From 76955e2f4ee89595b0a0176b3668d4402a737481 Mon Sep 17 00:00:00 2001
From: lyannne <xu.ly@northeastern.edu>
Date: Thu, 22 Jan 2026 21:15:05 -0500
Subject: [PATCH 01/10] new types file

---
 backend/src/user/types/user.types.ts | 0
 backend/src/user/user.service.ts     | 2 ++
 2 files changed, 2 insertions(+)
 create mode 100644 backend/src/user/types/user.types.ts

diff --git a/backend/src/user/types/user.types.ts b/backend/src/user/types/user.types.ts
new file mode 100644
index 00000000..e69de29b
diff --git a/backend/src/user/user.service.ts b/backend/src/user/user.service.ts
index 032a3732..4a0b4944 100644
--- a/backend/src/user/user.service.ts
+++ b/backend/src/user/user.service.ts
@@ -41,10 +41,12 @@ export class UserService {
 
   // 2. Validate input
   if (!user || !user.userId) {
+    this.logger.error("Invalid user object provided for deletion");
     throw new BadRequestException("Valid user object is required");
   }
 
   if (!requestedBy || !requestedBy.userId) {
+    this.logger.error("Invalid requesting user object provided for deletion");
     throw new BadRequestException("Valid requesting user is required");
   }
 

From 0d37649bad82bf5195e4b4aee72a5f21e33d80e3 Mon Sep 17 00:00:00 2001
From: lyannne <xu.ly@northeastern.edu>
Date: Fri, 23 Jan 2026 14:50:38 -0500
Subject: [PATCH 02/10] logging

---
 backend/src/user/user.service.ts | 72 ++++++++++++++++++++++++++------
 1 file changed, 60 insertions(+), 12 deletions(-)

diff --git a/backend/src/user/user.service.ts b/backend/src/user/user.service.ts
index 4a0b4944..3f55ecf1 100644
--- a/backend/src/user/user.service.ts
+++ b/backend/src/user/user.service.ts
@@ -23,6 +23,8 @@ export class UserService {
   private dynamoDb = new AWS.DynamoDB.DocumentClient();
   private ses = new AWS.SES({ region: process.env.AWS_REGION });
 
+  // purpose statement: deletes user from database; only admin can delete users
+  // use case: employee is no longer with BCAN
  async deleteUser(user: User, requestedBy: User): Promise<User> {
   const userPoolId = process.env.COGNITO_USER_POOL_ID;
   const tableName = process.env.DYNAMODB_USER_TABLE_NAME;
@@ -60,6 +62,7 @@ export class UserService {
 
   // 4. Prevent self-deletion
   if (requestedBy.userId === username) {
+    this.logger.warn(`Administrator ${requestedBy.userId} attempted to delete their own account`);
     throw new BadRequestException("Administrators cannot delete their own account");
   }
 
@@ -179,19 +182,30 @@ export class UserService {
   return userToDelete;
 }
 
-  async getAllUsers(): Promise<any> {
+// purpose statement: retrieves all users from the database
+// use case: admin wants to see all users on user management page
+async getAllUsers(): Promise<any> {
     const params = {
       TableName: process.env.DYNAMODB_USER_TABLE_NAME || "TABLE_FAILURE",
     };
 
     try {
+      this.logger.log('Executing DynamoDB scan to retrieve all users...');
       const data = await this.dynamoDb.scan(params).promise();
+      
+      const userCount = data.Items?.length || 0;
+      this.logger.log(`✅ Successfully retrieved ${userCount} users from database`);
+      
       return data.Items;
     } catch (error) {
-      throw new Error("Could not retrieve users.");
+      this.logger.error('Failed to retrieve users from DynamoDB:', error);
+      throw new InternalServerErrorException("Could not retrieve users.");
     }
   }
-  async addUserToGroup(
+
+  // purpose statement: adds user to a group/changes their role; only admin can do this
+  // use case: admin wants to promote an employee to admin or activate an inactive user
+async addUserToGroup(
     user: User,
     groupName: UserStatus,
     requestedBy: User
@@ -374,6 +388,9 @@ export class UserService {
       const result = await this.dynamoDb.update(params).promise();
 
       if (!result.Attributes) {
+        this.logger.error(
+          `DynamoDB update did not return updated attributes for ${username}`
+        );
         throw new InternalServerErrorException(
           "Failed to retrieve updated user data"
         );
@@ -441,6 +458,8 @@ export class UserService {
     }
   }
 
