From 9c293d100b5836e770ea2db0eaa9d8b373cf495f Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sat, 26 Oct 2024 23:39:02 +0200
Subject: [PATCH 01/11] Trigger actions


From cc3381d1ad1a8a2712424195aae32f7e959c1181 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sun, 27 Oct 2024 00:24:02 +0200
Subject: [PATCH 02/11] Trigger actions


From 2f9d49daa8fbb3e53a38d0aa706316a320565537 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sun, 27 Oct 2024 00:47:34 +0200
Subject: [PATCH 03/11] Trigger actions


From 99699e7b8ba65b615035e927ce042eb21252f9b9 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sun, 27 Oct 2024 01:35:10 +0200
Subject: [PATCH 04/11] Trigger actions


From c33d563bb79d1301172c4e58dc8fff69c81dda9e Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sun, 27 Oct 2024 01:50:42 +0200
Subject: [PATCH 05/11] Trigger actions


From 924c000f4be95a79ee849d22fcc99177c0b42447 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sun, 27 Oct 2024 02:01:18 +0200
Subject: [PATCH 06/11] Trigger actions


From f7180ebd92c5adba57cdf6c494e338beb840f9ae Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sun, 27 Oct 2024 02:11:10 +0200
Subject: [PATCH 07/11] Use single worker for more reliable tests

---
 web-app/playwright.config.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/web-app/playwright.config.ts b/web-app/playwright.config.ts
index 89f8750..1204801 100644
--- a/web-app/playwright.config.ts
+++ b/web-app/playwright.config.ts
@@ -11,6 +11,7 @@ const config: PlaywrightTestConfig = {
   },
   testDir: "./tests",
   testMatch: /(.+\.)?(test|spec)\.ts/,
+  workers: 1,
   retries: 3,
   // https://github.com/NixOS/nixpkgs/issues/288826
   projects: [

From 037165947b0e4dab316399312ee13f50feade39d Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Wed, 30 Oct 2024 21:33:44 +0100
Subject: [PATCH 08/11] Ability to bulk import or export articles as gzip,
 handle domain prefix logic in API and other smaller improvements

---
 nix/dev-vm.nix                                |   8 ++
 nix/module.nix                                |   8 ++
 .../migrations/20240719071602_main_tables.sql |  21 ++-
 .../20240810115846_image_upload_function.sql  |   2 +-
 .../20240920090915_custom_domain_prefix.sql   |  75 +++++++++--
 .../20241006165029_administrator.sql          |   4 +-
 .../20241011092744_filesystem_triggers.sql    |  23 +++-
 .../20241029160539_export_articles.sql        |  49 +++++++
 web-app/package.json                          |   2 +-
 web-app/src/lib/components/DateTime.svelte    |  34 +++--
 web-app/src/lib/components/Modal.svelte       |   8 ++
 web-app/src/lib/db-schema.ts                  |  83 ++++++------
 .../src/lib/templates/blog/BlogArticle.svelte |   1 +
 .../src/lib/templates/blog/BlogIndex.svelte   |   4 +-
 web-app/src/lib/templates/common/Head.svelte  |   6 +-
 web-app/src/lib/templates/common/Nav.svelte   |   8 +-
 .../src/lib/templates/docs/DocsArticle.svelte |   1 +
 web-app/src/lib/utils.ts                      |   2 +-
 .../routes/(authenticated)/+page.server.ts    |  17 +--
 .../src/routes/(authenticated)/+page.svelte   |   8 +-
 .../(authenticated)/account/+page.server.ts   |   2 +-
 .../(authenticated)/manage/+page.server.ts    |   4 +-
 .../[websiteId]/articles/+page.server.ts      |  21 +++
 .../website/[websiteId]/articles/+page.svelte |  60 +++++++--
 .../[websiteId]/categories/+page.svelte       |   9 +-
 .../legal-information/+page.server.ts         |   8 +-
 .../website/[websiteId]/logs/+page.svelte     |  19 ++-
 .../[websiteId]/publish/+page.server.ts       | 126 +++++-------------
 .../website/[websiteId]/publish/+page.svelte  |   2 +-
 web-app/template-styles/common-styles.css     |   6 +
 web-app/tests/articles.spec.ts                |   9 +-
 web-app/tests/manage.spec.ts                  |   2 +-
 32 files changed, 409 insertions(+), 223 deletions(-)
 create mode 100644 rest-api/db/migrations/20241029160539_export_articles.sql

diff --git a/nix/dev-vm.nix b/nix/dev-vm.nix
index 42aef6c..c54902c 100644
--- a/nix/dev-vm.nix
+++ b/nix/dev-vm.nix
@@ -99,6 +99,14 @@
     };
   };
 
+  systemd.services.postgresql = {
+    path = with pkgs; [
+      # Tar and gzip are needed for tar.gz exports
+      gnutar
+      gzip
+    ];
+  };
+
   services.getty.autologinUser = "dev";
 
   system.stateVersion = "24.05";
diff --git a/nix/module.nix b/nix/module.nix
index 84eeb8e..ffdf468 100644
--- a/nix/module.nix
+++ b/nix/module.nix
@@ -169,6 +169,14 @@ in
       extraPlugins = with pkgs.postgresql16Packages; [ pgjwt ];
     };
 
+    systemd.services.postgresql = {
+      path = with pkgs; [
+        # Tar and gzip are needed for tar.gz exports
+        gnutar
+        gzip
+      ];
+    };
+
     services.nginx = {
       enable = true;
       recommendedProxySettings = true;
diff --git a/rest-api/db/migrations/20240719071602_main_tables.sql b/rest-api/db/migrations/20240719071602_main_tables.sql
index fd0ef7c..aadffe2 100644
--- a/rest-api/db/migrations/20240719071602_main_tables.sql
+++ b/rest-api/db/migrations/20240719071602_main_tables.sql
@@ -1,4 +1,6 @@
 -- migrate:up
+CREATE EXTENSION unaccent;
+
 CREATE SCHEMA internal;
 
 CREATE SCHEMA api;
@@ -27,6 +29,17 @@ GRANT USAGE ON SCHEMA internal TO authenticated_user;
 
 ALTER DEFAULT PRIVILEGES REVOKE EXECUTE ON FUNCTIONS FROM PUBLIC;
 
+CREATE FUNCTION internal.immutable_unaccent (TEXT)
+  RETURNS TEXT
+  AS $$
+  SELECT
+    unaccent ($1);
+$$
+LANGUAGE sql
+IMMUTABLE;
+
+GRANT EXECUTE ON FUNCTION internal.immutable_unaccent TO authenticated_user;
+
 CREATE TABLE internal.user (
   id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
   username VARCHAR(16) UNIQUE NOT NULL CHECK (LENGTH(username) >= 3 AND username ~ '^[a-zA-Z0-9_-]+$'),
@@ -91,7 +104,7 @@ CREATE TABLE internal.docs_category (
   id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
   website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE NOT NULL,
   user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
-  category_name VARCHAR(50) NOT NULL CHECK (TRIM(category_name) != ''),
+  category_name VARCHAR(50) NOT NULL CHECK (TRIM(category_name) != '' AND category_name != 'Uncategorized'),
   category_weight INT CHECK (category_weight >= 0) NOT NULL,
   created_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
@@ -105,6 +118,7 @@ CREATE TABLE internal.article (
   website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE NOT NULL,
   user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
   title VARCHAR(100) NOT NULL CHECK (TRIM(title) != ''),
+  slug VARCHAR(100) GENERATED ALWAYS AS (REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(LOWER(TRIM(REGEXP_REPLACE(internal.immutable_unaccent (title), '\s+', '-', 'g'))), '[^\w-]', '', 'g'), '-+', '-', 'g'), '^-+', '', 'g'), '-+$', '', 'g')) STORED,
   meta_description VARCHAR(250) CHECK (TRIM(meta_description) != ''),
   meta_author VARCHAR(100) CHECK (TRIM(meta_author) != ''),
   cover_image UUID REFERENCES internal.media (id) ON DELETE SET NULL,
@@ -115,6 +129,7 @@ CREATE TABLE internal.article (
   created_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL,
+  UNIQUE (website_id, slug),
   UNIQUE (website_id, category, article_weight)
 );
 
@@ -168,6 +183,8 @@ DROP TABLE internal.user;
 
 DROP SCHEMA api;
 
+DROP FUNCTION internal.immutable_unaccent;
+
 DROP SCHEMA internal;
 
 DROP ROLE anon;
@@ -180,3 +197,5 @@ DROP ROLE authenticator;
 
 ALTER DEFAULT PRIVILEGES GRANT EXECUTE ON FUNCTIONS TO PUBLIC;
 
+DROP EXTENSION unaccent;
+
diff --git a/rest-api/db/migrations/20240810115846_image_upload_function.sql b/rest-api/db/migrations/20240810115846_image_upload_function.sql
index a3e9495..b6668b8 100644
--- a/rest-api/db/migrations/20240810115846_image_upload_function.sql
+++ b/rest-api/db/migrations/20240810115846_image_upload_function.sql
@@ -1,5 +1,5 @@
 -- migrate:up
-CREATE DOMAIN "*/*" AS bytea;
+CREATE DOMAIN "*/*" AS BYTEA;
 
 CREATE FUNCTION api.upload_file (BYTEA, OUT file_id UUID)
 AS $$
diff --git a/rest-api/db/migrations/20240920090915_custom_domain_prefix.sql b/rest-api/db/migrations/20240920090915_custom_domain_prefix.sql
index cfdd78f..b7a96d5 100644
--- a/rest-api/db/migrations/20240920090915_custom_domain_prefix.sql
+++ b/rest-api/db/migrations/20240920090915_custom_domain_prefix.sql
@@ -1,7 +1,7 @@
 -- migrate:up
 CREATE TABLE internal.domain_prefix (
   website_id UUID PRIMARY KEY REFERENCES internal.website (id) ON DELETE CASCADE,
-  prefix VARCHAR(16) UNIQUE NOT NULL CHECK (LENGTH(prefix) >= 3 AND prefix ~ '^[a-z]+(-[a-z]+)*$'),
+  prefix VARCHAR(16) UNIQUE NOT NULL CHECK (LENGTH(prefix) >= 3 AND prefix ~ '^[a-z]+(-[a-z]+)*$' AND prefix != 'previews'),
   created_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
@@ -14,9 +14,9 @@ SELECT
 FROM
   internal.domain_prefix;
 
-GRANT SELECT, INSERT (website_id, prefix), UPDATE (website_id, prefix), DELETE ON internal.domain_prefix TO authenticated_user;
+GRANT SELECT ON internal.domain_prefix TO authenticated_user;
 
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.domain_prefix TO authenticated_user;
+GRANT SELECT ON api.domain_prefix TO authenticated_user;
 
 ALTER TABLE internal.domain_prefix ENABLE ROW LEVEL SECURITY;
 
@@ -24,17 +24,64 @@ CREATE POLICY view_domain_prefix ON internal.domain_prefix
   FOR SELECT
     USING (internal.user_has_website_access (website_id, 10));
 
-CREATE POLICY update_domain_prefix ON internal.domain_prefix
-  FOR UPDATE
-    USING (internal.user_has_website_access (website_id, 30));
+CREATE FUNCTION api.set_domain_prefix (website_id UUID, prefix VARCHAR(16), OUT was_set BOOLEAN)
+AS $$
+DECLARE
+  _has_access BOOLEAN;
+  _old_domain_prefix VARCHAR(16);
+  _base_path CONSTANT TEXT := '/var/www/archtika-websites/';
+  _old_path TEXT;
+  _new_path TEXT;
+BEGIN
+  _has_access = internal.user_has_website_access (set_domain_prefix.website_id, 30);
+  SELECT
+    d.prefix INTO _old_domain_prefix
+  FROM
+    internal.domain_prefix AS d
+  WHERE
+    d.website_id = set_domain_prefix.website_id;
+  INSERT INTO internal.domain_prefix (website_id, prefix)
+    VALUES (set_domain_prefix.website_id, set_domain_prefix.prefix)
+  ON CONFLICT ON CONSTRAINT domain_prefix_pkey
+    DO UPDATE SET
+      prefix = EXCLUDED.prefix;
+  _old_path = _base_path || COALESCE(_old_domain_prefix, set_domain_prefix.website_id::TEXT);
+  _new_path = _base_path || set_domain_prefix.prefix;
+  IF _old_path != _new_path THEN
+    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''mv -T %s %s''', _old_path, _new_path);
+  END IF;
+  was_set := TRUE;
+END;
+$$
+LANGUAGE plpgsql
+SECURITY DEFINER;
 
-CREATE POLICY delete_domain_prefix ON internal.domain_prefix
-  FOR DELETE
-    USING (internal.user_has_website_access (website_id, 30));
+GRANT EXECUTE ON FUNCTION api.set_domain_prefix TO authenticated_user;
 
-CREATE POLICY insert_domain_prefix ON internal.domain_prefix
-  FOR INSERT
-    WITH CHECK (internal.user_has_website_access (website_id, 30));
+CREATE FUNCTION api.delete_domain_prefix (website_id UUID, OUT was_deleted BOOLEAN)
+AS $$
+DECLARE
+  _has_access BOOLEAN;
+  _old_domain_prefix VARCHAR(16);
+  _base_path CONSTANT TEXT := '/var/www/archtika-websites/';
+  _old_path TEXT;
+  _new_path TEXT;
+BEGIN
+  _has_access = internal.user_has_website_access (delete_domain_prefix.website_id, 30);
+  DELETE FROM internal.domain_prefix AS d
+  WHERE d.website_id = delete_domain_prefix.website_id
+  RETURNING
+    prefix INTO _old_domain_prefix;
+  _old_path = _base_path || _old_domain_prefix;
+  _new_path = _base_path || delete_domain_prefix.website_id;
+  EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''mv -T %s %s''', _old_path, _new_path);
+  was_deleted := TRUE;
+END;
+$$
+LANGUAGE plpgsql
+SECURITY DEFINER;
+
+GRANT EXECUTE ON FUNCTION api.delete_domain_prefix TO authenticated_user;
 
 CREATE TRIGGER update_domain_prefix_last_modified
   BEFORE INSERT OR UPDATE OR DELETE ON internal.domain_prefix
@@ -51,6 +98,10 @@ DROP TRIGGER track_changes_domain_prefix ON internal.domain_prefix;
 
 DROP TRIGGER update_domain_prefix_last_modified ON internal.domain_prefix;
 
+DROP FUNCTION api.set_domain_prefix;
+
+DROP FUNCTION api.delete_domain_prefix;
+
 DROP VIEW api.domain_prefix;
 
 DROP TABLE internal.domain_prefix;
diff --git a/rest-api/db/migrations/20241006165029_administrator.sql b/rest-api/db/migrations/20241006165029_administrator.sql
index 4e28b0b..3d151f7 100644
--- a/rest-api/db/migrations/20241006165029_administrator.sql
+++ b/rest-api/db/migrations/20241006165029_administrator.sql
@@ -42,9 +42,7 @@ BEGIN
       w.user_id = $1
     GROUP BY
       w.id,
-      w.title
-    ORDER BY
-      storage_size_bytes DESC', _union_queries);
+      w.title', _union_queries);
   RETURN QUERY EXECUTE _query
   USING _user_id;
 END;
diff --git a/rest-api/db/migrations/20241011092744_filesystem_triggers.sql b/rest-api/db/migrations/20241011092744_filesystem_triggers.sql
index 7c396f5..52fe174 100644
--- a/rest-api/db/migrations/20241011092744_filesystem_triggers.sql
+++ b/rest-api/db/migrations/20241011092744_filesystem_triggers.sql
@@ -8,6 +8,7 @@ DECLARE
   _base_path CONSTANT TEXT := '/var/www/archtika-websites/';
   _preview_path TEXT;
   _prod_path TEXT;
+  _article_slug TEXT;
 BEGIN
   IF TG_TABLE_NAME = 'website' THEN
     _website_id := OLD.id;
@@ -17,7 +18,7 @@ BEGIN
   SELECT
     d.prefix INTO _domain_prefix
   FROM
-    internal.domain_prefix d
+    internal.domain_prefix AS d
   WHERE
     d.website_id = _website_id;
   _preview_path := _base_path || 'previews/' || _website_id;
@@ -25,11 +26,20 @@ BEGIN
   IF TG_TABLE_NAME = 'website' THEN
     EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -rf %s''', _preview_path);
     EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -rf %s''', _prod_path);
-  ELSE
+  ELSIF TG_TABLE_NAME = 'article' THEN
+    SELECT
+      a.slug INTO _article_slug
+    FROM
+      internal.article AS a
+    WHERE
+      a.id = OLD.id;
+    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -f %s/articles/%s.html''', _preview_path, _article_slug);
+    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -f %s/articles/%s.html''', _prod_path, _article_slug);
+  ELSIF TG_TABLE_NAME = 'legal_information' THEN
     EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -f %s/legal-information.html''', _preview_path);
     EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -f %s/legal-information.html''', _prod_path);
   END IF;
-  RETURN OLD;
+  RETURN COALESCE(NEW, OLD);
 END;
 $$
 LANGUAGE plpgsql
@@ -40,6 +50,11 @@ CREATE TRIGGER _cleanup_filesystem_website
   FOR EACH ROW
   EXECUTE FUNCTION internal.cleanup_filesystem ();
 
+CREATE TRIGGER _cleanup_filesystem_article
+  BEFORE UPDATE OR DELETE ON internal.article
+  FOR EACH ROW
+  EXECUTE FUNCTION internal.cleanup_filesystem ();
+
 CREATE TRIGGER _cleanup_filesystem_legal_information
   BEFORE DELETE ON internal.legal_information
   FOR EACH ROW
@@ -48,6 +63,8 @@ CREATE TRIGGER _cleanup_filesystem_legal_information
 -- migrate:down
 DROP TRIGGER _cleanup_filesystem_website ON internal.website;
 
+DROP TRIGGER _cleanup_filesystem_article ON internal.article;
+
 DROP TRIGGER _cleanup_filesystem_legal_information ON internal.legal_information;
 
 DROP FUNCTION internal.cleanup_filesystem;
diff --git a/rest-api/db/migrations/20241029160539_export_articles.sql b/rest-api/db/migrations/20241029160539_export_articles.sql
new file mode 100644
index 0000000..a4eb7a2
--- /dev/null
+++ b/rest-api/db/migrations/20241029160539_export_articles.sql
@@ -0,0 +1,49 @@
+-- migrate:up
+CREATE FUNCTION api.export_articles_zip (website_id UUID)
+  RETURNS "*/*"
+  AS $$
+DECLARE
+  _has_access BOOLEAN;
+  _headers TEXT;
+  _article RECORD;
+  _markdown_dir TEXT := '/tmp/website-' || export_articles_zip.website_id;
+BEGIN
+  _has_access = internal.user_has_website_access (export_articles_zip.website_id, 20);
+
+  SELECT
+    FORMAT('[{ "Content-Type": "application/gzip" },'
+    '{ "Content-Disposition": "attachment; filename=\"%s\"" }]',
+    'archtika-export-articles-' || export_articles_zip.website_id || '.tar.gz') INTO _headers;
+  PERFORM
+    SET_CONFIG('response.headers', _headers, TRUE);
+
+  EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''mkdir -p %s''', _markdown_dir || '/articles');
+
+  FOR _article IN (
+    SELECT a.id, a.website_id, a.slug, a.main_content
+    FROM internal.article AS a
+    WHERE a.website_id = export_articles_zip.website_id)
+  LOOP
+    EXECUTE FORMAT(
+      'COPY (SELECT %L) TO ''%s''',
+      _article.main_content,
+      _markdown_dir || '/articles/' || _article.slug || '.md'
+    );
+  END LOOP;
+
+  EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''tar -czf %s -C %s articles && rm %s''',
+    _markdown_dir || '/export.tar.gz',
+    _markdown_dir,
+    _markdown_dir || '/articles/*.md'
+  );
+
+  RETURN pg_read_binary_file(_markdown_dir || '/export.tar.gz');
+END;
+$$
+LANGUAGE plpgsql
+SECURITY DEFINER;
+
+GRANT EXECUTE ON FUNCTION api.export_articles_zip TO authenticated_user;
+
+-- migrate:down
+DROP FUNCTION api.export_articles_zip;
diff --git a/web-app/package.json b/web-app/package.json
index 8715dbd..352d9bb 100644
--- a/web-app/package.json
+++ b/web-app/package.json
@@ -11,7 +11,7 @@
     "check:watch": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json --watch",
     "lint": "prettier --check . && eslint .",
     "format": "prettier --write .",
-    "gents": "pg-to-ts generate -c postgres://postgres@localhost:15432/archtika -o src/lib/db-schema.ts -s internal"
+    "gents": "pg-to-ts generate -c postgres://postgres@localhost:15432/archtika -o src/lib/db-schema.ts -s internal --datesAsStrings"
   },
   "devDependencies": {
     "@playwright/test": "1.47.0",
diff --git a/web-app/src/lib/components/DateTime.svelte b/web-app/src/lib/components/DateTime.svelte
index b2ba649..3682077 100644
--- a/web-app/src/lib/components/DateTime.svelte
+++ b/web-app/src/lib/components/DateTime.svelte
@@ -1,16 +1,30 @@
 <script lang="ts">
-  const { date }: { date: Date } = $props();
+  const { date }: { date: string } = $props();
 
-  const options: Intl.DateTimeFormatOptions = {
-    year: "numeric",
-    month: "2-digit",
-    day: "2-digit",
-    hour: "2-digit",
-    minute: "2-digit",
-    second: "2-digit"
+  const dateObject = new Date(date);
+
+  const calcTimeAgo = (date: Date) => {
+    const formatter = new Intl.RelativeTimeFormat("en");
+    const ranges = [
+      ["years", 60 * 60 * 24 * 365],
+      ["months", 60 * 60 * 24 * 30],
+      ["weeks", 60 * 60 * 24 * 7],
+      ["days", 60 * 60 * 24],
+      ["hours", 60 * 60],
+      ["minutes", 60],
+      ["seconds", 1]
+    ] as const;
+    const secondsElapsed = (date.getTime() - Date.now()) / 1000;
+
+    for (const [rangeType, rangeVal] of ranges) {
+      if (rangeVal < Math.abs(secondsElapsed)) {
+        const delta = secondsElapsed / rangeVal;
+        return formatter.format(Math.round(delta), rangeType);
+      }
+    }
   };
 </script>
 
-<time datetime={new Date(date).toLocaleString("sv").replace(" ", "T")}>
-  {new Date(date).toLocaleString("en-us", { ...options })}
+<time datetime={dateObject.toLocaleString("sv").replace(" ", "T")}>
+  {calcTimeAgo(dateObject)}
 </time>
diff --git a/web-app/src/lib/components/Modal.svelte b/web-app/src/lib/components/Modal.svelte
index 967ad75..8931084 100644
--- a/web-app/src/lib/components/Modal.svelte
+++ b/web-app/src/lib/components/Modal.svelte
@@ -9,6 +9,14 @@
   }: { children: Snippet; id: string; text: string; isWider?: boolean } = $props();
 
   const modalId = `${id}-modal`;
+
+  $effect(() => {
+    window.addEventListener("keydown", (e) => {
+      if (e.key === "Escape" && window.location.hash === `#${modalId}`) {
+        window.location.hash = "!";
+      }
+    });
+  });
 </script>
 
 <a href={`#${modalId}`} role="button">{text}</a>
diff --git a/web-app/src/lib/db-schema.ts b/web-app/src/lib/db-schema.ts
index 08845aa..4c59020 100644
--- a/web-app/src/lib/db-schema.ts
+++ b/web-app/src/lib/db-schema.ts
@@ -17,15 +17,16 @@ export interface Article {
   website_id: string;
   user_id: string | null;
   title: string;
+  slug: string | null;
   meta_description: string | null;
   meta_author: string | null;
   cover_image: string | null;
-  publication_date: Date | null;
+  publication_date: string | null;
   main_content: string | null;
   category: string | null;
   article_weight: number | null;
-  created_at: Date;
-  last_modified_at: Date;
+  created_at: string;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface ArticleInput {
@@ -33,15 +34,16 @@ export interface ArticleInput {
   website_id: string;
   user_id?: string | null;
   title: string;
+  slug?: string | null;
   meta_description?: string | null;
   meta_author?: string | null;
   cover_image?: string | null;
-  publication_date?: Date | null;
+  publication_date?: string | null;
   main_content?: string | null;
   category?: string | null;
   article_weight?: number | null;
-  created_at?: Date;
-  last_modified_at?: Date;
+  created_at?: string;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const article = {
@@ -51,6 +53,7 @@ const article = {
     "website_id",
     "user_id",
     "title",
+    "slug",
     "meta_description",
     "meta_author",
     "cover_image",
@@ -81,7 +84,7 @@ export interface ChangeLog {
   website_id: string | null;
   user_id: string | null;
   username: string;
-  tstamp: Date;
+  tstamp: string;
   table_name: string;
   operation: string;
   old_value: any | null;
@@ -92,7 +95,7 @@ export interface ChangeLogInput {
   website_id?: string | null;
   user_id?: string | null;
   username?: string;
-  tstamp?: Date;
+  tstamp?: string;
   table_name: string;
   operation: string;
   old_value?: any | null;
@@ -126,16 +129,16 @@ export interface Collab {
   website_id: string;
   user_id: string;
   permission_level: number;
-  added_at: Date;
-  last_modified_at: Date;
+  added_at: string;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface CollabInput {
   website_id: string;
   user_id: string;
   permission_level?: number;
-  added_at?: Date;
-  last_modified_at?: Date;
+  added_at?: string;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const collab = {
@@ -166,8 +169,8 @@ export interface DocsCategory {
   user_id: string | null;
   category_name: string;
   category_weight: number;
-  created_at: Date;
-  last_modified_at: Date;
+  created_at: string;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface DocsCategoryInput {
@@ -176,8 +179,8 @@ export interface DocsCategoryInput {
   user_id?: string | null;
   category_name: string;
   category_weight: number;
-  created_at?: Date;
-  last_modified_at?: Date;
+  created_at?: string;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const docs_category = {
@@ -207,15 +210,15 @@ const docs_category = {
 export interface DomainPrefix {
   website_id: string;
   prefix: string;
-  created_at: Date;
-  last_modified_at: Date;
+  created_at: string;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface DomainPrefixInput {
   website_id: string;
   prefix: string;
-  created_at?: Date;
-  last_modified_at?: Date;
+  created_at?: string;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const domain_prefix = {
@@ -235,13 +238,13 @@ const domain_prefix = {
 export interface Footer {
   website_id: string;
   additional_text: string;
-  last_modified_at: Date;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface FooterInput {
   website_id: string;
   additional_text: string;
-  last_modified_at?: Date;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const footer = {
@@ -263,7 +266,7 @@ export interface Header {
   logo_type: string;
   logo_text: string | null;
   logo_image: string | null;
-  last_modified_at: Date;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface HeaderInput {
@@ -271,7 +274,7 @@ export interface HeaderInput {
   logo_type?: string;
   logo_text?: string | null;
   logo_image?: string | null;
-  last_modified_at?: Date;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const header = {
@@ -300,14 +303,14 @@ export interface Home {
   website_id: string;
   main_content: string;
   meta_description: string | null;
-  last_modified_at: Date;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface HomeInput {
   website_id: string;
   main_content: string;
   meta_description?: string | null;
-  last_modified_at?: Date;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const home = {
@@ -333,15 +336,15 @@ const home = {
 export interface LegalInformation {
   website_id: string;
   main_content: string;
-  created_at: Date;
-  last_modified_at: Date;
+  created_at: string;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface LegalInformationInput {
   website_id: string;
   main_content: string;
-  created_at?: Date;
-  last_modified_at?: Date;
+  created_at?: string;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const legal_information = {
@@ -365,7 +368,7 @@ export interface Media {
   blob: string;
   mimetype: string;
   original_name: string;
-  created_at: Date;
+  created_at: string;
 }
 export interface MediaInput {
   id?: string;
@@ -374,7 +377,7 @@ export interface MediaInput {
   blob: string;
   mimetype: string;
   original_name: string;
-  created_at?: Date;
+  created_at?: string;
 }
 const media = {
   tableName: "media",
@@ -397,7 +400,7 @@ export interface Settings {
   background_color_dark_theme: string;
   background_color_light_theme: string;
   favicon_image: string | null;
-  last_modified_at: Date;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface SettingsInput {
@@ -407,7 +410,7 @@ export interface SettingsInput {
   background_color_dark_theme?: string;
   background_color_light_theme?: string;
   favicon_image?: string | null;
-  last_modified_at?: Date;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const settings = {
@@ -440,7 +443,7 @@ export interface User {
   password_hash: string;
   user_role: string;
   max_number_websites: number;
-  created_at: Date;
+  created_at: string;
 }
 export interface UserInput {
   id?: string;
@@ -448,7 +451,7 @@ export interface UserInput {
   password_hash: string;
   user_role?: string;
   max_number_websites?: number;
-  created_at?: Date;
+  created_at?: string;
 }
 const user = {
   tableName: "user",
@@ -468,8 +471,8 @@ export interface Website {
   title: string;
   max_storage_size: number;
   is_published: boolean;
-  created_at: Date;
-  last_modified_at: Date;
+  created_at: string;
+  last_modified_at: string;
   last_modified_by: string | null;
 }
 export interface WebsiteInput {
@@ -479,8 +482,8 @@ export interface WebsiteInput {
   title: string;
   max_storage_size?: number;
   is_published?: boolean;
-  created_at?: Date;
-  last_modified_at?: Date;
+  created_at?: string;
+  last_modified_at?: string;
   last_modified_by?: string | null;
 }
 const website = {
diff --git a/web-app/src/lib/templates/blog/BlogArticle.svelte b/web-app/src/lib/templates/blog/BlogArticle.svelte
index a2f334b..5edc7f8 100644
--- a/web-app/src/lib/templates/blog/BlogArticle.svelte
+++ b/web-app/src/lib/templates/blog/BlogArticle.svelte
@@ -19,6 +19,7 @@
   nestingLevel={1}
   {apiUrl}
   title={article.title}
+  slug={article.slug as string}
   metaDescription={article.meta_description}
   {websiteUrl}
 />
diff --git a/web-app/src/lib/templates/blog/BlogIndex.svelte b/web-app/src/lib/templates/blog/BlogIndex.svelte
index 9424d8f..28863fb 100644
--- a/web-app/src/lib/templates/blog/BlogIndex.svelte
+++ b/web-app/src/lib/templates/blog/BlogIndex.svelte
@@ -2,7 +2,7 @@
   import Head from "../common/Head.svelte";
   import Nav from "../common/Nav.svelte";
   import Footer from "../common/Footer.svelte";
-  import { md, slugify, type WebsiteOverview } from "$lib/utils";
+  import { md, type WebsiteOverview } from "$lib/utils";
 
   const {
     websiteOverview,
@@ -62,7 +62,7 @@
               {/if}
               <p>
                 <strong>
-                  <a href="./articles/{slugify(article.title)}">{article.title}</a>
+                  <a href="./articles/{article.slug}">{article.title}</a>
                 </strong>
               </p>
               {#if article.meta_description}
diff --git a/web-app/src/lib/templates/common/Head.svelte b/web-app/src/lib/templates/common/Head.svelte
index f25b977..a878c51 100644
--- a/web-app/src/lib/templates/common/Head.svelte
+++ b/web-app/src/lib/templates/common/Head.svelte
@@ -1,11 +1,12 @@
 <script lang="ts">
-  import { slugify, type WebsiteOverview } from "../../utils";
+  import { type WebsiteOverview } from "../../utils";
 
   const {
     websiteOverview,
     nestingLevel,
     apiUrl,
     title,
+    slug,
     metaDescription,
     websiteUrl
   }: {
@@ -13,6 +14,7 @@
     nestingLevel: number;
     apiUrl: string;
     title: string;
+    slug?: string;
     metaDescription?: string | null;
     websiteUrl: string;
   } = $props();
@@ -20,7 +22,7 @@
   const constructedTitle =
     websiteOverview.title === title ? title : `${websiteOverview.title} | ${title}`;
 
