LegalInformationInput
+} as const;
+
+// Table media
+export interface Media {
+  id: string;
+  website_id: string;
+  user_id: string;
+  blob: string;
+  mimetype: string;
+  original_name: string;
+  created_at: Date;
+}
+export interface MediaInput {
+  id?: string;
+  website_id: string;
+  user_id?: string;
+  blob: string;
+  mimetype: string;
+  original_name: string;
+  created_at?: Date;
+}
+const media = {
+  tableName: "media",
+  columns: ["id", "website_id", "user_id", "blob", "mimetype", "original_name", "created_at"],
+  requiredForInsert: ["website_id", "blob", "mimetype", "original_name"],
+  primaryKey: "id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    user_id: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as Media,
+  $input: null as unknown as MediaInput
+} as const;
+
+// Table settings
+export interface Settings {
+  website_id: string;
+  accent_color_light_theme: string;
+  accent_color_dark_theme: string;
+  favicon_image: string | null;
+  last_modified_at: Date;
+  last_modified_by: string | null;
+}
+export interface SettingsInput {
+  website_id: string;
+  accent_color_light_theme?: string;
+  accent_color_dark_theme?: string;
+  favicon_image?: string | null;
+  last_modified_at?: Date;
+  last_modified_by?: string | null;
+}
+const settings = {
+  tableName: "settings",
+  columns: [
+    "website_id",
+    "accent_color_light_theme",
+    "accent_color_dark_theme",
+    "favicon_image",
+    "last_modified_at",
+    "last_modified_by"
+  ],
+  requiredForInsert: ["website_id"],
+  primaryKey: "website_id",
+  foreignKeys: {
+    website_id: { table: "website", column: "id", $type: null as unknown as Website },
+    favicon_image: { table: "media", column: "id", $type: null as unknown as Media },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as Settings,
+  $input: null as unknown as SettingsInput
+} as const;
+
+// Table user
+export interface User {
+  id: string;
+  username: string;
+  password_hash: string;
+  role: string;
+}
+export interface UserInput {
+  id?: string;
+  username: string;
+  password_hash: string;
+  role?: string;
+}
+const user = {
+  tableName: "user",
+  columns: ["id", "username", "password_hash", "role"],
+  requiredForInsert: ["username", "password_hash"],
+  primaryKey: "id",
+  foreignKeys: {},
+  $type: null as unknown as User,
+  $input: null as unknown as UserInput
+} as const;
+
+// Table website
+export interface Website {
+  id: string;
+  user_id: string;
+  content_type: string;
+  title: string;
+  created_at: Date;
+  last_modified_at: Date;
+  last_modified_by: string | null;
+  title_search: any | null;
+  is_published: boolean;
+}
+export interface WebsiteInput {
+  id?: string;
+  user_id?: string;
+  content_type: string;
+  title: string;
+  created_at?: Date;
+  last_modified_at?: Date;
+  last_modified_by?: string | null;
+  title_search?: any | null;
+  is_published?: boolean;
+}
+const website = {
+  tableName: "website",
+  columns: [
+    "id",
+    "user_id",
+    "content_type",
+    "title",
+    "created_at",
+    "last_modified_at",
+    "last_modified_by",
+    "title_search",
+    "is_published"
+  ],
+  requiredForInsert: ["content_type", "title"],
+  primaryKey: "id",
+  foreignKeys: {
+    user_id: { table: "user", column: "id", $type: null as unknown as User },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
+  },
+  $type: null as unknown as Website,
+  $input: null as unknown as WebsiteInput
+} as const;
+
+export interface TableTypes {
+  article: {
+    select: Article;
+    input: ArticleInput;
+  };
+  change_log: {
+    select: ChangeLog;
+    input: ChangeLogInput;
+  };
+  collab: {
+    select: Collab;
+    input: CollabInput;
+  };
+  docs_category: {
+    select: DocsCategory;
+    input: DocsCategoryInput;
+  };
+  footer: {
+    select: Footer;
+    input: FooterInput;
+  };
+  header: {
+    select: Header;
+    input: HeaderInput;
+  };
+  home: {
+    select: Home;
+    input: HomeInput;
+  };
+  legal_information: {
+    select: LegalInformation;
+    input: LegalInformationInput;
+  };
+  media: {
+    select: Media;
+    input: MediaInput;
+  };
+  settings: {
+    select: Settings;
+    input: SettingsInput;
+  };
+  user: {
+    select: User;
+    input: UserInput;
+  };
+  website: {
+    select: Website;
+    input: WebsiteInput;
+  };
+}
+
+export const tables = {
+  article,
+  change_log,
+  collab,
+  docs_category,
+  footer,
+  header,
+  home,
+  legal_information,
+  media,
+  settings,
+  user,
+  website
+};
diff --git a/web-app/src/lib/templates/blog/BlogArticle.svelte b/web-app/src/lib/templates/blog/BlogArticle.svelte
index cc9b3d9..bd44bac 100644
--- a/web-app/src/lib/templates/blog/BlogArticle.svelte
+++ b/web-app/src/lib/templates/blog/BlogArticle.svelte
@@ -2,52 +2,44 @@
   import Head from "../common/Head.svelte";
   import Nav from "../common/Nav.svelte";
   import Footer from "../common/Footer.svelte";
+  import { type WebsiteOverview, md } from "../../utils";
+  import type { Article } from "../../db-schema";
 
   const {
-    favicon,
-    title,
-    logoType,
-    logo,
-    mainContent,
-    coverImage,
-    publicationDate,
-    footerAdditionalText,
-    metaDescription
-  }: {
-    favicon: string;
-    title: string;
-    logoType: "text" | "image";
-    logo: string;
-    mainContent: string;
-    coverImage: string;
-    publicationDate: string;
-    footerAdditionalText: string;
-    metaDescription: string;
-  } = $props();
+    websiteOverview,
+    article,
+    apiUrl
+  }: { websiteOverview: WebsiteOverview; article: Article; apiUrl: string } = $props();
 </script>
 
-<Head {title} {favicon} nestingLevel={1} {metaDescription} />
+<Head
+  {websiteOverview}
+  nestingLevel={1}
+  {apiUrl}
+  title={article.title}
+  metaDescription={article.meta_description}
+/>
 
-<Nav {logoType} {logo} isIndexPage={false} />
+<Nav {websiteOverview} isDocsTemplate={false} isIndexPage={false} {apiUrl} />
 
 <header>
   <div class="container">
     <hgroup>
-      <p>{publicationDate}</p>
-      <h1>{title}</h1>
+      <p>{article.publication_date}</p>
+      <h1>{article.title}</h1>
     </hgroup>
-    {#if coverImage}
-      <img src={coverImage} alt="" />
+    {#if article.cover_image}
+      <img src="{apiUrl}/rpc/retrieve_file?id={article.cover_image}" alt="" />
     {/if}
   </div>
 </header>
 
-{#if mainContent}
+{#if article.main_content}
   <main>
     <div class="container">
-      {@html mainContent}
+      {@html md(article.main_content)}
     </div>
   </main>
 {/if}
 
-<Footer text={footerAdditionalText} isIndexPage={false} />
+<Footer {websiteOverview} isIndexPage={false} />
diff --git a/web-app/src/lib/templates/blog/BlogIndex.svelte b/web-app/src/lib/templates/blog/BlogIndex.svelte
index 617b4f5..424aa6f 100644
--- a/web-app/src/lib/templates/blog/BlogIndex.svelte
+++ b/web-app/src/lib/templates/blog/BlogIndex.svelte
@@ -2,47 +2,46 @@
   import Head from "../common/Head.svelte";
   import Nav from "../common/Nav.svelte";
   import Footer from "../common/Footer.svelte";
+  import { md, type WebsiteOverview } from "../../utils";
 
   const {
-    favicon,
-    title,
-    logoType,
-    logo,
-    mainContent,
-    articles,
-    footerAdditionalText
-  }: {
-    favicon: string;
-    title: string;
-    logoType: "text" | "image";
-    logo: string;
-    mainContent: string;
-    articles: { title: string; publication_date: string; meta_description: string }[];
-    footerAdditionalText: string;
-  } = $props();
+    websiteOverview,
+    apiUrl,
+    isLegalPage
+  }: { websiteOverview: WebsiteOverview; apiUrl: string; isLegalPage: boolean } = $props();
 </script>
 
-<Head {title} {favicon} />
+<Head
+  {websiteOverview}
+  nestingLevel={0}
+  {apiUrl}
+  title={isLegalPage ? "Legal information" : websiteOverview.title}
+/>
 
-<Nav {logoType} {logo} />
+<Nav {websiteOverview} isDocsTemplate={false} isIndexPage={true} {apiUrl} />
 
 <header>
   <div class="container">
-    <h1>{title}</h1>
+    <h1>{isLegalPage ? "Legal information" : websiteOverview.title}</h1>
   </div>
 </header>
 
 <main>
   <div class="container">
-    {@html mainContent}
-    {#if articles.length > 0}
+    {@html md(
+      isLegalPage
+        ? (websiteOverview.legal_information?.main_content ?? "")
+        : websiteOverview.home.main_content,
+      false
+    )}
+    {#if websiteOverview.article.length > 0 && !isLegalPage}
       <section class="articles" id="articles">
         <h2>
           <a href="#articles">Articles</a>
         </h2>
 
         <ul class="unpadded">
-          {#each articles as article}
+          {#each websiteOverview.article as article}
             {@const articleFileName = article.title.toLowerCase().split(" ").join("-")}
             <li>
               <p>{article.publication_date}</p>
@@ -62,4 +61,4 @@
   </div>
 </main>
 
-<Footer text={footerAdditionalText} />
+<Footer {websiteOverview} isIndexPage={true} />
diff --git a/web-app/src/lib/templates/common/Footer.svelte b/web-app/src/lib/templates/common/Footer.svelte
index 289b1fa..da65909 100644
--- a/web-app/src/lib/templates/common/Footer.svelte
+++ b/web-app/src/lib/templates/common/Footer.svelte
@@ -1,11 +1,16 @@
 <script lang="ts">
-  const { text, isIndexPage = true }: { text: string; isIndexPage?: boolean } = $props();
+  import type { WebsiteOverview } from "../../utils";
+
+  const {
+    websiteOverview,
+    isIndexPage
+  }: { websiteOverview: WebsiteOverview; isIndexPage: boolean } = $props();
 </script>
 
 <footer>
   <div class="container">
     <small>
-      {@html text.replace(
+      {@html websiteOverview.footer.additional_text.replace(
         "!!legal",
         `<a href="${isIndexPage ? "./legal-information" : "../legal-information"}">Legal information</a>`
       )}
diff --git a/web-app/src/lib/templates/common/Head.svelte b/web-app/src/lib/templates/common/Head.svelte
index d587f49..d663ff9 100644
--- a/web-app/src/lib/templates/common/Head.svelte
+++ b/web-app/src/lib/templates/common/Head.svelte
@@ -1,13 +1,17 @@
 <script lang="ts">
+  import type { WebsiteOverview } from "../../utils";
+
   const {
+    websiteOverview,
+    nestingLevel,
+    apiUrl,
     title,
-    favicon,
-    nestingLevel = 0,
-    metaDescription = null
+    metaDescription
   }: {
+    websiteOverview: WebsiteOverview;
+    nestingLevel: number;
+    apiUrl: string;
     title: string;
-    favicon: string;
-    nestingLevel?: number;
     metaDescription?: string | null;
   } = $props();
 </script>
@@ -19,8 +23,11 @@
     <title>{title}</title>
     <meta name="description" content={metaDescription ?? title} />
     <link rel="stylesheet" href={`${"../".repeat(nestingLevel)}styles.css`} />
-    {#if favicon}
-      <link rel="icon" href={favicon} />
+    {#if websiteOverview.settings.favicon_image}
+      <link
+        rel="icon"
+        href="{apiUrl}/rpc/retrieve_file?id={websiteOverview.settings.favicon_image}"
+      />
     {/if}
   </head>
 </svelte:head>
diff --git a/web-app/src/lib/templates/common/Nav.svelte b/web-app/src/lib/templates/common/Nav.svelte
index 523d6f9..8c5c2e1 100644
--- a/web-app/src/lib/templates/common/Nav.svelte
+++ b/web-app/src/lib/templates/common/Nav.svelte
@@ -1,17 +1,36 @@
 <script lang="ts">
+  import type { WebsiteOverview } from "../../utils";
+  import type { Article } from "../../db-schema";
+
   const {
-    logoType,
-    logo,
-    isDocsTemplate = false,
-    categorizedArticles = {},
-    isIndexPage = true
+    websiteOverview,
+    isDocsTemplate,
+    isIndexPage,
+    apiUrl
   }: {
-    logoType: "text" | "image";
-    logo: string;
-    isDocsTemplate?: boolean;
-    categorizedArticles?: { [key: string]: { title: string }[] };
-    isIndexPage?: boolean;
+    websiteOverview: WebsiteOverview;
+    isDocsTemplate: boolean;
+    isIndexPage: boolean;
+    apiUrl: string;
   } = $props();
+
+  const categorizedArticles = Object.fromEntries(
+    Object.entries(
+      Object.groupBy(
+        websiteOverview.article.sort((a, b) => (b.article_weight ?? 0) - (a.article_weight ?? 0)),
+        (article) => article.docs_category?.category_name ?? "Uncategorized"
+      )
+    ).sort(([a], [b]) =>
+      a === "Uncategorized"
+        ? 1
+        : b === "Uncategorized"
+          ? -1
+          : (websiteOverview.article.find((art) => art.docs_category?.category_name === b)
+              ?.docs_category?.category_weight ?? 0) -
+            (websiteOverview.article.find((art) => art.docs_category?.category_name === a)
+              ?.docs_category?.category_weight ?? 0)
+    )
+  ) as { [key: string]: Article[] };
 </script>
 
 <nav>
@@ -53,10 +72,15 @@
       </section>
     {/if}
     <a href={isIndexPage ? "." : ".."}>
-      {#if logoType === "text"}
-        <strong>{logo}</strong>
+      {#if websiteOverview.header.logo_type === "text"}
+        <strong>{websiteOverview.header.logo_text}</strong>
       {:else}
-        <img src={logo} width="24" height="24" alt="" />
+        <img
+          src="{apiUrl}/rpc/retrieve_file?id={websiteOverview.header.logo_image}"
+          width="24"
+          height="24"
+          alt=""
+        />
       {/if}
     </a>
   </div>
diff --git a/web-app/src/lib/templates/docs/DocsArticle.svelte b/web-app/src/lib/templates/docs/DocsArticle.svelte
index b5d9df5..84e4711 100644
--- a/web-app/src/lib/templates/docs/DocsArticle.svelte
+++ b/web-app/src/lib/templates/docs/DocsArticle.svelte
@@ -2,44 +2,38 @@
   import Head from "../common/Head.svelte";
   import Nav from "../common/Nav.svelte";
   import Footer from "../common/Footer.svelte";
+  import { md, type WebsiteOverview } from "../../utils";
+  import type { Article } from "../../db-schema";
 
   const {
-    favicon,
-    title,
-    logoType,
-    logo,
-    mainContent,
-    categorizedArticles,
-    footerAdditionalText,
-    metaDescription
-  }: {
-    favicon: string;
-    title: string;
-    logoType: "text" | "image";
-    logo: string;
-    mainContent: string;
-    categorizedArticles: { [key: string]: { title: string }[] };
-    footerAdditionalText: string;
-    metaDescription: string;
-  } = $props();
+    websiteOverview,
+    article,
+    apiUrl
+  }: { websiteOverview: WebsiteOverview; article: Article; apiUrl: string } = $props();
 </script>
 
-<Head {title} {favicon} nestingLevel={1} {metaDescription} />
+<Head
+  {websiteOverview}
+  nestingLevel={1}
+  {apiUrl}
+  title={article.title}
+  metaDescription={article.meta_description}
+/>
 
-<Nav {logoType} {logo} isDocsTemplate={true} {categorizedArticles} isIndexPage={false} />
+<Nav {websiteOverview} isDocsTemplate={true} isIndexPage={false} {apiUrl} />
 