+  // purpose statement: retrieves user by their userId
+  // use case: not actually sure right now, maybe is there is an option for admin to click on a specific user to see details?
   async getUserById(userId: string): Promise<any> {
     const params = {
       TableName: process.env.DYNAMODB_USER_TABLE_NAME || "TABLE_FAILURE",
@@ -450,15 +469,22 @@ export class UserService {
     };
 
     try {
+      this.logger.log(`Fetching user ${userId} from DynamoDB...`);
       const data = await this.dynamoDb.get(params).promise();
+      
+      this.logger.log(`✅ Successfully retrieved user ${userId}`);
       return data.Item;
     } catch (error) {
-      throw new Error('Could not retrieve user.');
+      this.logger.error(`Failed to retrieve user ${userId} from DynamoDB:`, error);
+      throw new InternalServerErrorException('Could not retrieve user.');
     }
   }
 
+  // purpose statement: retrieves all inactive users
+  // use case: for admin to see all users that need account approval on user management page (pending users tab)
   async getAllInactiveUsers(): Promise<User[]> {
     this.logger.log("Fetching all inactive users in service");
+
     const params = {
       TableName: process.env.DYNAMODB_USER_TABLE_NAME || "TABLE_FAILURE",
       FilterExpression: "#pos IN (:inactive)",
@@ -471,7 +497,9 @@ export class UserService {
     };
 
     try {
+      this.logger.log('Executing DynamoDB scan with filter for Inactive users...');
       const result = await this.dynamoDb.scan(params).promise();
+      
       const users: User[] = (result.Items || []).map((item) => ({
         userId: item.userId, // Assign name to userId
         position: item.position as UserStatus,
@@ -479,6 +507,7 @@ export class UserService {
         name: item.userId, // Keep name as name
       }));
 
+      this.logger.log(`✅ Successfully retrieved ${users.length} inactive users`);
       return users;
     } catch (error) {
       this.logger.error("Error scanning DynamoDB:", error);
@@ -489,7 +518,10 @@ export class UserService {
     }
   }
 
-  async getAllActiveUsers(): Promise<User[]> {
+  // purpose statement: retrieves all active users (Admins and Employees)
+  // use case: for admin to see all current users on user management page (current users tab)
+async getAllActiveUsers(): Promise<User[]> {
+    this.logger.log('Starting getAllActiveUsers - Fetching all active users (Admin and Employee)');
     const params = {
       TableName: process.env.DYNAMODB_USER_TABLE_NAME || "TABLE_FAILURE",
       FilterExpression: "#pos IN (:admin, :employee)",
@@ -503,18 +535,21 @@ export class UserService {
     };
 
     try {
+      this.logger.log('Executing DynamoDB scan with filter for Admin and Employee users...');
       const result = await this.dynamoDb.scan(params).promise();
       if (!result.Items) {
         this.logger.error("No active users found.");
         this.logger.error("DynamoDB scan result:", result);
         throw new NotFoundException("No active users found.");
       }
+      
       const users: User[] = (result.Items || []).map((item) => ({
         userId: item.userId, // Assign name to userId
         position: item.position as UserStatus,
         email: item.email,
         name: item.userId, // Keep name as name
       }));
+      
       this.logger.debug(`Fetched ${users.length} active users.`);
 
       return users;
@@ -522,19 +557,25 @@ export class UserService {
       this.logger.error("Error scanning DynamoDB:", error);
       if (error instanceof NotFoundException) throw error;
       throw new InternalServerErrorException(
-        "Failed to retrieve inactive users."
+        "Failed to retrieve active users."
       );
     }
   }
 
 
 