-  let ogUrl = `${websiteUrl.replace(/\/$/, "")}${nestingLevel === 0 ? (websiteOverview.title === title ? "" : `/${slugify(title)}`) : `/articles/${slugify(title)}`}`;
+  let ogUrl = `${websiteUrl.replace(/\/$/, "")}${nestingLevel === 0 ? (websiteOverview.title === title ? "" : `/${slug}`) : `/articles/${slug}`}`;
 </script>
 
 <svelte:head>
diff --git a/web-app/src/lib/templates/common/Nav.svelte b/web-app/src/lib/templates/common/Nav.svelte
index fb7a558..14118fc 100644
--- a/web-app/src/lib/templates/common/Nav.svelte
+++ b/web-app/src/lib/templates/common/Nav.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-  import { type WebsiteOverview, slugify } from "../../utils";
+  import { type WebsiteOverview } from "../../utils";
   import type { Article } from "../../db-schema";
 
   const {
@@ -61,9 +61,9 @@
             <li>
               <strong>{key}</strong>
               <ul>
-                {#each categorizedArticles[key] as { title }}
+                {#each categorizedArticles[key] as { title, slug }}
                   <li>
-                    <a href="{isIndexPage ? './articles' : '.'}/{slugify(title)}">{title}</a>
+                    <a href="{isIndexPage ? './articles' : '.'}/{slug}">{title}</a>
                   </li>
                 {/each}
               </ul>
@@ -87,7 +87,7 @@
         />
       {/if}
     </svelte:element>
-    <label style="margin-inline-start: auto;" for="toggle-theme">
+    <label for="toggle-theme">
       <input type="checkbox" id="toggle-theme" hidden />
       <svg
         xmlns="http://www.w3.org/2000/svg"
diff --git a/web-app/src/lib/templates/docs/DocsArticle.svelte b/web-app/src/lib/templates/docs/DocsArticle.svelte
index 02b948d..37c0d93 100644
--- a/web-app/src/lib/templates/docs/DocsArticle.svelte
+++ b/web-app/src/lib/templates/docs/DocsArticle.svelte
@@ -19,6 +19,7 @@
   nestingLevel={1}
   {apiUrl}
   title={article.title}
+  slug={article.slug as string}
   metaDescription={article.meta_description}
   {websiteUrl}
 />
diff --git a/web-app/src/lib/utils.ts b/web-app/src/lib/utils.ts
index 76e697d..7879886 100644
--- a/web-app/src/lib/utils.ts
+++ b/web-app/src/lib/utils.ts
@@ -26,7 +26,7 @@ export const ALLOWED_MIME_TYPES = [
   "image/svg+xml"
 ];
 
-export const slugify = (string: string) => {
+const slugify = (string: string) => {
   return string
     .toString()
     .normalize("NFKD") // Normalize Unicode characters
diff --git a/web-app/src/routes/(authenticated)/+page.server.ts b/web-app/src/routes/(authenticated)/+page.server.ts
index aa7d7c2..cdda0e3 100644
--- a/web-app/src/routes/(authenticated)/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/+page.server.ts
@@ -76,19 +76,8 @@ export const actions: Actions = {
     const data = await request.formData();
     const id = data.get("id");
 
-    const deleteWebsite = await apiRequest(
-      fetch,
-      `${API_BASE_PREFIX}/website?id=eq.${id}`,
-      "DELETE",
-      {
-        successMessage: "Successfully deleted website"
-      }
-    );
-
-    if (!deleteWebsite.success) {
-      return deleteWebsite;
-    }
-
-    return deleteWebsite;
+    return await apiRequest(fetch, `${API_BASE_PREFIX}/website?id=eq.${id}`, "DELETE", {
+      successMessage: "Successfully deleted website"
+    });
   }
 };
diff --git a/web-app/src/routes/(authenticated)/+page.svelte b/web-app/src/routes/(authenticated)/+page.svelte
index c661afb..38e0b32 100644
--- a/web-app/src/routes/(authenticated)/+page.svelte
+++ b/web-app/src/routes/(authenticated)/+page.svelte
@@ -77,7 +77,7 @@
     </details>
 
     <ul class="website-grid unpadded">
-      {#each data.websites as { id, user_id, content_type, title, created_at, collab } (id)}
+      {#each data.websites as { id, user_id, content_type, title, created_at, last_modified_at, collab } (id)}
         <li class="website-card">
           <p>
             <strong>
@@ -90,9 +90,13 @@
               {content_type}
             </li>
             <li>
-              <strong>Created at:</strong>
+              <strong>Created:</strong>
               <DateTime date={created_at} />
             </li>
+            <li>
+              <strong>Last modified:</strong>
+              <DateTime date={last_modified_at} />
+            </li>
           </ul>
           <div class="website-card__actions">
             <Modal id="update-website-{id}" text="Update">
diff --git a/web-app/src/routes/(authenticated)/account/+page.server.ts b/web-app/src/routes/(authenticated)/account/+page.server.ts
index f44e3b7..a5e1f6f 100644
--- a/web-app/src/routes/(authenticated)/account/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/account/+page.server.ts
@@ -4,7 +4,7 @@ import { API_BASE_PREFIX, apiRequest } from "$lib/server/utils";
 export const load: PageServerLoad = async ({ fetch, locals }) => {
   const storageSizes = await apiRequest(
     fetch,
-    `${API_BASE_PREFIX}/rpc/user_websites_storage_size`,
+    `${API_BASE_PREFIX}/rpc/user_websites_storage_size?order=max_storage_bytes.desc`,
     "GET",
     {
       returnData: true
diff --git a/web-app/src/routes/(authenticated)/manage/+page.server.ts b/web-app/src/routes/(authenticated)/manage/+page.server.ts
index 13da20e..e5e67ea 100644
--- a/web-app/src/routes/(authenticated)/manage/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/manage/+page.server.ts
@@ -10,7 +10,7 @@ export const load: PageServerLoad = async ({ fetch, url }) => {
   const usersWithWebsites: (User & { website: Website[] })[] = (
     await apiRequest(
       fetch,
-      `${API_BASE_PREFIX}/user?select=*,website!user_id(*)&order=created_at&limit=${PAGINATION_MAX_ITEMS}&offset=${resultOffset}`,
+      `${API_BASE_PREFIX}/user?select=*,website!user_id(*)&order=created_at&website.order=created_at.desc&limit=${PAGINATION_MAX_ITEMS}&offset=${resultOffset}`,
       "GET",
       {
         returnData: true
@@ -61,7 +61,7 @@ export const actions: Actions = {
         body: {
           max_storage_size: data.get("storage-size")
         },
-        successMessage: "Successfully updated user website storage size"
+        successMessage: "Successfully updated website storage"
       }
     );
   },
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.server.ts
index 16baf93..42b93bb 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.server.ts
@@ -1,6 +1,7 @@
 import type { Actions, PageServerLoad } from "./$types";
 import { API_BASE_PREFIX } from "$lib/server/utils";
 import { apiRequest } from "$lib/server/utils";
+import { parse } from "node:path";
 import type { Article, DocsCategory } from "$lib/db-schema";
 
 export const load: PageServerLoad = async ({ params, fetch, url, parent, locals }) => {
@@ -58,6 +59,7 @@ export const load: PageServerLoad = async ({ params, fetch, url, parent, locals
     website,
     home,
     permissionLevel,
+    API_BASE_PREFIX,
     user: locals.user
   };
 };
@@ -74,6 +76,25 @@ export const actions: Actions = {
       successMessage: "Successfully created article"
     });
   },
+  importArticles: async ({ request, fetch, params }) => {
+    const data = await request.formData();
+    const files = data.getAll("import-articles") as File[];
+
+    const articles = await Promise.all(
+      files.map(async (file) => {
+        return {
+          website_id: params.websiteId,
+          title: parse(file.name).name,
+          main_content: await file.text()
+        };
+      })
+    );
+
+    return await apiRequest(fetch, `${API_BASE_PREFIX}/article`, "POST", {
+      body: articles,
+      successMessage: "Successfully imported articles"
+    });
+  },
   deleteArticle: async ({ request, fetch }) => {
     const data = await request.formData();
 
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.svelte
index 7af5c50..a6bb790 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.svelte
@@ -31,18 +31,37 @@
       <a href="#create-article">Create article</a>
     </h2>
 
-    <Modal id="create-article" text="Create article">
-      <h3>Create article</h3>
-
-      <form method="POST" action="?/createArticle" use:enhance={enhanceForm({ closeModal: true })}>
-        <label>
-          Title:
-          <input type="text" name="title" pattern="\S(.*\S)?" maxlength="100" required />
-        </label>
-
-        <button type="submit" disabled={data.permissionLevel === 10}>Create article</button>
-      </form>
-    </Modal>
+    <div class="multi-wrapper">
+      <Modal id="create-article" text="Create article">
+        <h3>Create article</h3>
+        <form
+          method="POST"
+          action="?/createArticle"
+          use:enhance={enhanceForm({ closeModal: true })}
+        >
+          <label>
+            Title:
+            <input type="text" name="title" pattern="\S(.*\S)?" maxlength="100" required />
+          </label>
+          <button type="submit" disabled={data.permissionLevel === 10}>Create article</button>
+        </form>
+      </Modal>
+      <Modal id="import-articles" text="Import articles">
+        <h3>Import articles</h3>
+        <form
+          method="POST"
+          action="?/importArticles"
+          enctype="multipart/form-data"
+          use:enhance={enhanceForm({ closeModal: true })}
+        >
+          <label>
+            Markdown files:
+            <input type="file" name="import-articles" accept=".md" multiple required />
+          </label>
+          <button type="submit" disabled={data.permissionLevel === 10}>Import articles</button>
+        </form>
+      </Modal>
+    </div>
   </section>
 
   {#if data.totalArticleCount > 0}
@@ -51,6 +70,11 @@
         <a href="#all-articles">All articles</a>
       </h2>
 
+      <a
+        class="export-anchor"
+        href={`${data.API_BASE_PREFIX}/rpc/export_articles_zip?website_id=${data.website.id}`}
+        >Export articles</a
+      >
       <details>
         <summary>Search & Filter</summary>
         <form method="GET">
@@ -92,7 +116,6 @@
                     fill="currentColor"
                     width="16"
                     height="16"
-                    style="vertical-align: middle"
                   >
                     <path
                       fill-rule="evenodd"
@@ -160,4 +183,15 @@
     gap: var(--space-s);
     align-items: center;
   }
+
+  .multi-wrapper {
+    display: flex;
+    gap: var(--space-s);
+    flex-wrap: wrap;
+    align-items: start;
+  }
+
+  .export-anchor {
+    max-inline-size: fit-content;
+  }
 </style>
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/categories/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/categories/+page.svelte
index 11c28e1..f8e9693 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/categories/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/categories/+page.svelte
@@ -36,7 +36,13 @@
       <form method="POST" action="?/createCategory" use:enhance={enhanceForm({ closeModal: true })}>
         <label>
           Name:
-          <input type="text" name="category-name" maxlength="50" required />
+          <input
+            type="text"
+            name="category-name"
+            maxlength="50"
+            pattern="^(?!Uncategorized$).+$"
+            required
+          />
         </label>
 
         <label>
@@ -80,6 +86,7 @@
                       name="category-name"
                       value={category_name}
                       maxlength="50"
+                      pattern="^(?!Uncategorized$).+$"
                       required
                     />
                   </label>
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
index 02aa560..030c1cb 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
@@ -44,7 +44,7 @@ export const actions: Actions = {
     });
   },
   deleteLegalInformation: async ({ fetch, params }) => {
-    const deleteLegalInformation = await apiRequest(
+    return await apiRequest(
       fetch,
       `${API_BASE_PREFIX}/legal_information?website_id=eq.${params.websiteId}`,
       "DELETE",
@@ -52,12 +52,6 @@ export const actions: Actions = {
         successMessage: "Successfully deleted legal information"
       }
     );
-
-    if (!deleteLegalInformation.success) {
-      return deleteLegalInformation;
-    }
-
-    return deleteLegalInformation;
   },
   pasteImage: async ({ request, fetch, params }) => {
     const data = await request.formData();
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
index 5638206..711b70f 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
@@ -106,7 +106,7 @@
             <th>User</th>
             <th>Resource</th>
             <th>Operation</th>
-            <th>Date & Time</th>
+            <th>Time</th>
             <th>Changes</th>
           </tr>
         </thead>
@@ -140,21 +140,20 @@
                       <button type="submit">Compute diff</button>
                     </form>
                     {#if form?.logId === id && form?.currentDiff}
-                      <pre style="white-space: pre-wrap">{@html DOMPurify.sanitize(
-                          form.currentDiff,
-                          { ALLOWED_TAGS: ["ins", "del"] }
-                        )}</pre>
+                      <pre>{@html DOMPurify.sanitize(form.currentDiff, {
+                          ALLOWED_TAGS: ["ins", "del"]
+                        })}</pre>
                     {/if}
                   {/if}
 
                   {#if new_value && !old_value}
                     <h4>New value</h4>
-                    <pre style="white-space: pre-wrap">{DOMPurify.sanitize(newValue)}</pre>
+                    <pre>{DOMPurify.sanitize(newValue)}</pre>
                   {/if}
 
                   {#if old_value && !new_value}
                     <h4>Old value</h4>
-                    <pre style="white-space: pre-wrap">{DOMPurify.sanitize(oldValue)}</pre>
+                    <pre>{DOMPurify.sanitize(oldValue)}</pre>
                   {/if}
                 </Modal>
               </td>
@@ -169,3 +168,9 @@
     />
   </section>
 </WebsiteEditor>
+
+<style>
+  pre {
+    white-space: pre-wrap;
+  }
+</style>
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
index 69b944f..56388d0 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
@@ -4,25 +4,24 @@ import BlogArticle from "$lib/templates/blog/BlogArticle.svelte";
 import BlogIndex from "$lib/templates/blog/BlogIndex.svelte";
 import DocsArticle from "$lib/templates/docs/DocsArticle.svelte";
 import DocsIndex from "$lib/templates/docs/DocsIndex.svelte";
-import { type WebsiteOverview, hexToHSL, slugify } from "$lib/utils";
-import { mkdir, readFile, rename, writeFile, chmod, readdir } from "node:fs/promises";
+import { type WebsiteOverview, hexToHSL } from "$lib/utils";
+import { mkdir, readFile, writeFile, chmod, readdir } from "node:fs/promises";
 import { join } from "node:path";
 import { render } from "svelte/server";
 import type { Actions, PageServerLoad } from "./$types";
 
+const getOverviewFetchUrl = (websiteId: string) => {
+  return `${API_BASE_PREFIX}/website?id=eq.${websiteId}&select=*,settings(*),header(*),home(*),footer(*),article(*,docs_category(*)),legal_information(*),domain_prefix(*)`;
+};
+
 export const load: PageServerLoad = async ({ params, fetch, parent }) => {
   const websiteOverview: WebsiteOverview = (
-    await apiRequest(
-      fetch,
-      `${API_BASE_PREFIX}/website?id=eq.${params.websiteId}&select=*,settings(*),header(*),home(*),footer(*),article(*,docs_category(*)),legal_information(*),domain_prefix(*)`,
-      "GET",
-      {
-        headers: {
-          Accept: "application/vnd.pgrst.object+json"
-        },
-        returnData: true
-      }
-    )
+    await apiRequest(fetch, getOverviewFetchUrl(params.websiteId), "GET", {
+      headers: {
+        Accept: "application/vnd.pgrst.object+json"
+      },
+      returnData: true
+    })
   ).data;
 
   const { websitePreviewUrl, websiteProdUrl } = await generateStaticFiles(websiteOverview);
@@ -40,22 +39,15 @@ export const load: PageServerLoad = async ({ params, fetch, parent }) => {
 export const actions: Actions = {
   publishWebsite: async ({ fetch, params }) => {
     const websiteOverview: WebsiteOverview = (
-      await apiRequest(
-        fetch,
-        `${API_BASE_PREFIX}/website?id=eq.${params.websiteId}&select=*,settings(*),header(*),home(*),footer(*),article(*,docs_category(*)),legal_information(*),domain_prefix(*)`,
-        "GET",
-        {
-          headers: {
-            Accept: "application/vnd.pgrst.object+json"
-          },
-          returnData: true
-        }
-      )
+      await apiRequest(fetch, getOverviewFetchUrl(params.websiteId), "GET", {
+        headers: {
+          Accept: "application/vnd.pgrst.object+json"
+        },
+        returnData: true
+      })
     ).data;
 
-    await generateStaticFiles(websiteOverview, false);
-
-    return await apiRequest(
+    const publish = await apiRequest(
       fetch,
       `${API_BASE_PREFIX}/website?id=eq.${params.websiteId}`,
       "PATCH",
@@ -66,78 +58,33 @@ export const actions: Actions = {
         successMessage: "Successfully published website"
       }
     );
+
+    if (!publish.success) {
+      return publish;
+    }
+
+    await generateStaticFiles(websiteOverview, false);
+
+    return publish;
   },
   createUpdateCustomDomainPrefix: async ({ request, fetch, params }) => {
     const data = await request.formData();
 
-    const oldDomainPrefix = (
-      await apiRequest(
-        fetch,
-        `${API_BASE_PREFIX}/domain_prefix?website_id=eq.${params.websiteId}`,
-        "GET",
-        {
-          headers: {
-            Accept: "application/vnd.pgrst.object+json"
-          },
-          returnData: true
-        }
-      )
-    ).data;
-
-    const newDomainPrefix = await apiRequest(fetch, `${API_BASE_PREFIX}/domain_prefix`, "POST", {
-      headers: {
-        Prefer: "resolution=merge-duplicates",
-        Accept: "application/vnd.pgrst.object+json"
-      },
+    return await apiRequest(fetch, `${API_BASE_PREFIX}/rpc/set_domain_prefix`, "POST", {
       body: {
         website_id: params.websiteId,
         prefix: data.get("domain-prefix")
       },
       successMessage: "Successfully created/updated domain prefix"
     });
-
-    if (!newDomainPrefix.success) {
-      return newDomainPrefix;
-    }
-
-    await rename(
-      join(
-        "/",
-        "var",
-        "www",
-        "archtika-websites",
-        oldDomainPrefix?.prefix ? oldDomainPrefix.prefix : params.websiteId
-      ),
-      join("/", "var", "www", "archtika-websites", data.get("domain-prefix") as string)
-    );
-
-    return newDomainPrefix;
   },
   deleteCustomDomainPrefix: async ({ fetch, params }) => {
-    const customPrefix = await apiRequest(
-      fetch,
-      `${API_BASE_PREFIX}/domain_prefix?website_id=eq.${params.websiteId}`,
-      "DELETE",
-      {
-        headers: {
-          Prefer: "return=representation",
-          Accept: "application/vnd.pgrst.object+json"
-        },
-        successMessage: "Successfully deleted domain prefix",
-        returnData: true
-      }
-    );
-
-    if (!customPrefix.success) {
-      return customPrefix;
-    }
-
-    await rename(
-      join("/", "var", "www", "archtika-websites", customPrefix.data.prefix),
-      join("/", "var", "www", "archtika-websites", params.websiteId)
-    );
-
-    return customPrefix;
+    return await apiRequest(fetch, `${API_BASE_PREFIX}/rpc/delete_domain_prefix`, "POST", {
+      body: {
+        website_id: params.websiteId
+      },
+      successMessage: "Successfully deleted domain prefix"
+    });
   }
 };
 
@@ -211,10 +158,7 @@ const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview = tru
       }
     });
 
-    await writeFile(
-      join(uploadDir, "articles", `${slugify(article.title)}.html`),
-      fileContents(head, body)
-    );
+    await writeFile(join(uploadDir, "articles", `${article.slug}.html`), fileContents(head, body));
   }
 
   if (websiteData.legal_information) {
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
index 27f545f..f944dc3 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
@@ -71,7 +71,7 @@
             placeholder="my-blog"
             minlength="3"
             maxlength="16"
-            pattern="^[a-z]+(-[a-z]+)*$"
+            pattern="^(?!previews$)[a-z]+(-[a-z]+)*$"
             required
           />
         </label>
diff --git a/web-app/template-styles/common-styles.css b/web-app/template-styles/common-styles.css
index ea4eeca..5605420 100644
--- a/web-app/template-styles/common-styles.css
+++ b/web-app/template-styles/common-styles.css
@@ -88,11 +88,16 @@ summary {
   background-color: var(--bg-secondary);
 }
 
+summary:has(svg),
 label:has(svg) {
   display: inline-grid;
   place-content: center;
 }
 
+label[for="toggle-theme"] {
+  margin-inline-start: auto;
+}
+
 label[for="toggle-theme"] svg:first-of-type {
   display: var(--display-light);
 }
@@ -113,6 +118,7 @@ label[for="toggle-theme"] svg:last-of-type {
 }
 
 button:disabled {
+  user-select: none;
   pointer-events: none;
   opacity: 0.5;
   z-index: -10;
diff --git a/web-app/tests/articles.spec.ts b/web-app/tests/articles.spec.ts
index c5989eb..e654068 100644
--- a/web-app/tests/articles.spec.ts
+++ b/web-app/tests/articles.spec.ts
@@ -1,4 +1,5 @@
 import { test, expect } from "@playwright/test";
+import { randomBytes } from "node:crypto";
 import {
   userOwner,
   authenticate,
@@ -7,6 +8,8 @@ import {
   collabTestingWebsite
 } from "./shared";
 
+const genArticleName = () => randomBytes(12).toString("hex");
+
 test.describe("Website owner", () => {
   test.beforeEach(async ({ page }) => {
     await authenticate(userOwner, page);
@@ -21,7 +24,7 @@ test.describe("Website owner", () => {
   test(`Create article`, async ({ page }) => {
     await page.getByRole("button", { name: "Create article" }).click();
     await page.locator("#create-article-modal").getByLabel("Title:").click();
-    await page.locator("#create-article-modal").getByLabel("Title:").fill("Article");
+    await page.locator("#create-article-modal").getByLabel("Title:").fill(genArticleName());
     await page
       .locator("#create-article-modal")
       .getByRole("button", { name: "Create article" })
@@ -34,7 +37,7 @@ test.describe("Website owner", () => {
     test.beforeEach(async ({ page }) => {
       await page.getByRole("button", { name: "Create article" }).click();
       await page.locator("#create-article-modal").getByLabel("Title:").click();
-      await page.locator("#create-article-modal").getByLabel("Title:").fill("Article");
+      await page.locator("#create-article-modal").getByLabel("Title:").fill(genArticleName());
       await page
         .locator("#create-article-modal")
         .getByRole("button", { name: "Create article" })
@@ -81,7 +84,7 @@ for (const permissionLevel of permissionLevels) {
     test(`Create article`, async ({ page }) => {
       await page.getByRole("button", { name: "Create article" }).click();
       await page.locator("#create-article-modal").getByLabel("Title:").click();
-      await page.locator("#create-article-modal").getByLabel("Title:").fill("Article");
+      await page.locator("#create-article-modal").getByLabel("Title:").fill(genArticleName());
       await page
         .locator("#create-article-modal")
         .getByRole("button", { name: "Create article" })
diff --git a/web-app/tests/manage.spec.ts b/web-app/tests/manage.spec.ts
index 569f8bd..b73a104 100644
--- a/web-app/tests/manage.spec.ts
+++ b/web-app/tests/manage.spec.ts
@@ -47,7 +47,7 @@ test(`Update user website storage limit`, async ({ page }) => {
     .locator("details")
     .getByRole("button", { name: "Update storage limit" })
     .click();
-  await expect(page.getByText("Successfully updated user website storage size")).toBeVisible();
+  await expect(page.getByText("Successfully updated website storage")).toBeVisible();
 });
 
 test(`Delete user`, async ({ page }) => {

From ada54c6f06a13c7e5f146aeac27340b2764925a0 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Tue, 19 Nov 2024 18:49:40 +0100
Subject: [PATCH 09/11] Add ability to export articles, track publications in
 json file on NGINX, fix vulnerabilities and refactor

---
 nix/dev-vm.nix                                |    4 +
 nix/module.nix                                |   12 +
 .../migrations/20240719071602_main_tables.sql |   25 +-
 ...20240720132802_exposed_views_functions.sql |   15 +-
 .../20240724191017_row_level_security.sql     |   28 -
 .../20240805132306_last_modified_triggers.sql |    7 -
 .../migrations/20240911070907_change_log.sql  |    7 -
 .../20240920090915_custom_domain_prefix.sql   |  108 --
 .../20241006165029_administrator.sql          |   22 +-
 .../20241011092744_filesystem_triggers.sql    |   37 +-
 .../20241029160539_export_articles.sql        |   42 +-
 web-app/package-lock.json                     | 1060 ++++++++---------
 web-app/package.json                          |    9 +-
 web-app/src/lib/components/DateTime.svelte    |    7 +-
 .../src/lib/components/WebsiteEditor.svelte   |   10 +-
 web-app/src/lib/db-schema.ts                  |   74 +-
 web-app/src/lib/server/utils.ts               |    6 +-
 web-app/src/lib/templates/Article.svelte      |   64 +
 web-app/src/lib/templates/Footer.svelte       |   11 +
 .../lib/templates/{common => }/Head.svelte    |    4 +-
 .../{blog/BlogIndex.svelte => Index.svelte}   |   31 +-
 .../src/lib/templates/{common => }/Nav.svelte |   17 +-
 .../src/lib/templates/blog/BlogArticle.svelte |   51 -
 .../src/lib/templates/common/Footer.svelte    |   19 -
 .../src/lib/templates/docs/DocsArticle.svelte |   43 -
 .../src/lib/templates/docs/DocsIndex.svelte   |   48 -
 web-app/src/lib/utils.ts                      |    6 +-
 .../src/routes/(authenticated)/+page.svelte   |   21 +-
 .../website/[websiteId]/articles/+page.svelte |    2 +-
 .../legal-information/+page.server.ts         |   72 --
 .../legal-information/+page.svelte            |   94 --
 .../website/[websiteId]/logs/+page.server.ts  |    5 +
 .../website/[websiteId]/logs/+page.svelte     |    3 +-
 .../[websiteId]/publish/+page.server.ts       |  162 +--
 .../website/[websiteId]/publish/+page.svelte  |   69 +-
 web-app/template-styles/blog-styles.css       |   13 +-
 web-app/template-styles/common-styles.css     |    1 -
 web-app/template-styles/docs-styles.css       |   13 +-
 web-app/tests/legal-information.spec.ts       |  109 --
 web-app/tests/publish.spec.ts                 |   83 --
 40 files changed, 844 insertions(+), 1570 deletions(-)
 delete mode 100644 rest-api/db/migrations/20240920090915_custom_domain_prefix.sql
 create mode 100644 web-app/src/lib/templates/Article.svelte
 create mode 100644 web-app/src/lib/templates/Footer.svelte
 rename web-app/src/lib/templates/{common => }/Head.svelte (93%)
 rename web-app/src/lib/templates/{blog/BlogIndex.svelte => Index.svelte} (67%)
 rename web-app/src/lib/templates/{common => }/Nav.svelte (92%)
 delete mode 100644 web-app/src/lib/templates/blog/BlogArticle.svelte
 delete mode 100644 web-app/src/lib/templates/common/Footer.svelte
 delete mode 100644 web-app/src/lib/templates/docs/DocsArticle.svelte
 delete mode 100644 web-app/src/lib/templates/docs/DocsIndex.svelte
 delete mode 100644 web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
 delete mode 100644 web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte
 delete mode 100644 web-app/tests/legal-information.spec.ts

diff --git a/nix/dev-vm.nix b/nix/dev-vm.nix
index c54902c..a244d77 100644
--- a/nix/dev-vm.nix
+++ b/nix/dev-vm.nix
@@ -95,6 +95,10 @@
             tryFiles = "$uri $uri/ $uri.html =404";
           };
         };
+        extraConfig = ''
+          port_in_redirect off;
+          absolute_redirect off;
+        '';
       };
     };
   };
diff --git a/nix/module.nix b/nix/module.nix
index ffdf468..30af9b0 100644
--- a/nix/module.nix
+++ b/nix/module.nix
@@ -194,6 +194,11 @@ in
         add_header X-Content-Type-Options "nosniff" always;
         add_header Referrer-Policy "strict-origin-when-cross-origin" always;
         add_header Permissions-Policy "accelerometer=(),autoplay=(),camera=(),cross-origin-isolated=(),display-capture=(),encrypted-media=(),fullscreen=(self),geolocation=(),gyroscope=(),keyboard-map=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(self),publickey-credentials-get=(),screen-wake-lock=(),sync-xhr=(self),usb=(),xr-spatial-tracking=(),clipboard-read=(self),clipboard-write=(self),gamepad=(),hid=(),idle-detection=(),interest-cohort=(),serial=(),unload=()" always;
+
+        map $http_cookie $auth_header {
+          default "";
+          "~*session_token=([^;]+)" "Bearer $1";
+        }
       '';
 
       virtualHosts = {
@@ -209,6 +214,13 @@ in
               index = "index.html";
               tryFiles = "$uri $uri/ $uri.html =404";
             };
+            "/api/rpc/export_articles_zip" = {
+              proxyPass = "http://localhost:${toString cfg.apiPort}/rpc/export_articles_zip";
+              extraConfig = ''
+                default_type application/json;
+                proxy_set_header Authorization $auth_header;
+              '';
+            };
             "/api/" = {
               proxyPass = "http://localhost:${toString cfg.apiPort}/";
               extraConfig = ''
diff --git a/rest-api/db/migrations/20240719071602_main_tables.sql b/rest-api/db/migrations/20240719071602_main_tables.sql
index aadffe2..ee06a6d 100644
--- a/rest-api/db/migrations/20240719071602_main_tables.sql
+++ b/rest-api/db/migrations/20240719071602_main_tables.sql
@@ -29,16 +29,16 @@ GRANT USAGE ON SCHEMA internal TO authenticated_user;
 
 ALTER DEFAULT PRIVILEGES REVOKE EXECUTE ON FUNCTIONS FROM PUBLIC;
 
-CREATE FUNCTION internal.immutable_unaccent (TEXT)
+CREATE FUNCTION internal.generate_slug (TEXT)
   RETURNS TEXT
   AS $$
   SELECT
-    unaccent ($1);
+    REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(LOWER(TRIM(REGEXP_REPLACE(unaccent ($1), '\s+', '-', 'g'))), '[^\w-]', '', 'g'), '-+', '-', 'g'), '^-+', '', 'g'), '-+$', '', 'g')
 $$
 LANGUAGE sql
 IMMUTABLE;
 