 <header>
   <div class="container">
-    <h1>{title}</h1>
+    <h1>{article.title}</h1>
   </div>
 </header>
 
-{#if mainContent}
+{#if article.main_content}
   <main>
     <div class="container">
-      {@html mainContent}
+      {@html md(article.main_content)}
     </div>
   </main>
 {/if}
 
-<Footer text={footerAdditionalText} isIndexPage={false} />
+<Footer {websiteOverview} isIndexPage={false} />
diff --git a/web-app/src/lib/templates/docs/DocsIndex.svelte b/web-app/src/lib/templates/docs/DocsIndex.svelte
index eded995..c539493 100644
--- a/web-app/src/lib/templates/docs/DocsIndex.svelte
+++ b/web-app/src/lib/templates/docs/DocsIndex.svelte
@@ -2,40 +2,39 @@
   import Head from "../common/Head.svelte";
   import Nav from "../common/Nav.svelte";
   import Footer from "../common/Footer.svelte";
+  import { md, type WebsiteOverview } from "../../utils";
 
   const {
-    favicon,
-    title,
-    logoType,
-    logo,
-    mainContent,
-    categorizedArticles,
-    footerAdditionalText
-  }: {
-    favicon: string;
-    title: string;
-    logoType: "text" | "image";
-    logo: string;
-    mainContent: string;
-    categorizedArticles: { [key: string]: { title: string }[] };
-    footerAdditionalText: string;
-  } = $props();
+    websiteOverview,
+    apiUrl,
+    isLegalPage
+  }: { websiteOverview: WebsiteOverview; apiUrl: string; isLegalPage: boolean } = $props();
 </script>
 
-<Head {title} {favicon} />
+<Head
+  {websiteOverview}
+  nestingLevel={0}
+  {apiUrl}
+  title={isLegalPage ? "Legal information" : websiteOverview.title}
+/>
 
-<Nav {logoType} {logo} isDocsTemplate={true} {categorizedArticles} />
+<Nav {websiteOverview} isDocsTemplate={true} isIndexPage={true} {apiUrl} />
 
 <header>
   <div class="container">
-    <h1>{title}</h1>
+    <h1>{isLegalPage ? "Legal information" : websiteOverview.title}</h1>
   </div>
 </header>
 
 <main>
   <div class="container">
-    {@html mainContent}
+    {@html md(
+      isLegalPage
+        ? (websiteOverview.legal_information?.main_content ?? "")
+        : websiteOverview.home.main_content,
+      false
+    )}
   </div>
 </main>
 
-<Footer text={footerAdditionalText} />
+<Footer {websiteOverview} isIndexPage={true} />
diff --git a/web-app/src/lib/utils.ts b/web-app/src/lib/utils.ts
index 1139da6..68b9314 100644
--- a/web-app/src/lib/utils.ts
+++ b/web-app/src/lib/utils.ts
@@ -5,6 +5,16 @@ import hljs from "highlight.js";
 import GithubSlugger from "github-slugger";
 import DOMPurify from "isomorphic-dompurify";
 import { applyAction, deserialize } from "$app/forms";
+import type {
+  Website,
+  Settings,
+  Header,
+  Home,
+  Footer,
+  Article,
+  DocsCategory,
+  LegalInformation
+} from "$lib/db-schema";
 
 export const ALLOWED_MIME_TYPES = ["image/jpeg", "image/png", "image/svg+xml", "image/webp"];
 
@@ -189,3 +199,12 @@ export const handleImagePaste = async (event: ClipboardEvent, API_BASE_PREFIX: s
     return "";
   }
 };
+
+export interface WebsiteOverview extends Website {
+  settings: Settings;
+  header: Header;
+  home: Home;
+  footer: Footer;
+  article: (Article & { docs_category: DocsCategory | null })[];
+  legal_information?: LegalInformation;
+}
diff --git a/web-app/src/routes/(anonymous)/login/+page.server.ts b/web-app/src/routes/(anonymous)/login/+page.server.ts
index ce6245c..ce747c8 100644
--- a/web-app/src/routes/(anonymous)/login/+page.server.ts
+++ b/web-app/src/routes/(anonymous)/login/+page.server.ts
@@ -10,7 +10,7 @@ export const actions: Actions = {
       headers: { "Content-Type": "application/json" },
       body: JSON.stringify({
         username: data.get("username"),
-        password: data.get("password")
+        pass: data.get("password")
       })
     });
 
diff --git a/web-app/src/routes/(anonymous)/register/+page.server.ts b/web-app/src/routes/(anonymous)/register/+page.server.ts
index 37fd576..d8dfc0c 100644
--- a/web-app/src/routes/(anonymous)/register/+page.server.ts
+++ b/web-app/src/routes/(anonymous)/register/+page.server.ts
@@ -10,7 +10,7 @@ export const actions: Actions = {
       headers: { "Content-Type": "application/json" },
       body: JSON.stringify({
         username: data.get("username"),
-        password: data.get("password")
+        pass: data.get("password")
       })
     });
 
diff --git a/web-app/src/routes/(authenticated)/+page.server.ts b/web-app/src/routes/(authenticated)/+page.server.ts
index cf3391a..2f37835 100644
--- a/web-app/src/routes/(authenticated)/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/+page.server.ts
@@ -2,6 +2,7 @@ import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
 import { rm } from "node:fs/promises";
 import { join } from "node:path";
+import type { Website, WebsiteInput } from "$lib/db-schema";
 
 export const load: PageServerLoad = async ({ fetch, cookies, url, locals }) => {
   const searchQuery = url.searchParams.get("website_search_query");
@@ -47,7 +48,7 @@ export const load: PageServerLoad = async ({ fetch, cookies, url, locals }) => {
     }
   });
 
-  const websites = await websiteData.json();
+  const websites: Website[] = await websiteData.json();
 
   return {
     totalWebsiteCount,
@@ -66,9 +67,9 @@ export const actions: Actions = {
         Authorization: `Bearer ${cookies.get("session_token")}`
       },
       body: JSON.stringify({
-        content_type: data.get("content-type"),
-        title: data.get("title")
-      })
+        content_type: data.get("content-type") as string,
+        title: data.get("title") as string
+      } satisfies WebsiteInput)
     });
 
     if (!res.ok) {
diff --git a/web-app/src/routes/(authenticated)/account/+page.server.ts b/web-app/src/routes/(authenticated)/account/+page.server.ts
index 8630ac0..6306267 100644
--- a/web-app/src/routes/(authenticated)/account/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/account/+page.server.ts
@@ -23,7 +23,7 @@ export const actions: Actions = {
         Authorization: `Bearer ${cookies.get("session_token")}`
       },
       body: JSON.stringify({
-        password: data.get("password")
+        pass: data.get("password")
       })
     });
 
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/+layout.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/+layout.server.ts
index bcacb84..4e3cff9 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/+layout.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/+layout.server.ts
@@ -1,6 +1,7 @@
 import type { LayoutServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
 import { error } from "@sveltejs/kit";
+import type { Website, Home } from "$lib/db-schema";
 
 export const load: LayoutServerLoad = async ({ params, fetch, cookies }) => {
   const websiteData = await fetch(`${API_BASE_PREFIX}/website?id=eq.${params.websiteId}`, {
@@ -25,8 +26,8 @@ export const load: LayoutServerLoad = async ({ params, fetch, cookies }) => {
     }
   });
 
-  const website = await websiteData.json();
-  const home = await homeData.json();
+  const website: Website = await websiteData.json();
+  const home: Home = await homeData.json();
 
   return {
     website,
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/+page.server.ts
index 4eff039..8d61ee6 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/+page.server.ts
@@ -1,5 +1,6 @@
 import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
+import type { Settings, Header, Footer } from "$lib/db-schema";
 
 export const load: PageServerLoad = async ({ params, fetch, cookies }) => {
   const globalSettingsData = await fetch(
@@ -32,9 +33,9 @@ export const load: PageServerLoad = async ({ params, fetch, cookies }) => {
     }
   });
 
-  const globalSettings = await globalSettingsData.json();
-  const header = await headerData.json();
-  const footer = await footerData.json();
+  const globalSettings: Settings = await globalSettingsData.json();
+  const header: Header = await headerData.json();
+  const footer: Footer = await footerData.json();
 
   return {
     globalSettings,
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.server.ts
index 0cd4bc4..7b37440 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.server.ts
@@ -1,5 +1,6 @@
 import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
+import type { Article, ArticleInput, DocsCategory } from "$lib/db-schema";
 
 export const load: PageServerLoad = async ({ params, fetch, cookies, url, parent, locals }) => {
   const searchQuery = url.searchParams.get("article_search_query");
@@ -54,7 +55,7 @@ export const load: PageServerLoad = async ({ params, fetch, cookies, url, parent
     }
   });
 
-  const articles = await articlesData.json();
+  const articles: (Article & { docs_category: DocsCategory | null })[] = await articlesData.json();
 
   return {
     totalArticleCount,
@@ -76,8 +77,8 @@ export const actions: Actions = {
       },
       body: JSON.stringify({
         website_id: params.websiteId,
-        title: data.get("title")
-      })
+        title: data.get("title") as string
+      } satisfies ArticleInput)
     });
 
     if (!res.ok) {
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.server.ts
index 662121a..eb2c0ea 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.server.ts
@@ -1,5 +1,6 @@
 import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
+import type { Article, DocsCategory } from "$lib/db-schema";
 
 export const load: PageServerLoad = async ({ parent, params, cookies, fetch }) => {
   const articleData = await fetch(`${API_BASE_PREFIX}/article?id=eq.${params.articleId}`, {
@@ -22,8 +23,8 @@ export const load: PageServerLoad = async ({ parent, params, cookies, fetch }) =
     }
   );
 
-  const article = await articleData.json();
-  const categories = await categoryData.json();
+  const article: Article = await articleData.json();
+  const categories: DocsCategory[] = await categoryData.json();
   const { website } = await parent();
 
   return { website, article, categories, API_BASE_PREFIX };
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/categories/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/categories/+page.server.ts
index 1bd139e..f16941f 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/categories/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/categories/+page.server.ts
@@ -1,5 +1,6 @@
 import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
+import type { DocsCategory, DocsCategoryInput } from "$lib/db-schema";
 
 export const load: PageServerLoad = async ({ parent, params, cookies, fetch }) => {
   const categoryData = await fetch(
@@ -13,7 +14,7 @@ export const load: PageServerLoad = async ({ parent, params, cookies, fetch }) =
     }
   );
 
-  const categories = await categoryData.json();
+  const categories: DocsCategory[] = await categoryData.json();
   const { website, home } = await parent();
 
   return {
@@ -35,9 +36,9 @@ export const actions: Actions = {
       },
       body: JSON.stringify({
         website_id: params.websiteId,
-        category_name: data.get("category-name"),
-        category_weight: data.get("category-weight")
-      })
+        category_name: data.get("category-name") as string,
+        category_weight: data.get("category-weight") as unknown as number
+      } satisfies DocsCategoryInput)
     });
 
     if (!res.ok) {
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/collaborators/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/collaborators/+page.server.ts
index 5eaeea6..89842a1 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/collaborators/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/collaborators/+page.server.ts
@@ -1,5 +1,6 @@
 import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
+import type { Collab, CollabInput, User } from "$lib/db-schema";
 
 export const load: PageServerLoad = async ({ parent, params, fetch, cookies }) => {
   const { website, home } = await parent();
@@ -15,7 +16,7 @@ export const load: PageServerLoad = async ({ parent, params, fetch, cookies }) =
     }
   );
 
-  const collaborators = await collabData.json();
+  const collaborators: (Collab & { user: User })[] = await collabData.json();
 
   return {
     website,
@@ -37,6 +38,8 @@ export const actions: Actions = {
       }
     });
 
+    const user: User = await userData.json();
+
     const res = await fetch(`${API_BASE_PREFIX}/collab`, {
       method: "POST",
       headers: {
@@ -45,9 +48,9 @@ export const actions: Actions = {
       },
       body: JSON.stringify({
         website_id: params.websiteId,
-        user_id: (await userData.json()).id,
-        permission_level: data.get("permission-level")
-      })
+        user_id: user.id,
+        permission_level: data.get("permission-level") as unknown as number
+      } satisfies CollabInput)
     });
 
     if (!res.ok) {
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
index dd804bd..86ac858 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
@@ -2,6 +2,7 @@ import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
 import { rm } from "node:fs/promises";
 import { join } from "node:path";
+import type { LegalInformation, LegalInformationInput } from "$lib/db-schema";
 
 export const load: PageServerLoad = async ({ parent, fetch, params, cookies }) => {
   const legalInformationData = await fetch(
@@ -16,7 +17,7 @@ export const load: PageServerLoad = async ({ parent, fetch, params, cookies }) =
     }
   );
 
-  const legalInformation = legalInformationData.ok ? await legalInformationData.json() : null;
+  const legalInformation: LegalInformation = await legalInformationData.json();
   const { website } = await parent();
 
   return {
@@ -39,8 +40,8 @@ export const actions: Actions = {
       },
       body: JSON.stringify({
         website_id: params.websiteId,
-        main_content: data.get("main-content")
-      })
+        main_content: data.get("main-content") as string
+      } satisfies LegalInformationInput)
     });
 
     if (!res.ok) {
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte
index 7fbbece..ea23367 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte
@@ -8,7 +8,7 @@
 
   const { data, form }: { data: PageServerData; form: ActionData } = $props();
 
-  let previewContent = $state(data.legalInformation?.main_content);
+  let previewContent = $state(data.legalInformation.main_content);
   let mainContentTextarea: HTMLTextAreaElement;
   let textareaScrollTop = $state(0);
 
@@ -80,14 +80,14 @@
           bind:value={previewContent}
           bind:this={mainContentTextarea}
           onscroll={updateScrollPercentage}
-          required>{data.legalInformation?.main_content ?? ""}</textarea
+          required>{data.legalInformation.main_content ?? ""}</textarea
         >
       </label>
 
       <button type="submit">Submit</button>
     </form>
 
-    {#if data.legalInformation?.main_content}
+    {#if data.legalInformation.main_content}
       <Modal id="delete-legal-information" text="Delete">
         <form
           action="?/deleteLegalInformation"
@@ -98,7 +98,6 @@
               await update();
               window.location.hash = "!";
               sending = false;
-              previewContent = null;
             };
           }}
         >
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
index b6a09ae..998d4cf 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
@@ -1,6 +1,6 @@
 import { readFile, mkdir, writeFile } from "node:fs/promises";
 import { join } from "node:path";
-import { md } from "$lib/utils";
+import { type WebsiteOverview } from "$lib/utils";
 import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
 import { render } from "svelte/server";
@@ -10,34 +10,9 @@ import DocsIndex from "$lib/templates/docs/DocsIndex.svelte";
 import DocsArticle from "$lib/templates/docs/DocsArticle.svelte";
 import { dev } from "$app/environment";
 
-interface WebsiteData {
-  id: string;
-  content_type: "Blog" | "Docs";
-  favicon_image: string | null;
-  title: string;
-  logo_type: "text" | "image";
-  logo_text: string | null;
-  logo_image: string | null;
-  main_content: string;
-  additional_text: string;
-  accent_color_light_theme: string;
-  accent_color_dark_theme: string;
-  articles: {
-    cover_image: string | null;
-    title: string;
-    publication_date: string;
-    meta_description: string;
-    main_content: string;
-  }[];
-  categorized_articles: {
-    [key: string]: { title: string; publication_date: string; meta_description: string }[];
-  };
-  legal_information_main_content: string | null;
-}
-
-export const load: PageServerLoad = async ({ params, fetch, cookies, parent }) => {
+export const load: PageServerLoad = async ({ params, fetch, cookies }) => {
   const websiteOverviewData = await fetch(
-    `${API_BASE_PREFIX}/website_overview?id=eq.${params.websiteId}`,
+    `${API_BASE_PREFIX}/website?id=eq.${params.websiteId}&select=*,settings(*),header(*),home(*),footer(*),article(*,docs_category(*)),legal_information(*)`,
     {
       method: "GET",
       headers: {
@@ -48,8 +23,7 @@ export const load: PageServerLoad = async ({ params, fetch, cookies, parent }) =
     }
   );
 