-  // sends email to user once account is approved, used in method above when a user
+  // purpose statement: sends email to user once account is approved, used in method above when a user
   // is added to the Employee or Admin group from Inactive
   async sendVerificationEmail(userEmail: string): Promise<AWS.SES.SendEmailResponse> {
+      this.logger.log(`Starting sendVerificationEmail for email: ${userEmail}`);
+      
+      if (!userEmail || !this.isValidEmail(userEmail)) {
+        this.logger.error(`Invalid email address provided: ${userEmail}`);
+        throw new BadRequestException("Valid email address is required");
+      }
+
       // remove actual email and add to env later!!
-      const fromEmail = process.env.NOTIFICATION_EMAIL_SENDER ||
-      'c4cneu.bcan@gmail.com';
+      const fromEmail = process.env.NOTIFICATION_EMAIL_SENDER || 'c4cneu.bcan@gmail.com';
 
       const params: AWS.SES.SendEmailRequest = {
         Source: fromEmail,
@@ -551,13 +592,20 @@ export class UserService {
       };
 
       try {
+        this.logger.log(`Calling AWS SES to send email to ${userEmail}...`);
         const result = await this.ses.sendEmail(params).promise();
-        this.logger.log(`Verification email sent to ${userEmail}`);
+        this.logger.log(`✅ Verification email sent successfully to ${userEmail}. MessageId: ${result.MessageId}`);
         return result;
       } catch (err: unknown) {
         this.logger.error('Error sending email: ', err);
-        const errMessage = (err instanceof Error) ? err.message : 'Generic'; 
-        throw new Error(`Failed to send email: ${errMessage}`);
+        const errMessage = (err instanceof Error) ? err.message : 'Unknown error'; 
+        throw new InternalServerErrorException(`Failed to send email: ${errMessage}`);
       }
   }
+
+  // Helper method for email validation
+  private isValidEmail(email: string): boolean {
+    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+    return emailRegex.test(email);
+  }
 }

From 3932439ed28277c78086ad2d45e4cbaf6fa30471 Mon Sep 17 00:00:00 2001
From: lyannne <xu.ly@northeastern.edu>
Date: Fri, 23 Jan 2026 15:58:15 -0500
Subject: [PATCH 03/10] swagger docs and types made, also switched change-roles
 route to a patch instead of post since that made more sense

---
 backend/src/user/types/user.types.ts |  29 +++++++
 backend/src/user/user.controller.ts  | 124 ++++++++++++++++++++++++---
 backend/src/user/user.service.ts     |   5 +-
 3 files changed, 143 insertions(+), 15 deletions(-)

diff --git a/backend/src/user/types/user.types.ts b/backend/src/user/types/user.types.ts
index e69de29b..83423f7d 100644
--- a/backend/src/user/types/user.types.ts
+++ b/backend/src/user/types/user.types.ts
@@ -0,0 +1,29 @@
+import { ApiProperty } from '@nestjs/swagger';
+import { UserStatus } from '../../../../middle-layer/types/UserStatus';
+
+export class ChangeRoleBody {
+  user!: {   
+    userId: string,
+    position: UserStatus,
+    email: string 
+  };
+  groupName!: UserStatus;
+  requestedBy!: {   
+    userId: string,
+    position: UserStatus,
+    email: string 
+  };
+}
+
+export class DeleteUserBody {
+  user!: {   
+    userId: string,
+    position: UserStatus,
+    email: string 
+  };
+  requestedBy!: {   
+    userId: string,
+    position: UserStatus,
+    email: string 
+  };
+}
\ No newline at end of file
diff --git a/backend/src/user/user.controller.ts b/backend/src/user/user.controller.ts
index 8d72da9c..0833c6c9 100644
--- a/backend/src/user/user.controller.ts
+++ b/backend/src/user/user.controller.ts
@@ -1,60 +1,156 @@
-import { Controller, Get, Post, Body, Param, UseGuards } from "@nestjs/common";
+import { Controller, Get, Post, Patch, Body, Param, UseGuards } from "@nestjs/common";
 import { UserService } from "./user.service";
 import { User } from "../../../middle-layer/types/User";
 import { UserStatus } from "../../../middle-layer/types/UserStatus";
 import { VerifyAdminRoleGuard, VerifyUserGuard } from "../guards/auth.guard";
+import { ApiResponse, ApiParam } from "@nestjs/swagger";
+import { ChangeRoleBody, DeleteUserBody } from "./types/user.types";
 