-GRANT EXECUTE ON FUNCTION internal.immutable_unaccent TO authenticated_user;
+GRANT EXECUTE ON FUNCTION internal.generate_slug TO authenticated_user;
 
 CREATE TABLE internal.user (
   id UUID PRIMARY KEY DEFAULT gen_random_uuid (),
@@ -54,11 +54,12 @@ CREATE TABLE internal.website (
   user_id UUID REFERENCES internal.user (id) ON DELETE CASCADE NOT NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
   content_type VARCHAR(10) CHECK (content_type IN ('Blog', 'Docs')) NOT NULL,
   title VARCHAR(50) NOT NULL CHECK (TRIM(title) != ''),
+  slug VARCHAR(50) GENERATED ALWAYS AS (internal.generate_slug (title)) STORED,
   max_storage_size INT NOT NULL DEFAULT CURRENT_SETTING('app.website_max_storage_size') ::INT,
-  is_published BOOLEAN NOT NULL DEFAULT FALSE,
   created_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
   last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
-  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
+  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL,
+  UNIQUE (user_id, slug)
 );
 
 CREATE TABLE internal.media (
@@ -118,7 +119,7 @@ CREATE TABLE internal.article (
   website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE NOT NULL,
   user_id UUID REFERENCES internal.user (id) ON DELETE SET NULL DEFAULT (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id') ::UUID,
   title VARCHAR(100) NOT NULL CHECK (TRIM(title) != ''),
-  slug VARCHAR(100) GENERATED ALWAYS AS (REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(LOWER(TRIM(REGEXP_REPLACE(internal.immutable_unaccent (title), '\s+', '-', 'g'))), '[^\w-]', '', 'g'), '-+', '-', 'g'), '^-+', '', 'g'), '-+$', '', 'g')) STORED,
+  slug VARCHAR(100) GENERATED ALWAYS AS (internal.generate_slug (title)) STORED,
   meta_description VARCHAR(250) CHECK (TRIM(meta_description) != ''),
   meta_author VARCHAR(100) CHECK (TRIM(meta_author) != ''),
   cover_image UUID REFERENCES internal.media (id) ON DELETE SET NULL,
@@ -140,14 +141,6 @@ CREATE TABLE internal.footer (
   last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
 );
 
-CREATE TABLE internal.legal_information (
-  website_id UUID PRIMARY KEY REFERENCES internal.website (id) ON DELETE CASCADE,
-  main_content VARCHAR(200000) NOT NULL CHECK (TRIM(main_content) != ''),
-  created_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
-  last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
-  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
-);
-
 CREATE TABLE internal.collab (
   website_id UUID REFERENCES internal.website (id) ON DELETE CASCADE,
   user_id UUID REFERENCES internal.user (id) ON DELETE CASCADE,
@@ -161,8 +154,6 @@ CREATE TABLE internal.collab (
 -- migrate:down
 DROP TABLE internal.collab;
 
-DROP TABLE internal.legal_information;
-
 DROP TABLE internal.footer;
 
 DROP TABLE internal.article;
@@ -183,7 +174,7 @@ DROP TABLE internal.user;
 
 DROP SCHEMA api;
 
-DROP FUNCTION internal.immutable_unaccent;
+DROP FUNCTION internal.generate_slug;
 
 DROP SCHEMA internal;
 
diff --git a/rest-api/db/migrations/20240720132802_exposed_views_functions.sql b/rest-api/db/migrations/20240720132802_exposed_views_functions.sql
index fa3a980..734d308 100644
--- a/rest-api/db/migrations/20240720132802_exposed_views_functions.sql
+++ b/rest-api/db/migrations/20240720132802_exposed_views_functions.sql
@@ -70,13 +70,6 @@ SELECT
 FROM
   internal.footer;
 
-CREATE VIEW api.legal_information WITH ( security_invoker = ON
-) AS
-SELECT
-  *
-FROM
-  internal.legal_information;
-
 CREATE VIEW api.collab WITH ( security_invoker = ON
 ) AS
 SELECT
@@ -137,7 +130,7 @@ GRANT SELECT ON api.account TO authenticated_user;
 
 GRANT SELECT ON api.user TO authenticated_user;
 
-GRANT SELECT, UPDATE (title, is_published), DELETE ON internal.website TO authenticated_user;
+GRANT SELECT, UPDATE (title), DELETE ON internal.website TO authenticated_user;
 
 GRANT SELECT, UPDATE, DELETE ON api.website TO authenticated_user;
 
@@ -165,10 +158,6 @@ GRANT SELECT, UPDATE (additional_text) ON internal.footer TO authenticated_user;
 
 GRANT SELECT, UPDATE ON api.footer TO authenticated_user;
 
-GRANT SELECT, INSERT (website_id, main_content), UPDATE (website_id, main_content), DELETE ON internal.legal_information TO authenticated_user;
-
-GRANT SELECT, INSERT, UPDATE, DELETE ON api.legal_information TO authenticated_user;
-
 GRANT SELECT, INSERT (website_id, user_id, permission_level), UPDATE (permission_level), DELETE ON internal.collab TO authenticated_user;
 
 GRANT SELECT, INSERT, UPDATE, DELETE ON api.collab TO authenticated_user;
@@ -178,8 +167,6 @@ DROP FUNCTION api.create_website;
 
 DROP VIEW api.collab;
 
-DROP VIEW api.legal_information;
-
 DROP VIEW api.footer;
 
 DROP VIEW api.home;
diff --git a/rest-api/db/migrations/20240724191017_row_level_security.sql b/rest-api/db/migrations/20240724191017_row_level_security.sql
index 479973c..e6bfd5e 100644
--- a/rest-api/db/migrations/20240724191017_row_level_security.sql
+++ b/rest-api/db/migrations/20240724191017_row_level_security.sql
@@ -17,8 +17,6 @@ ALTER TABLE internal.docs_category ENABLE ROW LEVEL SECURITY;
 
 ALTER TABLE internal.footer ENABLE ROW LEVEL SECURITY;
 
-ALTER TABLE internal.legal_information ENABLE ROW LEVEL SECURITY;
-
 ALTER TABLE internal.collab ENABLE ROW LEVEL SECURITY;
 
 CREATE FUNCTION internal.user_has_website_access (website_id UUID, required_permission INT, collaborator_permission_level INT DEFAULT NULL, collaborator_user_id UUID DEFAULT NULL, article_user_id UUID DEFAULT NULL, raise_error BOOLEAN DEFAULT TRUE, OUT has_access BOOLEAN)
@@ -155,22 +153,6 @@ CREATE POLICY update_footer ON internal.footer
   FOR UPDATE
     USING (internal.user_has_website_access (website_id, 20));
 
-CREATE POLICY view_legal_information ON internal.legal_information
-  FOR SELECT
-    USING (internal.user_has_website_access (website_id, 10));
-
-CREATE POLICY update_legal_information ON internal.legal_information
-  FOR UPDATE
-    USING (internal.user_has_website_access (website_id, 30));
-
-CREATE POLICY delete_legal_information ON internal.legal_information
-  FOR DELETE
-    USING (internal.user_has_website_access (website_id, 30));
-
-CREATE POLICY insert_legal_information ON internal.legal_information
-  FOR INSERT
-    WITH CHECK (internal.user_has_website_access (website_id, 30));
-
 CREATE POLICY view_collaborations ON internal.collab
   FOR SELECT
     USING (internal.user_has_website_access (website_id, 10));
@@ -232,14 +214,6 @@ DROP POLICY view_footer ON internal.footer;
 
 DROP POLICY update_footer ON internal.footer;
 
-DROP POLICY insert_legal_information ON internal.legal_information;
-
-DROP POLICY delete_legal_information ON internal.legal_information;
-
-DROP POLICY update_legal_information ON internal.legal_information;
-
-DROP POLICY view_legal_information ON internal.legal_information;
-
 DROP POLICY view_collaborations ON internal.collab;
 
 DROP POLICY insert_collaborations ON internal.collab;
@@ -268,7 +242,5 @@ ALTER TABLE internal.docs_category DISABLE ROW LEVEL SECURITY;
 
 ALTER TABLE internal.footer DISABLE ROW LEVEL SECURITY;
 
-ALTER TABLE internal.legal_information DISABLE ROW LEVEL SECURITY;
-
 ALTER TABLE internal.collab DISABLE ROW LEVEL SECURITY;
 
diff --git a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
index 71075cb..1ee502b 100644
--- a/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
+++ b/rest-api/db/migrations/20240805132306_last_modified_triggers.sql
@@ -68,11 +68,6 @@ CREATE TRIGGER update_footer_last_modified
   FOR EACH ROW
   EXECUTE FUNCTION internal.update_last_modified ();
 
-CREATE TRIGGER update_legal_information_last_modified
-  BEFORE INSERT OR UPDATE OR DELETE ON internal.legal_information
-  FOR EACH ROW
-  EXECUTE FUNCTION internal.update_last_modified ();
-
 CREATE TRIGGER update_collab_last_modified
   BEFORE INSERT OR UPDATE OR DELETE ON internal.collab
   FOR EACH ROW
@@ -93,8 +88,6 @@ DROP TRIGGER update_docs_category_modified ON internal.docs_category;
 
 DROP TRIGGER update_footer_last_modified ON internal.footer;
 
-DROP TRIGGER update_legal_information_last_modified ON internal.legal_information;
-
 DROP TRIGGER update_collab_last_modified ON internal.collab;
 
 DROP FUNCTION internal.update_last_modified;
diff --git a/rest-api/db/migrations/20240911070907_change_log.sql b/rest-api/db/migrations/20240911070907_change_log.sql
index 580f03e..6f17b1a 100644
--- a/rest-api/db/migrations/20240911070907_change_log.sql
+++ b/rest-api/db/migrations/20240911070907_change_log.sql
@@ -127,11 +127,6 @@ CREATE TRIGGER track_changes_footer
   FOR EACH ROW
   EXECUTE FUNCTION internal.track_changes ();
 
-CREATE TRIGGER track_changes_legal_information
-  AFTER INSERT OR UPDATE OR DELETE ON internal.legal_information
-  FOR EACH ROW
-  EXECUTE FUNCTION internal.track_changes ();
-
 CREATE TRIGGER track_changes_collab
   AFTER INSERT OR UPDATE OR DELETE ON internal.collab
   FOR EACH ROW
@@ -154,8 +149,6 @@ DROP TRIGGER track_changes_docs_category ON internal.docs_category;
 
 DROP TRIGGER track_changes_footer ON internal.footer;
 
-DROP TRIGGER track_changes_legal_information ON internal.legal_information;
-
 DROP TRIGGER track_changes_collab ON internal.collab;
 
 DROP FUNCTION internal.track_changes;
diff --git a/rest-api/db/migrations/20240920090915_custom_domain_prefix.sql b/rest-api/db/migrations/20240920090915_custom_domain_prefix.sql
deleted file mode 100644
index b7a96d5..0000000
--- a/rest-api/db/migrations/20240920090915_custom_domain_prefix.sql
+++ /dev/null
@@ -1,108 +0,0 @@
--- migrate:up
-CREATE TABLE internal.domain_prefix (
-  website_id UUID PRIMARY KEY REFERENCES internal.website (id) ON DELETE CASCADE,
-  prefix VARCHAR(16) UNIQUE NOT NULL CHECK (LENGTH(prefix) >= 3 AND prefix ~ '^[a-z]+(-[a-z]+)*$' AND prefix != 'previews'),
-  created_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
-  last_modified_at TIMESTAMPTZ NOT NULL DEFAULT CLOCK_TIMESTAMP(),
-  last_modified_by UUID REFERENCES internal.user (id) ON DELETE SET NULL
-);
-
-CREATE VIEW api.domain_prefix WITH ( security_invoker = ON
-) AS
-SELECT
-  *
-FROM
-  internal.domain_prefix;
-
-GRANT SELECT ON internal.domain_prefix TO authenticated_user;
-
-GRANT SELECT ON api.domain_prefix TO authenticated_user;
-
-ALTER TABLE internal.domain_prefix ENABLE ROW LEVEL SECURITY;
-
-CREATE POLICY view_domain_prefix ON internal.domain_prefix
-  FOR SELECT
-    USING (internal.user_has_website_access (website_id, 10));
-
-CREATE FUNCTION api.set_domain_prefix (website_id UUID, prefix VARCHAR(16), OUT was_set BOOLEAN)
-AS $$
-DECLARE
-  _has_access BOOLEAN;
-  _old_domain_prefix VARCHAR(16);
-  _base_path CONSTANT TEXT := '/var/www/archtika-websites/';
-  _old_path TEXT;
-  _new_path TEXT;
-BEGIN
-  _has_access = internal.user_has_website_access (set_domain_prefix.website_id, 30);
-  SELECT
-    d.prefix INTO _old_domain_prefix
-  FROM
-    internal.domain_prefix AS d
-  WHERE
-    d.website_id = set_domain_prefix.website_id;
-  INSERT INTO internal.domain_prefix (website_id, prefix)
-    VALUES (set_domain_prefix.website_id, set_domain_prefix.prefix)
-  ON CONFLICT ON CONSTRAINT domain_prefix_pkey
-    DO UPDATE SET
-      prefix = EXCLUDED.prefix;
-  _old_path = _base_path || COALESCE(_old_domain_prefix, set_domain_prefix.website_id::TEXT);
-  _new_path = _base_path || set_domain_prefix.prefix;
-  IF _old_path != _new_path THEN
-    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''mv -T %s %s''', _old_path, _new_path);
-  END IF;
-  was_set := TRUE;
-END;
-$$
-LANGUAGE plpgsql
-SECURITY DEFINER;
-
-GRANT EXECUTE ON FUNCTION api.set_domain_prefix TO authenticated_user;
-
-CREATE FUNCTION api.delete_domain_prefix (website_id UUID, OUT was_deleted BOOLEAN)
-AS $$
-DECLARE
-  _has_access BOOLEAN;
-  _old_domain_prefix VARCHAR(16);
-  _base_path CONSTANT TEXT := '/var/www/archtika-websites/';
-  _old_path TEXT;
-  _new_path TEXT;
-BEGIN
-  _has_access = internal.user_has_website_access (delete_domain_prefix.website_id, 30);
-  DELETE FROM internal.domain_prefix AS d
-  WHERE d.website_id = delete_domain_prefix.website_id
-  RETURNING
-    prefix INTO _old_domain_prefix;
-  _old_path = _base_path || _old_domain_prefix;
-  _new_path = _base_path || delete_domain_prefix.website_id;
-  EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''mv -T %s %s''', _old_path, _new_path);
-  was_deleted := TRUE;
-END;
-$$
-LANGUAGE plpgsql
-SECURITY DEFINER;
-
-GRANT EXECUTE ON FUNCTION api.delete_domain_prefix TO authenticated_user;
-
-CREATE TRIGGER update_domain_prefix_last_modified
-  BEFORE INSERT OR UPDATE OR DELETE ON internal.domain_prefix
-  FOR EACH ROW
-  EXECUTE FUNCTION internal.update_last_modified ();
-
-CREATE TRIGGER track_changes_domain_prefix
-  AFTER INSERT OR UPDATE OR DELETE ON internal.domain_prefix
-  FOR EACH ROW
-  EXECUTE FUNCTION internal.track_changes ();
-
--- migrate:down
-DROP TRIGGER track_changes_domain_prefix ON internal.domain_prefix;
-
-DROP TRIGGER update_domain_prefix_last_modified ON internal.domain_prefix;
-
-DROP FUNCTION api.set_domain_prefix;
-
-DROP FUNCTION api.delete_domain_prefix;
-
-DROP VIEW api.domain_prefix;
-
-DROP TABLE internal.domain_prefix;
-
diff --git a/rest-api/db/migrations/20241006165029_administrator.sql b/rest-api/db/migrations/20241006165029_administrator.sql
index 3d151f7..73ab963 100644
--- a/rest-api/db/migrations/20241006165029_administrator.sql
+++ b/rest-api/db/migrations/20241006165029_administrator.sql
@@ -12,14 +12,14 @@ CREATE FUNCTION api.user_websites_storage_size ()
   AS $$
 DECLARE
   _user_id UUID := (CURRENT_SETTING('request.jwt.claims', TRUE)::JSON ->> 'user_id')::UUID;
-  _tables TEXT[] := ARRAY['article', 'collab', 'docs_category', 'domain_prefix', 'footer', 'header', 'home', 'legal_information', 'media', 'settings', 'change_log'];
+  _tables TEXT[] := ARRAY['article', 'collab', 'docs_category', 'footer', 'header', 'home', 'media', 'settings', 'change_log'];
   _query TEXT;
   _union_queries TEXT := '';
 BEGIN
   FOR i IN 1..ARRAY_LENGTH(_tables, 1)
   LOOP
     _union_queries := _union_queries || FORMAT('
-      SELECT SUM(PG_COLUMN_SIZE(t)) FROM internal.%s AS t WHERE t.website_id = w.id', _tables[i]);
+      SELECT SUM(PG_COLUMN_SIZE(t)) FROM internal.%I AS t WHERE t.website_id = w.id', _tables[i]);
     IF i < ARRAY_LENGTH(_tables, 1) THEN
       _union_queries := _union_queries || ' UNION ALL ';
     END IF;
@@ -67,14 +67,14 @@ DECLARE
     WHERE
       w.id = _website_id);
   _max_storage_bytes BIGINT := _max_storage_mb::BIGINT * 1024 * 1024;
-  _tables TEXT[] := ARRAY['article', 'collab', 'docs_category', 'domain_prefix', 'footer', 'header', 'home', 'legal_information', 'media', 'settings', 'change_log'];
+  _tables TEXT[] := ARRAY['article', 'collab', 'docs_category', 'footer', 'header', 'home', 'media', 'settings', 'change_log'];
   _union_queries TEXT := '';
   _query TEXT;
 BEGIN
   FOR i IN 1..ARRAY_LENGTH(_tables, 1)
   LOOP
     _union_queries := _union_queries || FORMAT('
-      SELECT SUM(PG_COLUMN_SIZE(t)) FROM internal.%s AS t WHERE t.website_id = $1', _tables[i]);
+      SELECT SUM(PG_COLUMN_SIZE(t)) FROM internal.%I AS t WHERE t.website_id = $1', _tables[i]);
     IF i < ARRAY_LENGTH(_tables, 1) THEN
       _union_queries := _union_queries || ' UNION ALL ';
     END IF;
@@ -109,11 +109,6 @@ CREATE TRIGGER _prevent_storage_excess_docs_category
   FOR EACH ROW
   EXECUTE FUNCTION internal.prevent_website_storage_size_excess ();
 
-CREATE TRIGGER _prevent_storage_excess_domain_prefix
-  BEFORE INSERT OR UPDATE ON internal.domain_prefix
-  FOR EACH ROW
-  EXECUTE FUNCTION internal.prevent_website_storage_size_excess ();
-
 CREATE TRIGGER _prevent_storage_excess_footer
   BEFORE UPDATE ON internal.footer
   FOR EACH ROW
@@ -129,11 +124,6 @@ CREATE TRIGGER _prevent_storage_excess_home
   FOR EACH ROW
   EXECUTE FUNCTION internal.prevent_website_storage_size_excess ();
 
-CREATE TRIGGER _prevent_storage_excess_legal_information
-  BEFORE INSERT OR UPDATE ON internal.legal_information
-  FOR EACH ROW
-  EXECUTE FUNCTION internal.prevent_website_storage_size_excess ();
-
 CREATE TRIGGER _prevent_storage_excess_media
   BEFORE INSERT ON internal.media
   FOR EACH ROW
@@ -159,16 +149,12 @@ DROP TRIGGER _prevent_storage_excess_collab ON internal.collab;
 
 DROP TRIGGER _prevent_storage_excess_docs_category ON internal.docs_category;
 
-DROP TRIGGER _prevent_storage_excess_domain_prefix ON internal.domain_prefix;
-
 DROP TRIGGER _prevent_storage_excess_footer ON internal.footer;
 
 DROP TRIGGER _prevent_storage_excess_header ON internal.header;
 
 DROP TRIGGER _prevent_storage_excess_home ON internal.home;
 
-DROP TRIGGER _prevent_storage_excess_legal_information ON internal.legal_information;
-
 DROP TRIGGER _prevent_storage_excess_media ON internal.media;
 
 DROP TRIGGER _prevent_storage_excess_settings ON internal.settings;
diff --git a/rest-api/db/migrations/20241011092744_filesystem_triggers.sql b/rest-api/db/migrations/20241011092744_filesystem_triggers.sql
index 52fe174..ca6d043 100644
--- a/rest-api/db/migrations/20241011092744_filesystem_triggers.sql
+++ b/rest-api/db/migrations/20241011092744_filesystem_triggers.sql
@@ -4,28 +4,32 @@ CREATE FUNCTION internal.cleanup_filesystem ()
   AS $$
 DECLARE
   _website_id UUID;
-  _domain_prefix VARCHAR(16);
-  _base_path CONSTANT TEXT := '/var/www/archtika-websites/';
+  _website_user_id UUID;
+  _website_slug TEXT;
+  _username TEXT;
+  _base_path CONSTANT TEXT := '/var/www/archtika-websites';
   _preview_path TEXT;
   _prod_path TEXT;
   _article_slug TEXT;
 BEGIN
   IF TG_TABLE_NAME = 'website' THEN
     _website_id := OLD.id;
+    _website_user_id = OLD.user_id;
+    _website_slug := OLD.slug;
   ELSE
     _website_id := OLD.website_id;
   END IF;
   SELECT
-    d.prefix INTO _domain_prefix
+    u.username INTO _username
   FROM
-    internal.domain_prefix AS d
+    internal.user AS u
   WHERE
-    d.website_id = _website_id;
-  _preview_path := _base_path || 'previews/' || _website_id;
-  _prod_path := _base_path || COALESCE(_domain_prefix, _website_id::TEXT);
+    u.id = _website_user_id;
+  _preview_path := _base_path || '/previews/' || _website_id;
+  _prod_path := _base_path || '/' || _username || '/' || _website_slug;
   IF TG_TABLE_NAME = 'website' THEN
-    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -rf %s''', _preview_path);
-    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -rf %s''', _prod_path);
+    EXECUTE FORMAT('COPY (SELECT 1) TO PROGRAM ''rm -rf %s''', _preview_path);
+    EXECUTE FORMAT('COPY (SELECT 1) TO PROGRAM ''rm -rf %s''', _prod_path);
   ELSIF TG_TABLE_NAME = 'article' THEN
     SELECT
       a.slug INTO _article_slug
@@ -33,11 +37,7 @@ BEGIN
       internal.article AS a
     WHERE
       a.id = OLD.id;
-    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -f %s/articles/%s.html''', _preview_path, _article_slug);
-    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -f %s/articles/%s.html''', _prod_path, _article_slug);
-  ELSIF TG_TABLE_NAME = 'legal_information' THEN
-    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -f %s/legal-information.html''', _preview_path);
-    EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''rm -f %s/legal-information.html''', _prod_path);
+    EXECUTE FORMAT('COPY (SELECT 1) TO PROGRAM ''rm -f %s/articles/%s.html''', _preview_path, _article_slug);
   END IF;
   RETURN COALESCE(NEW, OLD);
 END;
@@ -46,7 +46,7 @@ LANGUAGE plpgsql
 SECURITY DEFINER;
 
 CREATE TRIGGER _cleanup_filesystem_website
-  BEFORE DELETE ON internal.website
+  BEFORE UPDATE OR DELETE ON internal.website
   FOR EACH ROW
   EXECUTE FUNCTION internal.cleanup_filesystem ();
 
@@ -55,17 +55,10 @@ CREATE TRIGGER _cleanup_filesystem_article
   FOR EACH ROW
   EXECUTE FUNCTION internal.cleanup_filesystem ();
 
-CREATE TRIGGER _cleanup_filesystem_legal_information
-  BEFORE DELETE ON internal.legal_information
-  FOR EACH ROW
-  EXECUTE FUNCTION internal.cleanup_filesystem ();
-
 -- migrate:down
 DROP TRIGGER _cleanup_filesystem_website ON internal.website;
 
 DROP TRIGGER _cleanup_filesystem_article ON internal.article;
 
-DROP TRIGGER _cleanup_filesystem_legal_information ON internal.legal_information;
-
 DROP FUNCTION internal.cleanup_filesystem;
 
diff --git a/rest-api/db/migrations/20241029160539_export_articles.sql b/rest-api/db/migrations/20241029160539_export_articles.sql
index a4eb7a2..eff2d20 100644
--- a/rest-api/db/migrations/20241029160539_export_articles.sql
+++ b/rest-api/db/migrations/20241029160539_export_articles.sql
@@ -9,35 +9,28 @@ DECLARE
   _markdown_dir TEXT := '/tmp/website-' || export_articles_zip.website_id;
 BEGIN
   _has_access = internal.user_has_website_access (export_articles_zip.website_id, 20);
-
   SELECT
     FORMAT('[{ "Content-Type": "application/gzip" },'
-    '{ "Content-Disposition": "attachment; filename=\"%s\"" }]',
-    'archtika-export-articles-' || export_articles_zip.website_id || '.tar.gz') INTO _headers;
+    '{ "Content-Disposition": "attachment; filename=\"%s\"" }]', 'archtika-export-articles-' || export_articles_zip.website_id || '.tar.gz') INTO _headers;
   PERFORM
     SET_CONFIG('response.headers', _headers, TRUE);
-
-  EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''mkdir -p %s''', _markdown_dir || '/articles');
-
+  EXECUTE FORMAT('COPY (SELECT 1) TO PROGRAM ''mkdir -p %s''', _markdown_dir || '/articles');
   FOR _article IN (
-    SELECT a.id, a.website_id, a.slug, a.main_content
-    FROM internal.article AS a
-    WHERE a.website_id = export_articles_zip.website_id)
-  LOOP
-    EXECUTE FORMAT(
-      'COPY (SELECT %L) TO ''%s''',
-      _article.main_content,
-      _markdown_dir || '/articles/' || _article.slug || '.md'
-    );
-  END LOOP;
-
-  EXECUTE FORMAT('COPY (SELECT '''') TO PROGRAM ''tar -czf %s -C %s articles && rm %s''',
-    _markdown_dir || '/export.tar.gz',
-    _markdown_dir,
-    _markdown_dir || '/articles/*.md'
-  );
-
-  RETURN pg_read_binary_file(_markdown_dir || '/export.tar.gz');
+    SELECT
+      a.id,
+      a.website_id,
+      a.slug,
+      a.main_content
+    FROM
+      internal.article AS a
+    WHERE
+      a.website_id = export_articles_zip.website_id)
+    LOOP
+      EXECUTE FORMAT('COPY (SELECT %L) TO ''%s'' WITH (FORMAT CSV)', COALESCE(_article.main_content, 'No content yet'), _markdown_dir || '/articles/' || _article.slug || '.md');
+      EXECUTE FORMAT('COPY (SELECT 1) TO PROGRAM ''sed -i "s/^\"//;s/\"$//;s/\"\"/\"/g" %s''', _markdown_dir || '/articles/' || _article.slug || '.md');
+    END LOOP;
+  EXECUTE FORMAT('COPY (SELECT 1) TO PROGRAM ''tar -czf %s -C %s articles && rm %s''', _markdown_dir || '/export.tar.gz', _markdown_dir, _markdown_dir || '/articles/*.md');
+  RETURN PG_READ_BINARY_FILE(_markdown_dir || '/export.tar.gz');
 END;
 $$
 LANGUAGE plpgsql
@@ -47,3 +40,4 @@ GRANT EXECUTE ON FUNCTION api.export_articles_zip TO authenticated_user;
 