-  const websiteOverview = await websiteOverviewData.json();
-  const { website } = await parent();
+  const websiteOverview: WebsiteOverview = await websiteOverviewData.json();
 
   generateStaticFiles(websiteOverview);
 
@@ -70,15 +44,14 @@ export const load: PageServerLoad = async ({ params, fetch, cookies, parent }) =
   return {
     websiteOverview,
     websitePreviewUrl,
-    websiteProdUrl,
-    website
+    websiteProdUrl
   };
 };
 
 export const actions: Actions = {
   publishWebsite: async ({ fetch, params, cookies }) => {
     const websiteOverviewData = await fetch(
-      `${API_BASE_PREFIX}/website_overview?id=eq.${params.websiteId}`,
+      `${API_BASE_PREFIX}/website?id=eq.${params.websiteId}&select=*,settings(*),header(*),home(*),footer(*),article(*,docs_category(*)),legal_information(*)`,
       {
         method: "GET",
         headers: {
@@ -112,54 +85,9 @@ export const actions: Actions = {
   }
 };
 
-const generateStaticFiles = async (websiteData: WebsiteData, isPreview: boolean = true) => {
-  let head = "";
-  let body = "";
-
-  switch (websiteData.content_type) {
-    case "Blog":
-      {
-        ({ head, body } = render(BlogIndex, {
-          props: {
-            favicon: websiteData.favicon_image
-              ? `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.favicon_image}`
-              : "",
-            title: websiteData.title,
-            logoType: websiteData.logo_type,
-            logo:
-              websiteData.logo_type === "text"
-                ? (websiteData.logo_text ?? "")
-                : `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.logo_image}`,
-            mainContent: md(websiteData.main_content ?? "", false),
-            articles: websiteData.articles ?? [],
-            footerAdditionalText: md(websiteData.additional_text ?? "")
-          }
-        }));
-      }
-      break;
-    case "Docs":
-      {
-        ({ head, body } = render(DocsIndex, {
-          props: {
-            favicon: websiteData.favicon_image
-              ? `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.favicon_image}`
-              : "",
-            title: websiteData.title,
-            logoType: websiteData.logo_type,
-            logo:
-              websiteData.logo_type === "text"
-                ? (websiteData.logo_text ?? "")
-                : `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.logo_image}`,
-            mainContent: md(websiteData.main_content ?? "", false),
-            categorizedArticles: websiteData.categorized_articles ?? [],
-            footerAdditionalText: md(websiteData.additional_text ?? "")
-          }
-        }));
-      }
-      break;
-  }
-
-  const indexFileContents = `
+const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview: boolean = true) => {
+  const fileContents = (head: string, body: string) => {
+    return `
 <!DOCTYPE html>
 <html lang="en">
   <head>
@@ -169,6 +97,15 @@ const generateStaticFiles = async (websiteData: WebsiteData, isPreview: boolean
     ${body}
   </body>
 </html>`;
+  };
+
+  const { head, body } = render(websiteData.content_type === "Blog" ? BlogIndex : DocsIndex, {
+    props: {
+      websiteOverview: websiteData,
+      apiUrl: API_BASE_PREFIX,
+      isLegalPage: false
+    }
+  });
 
   let uploadDir = "";
 
@@ -179,138 +116,38 @@ const generateStaticFiles = async (websiteData: WebsiteData, isPreview: boolean
   }
 
   await mkdir(uploadDir, { recursive: true });
-  await writeFile(join(uploadDir, "index.html"), indexFileContents);
+  await writeFile(join(uploadDir, "index.html"), fileContents(head, body));
   await mkdir(join(uploadDir, "articles"), {
     recursive: true
   });
 
-  for (const article of websiteData.articles ?? []) {
+  for (const article of websiteData.article ?? []) {
     const articleFileName = article.title.toLowerCase().split(" ").join("-");
 
-    let head = "";
-    let body = "";
+    const { head, body } = render(websiteData.content_type === "Blog" ? BlogArticle : DocsArticle, {
+      props: {
+        websiteOverview: websiteData,
+        article,
+        apiUrl: API_BASE_PREFIX
+      }
+    });
 
-    switch (websiteData.content_type) {
-      case "Blog":
-        {
-          ({ head, body } = render(BlogArticle, {
-            props: {
-              favicon: websiteData.favicon_image
-                ? `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.favicon_image}`
-                : "",
-              title: article.title,
-              logoType: websiteData.logo_type,
-              logo:
-                websiteData.logo_type === "text"
-                  ? (websiteData.logo_text ?? "")
-                  : `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.logo_image}`,
-              coverImage: article.cover_image
-                ? `${API_BASE_PREFIX}/rpc/retrieve_file?id=${article.cover_image}`
-                : "",
-              publicationDate: article.publication_date,
-              mainContent: md(article.main_content ?? ""),
-              footerAdditionalText: md(websiteData.additional_text ?? ""),
-              metaDescription: article.meta_description
-            }
-          }));
-        }
-        break;
-      case "Docs":
-        {
-          ({ head, body } = render(DocsArticle, {
-            props: {
-              favicon: websiteData.favicon_image
-                ? `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.favicon_image}`
-                : "",
-              title: article.title,
-              logoType: websiteData.logo_type,
-              logo:
-                websiteData.logo_type === "text"
-                  ? (websiteData.logo_text ?? "")
-                  : `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.logo_image}`,
-              mainContent: md(article.main_content ?? ""),
-              categorizedArticles: websiteData.categorized_articles ?? [],
-              footerAdditionalText: md(websiteData.additional_text ?? ""),
-              metaDescription: article.meta_description
-            }
-          }));
-        }
-        break;
-    }
-
-    const articleFileContents = `
-<!DOCTYPE html>
-<html lang="en">
-  <head>
-    ${head}
-  </head>
-  <body>
-    ${body}
-  </body>
-</html>`;
-
-    await writeFile(join(uploadDir, "articles", `${articleFileName}.html`), articleFileContents);
+    await writeFile(
+      join(uploadDir, "articles", `${articleFileName}.html`),
+      fileContents(head, body)
+    );
   }
 
-  if (websiteData.legal_information_main_content) {
-    let head = "";
-    let body = "";
+  if (websiteData.legal_information) {
+    const { head, body } = render(websiteData.content_type === "Blog" ? BlogIndex : DocsIndex, {
+      props: {
+        websiteOverview: websiteData,
+        apiUrl: API_BASE_PREFIX,
+        isLegalPage: true
+      }
+    });
 
-    switch (websiteData.content_type) {
-      case "Blog":
-        {
-          ({ head, body } = render(BlogIndex, {
-            props: {
-              favicon: websiteData.favicon_image
-                ? `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.favicon_image}`
-                : "",
-              title: "Legal information",
-              logoType: websiteData.logo_type,
-              logo:
-                websiteData.logo_type === "text"
-                  ? (websiteData.logo_text ?? "")
-                  : `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.logo_image}`,
-              mainContent: md(websiteData.legal_information_main_content ?? "", false),
-              articles: [],
-              footerAdditionalText: md(websiteData.additional_text ?? "")
-            }
-          }));
-        }
-        break;
-      case "Docs":
-        {
-          ({ head, body } = render(DocsIndex, {
-            props: {
-              favicon: websiteData.favicon_image
-                ? `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.favicon_image}`
-                : "",
-              title: "Legal information",
-              logoType: websiteData.logo_type,
-              logo:
-                websiteData.logo_type === "text"
-                  ? (websiteData.logo_text ?? "")
-                  : `${API_BASE_PREFIX}/rpc/retrieve_file?id=${websiteData.logo_image}`,
-              mainContent: md(websiteData.legal_information_main_content ?? "", false),
-              categorizedArticles: {},
-              footerAdditionalText: md(websiteData.additional_text ?? "")
-            }
-          }));
-        }
-        break;
-    }
-
-    const legalInformationFileContents = `
-<!DOCTYPE html>
-<html lang="en">
-  <head>
-    ${head}
-  </head>
-  <body>
-    ${body}
-  </body>
-</html>`;
-
-    await writeFile(join(uploadDir, "legal-information.html"), legalInformationFileContents);
+    await writeFile(join(uploadDir, "legal-information.html"), fileContents(head, body));
   }
 
   const commonStyles = await readFile(`${process.cwd()}/template-styles/common-styles.css`, {
@@ -328,14 +165,14 @@ const generateStaticFiles = async (websiteData: WebsiteData, isPreview: boolean
       .concat(specificStyles)
       .replace(
         /--color-accent:\s*(.*?);/,
-        `--color-accent: ${websiteData.accent_color_dark_theme};`
+        `--color-accent: ${websiteData.settings.accent_color_dark_theme};`
       )
       .replace(
         /@media\s*\(prefers-color-scheme:\s*dark\)\s*{[^}]*--color-accent:\s*(.*?);/,
         (match) =>
           match.replace(
             /--color-accent:\s*(.*?);/,
-            `--color-accent: ${websiteData.accent_color_light_theme};`
+            `--color-accent: ${websiteData.settings.accent_color_light_theme};`
           )
       )
   );
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
index 023c769..bd97a70 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
@@ -17,9 +17,9 @@
 {/if}
 
 <WebsiteEditor
-  id={data.website.id}
-  contentType={data.website.content_type}
-  title={data.website.title}
+  id={data.websiteOverview.id}
+  contentType={data.websiteOverview.content_type}
+  title={data.websiteOverview.title}
   previewContent={data.websitePreviewUrl}
   fullPreview={true}
 >
@@ -46,7 +46,7 @@
       <button type="submit">Publish</button>
     </form>
 
-    {#if data.website.is_published}
+    {#if data.websiteOverview.is_published}
       <section id="publication-status">
         <h3>
           <a href="#publication-status">Publication status</a>
diff --git a/web-app/template-styles/common-styles.css b/web-app/template-styles/common-styles.css
index 1088e5a..10f090f 100644
--- a/web-app/template-styles/common-styles.css
+++ b/web-app/template-styles/common-styles.css
@@ -25,11 +25,12 @@
 
   --color-text: black;
   --color-text-invert: white;
+  --color-border: hsl(0 0% 50%);
   --color-accent: hsl(210, 100%, 30%);
   --color-success: hsl(105, 100%, 30%);
   --color-error: hsl(0, 100%, 30%);
 
-  --border-primary: 0.0625rem solid var(--bg-tertiary);
+  --border-primary: 0.0625rem solid var(--color-border);
   --border-radius: 0.125rem;
 
   /* Step -1: 14.9953px → 14.2222px */
@@ -222,6 +223,10 @@ a {
   color: var(--color-accent);
 }
 
+a:has(img) {
+  display: inline-block;
+}
+
 :is(h1, h2, h3, h4, h5, h6) > a {
   color: var(--color-text);
   text-decoration: none;
@@ -242,6 +247,7 @@ svg,
 video {
   max-inline-size: 100%;
   block-size: auto;
+  vertical-align: middle;
 }
 
 p,

From c0288d2980337c3058304686a7ff0e2497c96190 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Tue, 10 Sep 2024 18:13:00 +0200
Subject: [PATCH 03/15] GRANT anon users image viewing functionality

---
 .../migrations/20240724191017_row_level_security.sql | 12 ------------
 .../20240808141708_collaborator_not_owner.sql        |  3 +--
 .../20240810115846_image_upload_function.sql         |  2 ++
 3 files changed, 3 insertions(+), 14 deletions(-)

diff --git a/rest-api/db/migrations/20240724191017_row_level_security.sql b/rest-api/db/migrations/20240724191017_row_level_security.sql
index 61c256c..eecd7db 100644
--- a/rest-api/db/migrations/20240724191017_row_level_security.sql
+++ b/rest-api/db/migrations/20240724191017_row_level_security.sql
@@ -81,14 +81,6 @@ CREATE POLICY delete_website ON internal.website
   FOR DELETE
     USING (internal.user_has_website_access (id, 40));
 
-CREATE POLICY view_media ON internal.media
-  FOR SELECT
-    USING (internal.user_has_website_access (website_id, 10));
-
-CREATE POLICY insert_media ON internal.media
-  FOR INSERT
-    WITH CHECK (internal.user_has_website_access (website_id, 20));
-
 CREATE POLICY view_settings ON internal.settings
   FOR SELECT
     USING (internal.user_has_website_access (website_id, 10));
@@ -194,10 +186,6 @@ DROP POLICY delete_website ON internal.website;
 
 DROP POLICY update_website ON internal.website;
 
-DROP POLICY view_media ON internal.media;
-
-DROP POLICY insert_media ON internal.media;
-
 DROP POLICY view_settings ON internal.settings;
 
 DROP POLICY update_settings ON internal.settings;
diff --git a/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql b/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql
index cc3a11f..8cbfbc2 100644
--- a/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql
+++ b/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql
@@ -17,8 +17,7 @@ END IF;
   RETURN NEW;
 END;
 $$
-LANGUAGE plpgsql
-SECURITY DEFINER;
+LANGUAGE plpgsql;
 
 CREATE CONSTRAINT TRIGGER check_user_not_website_owner
   AFTER INSERT ON internal.collab
diff --git a/rest-api/db/migrations/20240810115846_image_upload_function.sql b/rest-api/db/migrations/20240810115846_image_upload_function.sql
index af6d115..7a801bf 100644
--- a/rest-api/db/migrations/20240810115846_image_upload_function.sql
+++ b/rest-api/db/migrations/20240810115846_image_upload_function.sql
@@ -72,6 +72,8 @@ SECURITY DEFINER;
 
 GRANT EXECUTE ON FUNCTION api.upload_file (BYTEA) TO authenticated_user;
 
+GRANT EXECUTE ON FUNCTION api.retrieve_file (UUID) TO anon;
+
 GRANT EXECUTE ON FUNCTION api.retrieve_file (UUID) TO authenticated_user;
 
 -- migrate:down

From b7174530e81cbabb3b9d1831b17a94e668bb7bf6 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Wed, 11 Sep 2024 12:14:10 +0200
Subject: [PATCH 04/15] Create table for tracking changes across tables and
 operations

---
 .../migrations/20240719071602_main_tables.sql |  19 +--
 ...20240720132802_exposed_views_functions.sql |  13 --
 .../20240805132306_last_modified_triggers.sql |   7 +
 .../migrations/20240911070907_change_log.sql  | 126 ++++++++++++++++++
 web-app/src/lib/components/DateTime.svelte    |   4 +-
 5 files changed, 140 insertions(+), 29 deletions(-)
 create mode 100644 rest-api/db/migrations/20240911070907_change_log.sql

diff --git a/rest-api/db/migrations/20240719071602_main_tables.sql b/rest-api/db/migrations/20240719071602_main_tables.sql
index 3dc9e69..e1fce1a 100644
--- a/rest-api/db/migrations/20240719071602_main_tables.sql
+++ b/rest-api/db/migrations/20240719071602_main_tables.sql
@@ -82,6 +82,8 @@ CREATE TABLE internal.docs_category (
   user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
   category_name VARCHAR(50) NOT NULL CHECK (TRIM(category_name) != ''),
   category_weight INTEGER CHECK (category_weight >= 0) NOT NULL,
+  last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
+  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL,
   UNIQUE (website_id, category_name),
   UNIQUE (website_id, category_weight)
 );
@@ -94,14 +96,15 @@ CREATE TABLE internal.article (
   meta_description VARCHAR(250) CHECK (TRIM(meta_description) != ''),
   meta_author VARCHAR(100) CHECK (TRIM(meta_author) != ''),
   cover_image UUID REFERENCES internal.media (id) ON DELETE SET NULL,
-  publication_date DATE DEFAULT CURRENT_DATE,
+  publication_date DATE,
   main_content TEXT CHECK (TRIM(main_content) != ''),
   category UUID REFERENCES internal.docs_category (id) ON DELETE SET NULL,
   article_weight INTEGER CHECK (article_weight IS NULL OR article_weight >= 0),
   created_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL,
-  title_description_search TSVECTOR GENERATED ALWAYS AS (TO_TSVECTOR('english', COALESCE(title, '') || ' ' || COALESCE(meta_description, ''))) STORED
+  title_description_search TSVECTOR GENERATED ALWAYS AS (TO_TSVECTOR('english', COALESCE(title, '') || ' ' || COALESCE(meta_description, ''))) STORED,
+  UNIQUE (website_id, category, article_weight)
 );
 