 @Controller("user")
 export class UserController {
   constructor(private readonly userService: UserService) {}
 
+  /**
+   * Get all users
+   */
   @Get()
+  @ApiResponse({
+    status : 200,
+    description : "All users retrieved successfully"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyUserGuard)
   async getAllUsers() {
     return await this.userService.getAllUsers();
   }
 
+
+  /**
+   * Get all inactive users
+   */
   @Get("inactive")
+  @ApiResponse({
+    status : 200,
+    description : "All inactive users retrieved successfully"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyUserGuard)
   async getAllInactiveUsers(): Promise<User[]> {
     return await this.userService.getAllInactiveUsers();
   }
 
+  /**
+   * Get all active users
+   */
   @Get("active")
+  @ApiResponse({
+    status : 200,
+    description : "All active users retrieved successfully"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyUserGuard)
   async getAllActiveUsers(): Promise<User[]> {
     console.log("Fetching all active users");
     return await this.userService.getAllActiveUsers();
   }
-  // Make sure to put a guard on this route
-  @Post("change-role")
+
+  /**
+   * Change a user's role (make sure guard is on this route)
+   */
+  @Patch("change-role")
+  @ApiResponse({
+    status : 200,
+    description : "User role changed successfully"
+  })
+  @ApiResponse({
+    status : 400,
+    description : "{Error encountered}"
+  })
+  @ApiResponse({
+    status : 401,
+    description : "Unauthorized"
+  })
+  @ApiResponse({
+    status : 404,
+    description : "Not Found"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyAdminRoleGuard)
   async addToGroup(
-    @Body("user") user: User,
-    @Body("groupName") groupName: UserStatus,
-    @Body("requestedBy") requestedBy: User
+    @Body() changeRoleBody: ChangeRoleBody
   ): Promise<User> {
     let newUser: User = await this.userService.addUserToGroup(
-      user,
-      groupName,
-      requestedBy
+      changeRoleBody.user,
+      changeRoleBody.groupName,
+      changeRoleBody.requestedBy
     );
     return newUser as User;
   }
 
+  /**
+   * Delete a user
+   */
   @Post("delete-user")
+  @ApiResponse({
+    status : 201,
+    description : "User deleted successfully"
+  })
+  @ApiResponse({
+    status : 400,
+    description : "{Error encountered}"
+  })
+  @ApiResponse({
+    status : 401,
+    description : "Unauthorized"
+  })
+  @ApiResponse({
+    status : 404,
+    description : "Not Found"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyAdminRoleGuard)
   async deleteUser(
-    @Body("user") user: User,
-    @Body("requestedBy") requestedBy: User
+    @Body() deleteUserBody: DeleteUserBody  
   ): Promise<User> {
-    let deletedUser = await this.userService.deleteUser(user, requestedBy);
-    return user as User;
+    let deletedUser = await this.userService.deleteUser(deleteUserBody.user, deleteUserBody.requestedBy);
+    return deletedUser as User;
   }
 
+  /**
+   * Get user by ID
+   */
   @Get(":id")
+  @ApiParam({
+    name: 'id',
+    description: 'User ID to retrieve',
+    required: true,
+    type: String
+  })
+  @ApiResponse({
+    status : 200,
+    description : "User retrieved successfully"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyUserGuard)
-  async getUserById(@Param("id") userId: string) {
+  async getUserById(@Param('id') userId: string): Promise<User> {
     return await this.userService.getUserById(userId);
   }
 }
diff --git a/backend/src/user/user.service.ts b/backend/src/user/user.service.ts
index 3f55ecf1..a1fadaf1 100644
--- a/backend/src/user/user.service.ts
+++ b/backend/src/user/user.service.ts
@@ -102,6 +102,7 @@ export class UserService {
     const deleteResult = await this.dynamoDb.delete(deleteParams).promise();
 