 -- migrate:down
 DROP FUNCTION api.export_articles_zip;
+
diff --git a/web-app/package-lock.json b/web-app/package-lock.json
index 7ef462a..037bc65 100644
--- a/web-app/package-lock.json
+++ b/web-app/package-lock.json
@@ -25,7 +25,7 @@
         "@types/eslint__js": "8.42.3",
         "@types/eslint-config-prettier": "6.11.3",
         "@types/node": "22.5.5",
-        "eslint": "9.10.0",
+        "eslint": "9.15.0",
         "eslint-config-prettier": "9.1.0",
         "eslint-plugin-svelte": "2.44.0",
         "globals": "15.9.0",
@@ -445,17 +445,20 @@
       }
     },
     "node_modules/@eslint-community/eslint-utils": {
-      "version": "4.4.0",
-      "resolved": "https://registry.npmjs.org/@eslint-community/eslint-utils/-/eslint-utils-4.4.0.tgz",
-      "integrity": "sha512-1/sA4dwrzBAyeUoQ6oxahHKmrZvsnLCg4RfxW3ZFGGmQkSNQPFNLV9CUEFQP1x9EYXHTo5p6xdhZM1Ne9p/AfA==",
+      "version": "4.4.1",
+      "resolved": "https://registry.npmjs.org/@eslint-community/eslint-utils/-/eslint-utils-4.4.1.tgz",
+      "integrity": "sha512-s3O3waFUrMV8P/XaF/+ZTp1X9XBZW1a4B97ZnjQF2KYWaFD2A8KyFBsrsfSjEmjn3RGWAIuvlneuZm3CUK3jbA==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
-        "eslint-visitor-keys": "^3.3.0"
+        "eslint-visitor-keys": "^3.4.3"
       },
       "engines": {
         "node": "^12.22.0 || ^14.17.0 || >=16.0.0"
       },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      },
       "peerDependencies": {
         "eslint": "^6.0.0 || ^7.0.0 || >=8.0.0"
       }
@@ -474,9 +477,9 @@
       }
     },
     "node_modules/@eslint-community/regexpp": {
-      "version": "4.11.0",
-      "resolved": "https://registry.npmjs.org/@eslint-community/regexpp/-/regexpp-4.11.0.tgz",
-      "integrity": "sha512-G/M/tIiMrTAxEWRfLfQJMmGNX28IxBg4PBz8XqQhqUHLFI6TL2htpIB1iQCj144V5ee/JaKyT9/WZ0MGZWfA7A==",
+      "version": "4.12.1",
+      "resolved": "https://registry.npmjs.org/@eslint-community/regexpp/-/regexpp-4.12.1.tgz",
+      "integrity": "sha512-CCZCDJuduB9OUkFkY2IgppNZMi2lBQgD2qzwXkEia16cge2pijY/aXi96CJMquDMn3nJdlPV1A5KrJEXwfLNzQ==",
       "dev": true,
       "license": "MIT",
       "engines": {
@@ -484,9 +487,9 @@
       }
     },
     "node_modules/@eslint/config-array": {
-      "version": "0.18.0",
-      "resolved": "https://registry.npmjs.org/@eslint/config-array/-/config-array-0.18.0.tgz",
-      "integrity": "sha512-fTxvnS1sRMu3+JjXwJG0j/i4RT9u4qJ+lqS/yCGap4lH4zZGzQ7tu+xZqQmcMZq5OBZDL4QRxQzRjkWcGt8IVw==",
+      "version": "0.19.0",
+      "resolved": "https://registry.npmjs.org/@eslint/config-array/-/config-array-0.19.0.tgz",
+      "integrity": "sha512-zdHg2FPIFNKPdcHWtiNT+jEFCHYVplAXRDlQDyqy0zGx/q2parwh7brGJSiTxRk/TSMkbM//zt/f5CHgyTyaSQ==",
       "dev": true,
       "license": "Apache-2.0",
       "dependencies": {
@@ -498,34 +501,20 @@
         "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
       }
     },
-    "node_modules/@eslint/config-array/node_modules/brace-expansion": {
-      "version": "1.1.11",
-      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-1.1.11.tgz",
-      "integrity": "sha512-iCuPHDFgrHX7H2vEI/5xpz07zSHB00TpugqhmYtVmMO6518mCuRMoOYFldEBl0g187ufozdaHgWKcYFb61qGiA==",
+    "node_modules/@eslint/core": {
+      "version": "0.9.0",
+      "resolved": "https://registry.npmjs.org/@eslint/core/-/core-0.9.0.tgz",
+      "integrity": "sha512-7ATR9F0e4W85D/0w7cU0SNj7qkAexMG+bAHEZOjo9akvGuhHE2m7umzWzfnpa0XAg5Kxc1BWmtPMV67jJ+9VUg==",
       "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "balanced-match": "^1.0.0",
-        "concat-map": "0.0.1"
-      }
-    },
-    "node_modules/@eslint/config-array/node_modules/minimatch": {
-      "version": "3.1.2",
-      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.1.2.tgz",
-      "integrity": "sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw==",
-      "dev": true,
-      "license": "ISC",
-      "dependencies": {
-        "brace-expansion": "^1.1.7"
-      },
+      "license": "Apache-2.0",
       "engines": {
-        "node": "*"
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
       }
     },
     "node_modules/@eslint/eslintrc": {
-      "version": "3.1.0",
-      "resolved": "https://registry.npmjs.org/@eslint/eslintrc/-/eslintrc-3.1.0.tgz",
-      "integrity": "sha512-4Bfj15dVJdoy3RfZmmo86RK1Fwzn6SstsvK9JS+BaVKqC6QQQQyXekNaC+g+LKNgkQ+2VhGAzm6hO40AhMR3zQ==",
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/@eslint/eslintrc/-/eslintrc-3.2.0.tgz",
+      "integrity": "sha512-grOjVNN8P3hjJn/eIETF1wwd12DdnwFDoyceUJLYYdkpbwq3nLi+4fqrTAONx7XDALqlL220wC/RHSC/QTI/0w==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
@@ -546,17 +535,6 @@
         "url": "https://opencollective.com/eslint"
       }
     },
-    "node_modules/@eslint/eslintrc/node_modules/brace-expansion": {
-      "version": "1.1.11",
-      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-1.1.11.tgz",
-      "integrity": "sha512-iCuPHDFgrHX7H2vEI/5xpz07zSHB00TpugqhmYtVmMO6518mCuRMoOYFldEBl0g187ufozdaHgWKcYFb61qGiA==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "balanced-match": "^1.0.0",
-        "concat-map": "0.0.1"
-      }
-    },
     "node_modules/@eslint/eslintrc/node_modules/globals": {
       "version": "14.0.0",
       "resolved": "https://registry.npmjs.org/globals/-/globals-14.0.0.tgz",
@@ -570,23 +548,10 @@
         "url": "https://github.com/sponsors/sindresorhus"
       }
     },
-    "node_modules/@eslint/eslintrc/node_modules/minimatch": {
-      "version": "3.1.2",
-      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.1.2.tgz",
-      "integrity": "sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw==",
-      "dev": true,
-      "license": "ISC",
-      "dependencies": {
-        "brace-expansion": "^1.1.7"
-      },
-      "engines": {
-        "node": "*"
-      }
-    },
     "node_modules/@eslint/js": {
-      "version": "9.10.0",
-      "resolved": "https://registry.npmjs.org/@eslint/js/-/js-9.10.0.tgz",
-      "integrity": "sha512-fuXtbiP5GWIn8Fz+LWoOMVf/Jxm+aajZYkhi6CuEm4SxymFM+eUWzbO9qXT+L0iCkL5+KGYMCSGxo686H19S1g==",
+      "version": "9.15.0",
+      "resolved": "https://registry.npmjs.org/@eslint/js/-/js-9.15.0.tgz",
+      "integrity": "sha512-tMTqrY+EzbXmKJR5ToI8lxu7jaN5EdmrBFJpQk5JmSlyLsx6o4t27r883K5xsLuCYCpfKBCGswMSWXsM+jB7lg==",
       "dev": true,
       "license": "MIT",
       "engines": {
@@ -604,9 +569,9 @@
       }
     },
     "node_modules/@eslint/plugin-kit": {
-      "version": "0.1.0",
-      "resolved": "https://registry.npmjs.org/@eslint/plugin-kit/-/plugin-kit-0.1.0.tgz",
-      "integrity": "sha512-autAXT203ixhqei9xt+qkYOvY8l6LAFIdT2UXc/RPNeUVfqRF1BV94GTJyVPFKT8nFM6MyVJhjLj9E8JWvf5zQ==",
+      "version": "0.2.3",
+      "resolved": "https://registry.npmjs.org/@eslint/plugin-kit/-/plugin-kit-0.2.3.tgz",
+      "integrity": "sha512-2b/g5hRmpbb1o4GnTZax9N9m0FXzz9OV42ZzI4rDDMDuHUqigAiQCEWChBWCY4ztAGVRjoWT19v0yMmc5/L5kA==",
       "dev": true,
       "license": "Apache-2.0",
       "dependencies": {
@@ -616,6 +581,44 @@
         "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
       }
     },
+    "node_modules/@humanfs/core": {
+      "version": "0.19.1",
+      "resolved": "https://registry.npmjs.org/@humanfs/core/-/core-0.19.1.tgz",
+      "integrity": "sha512-5DyQ4+1JEUzejeK1JGICcideyfUbGixgS9jNgex5nqkW+cY7WZhxBigmieN5Qnw9ZosSNVC9KQKyb+GUaGyKUA==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "engines": {
+        "node": ">=18.18.0"
+      }
+    },
+    "node_modules/@humanfs/node": {
+      "version": "0.16.6",
+      "resolved": "https://registry.npmjs.org/@humanfs/node/-/node-0.16.6.tgz",
+      "integrity": "sha512-YuI2ZHQL78Q5HbhDiBA1X4LmYdXCKCMQIfw0pw7piHJwyREFebJUvrQN4cMssyES6x+vfUbx1CIpaQUKYdQZOw==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@humanfs/core": "^0.19.1",
+        "@humanwhocodes/retry": "^0.3.0"
+      },
+      "engines": {
+        "node": ">=18.18.0"
+      }
+    },
+    "node_modules/@humanfs/node/node_modules/@humanwhocodes/retry": {
+      "version": "0.3.1",
+      "resolved": "https://registry.npmjs.org/@humanwhocodes/retry/-/retry-0.3.1.tgz",
+      "integrity": "sha512-JBxkERygn7Bv/GbN5Rv8Ul6LVknS+5Bp6RgDC/O8gEBU/yeH5Ui5C/OlWrTb6qct7LjjfT6Re2NxB0ln0yYybA==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "engines": {
+        "node": ">=18.18"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/nzakas"
+      }
+    },
     "node_modules/@humanwhocodes/module-importer": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/@humanwhocodes/module-importer/-/module-importer-1.0.1.tgz",
@@ -631,9 +634,9 @@
       }
     },
     "node_modules/@humanwhocodes/retry": {
-      "version": "0.3.0",
-      "resolved": "https://registry.npmjs.org/@humanwhocodes/retry/-/retry-0.3.0.tgz",
-      "integrity": "sha512-d2CGZR2o7fS6sWB7DG/3a95bGKQyHMACZ5aW8qGkkqQpUoZV6C0X7Pc7l4ZNMZkfNBf4VWNe9E1jRsf0G146Ew==",
+      "version": "0.4.1",
+      "resolved": "https://registry.npmjs.org/@humanwhocodes/retry/-/retry-0.4.1.tgz",
+      "integrity": "sha512-c7hNEllBlenFTHBky65mhq8WD2kbN9Q6gk0bTk8lSBvc554jpXSkST1iePudpt7+A/AQvuHs9EMqjHDXMY1lrA==",
       "dev": true,
       "license": "Apache-2.0",
       "engines": {
@@ -781,16 +784,16 @@
       }
     },
     "node_modules/@polka/url": {
-      "version": "1.0.0-next.25",
-      "resolved": "https://registry.npmjs.org/@polka/url/-/url-1.0.0-next.25.tgz",
-      "integrity": "sha512-j7P6Rgr3mmtdkeDGTe0E/aYyWEWVtc5yFXtHCRHs28/jptDEWfaVOc5T7cblqy1XKPPfCxJc/8DwQ5YgLOZOVQ==",
+      "version": "1.0.0-next.28",
+      "resolved": "https://registry.npmjs.org/@polka/url/-/url-1.0.0-next.28.tgz",
+      "integrity": "sha512-8LduaNlMZGwdZ6qWrKlfa+2M4gahzFkprZiAt2TF8uS0qQgBizKXpXURqvTJ4WtmupWxaLqjRb2UCTe72mu+Aw==",
       "dev": true,
       "license": "MIT"
     },
     "node_modules/@rollup/plugin-commonjs": {
-      "version": "26.0.1",
-      "resolved": "https://registry.npmjs.org/@rollup/plugin-commonjs/-/plugin-commonjs-26.0.1.tgz",
-      "integrity": "sha512-UnsKoZK6/aGIH6AdkptXhNvhaqftcjq3zZdT+LY5Ftms6JR06nADcDsYp5hTU9E2lbJUEOhdlY5J4DNTneM+jQ==",
+      "version": "26.0.3",
+      "resolved": "https://registry.npmjs.org/@rollup/plugin-commonjs/-/plugin-commonjs-26.0.3.tgz",
+      "integrity": "sha512-2BJcolt43MY+y5Tz47djHkodCC3c1VKVrBDKpVqHKpQ9z9S158kCCqB8NF6/gzxLdNlYW9abB3Ibh+kOWLp8KQ==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
@@ -835,16 +838,15 @@
       }
     },
     "node_modules/@rollup/plugin-node-resolve": {
-      "version": "15.2.3",
-      "resolved": "https://registry.npmjs.org/@rollup/plugin-node-resolve/-/plugin-node-resolve-15.2.3.tgz",
-      "integrity": "sha512-j/lym8nf5E21LwBT4Df1VD6hRO2L2iwUeUmP7litikRsVp1H6NWx20NEp0Y7su+7XGc476GnXXc4kFeZNGmaSQ==",
+      "version": "15.3.0",
+      "resolved": "https://registry.npmjs.org/@rollup/plugin-node-resolve/-/plugin-node-resolve-15.3.0.tgz",
+      "integrity": "sha512-9eO5McEICxMzJpDW9OnMYSv4Sta3hmt7VtBFz5zR9273suNOydOyq/FrGeGy+KsTRFm8w0SLVhzig2ILFT63Ag==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
         "@rollup/pluginutils": "^5.0.1",
         "@types/resolve": "1.20.2",
         "deepmerge": "^4.2.2",
-        "is-builtin-module": "^3.2.1",
         "is-module": "^1.0.0",
         "resolve": "^1.22.1"
       },
@@ -861,15 +863,15 @@
       }
     },
     "node_modules/@rollup/pluginutils": {
-      "version": "5.1.0",
-      "resolved": "https://registry.npmjs.org/@rollup/pluginutils/-/pluginutils-5.1.0.tgz",
-      "integrity": "sha512-XTIWOPPcpvyKI6L1NHo0lFlCyznUEyPmPY1mc3KpPVDYulHSTvyeLNVW00QTLIAFNhR3kYnJTQHeGqU4M3n09g==",
+      "version": "5.1.3",
+      "resolved": "https://registry.npmjs.org/@rollup/pluginutils/-/pluginutils-5.1.3.tgz",
+      "integrity": "sha512-Pnsb6f32CD2W3uCaLZIzDmeFyQ2b8UWMFI7xtwUezpcGBDVDW6y9XgAWIlARiGAo6eNF5FK5aQTr0LFyNyqq5A==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
         "@types/estree": "^1.0.0",
         "estree-walker": "^2.0.2",
-        "picomatch": "^2.3.1"
+        "picomatch": "^4.0.2"
       },
       "engines": {
         "node": ">=14.0.0"
@@ -884,9 +886,9 @@
       }
     },
     "node_modules/@rollup/rollup-android-arm-eabi": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-android-arm-eabi/-/rollup-android-arm-eabi-4.22.4.tgz",
-      "integrity": "sha512-Fxamp4aEZnfPOcGA8KSNEohV8hX7zVHOemC8jVBoBUHu5zpJK/Eu3uJwt6BMgy9fkvzxDaurgj96F/NiLukF2w==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-android-arm-eabi/-/rollup-android-arm-eabi-4.27.3.tgz",
+      "integrity": "sha512-EzxVSkIvCFxUd4Mgm4xR9YXrcp976qVaHnqom/Tgm+vU79k4vV4eYTjmRvGfeoW8m9LVcsAy/lGjcgVegKEhLQ==",
       "cpu": [
         "arm"
       ],
@@ -898,9 +900,9 @@
       ]
     },
     "node_modules/@rollup/rollup-android-arm64": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-android-arm64/-/rollup-android-arm64-4.22.4.tgz",
-      "integrity": "sha512-VXoK5UMrgECLYaMuGuVTOx5kcuap1Jm8g/M83RnCHBKOqvPPmROFJGQaZhGccnsFtfXQ3XYa4/jMCJvZnbJBdA==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-android-arm64/-/rollup-android-arm64-4.27.3.tgz",
+      "integrity": "sha512-LJc5pDf1wjlt9o/Giaw9Ofl+k/vLUaYsE2zeQGH85giX2F+wn/Cg8b3c5CDP3qmVmeO5NzwVUzQQxwZvC2eQKw==",
       "cpu": [
         "arm64"
       ],
@@ -912,9 +914,9 @@
       ]
     },
     "node_modules/@rollup/rollup-darwin-arm64": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-darwin-arm64/-/rollup-darwin-arm64-4.22.4.tgz",
-      "integrity": "sha512-xMM9ORBqu81jyMKCDP+SZDhnX2QEVQzTcC6G18KlTQEzWK8r/oNZtKuZaCcHhnsa6fEeOBionoyl5JsAbE/36Q==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-darwin-arm64/-/rollup-darwin-arm64-4.27.3.tgz",
+      "integrity": "sha512-OuRysZ1Mt7wpWJ+aYKblVbJWtVn3Cy52h8nLuNSzTqSesYw1EuN6wKp5NW/4eSre3mp12gqFRXOKTcN3AI3LqA==",
       "cpu": [
         "arm64"
       ],
@@ -926,9 +928,9 @@
       ]
     },
     "node_modules/@rollup/rollup-darwin-x64": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-darwin-x64/-/rollup-darwin-x64-4.22.4.tgz",
-      "integrity": "sha512-aJJyYKQwbHuhTUrjWjxEvGnNNBCnmpHDvrb8JFDbeSH3m2XdHcxDd3jthAzvmoI8w/kSjd2y0udT+4okADsZIw==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-darwin-x64/-/rollup-darwin-x64-4.27.3.tgz",
+      "integrity": "sha512-xW//zjJMlJs2sOrCmXdB4d0uiilZsOdlGQIC/jjmMWT47lkLLoB1nsNhPUcnoqyi5YR6I4h+FjBpILxbEy8JRg==",
       "cpu": [
         "x64"
       ],
@@ -939,10 +941,38 @@
         "darwin"
       ]
     },
+    "node_modules/@rollup/rollup-freebsd-arm64": {
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-freebsd-arm64/-/rollup-freebsd-arm64-4.27.3.tgz",
+      "integrity": "sha512-58E0tIcwZ+12nK1WiLzHOD8I0d0kdrY/+o7yFVPRHuVGY3twBwzwDdTIBGRxLmyjciMYl1B/U515GJy+yn46qw==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ]
+    },
+    "node_modules/@rollup/rollup-freebsd-x64": {
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-freebsd-x64/-/rollup-freebsd-x64-4.27.3.tgz",
+      "integrity": "sha512-78fohrpcVwTLxg1ZzBMlwEimoAJmY6B+5TsyAZ3Vok7YabRBUvjYTsRXPTjGEvv/mfgVBepbW28OlMEz4w8wGA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ]
+    },
     "node_modules/@rollup/rollup-linux-arm-gnueabihf": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm-gnueabihf/-/rollup-linux-arm-gnueabihf-4.22.4.tgz",
-      "integrity": "sha512-j63YtCIRAzbO+gC2L9dWXRh5BFetsv0j0va0Wi9epXDgU/XUi5dJKo4USTttVyK7fGw2nPWK0PbAvyliz50SCQ==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm-gnueabihf/-/rollup-linux-arm-gnueabihf-4.27.3.tgz",
+      "integrity": "sha512-h2Ay79YFXyQi+QZKo3ISZDyKaVD7uUvukEHTOft7kh00WF9mxAaxZsNs3o/eukbeKuH35jBvQqrT61fzKfAB/Q==",
       "cpu": [
         "arm"
       ],
@@ -954,9 +984,9 @@
       ]
     },
     "node_modules/@rollup/rollup-linux-arm-musleabihf": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm-musleabihf/-/rollup-linux-arm-musleabihf-4.22.4.tgz",
-      "integrity": "sha512-dJnWUgwWBX1YBRsuKKMOlXCzh2Wu1mlHzv20TpqEsfdZLb3WoJW2kIEsGwLkroYf24IrPAvOT/ZQ2OYMV6vlrg==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm-musleabihf/-/rollup-linux-arm-musleabihf-4.27.3.tgz",
+      "integrity": "sha512-Sv2GWmrJfRY57urktVLQ0VKZjNZGogVtASAgosDZ1aUB+ykPxSi3X1nWORL5Jk0sTIIwQiPH7iE3BMi9zGWfkg==",
       "cpu": [
         "arm"
       ],
@@ -968,9 +998,9 @@
       ]
     },
     "node_modules/@rollup/rollup-linux-arm64-gnu": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm64-gnu/-/rollup-linux-arm64-gnu-4.22.4.tgz",
-      "integrity": "sha512-AdPRoNi3NKVLolCN/Sp4F4N1d98c4SBnHMKoLuiG6RXgoZ4sllseuGioszumnPGmPM2O7qaAX/IJdeDU8f26Aw==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm64-gnu/-/rollup-linux-arm64-gnu-4.27.3.tgz",
+      "integrity": "sha512-FPoJBLsPW2bDNWjSrwNuTPUt30VnfM8GPGRoLCYKZpPx0xiIEdFip3dH6CqgoT0RnoGXptaNziM0WlKgBc+OWQ==",
       "cpu": [
         "arm64"
       ],
@@ -982,9 +1012,9 @@
       ]
     },
     "node_modules/@rollup/rollup-linux-arm64-musl": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm64-musl/-/rollup-linux-arm64-musl-4.22.4.tgz",
-      "integrity": "sha512-Gl0AxBtDg8uoAn5CCqQDMqAx22Wx22pjDOjBdmG0VIWX3qUBHzYmOKh8KXHL4UpogfJ14G4wk16EQogF+v8hmA==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm64-musl/-/rollup-linux-arm64-musl-4.27.3.tgz",
+      "integrity": "sha512-TKxiOvBorYq4sUpA0JT+Fkh+l+G9DScnG5Dqx7wiiqVMiRSkzTclP35pE6eQQYjP4Gc8yEkJGea6rz4qyWhp3g==",
       "cpu": [
         "arm64"
       ],
@@ -996,9 +1026,9 @@
       ]
     },
     "node_modules/@rollup/rollup-linux-powerpc64le-gnu": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-powerpc64le-gnu/-/rollup-linux-powerpc64le-gnu-4.22.4.tgz",
-      "integrity": "sha512-3aVCK9xfWW1oGQpTsYJJPF6bfpWfhbRnhdlyhak2ZiyFLDaayz0EP5j9V1RVLAAxlmWKTDfS9wyRyY3hvhPoOg==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-powerpc64le-gnu/-/rollup-linux-powerpc64le-gnu-4.27.3.tgz",
+      "integrity": "sha512-v2M/mPvVUKVOKITa0oCFksnQQ/TqGrT+yD0184/cWHIu0LoIuYHwox0Pm3ccXEz8cEQDLk6FPKd1CCm+PlsISw==",
       "cpu": [
         "ppc64"
       ],
@@ -1010,9 +1040,9 @@
       ]
     },
     "node_modules/@rollup/rollup-linux-riscv64-gnu": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-riscv64-gnu/-/rollup-linux-riscv64-gnu-4.22.4.tgz",
-      "integrity": "sha512-ePYIir6VYnhgv2C5Xe9u+ico4t8sZWXschR6fMgoPUK31yQu7hTEJb7bCqivHECwIClJfKgE7zYsh1qTP3WHUA==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-riscv64-gnu/-/rollup-linux-riscv64-gnu-4.27.3.tgz",
+      "integrity": "sha512-LdrI4Yocb1a/tFVkzmOE5WyYRgEBOyEhWYJe4gsDWDiwnjYKjNs7PS6SGlTDB7maOHF4kxevsuNBl2iOcj3b4A==",
       "cpu": [
         "riscv64"
       ],
@@ -1024,9 +1054,9 @@
       ]
     },
     "node_modules/@rollup/rollup-linux-s390x-gnu": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-s390x-gnu/-/rollup-linux-s390x-gnu-4.22.4.tgz",
-      "integrity": "sha512-GqFJ9wLlbB9daxhVlrTe61vJtEY99/xB3C8e4ULVsVfflcpmR6c8UZXjtkMA6FhNONhj2eA5Tk9uAVw5orEs4Q==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-s390x-gnu/-/rollup-linux-s390x-gnu-4.27.3.tgz",
+      "integrity": "sha512-d4wVu6SXij/jyiwPvI6C4KxdGzuZOvJ6y9VfrcleHTwo68fl8vZC5ZYHsCVPUi4tndCfMlFniWgwonQ5CUpQcA==",
       "cpu": [
         "s390x"
       ],
@@ -1038,9 +1068,9 @@
       ]
     },
     "node_modules/@rollup/rollup-linux-x64-gnu": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-x64-gnu/-/rollup-linux-x64-gnu-4.22.4.tgz",
-      "integrity": "sha512-87v0ol2sH9GE3cLQLNEy0K/R0pz1nvg76o8M5nhMR0+Q+BBGLnb35P0fVz4CQxHYXaAOhE8HhlkaZfsdUOlHwg==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-x64-gnu/-/rollup-linux-x64-gnu-4.27.3.tgz",
+      "integrity": "sha512-/6bn6pp1fsCGEY5n3yajmzZQAh+mW4QPItbiWxs69zskBzJuheb3tNynEjL+mKOsUSFK11X4LYF2BwwXnzWleA==",
       "cpu": [
         "x64"
       ],
@@ -1052,9 +1082,9 @@
       ]
     },
     "node_modules/@rollup/rollup-linux-x64-musl": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-x64-musl/-/rollup-linux-x64-musl-4.22.4.tgz",
-      "integrity": "sha512-UV6FZMUgePDZrFjrNGIWzDo/vABebuXBhJEqrHxrGiU6HikPy0Z3LfdtciIttEUQfuDdCn8fqh7wiFJjCNwO+g==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-x64-musl/-/rollup-linux-x64-musl-4.27.3.tgz",
+      "integrity": "sha512-nBXOfJds8OzUT1qUreT/en3eyOXd2EH5b0wr2bVB5999qHdGKkzGzIyKYaKj02lXk6wpN71ltLIaQpu58YFBoQ==",
       "cpu": [
         "x64"
       ],
@@ -1066,9 +1096,9 @@
       ]
     },
     "node_modules/@rollup/rollup-win32-arm64-msvc": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-arm64-msvc/-/rollup-win32-arm64-msvc-4.22.4.tgz",
-      "integrity": "sha512-BjI+NVVEGAXjGWYHz/vv0pBqfGoUH0IGZ0cICTn7kB9PyjrATSkX+8WkguNjWoj2qSr1im/+tTGRaY+4/PdcQw==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-arm64-msvc/-/rollup-win32-arm64-msvc-4.27.3.tgz",
+      "integrity": "sha512-ogfbEVQgIZOz5WPWXF2HVb6En+kWzScuxJo/WdQTqEgeyGkaa2ui5sQav9Zkr7bnNCLK48uxmmK0TySm22eiuw==",
       "cpu": [
         "arm64"
       ],
@@ -1080,9 +1110,9 @@
       ]
     },
     "node_modules/@rollup/rollup-win32-ia32-msvc": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-ia32-msvc/-/rollup-win32-ia32-msvc-4.22.4.tgz",
-      "integrity": "sha512-SiWG/1TuUdPvYmzmYnmd3IEifzR61Tragkbx9D3+R8mzQqDBz8v+BvZNDlkiTtI9T15KYZhP0ehn3Dld4n9J5g==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-ia32-msvc/-/rollup-win32-ia32-msvc-4.27.3.tgz",
+      "integrity": "sha512-ecE36ZBMLINqiTtSNQ1vzWc5pXLQHlf/oqGp/bSbi7iedcjcNb6QbCBNG73Euyy2C+l/fn8qKWEwxr+0SSfs3w==",
       "cpu": [
         "ia32"
       ],
@@ -1094,9 +1124,9 @@
       ]
     },
     "node_modules/@rollup/rollup-win32-x64-msvc": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-x64-msvc/-/rollup-win32-x64-msvc-4.22.4.tgz",
-      "integrity": "sha512-j8pPKp53/lq9lMXN57S8cFz0MynJk8OWNuUnXct/9KCpKU7DgU3bYMJhwWmcqC0UU29p8Lr0/7KEVcaM6bf47Q==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-x64-msvc/-/rollup-win32-x64-msvc-4.27.3.tgz",
+      "integrity": "sha512-vliZLrDmYKyaUoMzEbMTg2JkerfBjn03KmAw9CykO0Zzkzoyd7o3iZNam/TpyWNjNT+Cz2iO3P9Smv2wgrR+Eg==",
       "cpu": [
         "x64"
       ],
@@ -1192,13 +1222,13 @@
       }
     },
     "node_modules/@sveltejs/vite-plugin-svelte-inspector": {
-      "version": "3.0.0-next.3",
-      "resolved": "https://registry.npmjs.org/@sveltejs/vite-plugin-svelte-inspector/-/vite-plugin-svelte-inspector-3.0.0-next.3.tgz",
-      "integrity": "sha512-kuGJ2CZ5lAw3gKF8Kw0AfKtUJWbwdlDHY14K413B0MCyrzvQvsKTorwmwZcky0+QqY6RnVIZ/5FttB9bQmkLXg==",
+      "version": "3.0.1",
+      "resolved": "https://registry.npmjs.org/@sveltejs/vite-plugin-svelte-inspector/-/vite-plugin-svelte-inspector-3.0.1.tgz",
+      "integrity": "sha512-2CKypmj1sM4GE7HjllT7UKmo4Q6L5xFRd7VMGEWhYnZ+wc6AUVU01IBd7yUi6WnFndEwWoMNOd6e8UjoN0nbvQ==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
-        "debug": "^4.3.5"
+        "debug": "^4.3.7"
       },
       "engines": {
         "node": "^18.0.0 || ^20.0.0 || >=22"
@@ -1261,9 +1291,9 @@
       "license": "MIT"
     },
     "node_modules/@types/estree": {
-      "version": "1.0.5",
-      "resolved": "https://registry.npmjs.org/@types/estree/-/estree-1.0.5.tgz",
-      "integrity": "sha512-/kYRxGDLWzHOB7q+wtSUQlFrtcdUccpfy+X+9iMBpHK8QLLhx2wIPYuS5DYtR9Wa/YlZAbIovy7qVdB1Aq6Lyw==",
+      "version": "1.0.6",
+      "resolved": "https://registry.npmjs.org/@types/estree/-/estree-1.0.6.tgz",
+      "integrity": "sha512-AYnb1nQyY49te+VRAVgmzfcgjYS91mY5P0TKUDCLEM+gNnA+3T6rWITXRLYCpahpqSQbN5cE+gHpnPyXjHWxcw==",
       "dev": true,
       "license": "MIT"
     },
@@ -1446,6 +1476,32 @@
         }
       }
     },
+    "node_modules/@typescript-eslint/typescript-estree/node_modules/brace-expansion": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.1.tgz",
+      "integrity": "sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "balanced-match": "^1.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/typescript-estree/node_modules/minimatch": {
+      "version": "9.0.5",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.5.tgz",
+      "integrity": "sha512-G6T0ZX48xgozx7587koeX9Ys2NYy6Gmv//P89sEte9V9whIapMNF4idKxnW2QtCcLiTWlb/wfCabAtAFWhhBow==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "brace-expansion": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=16 || 14 >=14.17"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
     "node_modules/@typescript-eslint/utils": {
       "version": "8.6.0",
       "resolved": "https://registry.npmjs.org/@typescript-eslint/utils/-/utils-8.6.0.tgz",
@@ -1501,9 +1557,9 @@
       }
     },
     "node_modules/acorn": {
-      "version": "8.12.1",
-      "resolved": "https://registry.npmjs.org/acorn/-/acorn-8.12.1.tgz",
-      "integrity": "sha512-tcpGyI9zbizT9JbV6oYE477V6mTlXvvi0T0G3SNIYE2apm/G5huBa1+K89VGeovbg+jycCrfhl3ADxErOuO6Jg==",
+      "version": "8.14.0",
+      "resolved": "https://registry.npmjs.org/acorn/-/acorn-8.14.0.tgz",
+      "integrity": "sha512-cl669nCJTZBsL97OF4kUQm5g5hC2uihk0NxY3WENAC0TYdILVkAyHymAntgxGkl7K+t0cXIrH5siy5S4XkFycA==",
       "dev": true,
       "license": "MIT",
       "bin": {
@@ -1563,9 +1619,9 @@
       }
     },
     "node_modules/ansi-regex": {
-      "version": "6.0.1",
-      "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-6.0.1.tgz",
-      "integrity": "sha512-n5M855fKb2SsfMIiFFoVrABHJC8QtHwVx+mHWP3QcEqBHYienj5dHSgjbxtC0WEZXYt4wcD6zrQElDPhFuZgfA==",
+      "version": "6.1.0",
+      "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-6.1.0.tgz",
+      "integrity": "sha512-7HSX4QQb4CspciLpVFwyRe79O3xsIZDDLER21kERQ71oaPodF8jL725AgJMFAYbooIqolJoRLuM81SpeUkpkvA==",
       "dev": true,
       "license": "MIT",
       "engines": {
@@ -1576,13 +1632,16 @@
       }
     },
     "node_modules/ansi-styles": {
-      "version": "6.2.1",
-      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-6.2.1.tgz",
-      "integrity": "sha512-bN798gFfQX+viw3R7yrGWRqnrN2oRkEkUjjl4JNn4E8GxxbjtG3FbrEIIY3l8/hrwUwIeCZvi4QuOTP4MErVug==",
+      "version": "4.3.0",
+      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-4.3.0.tgz",
+      "integrity": "sha512-zbB9rCJAT1rbjiVDb2hqKFHNYLxgtk8NURxZ3IZwD3F6NtxbXZQCnnSi1Lkx+IDohdPlFp222wVALIheZJQSEg==",
       "dev": true,
       "license": "MIT",
+      "dependencies": {
+        "color-convert": "^2.0.1"
+      },
       "engines": {
-        "node": ">=12"
+        "node": ">=8"
       },
       "funding": {
         "url": "https://github.com/chalk/ansi-styles?sponsor=1"
@@ -1602,6 +1661,19 @@
         "node": ">= 8"
       }
     },
+    "node_modules/anymatch/node_modules/picomatch": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.1.tgz",
+      "integrity": "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8.6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/jonschlinkert"
+      }
+    },
     "node_modules/argparse": {
       "version": "2.0.1",
       "resolved": "https://registry.npmjs.org/argparse/-/argparse-2.0.1.tgz",
@@ -1610,9 +1682,9 @@
       "license": "Python-2.0"
     },
     "node_modules/aria-query": {
-      "version": "5.3.1",
-      "resolved": "https://registry.npmjs.org/aria-query/-/aria-query-5.3.1.tgz",
-      "integrity": "sha512-Z/ZeOgVl7bcSYZ/u/rh0fOpvEpq//LZmdbkXyc7syVzjPAhfOa9ebsdTSjEBDU4vs5nC98Kfduj1uFo0qyET3g==",
+      "version": "5.3.2",
+      "resolved": "https://registry.npmjs.org/aria-query/-/aria-query-5.3.2.tgz",
+      "integrity": "sha512-COROpnaoap1E2F000S62r6A60uHZnmlvomhfyT2DlTcrY1OrBKn2UhH7qn5wTC9zMvD0AY7csdPSNwKP+7WiQw==",
       "dev": true,
       "license": "Apache-2.0",
       "engines": {
@@ -1666,13 +1738,14 @@
       }
     },
     "node_modules/brace-expansion": {
-      "version": "2.0.1",
-      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.1.tgz",
-      "integrity": "sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==",
+      "version": "1.1.11",
+      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-1.1.11.tgz",
+      "integrity": "sha512-iCuPHDFgrHX7H2vEI/5xpz07zSHB00TpugqhmYtVmMO6518mCuRMoOYFldEBl0g187ufozdaHgWKcYFb61qGiA==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
-        "balanced-match": "^1.0.0"
+        "balanced-match": "^1.0.0",
+        "concat-map": "0.0.1"
       }
     },
     "node_modules/braces": {
@@ -1698,19 +1771,6 @@
         "node": ">=4"
       }
     },
-    "node_modules/builtin-modules": {
-      "version": "3.3.0",
-      "resolved": "https://registry.npmjs.org/builtin-modules/-/builtin-modules-3.3.0.tgz",
-      "integrity": "sha512-zhaCDicdLuWN5UbN5IMnFqNMhNfo919sH85y2/ea+5Yg9TsTkeZxpL+JLbp6cgYFS4sRLp3YV4S6yDuqVWHYOw==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=6"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/sindresorhus"
-      }
-    },
     "node_modules/callsites": {
       "version": "3.1.0",
       "resolved": "https://registry.npmjs.org/callsites/-/callsites-3.1.0.tgz",
@@ -1738,22 +1798,6 @@
         "url": "https://github.com/chalk/chalk?sponsor=1"
       }
     },
-    "node_modules/chalk/node_modules/ansi-styles": {
-      "version": "4.3.0",
-      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-4.3.0.tgz",
-      "integrity": "sha512-zbB9rCJAT1rbjiVDb2hqKFHNYLxgtk8NURxZ3IZwD3F6NtxbXZQCnnSi1Lkx+IDohdPlFp222wVALIheZJQSEg==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "color-convert": "^2.0.1"
-      },
-      "engines": {
-        "node": ">=8"
-      },
-      "funding": {
-        "url": "https://github.com/chalk/ansi-styles?sponsor=1"
-      }
-    },
     "node_modules/chokidar": {
       "version": "3.6.0",
       "resolved": "https://registry.npmjs.org/chokidar/-/chokidar-3.6.0.tgz",
@@ -1779,6 +1823,19 @@
         "fsevents": "~2.3.2"
       }
     },
+    "node_modules/chokidar/node_modules/glob-parent": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-5.1.2.tgz",
+      "integrity": "sha512-AOIgSQCepiJYwP3ARnGx+5VnTu2HBYdzbGP45eLw1vr3zB3vZLeyed1sC9hnbcOc9/SrMyM5RPQrkGz4aS9Zow==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "is-glob": "^4.0.1"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
     "node_modules/cliui": {
       "version": "8.0.1",
       "resolved": "https://registry.npmjs.org/cliui/-/cliui-8.0.1.tgz",
@@ -1804,22 +1861,6 @@
         "node": ">=8"
       }
     },
-    "node_modules/cliui/node_modules/ansi-styles": {
-      "version": "4.3.0",
-      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-4.3.0.tgz",
-      "integrity": "sha512-zbB9rCJAT1rbjiVDb2hqKFHNYLxgtk8NURxZ3IZwD3F6NtxbXZQCnnSi1Lkx+IDohdPlFp222wVALIheZJQSEg==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "color-convert": "^2.0.1"
-      },
-      "engines": {
-        "node": ">=8"
-      },
-      "funding": {
-        "url": "https://github.com/chalk/ansi-styles?sponsor=1"
-      }
-    },
     "node_modules/cliui/node_modules/emoji-regex": {
       "version": "8.0.0",
       "resolved": "https://registry.npmjs.org/emoji-regex/-/emoji-regex-8.0.0.tgz",
@@ -1934,9 +1975,9 @@
       "license": "MIT"
     },
     "node_modules/cookie": {
-      "version": "0.6.0",
-      "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.6.0.tgz",
-      "integrity": "sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==",
+      "version": "0.7.0",
+      "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.0.tgz",
+      "integrity": "sha512-qCf+V4dtlNhSRXGAZatc1TasyFO6GjohcOul807YOb5ik3+kQSnb4d7iajeCL8QHaJ4uZEjCgiCJerKXwdRVlQ==",
       "dev": true,
       "license": "MIT",
       "engines": {
@@ -1944,9 +1985,9 @@
       }
     },
     "node_modules/cross-spawn": {
-      "version": "7.0.3",
-      "resolved": "https://registry.npmjs.org/cross-spawn/-/cross-spawn-7.0.3.tgz",
-      "integrity": "sha512-iRDPJKUPVEND7dHPO8rkbOnPpyDygcDFtWjpeWNCgy8WP2rXcxXL8TskReQl6OrB2G7+UJrags1q15Fudc7G6w==",
+      "version": "7.0.6",
+      "resolved": "https://registry.npmjs.org/cross-spawn/-/cross-spawn-7.0.6.tgz",
+      "integrity": "sha512-uV2QOWP2nWzsy2aMp8aRibhi9dlzF5Hgh5SHaB9OiTGEyDTiJJyx0uy51QXdyWbtAHNua4XJzUKca3OzKUd3vA==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
@@ -1997,12 +2038,12 @@
       }
     },
     "node_modules/debug": {
-      "version": "4.3.6",
-      "resolved": "https://registry.npmjs.org/debug/-/debug-4.3.6.tgz",
-      "integrity": "sha512-O/09Bd4Z1fBrU4VzkhFqVgpPzaGbw6Sm9FEkBT1A/YBXQFGuuSxa1dN2nxgxS34JmKXqYx8CZAwEVoJFImUXIg==",
+      "version": "4.3.7",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-4.3.7.tgz",
+      "integrity": "sha512-Er2nc/H7RrMXZBFCEim6TCmMk02Z8vLC2Rbi1KEBggpo0fS6l0S1nnapwmIi3yW/+GOJap1Krg4w0Hg80oCqgQ==",
       "license": "MIT",
       "dependencies": {
-        "ms": "2.1.2"
+        "ms": "^2.1.3"
       },
       "engines": {
         "node": ">=6.0"
@@ -2046,9 +2087,9 @@
       }
     },
     "node_modules/devalue": {
-      "version": "5.0.0",
-      "resolved": "https://registry.npmjs.org/devalue/-/devalue-5.0.0.tgz",
-      "integrity": "sha512-gO+/OMXF7488D+u3ue+G7Y4AA3ZmUnB3eHJXmBTgNHvr4ZNzl36A0ZtG+XCRNYCkYx/bFmw4qtkoFLa+wSrwAA==",
+      "version": "5.1.1",
+      "resolved": "https://registry.npmjs.org/devalue/-/devalue-5.1.1.tgz",
+      "integrity": "sha512-maua5KUiapvEwiEAe+XnlZ3Rh0GD+qI1J/nb9vrJc3muPXvcF/8gXYTWF76+5DAqHyDUtOIImEuo0YKE9mshVw==",
       "dev": true,
       "license": "MIT"
     },
@@ -2059,9 +2100,9 @@
       "license": "Apache-2.0"
     },
     "node_modules/dompurify": {
-      "version": "3.1.6",
-      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.1.6.tgz",
-      "integrity": "sha512-cTOAhc36AalkjtBpfG6O8JimdTMWNXjiePT2xQH/ppBGi/4uIpmj8eKyIkMJErXWARyINV/sB38yf8JCLF5pbQ==",
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.2.0.tgz",
+      "integrity": "sha512-AMdOzK44oFWqHEi0wpOqix/fUNY707OmoeFDnbi3Q5I8uOpy21ufUA5cDJPr0bosxrflOVD/H2DMSvuGKJGfmQ==",
       "license": "(MPL-2.0 OR Apache-2.0)"
     },
     "node_modules/eastasianwidth": {
@@ -2190,29 +2231,32 @@
       }
     },
     "node_modules/eslint": {
-      "version": "9.10.0",
-      "resolved": "https://registry.npmjs.org/eslint/-/eslint-9.10.0.tgz",
-      "integrity": "sha512-Y4D0IgtBZfOcOUAIQTSXBKoNGfY0REGqHJG6+Q81vNippW5YlKjHFj4soMxamKK1NXHUWuBZTLdU3Km+L/pcHw==",
+      "version": "9.15.0",
+      "resolved": "https://registry.npmjs.org/eslint/-/eslint-9.15.0.tgz",
+      "integrity": "sha512-7CrWySmIibCgT1Os28lUU6upBshZ+GxybLOrmRzi08kS8MBuO8QA7pXEgYgY5W8vK3e74xv0lpjo9DbaGU9Rkw==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
         "@eslint-community/eslint-utils": "^4.2.0",
-        "@eslint-community/regexpp": "^4.11.0",
-        "@eslint/config-array": "^0.18.0",
-        "@eslint/eslintrc": "^3.1.0",
-        "@eslint/js": "9.10.0",
-        "@eslint/plugin-kit": "^0.1.0",
+        "@eslint-community/regexpp": "^4.12.1",
+        "@eslint/config-array": "^0.19.0",
+        "@eslint/core": "^0.9.0",
+        "@eslint/eslintrc": "^3.2.0",
+        "@eslint/js": "9.15.0",
+        "@eslint/plugin-kit": "^0.2.3",
+        "@humanfs/node": "^0.16.6",
         "@humanwhocodes/module-importer": "^1.0.1",
-        "@humanwhocodes/retry": "^0.3.0",
-        "@nodelib/fs.walk": "^1.2.8",
+        "@humanwhocodes/retry": "^0.4.1",
+        "@types/estree": "^1.0.6",
+        "@types/json-schema": "^7.0.15",
         "ajv": "^6.12.4",
         "chalk": "^4.0.0",
-        "cross-spawn": "^7.0.2",
+        "cross-spawn": "^7.0.5",
         "debug": "^4.3.2",
         "escape-string-regexp": "^4.0.0",
-        "eslint-scope": "^8.0.2",
-        "eslint-visitor-keys": "^4.0.0",
-        "espree": "^10.1.0",
+        "eslint-scope": "^8.2.0",
+        "eslint-visitor-keys": "^4.2.0",
+        "espree": "^10.3.0",
         "esquery": "^1.5.0",
         "esutils": "^2.0.2",
         "fast-deep-equal": "^3.1.3",
@@ -2222,14 +2266,11 @@
         "ignore": "^5.2.0",
         "imurmurhash": "^0.1.4",
         "is-glob": "^4.0.0",
-        "is-path-inside": "^3.0.3",
         "json-stable-stringify-without-jsonify": "^1.0.1",
         "lodash.merge": "^4.6.2",
         "minimatch": "^3.1.2",