 CREATE TABLE internal.footer (
@@ -128,19 +131,7 @@ CREATE TABLE internal.collab (
   PRIMARY KEY (website_id, user_id)
 );
 
-CREATE TABLE internal.change_log (
-  website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE,
-  user_id UUID REFERENCES internal.user (id) ON DELETE CASCADE DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
-  change_summary VARCHAR(255) NOT NULL,
-  previous_value JSONB,
-  new_value JSONB,
-  timestamp TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
-  PRIMARY KEY (website_id, user_id, TIMESTAMP)
-);
-
 -- migrate:down
-DROP TABLE internal.change_log;
-
 DROP TABLE internal.collab;
 
 DROP TABLE internal.legal_information;
diff --git a/rest-api/db/migrations/20240720132802_exposed_views_functions.sql b/rest-api/db/migrations/20240720132802_exposed_views_functions.sql
index 48aeffb..1611e91 100644
--- a/rest-api/db/migrations/20240720132802_exposed_views_functions.sql
+++ b/rest-api/db/migrations/20240720132802_exposed_views_functions.sql
@@ -82,13 +82,6 @@ SELECT
 FROM
   internal.collab;
 
-CREATE VIEW api.change_log WITH ( security_invoker = ON
-) AS
-SELECT
-  *
-FROM
-  internal.change_log;
-
 CREATE FUNCTION api.create_website (content_type VARCHAR(10), title VARCHAR(50), OUT website_id UUID)
 AS $$
 DECLARE
@@ -170,15 +163,9 @@ GRANT SELECT, INSERT, UPDATE, DELETE ON internal.collab TO authenticated_user;
 
 GRANT SELECT, INSERT, UPDATE, DELETE ON api.collab TO authenticated_user;
 
-GRANT SELECT ON internal.change_log TO authenticated_user;
-
-GRANT SELECT ON api.change_log TO authenticated_user;
-
 -- migrate:down
 DROP FUNCTION api.create_website (VARCHAR(10), VARCHAR(50));
 
-DROP VIEW api.change_log;
-
 DROP VIEW api.collab;
 
 DROP VIEW api.legal_information;
diff --git a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
index 9a9a07b..a33c109 100644
--- a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
+++ b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
@@ -44,6 +44,11 @@ CREATE TRIGGER update_article_last_modified
   FOR EACH ROW
   EXECUTE FUNCTION internal.update_last_modified ();
 
+CREATE TRIGGER update_docs_category_modified
+  BEFORE INSERT OR UPDATE OR DELETE ON internal.docs_category
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.update_last_modified ();
+
 CREATE TRIGGER update_footer_last_modified
   BEFORE UPDATE ON internal.footer
   FOR EACH ROW
@@ -70,6 +75,8 @@ DROP TRIGGER update_home_last_modified ON internal.home;
 
 DROP TRIGGER update_article_last_modified ON internal.article;
 
+DROP TRIGGER update_docs_category_modified ON internal.docs_category;
+
 DROP TRIGGER update_footer_last_modified ON internal.footer;
 
 DROP TRIGGER update_legal_information_last_modified ON internal.legal_information;
diff --git a/rest-api/db/migrations/20240911070907_change_log.sql b/rest-api/db/migrations/20240911070907_change_log.sql
new file mode 100644
index 0000000..d07a581
--- /dev/null
+++ b/rest-api/db/migrations/20240911070907_change_log.sql
@@ -0,0 +1,126 @@
+-- migrate:up
+CREATE EXTENSION hstore;
+
+CREATE TABLE internal.change_log (
+  id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
+  website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE,
+  user_id UUID REFERENCES internal.user (id) ON DELETE CASCADE DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
+  tstamp TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
+  table_name TEXT NOT NULL,
+  operation TEXT NOT NULL,
+  old_value HSTORE,
+  new_value HSTORE
+);
+
+CREATE FUNCTION internal.track_changes ()
+  RETURNS TRIGGER
+  AS $$
+DECLARE
+  _website_id UUID;
+BEGIN
+  IF TG_TABLE_NAME = 'website' THEN
+    _website_id := NEW.id;
+  ELSE
+    _website_id := NEW.website_id;
+  END IF;
+  IF TG_OP = 'INSERT' THEN
+    INSERT INTO internal.change_log (website_id, table_name, operation, new_value)
+      VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (NEW));
+    RETURN NEW;
+  ELSIF TG_OP = 'UPDATE' THEN
+    INSERT INTO internal.change_log (website_id, table_name, operation, old_value, new_value)
+      VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD) - HSTORE (NEW), HSTORE (NEW) - HSTORE (OLD));
+    RETURN NEW;
+  ELSIF TG_OP = 'DELETE' THEN
+    INSERT INTO internal.change_log (website_id, table_name, operation, old_value)
+      VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD));
+    RETURN NEW;
+  END IF;
+END;
+$$
+LANGUAGE plpgsql
+SECURITY DEFINER;
+
+CREATE TRIGGER website_track_changes
+  AFTER INSERT OR UPDATE OR DELETE ON internal.website
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.track_changes ();
+
+CREATE TRIGGER settings_track_changes
+  AFTER UPDATE ON internal.settings
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.track_changes ();
+
+CREATE TRIGGER header_track_changes
+  AFTER UPDATE ON internal.header
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.track_changes ();
+
+CREATE TRIGGER home_track_changes
+  AFTER UPDATE ON internal.home
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.track_changes ();
+
+CREATE TRIGGER article_track_changes
+  AFTER INSERT OR UPDATE OR DELETE ON internal.article
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.track_changes ();
+
+CREATE TRIGGER docs_category_track_changes
+  AFTER INSERT OR UPDATE OR DELETE ON internal.docs_category
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.track_changes ();
+
+CREATE TRIGGER footer_track_changes
+  AFTER UPDATE ON internal.footer
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.track_changes ();
+
+CREATE TRIGGER legal_information_track_changes
+  AFTER UPDATE ON internal.legal_information
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.track_changes ();
+
+CREATE TRIGGER collab_track_changes
+  AFTER INSERT OR UPDATE OR DELETE ON internal.collab
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.track_changes ();
+
+CREATE VIEW api.change_log WITH ( security_invoker = ON
+) AS
+SELECT
+  *
+FROM
+  internal.change_log;
+
+GRANT SELECT ON internal.change_log TO authenticated_user;
+
+GRANT SELECT ON api.change_log TO authenticated_user;
+
+-- migrate:down
+DROP TRIGGER website_track_changes ON internal.website;
+
+DROP TRIGGER settings_track_changes ON internal.settings;
+
+DROP TRIGGER header_track_changes ON internal.header;
+
+DROP TRIGGER home_track_changes ON internal.home;
+
+DROP TRIGGER article_track_changes ON internal.article;
+
+DROP TRIGGER docs_category_track_changes ON internal.docs_category;
+
+DROP TRIGGER footer_track_changes ON internal.footer;
+
+DROP TRIGGER legal_information_track_changes ON internal.legal_information;
+
+DROP TRIGGER collab_track_changes ON internal.collab;
+
+DROP FUNCTION internal.track_changes ();
+
+DROP VIEW api.change_log;
+
+DROP TABLE internal.change_log;
+
+DROP EXTENSION hstore;
+
diff --git a/web-app/src/lib/components/DateTime.svelte b/web-app/src/lib/components/DateTime.svelte
index 4bc6bae..b2ba649 100644
--- a/web-app/src/lib/components/DateTime.svelte
+++ b/web-app/src/lib/components/DateTime.svelte
@@ -11,6 +11,6 @@
   };
 </script>
 
-<time datetime={date.toLocaleString("sv").replace(" ", "T")}>
-  {date.toLocaleString("en-us", { ...options })}
+<time datetime={new Date(date).toLocaleString("sv").replace(" ", "T")}>
+  {new Date(date).toLocaleString("en-us", { ...options })}
 </time>

From 788cc74a76cfb684439184b2d89a4dbb24ecf933 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Thu, 12 Sep 2024 18:06:59 +0200
Subject: [PATCH 05/15] Fix triggers for last modified columns and changelog
 table

---
 flake.nix                                              |  1 +
 .../20240805132306_last_modified_triggers.sql          | 10 +++++-----
 rest-api/db/migrations/20240911070907_change_log.sql   |  6 +++---
 .../[websiteId]/articles/[articleId]/+page.svelte      |  2 +-
 4 files changed, 10 insertions(+), 9 deletions(-)

diff --git a/flake.nix b/flake.nix
index e1dcdd7..da7d60f 100644
--- a/flake.nix
+++ b/flake.nix
@@ -27,6 +27,7 @@
             shellHook = ''
               alias dbmate="${pkgs.dbmate}/bin/dbmate --no-dump-schema --url postgres://postgres@localhost:15432/archtika?sslmode=disable"
               alias formatsql="${pkgs.pgformatter}/bin/pg_format -s 2 -f 2 -U 2 -i db/migrations/*.sql"
+              alias dbconnect="${pkgs.postgresql_16}/bin/psql postgres://postgres@localhost:15432/archtika"
             '';
           };
           web = pkgs.mkShell {
diff --git a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
index a33c109..9edc6b3 100644
--- a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
+++ b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
@@ -9,10 +9,10 @@ BEGIN
     UPDATE
       internal.website
     SET
-      last_modified_at = NEW.last_modified_at,
-      last_modified_by = NEW.last_modified_by
+      last_modified_at = CLOCK_TIMESTAMP(),
+      last_modified_by = (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID
     WHERE
-      id = NEW.website_id;
+      id = COALESCE(NEW.website_id, OLD.website_id);
   END IF;
   RETURN NEW;
 END;
@@ -55,12 +55,12 @@ CREATE TRIGGER update_footer_last_modified
   EXECUTE FUNCTION internal.update_last_modified ();
 
 CREATE TRIGGER update_legal_information_last_modified
-  BEFORE INSERT OR UPDATE OR DELETE ON internal.legal_information
+  BEFORE INSERT OR DELETE ON internal.legal_information
   FOR EACH ROW
   EXECUTE FUNCTION internal.update_last_modified ();
 
 CREATE TRIGGER update_collab_last_modified
-  BEFORE UPDATE ON internal.collab
+  BEFORE INSERT OR UPDATE OR DELETE ON internal.collab
   FOR EACH ROW
   EXECUTE FUNCTION internal.update_last_modified ();
 
diff --git a/rest-api/db/migrations/20240911070907_change_log.sql b/rest-api/db/migrations/20240911070907_change_log.sql
index d07a581..60af085 100644
--- a/rest-api/db/migrations/20240911070907_change_log.sql
+++ b/rest-api/db/migrations/20240911070907_change_log.sql
@@ -21,7 +21,7 @@ BEGIN
   IF TG_TABLE_NAME = 'website' THEN
     _website_id := NEW.id;
   ELSE
-    _website_id := NEW.website_id;
+    _website_id := COALESCE(NEW.website_id, OLD.website_id);
   END IF;
   IF TG_OP = 'INSERT' THEN
     INSERT INTO internal.change_log (website_id, table_name, operation, new_value)
@@ -42,7 +42,7 @@ LANGUAGE plpgsql
 SECURITY DEFINER;
 
 CREATE TRIGGER website_track_changes
-  AFTER INSERT OR UPDATE OR DELETE ON internal.website
+  AFTER UPDATE ON internal.website
   FOR EACH ROW
   EXECUTE FUNCTION internal.track_changes ();
 
@@ -77,7 +77,7 @@ CREATE TRIGGER footer_track_changes
   EXECUTE FUNCTION internal.track_changes ();
 
 CREATE TRIGGER legal_information_track_changes
-  AFTER UPDATE ON internal.legal_information
+  AFTER INSERT OR UPDATE OR DELETE ON internal.legal_information
   FOR EACH ROW
   EXECUTE FUNCTION internal.track_changes ();
 
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.svelte
index b074458..6de3c3b 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.svelte
@@ -111,7 +111,7 @@
           <input
             type="date"
             name="publication-date"
-            value={data.article.publication_date}
+            value={data.article.publication_date ?? new Date().toISOString().split('T')[0]}
             required
           />
         </label>

From e661368b890da1db98679df7ceb96e7593801a72 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Thu, 12 Sep 2024 21:22:26 +0200
Subject: [PATCH 06/15] Fix bugs for triggers executing because of table ON
 keywords

---
 .../20240724191017_row_level_security.sql     |  2 +-
 .../migrations/20240911070907_change_log.sql  | 27 ++++++++---
 .../articles/[articleId]/+page.svelte         |  2 +-
 web-app/tests/collaborator.spec.ts            | 46 +++++++++----------
 4 files changed, 46 insertions(+), 31 deletions(-)

diff --git a/rest-api/db/migrations/20240724191017_row_level_security.sql b/rest-api/db/migrations/20240724191017_row_level_security.sql
index eecd7db..ae41e55 100644
--- a/rest-api/db/migrations/20240724191017_row_level_security.sql
+++ b/rest-api/db/migrations/20240724191017_row_level_security.sql
@@ -56,7 +56,7 @@ BEGIN
             AND user_has_website_access.collaborator_permission_level < 30))) INTO has_access;
   IF NOT has_access AND user_has_website_access.raise_error THEN
     RAISE insufficient_privilege
-    USING message = 'You do not have the required permissions for this action.';
+    USING message = 'Insufficient permissions';
   END IF;
 END;
 $$
diff --git a/rest-api/db/migrations/20240911070907_change_log.sql b/rest-api/db/migrations/20240911070907_change_log.sql
index 60af085..933e2ac 100644
--- a/rest-api/db/migrations/20240911070907_change_log.sql
+++ b/rest-api/db/migrations/20240911070907_change_log.sql
@@ -27,15 +27,30 @@ BEGIN
     INSERT INTO internal.change_log (website_id, table_name, operation, new_value)
       VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (NEW));
     RETURN NEW;
-  ELSIF TG_OP = 'UPDATE' THEN
-    INSERT INTO internal.change_log (website_id, table_name, operation, old_value, new_value)
-      VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD) - HSTORE (NEW), HSTORE (NEW) - HSTORE (OLD));
+  ELSIF TG_OP = 'UPDATE'
+      AND EXISTS (
+        SELECT
+          id
+        FROM
+          internal.website
+        WHERE
+          id = _website_id) THEN
+      INSERT INTO internal.change_log (website_id, table_name, operation, old_value, new_value)
+        VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD) - HSTORE (NEW), HSTORE (NEW) - HSTORE (OLD));
     RETURN NEW;
-  ELSIF TG_OP = 'DELETE' THEN
-    INSERT INTO internal.change_log (website_id, table_name, operation, old_value)
-      VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD));
+  ELSIF TG_OP = 'DELETE'
+      AND EXISTS (
+        SELECT
+          id
+        FROM
+          internal.website
+        WHERE
+          id = _website_id) THEN
+      INSERT INTO internal.change_log (website_id, table_name, operation, old_value)
+        VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD));
     RETURN NEW;
   END IF;
+  RETURN NEW;
 END;
 $$
 LANGUAGE plpgsql
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.svelte
index 6de3c3b..83d6147 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/[articleId]/+page.svelte
@@ -111,7 +111,7 @@
           <input
             type="date"
             name="publication-date"
-            value={data.article.publication_date ?? new Date().toISOString().split('T')[0]}
+            value={data.article.publication_date ?? new Date().toISOString().split("T")[0]}
             required
           />
         </label>
diff --git a/web-app/tests/collaborator.spec.ts b/web-app/tests/collaborator.spec.ts
index 828a978..ba40863 100644
--- a/web-app/tests/collaborator.spec.ts
+++ b/web-app/tests/collaborator.spec.ts
@@ -147,7 +147,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Submit" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully updated website")).toBeVisible();
         }
@@ -155,14 +155,14 @@ test.describe.serial("Collaborator tests", () => {
       test("Delete website", async ({ page }) => {
         await page.locator("li").filter({ hasText: "Blog" }).getByRole("button").nth(1).click();
         await page.getByRole("button", { name: "Delete website" }).click();
-        await expect(page.getByText("You do not have the required")).toBeVisible();
+        await expect(page.getByText("Insufficient permissions")).toBeVisible();
       });
       test("Update Global", async ({ page }) => {
         await page.getByRole("link", { name: "Blog" }).click();
         await page.locator("#global").getByRole("button", { name: "Submit" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully updated global")).toBeVisible();
         }
@@ -172,7 +172,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.locator("#header").getByRole("button", { name: "Submit" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully updated header")).toBeVisible();
         }
@@ -182,7 +182,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.locator("#home").getByRole("button", { name: "Submit" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully updated home")).toBeVisible();
         }
@@ -192,7 +192,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.locator("#footer").getByRole("button", { name: "Submit" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully updated footer")).toBeVisible();
         }
@@ -206,7 +206,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Submit" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully created article")).toBeVisible();
         }
@@ -228,7 +228,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Submit" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully updated article")).toBeVisible();
         }
@@ -244,7 +244,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Delete article" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         }
         if ([20, 30].includes(permissionLevel)) {
           await expect(page.getByText("Successfully deleted article")).toBeVisible();
@@ -253,7 +253,7 @@ test.describe.serial("Collaborator tests", () => {
           await page.getByRole("button", { name: "Delete article" }).click();
 
           if (permissionLevel === 20) {
-            await expect(page.getByText("You do not have the required")).toBeVisible();
+            await expect(page.getByText("Insufficient permissions")).toBeVisible();
           } else {
             await expect(page.getByText("Successfully deleted article")).toBeVisible();
           }
@@ -268,7 +268,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Submit" }).click();
 
         if ([10, 20].includes(permissionLevel)) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully added")).toBeVisible();
         }
@@ -286,7 +286,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Update collaborator" }).click();
 
         if ([10, 20].includes(permissionLevel)) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully updated")).toBeVisible();
 