     if (!deleteResult.Attributes) {
+      this.logger.error(`DynamoDB delete did not return deleted attributes for ${username}`);
       throw new InternalServerErrorException(
         "Failed to delete user from database"
       );
@@ -275,6 +276,9 @@ async addUserToGroup(
         requestedBy.position === UserStatus.Admin &&
         groupName !== UserStatus.Admin
       ) {
+        this.logger.warn(
+          `Administrator ${requestedBy.userId} attempted to demote themselves`
+        );
         throw new BadRequestException(
           "Administrators cannot demote themselves"
         );
@@ -542,7 +546,6 @@ async getAllActiveUsers(): Promise<User[]> {
         this.logger.error("DynamoDB scan result:", result);
         throw new NotFoundException("No active users found.");
       }
-      
       const users: User[] = (result.Items || []).map((item) => ({
         userId: item.userId, // Assign name to userId
         position: item.position as UserStatus,

From 11b5bdc19591d4efb6bf8c1c4fb3e56b2ee6b8a4 Mon Sep 17 00:00:00 2001
From: prooflesben <prooflesben@gmail.com>
Date: Fri, 23 Jan 2026 16:44:04 -0500
Subject: [PATCH 04/10] added in

---
 backend/src/auth/auth.controller.ts | 15 +++++++--------
 1 file changed, 7 insertions(+), 8 deletions(-)

diff --git a/backend/src/auth/auth.controller.ts b/backend/src/auth/auth.controller.ts
index ab77991c..72bd0665 100644
--- a/backend/src/auth/auth.controller.ts
+++ b/backend/src/auth/auth.controller.ts
@@ -3,7 +3,7 @@ import { AuthService } from './auth.service';
 import { User } from '../types/User';
 import { Response } from 'express';
 import { VerifyAdminRoleGuard, VerifyUserGuard } from "../guards/auth.guard";
-import { RegisterBody } from './types/auth.types';
+import { LoginBody, RegisterBody } from './types/auth.types';
 import { ApiBearerAuth, ApiResponse } from '@nestjs/swagger';
 
 @Controller('auth')
@@ -43,14 +43,14 @@ export class AuthController {
     status : 201,
     description : "User registered successfully"
   })
-  @ApiResponse({
-    status : 400,
-    description : "{Error encountered}"}
-  )
   @ApiResponse({
     status: 500,
     description : "Internal Server Error"
   })
+  @ApiResponse({
+    status : 400,
+    description : "{Error encountered}"}
+  )
   @ApiResponse({
     status: 409,
     description : "{Error encountered}"
@@ -65,8 +65,7 @@ export class AuthController {
   @Post('login')
   async login(
     @Res({ passthrough: true }) response: Response,
-    @Body('username') username: string,
-    @Body('password') password: string, 
+    @Body() body:LoginBody
   ): Promise<{
     user: User;
     session?: string;
@@ -75,7 +74,7 @@ export class AuthController {
     username?: string;
     position?: string;
   }> {
-    const result = await this.authService.login(username, password);
+    const result = await this.authService.login(body.username, body.password);
   
   // Set cookie with access token
   if (result.access_token) {

From 34e75b6005abe6d2b4aa3b2e57a4145a02b85c56 Mon Sep 17 00:00:00 2001
From: lyannne <xu.ly@northeastern.edu>
Date: Thu, 22 Jan 2026 21:15:05 -0500
Subject: [PATCH 05/10] new types file

---
 backend/src/user/types/user.types.ts | 0
 backend/src/user/user.service.ts     | 2 ++
 2 files changed, 2 insertions(+)
 create mode 100644 backend/src/user/types/user.types.ts

diff --git a/backend/src/user/types/user.types.ts b/backend/src/user/types/user.types.ts
new file mode 100644
index 00000000..e69de29b
diff --git a/backend/src/user/user.service.ts b/backend/src/user/user.service.ts
index 032a3732..4a0b4944 100644
--- a/backend/src/user/user.service.ts
+++ b/backend/src/user/user.service.ts
@@ -41,10 +41,12 @@ export class UserService {
 