         "natural-compare": "^1.4.0",
-        "optionator": "^0.9.3",
-        "strip-ansi": "^6.0.1",
-        "text-table": "^0.2.0"
+        "optionator": "^0.9.3"
       },
       "bin": {
         "eslint": "bin/eslint.js"
@@ -2314,9 +2355,9 @@
       }
     },
     "node_modules/eslint-scope": {
-      "version": "8.0.2",
-      "resolved": "https://registry.npmjs.org/eslint-scope/-/eslint-scope-8.0.2.tgz",
-      "integrity": "sha512-6E4xmrTw5wtxnLA5wYL3WDfhZ/1bUBGOXV0zQvVRDOtrR8D0p6W7fs3JweNYhwRYeGvd/1CKX2se0/2s7Q/nJA==",
+      "version": "8.2.0",
+      "resolved": "https://registry.npmjs.org/eslint-scope/-/eslint-scope-8.2.0.tgz",
+      "integrity": "sha512-PHlWUfG6lvPc3yvP5A4PNyBL1W8fkDUccmI21JUu/+GKZBoH/W5u6usENXUrWFRsyoW5ACUjFGgAFQp5gUlb/A==",
       "dev": true,
       "license": "BSD-2-Clause",
       "dependencies": {
@@ -2331,9 +2372,9 @@
       }
     },
     "node_modules/eslint-visitor-keys": {
-      "version": "4.0.0",
-      "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.0.0.tgz",
-      "integrity": "sha512-OtIRv/2GyiF6o/d8K7MYKKbXrOUBIK6SfkIRM4Z0dY3w+LiQ0vy3F57m0Z71bjbyeiWFiHJ8brqnmE6H6/jEuw==",
+      "version": "4.2.0",
+      "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.2.0.tgz",
+      "integrity": "sha512-UyLnSehNt62FFhSwjZlHmeokpRK59rcz29j+F1/aDgbkbRTk7wIc9XzdoasMUbRNKDM0qQt/+BJ4BrpFeABemw==",
       "dev": true,
       "license": "Apache-2.0",
       "engines": {
@@ -2343,83 +2384,23 @@
         "url": "https://opencollective.com/eslint"
       }
     },
-    "node_modules/eslint/node_modules/ansi-regex": {
-      "version": "5.0.1",
-      "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz",
-      "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=8"
-      }
-    },
-    "node_modules/eslint/node_modules/brace-expansion": {
-      "version": "1.1.11",
-      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-1.1.11.tgz",
-      "integrity": "sha512-iCuPHDFgrHX7H2vEI/5xpz07zSHB00TpugqhmYtVmMO6518mCuRMoOYFldEBl0g187ufozdaHgWKcYFb61qGiA==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "balanced-match": "^1.0.0",
-        "concat-map": "0.0.1"
-      }
-    },
-    "node_modules/eslint/node_modules/glob-parent": {
-      "version": "6.0.2",
-      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-6.0.2.tgz",
-      "integrity": "sha512-XxwI8EOhVQgWp6iDL+3b0r86f4d6AX6zSU55HfB4ydCEuXLXc5FcYeOu+nnGftS4TEju/11rt4KJPTMgbfmv4A==",
-      "dev": true,
-      "license": "ISC",
-      "dependencies": {
-        "is-glob": "^4.0.3"
-      },
-      "engines": {
-        "node": ">=10.13.0"
-      }
-    },
-    "node_modules/eslint/node_modules/minimatch": {
-      "version": "3.1.2",
-      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.1.2.tgz",
-      "integrity": "sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw==",
-      "dev": true,
-      "license": "ISC",
-      "dependencies": {
-        "brace-expansion": "^1.1.7"
-      },
-      "engines": {
-        "node": "*"
-      }
-    },
-    "node_modules/eslint/node_modules/strip-ansi": {
-      "version": "6.0.1",
-      "resolved": "https://registry.npmjs.org/strip-ansi/-/strip-ansi-6.0.1.tgz",
-      "integrity": "sha512-Y38VPSHcqkFrCpFnQ9vuSXmquuv5oXOKpGeT6aGrr3o3Gc9AlVa6JBfUSOCnbxGGZF+/0ooI7KrPuUSztUdU5A==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "ansi-regex": "^5.0.1"
-      },
-      "engines": {
-        "node": ">=8"
-      }
-    },
     "node_modules/esm-env": {
-      "version": "1.0.0",
-      "resolved": "https://registry.npmjs.org/esm-env/-/esm-env-1.0.0.tgz",
-      "integrity": "sha512-Cf6VksWPsTuW01vU9Mk/3vRue91Zevka5SjyNf3nEpokFRuqt/KjUQoGAwq9qMmhpLTHmXzSIrFRw8zxWzmFBA==",
+      "version": "1.1.4",
+      "resolved": "https://registry.npmjs.org/esm-env/-/esm-env-1.1.4.tgz",
+      "integrity": "sha512-oO82nKPHKkzIj/hbtuDYy/JHqBHFlMIW36SDiPCVsj87ntDLcWN+sJ1erdVryd4NxODacFTsdrIE3b7IamqbOg==",
       "dev": true,
       "license": "MIT"
     },
     "node_modules/espree": {
-      "version": "10.1.0",
-      "resolved": "https://registry.npmjs.org/espree/-/espree-10.1.0.tgz",
-      "integrity": "sha512-M1M6CpiE6ffoigIOWYO9UDP8TMUw9kqb21tf+08IgDYjCsOvCuDt4jQcZmoYxx+w7zlKw9/N0KXfto+I8/FrXA==",
+      "version": "10.3.0",
+      "resolved": "https://registry.npmjs.org/espree/-/espree-10.3.0.tgz",
+      "integrity": "sha512-0QYC8b24HWY8zjRnDTL6RiHfDbAWn63qb4LMj1Z4b076A4une81+z03Kg7l7mn/48PUTqoLptSXez8oknU8Clg==",
       "dev": true,
       "license": "BSD-2-Clause",
       "dependencies": {
-        "acorn": "^8.12.0",
+        "acorn": "^8.14.0",
         "acorn-jsx": "^5.3.2",
-        "eslint-visitor-keys": "^4.0.0"
+        "eslint-visitor-keys": "^4.2.0"
       },
       "engines": {
         "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
@@ -2516,6 +2497,19 @@
         "node": ">=8.6.0"
       }
     },
+    "node_modules/fast-glob/node_modules/glob-parent": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-5.1.2.tgz",
+      "integrity": "sha512-AOIgSQCepiJYwP3ARnGx+5VnTu2HBYdzbGP45eLw1vr3zB3vZLeyed1sC9hnbcOc9/SrMyM5RPQrkGz4aS9Zow==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "is-glob": "^4.0.1"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
     "node_modules/fast-json-stable-stringify": {
       "version": "2.1.0",
       "resolved": "https://registry.npmjs.org/fast-json-stable-stringify/-/fast-json-stable-stringify-2.1.0.tgz",
@@ -2540,6 +2534,21 @@
         "reusify": "^1.0.4"
       }
     },
+    "node_modules/fdir": {
+      "version": "6.4.2",
+      "resolved": "https://registry.npmjs.org/fdir/-/fdir-6.4.2.tgz",
+      "integrity": "sha512-KnhMXsKSPZlAhp7+IjUkRZKPb4fUyccpDrdFXbi4QL1qkmFh9kVY09Yox+n4MaOb3lHZ1Tv829C3oaaXoMYPDQ==",
+      "dev": true,
+      "license": "MIT",
+      "peerDependencies": {
+        "picomatch": "^3 || ^4"
+      },
+      "peerDependenciesMeta": {
+        "picomatch": {
+          "optional": true
+        }
+      }
+    },
     "node_modules/file-entry-cache": {
       "version": "8.0.0",
       "resolved": "https://registry.npmjs.org/file-entry-cache/-/file-entry-cache-8.0.0.tgz",
@@ -2598,16 +2607,16 @@
       }
     },
     "node_modules/flatted": {
-      "version": "3.3.1",
-      "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.3.1.tgz",
-      "integrity": "sha512-X8cqMLLie7KsNUDSdzeN8FYK9rEt4Dt67OsG/DNGnYTSDBG4uFAJFBnUeiV+zCVAvwFy56IjM9sH51jVaEhNxw==",
+      "version": "3.3.2",
+      "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.3.2.tgz",
+      "integrity": "sha512-AiwGJM8YcNOaobumgtng+6NHuOqC3A7MixFeDafM3X9cIUM+xUXoS5Vfgf+OihAYe20fxqNM9yPBXJzRtZ/4eA==",
       "dev": true,
       "license": "ISC"
     },
     "node_modules/foreground-child": {
-      "version": "3.2.1",
-      "resolved": "https://registry.npmjs.org/foreground-child/-/foreground-child-3.2.1.tgz",
-      "integrity": "sha512-PXUUyLqrR2XCWICfv6ukppP96sdFwWbNEnfEMt7jNsISjMsvaLNinAHNDYyvkyU+SZG2BTSbT5NjG+vZslfGTA==",
+      "version": "3.3.0",
+      "resolved": "https://registry.npmjs.org/foreground-child/-/foreground-child-3.3.0.tgz",
+      "integrity": "sha512-Ld2g8rrAyMYFXBhEqMz8ZAHBi4J4uS1i/CxGMDnjyFWddMXLVcDp051DZfu+t7+ab7Wv6SMqpWmyFIj5UbfFvg==",
       "dev": true,
       "license": "ISC",
       "dependencies": {
@@ -2622,9 +2631,9 @@
       }
     },
     "node_modules/form-data": {
-      "version": "4.0.0",
-      "resolved": "https://registry.npmjs.org/form-data/-/form-data-4.0.0.tgz",
-      "integrity": "sha512-ETEklSGi5t0QMZuiXoA/Q6vcnxcLQP5vdugSpuAyi6SVGi2clPPp+xgEhuMaHC+zGgn31Kd235W35f7Hykkaww==",
+      "version": "4.0.1",
+      "resolved": "https://registry.npmjs.org/form-data/-/form-data-4.0.1.tgz",
+      "integrity": "sha512-tzN8e4TX8+kkxGPK8D5u0FNmjPUjw3lwC9lSLxxoB/+GtsJG91CO8bSWy73APlgAZzZbXEYZJuxjkHH2w+Ezhw==",
       "license": "MIT",
       "dependencies": {
         "asynckit": "^0.4.0",
@@ -2636,9 +2645,9 @@
       }
     },
     "node_modules/fsevents": {
-      "version": "2.3.3",
-      "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.3.tgz",
-      "integrity": "sha512-5xoDfX+fL7faATnagmWPpbFtwh/R77WmMMqqHGS65C3vvB0YHrgF+B1YmZ3441tMj5n63k0212XNoJwzlhffQw==",
+      "version": "2.3.2",
+      "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.2.tgz",
+      "integrity": "sha512-xiqMQR4xAeHTuB9uWm+fFRcIOgKBMiOBP+eXiyT7jsgVCq1bkVygt00oASowB7EdtpOHaaPgKt812P9ab+DDKA==",
       "dev": true,
       "hasInstallScript": true,
       "license": "MIT",
@@ -2692,16 +2701,42 @@
       }
     },
     "node_modules/glob-parent": {
-      "version": "5.1.2",
-      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-5.1.2.tgz",
-      "integrity": "sha512-AOIgSQCepiJYwP3ARnGx+5VnTu2HBYdzbGP45eLw1vr3zB3vZLeyed1sC9hnbcOc9/SrMyM5RPQrkGz4aS9Zow==",
+      "version": "6.0.2",
+      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-6.0.2.tgz",
+      "integrity": "sha512-XxwI8EOhVQgWp6iDL+3b0r86f4d6AX6zSU55HfB4ydCEuXLXc5FcYeOu+nnGftS4TEju/11rt4KJPTMgbfmv4A==",
       "dev": true,
       "license": "ISC",
       "dependencies": {
-        "is-glob": "^4.0.1"
+        "is-glob": "^4.0.3"
       },
       "engines": {
-        "node": ">= 6"
+        "node": ">=10.13.0"
+      }
+    },
+    "node_modules/glob/node_modules/brace-expansion": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.1.tgz",
+      "integrity": "sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "balanced-match": "^1.0.0"
+      }
+    },
+    "node_modules/glob/node_modules/minimatch": {
+      "version": "9.0.5",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.5.tgz",
+      "integrity": "sha512-G6T0ZX48xgozx7587koeX9Ys2NYy6Gmv//P89sEte9V9whIapMNF4idKxnW2QtCcLiTWlb/wfCabAtAFWhhBow==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "brace-expansion": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=16 || 14 >=14.17"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
       }
     },
     "node_modules/globals": {
@@ -2881,26 +2916,10 @@
         "node": ">=8"
       }
     },
-    "node_modules/is-builtin-module": {
-      "version": "3.2.1",
-      "resolved": "https://registry.npmjs.org/is-builtin-module/-/is-builtin-module-3.2.1.tgz",
-      "integrity": "sha512-BSLE3HnV2syZ0FK0iMA/yUGplUeMmNz4AW5fnTunbCIqZi4vG3WjJT9FHMy5D69xmAYBHXQhJdALdpwVxV501A==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "builtin-modules": "^3.3.0"
-      },
-      "engines": {
-        "node": ">=6"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/sindresorhus"
-      }
-    },
     "node_modules/is-core-module": {
-      "version": "2.15.0",
-      "resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.15.0.tgz",
-      "integrity": "sha512-Dd+Lb2/zvk9SKy1TGCt1wFJFo/MWBPMX5x7KcvLajWTGuomczdQX61PvY5yK6SVACwpoexWo81IfFyoKY2QnTA==",
+      "version": "2.15.1",
+      "resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.15.1.tgz",
+      "integrity": "sha512-z0vtXSwucUJtANQWldhbtbt7BnL0vxiFjIdDLAatwhDYty2bad6s+rijD6Ri4YuYJubLzIJLUidCh09e1djEVQ==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
@@ -2963,16 +2982,6 @@
         "node": ">=0.12.0"
       }
     },
-    "node_modules/is-path-inside": {
-      "version": "3.0.3",
-      "resolved": "https://registry.npmjs.org/is-path-inside/-/is-path-inside-3.0.3.tgz",
-      "integrity": "sha512-Fd4gABb+ycGAmKou8eMftCupSir5lRxqf4aD/vd0cD2qc4HL07OjCeuHMr8Ro4CoMaeCKDB0/ECBOVWjTwUvPQ==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=8"
-      }
-    },
     "node_modules/is-potential-custom-element-name": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/is-potential-custom-element-name/-/is-potential-custom-element-name-1.0.1.tgz",
@@ -3040,12 +3049,12 @@
       }
     },
     "node_modules/jsdom": {
-      "version": "25.0.0",
-      "resolved": "https://registry.npmjs.org/jsdom/-/jsdom-25.0.0.tgz",
-      "integrity": "sha512-OhoFVT59T7aEq75TVw9xxEfkXgacpqAhQaYgP9y/fDqWQCMB/b1H66RfmPm/MaeaAIU9nDwMOVTlPN51+ao6CQ==",
+      "version": "25.0.1",
+      "resolved": "https://registry.npmjs.org/jsdom/-/jsdom-25.0.1.tgz",
+      "integrity": "sha512-8i7LzZj7BF8uplX+ZyOlIz86V6TAsSs+np6m1kpW9u0JWi4z/1t+FzcK1aek+ybTnAC4KhBL4uXCNT0wcUIeCw==",
       "license": "MIT",
       "dependencies": {
-        "cssstyle": "^4.0.1",
+        "cssstyle": "^4.1.0",
         "data-urls": "^5.0.0",
         "decimal.js": "^10.4.3",
         "form-data": "^4.0.0",
@@ -3058,7 +3067,7 @@
         "rrweb-cssom": "^0.7.1",
         "saxes": "^6.0.0",
         "symbol-tree": "^3.2.4",
-        "tough-cookie": "^4.1.4",
+        "tough-cookie": "^5.0.0",
         "w3c-xmlserializer": "^5.0.0",
         "webidl-conversions": "^7.0.0",
         "whatwg-encoding": "^3.1.1",
@@ -3196,9 +3205,9 @@
       "license": "ISC"
     },
     "node_modules/magic-string": {
-      "version": "0.30.11",
-      "resolved": "https://registry.npmjs.org/magic-string/-/magic-string-0.30.11.tgz",
-      "integrity": "sha512-+Wri9p0QHMy+545hKww7YAu5NyzF8iomPL/RQazugQ9+Ez4Ic3mERMd8ZTX5rfK944j+560ZJi8iAwgak1Ac7A==",
+      "version": "0.30.12",
+      "resolved": "https://registry.npmjs.org/magic-string/-/magic-string-0.30.12.tgz",
+      "integrity": "sha512-Ea8I3sQMVXr8JhN4z+H/d8zwo+tYDgHE9+5G4Wnrwhs0gaK9fXTKx0Tw5Xwsd/bCPTTZNRAdpyzvoeORe9LYpw==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
@@ -3250,6 +3259,19 @@
         "node": ">=8.6"
       }
     },
+    "node_modules/micromatch/node_modules/picomatch": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.1.tgz",
+      "integrity": "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8.6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/jonschlinkert"
+      }
+    },
     "node_modules/mime-db": {
       "version": "1.52.0",
       "resolved": "https://registry.npmjs.org/mime-db/-/mime-db-1.52.0.tgz",
@@ -3272,19 +3294,16 @@
       }
     },
     "node_modules/minimatch": {
-      "version": "9.0.5",
-      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.5.tgz",
-      "integrity": "sha512-G6T0ZX48xgozx7587koeX9Ys2NYy6Gmv//P89sEte9V9whIapMNF4idKxnW2QtCcLiTWlb/wfCabAtAFWhhBow==",
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.1.2.tgz",
+      "integrity": "sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw==",
       "dev": true,
       "license": "ISC",
       "dependencies": {
-        "brace-expansion": "^2.0.1"
+        "brace-expansion": "^1.1.7"
       },
       "engines": {
-        "node": ">=16 || 14 >=14.17"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/isaacs"
+        "node": "*"
       }
     },
     "node_modules/minipass": {
@@ -3318,9 +3337,9 @@
       }
     },
     "node_modules/ms": {
-      "version": "2.1.2",
-      "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.2.tgz",
-      "integrity": "sha512-sGkPx+VjMtmA6MX27oA4FBFELFCZZ4S4XqeGOXCv68tT+jb3vk/RyaKWP0PTKyWtmLSM0b+adUTEvbs1PEaH2w==",
+      "version": "2.1.3",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.3.tgz",
+      "integrity": "sha512-6FlzubTLZG3J2a/NVCAleEhjzq5oxgHyaCU9yYXvcLsvoVaHJq/s5xXI6/XXP6tz7R9xAOtHnSO/tXtF3WRTlA==",
       "license": "MIT"
     },
     "node_modules/nanoid": {
@@ -3360,9 +3379,9 @@
       }
     },
     "node_modules/nwsapi": {
-      "version": "2.2.12",
-      "resolved": "https://registry.npmjs.org/nwsapi/-/nwsapi-2.2.12.tgz",
-      "integrity": "sha512-qXDmcVlZV4XRtKFzddidpfVP4oMSGhga+xdMc25mv8kaLUHtgzCDhUxkrN8exkGdTlLNaXj7CV3GtON7zuGZ+w==",
+      "version": "2.2.13",
+      "resolved": "https://registry.npmjs.org/nwsapi/-/nwsapi-2.2.13.tgz",
+      "integrity": "sha512-cTGB9ptp9dY9A5VbMSe7fQBcl/tt22Vcqdq8+eN93rblOuE0aCFu4aZ2vMwct/2t+lFnosm8RkQW1I0Omb1UtQ==",
       "license": "MIT"
     },
     "node_modules/optionator": {
@@ -3416,9 +3435,9 @@
       }
     },
     "node_modules/package-json-from-dist": {
-      "version": "1.0.0",
-      "resolved": "https://registry.npmjs.org/package-json-from-dist/-/package-json-from-dist-1.0.0.tgz",
-      "integrity": "sha512-dATvCeZN/8wQsGywez1mzHtTlP22H8OEfPrVMLNr4/eGa+ijtLn/6M5f0dY8UKNrC2O9UCU6SSoG3qRKnt7STw==",
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/package-json-from-dist/-/package-json-from-dist-1.0.1.tgz",
+      "integrity": "sha512-UEZIS3/by4OC8vL3P2dTXRETpebLI2NiI5vIrjaD/5UtrkFX/tNbwjTSRAGC/+7CAo2pIcBaRgWmcBBHcsaCIw==",
       "dev": true,
       "license": "BlueOak-1.0.0"
     },
@@ -3443,12 +3462,12 @@
       }
     },
     "node_modules/parse5": {
-      "version": "7.1.2",
-      "resolved": "https://registry.npmjs.org/parse5/-/parse5-7.1.2.tgz",
-      "integrity": "sha512-Czj1WaSVpaoj0wbhMzLmWD69anp2WH7FXMB9n1Sy8/ZFF9jolSQVMu1Ij5WIyGmcBmhk7EOndpO4mIpihVqAXw==",
+      "version": "7.2.1",
+      "resolved": "https://registry.npmjs.org/parse5/-/parse5-7.2.1.tgz",
+      "integrity": "sha512-BuBYQYlv1ckiPdQi/ohiivi9Sagc9JG+Ozs0r7b/0iK3sKmrb0b9FdWdBbOdx6hBCM/F9Ir82ofnBhtZOjCRPQ==",
       "license": "MIT",
       "dependencies": {
-        "entities": "^4.4.0"
+        "entities": "^4.5.0"
       },
       "funding": {
         "url": "https://github.com/inikulin/parse5?sponsor=1"
@@ -3526,9 +3545,9 @@
       }
     },
     "node_modules/pg-connection-string": {
-      "version": "2.6.4",
-      "resolved": "https://registry.npmjs.org/pg-connection-string/-/pg-connection-string-2.6.4.tgz",
-      "integrity": "sha512-v+Z7W/0EO707aNMaAEfiGnGL9sxxumwLl2fJvCQtMn9Fxsg+lPpPkdcyBSv/KFgpGdYkMfn+EI1Or2EHjpgLCA==",
+      "version": "2.7.0",
+      "resolved": "https://registry.npmjs.org/pg-connection-string/-/pg-connection-string-2.7.0.tgz",
+      "integrity": "sha512-PI2W9mv53rXJQEOb8xNR8lH7Hr+EKa6oJa38zsK0S/ky2er16ios1wLKhZyxzD7jUReiWokc9WK5nxSnC7W1TA==",
       "dev": true,
       "license": "MIT"
     },
@@ -3553,9 +3572,9 @@
       }
     },
     "node_modules/pg-pool": {
-      "version": "3.6.2",
-      "resolved": "https://registry.npmjs.org/pg-pool/-/pg-pool-3.6.2.tgz",
-      "integrity": "sha512-Htjbg8BlwXqSBQ9V8Vjtc+vzf/6fVUuak/3/XXKA9oxZprwW3IMDQTGHP+KDmVL7rtd+R1QjbnCFPuTHm3G4hg==",
+      "version": "3.7.0",
+      "resolved": "https://registry.npmjs.org/pg-pool/-/pg-pool-3.7.0.tgz",
+      "integrity": "sha512-ZOBQForurqh4zZWjrgSwwAtzJ7QiRX0ovFkZr2klsen3Nm0aoh33Ls0fzfv3imeH/nw/O27cjdz5kzYJfeGp/g==",
       "dev": true,
       "license": "MIT",
       "peerDependencies": {
@@ -3579,9 +3598,9 @@
       }
     },
     "node_modules/pg-protocol": {
-      "version": "1.6.1",
-      "resolved": "https://registry.npmjs.org/pg-protocol/-/pg-protocol-1.6.1.tgz",
-      "integrity": "sha512-jPIlvgoD63hrEuihvIg+tJhoGjUsLPn6poJY9N5CnlPd91c2T18T/9zBtLxZSb1EhYxBRoZJtzScCaWlYLtktg==",
+      "version": "1.7.0",
+      "resolved": "https://registry.npmjs.org/pg-protocol/-/pg-protocol-1.7.0.tgz",
+      "integrity": "sha512-hTK/mE36i8fDDhgDFjy6xNOG+LCorxLG3WO17tku+ij6sVHXh1jQUJ8hYAnRhNla4QVD2H8er/FOjc/+EgC6yQ==",
       "dev": true,
       "license": "MIT"
     },
@@ -3635,20 +3654,20 @@
       }
     },
     "node_modules/picocolors": {
-      "version": "1.1.0",
-      "resolved": "https://registry.npmjs.org/picocolors/-/picocolors-1.1.0.tgz",
-      "integrity": "sha512-TQ92mBOW0l3LeMeyLV6mzy/kWr8lkd/hp3mTg7wYK7zJhuBStmGMBG0BdeDZS/dZx1IukaX6Bk11zcln25o1Aw==",
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/picocolors/-/picocolors-1.1.1.tgz",
+      "integrity": "sha512-xceH2snhtb5M9liqDsmEw56le376mTZkEX/jEb/RxNFyegNul7eNslCXP9FDj/Lcu0X8KEyMceP2ntpaHrDEVA==",
       "dev": true,
       "license": "ISC"
     },
     "node_modules/picomatch": {
-      "version": "2.3.1",
-      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.1.tgz",
-      "integrity": "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA==",
+      "version": "4.0.2",
+      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-4.0.2.tgz",
+      "integrity": "sha512-M7BAV6Rlcy5u+m6oPhAPFgJTzAioX/6B0DxyvDlo9l8+T3nLKbrczg2WLUyzd45L8RqfUMyGPzekbMvX2Ldkwg==",
       "dev": true,
       "license": "MIT",
       "engines": {
-        "node": ">=8.6"
+        "node": ">=12"
       },
       "funding": {
         "url": "https://github.com/sponsors/jonschlinkert"
@@ -3686,25 +3705,10 @@
         "node": ">=18"
       }
     },
-    "node_modules/playwright/node_modules/fsevents": {
-      "version": "2.3.2",
-      "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.2.tgz",
-      "integrity": "sha512-xiqMQR4xAeHTuB9uWm+fFRcIOgKBMiOBP+eXiyT7jsgVCq1bkVygt00oASowB7EdtpOHaaPgKt812P9ab+DDKA==",
-      "dev": true,
-      "hasInstallScript": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "darwin"
-      ],
-      "engines": {
-        "node": "^8.16.0 || ^10.6.0 || >=11.0.0"
-      }
-    },
     "node_modules/postcss": {
-      "version": "8.4.47",
-      "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.47.tgz",
-      "integrity": "sha512-56rxCq7G/XfB4EkXq9Egn5GCqugWvDFjafDOThIdMBsI15iqPqR5r15TfSr1YPYeEI19YeaXMCbY6u88Y76GLQ==",
+      "version": "8.4.49",
+      "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.49.tgz",
+      "integrity": "sha512-OCVPnIObs4N29kxTjzLfUryOkvZEq+pf8jTF0lg8E7uETuWHA+v7j3c/xJmiqpX450191LlmZfUKkXxkTry7nA==",
       "dev": true,
       "funding": [
         {
@@ -3723,7 +3727,7 @@
       "license": "MIT",
       "dependencies": {
         "nanoid": "^3.3.7",
-        "picocolors": "^1.1.0",
+        "picocolors": "^1.1.1",
         "source-map-js": "^1.2.1"
       },
       "engines": {
@@ -3905,12 +3909,6 @@
       "dev": true,
       "license": "ISC"
     },
-    "node_modules/psl": {
-      "version": "1.9.0",
-      "resolved": "https://registry.npmjs.org/psl/-/psl-1.9.0.tgz",
-      "integrity": "sha512-E/ZsdU4HLs/68gYzgGTkMicWTLPdAftJLfJFlLUAAKZGkStNU72sZjT66SnMDVOfOWY/YAoiD7Jxa9iHvngcag==",
-      "license": "MIT"
-    },
     "node_modules/punycode": {
       "version": "2.3.1",
       "resolved": "https://registry.npmjs.org/punycode/-/punycode-2.3.1.tgz",
@@ -3920,12 +3918,6 @@
         "node": ">=6"
       }
     },
-    "node_modules/querystringify": {
-      "version": "2.2.0",
-      "resolved": "https://registry.npmjs.org/querystringify/-/querystringify-2.2.0.tgz",
-      "integrity": "sha512-FIqgj2EUvTa7R50u0rGsyTftzjYmv/a3hO345bZNrqabNqjtgiDMgmo4mkUjd+nzU5oF3dClKqFIPUKybUyqoQ==",
-      "license": "MIT"
-    },
     "node_modules/queue-microtask": {
       "version": "1.2.3",
       "resolved": "https://registry.npmjs.org/queue-microtask/-/queue-microtask-1.2.3.tgz",
@@ -3960,6 +3952,19 @@
         "node": ">=8.10.0"
       }
     },
+    "node_modules/readdirp/node_modules/picomatch": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.1.tgz",
+      "integrity": "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8.6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/jonschlinkert"
+      }
+    },
     "node_modules/require-directory": {
       "version": "2.1.1",
       "resolved": "https://registry.npmjs.org/require-directory/-/require-directory-2.1.1.tgz",
@@ -3970,12 +3975,6 @@
         "node": ">=0.10.0"
       }
     },
-    "node_modules/requires-port": {
-      "version": "1.0.0",
-      "resolved": "https://registry.npmjs.org/requires-port/-/requires-port-1.0.0.tgz",
-      "integrity": "sha512-KigOCHcocU3XODJxsu8i/j8T9tzT4adHiecwORRQ0ZZFcp7ahwXuRU1m+yuO90C5ZUyGeGfocHDI14M3L3yDAQ==",
-      "license": "MIT"
-    },
     "node_modules/resolve": {
       "version": "1.22.8",
       "resolved": "https://registry.npmjs.org/resolve/-/resolve-1.22.8.tgz",
@@ -4016,13 +4015,13 @@
       }
     },
     "node_modules/rollup": {
-      "version": "4.22.4",
-      "resolved": "https://registry.npmjs.org/rollup/-/rollup-4.22.4.tgz",
-      "integrity": "sha512-vD8HJ5raRcWOyymsR6Z3o6+RzfEPCnVLMFJ6vRslO1jt4LO6dUo5Qnpg7y4RkZFM2DMe3WUirkI5c16onjrc6A==",
+      "version": "4.27.3",
+      "resolved": "https://registry.npmjs.org/rollup/-/rollup-4.27.3.tgz",
+      "integrity": "sha512-SLsCOnlmGt9VoZ9Ek8yBK8tAdmPHeppkw+Xa7yDlCEhDTvwYei03JlWo1fdc7YTfLZ4tD8riJCUyAgTbszk1fQ==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
-        "@types/estree": "1.0.5"
+        "@types/estree": "1.0.6"
       },
       "bin": {
         "rollup": "dist/bin/rollup"
@@ -4032,22 +4031,24 @@
         "npm": ">=8.0.0"
       },
       "optionalDependencies": {
-        "@rollup/rollup-android-arm-eabi": "4.22.4",
-        "@rollup/rollup-android-arm64": "4.22.4",
-        "@rollup/rollup-darwin-arm64": "4.22.4",
-        "@rollup/rollup-darwin-x64": "4.22.4",
-        "@rollup/rollup-linux-arm-gnueabihf": "4.22.4",
-        "@rollup/rollup-linux-arm-musleabihf": "4.22.4",
-        "@rollup/rollup-linux-arm64-gnu": "4.22.4",
-        "@rollup/rollup-linux-arm64-musl": "4.22.4",
-        "@rollup/rollup-linux-powerpc64le-gnu": "4.22.4",
-        "@rollup/rollup-linux-riscv64-gnu": "4.22.4",
-        "@rollup/rollup-linux-s390x-gnu": "4.22.4",
-        "@rollup/rollup-linux-x64-gnu": "4.22.4",
-        "@rollup/rollup-linux-x64-musl": "4.22.4",
-        "@rollup/rollup-win32-arm64-msvc": "4.22.4",
-        "@rollup/rollup-win32-ia32-msvc": "4.22.4",
-        "@rollup/rollup-win32-x64-msvc": "4.22.4",
+        "@rollup/rollup-android-arm-eabi": "4.27.3",
+        "@rollup/rollup-android-arm64": "4.27.3",
+        "@rollup/rollup-darwin-arm64": "4.27.3",
+        "@rollup/rollup-darwin-x64": "4.27.3",
+        "@rollup/rollup-freebsd-arm64": "4.27.3",
+        "@rollup/rollup-freebsd-x64": "4.27.3",
+        "@rollup/rollup-linux-arm-gnueabihf": "4.27.3",
+        "@rollup/rollup-linux-arm-musleabihf": "4.27.3",
+        "@rollup/rollup-linux-arm64-gnu": "4.27.3",
+        "@rollup/rollup-linux-arm64-musl": "4.27.3",
+        "@rollup/rollup-linux-powerpc64le-gnu": "4.27.3",
+        "@rollup/rollup-linux-riscv64-gnu": "4.27.3",
+        "@rollup/rollup-linux-s390x-gnu": "4.27.3",
+        "@rollup/rollup-linux-x64-gnu": "4.27.3",
+        "@rollup/rollup-linux-x64-musl": "4.27.3",
+        "@rollup/rollup-win32-arm64-msvc": "4.27.3",
+        "@rollup/rollup-win32-ia32-msvc": "4.27.3",
+        "@rollup/rollup-win32-x64-msvc": "4.27.3",
         "fsevents": "~2.3.2"
       }
     },
@@ -4126,9 +4127,9 @@
       }
     },
     "node_modules/set-cookie-parser": {
-      "version": "2.7.0",
-      "resolved": "https://registry.npmjs.org/set-cookie-parser/-/set-cookie-parser-2.7.0.tgz",
-      "integrity": "sha512-lXLOiqpkUumhRdFF3k1osNXCy9akgx/dyPZ5p8qAg9seJzXr5ZrlqZuWIMuY6ejOsVLE6flJ5/h3lsn57fQ/PQ==",
+      "version": "2.7.1",
+      "resolved": "https://registry.npmjs.org/set-cookie-parser/-/set-cookie-parser-2.7.1.tgz",
+      "integrity": "sha512-IOc8uWeOZgnb3ptbCURJWNjWUPcO3ZnTTdzsurqERrP6nPyv+paC55vJM0LpOlT2ne+Ix+9+CRG1MNLlyZ4GjQ==",
       "dev": true,
       "license": "MIT"
     },
@@ -4412,36 +4413,6 @@
         "typescript": ">=5.0.0"
       }
     },
-    "node_modules/svelte-check/node_modules/fdir": {
-      "version": "6.3.0",
-      "resolved": "https://registry.npmjs.org/fdir/-/fdir-6.3.0.tgz",
-      "integrity": "sha512-QOnuT+BOtivR77wYvCWHfGt9s4Pz1VIMbD463vegT5MLqNXy8rYFT/lPVEqf/bhYeT6qmqrNHhsX+rWwe3rOCQ==",
-      "dev": true,
-      "license": "MIT",
-      "peerDependencies": {
-        "picomatch": "^3 || ^4"
-      },
-      "peerDependenciesMeta": {
-        "picomatch": {
-          "optional": true
-        }
-      }
-    },
-    "node_modules/svelte-check/node_modules/picomatch": {
-      "version": "4.0.2",
-      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-4.0.2.tgz",
-      "integrity": "sha512-M7BAV6Rlcy5u+m6oPhAPFgJTzAioX/6B0DxyvDlo9l8+T3nLKbrczg2WLUyzd45L8RqfUMyGPzekbMvX2Ldkwg==",
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "peer": true,
-      "engines": {
-        "node": ">=12"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/jonschlinkert"
-      }
-    },
     "node_modules/svelte-eslint-parser": {
       "version": "0.41.1",
       "resolved": "https://registry.npmjs.org/svelte-eslint-parser/-/svelte-eslint-parser-0.41.1.tgz",
@@ -4519,13 +4490,13 @@
       }
     },
     "node_modules/svelte/node_modules/is-reference": {
-      "version": "3.0.2",
-      "resolved": "https://registry.npmjs.org/is-reference/-/is-reference-3.0.2.tgz",
-      "integrity": "sha512-v3rht/LgVcsdZa3O2Nqs+NMowLOxeOm7Ay9+/ARQ2F+qEoANRcqrjAZKGN0v8ymUetZGgkp26LTnGT7H0Qo9Pg==",
+      "version": "3.0.3",
+      "resolved": "https://registry.npmjs.org/is-reference/-/is-reference-3.0.3.tgz",
+      "integrity": "sha512-ixkJoqQvAP88E6wLydLGGqCJsrFUnqoH6HnaczB8XmDH1oaWU+xxdptvikTgaEhtZ53Ky6YXiBuUI2WXLMCwjw==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
-        "@types/estree": "*"
+        "@types/estree": "^1.0.6"
       }
     },
     "node_modules/symbol-tree": {
@@ -4534,13 +4505,6 @@
       "integrity": "sha512-9QNk5KwDF+Bvz+PyObkmSYjI5ksVUYtjW7AU22r2NKcfLJcXp96hkDWU3+XndOsUb+AQ9QhfzfCT2O+CNWT5Tw==",
       "license": "MIT"
     },
-    "node_modules/text-table": {
-      "version": "0.2.0",
-      "resolved": "https://registry.npmjs.org/text-table/-/text-table-0.2.0.tgz",
-      "integrity": "sha512-N+8UisAXDGk8PFXP4HAzVR9nbfmVJ3zYLAWiTIoqC5v5isinhr+r5uaO8+7r3BMfuNIufIsA7RdpVgacC2cSpw==",
-      "dev": true,
-      "license": "MIT"
-    },
     "node_modules/tiny-glob": {
       "version": "0.2.9",
       "resolved": "https://registry.npmjs.org/tiny-glob/-/tiny-glob-0.2.9.tgz",
@@ -4552,6 +4516,24 @@
         "globrex": "^0.1.2"
       }
     },
+    "node_modules/tldts": {
+      "version": "6.1.61",
+      "resolved": "https://registry.npmjs.org/tldts/-/tldts-6.1.61.tgz",
+      "integrity": "sha512-rv8LUyez4Ygkopqn+M6OLItAOT9FF3REpPQDkdMx5ix8w4qkuE7Vo2o/vw1nxKQYmJDV8JpAMJQr1b+lTKf0FA==",
+      "license": "MIT",
+      "dependencies": {
+        "tldts-core": "^6.1.61"
+      },
+      "bin": {
+        "tldts": "bin/cli.js"
+      }
+    },
+    "node_modules/tldts-core": {
+      "version": "6.1.61",
+      "resolved": "https://registry.npmjs.org/tldts-core/-/tldts-core-6.1.61.tgz",
+      "integrity": "sha512-In7VffkDWUPgwa+c9picLUxvb0RltVwTkSgMNFgvlGSWveCzGBemBqTsgJCL4EDFWZ6WH0fKTsot6yNhzy3ZzQ==",
+      "license": "MIT"
+    },
     "node_modules/to-regex-range": {
       "version": "5.0.1",
       "resolved": "https://registry.npmjs.org/to-regex-range/-/to-regex-range-5.0.1.tgz",
@@ -4576,18 +4558,15 @@
       }
     },
     "node_modules/tough-cookie": {
-      "version": "4.1.4",
-      "resolved": "https://registry.npmjs.org/tough-cookie/-/tough-cookie-4.1.4.tgz",
-      "integrity": "sha512-Loo5UUvLD9ScZ6jh8beX1T6sO1w2/MpCRpEP7V280GKMVUQ0Jzar2U3UJPsrdbziLEMMhu3Ujnq//rhiFuIeag==",
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/tough-cookie/-/tough-cookie-5.0.0.tgz",
+      "integrity": "sha512-FRKsF7cz96xIIeMZ82ehjC3xW2E+O2+v11udrDYewUbszngYhsGa8z6YUMMzO9QJZzzyd0nGGXnML/TReX6W8Q==",
       "license": "BSD-3-Clause",
       "dependencies": {
-        "psl": "^1.1.33",
-        "punycode": "^2.1.1",
-        "universalify": "^0.2.0",
-        "url-parse": "^1.5.3"
+        "tldts": "^6.1.32"
       },
       "engines": {
-        "node": ">=6"
+        "node": ">=16"
       }
     },
     "node_modules/tr46": {
@@ -4603,9 +4582,9 @@
       }
     },
     "node_modules/ts-api-utils": {
-      "version": "1.3.0",
-      "resolved": "https://registry.npmjs.org/ts-api-utils/-/ts-api-utils-1.3.0.tgz",
-      "integrity": "sha512-UQMIo7pb8WRomKR1/+MFVLTroIvDVtMX3K6OUir8ynLyzB8Jeriont2bTAtmNPa1ekAgN7YPDyf6V+ygrdU+eQ==",
+      "version": "1.4.0",
+      "resolved": "https://registry.npmjs.org/ts-api-utils/-/ts-api-utils-1.4.0.tgz",
+      "integrity": "sha512-032cPxaEKwM+GT3vA5JXNzIaizx388rhsSW79vGRNGXfRRAdEAn2mvk36PvK5HnOchyWZ7afLEXqYCvPCrzuzQ==",
       "dev": true,
       "license": "MIT",
       "engines": {
@@ -4693,15 +4672,6 @@
       "dev": true,
       "license": "MIT"
     },
-    "node_modules/universalify": {
-      "version": "0.2.0",
-      "resolved": "https://registry.npmjs.org/universalify/-/universalify-0.2.0.tgz",
-      "integrity": "sha512-CJ1QgKmNg3CwvAv/kOFmtnEN05f0D/cn9QntgNOQlQF9dgvVTHj3t+8JPdjqawCHk7V/KA+fbUqzZ9XWhcqPUg==",
-      "license": "MIT",
-      "engines": {
-        "node": ">= 4.0.0"
-      }
-    },
     "node_modules/uri-js": {
       "version": "4.4.1",
       "resolved": "https://registry.npmjs.org/uri-js/-/uri-js-4.4.1.tgz",
@@ -4712,16 +4682,6 @@
         "punycode": "^2.1.0"
       }
     },
-    "node_modules/url-parse": {
-      "version": "1.5.10",
-      "resolved": "https://registry.npmjs.org/url-parse/-/url-parse-1.5.10.tgz",
-      "integrity": "sha512-WypcfiRhfeUP9vvF0j6rw0J3hrWrw6iZv3+22h6iRMJ/8z1Tj6XfLP4DsUix5MhMPnXpiHDoKyoZ/bdCkwBCiQ==",
-      "license": "MIT",
-      "dependencies": {
-        "querystringify": "^2.1.1",
-        "requires-port": "^1.0.0"
-      }
-    },
     "node_modules/util-deprecate": {
       "version": "1.0.2",
       "resolved": "https://registry.npmjs.org/util-deprecate/-/util-deprecate-1.0.2.tgz",
@@ -4789,6 +4749,21 @@
         }
       }
     },
+    "node_modules/vite/node_modules/fsevents": {
+      "version": "2.3.3",
+      "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.3.tgz",
+      "integrity": "sha512-5xoDfX+fL7faATnagmWPpbFtwh/R77WmMMqqHGS65C3vvB0YHrgF+B1YmZ3441tMj5n63k0212XNoJwzlhffQw==",
+      "dev": true,
+      "hasInstallScript": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": "^8.16.0 || ^10.6.0 || >=11.0.0"
+      }
+    },
     "node_modules/vitefu": {
       "version": "0.2.5",
       "resolved": "https://registry.npmjs.org/vitefu/-/vitefu-0.2.5.tgz",
@@ -4932,22 +4907,6 @@
         "node": ">=8"
       }
     },
-    "node_modules/wrap-ansi-cjs/node_modules/ansi-styles": {
-      "version": "4.3.0",
-      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-4.3.0.tgz",
-      "integrity": "sha512-zbB9rCJAT1rbjiVDb2hqKFHNYLxgtk8NURxZ3IZwD3F6NtxbXZQCnnSi1Lkx+IDohdPlFp222wVALIheZJQSEg==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "color-convert": "^2.0.1"
-      },
-      "engines": {
-        "node": ">=8"
-      },
-      "funding": {
-        "url": "https://github.com/chalk/ansi-styles?sponsor=1"
-      }
-    },
     "node_modules/wrap-ansi-cjs/node_modules/emoji-regex": {
       "version": "8.0.0",
       "resolved": "https://registry.npmjs.org/emoji-regex/-/emoji-regex-8.0.0.tgz",
@@ -4983,6 +4942,19 @@
         "node": ">=8"
       }
     },
+    "node_modules/wrap-ansi/node_modules/ansi-styles": {
+      "version": "6.2.1",
+      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-6.2.1.tgz",
+      "integrity": "sha512-bN798gFfQX+viw3R7yrGWRqnrN2oRkEkUjjl4JNn4E8GxxbjtG3FbrEIIY3l8/hrwUwIeCZvi4QuOTP4MErVug==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/chalk/ansi-styles?sponsor=1"
+      }
+    },
     "node_modules/ws": {
       "version": "8.18.0",
       "resolved": "https://registry.npmjs.org/ws/-/ws-8.18.0.tgz",
diff --git a/web-app/package.json b/web-app/package.json
index 352d9bb..7f171a0 100644
--- a/web-app/package.json
+++ b/web-app/package.json
@@ -24,7 +24,7 @@
     "@types/eslint__js": "8.42.3",
     "@types/eslint-config-prettier": "6.11.3",
     "@types/node": "22.5.5",
-    "eslint": "9.10.0",
+    "eslint": "9.15.0",
     "eslint-config-prettier": "9.1.0",
     "eslint-plugin-svelte": "2.44.0",
     "globals": "15.9.0",
@@ -37,12 +37,15 @@
     "typescript-eslint": "8.6.0",
     "vite": "5.4.6"
   },
-  "type": "module",
   "dependencies": {
     "diff-match-patch": "1.0.5",
     "highlight.js": "11.10.0",
     "isomorphic-dompurify": "2.15.0",
     "marked": "14.1.2",
     "marked-highlight": "2.1.4"
-  }
+  },
+  "overrides": {
+    "cookie": "0.7.0"
+  },
+  "type": "module"
 }
diff --git a/web-app/src/lib/components/DateTime.svelte b/web-app/src/lib/components/DateTime.svelte
index 3682077..176d9c0 100644
--- a/web-app/src/lib/components/DateTime.svelte
+++ b/web-app/src/lib/components/DateTime.svelte
@@ -4,6 +4,12 @@
   const dateObject = new Date(date);
 