@@ -298,7 +298,7 @@ test.describe.serial("Collaborator tests", () => {
             .click();
           await page.getByRole("combobox").selectOption("30");
           await page.getByRole("button", { name: "Update collaborator" }).click();
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         }
       });
       test("Remove collaborator", async ({ page }) => {
@@ -313,7 +313,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Remove collaborator" }).click();
 
         if ([10, 20].includes(permissionLevel)) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully removed")).toBeVisible();
 
@@ -324,7 +324,7 @@ test.describe.serial("Collaborator tests", () => {
             .nth(1)
             .click();
           await page.getByRole("button", { name: "Remove collaborator" }).click();
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         }
       });
       test("Create/Update legal information", async ({ page }) => {
@@ -337,7 +337,7 @@ test.describe.serial("Collaborator tests", () => {
         if (permissionLevel === 30) {
           await expect(page.getByText("Successfully created legal")).toBeVisible();
         } else {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         }
 
         await page.getByPlaceholder("## Impressum\n\n## Privacy policy").click();
@@ -347,7 +347,7 @@ test.describe.serial("Collaborator tests", () => {
         if (permissionLevel === 30) {
           await expect(page.getByText("Successfully updated legal")).toBeVisible();
         } else {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         }
       });
       test("Delete legal information", async ({ page }) => {
@@ -363,7 +363,7 @@ test.describe.serial("Collaborator tests", () => {
         if (permissionLevel === 30) {
           await expect(page.getByText("Successfully deleted legal")).toBeVisible();
         } else {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         }
       });
       test("Create category", async ({ page }) => {
@@ -377,7 +377,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Submit" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully created category")).toBeVisible();
         }
@@ -398,7 +398,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Update category" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully updated category")).toBeVisible();
         }
@@ -415,7 +415,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Delete category" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         }
         if ([20, 30].includes(permissionLevel)) {
           await expect(page.getByText("Successfully deleted category")).toBeVisible();
@@ -429,7 +429,7 @@ test.describe.serial("Collaborator tests", () => {
           await page.getByRole("button", { name: "Delete category" }).click();
 
           if (permissionLevel === 20) {
-            await expect(page.getByText("You do not have the required")).toBeVisible();
+            await expect(page.getByText("Insufficient permissions")).toBeVisible();
           } else {
             await expect(page.getByText("Successfully deleted category")).toBeVisible();
           }
@@ -441,7 +441,7 @@ test.describe.serial("Collaborator tests", () => {
         await page.getByRole("button", { name: "Publish" }).click();
 
         if (permissionLevel === 10) {
-          await expect(page.getByText("You do not have the required")).toBeVisible();
+          await expect(page.getByText("Insufficient permissions")).toBeVisible();
         } else {
           await expect(page.getByText("Successfully published website")).toBeVisible();
         }

From 2b97a2848824bbf861a96022305b0079784ba042 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Fri, 13 Sep 2024 17:04:04 +0200
Subject: [PATCH 07/15] Create logs route

---
 web-app/package-lock.json                     |   7 +
 web-app/package.json                          |   1 +
 web-app/src/lib/components/Modal.svelte       |  11 +-
 .../src/lib/components/WebsiteEditor.svelte   |   5 +-
 web-app/src/lib/db-schema.ts                  |  86 ++++++----
 .../website/[websiteId]/+layout.server.ts     |  21 ++-
 .../website/[websiteId]/logs/+page.server.ts  |  72 ++++++++
 .../website/[websiteId]/logs/+page.svelte     | 156 ++++++++++++++++++
 web-app/template-styles/common-styles.css     |  10 ++
 9 files changed, 326 insertions(+), 43 deletions(-)
 create mode 100644 web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts
 create mode 100644 web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte

diff --git a/web-app/package-lock.json b/web-app/package-lock.json
index 5553359..810a9fe 100644
--- a/web-app/package-lock.json
+++ b/web-app/package-lock.json
@@ -8,6 +8,7 @@
       "name": "web-app",
       "version": "0.0.1",
       "dependencies": {
+        "fast-diff": "1.3.0",
         "github-slugger": "2.0.0",
         "highlight.js": "11.10.0",
         "isomorphic-dompurify": "2.14.0",
@@ -2549,6 +2550,12 @@
       "dev": true,
       "license": "MIT"
     },
+    "node_modules/fast-diff": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/fast-diff/-/fast-diff-1.3.0.tgz",
+      "integrity": "sha512-VxPP4NqbUjj6MaAOafWeUn2cXWLcCtljklUtZf0Ind4XQ+QPtmA0b18zZy0jIQx+ExRVCR/ZQpBmik5lXshNsw==",
+      "license": "Apache-2.0"
+    },
     "node_modules/fast-glob": {
       "version": "3.3.2",
       "resolved": "https://registry.npmjs.org/fast-glob/-/fast-glob-3.3.2.tgz",
diff --git a/web-app/package.json b/web-app/package.json
index 10947da..2a62160 100644
--- a/web-app/package.json
+++ b/web-app/package.json
@@ -38,6 +38,7 @@
   },
   "type": "module",
   "dependencies": {
+    "fast-diff": "1.3.0",
     "github-slugger": "2.0.0",
     "highlight.js": "11.10.0",
     "isomorphic-dompurify": "2.14.0",
diff --git a/web-app/src/lib/components/Modal.svelte b/web-app/src/lib/components/Modal.svelte
index 5a75b74..0f446c4 100644
--- a/web-app/src/lib/components/Modal.svelte
+++ b/web-app/src/lib/components/Modal.svelte
@@ -1,14 +1,19 @@
 <script lang="ts">
   import type { Snippet } from "svelte";
 
-  const { children, id, text }: { children: Snippet; id: string; text: string } = $props();
+  const {
+    children,
+    id,
+    text,
+    isWider = false
+  }: { children: Snippet; id: string; text: string; isWider?: boolean } = $props();
 
   const modalId = `${id}-modal`;
 </script>
 
 <a href={`#${modalId}`} role="button">{text}</a>
 
-<div id={modalId} class="modal">
+<div id={modalId} class="modal" style="--modal-width: {isWider ? 600 : 300}px">
   <div class="modal__content">
     {@render children()}
     <a href="#!" role="button">Close</a>
@@ -46,7 +51,7 @@
     background-color: var(--bg-primary);
     border-radius: var(--border-radius);
     border: var(--border-primary);
-    inline-size: 300px;
+    inline-size: var(--modal-width);
     max-inline-size: 100%;
     max-block-size: calc(100vh - var(--space-m));
     overflow-y: auto;
diff --git a/web-app/src/lib/components/WebsiteEditor.svelte b/web-app/src/lib/components/WebsiteEditor.svelte
index 6280bd6..0038b73 100644
--- a/web-app/src/lib/components/WebsiteEditor.svelte
+++ b/web-app/src/lib/components/WebsiteEditor.svelte
@@ -55,6 +55,9 @@
       <li>
         <a href="/website/{id}/publish">Publish</a>
       </li>
+      <li>
+        <a href="/website/{id}/logs">Logs</a>
+      </li>
     </ul>
   </nav>
 
@@ -120,13 +123,13 @@
     }
 
     .operations {
-      border-inline-end: var(--border-primary);
       padding-block-start: var(--space-s);
     }
 
     .preview {
       display: flex;
       padding-block-start: var(--space-s);
+      border-inline-start: var(--border-primary);
     }
   }
 </style>
diff --git a/web-app/src/lib/db-schema.ts b/web-app/src/lib/db-schema.ts
index 219493e..5292996 100644
--- a/web-app/src/lib/db-schema.ts
+++ b/web-app/src/lib/db-schema.ts
@@ -22,12 +22,12 @@ export interface Article {
   cover_image: string | null;
   publication_date: Date | null;
   main_content: string | null;
+  category: string | null;
+  article_weight: number | null;
   created_at: Date;
   last_modified_at: Date;
   last_modified_by: string | null;
   title_description_search: any | null;
-  category: string | null;
-  article_weight: number | null;
 }
 export interface ArticleInput {
   id?: string;
@@ -39,12 +39,12 @@ export interface ArticleInput {
   cover_image?: string | null;
   publication_date?: Date | null;
   main_content?: string | null;
+  category?: string | null;
+  article_weight?: number | null;
   created_at?: Date;
   last_modified_at?: Date;
   last_modified_by?: string | null;
   title_description_search?: any | null;
-  category?: string | null;
-  article_weight?: number | null;
 }
 const article = {
   tableName: "article",
@@ -58,12 +58,12 @@ const article = {
     "cover_image",
     "publication_date",
     "main_content",
+    "category",
+    "article_weight",
     "created_at",
     "last_modified_at",
     "last_modified_by",
-    "title_description_search",
-    "category",
-    "article_weight"
+    "title_description_search"
   ],
   requiredForInsert: ["website_id", "title"],
   primaryKey: "id",
@@ -71,8 +71,8 @@ const article = {
     website_id: { table: "website", column: "id", $type: null as unknown as Website },
     user_id: { table: "user", column: "id", $type: null as unknown as User },
     cover_image: { table: "media", column: "id", $type: null as unknown as Media },
-    last_modified_by: { table: "user", column: "id", $type: null as unknown as User },
-    category: { table: "docs_category", column: "id", $type: null as unknown as DocsCategory }
+    category: { table: "docs_category", column: "id", $type: null as unknown as DocsCategory },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
   },
   $type: null as unknown as Article,
   $input: null as unknown as ArticleInput
@@ -80,26 +80,39 @@ const article = {
 
 // Table change_log
 export interface ChangeLog {
-  website_id: string;
-  user_id: string;
-  change_summary: string;
-  previous_value: Json | null;
-  new_value: Json | null;
-  timestamp: Date;
+  id: string;
+  website_id: string | null;
+  user_id: string | null;
+  tstamp: Date;
+  table_name: string;
+  operation: string;
+  old_value: any | null;
+  new_value: any | null;
 }
 export interface ChangeLogInput {
-  website_id: string;
-  user_id?: string;
-  change_summary: string;
-  previous_value?: Json | null;
-  new_value?: Json | null;
-  timestamp?: Date;
+  id?: string;
+  website_id?: string | null;
+  user_id?: string | null;
+  tstamp?: Date;
+  table_name: string;
+  operation: string;
+  old_value?: any | null;
+  new_value?: any | null;
 }
 const change_log = {
   tableName: "change_log",
-  columns: ["website_id", "user_id", "change_summary", "previous_value", "new_value", "timestamp"],
-  requiredForInsert: ["website_id", "change_summary"],
-  primaryKey: "website_id",
+  columns: [
+    "id",
+    "website_id",
+    "user_id",
+    "tstamp",
+    "table_name",
+    "operation",
+    "old_value",
+    "new_value"
+  ],
+  requiredForInsert: ["table_name", "operation"],
+  primaryKey: "id",
   foreignKeys: {
     website_id: { table: "website", column: "id", $type: null as unknown as Website },
     user_id: { table: "user", column: "id", $type: null as unknown as User }
@@ -153,6 +166,8 @@ export interface DocsCategory {
   user_id: string | null;
   category_name: string;
   category_weight: number;
+  last_modified_at: Date;
+  last_modified_by: string | null;
 }
 export interface DocsCategoryInput {
   id?: string;
@@ -160,15 +175,26 @@ export interface DocsCategoryInput {
   user_id?: string | null;
   category_name: string;
   category_weight: number;
+  last_modified_at?: Date;
+  last_modified_by?: string | null;
 }
 const docs_category = {
   tableName: "docs_category",
-  columns: ["id", "website_id", "user_id", "category_name", "category_weight"],
+  columns: [
+    "id",
+    "website_id",
+    "user_id",
+    "category_name",
+    "category_weight",
+    "last_modified_at",
+    "last_modified_by"
+  ],
   requiredForInsert: ["website_id", "category_name", "category_weight"],
   primaryKey: "id",
   foreignKeys: {
     website_id: { table: "website", column: "id", $type: null as unknown as Website },
-    user_id: { table: "user", column: "id", $type: null as unknown as User }
+    user_id: { table: "user", column: "id", $type: null as unknown as User },
+    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
   },
   $type: null as unknown as DocsCategory,
   $input: null as unknown as DocsCategoryInput
@@ -390,10 +416,10 @@ export interface Website {
   content_type: string;
   title: string;
   created_at: Date;
+  is_published: boolean;
   last_modified_at: Date;
   last_modified_by: string | null;
   title_search: any | null;
-  is_published: boolean;
 }
 export interface WebsiteInput {
   id?: string;
@@ -401,10 +427,10 @@ export interface WebsiteInput {
   content_type: string;
   title: string;
   created_at?: Date;
+  is_published?: boolean;
   last_modified_at?: Date;
   last_modified_by?: string | null;
   title_search?: any | null;
-  is_published?: boolean;
 }
 const website = {
   tableName: "website",
@@ -414,10 +440,10 @@ const website = {
     "content_type",
     "title",
     "created_at",
+    "is_published",
     "last_modified_at",
     "last_modified_by",
-    "title_search",
-    "is_published"
+    "title_search"
   ],
   requiredForInsert: ["content_type", "title"],
   primaryKey: "id",
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/+layout.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/+layout.server.ts
index 4e3cff9..560b904 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/+layout.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/+layout.server.ts
@@ -1,17 +1,20 @@
 import type { LayoutServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
 import { error } from "@sveltejs/kit";
-import type { Website, Home } from "$lib/db-schema";
+import type { Website, Home, User } from "$lib/db-schema";
 
 export const load: LayoutServerLoad = async ({ params, fetch, cookies }) => {
-  const websiteData = await fetch(`${API_BASE_PREFIX}/website?id=eq.${params.websiteId}`, {
-    method: "GET",
-    headers: {
-      "Content-Type": "application/json",
-      Authorization: `Bearer ${cookies.get("session_token")}`,
-      Accept: "application/vnd.pgrst.object+json"
+  const websiteData = await fetch(
+    `${API_BASE_PREFIX}/website?id=eq.${params.websiteId}&select=*,user!user_id(username)`,
+    {
+      method: "GET",
+      headers: {
+        "Content-Type": "application/json",
+        Authorization: `Bearer ${cookies.get("session_token")}`,
+        Accept: "application/vnd.pgrst.object+json"
+      }
     }
-  });
+  );
 
   if (!websiteData.ok) {
     throw error(404, "Website not found");
@@ -26,7 +29,7 @@ export const load: LayoutServerLoad = async ({ params, fetch, cookies }) => {
     }
   });
 