   // 2. Validate input
   if (!user || !user.userId) {
+    this.logger.error("Invalid user object provided for deletion");
     throw new BadRequestException("Valid user object is required");
   }
 
   if (!requestedBy || !requestedBy.userId) {
+    this.logger.error("Invalid requesting user object provided for deletion");
     throw new BadRequestException("Valid requesting user is required");
   }
 

From a1d68047c9f76d951c81c40bb3e27265232eb5a4 Mon Sep 17 00:00:00 2001
From: lyannne <xu.ly@northeastern.edu>
Date: Fri, 23 Jan 2026 14:50:38 -0500
Subject: [PATCH 06/10] logging

---
 backend/src/user/user.service.ts | 72 ++++++++++++++++++++++++++------
 1 file changed, 60 insertions(+), 12 deletions(-)

diff --git a/backend/src/user/user.service.ts b/backend/src/user/user.service.ts
index 4a0b4944..3f55ecf1 100644
--- a/backend/src/user/user.service.ts
+++ b/backend/src/user/user.service.ts
@@ -23,6 +23,8 @@ export class UserService {
   private dynamoDb = new AWS.DynamoDB.DocumentClient();
   private ses = new AWS.SES({ region: process.env.AWS_REGION });
 
+  // purpose statement: deletes user from database; only admin can delete users
+  // use case: employee is no longer with BCAN
  async deleteUser(user: User, requestedBy: User): Promise<User> {
   const userPoolId = process.env.COGNITO_USER_POOL_ID;
   const tableName = process.env.DYNAMODB_USER_TABLE_NAME;
@@ -60,6 +62,7 @@ export class UserService {
 
   // 4. Prevent self-deletion
   if (requestedBy.userId === username) {
+    this.logger.warn(`Administrator ${requestedBy.userId} attempted to delete their own account`);
     throw new BadRequestException("Administrators cannot delete their own account");
   }
 
@@ -179,19 +182,30 @@ export class UserService {
   return userToDelete;
 }
 
-  async getAllUsers(): Promise<any> {
+// purpose statement: retrieves all users from the database
+// use case: admin wants to see all users on user management page
+async getAllUsers(): Promise<any> {
     const params = {
       TableName: process.env.DYNAMODB_USER_TABLE_NAME || "TABLE_FAILURE",
     };
 
     try {
+      this.logger.log('Executing DynamoDB scan to retrieve all users...');
       const data = await this.dynamoDb.scan(params).promise();
+      
+      const userCount = data.Items?.length || 0;
+      this.logger.log(`✅ Successfully retrieved ${userCount} users from database`);
+      
       return data.Items;
     } catch (error) {
-      throw new Error("Could not retrieve users.");
+      this.logger.error('Failed to retrieve users from DynamoDB:', error);
+      throw new InternalServerErrorException("Could not retrieve users.");
     }
   }
-  async addUserToGroup(
+
+  // purpose statement: adds user to a group/changes their role; only admin can do this
+  // use case: admin wants to promote an employee to admin or activate an inactive user
+async addUserToGroup(
     user: User,
     groupName: UserStatus,
     requestedBy: User
@@ -374,6 +388,9 @@ export class UserService {
       const result = await this.dynamoDb.update(params).promise();
 
       if (!result.Attributes) {
+        this.logger.error(
+          `DynamoDB update did not return updated attributes for ${username}`
+        );
         throw new InternalServerErrorException(
           "Failed to retrieve updated user data"
         );
@@ -441,6 +458,8 @@ export class UserService {
     }
   }
 
+  // purpose statement: retrieves user by their userId
+  // use case: not actually sure right now, maybe is there is an option for admin to click on a specific user to see details?
   async getUserById(userId: string): Promise<any> {
     const params = {
       TableName: process.env.DYNAMODB_USER_TABLE_NAME || "TABLE_FAILURE",
@@ -450,15 +469,22 @@ export class UserService {
     };
 
     try {
+      this.logger.log(`Fetching user ${userId} from DynamoDB...`);
       const data = await this.dynamoDb.get(params).promise();
+      
+      this.logger.log(`✅ Successfully retrieved user ${userId}`);
       return data.Item;
     } catch (error) {
-      throw new Error('Could not retrieve user.');
+      this.logger.error(`Failed to retrieve user ${userId} from DynamoDB:`, error);
+      throw new InternalServerErrorException('Could not retrieve user.');
     }
   }
 