   const calcTimeAgo = (date: Date) => {
+    const secondsElapsed = (date.getTime() - Date.now()) / 1000;
+
+    if (Math.abs(secondsElapsed) < 1) {
+      return "Just now";
+    }
+
     const formatter = new Intl.RelativeTimeFormat("en");
     const ranges = [
       ["years", 60 * 60 * 24 * 365],
@@ -14,7 +20,6 @@
       ["minutes", 60],
       ["seconds", 1]
     ] as const;
-    const secondsElapsed = (date.getTime() - Date.now()) / 1000;
 
     for (const [rangeType, rangeVal] of ranges) {
       if (rangeVal < Math.abs(secondsElapsed)) {
diff --git a/web-app/src/lib/components/WebsiteEditor.svelte b/web-app/src/lib/components/WebsiteEditor.svelte
index 85f40a4..14e1f21 100644
--- a/web-app/src/lib/components/WebsiteEditor.svelte
+++ b/web-app/src/lib/components/WebsiteEditor.svelte
@@ -25,15 +25,7 @@
     previewElement.scrollTop = (textareaScrollTop.value / 100) * scrollHeight;
   });
 
-  const tabs = [
-    "settings",
-    "articles",
-    "categories",
-    "collaborators",
-    "legal-information",
-    "publish",
-    "logs"
-  ];
+  const tabs = ["settings", "articles", "categories", "collaborators", "publish", "logs"];
 </script>
 
 <input type="checkbox" id="toggle-mobile-preview" hidden />
diff --git a/web-app/src/lib/db-schema.ts b/web-app/src/lib/db-schema.ts
index 4c59020..798c35b 100644
--- a/web-app/src/lib/db-schema.ts
+++ b/web-app/src/lib/db-schema.ts
@@ -5,7 +5,7 @@
  * AUTO-GENERATED FILE - DO NOT EDIT!
  *
  * This file was automatically generated by pg-to-ts v.4.1.1
- * $ pg-to-ts generate -c postgres://username:password@localhost:15432/archtika -t article -t change_log -t collab -t docs_category -t domain_prefix -t footer -t header -t home -t legal_information -t media -t settings -t user -t website -s internal
+ * $ pg-to-ts generate -c postgres://username:password@localhost:15432/archtika -t article -t change_log -t collab -t docs_category -t footer -t header -t home -t media -t settings -t user -t website -s internal
  *
  */
 
@@ -206,34 +206,6 @@ const docs_category = {
   $input: null as unknown as DocsCategoryInput
 } as const;
 
-// Table domain_prefix
-export interface DomainPrefix {
-  website_id: string;
-  prefix: string;
-  created_at: string;
-  last_modified_at: string;
-  last_modified_by: string | null;
-}
-export interface DomainPrefixInput {
-  website_id: string;
-  prefix: string;
-  created_at?: string;
-  last_modified_at?: string;
-  last_modified_by?: string | null;
-}
-const domain_prefix = {
-  tableName: "domain_prefix",
-  columns: ["website_id", "prefix", "created_at", "last_modified_at", "last_modified_by"],
-  requiredForInsert: ["website_id", "prefix"],
-  primaryKey: "website_id",
-  foreignKeys: {
-    website_id: { table: "website", column: "id", $type: null as unknown as Website },
-    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
-  },
-  $type: null as unknown as DomainPrefix,
-  $input: null as unknown as DomainPrefixInput
-} as const;
-
 // Table footer
 export interface Footer {
   website_id: string;
@@ -332,34 +304,6 @@ const home = {
   $input: null as unknown as HomeInput
 } as const;
 