-  const website: Website = await websiteData.json();
+  const website: Website & { user: { username: User["username"] } } = await websiteData.json();
   const home: Home = await homeData.json();
 
   return {
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts
new file mode 100644
index 0000000..ab397b0
--- /dev/null
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts
@@ -0,0 +1,72 @@
+import type { PageServerLoad } from "./$types";
+import { API_BASE_PREFIX } from "$lib/server/utils";
+import type { ChangeLog, User, Collab } from "$lib/db-schema";
+
+export const load: PageServerLoad = async ({ parent, fetch, params, cookies, url }) => {
+  const userFilter = url.searchParams.get("logs_filter_user");
+  const resourceFilter = url.searchParams.get("logs_filter_resource");
+  const operationFilter = url.searchParams.get("logs_filter_operation");
+
+  const searchParams = new URLSearchParams();
+
+  const baseFetchUrl = `${API_BASE_PREFIX}/change_log?website_id=eq.${params.websiteId}&select=id,table_name,operation,tstamp,old_value,new_value,user!inner(username)&order=tstamp.desc`;
+
+  if (userFilter && userFilter !== "all") {
+    searchParams.append("user.username", `eq.${userFilter}`);
+  }
+
+  if (resourceFilter && resourceFilter !== "all") {
+    searchParams.append("table_name", `eq.${resourceFilter}`);
+  }
+
+  if (operationFilter && operationFilter !== "all") {
+    searchParams.append("operation", `eq.${operationFilter.toUpperCase()}`);
+  }
+
+  const constructedFetchUrl = `${baseFetchUrl}&${searchParams.toString()}`;
+
+  const changeLogData = await fetch(constructedFetchUrl, {
+    method: "GET",
+    headers: {
+      "Content-Type": "application/json",
+      Authorization: `Bearer ${cookies.get("session_token")}`
+    }
+  });
+
+  const resultChangeLogData = await fetch(constructedFetchUrl, {
+    method: "HEAD",
+    headers: {
+      "Content-Type": "application/json",
+      Authorization: `Bearer ${cookies.get("session_token")}`,
+      Prefer: "count=exact"
+    }
+  });
+
+  const resultChangeLogCount = Number(
+    resultChangeLogData.headers.get("content-range")?.split("/").at(-1)
+  );
+
+  const collabData = await fetch(
+    `${API_BASE_PREFIX}/collab?website_id=eq.${params.websiteId}&select=*,user!user_id(*)&order=last_modified_at.desc,added_at.desc`,
+    {
+      method: "GET",
+      headers: {
+        "Content-Type": "application/json",
+        Authorization: `Bearer ${cookies.get("session_token")}`
+      }
+    }
+  );
+
+  const changeLog: (ChangeLog & { user: { username: User["username"] } })[] =
+    await changeLogData.json();
+  const collaborators: (Collab & { user: User })[] = await collabData.json();
+  const { website, home } = await parent();
+
+  return {
+    changeLog,
+    resultChangeLogCount,
+    website,
+    home,
+    collaborators
+  };
+};
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
new file mode 100644
index 0000000..1fa4ca3
--- /dev/null
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
@@ -0,0 +1,156 @@
+<script lang="ts">
+  import WebsiteEditor from "$lib/components/WebsiteEditor.svelte";
+  import DateTime from "$lib/components/DateTime.svelte";
+  import Modal from "$lib/components/Modal.svelte";
+  import type { PageServerData } from "./$types";
+  import diff from "fast-diff";
+  import { page } from "$app/stores";
+  import { tables } from "$lib/db-schema";
+
+  const { data }: { data: PageServerData } = $props();
+
+  const htmlDiff = (oldValue: string, newValue: string) => {
+    return diff(oldValue, newValue)
+      .map(([type, value]) => {
+        let newString = "";
+
+        switch (type) {
+          case 1:
+            newString += `<ins>${value}</ins>`;
+            break;
+          case 0:
+            newString += `${value}`;
+            break;
+          case -1:
+            newString += `<del>${value}</del>`;
+            break;
+        }
+
+        return newString;
+      })
+      .join("");
+  };
+
+  let resources = $state({});
+
+  if (data.website.content_type === "Blog") {
+    const { user, change_log, media, docs_category, ...restTables } = tables;
+    resources = restTables;
+  }
+
+  if (data.website.content_type === "Docs") {
+    const { user, change_log, media, ...restTables } = tables;
+    resources = restTables;
+  }
+</script>
+
+<WebsiteEditor
+  id={data.website.id}
+  contentType={data.website.content_type}
+  title={data.website.title}
+  previewContent={data.home.main_content}
+>
+  <section id="logs">
+    <hgroup>
+      <h2>
+        <a href="#logs">Logs</a>
+      </h2>
+      <p>
+        <strong>{data.resultChangeLogCount}</strong>
+        <small>results</small>
+      </p>
+    </hgroup>
+    <details>
+      <summary>Filter</summary>
+      <form method="GET">
+        <label>
+          Username:
+          <input
+            list="users-{data.website.id}"
+            name="logs_filter_user"
+            value={$page.url.searchParams.get("logs_filter_user")}
+          />
+          <datalist id="users-{data.website.id}">
+            <option value={data.website.user.username}></option>
+            {#each data.collaborators as { user: { username } }}
+              <option value={username}></option>
+            {/each}
+          </datalist>
+        </label>
+        <label>
+          Resource:
+          <select name="logs_filter_resource">
+            <option value="all">Show all</option>
+            {#each Object.keys(resources) as resource}
+              <option
+                value={resource}
+                selected={resource === $page.url.searchParams.get("logs_filter_resource")}
+                >{resource}</option
+              >
+            {/each}
+          </select>
+        </label>
+        <label>
+          Operation:
+          <select name="logs_filter_operation">
+            <option value="all">Show all</option>
+            <option
+              value="insert"
+              selected={"insert" === $page.url.searchParams.get("logs_filter_operation")}
+              >Insert</option
+            >
+            <option
+              value="update"
+              selected={"update" === $page.url.searchParams.get("logs_filter_operation")}
+              >Update</option
+            >
+            <option
+              value="delete"
+              selected={"delete" === $page.url.searchParams.get("logs_filter_operation")}
+              >Delete</option
+            >
+          </select>
+        </label>
+        <button type="submit">Submit</button>
+      </form>
+    </details>
+    <div class="scroll-container">
+      <table>
+        <thead>
+          <tr>
+            <th>User</th>
+            <th>Resource</th>
+            <th>Operation</th>
+            <th>Date and time</th>
+            <th>Changes</th>
+          </tr>
+        </thead>
+        <tbody>
+          {#each data.changeLog as { id, table_name, operation, tstamp, old_value, new_value, user }}
+            <tr>
+              <td>{user.username}</td>
+              <td>{table_name}</td>
+              <td>{operation}</td>
+              <td>
+                <DateTime date={tstamp} />
+              </td>
+              <td>
+                <Modal id="log-{id}" text="Show" isWider={true}>
+                  {@const oldValue = JSON.stringify(old_value, null, 2)}
+                  {@const newValue = JSON.stringify(new_value, null, 2)}
+
+                  <hgroup>
+                    <h3>Log changes</h3>
+                    <p>{table_name} &mdash; {operation}</p>
+                  </hgroup>
+
+                  <pre style="white-space: pre-wrap">{@html htmlDiff(oldValue, newValue)}</pre>
+                </Modal>
+              </td>
+            </tr>
+          {/each}
+        </tbody>
+      </table>
+    </div>
+  </section>
+</WebsiteEditor>
diff --git a/web-app/template-styles/common-styles.css b/web-app/template-styles/common-styles.css
index 10f090f..d79b454 100644
--- a/web-app/template-styles/common-styles.css
+++ b/web-app/template-styles/common-styles.css
@@ -331,3 +331,13 @@ td {
   padding: var(--space-2xs);
   border: var(--border-primary);
 }
+
+ins {
+  background-color: var(--color-success);
+  color: var(--color-text-invert);
+}
+
+del {
+  background-color: var(--color-error);
+  color: var(--color-text-invert);
+}

From 96ef184c2a45d313c56f83e25cc2c5e1f9071d0f Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Fri, 13 Sep 2024 17:53:21 +0200
Subject: [PATCH 08/15] Exclude last modified columns from changelog triggering

---
 rest-api/db/migrations/20240911070907_change_log.sql | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/rest-api/db/migrations/20240911070907_change_log.sql b/rest-api/db/migrations/20240911070907_change_log.sql
index 933e2ac..d4fe544 100644
--- a/rest-api/db/migrations/20240911070907_change_log.sql
+++ b/rest-api/db/migrations/20240911070907_change_log.sql
@@ -19,6 +19,9 @@ DECLARE
   _website_id UUID;
 BEGIN
   IF TG_TABLE_NAME = 'website' THEN
+    IF (to_jsonb (OLD.*) - 'last_modified_at') = (to_jsonb (NEW.*) - 'last_modified_at') OR (to_jsonb (OLD.*) - 'last_modified_by') = (to_jsonb (NEW.*) - 'last_modified_by') THEN
+      RETURN NEW;
+    END IF;
     _website_id := NEW.id;
   ELSE
     _website_id := COALESCE(NEW.website_id, OLD.website_id);

From 08aca588d0eed7d900fa299493c57dee36e83fcb Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Fri, 13 Sep 2024 18:00:50 +0200
Subject: [PATCH 09/15] Ignore last_modified columns for all tables in change
 log trigger

---
 rest-api/db/migrations/20240911070907_change_log.sql | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/rest-api/db/migrations/20240911070907_change_log.sql b/rest-api/db/migrations/20240911070907_change_log.sql
index d4fe544..30e90ea 100644
--- a/rest-api/db/migrations/20240911070907_change_log.sql
+++ b/rest-api/db/migrations/20240911070907_change_log.sql
@@ -18,10 +18,10 @@ CREATE FUNCTION internal.track_changes ()
 DECLARE
   _website_id UUID;
 BEGIN
+  IF (to_jsonb (OLD.*) - 'last_modified_at') = (to_jsonb (NEW.*) - 'last_modified_at') OR (to_jsonb (OLD.*) - 'last_modified_by') = (to_jsonb (NEW.*) - 'last_modified_by') THEN
+    RETURN NEW;
+  END IF;
   IF TG_TABLE_NAME = 'website' THEN
-    IF (to_jsonb (OLD.*) - 'last_modified_at') = (to_jsonb (NEW.*) - 'last_modified_at') OR (to_jsonb (OLD.*) - 'last_modified_by') = (to_jsonb (NEW.*) - 'last_modified_by') THEN
-      RETURN NEW;
-    END IF;
     _website_id := NEW.id;
   ELSE
     _website_id := COALESCE(NEW.website_id, OLD.website_id);

From db8b284d6f49d96fe65f707c4f1320d71bf899e4 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Fri, 13 Sep 2024 18:45:23 +0200
Subject: [PATCH 10/15] Run playwright tests on pull request as well

---
 .github/workflows/demo-server-deploy.yml             | 4 ++--
 .github/workflows/playwright.yml                     | 5 +++--
 rest-api/db/migrations/20240911070907_change_log.sql | 2 +-
 web-app/src/hooks.server.ts                          | 3 ++-
 web-app/src/lib/templates/blog/BlogArticle.svelte    | 4 +++-
 web-app/src/lib/templates/blog/BlogIndex.svelte      | 4 +++-
 6 files changed, 14 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/demo-server-deploy.yml b/.github/workflows/demo-server-deploy.yml
index 08d9fda..1d79a3d 100644
--- a/.github/workflows/demo-server-deploy.yml
+++ b/.github/workflows/demo-server-deploy.yml
@@ -2,8 +2,8 @@ name: Deploy app to demo server (demo.archtika.com)
 
 on:
   workflow_run:
-    workflows: ['Playwright tests']
-    types: [completed]
+    workflows: [ 'Playwright tests' ]
+    types: [ completed ]
 env:
   SERVER_USER: root
   SERVER_IP: 128.140.75.240
diff --git a/.github/workflows/playwright.yml b/.github/workflows/playwright.yml
index 42f7764..a110f8e 100644
--- a/.github/workflows/playwright.yml
+++ b/.github/workflows/playwright.yml
@@ -2,8 +2,9 @@ name: Playwright tests
 
 on:
   push:
-    branches:
-      - main
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
 
 jobs:
   test:
diff --git a/rest-api/db/migrations/20240911070907_change_log.sql b/rest-api/db/migrations/20240911070907_change_log.sql
index 30e90ea..27dcb23 100644
--- a/rest-api/db/migrations/20240911070907_change_log.sql
+++ b/rest-api/db/migrations/20240911070907_change_log.sql
@@ -18,7 +18,7 @@ CREATE FUNCTION internal.track_changes ()
 DECLARE
   _website_id UUID;
 BEGIN
-  IF (to_jsonb (OLD.*) - 'last_modified_at') = (to_jsonb (NEW.*) - 'last_modified_at') OR (to_jsonb (OLD.*) - 'last_modified_by') = (to_jsonb (NEW.*) - 'last_modified_by') THEN
+  IF (to_jsonb (OLD.*) - 'last_modified_at') = (to_jsonb (NEW.*) - 'last_modified_at') THEN
     RETURN NEW;
   END IF;
   IF TG_TABLE_NAME = 'website' THEN
diff --git a/web-app/src/hooks.server.ts b/web-app/src/hooks.server.ts
index b30a999..51a677c 100644
--- a/web-app/src/hooks.server.ts
+++ b/web-app/src/hooks.server.ts
@@ -1,5 +1,6 @@
 import { redirect } from "@sveltejs/kit";
 import { API_BASE_PREFIX } from "$lib/server/utils";
+import type { User } from "$lib/db-schema";
 
 export const handle = async ({ event, resolve }) => {
   if (!event.url.pathname.startsWith("/api/")) {
@@ -21,7 +22,7 @@ export const handle = async ({ event, resolve }) => {
         throw redirect(303, "/");
       }
 
-      const user = await userData.json();
+      const user: User = await userData.json();
 
       event.locals.user = user;
     }
diff --git a/web-app/src/lib/templates/blog/BlogArticle.svelte b/web-app/src/lib/templates/blog/BlogArticle.svelte
index bd44bac..4a119f5 100644
--- a/web-app/src/lib/templates/blog/BlogArticle.svelte
+++ b/web-app/src/lib/templates/blog/BlogArticle.svelte
@@ -25,7 +25,9 @@
 <header>
   <div class="container">
     <hgroup>
-      <p>{article.publication_date}</p>
+      {#if article.publication_date}
+        <p>{article.publication_date}</p>
+      {/if}
       <h1>{article.title}</h1>
     </hgroup>
     {#if article.cover_image}
diff --git a/web-app/src/lib/templates/blog/BlogIndex.svelte b/web-app/src/lib/templates/blog/BlogIndex.svelte
index 424aa6f..a0033b2 100644
--- a/web-app/src/lib/templates/blog/BlogIndex.svelte
+++ b/web-app/src/lib/templates/blog/BlogIndex.svelte
@@ -44,7 +44,9 @@
           {#each websiteOverview.article as article}
             {@const articleFileName = article.title.toLowerCase().split(" ").join("-")}
             <li>
-              <p>{article.publication_date}</p>
+              {#if article.publication_date}
+                <p>{article.publication_date}</p>
+              {/if}
               <p>
                 <strong>
                   <a href="./articles/{articleFileName}">{article.title}</a>

From 79d1c9f5c7e216bea386dbe16a68b9bba9299a51 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Fri, 13 Sep 2024 19:30:56 +0200
Subject: [PATCH 11/15] Use a more robust slugify function