+  // purpose statement: retrieves all inactive users
+  // use case: for admin to see all users that need account approval on user management page (pending users tab)
   async getAllInactiveUsers(): Promise<User[]> {
     this.logger.log("Fetching all inactive users in service");
+
     const params = {
       TableName: process.env.DYNAMODB_USER_TABLE_NAME || "TABLE_FAILURE",
       FilterExpression: "#pos IN (:inactive)",
@@ -471,7 +497,9 @@ export class UserService {
     };
 
     try {
+      this.logger.log('Executing DynamoDB scan with filter for Inactive users...');
       const result = await this.dynamoDb.scan(params).promise();
+      
       const users: User[] = (result.Items || []).map((item) => ({
         userId: item.userId, // Assign name to userId
         position: item.position as UserStatus,
@@ -479,6 +507,7 @@ export class UserService {
         name: item.userId, // Keep name as name
       }));
 
+      this.logger.log(`✅ Successfully retrieved ${users.length} inactive users`);
       return users;
     } catch (error) {
       this.logger.error("Error scanning DynamoDB:", error);
@@ -489,7 +518,10 @@ export class UserService {
     }
   }
 
-  async getAllActiveUsers(): Promise<User[]> {
+  // purpose statement: retrieves all active users (Admins and Employees)
+  // use case: for admin to see all current users on user management page (current users tab)
+async getAllActiveUsers(): Promise<User[]> {
+    this.logger.log('Starting getAllActiveUsers - Fetching all active users (Admin and Employee)');
     const params = {
       TableName: process.env.DYNAMODB_USER_TABLE_NAME || "TABLE_FAILURE",
       FilterExpression: "#pos IN (:admin, :employee)",
@@ -503,18 +535,21 @@ export class UserService {
     };
 
     try {
+      this.logger.log('Executing DynamoDB scan with filter for Admin and Employee users...');
       const result = await this.dynamoDb.scan(params).promise();
       if (!result.Items) {
         this.logger.error("No active users found.");
         this.logger.error("DynamoDB scan result:", result);
         throw new NotFoundException("No active users found.");
       }
+      
       const users: User[] = (result.Items || []).map((item) => ({
         userId: item.userId, // Assign name to userId
         position: item.position as UserStatus,
         email: item.email,
         name: item.userId, // Keep name as name
       }));
+      
       this.logger.debug(`Fetched ${users.length} active users.`);
 
       return users;
@@ -522,19 +557,25 @@ export class UserService {
       this.logger.error("Error scanning DynamoDB:", error);
       if (error instanceof NotFoundException) throw error;
       throw new InternalServerErrorException(
-        "Failed to retrieve inactive users."
+        "Failed to retrieve active users."
       );
     }
   }
 
 
 
-  // sends email to user once account is approved, used in method above when a user
+  // purpose statement: sends email to user once account is approved, used in method above when a user
   // is added to the Employee or Admin group from Inactive
   async sendVerificationEmail(userEmail: string): Promise<AWS.SES.SendEmailResponse> {
+      this.logger.log(`Starting sendVerificationEmail for email: ${userEmail}`);
+      
+      if (!userEmail || !this.isValidEmail(userEmail)) {
+        this.logger.error(`Invalid email address provided: ${userEmail}`);
+        throw new BadRequestException("Valid email address is required");
+      }
+
       // remove actual email and add to env later!!
-      const fromEmail = process.env.NOTIFICATION_EMAIL_SENDER ||
-      'c4cneu.bcan@gmail.com';
+      const fromEmail = process.env.NOTIFICATION_EMAIL_SENDER || 'c4cneu.bcan@gmail.com';
 
       const params: AWS.SES.SendEmailRequest = {
         Source: fromEmail,
@@ -551,13 +592,20 @@ export class UserService {
       };
 