-// Table legal_information
-export interface LegalInformation {
-  website_id: string;
-  main_content: string;
-  created_at: string;
-  last_modified_at: string;
-  last_modified_by: string | null;
-}
-export interface LegalInformationInput {
-  website_id: string;
-  main_content: string;
-  created_at?: string;
-  last_modified_at?: string;
-  last_modified_by?: string | null;
-}
-const legal_information = {
-  tableName: "legal_information",
-  columns: ["website_id", "main_content", "created_at", "last_modified_at", "last_modified_by"],
-  requiredForInsert: ["website_id", "main_content"],
-  primaryKey: "website_id",
-  foreignKeys: {
-    website_id: { table: "website", column: "id", $type: null as unknown as Website },
-    last_modified_by: { table: "user", column: "id", $type: null as unknown as User }
-  },
-  $type: null as unknown as LegalInformation,
-  $input: null as unknown as LegalInformationInput
-} as const;
-
 // Table media
 export interface Media {
   id: string;
@@ -469,8 +413,8 @@ export interface Website {
   user_id: string;
   content_type: string;
   title: string;
+  slug: string | null;
   max_storage_size: number;
-  is_published: boolean;
   created_at: string;
   last_modified_at: string;
   last_modified_by: string | null;
@@ -480,8 +424,8 @@ export interface WebsiteInput {
   user_id?: string;
   content_type: string;
   title: string;
+  slug?: string | null;
   max_storage_size?: number;
-  is_published?: boolean;
   created_at?: string;
   last_modified_at?: string;
   last_modified_by?: string | null;
@@ -493,8 +437,8 @@ const website = {
     "user_id",
     "content_type",
     "title",
+    "slug",
     "max_storage_size",
-    "is_published",
     "created_at",
     "last_modified_at",
     "last_modified_by"
@@ -526,10 +470,6 @@ export interface TableTypes {
     select: DocsCategory;
     input: DocsCategoryInput;
   };
-  domain_prefix: {
-    select: DomainPrefix;
-    input: DomainPrefixInput;
-  };
   footer: {
     select: Footer;
     input: FooterInput;
@@ -542,10 +482,6 @@ export interface TableTypes {
     select: Home;
     input: HomeInput;
   };
-  legal_information: {
-    select: LegalInformation;
-    input: LegalInformationInput;
-  };
   media: {
     select: Media;
     input: MediaInput;
@@ -569,11 +505,9 @@ export const tables = {
   change_log,
   collab,
   docs_category,
-  domain_prefix,
   footer,
   header,
   home,
-  legal_information,
   media,
   settings,
   user,
diff --git a/web-app/src/lib/server/utils.ts b/web-app/src/lib/server/utils.ts
index 134430c..c5b41d4 100644
--- a/web-app/src/lib/server/utils.ts
+++ b/web-app/src/lib/server/utils.ts
@@ -19,11 +19,13 @@ export const apiRequest = async (
     body?: any;
     successMessage?: string;
     returnData?: boolean;
+    noJSONTransform?: boolean;
   } = {
     headers: {},
     body: undefined,
     successMessage: "Operation was successful",
-    returnData: false
+    returnData: false,
+    noJSONTransform: false
   }
 ) => {
   const headers = {
@@ -48,7 +50,7 @@ export const apiRequest = async (
     return {
       success: true,
       message: options.successMessage,
-      data: method === "HEAD" ? response : await response.json()
+      data: method === "HEAD" || options.noJSONTransform ? response : await response.json()
     };
   }
 
diff --git a/web-app/src/lib/templates/Article.svelte b/web-app/src/lib/templates/Article.svelte
new file mode 100644
index 0000000..4a52f28
--- /dev/null
+++ b/web-app/src/lib/templates/Article.svelte
@@ -0,0 +1,64 @@
+<script lang="ts">
+  import { md, type WebsiteOverview } from "$lib/utils";
+  import type { Article } from "$lib/db-schema";
+  import Head from "$lib/templates/Head.svelte";
+  import Nav from "$lib/templates/Nav.svelte";
+  import Footer from "$lib/templates/Footer.svelte";
+
+  const {
+    websiteOverview,
+    article,
+    apiUrl,
+    websiteUrl
+  }: {
+    websiteOverview: WebsiteOverview;
+    article: Article;
+    apiUrl: string;
+    websiteUrl: string;
+  } = $props();
+</script>
+
+<Head
+  {websiteOverview}
+  nestingLevel={1}
+  {apiUrl}
+  title={article.title}
+  slug={article.slug as string}
+  metaDescription={article.meta_description}
+  {websiteUrl}
+/>
+
+<Nav
+  {websiteOverview}
+  isDocsTemplate={websiteOverview.content_type === "Docs"}
+  isIndexPage={false}
+  {apiUrl}
+/>
+
+<header>
+  <div class="container">
+    {#if websiteOverview.content_type === "Blog"}
+      <hgroup>
+        {#if article.publication_date}
+          <p>{article.publication_date}</p>
+        {/if}
+        <h1>{article.title}</h1>
+      </hgroup>
+      {#if article.cover_image}
+        <img src="{apiUrl}/rpc/retrieve_file?id={article.cover_image}" alt="" />
+      {/if}
+    {:else}
+      <h1>{article.title}</h1>
+    {/if}
+  </div>
+</header>
+
+{#if article.main_content}
+  <main>
+    <div class="container">
+      {@html md(article.main_content)}
+    </div>
+  </main>
+{/if}
+
+<Footer {websiteOverview} />
diff --git a/web-app/src/lib/templates/Footer.svelte b/web-app/src/lib/templates/Footer.svelte
new file mode 100644
index 0000000..d5a473a
--- /dev/null
+++ b/web-app/src/lib/templates/Footer.svelte
@@ -0,0 +1,11 @@
+<script lang="ts">
+  import { type WebsiteOverview, md } from "../utils";
+
+  const { websiteOverview }: { websiteOverview: WebsiteOverview } = $props();
+</script>
+
+<footer>
+  <div class="container">
+    {@html md(websiteOverview.footer.additional_text, false)}
+  </div>
+</footer>
diff --git a/web-app/src/lib/templates/common/Head.svelte b/web-app/src/lib/templates/Head.svelte
similarity index 93%
rename from web-app/src/lib/templates/common/Head.svelte
rename to web-app/src/lib/templates/Head.svelte
index a878c51..e85f7c6 100644
--- a/web-app/src/lib/templates/common/Head.svelte
+++ b/web-app/src/lib/templates/Head.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-  import { type WebsiteOverview } from "../../utils";
+  import { type WebsiteOverview } from "../utils";
 
   const {
     websiteOverview,
@@ -22,7 +22,7 @@
   const constructedTitle =
     websiteOverview.title === title ? title : `${websiteOverview.title} | ${title}`;
 
-  let ogUrl = `${websiteUrl.replace(/\/$/, "")}${nestingLevel === 0 ? (websiteOverview.title === title ? "" : `/${slug}`) : `/articles/${slug}`}`;
+  const ogUrl = `${websiteUrl.replace(/\/$/, "")}${nestingLevel === 0 ? (websiteOverview.title === title ? "" : `/${slug}`) : `/articles/${slug}`}`;
 </script>
 
 <svelte:head>
diff --git a/web-app/src/lib/templates/blog/BlogIndex.svelte b/web-app/src/lib/templates/Index.svelte
similarity index 67%
rename from web-app/src/lib/templates/blog/BlogIndex.svelte
rename to web-app/src/lib/templates/Index.svelte
index 28863fb..e2d3488 100644
--- a/web-app/src/lib/templates/blog/BlogIndex.svelte
+++ b/web-app/src/lib/templates/Index.svelte
@@ -1,18 +1,16 @@
 <script lang="ts">
-  import Head from "../common/Head.svelte";
-  import Nav from "../common/Nav.svelte";
-  import Footer from "../common/Footer.svelte";
   import { md, type WebsiteOverview } from "$lib/utils";
+  import Head from "$lib/templates/Head.svelte";
+  import Nav from "$lib/templates/Nav.svelte";
+  import Footer from "$lib/templates/Footer.svelte";
 
   const {
     websiteOverview,
     apiUrl,
-    isLegalPage,
     websiteUrl
   }: {
     websiteOverview: WebsiteOverview;
     apiUrl: string;
-    isLegalPage: boolean;
     websiteUrl: string;
   } = $props();
 
@@ -27,28 +25,29 @@
   {websiteOverview}
   nestingLevel={0}
   {apiUrl}
-  title={isLegalPage ? "Legal information" : websiteOverview.title}
+  title={websiteOverview.title}
   metaDescription={websiteOverview.home.meta_description}
   {websiteUrl}
 />
 
-<Nav {websiteOverview} isDocsTemplate={false} isIndexPage={true} {isLegalPage} {apiUrl} />
+<Nav
+  {websiteOverview}
+  isDocsTemplate={websiteOverview.content_type === "Docs"}
+  isIndexPage={true}
+  {apiUrl}
+/>
 
 <header>
   <div class="container">
-    <h1>{isLegalPage ? "Legal information" : websiteOverview.title}</h1>
+    <h1>{websiteOverview.title}</h1>
   </div>
 </header>
 
 <main>
   <div class="container">
-    {@html md(
-      isLegalPage
-        ? (websiteOverview.legal_information?.main_content ?? "")
-        : websiteOverview.home.main_content,
-      false
-    )}
-    {#if websiteOverview.article.length > 0 && !isLegalPage}
+    {@html md(websiteOverview.home.main_content, false)}
+
+    {#if websiteOverview.article.length > 0 && websiteOverview.content_type === "Blog"}
       <section class="articles" id="articles">
         <h2>
           <a href="#articles">Articles</a>
@@ -76,4 +75,4 @@
   </div>
 </main>
 
-<Footer {websiteOverview} isIndexPage={true} />
+<Footer {websiteOverview} />
diff --git a/web-app/src/lib/templates/common/Nav.svelte b/web-app/src/lib/templates/Nav.svelte
similarity index 92%
rename from web-app/src/lib/templates/common/Nav.svelte
rename to web-app/src/lib/templates/Nav.svelte
index 14118fc..83776f0 100644
--- a/web-app/src/lib/templates/common/Nav.svelte
+++ b/web-app/src/lib/templates/Nav.svelte
@@ -1,19 +1,17 @@
 <script lang="ts">
-  import { type WebsiteOverview } from "../../utils";
-  import type { Article } from "../../db-schema";
+  import { type WebsiteOverview } from "../utils";
+  import type { Article } from "../db-schema";
 
   const {
     websiteOverview,
     isDocsTemplate,
     isIndexPage,
-    apiUrl,
-    isLegalPage
+    apiUrl
   }: {
     websiteOverview: WebsiteOverview;
     isDocsTemplate: boolean;
     isIndexPage: boolean;
     apiUrl: string;
-    isLegalPage?: boolean;
   } = $props();
 
   const categorizedArticles = Object.fromEntries(
@@ -72,17 +70,14 @@
         </ul>
       </section>
     {/if}
-    <svelte:element
-      this={isIndexPage && !isLegalPage ? "span" : "a"}
-      href={`${isLegalPage ? "./" : "../"}`}
-    >
+    <svelte:element this={isIndexPage ? "span" : "a"} href={`${isIndexPage ? "./" : "../"}`}>
       {#if websiteOverview.header.logo_type === "text"}
         <strong>{websiteOverview.header.logo_text}</strong>
       {:else}
         <img
           src="{apiUrl}/rpc/retrieve_file?id={websiteOverview.header.logo_image}"
-          width="24"
-          height="24"
+          width="32"
+          height="32"
           alt=""
         />
       {/if}
diff --git a/web-app/src/lib/templates/blog/BlogArticle.svelte b/web-app/src/lib/templates/blog/BlogArticle.svelte
deleted file mode 100644
index 5edc7f8..0000000
--- a/web-app/src/lib/templates/blog/BlogArticle.svelte
+++ /dev/null
@@ -1,51 +0,0 @@
-<script lang="ts">
-  import Head from "../common/Head.svelte";
-  import Nav from "../common/Nav.svelte";
-  import Footer from "../common/Footer.svelte";
-  import { type WebsiteOverview, md } from "../../utils";
-  import type { Article } from "../../db-schema";
-
-  const {
-    websiteOverview,
-    article,
-    apiUrl,
-    websiteUrl
-  }: { websiteOverview: WebsiteOverview; article: Article; apiUrl: string; websiteUrl: string } =
-    $props();
-</script>
-
-<Head
-  {websiteOverview}
-  nestingLevel={1}
-  {apiUrl}
-  title={article.title}
-  slug={article.slug as string}
-  metaDescription={article.meta_description}
-  {websiteUrl}
-/>
-
-<Nav {websiteOverview} isDocsTemplate={false} isIndexPage={false} {apiUrl} />
-
-<header>
-  <div class="container">
-    <hgroup>
-      {#if article.publication_date}
-        <p>{article.publication_date}</p>
-      {/if}
-      <h1>{article.title}</h1>
-    </hgroup>
-    {#if article.cover_image}
-      <img src="{apiUrl}/rpc/retrieve_file?id={article.cover_image}" alt="" />
-    {/if}
-  </div>
-</header>
-
-{#if article.main_content}
-  <main>
-    <div class="container">
-      {@html md(article.main_content)}
-    </div>
-  </main>
-{/if}
-
-<Footer {websiteOverview} isIndexPage={false} />
diff --git a/web-app/src/lib/templates/common/Footer.svelte b/web-app/src/lib/templates/common/Footer.svelte
deleted file mode 100644
index d18594d..0000000
--- a/web-app/src/lib/templates/common/Footer.svelte
+++ /dev/null
@@ -1,19 +0,0 @@
-<script lang="ts">
-  import { type WebsiteOverview, md } from "../../utils";
-
-  const {
-    websiteOverview,
-    isIndexPage
-  }: { websiteOverview: WebsiteOverview; isIndexPage: boolean } = $props();
-</script>
-
-<footer>
-  <div class="container">
-    <small>
-      {@html md(websiteOverview.footer.additional_text, false).replace(
-        "!!legal",
-        `<a href="${isIndexPage ? "./legal-information" : "../legal-information"}">Legal information</a>`
-      )}
-    </small>
-  </div>
-</footer>
diff --git a/web-app/src/lib/templates/docs/DocsArticle.svelte b/web-app/src/lib/templates/docs/DocsArticle.svelte
deleted file mode 100644
index 37c0d93..0000000
--- a/web-app/src/lib/templates/docs/DocsArticle.svelte
+++ /dev/null
@@ -1,43 +0,0 @@
-<script lang="ts">
-  import Head from "../common/Head.svelte";
-  import Nav from "../common/Nav.svelte";
-  import Footer from "../common/Footer.svelte";
-  import { md, type WebsiteOverview } from "../../utils";
-  import type { Article } from "../../db-schema";
-
-  const {
-    websiteOverview,
-    article,
-    apiUrl,
-    websiteUrl
-  }: { websiteOverview: WebsiteOverview; article: Article; apiUrl: string; websiteUrl: string } =
-    $props();
-</script>
-
-<Head
-  {websiteOverview}
-  nestingLevel={1}
-  {apiUrl}
-  title={article.title}
-  slug={article.slug as string}
-  metaDescription={article.meta_description}
-  {websiteUrl}
-/>
-
-<Nav {websiteOverview} isDocsTemplate={true} isIndexPage={false} {apiUrl} />
-
-<header>
-  <div class="container">
-    <h1>{article.title}</h1>
-  </div>
-</header>
-
-{#if article.main_content}
-  <main>
-    <div class="container">
-      {@html md(article.main_content)}
-    </div>
-  </main>
-{/if}
-
-<Footer {websiteOverview} isIndexPage={false} />
diff --git a/web-app/src/lib/templates/docs/DocsIndex.svelte b/web-app/src/lib/templates/docs/DocsIndex.svelte
deleted file mode 100644
index a615387..0000000
--- a/web-app/src/lib/templates/docs/DocsIndex.svelte
+++ /dev/null
@@ -1,48 +0,0 @@
-<script lang="ts">
-  import Head from "../common/Head.svelte";
-  import Nav from "../common/Nav.svelte";
-  import Footer from "../common/Footer.svelte";
-  import { md, type WebsiteOverview } from "../../utils";
-
-  const {
-    websiteOverview,
-    apiUrl,
-    isLegalPage,
-    websiteUrl
-  }: {
-    websiteOverview: WebsiteOverview;
-    apiUrl: string;
-    isLegalPage: boolean;
-    websiteUrl: string;
-  } = $props();
-</script>
-
-<Head
-  {websiteOverview}
-  nestingLevel={0}
-  {apiUrl}
-  title={isLegalPage ? "Legal information" : websiteOverview.title}
-  metaDescription={websiteOverview.home.meta_description}
-  {websiteUrl}
-/>
-
-<Nav {websiteOverview} isDocsTemplate={true} isIndexPage={true} {isLegalPage} {apiUrl} />
-
-<header>
-  <div class="container">
-    <h1>{isLegalPage ? "Legal information" : websiteOverview.title}</h1>
-  </div>
-</header>
-
-<main>
-  <div class="container">
-    {@html md(
-      isLegalPage
-        ? (websiteOverview.legal_information?.main_content ?? "")
-        : websiteOverview.home.main_content,
-      false
-    )}
-  </div>
-</main>
-
-<Footer {websiteOverview} isIndexPage={true} />
diff --git a/web-app/src/lib/utils.ts b/web-app/src/lib/utils.ts
index 7879886..d8b3f36 100644
--- a/web-app/src/lib/utils.ts
+++ b/web-app/src/lib/utils.ts
@@ -11,8 +11,7 @@ import type {
   Footer,
   Article,
   DocsCategory,
-  LegalInformation,
-  DomainPrefix
+  User
 } from "$lib/db-schema";
 import type { SubmitFunction } from "@sveltejs/kit";
 import { sending } from "./runes.svelte";
@@ -221,6 +220,5 @@ export interface WebsiteOverview extends Website {
   home: Home;
   footer: Footer;
   article: (Article & { docs_category: DocsCategory | null })[];
-  legal_information?: LegalInformation;
-  domain_prefix?: DomainPrefix;
+  user: User;
 }
diff --git a/web-app/src/routes/(authenticated)/+page.svelte b/web-app/src/routes/(authenticated)/+page.svelte
index 38e0b32..8a51d74 100644
--- a/web-app/src/routes/(authenticated)/+page.svelte
+++ b/web-app/src/routes/(authenticated)/+page.svelte
@@ -77,27 +77,18 @@
     </details>
 
     <ul class="website-grid unpadded">
-      {#each data.websites as { id, user_id, content_type, title, created_at, last_modified_at, collab } (id)}
+      {#each data.websites as { id, user_id, content_type, title, last_modified_at, collab } (id)}
         <li class="website-card">
           <p>
+            <span>({content_type})</span>
             <strong>
               <a href="/website/{id}">{title}</a>
             </strong>
           </p>
-          <ul>
-            <li>
-              <strong>Type:</strong>
-              {content_type}
-            </li>
-            <li>
-              <strong>Created:</strong>
-              <DateTime date={created_at} />
-            </li>
-            <li>
-              <strong>Last modified:</strong>
-              <DateTime date={last_modified_at} />
-            </li>
-          </ul>
+          <p>
+            <strong>Last modified:</strong>
+            <DateTime date={last_modified_at} />
+          </p>
           <div class="website-card__actions">
             <Modal id="update-website-{id}" text="Update">
               <h4>Update website</h4>
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.svelte
index a6bb790..4d5089b 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/articles/+page.svelte
@@ -73,7 +73,7 @@
       <a
         class="export-anchor"
         href={`${data.API_BASE_PREFIX}/rpc/export_articles_zip?website_id=${data.website.id}`}
-        >Export articles</a
+        download>Export articles</a
       >
       <details>
         <summary>Search & Filter</summary>
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
deleted file mode 100644
index 030c1cb..0000000
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.server.ts
+++ /dev/null
@@ -1,72 +0,0 @@
-import type { Actions, PageServerLoad } from "./$types";
-import { API_BASE_PREFIX, apiRequest } from "$lib/server/utils";
-import type { LegalInformation } from "$lib/db-schema";
-
-export const load: PageServerLoad = async ({ parent, fetch, params }) => {
-  const legalInformation: LegalInformation = (
-    await apiRequest(
-      fetch,
-      `${API_BASE_PREFIX}/legal_information?website_id=eq.${params.websiteId}`,
-      "GET",
-      {
-        headers: {
-          Accept: "application/vnd.pgrst.object+json"
-        },
-        returnData: true
-      }
-    )
-  ).data;
-
-  const { website, permissionLevel } = await parent();
-
-  return {
-    legalInformation,
-    website,
-    API_BASE_PREFIX,
-    permissionLevel
-  };
-};
-
-export const actions: Actions = {
-  createUpdateLegalInformation: async ({ request, fetch, params }) => {
-    const data = await request.formData();
-
-    return await apiRequest(fetch, `${API_BASE_PREFIX}/legal_information`, "POST", {
-      headers: {
-        Prefer: "resolution=merge-duplicates",
-        Accept: "application/vnd.pgrst.object+json"
-      },
-      body: {
-        website_id: params.websiteId,
-        main_content: data.get("main-content")
-      },
-      successMessage: "Successfully created/updated legal information"
-    });
-  },
-  deleteLegalInformation: async ({ fetch, params }) => {
-    return await apiRequest(
-      fetch,
-      `${API_BASE_PREFIX}/legal_information?website_id=eq.${params.websiteId}`,
-      "DELETE",
-      {
-        successMessage: "Successfully deleted legal information"
-      }
-    );
-  },
-  pasteImage: async ({ request, fetch, params }) => {
-    const data = await request.formData();
-    const file = data.get("file") as File;
-
-    return await apiRequest(fetch, `${API_BASE_PREFIX}/rpc/upload_file`, "POST", {
-      headers: {
-        "Content-Type": "application/octet-stream",
-        Accept: "application/vnd.pgrst.object+json",
-        "X-Website-Id": params.websiteId,
-        "X-Original-Filename": file.name
-      },
-      body: await file.arrayBuffer(),
-      successMessage: "Successfully uploaded image",
-      returnData: true
-    });
-  }
-};
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte
deleted file mode 100644
index d87a7db..0000000
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/legal-information/+page.svelte
+++ /dev/null
@@ -1,94 +0,0 @@
-<script lang="ts">
-  import { enhance } from "$app/forms";
-  import WebsiteEditor from "$lib/components/WebsiteEditor.svelte";
-  import SuccessOrError from "$lib/components/SuccessOrError.svelte";
-  import LoadingSpinner from "$lib/components/LoadingSpinner.svelte";
-  import Modal from "$lib/components/Modal.svelte";
-  import { enhanceForm } from "$lib/utils";
-  import { sending, previewContent } from "$lib/runes.svelte";
-  import type { ActionData, PageServerData } from "./$types";
-  import MarkdownEditor from "$lib/components/MarkdownEditor.svelte";
-
-  const { data, form }: { data: PageServerData; form: ActionData } = $props();
-
-  previewContent.value = data.legalInformation?.main_content ?? "";
-</script>
-
-<SuccessOrError success={form?.success} message={form?.message} />
-
-{#if sending.value}
-  <LoadingSpinner />
-{/if}
-
-<WebsiteEditor
-  id={data.website.id}
-  contentType={data.website.content_type}
-  title={data.website.title}
->
-  <section id="legal-information">
-    <h2>
-      <a href="#legal-information">Legal information</a>
-    </h2>
-
-    <p>
-      Static websites that do not collect user data and do not use cookies generally have minimal
-      legal obligations regarding privacy policies, imprints, etc. However, it may still be a good
-      idea to include, for example:
-    </p>
-
-    <ol>
-      <li>A simple privacy policy stating that no personal information is collected or stored</li>
-      <li>
-        An imprint (if required by local law) with contact information for the site owner/operator
-      </li>
-    </ol>
-
-    <p>Always consult local laws and regulations for specific requirements in your jurisdiction.</p>
-
-    <p>
-      To include a link to your legal information in the footer, you can write <code>!!legal</code>.
-    </p>
-
-    <form
-      method="POST"
-      action="?/createUpdateLegalInformation"
-      use:enhance={enhanceForm({ reset: false })}
-    >
-      <MarkdownEditor
-        apiPrefix={data.API_BASE_PREFIX}
-        label="Main content"
-        name="main-content"
-        content={data.legalInformation?.main_content ?? ""}
-      />
-
-      <button type="submit" disabled={[10, 20].includes(data.permissionLevel)}
-        >Update legal information</button
-      >
-    </form>
-
-    {#if data.legalInformation?.main_content}
-      <Modal id="delete-legal-information" text="Delete">
-        <form
-          action="?/deleteLegalInformation"
-          method="post"
-          use:enhance={enhanceForm({ closeModal: true })}
-        >
-          <h3>Delete legal information</h3>
-          <p>
-            <strong>Caution!</strong>
-            This action will remove the legal information page from the website and delete all data.
-          </p>
-          <button type="submit" disabled={[10, 20].includes(data.permissionLevel)}
-            >Delete legal information</button
-          >
-        </form>
-      </Modal>
-    {/if}
-  </section>
-</WebsiteEditor>
-
-<style>
-  form[action="?/createUpdateLegalInformation"] {
-    margin-block-start: var(--space-s);
-  }
-</style>
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts
index 570e1a8..84d7473 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.server.ts
@@ -9,12 +9,17 @@ export const load: PageServerLoad = async ({ parent, fetch, params, url }) => {
   const resourceFilter = url.searchParams.get("resource");
   const operationFilter = url.searchParams.get("operation");
   const currentPage = Number.parseInt(url.searchParams.get("page") ?? "1");
+  const sinceTime = url.searchParams.get("since");
   const resultOffset = (currentPage - 1) * PAGINATION_MAX_ITEMS;
 
   const searchParams = new URLSearchParams();
 
   const baseFetchUrl = `${API_BASE_PREFIX}/change_log?website_id=eq.${params.websiteId}&select=id,table_name,operation,tstamp,old_value,new_value,user_id,username&order=tstamp.desc`;
 
+  if (sinceTime) {
+    searchParams.append("tstamp", `gt.${sinceTime}`);
+  }
+
   if (userFilter && userFilter !== "all") {
     searchParams.append("username", `eq.${userFilter}`);
   }
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
index 711b70f..db8cf9c 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/logs/+page.svelte
@@ -96,6 +96,7 @@
           </select>
         </label>
         <input type="hidden" name="page" value={1} />
+        <input type="hidden" name="since" value={$page.url.searchParams.get("since")} />
         <button type="submit">Apply</button>
       </form>
     </details>
@@ -163,7 +164,7 @@
       </table>
     </div>
     <Pagination
-      commonFilters={["user", "resource", "operation"]}
+      commonFilters={["user", "resource", "operation", "since"]}
       resultCount={data.resultChangeLogCount}
     />
   </section>
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
index 56388d0..fd46ae9 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
@@ -1,17 +1,15 @@
 import { dev } from "$app/environment";
 import { API_BASE_PREFIX, apiRequest } from "$lib/server/utils";
-import BlogArticle from "$lib/templates/blog/BlogArticle.svelte";
-import BlogIndex from "$lib/templates/blog/BlogIndex.svelte";
-import DocsArticle from "$lib/templates/docs/DocsArticle.svelte";
-import DocsIndex from "$lib/templates/docs/DocsIndex.svelte";
+import Index from "$lib/templates/Index.svelte";
+import Article from "$lib/templates/Article.svelte";
 import { type WebsiteOverview, hexToHSL } from "$lib/utils";
-import { mkdir, readFile, writeFile, chmod, readdir } from "node:fs/promises";
+import { mkdir, writeFile, chmod, readdir, rm, readFile } from "node:fs/promises";
 import { join } from "node:path";
 import { render } from "svelte/server";
 import type { Actions, PageServerLoad } from "./$types";
 
 const getOverviewFetchUrl = (websiteId: string) => {
-  return `${API_BASE_PREFIX}/website?id=eq.${websiteId}&select=*,settings(*),header(*),home(*),footer(*),article(*,docs_category(*)),legal_information(*),domain_prefix(*)`;
+  return `${API_BASE_PREFIX}/website?id=eq.${websiteId}&select=*,user!user_id(*),settings(*),header(*),home(*),footer(*),article(*,docs_category(*))`;
 };
 
 export const load: PageServerLoad = async ({ params, fetch, parent }) => {
@@ -25,19 +23,37 @@ export const load: PageServerLoad = async ({ params, fetch, parent }) => {
   ).data;
 
   const { websitePreviewUrl, websiteProdUrl } = await generateStaticFiles(websiteOverview);
+  const prodIsGenerated = (await fetch(websiteProdUrl, { method: "HEAD" })).ok;
 
-  const { permissionLevel } = await parent();
+  let currentMeta = null;
+  try {
+    const metaPath = join(
+      "/var/www/archtika-websites",
+      websiteOverview.user.username,
+      websiteOverview.slug as string,
+      ".publication-meta.json"
+    );
+    const metaContent = await readFile(metaPath, "utf-8");
+    currentMeta = JSON.parse(metaContent);
+  } catch {
+    currentMeta = null;
+  }
+
+  const { website, permissionLevel } = await parent();
 
   return {
     websiteOverview,
     websitePreviewUrl,
     websiteProdUrl,
-    permissionLevel
+    permissionLevel,
+    prodIsGenerated,
+    currentMeta,
+    website
   };
 };
 
 export const actions: Actions = {
-  publishWebsite: async ({ fetch, params }) => {
+  publishWebsite: async ({ fetch, params, locals }) => {
     const websiteOverview: WebsiteOverview = (
       await apiRequest(fetch, getOverviewFetchUrl(params.websiteId), "GET", {
         headers: {
@@ -47,48 +63,39 @@ export const actions: Actions = {
       })
     ).data;
 
-    const publish = await apiRequest(
-      fetch,
-      `${API_BASE_PREFIX}/website?id=eq.${params.websiteId}`,
-      "PATCH",
-      {
-        body: {
-          is_published: true
-        },
-        successMessage: "Successfully published website"
-      }
-    );
+    let permissionLevel = 40;
 
-    if (!publish.success) {
-      return publish;
+    if (websiteOverview.user_id !== locals.user.id) {
+      permissionLevel = (
+        await apiRequest(
+          fetch,
+          `${API_BASE_PREFIX}/collab?select=permission_level&website_id=eq.${params.websiteId}&user_id=eq.${locals.user.id}`,
+          "GET",
+          {
+            headers: {
+              Accept: "application/vnd.pgrst.object+json"
+            },
+            returnData: true
+          }
+        )
+      ).data.permission_level;
     }
 
-    await generateStaticFiles(websiteOverview, false);
+    if (permissionLevel < 30) {
+      return { success: false, message: "Insufficient permissions" };
+    }
 
-    return publish;
-  },
-  createUpdateCustomDomainPrefix: async ({ request, fetch, params }) => {
-    const data = await request.formData();
+    await generateStaticFiles(websiteOverview, false, fetch);
 
-    return await apiRequest(fetch, `${API_BASE_PREFIX}/rpc/set_domain_prefix`, "POST", {
-      body: {
-        website_id: params.websiteId,
-        prefix: data.get("domain-prefix")
-      },
-      successMessage: "Successfully created/updated domain prefix"
-    });
-  },
-  deleteCustomDomainPrefix: async ({ fetch, params }) => {
-    return await apiRequest(fetch, `${API_BASE_PREFIX}/rpc/delete_domain_prefix`, "POST", {
-      body: {
-        website_id: params.websiteId
-      },
-      successMessage: "Successfully deleted domain prefix"
-    });
+    return { success: true, message: "Successfully published website" };
   }
 };
 