---
 web-app/package-lock.json                     |  7 ---
 web-app/package.json                          |  1 -
 .../src/lib/templates/blog/BlogIndex.svelte   |  5 +-
 web-app/src/lib/templates/common/Nav.svelte   |  5 +-
 web-app/src/lib/utils.ts                      | 54 +++++++------------
 .../[websiteId]/publish/+page.server.ts       |  6 +--
 6 files changed, 25 insertions(+), 53 deletions(-)

diff --git a/web-app/package-lock.json b/web-app/package-lock.json
index 810a9fe..97b6ede 100644
--- a/web-app/package-lock.json
+++ b/web-app/package-lock.json
@@ -9,7 +9,6 @@
       "version": "0.0.1",
       "dependencies": {
         "fast-diff": "1.3.0",
-        "github-slugger": "2.0.0",
         "highlight.js": "11.10.0",
         "isomorphic-dompurify": "2.14.0",
         "marked": "14.0.0",
@@ -2734,12 +2733,6 @@
         "node": "6.* || 8.* || >= 10.*"
       }
     },
-    "node_modules/github-slugger": {
-      "version": "2.0.0",
-      "resolved": "https://registry.npmjs.org/github-slugger/-/github-slugger-2.0.0.tgz",
-      "integrity": "sha512-IaOQ9puYtjrkq7Y0Ygl9KDZnrf/aiUJYUpVf89y8kyaxbRG7Y1SrX/jaumrv81vc61+kiMempujsM3Yw7w5qcw==",
-      "license": "ISC"
-    },
     "node_modules/glob": {
       "version": "10.4.5",
       "resolved": "https://registry.npmjs.org/glob/-/glob-10.4.5.tgz",
diff --git a/web-app/package.json b/web-app/package.json
index 2a62160..44c0c95 100644
--- a/web-app/package.json
+++ b/web-app/package.json
@@ -39,7 +39,6 @@
   "type": "module",
   "dependencies": {
     "fast-diff": "1.3.0",
-    "github-slugger": "2.0.0",
     "highlight.js": "11.10.0",
     "isomorphic-dompurify": "2.14.0",
     "marked": "14.0.0",
diff --git a/web-app/src/lib/templates/blog/BlogIndex.svelte b/web-app/src/lib/templates/blog/BlogIndex.svelte
index a0033b2..604cb8e 100644
--- a/web-app/src/lib/templates/blog/BlogIndex.svelte
+++ b/web-app/src/lib/templates/blog/BlogIndex.svelte
@@ -2,7 +2,7 @@
   import Head from "../common/Head.svelte";
   import Nav from "../common/Nav.svelte";
   import Footer from "../common/Footer.svelte";
-  import { md, type WebsiteOverview } from "../../utils";
+  import { md, slugify, type WebsiteOverview } from "$lib/utils";
 
   const {
     websiteOverview,
@@ -42,14 +42,13 @@
 
         <ul class="unpadded">
           {#each websiteOverview.article as article}
-            {@const articleFileName = article.title.toLowerCase().split(" ").join("-")}
             <li>
               {#if article.publication_date}
                 <p>{article.publication_date}</p>
               {/if}
               <p>
                 <strong>
-                  <a href="./articles/{articleFileName}">{article.title}</a>
+                  <a href="./articles/{slugify(article.title)}">{article.title}</a>
                 </strong>
               </p>
               {#if article.meta_description}
diff --git a/web-app/src/lib/templates/common/Nav.svelte b/web-app/src/lib/templates/common/Nav.svelte
index 8c5c2e1..5d66a8e 100644
--- a/web-app/src/lib/templates/common/Nav.svelte
+++ b/web-app/src/lib/templates/common/Nav.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-  import type { WebsiteOverview } from "../../utils";
+  import { type WebsiteOverview, slugify } from "../../utils";
   import type { Article } from "../../db-schema";
 
   const {
@@ -60,9 +60,8 @@
               <strong>{key}</strong>
               <ul>
                 {#each categorizedArticles[key] as { title }}
-                  {@const articleFileName = title.toLowerCase().split(" ").join("-")}
                   <li>
-                    <a href="{isIndexPage ? './articles' : '.'}/{articleFileName}">{title}</a>
+                    <a href="{isIndexPage ? './articles' : '.'}/{slugify(title)}">{title}</a>
                   </li>
                 {/each}
               </ul>
diff --git a/web-app/src/lib/utils.ts b/web-app/src/lib/utils.ts
index 68b9314..45dc7fa 100644
--- a/web-app/src/lib/utils.ts
+++ b/web-app/src/lib/utils.ts
@@ -2,7 +2,6 @@ import { Marked } from "marked";
 import type { Renderer, Token } from "marked";
 import { markedHighlight } from "marked-highlight";
 import hljs from "highlight.js";
-import GithubSlugger from "github-slugger";
 import DOMPurify from "isomorphic-dompurify";
 import { applyAction, deserialize } from "$app/forms";
 import type {
@@ -18,6 +17,19 @@ import type {
 
 export const ALLOWED_MIME_TYPES = ["image/jpeg", "image/png", "image/svg+xml", "image/webp"];
 
+export const slugify = (string: string) => {
+  return string
+    .toString()
+    .normalize("NFKD") // Normalize Unicode characters
+    .toLowerCase() // Convert to lowercase
+    .trim() // Trim leading and trailing whitespace
+    .replace(/\s+/g, "-") // Replace spaces with hyphens
+    .replace(/[^\w\-]+/g, "") // Remove non-word characters (except hyphens)
+    .replace(/\-\-+/g, "-") // Replace multiple hyphens with single hyphen
+    .replace(/^-+/, "") // Remove leading hyphens
+    .replace(/-+$/, ""); // Remove trailing hyphens
+};
+
 const createMarkdownParser = (showToc = true) => {
   const marked = new Marked();
 
@@ -38,36 +50,17 @@ const createMarkdownParser = (showToc = true) => {
     })
   );
 
-  const unescapeTest = /&(#(?:\d+)|(?:#x[0-9A-Fa-f]+)|(?:\w+));?/gi;
-
-  const unescape = (html: string) => {
-    return html.replace(unescapeTest, (_, n) => {
-      n = n.toLowerCase();
-      if (n === "colon") return ":";
-      if (n.charAt(0) === "#") {
-        return n.charAt(1) === "x"
-          ? String.fromCharCode(parseInt(n.substring(2), 16))
-          : String.fromCharCode(+n.substring(1));
-      }
-      return "";
-    });
-  };
-
-  let slugger = new GithubSlugger();
-  let headings: { text: string; raw: string; level: number; id: string }[] = [];
-  let sectionStack: { level: number; id: string }[] = [];
-
   const gfmHeadingId = ({ prefix = "", showToc = true } = {}) => {
+    let headings: { text: string; level: number; id: string }[] = [];
+    let sectionStack: { level: number; id: string }[] = [];
+
     return {
       renderer: {
         heading(this: Renderer, { tokens, depth }: { tokens: Token[]; depth: number }) {
           const text = this.parser.parseInline(tokens);
-          const raw = unescape(this.parser.parseInline(tokens, this.parser.textRenderer))
-            .trim()
-            .replace(/<[!a-z].*?>/gi, "");
           const level = depth;
-          const id = `${prefix}${slugger.slug(raw.toLowerCase())}`;
-          const heading = { level, text, id, raw };
+          const id = `${prefix}${slugify(text)}`;
+          const heading = { level, text, id };
           headings.push(heading);
 
           let closingSections = "";
@@ -89,16 +82,7 @@ const createMarkdownParser = (showToc = true) => {
         }
       },
       hooks: {
-        preprocess(src: string) {
-          headings = [];
-          sectionStack = [];
-          slugger = new GithubSlugger();
-
-          return src;
-        },
         postprocess(html: string) {
-          const closingRemainingSection = "</section>".repeat(sectionStack.length);
-
           let tableOfContents = "";
           if (showToc && headings.length > 0) {
             const tocItems = [];
@@ -140,7 +124,7 @@ const createMarkdownParser = (showToc = true) => {
           return `
             ${tableOfContents}
             ${html}
-            ${closingRemainingSection}
+            ${"</section>".repeat(sectionStack.length)}
           `;
         }
       }
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
index 998d4cf..674e6e7 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
@@ -1,6 +1,6 @@
 import { readFile, mkdir, writeFile } from "node:fs/promises";
 import { join } from "node:path";
-import { type WebsiteOverview } from "$lib/utils";
+import { type WebsiteOverview, slugify } from "$lib/utils";
 import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
 import { render } from "svelte/server";
@@ -122,8 +122,6 @@ const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview: bool
   });
 
   for (const article of websiteData.article ?? []) {
-    const articleFileName = article.title.toLowerCase().split(" ").join("-");
-
     const { head, body } = render(websiteData.content_type === "Blog" ? BlogArticle : DocsArticle, {
       props: {
         websiteOverview: websiteData,
@@ -133,7 +131,7 @@ const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview: bool
     });
 
     await writeFile(
-      join(uploadDir, "articles", `${articleFileName}.html`),
+      join(uploadDir, "articles", `${slugify(article.title)}.html`),
       fileContents(head, body)
     );
   }

From 5f38500b9c40bf744a807771302a7bfad8a852ce Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sat, 14 Sep 2024 15:12:08 +0200
Subject: [PATCH 12/15] Show logs and usernames for deleted users and remove
 svg mimetype for client side

---
 .../migrations/20240719071602_main_tables.sql |  2 +-
 ...240720074103_user_management_roles_jwt.sql | 90 +++++++++----------
 .../20240805132306_last_modified_triggers.sql | 21 ++++-
 .../20240808141708_collaborator_not_owner.sql | 13 ++-
 .../20240810115846_image_upload_function.sql  | 28 +++---
 .../migrations/20240911070907_change_log.sql  | 35 ++++----
 web-app/src/lib/db-schema.ts                  |  7 +-
 web-app/src/lib/utils.ts                      |  2 +-
 .../[websiteId]/collaborators/+page.svelte    |  4 +-
 .../website/[websiteId]/logs/+page.server.ts  |  4 +-
 .../website/[websiteId]/logs/+page.svelte     |  8 +-
 11 files changed, 119 insertions(+), 95 deletions(-)