-const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview = true) => {
+const generateStaticFiles = async (
+  websiteData: WebsiteOverview,
+  isPreview = true,
+  customFetch: typeof fetch = fetch
+) => {
   const websitePreviewUrl = `${
     dev
       ? "http://localhost:18000"
@@ -98,13 +105,10 @@ const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview = tru
   }/previews/${websiteData.id}/`;
 
   const websiteProdUrl = dev
-    ? `http://localhost:18000/${websiteData.domain_prefix?.prefix ?? websiteData.id}/`
+    ? `http://localhost:18000/${websiteData.user.username}/${websiteData.slug}`
     : process.env.ORIGIN
-      ? process.env.ORIGIN.replace(
-          "//",
-          `//${websiteData.domain_prefix?.prefix ?? websiteData.id}.`
-        )
-      : `http://localhost:18000/${websiteData.domain_prefix?.prefix ?? websiteData.id}/`;
+      ? `${process.env.ORIGIN.replace("//", `//${websiteData.user.username}.`)}/${websiteData.slug}`
+      : `http://localhost:18000/${websiteData.user.username}/${websiteData.slug}`;
 
   const fileContents = (head: string, body: string) => {
     return `
@@ -119,11 +123,10 @@ const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview = tru
 </html>`;
   };
 
-  const { head, body } = render(websiteData.content_type === "Blog" ? BlogIndex : DocsIndex, {
+  const { head, body } = render(Index, {
     props: {
       websiteOverview: websiteData,
       apiUrl: API_BASE_PREFIX,
-      isLegalPage: false,
       websiteUrl: isPreview ? websitePreviewUrl : websiteProdUrl
     }
   });
@@ -132,24 +135,60 @@ const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview = tru
 
   if (isPreview) {
     uploadDir = join("/", "var", "www", "archtika-websites", "previews", websiteData.id);
+    await mkdir(uploadDir, { recursive: true });
   } else {
     uploadDir = join(
       "/",
       "var",
       "www",
       "archtika-websites",
-      websiteData.domain_prefix?.prefix ?? websiteData.id
+      websiteData.user.username,
+      websiteData.slug ?? websiteData.id
     );
+
+    const articlesDir = join(uploadDir, "articles");
+    let existingArticles: string[] = [];
+    try {
+      existingArticles = await readdir(articlesDir);
+    } catch {
+      existingArticles = [];
+    }
+    const currentArticleSlugs = websiteData.article?.map((article) => `${article.slug}.html`) ?? [];
+
+    for (const file of existingArticles) {
+      if (!currentArticleSlugs.includes(file)) {
+        await rm(join(articlesDir, file));
+      }
+    }
+
+    const latestChange = await apiRequest(
+      customFetch,
+      `${API_BASE_PREFIX}/change_log?website_id=eq.${websiteData.id}&order=tstamp.desc&limit=1`,
+      "GET",
+      {
+        headers: {
+          Accept: "application/vnd.pgrst.object+json"
+        },
+        returnData: true
+      }
+    );
+
+    const meta = {
+      lastPublishedAt: new Date().toISOString(),
+      lastChangeLogId: latestChange?.data?.id
+    };
+
+    await mkdir(uploadDir, { recursive: true });
+    await writeFile(join(uploadDir, ".publication-meta.json"), JSON.stringify(meta, null, 2));
   }
 
-  await mkdir(uploadDir, { recursive: true });
   await writeFile(join(uploadDir, "index.html"), fileContents(head, body));
   await mkdir(join(uploadDir, "articles"), {
     recursive: true
   });
 
   for (const article of websiteData.article ?? []) {
-    const { head, body } = render(websiteData.content_type === "Blog" ? BlogArticle : DocsArticle, {
+    const { head, body } = render(Article, {
       props: {
         websiteOverview: websiteData,
         article,
@@ -161,19 +200,6 @@ const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview = tru
     await writeFile(join(uploadDir, "articles", `${article.slug}.html`), fileContents(head, body));
   }
 
-  if (websiteData.legal_information) {
-    const { head, body } = render(websiteData.content_type === "Blog" ? BlogIndex : DocsIndex, {
-      props: {
-        websiteOverview: websiteData,
-        apiUrl: API_BASE_PREFIX,
-        isLegalPage: true,
-        websiteUrl: isPreview ? websitePreviewUrl : websiteProdUrl
-      }
-    });
-
-    await writeFile(join(uploadDir, "legal-information.html"), fileContents(head, body));
-  }
-
   const variableStyles = await readFile(`${process.cwd()}/template-styles/variables.css`, {
     encoding: "utf-8"
   });
@@ -237,7 +263,7 @@ const generateStaticFiles = async (websiteData: WebsiteOverview, isPreview = tru
   await writeFile(join(uploadDir, "common.css"), commonStyles);
   await writeFile(join(uploadDir, "scoped.css"), specificStyles);
 
-  await setPermissions(isPreview ? join(uploadDir, "../") : uploadDir);
+  await setPermissions(join(uploadDir, "../"));
 
   return { websitePreviewUrl, websiteProdUrl };
 };
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
index f944dc3..1a8f77e 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.svelte
@@ -4,10 +4,9 @@
   import SuccessOrError from "$lib/components/SuccessOrError.svelte";
   import type { ActionData, PageServerData } from "./$types";
   import LoadingSpinner from "$lib/components/LoadingSpinner.svelte";
-  import Modal from "$lib/components/Modal.svelte";
-  import { enhanceForm } from "$lib/utils";
   import { sending } from "$lib/runes.svelte";
   import { previewContent } from "$lib/runes.svelte";
+  import { enhanceForm } from "$lib/utils";
 
   const { data, form }: { data: PageServerData; form: ActionData } = $props();
 
@@ -31,10 +30,16 @@
       <a href="#publish-website">Publish website</a>
     </h2>
     <p>
-      The preview area on this page allows you to see exactly how your website will look when it is
-      is published. If you are happy with the results, click the button below and your website will
-      be published on the Internet.
+      Whenever you make changes, you will need to click the button below to make them visible on the
+      published website.
     </p>
+    {#if data.currentMeta}
+      <a
+        class="latest-changes-anchor"
+        href="/website/{data.website.id}/logs?since={data.currentMeta.lastPublishedAt}"
+        >Changes since last publication</a
+      >
+    {/if}
     <form method="POST" action="?/publishWebsite" use:enhance={enhanceForm()}>
       <button type="submit" disabled={[10, 20].includes(data.permissionLevel)}
         >Publish website</button
@@ -42,7 +47,7 @@
     </form>
   </section>
 
-  {#if data.websiteOverview.is_published}
+  {#if data.prodIsGenerated}
     <section id="publication-status">
       <h2>
         <a href="#publication-status">Publication status</a>
@@ -52,51 +57,11 @@
         <a href={data.websiteProdUrl}>{data.websiteProdUrl}</a>
       </p>
     </section>
-
-    <section id="custom-domain-prefix">
-      <h2>
-        <a href="#custom-domain-prefix">Custom domain prefix</a>
-      </h2>
-      <form
-        method="POST"
-        action="?/createUpdateCustomDomainPrefix"
-        use:enhance={enhanceForm({ reset: false })}
-      >
-        <label>
-          Prefix:
-          <input
-            type="text"
-            name="domain-prefix"
-            value={data.websiteOverview.domain_prefix?.prefix ?? ""}
-            placeholder="my-blog"
-            minlength="3"
-            maxlength="16"
-            pattern="^(?!previews$)[a-z]+(-[a-z]+)*$"
-            required
-          />
-        </label>
-        <button type="submit" disabled={[10, 20].includes(data.permissionLevel)}
-          >Update domain prefix</button
-        >
-      </form>
-      {#if data.websiteOverview.domain_prefix?.prefix}
-        <Modal id="delete-domain-prefix" text="Delete">
-          <form
-            action="?/deleteCustomDomainPrefix"
-            method="post"
-            use:enhance={enhanceForm({ closeModal: true })}
-          >
-            <h3>Delete domain prefix</h3>
-            <p>
-              <strong>Caution!</strong>
-              This action will remove the domain prefix and reset it to its initial value.
-            </p>
-            <button type="submit" disabled={[10, 20].includes(data.permissionLevel)}
-              >Delete domain prefix</button
-            >
-          </form>
-        </Modal>
-      {/if}
-    </section>
   {/if}
 </WebsiteEditor>
+
+<style>
+  .latest-changes-anchor {
+    max-inline-size: fit-content;
+  }
+</style>
diff --git a/web-app/template-styles/blog-styles.css b/web-app/template-styles/blog-styles.css
index a9618a9..3307b3f 100644
--- a/web-app/template-styles/blog-styles.css
+++ b/web-app/template-styles/blog-styles.css
@@ -34,14 +34,21 @@ header img {
 
 nav,
 header,
-main,
-footer {
+main {
   padding-block: var(--space-s);
 }
 
+main {
+  padding-block-end: var(--space-xl);
+}
+
 footer {
   margin-block-start: auto;
-  text-align: center;
+}
+
+footer > .container {
+  border-block-start: 0.125rem dotted var(--color-border);
+  padding-block: var(--space-s);
 }
 
 .articles ul {
diff --git a/web-app/template-styles/common-styles.css b/web-app/template-styles/common-styles.css
index 5605420..700de9a 100644
--- a/web-app/template-styles/common-styles.css
+++ b/web-app/template-styles/common-styles.css
@@ -278,7 +278,6 @@ table {
 
 th,
 td {
-  text-align: start;
   padding: var(--space-2xs);
   border: var(--border-primary);
 }
diff --git a/web-app/template-styles/docs-styles.css b/web-app/template-styles/docs-styles.css
index 14910d4..0ab7aa5 100644
--- a/web-app/template-styles/docs-styles.css
+++ b/web-app/template-styles/docs-styles.css
@@ -27,14 +27,21 @@ header > .container {
 
 nav,
 header,
-main,
-footer {
+main {
   padding-block: var(--space-s);
 }
 
+main {
+  padding-block-end: var(--space-xl);
+}
+
 footer {
   margin-block-start: auto;
-  text-align: center;
+}
+
+footer > .container {
+  border-block-start: 0.125rem dotted var(--color-border);
+  padding-block: var(--space-s);
 }
 
 section {
diff --git a/web-app/tests/legal-information.spec.ts b/web-app/tests/legal-information.spec.ts
deleted file mode 100644
index e2e23ea..0000000
--- a/web-app/tests/legal-information.spec.ts
+++ /dev/null
@@ -1,109 +0,0 @@
-import { test, expect } from "@playwright/test";
-import {
-  userOwner,
-  authenticate,
-  permissionLevels,
-  collabUsers,
-  collabTestingWebsite
-} from "./shared";
-
-test.describe("Website owner", () => {
-  test.beforeEach(async ({ page }) => {
-    await authenticate(userOwner, page);
-    await page
-      .locator("li")
-      .filter({ hasText: collabTestingWebsite })
-      .getByRole("link", { name: collabTestingWebsite })
-      .click();
-    await page.getByRole("link", { name: "Legal information" }).click();
-  });
-
-  test(`Create/update legal information`, async ({ page }) => {
-    await page.getByLabel("Main content:").click();
-    await page.getByLabel("Main content:").press("ControlOrMeta+a");
-    await page.getByLabel("Main content:").fill("## Content");
-    await page.getByRole("button", { name: "Update legal information" }).click();
-    await expect(page.getByText("Successfully created/updated legal information")).toBeVisible();
-  });
-
-  test(`Delete legal information`, async ({ page }) => {
-    await page.getByLabel("Main content:").click();
-    await page.getByLabel("Main content:").press("ControlOrMeta+a");
-    await page.getByLabel("Main content:").fill("## Arbitrary content");
-    await page.getByRole("button", { name: "Update legal information" }).click();
-
-    await page.getByRole("button", { name: "Delete" }).click();
-    await page.getByRole("button", { name: "Delete legal information" }).click();
-    await expect(page.getByText("Successfully deleted legal information")).toBeVisible();
-  });
-});
-
-for (const permissionLevel of permissionLevels) {
-  test.describe(`Website collaborator (Permission level: ${permissionLevel})`, () => {
-    test(`Create/update legal information`, async ({ page }) => {
-      await authenticate(collabUsers.get(permissionLevel)!, page);
-      await page
-        .locator("li")
-        .filter({ hasText: collabTestingWebsite })
-        .getByRole("link", { name: collabTestingWebsite })
-        .click();
-      await page.getByRole("link", { name: "Legal information" }).click();
-
-      await page.getByLabel("Main content:").click();
-      await page.getByLabel("Main content:").press("ControlOrMeta+a");
-      await page.getByLabel("Main content:").fill("## Random content");
-      await page
-        .getByRole("button", { name: "Update legal information" })
-        .evaluate((node) => node.removeAttribute("disabled"));
-      await page.getByRole("button", { name: "Update legal information" }).click();
-
-      if ([10, 20].includes(permissionLevel)) {
-        await expect(page.getByText("Insufficient permissions")).toBeVisible();
-      } else {
-        await expect(
-          page.getByText("Successfully created/updated legal information")
-        ).toBeVisible();
-      }
-    });
-
-    test(`Delete legal information`, async ({ page, browserName }) => {
-      test.skip(browserName === "firefox", "Some issues with Firefox in headful mode");
-
-      await authenticate(userOwner, page);
-      await page
-        .locator("li")
-        .filter({ hasText: collabTestingWebsite })
-        .getByRole("link", { name: collabTestingWebsite })
-        .click();
-      await page.getByRole("link", { name: "Legal information" }).click();
-
-      await page.getByLabel("Main content:").click();
-      await page.getByLabel("Main content:").press("ControlOrMeta+a");
-      await page.getByLabel("Main content:").fill("## Even more content");
-      await page.getByRole("button", { name: "Update legal information" }).click();
-      await page.waitForResponse(/createUpdateLegalInformation/);
-      await page.getByRole("link", { name: "Account" }).click();
-      await page.getByRole("button", { name: "Logout" }).click();
-
-      await authenticate(collabUsers.get(permissionLevel)!, page);
-      await page
-        .locator("li")
-        .filter({ hasText: collabTestingWebsite })
-        .getByRole("link", { name: collabTestingWebsite })
-        .click();
-      await page.getByRole("link", { name: "Legal information" }).click();
-
-      await page.getByRole("button", { name: "Delete" }).click();
-      await page
-        .getByRole("button", { name: "Delete legal information" })
-        .evaluate((node) => node.removeAttribute("disabled"));
-      await page.getByRole("button", { name: "Delete legal information" }).click();
-
-      if ([10, 20].includes(permissionLevel)) {
-        await expect(page.getByText("Insufficient permissions")).toBeVisible();
-      } else {
-        await expect(page.getByText("Successfully deleted legal information")).toBeVisible();
-      }
-    });
-  });
-}
diff --git a/web-app/tests/publish.spec.ts b/web-app/tests/publish.spec.ts
index 7ff4a82..81617ad 100644
--- a/web-app/tests/publish.spec.ts
+++ b/web-app/tests/publish.spec.ts
@@ -23,25 +23,6 @@ test.describe("Website owner", () => {
     await expect(page.getByText("Successfully published website")).toBeVisible();
     await expect(page.getByText("Your website is published at")).toBeVisible();
   });
-
-  test(`Set custom domain prefix`, async ({ page }) => {
-    await page.getByLabel("Prefix:").click();
-    await page.getByLabel("Prefix:").press("ControlOrMeta+a");
-    await page.getByLabel("Prefix:").fill("example-prefix");
-    await page.getByRole("button", { name: "Update domain prefix" }).click();
-    await expect(page.getByText("Successfully created/updated domain prefix")).toBeVisible();
-  });
-
-  test(`Delete custom domain prefix`, async ({ page }) => {
-    await page.getByLabel("Prefix:").click();
-    await page.getByLabel("Prefix:").press("ControlOrMeta+a");
-    await page.getByLabel("Prefix:").fill("example-prefix");
-    await page.getByRole("button", { name: "Update domain prefix" }).click();
-
-    await page.getByRole("button", { name: "Delete" }).click();
-    await page.getByRole("button", { name: "Delete domain prefix" }).click();
-    await expect(page.getByText("Successfully deleted domain prefix")).toBeVisible();
-  });
 });
 
 for (const permissionLevel of permissionLevels) {
@@ -67,69 +48,5 @@ for (const permissionLevel of permissionLevels) {
         await expect(page.getByText("Your website is published at")).toBeVisible();
       }
     });
-
-    test(`Set custom domain prefix`, async ({ page }) => {
-      await authenticate(collabUsers.get(permissionLevel)!, page);
-      await page
-        .locator("li")
-        .filter({ hasText: collabTestingWebsite })
-        .getByRole("link", { name: collabTestingWebsite })
-        .click();
-      await page.getByRole("link", { name: "Publish" }).click();
-
-      await page.getByLabel("Prefix:").click();
-      await page.getByLabel("Prefix:").press("ControlOrMeta+a");
-      await page.getByLabel("Prefix:").fill("new-prefix");
-      await page
-        .getByRole("button", { name: "Update domain prefix" })
-        .evaluate((node) => node.removeAttribute("disabled"));
-      await page.getByRole("button", { name: "Update domain prefix" }).click();
-
-      if ([10, 20].includes(permissionLevel)) {
-        await expect(page.getByText("Insufficient permissions")).toBeVisible();
-      } else {
-        await expect(page.getByText("Successfully created/updated domain prefix")).toBeVisible();
-      }
-    });
-
-    test(`Delete custom domain prefix`, async ({ page, browserName }) => {
-      test.skip(browserName === "firefox", "Some issues with Firefox in headful mode");
-
-      await authenticate(userOwner, page);
-      await page
-        .locator("li")
-        .filter({ hasText: collabTestingWebsite })
-        .getByRole("link", { name: collabTestingWebsite })
-        .click();
-      await page.getByRole("link", { name: "Publish" }).click();
-
-      await page.getByLabel("Prefix:").click();
-      await page.getByLabel("Prefix:").press("ControlOrMeta+a");
-      await page.getByLabel("Prefix:").fill("new-prefix");
-      await page.getByRole("button", { name: "Update domain prefix" }).click();
-      await page.waitForResponse(/createUpdateCustomDomainPrefix/);
-      await page.getByRole("link", { name: "Account" }).click();
-      await page.getByRole("button", { name: "Logout" }).click();
-
-      await authenticate(collabUsers.get(permissionLevel)!, page);
-      await page
-        .locator("li")
-        .filter({ hasText: collabTestingWebsite })
-        .getByRole("link", { name: collabTestingWebsite })
-        .click();
-      await page.getByRole("link", { name: "Publish" }).click();
-
-      await page.getByRole("button", { name: "Delete" }).click();
-      await page
-        .getByRole("button", { name: "Delete domain prefix" })
-        .evaluate((node) => node.removeAttribute("disabled"));
-      await page.getByRole("button", { name: "Delete domain prefix" }).click();
-
-      if ([10, 20].includes(permissionLevel)) {
-        await expect(page.getByText("Insufficient permissions")).toBeVisible();
-      } else {
-        await expect(page.getByText("Successfully deleted domain prefix")).toBeVisible();
-      }
-    });
   });
 }

From 46b8cb033ca21aec3e77cc498e7c8f7ca960e2ad Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Tue, 19 Nov 2024 19:56:42 +0100
Subject: [PATCH 10/11] Update dashboard tests to use randomly generated names

---
 web-app/tests/dashboard.spec.ts | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/web-app/tests/dashboard.spec.ts b/web-app/tests/dashboard.spec.ts
index 53b8952..f4bfac0 100644
--- a/web-app/tests/dashboard.spec.ts
+++ b/web-app/tests/dashboard.spec.ts
@@ -6,6 +6,9 @@ import {
   collabUsers,
   collabTestingWebsite
 } from "./shared";
+import { randomBytes } from "node:crypto";
+
+const genWebsiteName = () => randomBytes(12).toString("hex");
 
 test.describe("Website owner", () => {
   test.beforeEach(async ({ page }) => {
@@ -16,7 +19,7 @@ test.describe("Website owner", () => {
     await page.getByRole("button", { name: "Create website" }).click();
     await page.getByLabel("Type:").selectOption("Blog");
     await page.locator("#create-website-modal").getByLabel("Title:").click();
-    await page.locator("#create-website-modal").getByLabel("Title:").fill("Blog");
+    await page.locator("#create-website-modal").getByLabel("Title:").fill(genWebsiteName());
     await page
       .locator("#create-website-modal")
       .getByRole("button", { name: "Create website" })
@@ -32,7 +35,7 @@ test.describe("Website owner", () => {
       await page.getByRole("button", { name: "Create website" }).click();
       await page.getByLabel("Type:").selectOption("Blog");
       await page.locator("#create-website-modal").getByLabel("Title:").click();
-      await page.locator("#create-website-modal").getByLabel("Title:").fill("Blog");
+      await page.locator("#create-website-modal").getByLabel("Title:").fill(genWebsiteName());
       await page
         .locator("#create-website-modal")
         .getByRole("button", { name: "Create website" })
@@ -48,7 +51,7 @@ test.describe("Website owner", () => {
         .click();
       const modalName = page.url().split("#")[1];
       await page.locator(`#${modalName}`).getByLabel("Title:").click();
-      await page.locator(`#${modalName}`).getByLabel("Title:").fill(`${"Blog"} updated`);
+      await page.locator(`#${modalName}`).getByLabel("Title:").fill(genWebsiteName());
       await page.getByRole("button", { name: "Update website" }).click();
       await expect(page.getByText("Successfully updated website")).toBeVisible();
     });

From 18210d501b37f043bb8ee39afc99d27576632353 Mon Sep 17 00:00:00 2001
From: thiloho <123883702+thiloho@users.noreply.github.com>
Date: Sun, 8 Dec 2024 14:33:33 +0100
Subject: [PATCH 11/11] Harden systemd services, restrict file permissions
 further, add username blocklist and prevent more vulnerabilities

---
 nix/module.nix                                | 43 +++++++++++++++++--
 .../migrations/20240719071602_main_tables.sql | 11 +++--
 ...240720074103_user_management_roles_jwt.sql |  2 +-
 .../20241011092744_filesystem_triggers.sql    |  4 +-
 .../20241206191942_username_blocklist.sql     |  8 ++++
 .../src/lib/components/WebsiteEditor.svelte   | 12 +++++-
 .../routes/(anonymous)/login/+page.server.ts  |  2 +-
 .../[websiteId]/publish/+page.server.ts       |  5 ++-
 8 files changed, 73 insertions(+), 14 deletions(-)
 create mode 100644 rest-api/db/migrations/20241206191942_username_blocklist.sql

diff --git a/nix/module.nix b/nix/module.nix
index 30af9b0..f411233 100644
--- a/nix/module.nix
+++ b/nix/module.nix
@@ -9,6 +9,29 @@ with lib;
 
 let
   cfg = config.services.archtika;
+  baseHardenedSystemdOptions = {
+    CapabilityBoundingSet = "";
+    LockPersonality = true;
+    NoNewPrivileges = true;
+    PrivateDevices = true;
+    PrivateTmp = true;
+    ProtectClock = true;
+    ProtectControlGroups = true;
+    ProtectHome = true;
+    ProtectHostname = true;
+    ProtectKernelLogs = true;
+    ProtectKernelModules = true;
+    ProtectKernelTunables = true;
+    ProtectSystem = "strict";
+    RemoveIPC = true;
+    RestrictNamespaces = true;
+    RestrictRealtime = true;
+    RestrictSUIDSGID = true;
+    SystemCallArchitectures = "native";
+    SystemCallFilter = ["@system-service" "~@privileged" "~@resources"];
+    
+    ReadWritePaths = ["/var/www/archtika-websites"];
+  };
 in
 {
   options.services.archtika = {
@@ -105,9 +128,17 @@ in
       group = cfg.group;
     };
 
-    users.groups.${cfg.group} = { };
+    users.groups.${cfg.group} = {
+      members = [
+        "nginx"
+        "postgres"
+      ];
+    };
 
-    systemd.tmpfiles.rules = [ "d /var/www/archtika-websites 0777 ${cfg.user} ${cfg.group} -" ];
+    systemd.tmpfiles.rules = [
+      "d /var/www 0755 root root -"
+      "d /var/www/archtika-websites 0770 ${cfg.user} ${cfg.group} -"
+    ];
 
     systemd.services.archtika-api = {
       description = "archtika API service";
@@ -117,11 +148,13 @@ in
         "postgresql.service"
       ];
 
-      serviceConfig = {
+      serviceConfig = baseHardenedSystemdOptions // {
         User = cfg.user;
         Group = cfg.group;
         Restart = "always";
         WorkingDirectory = "${cfg.package}/rest-api";
+
+        RestrictAddressFamilies = ["AF_INET" "AF_INET6" "AF_UNIX"];
       };
 
       script = ''
@@ -142,11 +175,13 @@ in
       wantedBy = [ "multi-user.target" ];
       after = [ "network.target" ];
 
-      serviceConfig = {
+      serviceConfig = baseHardenedSystemdOptions // {
         User = cfg.user;
         Group = cfg.group;
         Restart = "always";
         WorkingDirectory = "${cfg.package}/web-app";
+
+        RestrictAddressFamilies = ["AF_INET" "AF_INET6"];
       };
 
       script = ''
diff --git a/rest-api/db/migrations/20240719071602_main_tables.sql b/rest-api/db/migrations/20240719071602_main_tables.sql
index ee06a6d..5d88225 100644
--- a/rest-api/db/migrations/20240719071602_main_tables.sql
+++ b/rest-api/db/migrations/20240719071602_main_tables.sql
@@ -32,10 +32,15 @@ ALTER DEFAULT PRIVILEGES REVOKE EXECUTE ON FUNCTIONS FROM PUBLIC;
 CREATE FUNCTION internal.generate_slug (TEXT)
   RETURNS TEXT
   AS $$
-  SELECT
-    REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(LOWER(TRIM(REGEXP_REPLACE(unaccent ($1), '\s+', '-', 'g'))), '[^\w-]', '', 'g'), '-+', '-', 'g'), '^-+', '', 'g'), '-+$', '', 'g')
+BEGIN
+  IF $1 ~ '[/\\.]' THEN
+    RAISE invalid_parameter_value
+    USING message = 'Title cannot contain "/", "\" or "."';
+  END IF;
+    RETURN REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(REGEXP_REPLACE(LOWER(TRIM(REGEXP_REPLACE(unaccent ($1), '\s+', '-', 'g'))), '[^\w-]', '', 'g'), '-+', '-', 'g'), '^-+', '', 'g'), '-+$', '', 'g');
+END;
 $$
-LANGUAGE sql
+LANGUAGE plpgsql
 IMMUTABLE;
 
 GRANT EXECUTE ON FUNCTION internal.generate_slug TO authenticated_user;
diff --git a/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql b/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
index 28af12b..fb5a582 100644
--- a/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
+++ b/rest-api/db/migrations/20240720074103_user_management_roles_jwt.sql
@@ -120,7 +120,7 @@ AS $$
 DECLARE
   _role NAME;
   _user_id UUID;
-  _exp INT := EXTRACT(EPOCH FROM CLOCK_TIMESTAMP())::INT + 86400;
+  _exp INT := EXTRACT(EPOCH FROM CLOCK_TIMESTAMP())::INT + 43200;
 BEGIN
   SELECT
     internal.user_role (login.username, login.pass) INTO _role;
diff --git a/rest-api/db/migrations/20241011092744_filesystem_triggers.sql b/rest-api/db/migrations/20241011092744_filesystem_triggers.sql
index ca6d043..6c3ff91 100644
--- a/rest-api/db/migrations/20241011092744_filesystem_triggers.sql
+++ b/rest-api/db/migrations/20241011092744_filesystem_triggers.sql
@@ -46,12 +46,12 @@ LANGUAGE plpgsql
 SECURITY DEFINER;
 
 CREATE TRIGGER _cleanup_filesystem_website
-  BEFORE UPDATE OR DELETE ON internal.website
+  BEFORE UPDATE OF title OR DELETE ON internal.website
   FOR EACH ROW
   EXECUTE FUNCTION internal.cleanup_filesystem ();
 
 CREATE TRIGGER _cleanup_filesystem_article
-  BEFORE UPDATE OR DELETE ON internal.article
+  BEFORE UPDATE OF title OR DELETE ON internal.article
   FOR EACH ROW
   EXECUTE FUNCTION internal.cleanup_filesystem ();
 
diff --git a/rest-api/db/migrations/20241206191942_username_blocklist.sql b/rest-api/db/migrations/20241206191942_username_blocklist.sql
new file mode 100644
index 0000000..476c5b5
--- /dev/null
+++ b/rest-api/db/migrations/20241206191942_username_blocklist.sql
@@ -0,0 +1,8 @@
+-- migrate:up
+ALTER TABLE internal.user
+  ADD CONSTRAINT username_not_blocked CHECK (LOWER(username) NOT IN ('admin', 'administrator', 'api', 'auth', 'blog', 'cdn', 'docs', 'help', 'login', 'logout', 'profile', 'register', 'settings', 'setup', 'signin', 'signup', 'support', 'test', 'www'));
+
+-- migrate:down
+ALTER TABLE internal.user
+  DROP CONSTRAINT username_not_blocked;
+
diff --git a/web-app/src/lib/components/WebsiteEditor.svelte b/web-app/src/lib/components/WebsiteEditor.svelte
index 14e1f21..cbecd43 100644
--- a/web-app/src/lib/components/WebsiteEditor.svelte
+++ b/web-app/src/lib/components/WebsiteEditor.svelte
@@ -26,6 +26,8 @@
   });
 
   const tabs = ["settings", "articles", "categories", "collaborators", "publish", "logs"];
+
+  let iframeLoaded = $state(false);
 </script>
 
 <input type="checkbox" id="toggle-mobile-preview" hidden />
@@ -55,7 +57,15 @@
 
 <div class="preview" bind:this={previewElement}>
   {#if fullPreview}
-    <iframe src={previewContent.value} title="Preview"></iframe>
+    {#if !iframeLoaded}
+      <p>Loading preview...</p>
+    {/if}
+    <iframe
+      src={previewContent.value}
+      title="Preview"
+      onload={() => (iframeLoaded = true)}
+      style:display={iframeLoaded ? "block" : "none"}
+    ></iframe>
   {:else}
     {@html md(
       previewContent.value || "Write some markdown content to see a live preview here",
diff --git a/web-app/src/routes/(anonymous)/login/+page.server.ts b/web-app/src/routes/(anonymous)/login/+page.server.ts
index e31083e..d3f382c 100644
--- a/web-app/src/routes/(anonymous)/login/+page.server.ts
+++ b/web-app/src/routes/(anonymous)/login/+page.server.ts
@@ -18,7 +18,7 @@ export const actions: Actions = {
       return response;
     }
 
-    cookies.set("session_token", response.data.token, { path: "/", maxAge: 86400 });
+    cookies.set("session_token", response.data.token, { path: "/", maxAge: 43200 });
     return response;
   }
 };
diff --git a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
index fd46ae9..f606e7e 100644
--- a/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
+++ b/web-app/src/routes/(authenticated)/website/[websiteId]/publish/+page.server.ts
@@ -269,14 +269,15 @@ const generateStaticFiles = async (
 };
 
 const setPermissions = async (dir: string) => {
-  await chmod(dir, 0o777);
+  const mode = dev ? 0o777 : process.env.ORIGIN ? 0o770 : 0o777;
+  await chmod(dir, mode);
   const entries = await readdir(dir, { withFileTypes: true });
   for (const entry of entries) {
     const fullPath = join(dir, entry.name);
     if (entry.isDirectory()) {
       await setPermissions(fullPath);
     } else {
-      await chmod(fullPath, 0o777);
+      await chmod(fullPath, mode);
     }
   }
 };