diff --git a/rest-api/db/migrations/20240719071602_main_tables.sql b/rest-api/db/migrations/20240719071602_main_tables.sql
index e1fce1a..0a1ca79 100644
--- a/rest-api/db/migrations/20240719071602_main_tables.sql
+++ b/rest-api/db/migrations/20240719071602_main_tables.sql
@@ -43,7 +43,7 @@ CREATE TABLE internal.website (
 CREATE TABLE internal.media (
   id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
   website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE NOT NULL,
-  user_id UUID REFERENCES internal.user (id) ON DELETE CASCADE NOT NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
+  user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
   blob BYTEA NOT NULL,
   mimetype TEXT NOT NULL,
   original_name TEXT NOT NULL,
diff --git a/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql b/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
index 19ce8ef..a3c4505 100644
--- a/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
+++ b/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
@@ -7,18 +7,17 @@ CREATE FUNCTION internal.check_role_exists ()
   RETURNS TRIGGER
   AS $$
 BEGIN
-  IF NOT EXISTS (
+  IF (NOT EXISTS (
     SELECT
       1
     FROM
       pg_roles AS r
     WHERE
-      r.rolname = NEW.role) THEN
-  RAISE foreign_key_violation
-  USING message = 'Unknown database role: ' || NEW.role;
-  RETURN NULL;
-END IF;
-  RETURN NEW;
+      r.rolname = NEW.role)) THEN
+    RAISE foreign_key_violation
+    USING message = 'Unknown database role: ' || NEW.role;
+  END IF;
+    RETURN NULL;
 END
 $$
 LANGUAGE plpgsql;
@@ -67,43 +66,42 @@ DECLARE
   _password_length_min CONSTANT INT := 12;
   _password_length_max CONSTANT INT := 128;
 BEGIN
-  CASE WHEN LENGTH(register.username)
-  NOT BETWEEN _username_length_min AND _username_length_max THEN
-  RAISE string_data_length_mismatch
-  USING message = FORMAT('Username must be between %s and %s characters long', _username_length_min, _username_length_max);
-  WHEN EXISTS (
-    SELECT
-      1
-    FROM
-      internal.user AS u
-    WHERE
-      u.username = register.username) THEN
+  IF (LENGTH(register.username)
+    NOT BETWEEN _username_length_min AND _username_length_max) THEN
+    RAISE string_data_length_mismatch
+    USING message = FORMAT('Username must be between %s and %s characters long', _username_length_min, _username_length_max);
+  ELSIF (EXISTS (
+        SELECT
+          1
+        FROM
+          internal.user AS u
+        WHERE
+          u.username = register.username)) THEN
     RAISE unique_violation
-      USING message = 'Username is already taken';
-      WHEN LENGTH(register.pass) NOT BETWEEN _password_length_min AND _password_length_max THEN
-        RAISE string_data_length_mismatch
-        USING message = FORMAT('Password must be between %s and %s characters long', _password_length_min, _password_length_max);
-        WHEN register.pass !~ '[a-z]' THEN
-        RAISE invalid_parameter_value
-        USING message = 'Password must contain at least one lowercase letter';
-        WHEN register.pass !~ '[A-Z]' THEN
-        RAISE invalid_parameter_value
-        USING message = 'Password must contain at least one uppercase letter';
-        WHEN register.pass !~ '[0-9]' THEN
-        RAISE invalid_parameter_value
-        USING message = 'Password must contain at least one number';
-        WHEN register.pass !~ '[!@#$%^&*(),.?":{}|<>]' THEN
-        RAISE invalid_parameter_value
-        USING message = 'Password must contain at least one special character';
-      ELSE
-          INSERT
-            INTO internal.user (username, password_hash)
-              VALUES (register.username, register.pass)
-            RETURNING
-              id INTO user_id;
-              END
-                CASE;
-        END;
+    USING message = 'Username is already taken';
+  ELSIF (LENGTH(register.pass)
+      NOT BETWEEN _password_length_min AND _password_length_max) THEN
+    RAISE string_data_length_mismatch
+    USING message = FORMAT('Password must be between %s and %s characters long', _password_length_min, _password_length_max);
+  ELSIF register.pass !~ '[a-z]' THEN
+    RAISE invalid_parameter_value
+    USING message = 'Password must contain at least one lowercase letter';
+  ELSIF register.pass !~ '[A-Z]' THEN
+    RAISE invalid_parameter_value
+    USING message = 'Password must contain at least one uppercase letter';
+  ELSIF register.pass !~ '[0-9]' THEN
+    RAISE invalid_parameter_value
+    USING message = 'Password must contain at least one number';
+  ELSIF register.pass !~ '[!@#$%^&*(),.?":{}|<>]' THEN
+    RAISE invalid_parameter_value
+    USING message = 'Password must contain at least one special character';
+  ELSE
+    INSERT INTO internal.user (username, password_hash)
+      VALUES (register.username, register.pass)
+    RETURNING
+      id INTO user_id;
+  END IF;
+END;
 $$
 LANGUAGE plpgsql
 SECURITY DEFINER;
@@ -120,7 +118,7 @@ BEGIN
   IF _role IS NULL THEN
     RAISE invalid_password
     USING message = 'Invalid username or password';
-  END IF;
+  ELSE
     SELECT
       id INTO _user_id
     FROM
@@ -130,6 +128,7 @@ BEGIN
     _exp := EXTRACT(EPOCH FROM CLOCK_TIMESTAMP())::INTEGER + 86400;
     SELECT
       SIGN(JSON_BUILD_OBJECT('role', _role, 'user_id', _user_id, 'username', login.username, 'exp', _exp), CURRENT_SETTING('app.jwt_secret')) INTO token;
+  END IF;
 END;
 $$
 LANGUAGE plpgsql
@@ -146,10 +145,11 @@ BEGIN
   IF _role IS NULL THEN
     RAISE invalid_password
     USING message = 'Invalid password';
-  END IF;
+  ELSE
     DELETE FROM internal.user AS u
     WHERE u.username = _username;
     was_deleted := TRUE;
+  END IF;
 END;
 $$
 LANGUAGE plpgsql
diff --git a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
index 9edc6b3..ea8794b 100644
--- a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
+++ b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
@@ -2,19 +2,32 @@
 CREATE FUNCTION internal.update_last_modified ()
   RETURNS TRIGGER
   AS $$
+DECLARE
+  _user_id UUID := (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID;
 BEGIN
-  NEW.last_modified_at = CLOCK_TIMESTAMP();
-  NEW.last_modified_by = (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID;
+  IF (NOT EXISTS (
+    SELECT
+      id
+    FROM
+      internal.user
+    WHERE
+      id = _user_id)) THEN
+    RETURN COALESCE(NEW, OLD);
+  END IF;
+  IF TG_OP != 'DELETE' THEN
+    NEW.last_modified_at = CLOCK_TIMESTAMP();
+    NEW.last_modified_by = _user_id;
+  END IF;
   IF TG_TABLE_NAME != 'website' THEN
     UPDATE
       internal.website
     SET
       last_modified_at = CLOCK_TIMESTAMP(),
-      last_modified_by = (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID
+      last_modified_by = _user_id
     WHERE
       id = COALESCE(NEW.website_id, OLD.website_id);
   END IF;
-  RETURN NEW;
+  RETURN COALESCE(NEW, OLD);
 END;
 $$
 LANGUAGE plpgsql;
diff --git a/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql b/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql
index 8cbfbc2..bf46316 100644
--- a/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql
+++ b/rest-api/db/migrations/20240808141708_collaborator_not_owner.sql
@@ -3,18 +3,17 @@ CREATE FUNCTION internal.check_user_not_website_owner ()
   RETURNS TRIGGER
   AS $$
 BEGIN
-  IF EXISTS (
+  IF (EXISTS (
     SELECT
       1
     FROM
       internal.website AS w
     WHERE
-      w.id = NEW.website_id
-      AND w.user_id = NEW.user_id) THEN
-  RAISE foreign_key_violation
-  USING message = 'User cannot be added as a collaborator to their own website';
-END IF;
-  RETURN NEW;
+      w.id = NEW.website_id AND w.user_id = NEW.user_id)) THEN
+    RAISE foreign_key_violation
+    USING message = 'User cannot be added as a collaborator to their own website';
+  END IF;
+    RETURN NULL;
 END;
 $$
 LANGUAGE plpgsql;
diff --git a/rest-api/db/migrations/20240810115846_image_upload_function.sql b/rest-api/db/migrations/20240810115846_image_upload_function.sql
index 7a801bf..e94d73a 100644
--- a/rest-api/db/migrations/20240810115846_image_upload_function.sql
+++ b/rest-api/db/migrations/20240810115846_image_upload_function.sql
@@ -16,21 +16,21 @@ BEGIN
   IF OCTET_LENGTH($1) = 0 THEN
     RAISE invalid_parameter_value
     USING message = 'No file data was provided';
+  ELSIF (_mimetype IS NULL
+      OR _mimetype NOT IN (
+        SELECT
+          UNNEST(_allowed_mimetypes))) THEN
+    RAISE invalid_parameter_value
+    USING message = 'Invalid MIME type. Allowed types are: png, jpg, webp';
+  ELSIF OCTET_LENGTH($1) > _max_file_size THEN
+    RAISE program_limit_exceeded
+    USING message = FORMAT('File size exceeds the maximum limit of %s MB', _max_file_size / (1024 * 1024));
+  ELSE
+    INSERT INTO internal.media (website_id, blob, mimetype, original_name)
+      VALUES (_website_id, $1, _mimetype, _original_filename)
+    RETURNING
+      id INTO file_id;
   END IF;
-    IF _mimetype IS NULL OR _mimetype NOT IN (
-      SELECT
-        UNNEST(_allowed_mimetypes)) THEN
-      RAISE invalid_parameter_value
-      USING message = 'Invalid MIME type. Allowed types are: png, jpg, webp';
-    END IF;
-      IF OCTET_LENGTH($1) > _max_file_size THEN
-        RAISE program_limit_exceeded
-        USING message = FORMAT('File size exceeds the maximum limit of %s MB', _max_file_size / (1024 * 1024));
-      END IF;
-        INSERT INTO internal.media (website_id, blob, mimetype, original_name)
-          VALUES (_website_id, $1, _mimetype, _original_filename)
-        RETURNING
-          id INTO file_id;
 END;
 $$
 LANGUAGE plpgsql
diff --git a/rest-api/db/migrations/20240911070907_change_log.sql b/rest-api/db/migrations/20240911070907_change_log.sql
index 27dcb23..be5574e 100644
--- a/rest-api/db/migrations/20240911070907_change_log.sql
+++ b/rest-api/db/migrations/20240911070907_change_log.sql
@@ -4,7 +4,8 @@ CREATE EXTENSION hstore;
 CREATE TABLE internal.change_log (
   id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
   website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE,
-  user_id UUID REFERENCES internal.user (id) ON DELETE CASCADE DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
+  user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
+  username VARCHAR(16) NOT NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'username'),
   tstamp TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   table_name TEXT NOT NULL,
   operation TEXT NOT NULL,
@@ -17,9 +18,16 @@ CREATE FUNCTION internal.track_changes ()
   AS $$
 DECLARE
   _website_id UUID;
+  _user_id UUID := (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID;
 BEGIN
-  IF (to_jsonb (OLD.*) - 'last_modified_at') = (to_jsonb (NEW.*) - 'last_modified_at') THEN
-    RETURN NEW;
+  IF (NOT EXISTS (
+    SELECT
+      id
+    FROM
+      internal.user
+    WHERE
+      id = _user_id) OR (to_jsonb (OLD.*) - 'last_modified_at' - 'last_modified_by') = (to_jsonb (NEW.*) - 'last_modified_at' - 'last_modified_by')) THEN
+    RETURN NULL;
   END IF;
   IF TG_TABLE_NAME = 'website' THEN
     _website_id := NEW.id;
@@ -29,31 +37,28 @@ BEGIN
   IF TG_OP = 'INSERT' THEN
     INSERT INTO internal.change_log (website_id, table_name, operation, new_value)
       VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (NEW));
-    RETURN NEW;
-  ELSIF TG_OP = 'UPDATE'
+  ELSIF (TG_OP = 'UPDATE'
       AND EXISTS (
         SELECT
           id
         FROM
           internal.website
         WHERE
-          id = _website_id) THEN
-      INSERT INTO internal.change_log (website_id, table_name, operation, old_value, new_value)
-        VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD) - HSTORE (NEW), HSTORE (NEW) - HSTORE (OLD));
-    RETURN NEW;
-  ELSIF TG_OP = 'DELETE'
+          id = _website_id)) THEN
+    INSERT INTO internal.change_log (website_id, table_name, operation, old_value, new_value)
+      VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD) - HSTORE (NEW), HSTORE (NEW) - HSTORE (OLD));
+  ELSIF (TG_OP = 'DELETE'
       AND EXISTS (
         SELECT
           id
         FROM
           internal.website
         WHERE
-          id = _website_id) THEN
-      INSERT INTO internal.change_log (website_id, table_name, operation, old_value)
-        VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD));
-    RETURN NEW;
+          id = _website_id)) THEN
+    INSERT INTO internal.change_log (website_id, table_name, operation, old_value)
+      VALUES (_website_id, TG_TABLE_NAME, TG_OP, HSTORE (OLD));
   END IF;
-  RETURN NEW;
+  RETURN NULL;
 END;
 $$
 LANGUAGE plpgsql
diff --git a/web-app/src/lib/db-schema.ts b/web-app/src/lib/db-schema.ts
index 5292996..1e45e9d 100644
--- a/web-app/src/lib/db-schema.ts
+++ b/web-app/src/lib/db-schema.ts
@@ -83,6 +83,7 @@ export interface ChangeLog {
   id: string;
   website_id: string | null;
   user_id: string | null;
+  username: string;
   tstamp: Date;
   table_name: string;
   operation: string;
@@ -93,6 +94,7 @@ export interface ChangeLogInput {
   id?: string;
   website_id?: string | null;
   user_id?: string | null;
+  username?: string;
   tstamp?: Date;
   table_name: string;
   operation: string;
@@ -105,6 +107,7 @@ const change_log = {
     "id",
     "website_id",
     "user_id",
+    "username",
     "tstamp",
     "table_name",
     "operation",
@@ -320,7 +323,7 @@ const legal_information = {
 export interface Media {
   id: string;
   website_id: string;
-  user_id: string;
+  user_id: string | null;
   blob: string;
   mimetype: string;
   original_name: string;
@@ -329,7 +332,7 @@ export interface Media {
 export interface MediaInput {
   id?: string;
   website_id: string;
-  user_id?: string;
+  user_id?: string | null;
   blob: string;
   mimetype: string;
   original_name: string;
diff --git a/web-app/src/lib/utils.ts b/web-app/src/lib/utils.ts
index 45dc7fa..9307bb9 100644
--- a/web-app/src/lib/utils.ts
+++ b/web-app/src/lib/utils.ts
@@ -15,7 +15,7 @@ import type {
   LegalInformation
 } from "$lib/db-schema";
 
-export const ALLOWED_MIME_TYPES = ["image/jpeg", "image/png", "image/svg+xml", "image/webp"];
+export const ALLOWED_MIME_TYPES = ["image/jpeg", "image/png", "image/webp"];
 
 export const slugify = (string: string) => {
   return string
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/collaborators/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/collaborators/+page.svelte
index 2269593..1edb9f4 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/collaborators/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/collaborators/+page.svelte
@@ -69,10 +69,10 @@
       </h2>
 
       <ul class="unpadded">
-        {#each data.collaborators as { website_id, user_id, permission_level, user: { username } } (`${website_id}-${user_id}`)}
+        {#each data.collaborators as { website_id, user_id, permission_level, user } (`${website_id}-${user_id}`)}
           <li class="collaborator-card">
             <p>
-              <strong>{username} ({permission_level})</strong>
+              <strong>{user?.username} ({permission_level})</strong>
             </p>
 
             <div class="collaborator-card__actions">
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts
index ab397b0..a89f5db 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts
@@ -9,10 +9,10 @@ export const load: PageServerLoad = async ({ parent, fetch, params, cookies, url
 
   const searchParams = new URLSearchParams();
 
-  const baseFetchUrl = `${API_BASE_PREFIX}/change_log?website_id=eq.${params.websiteId}&select=id,table_name,operation,tstamp,old_value,new_value,user!inner(username)&order=tstamp.desc`;
+  const baseFetchUrl = `${API_BASE_PREFIX}/change_log?website_id=eq.${params.websiteId}&select=id,table_name,operation,tstamp,old_value,new_value,user_id,username&order=tstamp.desc`;
 
   if (userFilter && userFilter !== "all") {
-    searchParams.append("user.username", `eq.${userFilter}`);
+    searchParams.append("username", `eq.${userFilter}`);
   }
 
   if (resourceFilter && resourceFilter !== "all") {
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
index 1fa4ca3..8cda235 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
@@ -126,9 +126,13 @@
           </tr>
         </thead>
         <tbody>
-          {#each data.changeLog as { id, table_name, operation, tstamp, old_value, new_value, user }}
+          {#each data.changeLog as { id, table_name, operation, tstamp, old_value, new_value, user_id, username }}
             <tr>
-              <td>{user.username}</td>
+              <td>
+                <span style:text-decoration={user_id ? "" : "line-through"}>
+                  {username}
+                </span>
+              </td>
               <td>{table_name}</td>
               <td>{operation}</td>
               <td>

From bab016c270abe670f17ef296a52491c30cf98576 Mon Sep 17 00:00:00 2001
From: Thilo Hohlt <thilo.hohlt@tutanota.com>
Date: Sat, 14 Sep 2024 18:41:04 +0200
Subject: [PATCH 13/15] Update default.nix

---
 nix/demo-server/default.nix | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/nix/demo-server/default.nix b/nix/demo-server/default.nix
index 86b7fe7..aed3d96 100644
--- a/nix/demo-server/default.nix
+++ b/nix/demo-server/default.nix
@@ -23,7 +23,7 @@
   nixpkgs.config.allowUnfree = true;
 
   networking = {
-    hostName = "archtika-demo-server";
+    hostName = "archtika-qs";
     networkmanager.enable = true;
     firewall = {
       allowedTCPPorts = [
@@ -62,6 +62,7 @@
     settings.PasswordAuthentication = false;
   };
 
+  /*
   services.archtika = {
     enable = true;
     package = localArchtikaPackage;
@@ -71,6 +72,7 @@
     dnsProvider = "porkbun";
     dnsEnvironmentFile = /var/lib/porkbun.env;
   };
+  */
 
   system.stateVersion = "24.11";
 }

From 36170074b3d2675565fa0c6b6c31acd65ac82e2e Mon Sep 17 00:00:00 2001
From: Thilo Hohlt <thilo.hohlt@tutanota.com>
Date: Sat, 14 Sep 2024 18:44:02 +0200
Subject: [PATCH 14/15] Update hardware-configuration.nix

---
 nix/demo-server/hardware-configuration.nix | 43 +++++++++-------------
 1 file changed, 17 insertions(+), 26 deletions(-)

diff --git a/nix/demo-server/hardware-configuration.nix b/nix/demo-server/hardware-configuration.nix
index b53eac3..1e06801 100644
--- a/nix/demo-server/hardware-configuration.nix
+++ b/nix/demo-server/hardware-configuration.nix
@@ -1,41 +1,32 @@
 # Do not modify this file!  It was generated by ‘nixos-generate-config’
 # and may be overwritten by future invocations.  Please make changes
 # to /etc/nixos/configuration.nix instead.
-{
-  config,
-  lib,
-  pkgs,
-  modulesPath,
-  ...
-}:
+{ config, lib, pkgs, modulesPath, ... }:
 
 {
-  imports = [ (modulesPath + "/profiles/qemu-guest.nix") ];
+  imports =
+    [ (modulesPath + "/profiles/qemu-guest.nix")
+    ];
 
-  boot.initrd.availableKernelModules = [
-    "xhci_pci"
-    "virtio_scsi"
-    "sr_mod"
-  ];
+  boot.initrd.availableKernelModules = [ "xhci_pci" "virtio_scsi" "sr_mod" ];
   boot.initrd.kernelModules = [ ];
   boot.kernelModules = [ ];
   boot.extraModulePackages = [ ];
 
-  fileSystems."/" = {
-    device = "/dev/disk/by-uuid/af7c3a41-3427-4354-8bf5-bd98698792c5";
-    fsType = "ext4";
-  };
+  fileSystems."/" =
+    { device = "/dev/disk/by-uuid/04fa460b-c39f-47f8-bece-c044d767209c";
+      fsType = "ext4";
+    };
 
-  fileSystems."/boot" = {
-    device = "/dev/disk/by-uuid/BA3C-CCAF";
-    fsType = "vfat";
-    options = [
-      "fmask=0077"
-      "dmask=0077"
+  fileSystems."/boot" =
+    { device = "/dev/disk/by-uuid/BA11-3E3D";
+      fsType = "vfat";
+      options = [ "fmask=0077" "dmask=0077" ];
+    };
+
+  swapDevices =
+    [ { device = "/dev/disk/by-uuid/abace260-6904-4b38-8532-0235f77cb2bf"; }
     ];
-  };
-
-  swapDevices = [ { device = "/dev/disk/by-uuid/a58e9054-0b76-4da5-ae13-0d73515ec41e"; } ];
 
   # Enables DHCP on each ethernet and wireless interface. In case of scripted networking
   # (the default) this is the recommended approach. When using systemd-networkd it's

From 38ad33a53d01268245cd004a4fe5b36b2bc05150 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sat, 14 Sep 2024 19:51:29 +0200
Subject: [PATCH 15/15] Update secrets for qs archtika server

---
 nix/demo-server/default.nix | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/nix/demo-server/default.nix b/nix/demo-server/default.nix
index aed3d96..db2b97b 100644
--- a/nix/demo-server/default.nix
+++ b/nix/demo-server/default.nix
@@ -62,17 +62,15 @@
     settings.PasswordAuthentication = false;
   };
 
-  /*
   services.archtika = {
     enable = true;
     package = localArchtikaPackage;
-    jwtSecret = "a42kVyAhTImYxZeebZkApoAZLmf0VtDA";
-    domain = "demo.archtika.com";
+    jwtSecret = /var/lib/archtika-jwt-secret.txt;
+    domain = "qs.archtika.com";
     acmeEmail = "thilo.hohlt@tutanota.com";
     dnsProvider = "porkbun";
     dnsEnvironmentFile = /var/lib/porkbun.env;
   };
-  */
 
   system.stateVersion = "24.11";
 }