       try {
+        this.logger.log(`Calling AWS SES to send email to ${userEmail}...`);
         const result = await this.ses.sendEmail(params).promise();
-        this.logger.log(`Verification email sent to ${userEmail}`);
+        this.logger.log(`✅ Verification email sent successfully to ${userEmail}. MessageId: ${result.MessageId}`);
         return result;
       } catch (err: unknown) {
         this.logger.error('Error sending email: ', err);
-        const errMessage = (err instanceof Error) ? err.message : 'Generic'; 
-        throw new Error(`Failed to send email: ${errMessage}`);
+        const errMessage = (err instanceof Error) ? err.message : 'Unknown error'; 
+        throw new InternalServerErrorException(`Failed to send email: ${errMessage}`);
       }
   }
+
+  // Helper method for email validation
+  private isValidEmail(email: string): boolean {
+    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+    return emailRegex.test(email);
+  }
 }

From d93b28bea3952fcda7cd477db8a9b1f42e09a88b Mon Sep 17 00:00:00 2001
From: lyannne <xu.ly@northeastern.edu>
Date: Fri, 23 Jan 2026 15:58:15 -0500
Subject: [PATCH 07/10] swagger docs and types made, also switched change-roles
 route to a patch instead of post since that made more sense

---
 backend/src/user/types/user.types.ts |  29 +++++++
 backend/src/user/user.controller.ts  | 124 ++++++++++++++++++++++++---
 backend/src/user/user.service.ts     |   5 +-
 3 files changed, 143 insertions(+), 15 deletions(-)

diff --git a/backend/src/user/types/user.types.ts b/backend/src/user/types/user.types.ts
index e69de29b..83423f7d 100644
--- a/backend/src/user/types/user.types.ts
+++ b/backend/src/user/types/user.types.ts
@@ -0,0 +1,29 @@
+import { ApiProperty } from '@nestjs/swagger';
+import { UserStatus } from '../../../../middle-layer/types/UserStatus';
+
+export class ChangeRoleBody {
+  user!: {   
+    userId: string,
+    position: UserStatus,
+    email: string 
+  };
+  groupName!: UserStatus;
+  requestedBy!: {   
+    userId: string,
+    position: UserStatus,
+    email: string 
+  };
+}
+
+export class DeleteUserBody {
+  user!: {   
+    userId: string,
+    position: UserStatus,
+    email: string 
+  };
+  requestedBy!: {   
+    userId: string,
+    position: UserStatus,
+    email: string 
+  };
+}
\ No newline at end of file
diff --git a/backend/src/user/user.controller.ts b/backend/src/user/user.controller.ts
index 8d72da9c..0833c6c9 100644
--- a/backend/src/user/user.controller.ts
+++ b/backend/src/user/user.controller.ts
@@ -1,60 +1,156 @@
-import { Controller, Get, Post, Body, Param, UseGuards } from "@nestjs/common";
+import { Controller, Get, Post, Patch, Body, Param, UseGuards } from "@nestjs/common";
 import { UserService } from "./user.service";
 import { User } from "../../../middle-layer/types/User";
 import { UserStatus } from "../../../middle-layer/types/UserStatus";
 import { VerifyAdminRoleGuard, VerifyUserGuard } from "../guards/auth.guard";
+import { ApiResponse, ApiParam } from "@nestjs/swagger";
+import { ChangeRoleBody, DeleteUserBody } from "./types/user.types";
 
 @Controller("user")
 export class UserController {
   constructor(private readonly userService: UserService) {}
 
+  /**
+   * Get all users
+   */
   @Get()
+  @ApiResponse({
+    status : 200,
+    description : "All users retrieved successfully"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyUserGuard)
   async getAllUsers() {
     return await this.userService.getAllUsers();
   }
 
+
+  /**
+   * Get all inactive users
+   */
   @Get("inactive")
+  @ApiResponse({
+    status : 200,
+    description : "All inactive users retrieved successfully"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyUserGuard)
   async getAllInactiveUsers(): Promise<User[]> {
     return await this.userService.getAllInactiveUsers();
   }
 
+  /**
+   * Get all active users
+   */
   @Get("active")
+  @ApiResponse({
+    status : 200,
+    description : "All active users retrieved successfully"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyUserGuard)
   async getAllActiveUsers(): Promise<User[]> {
     console.log("Fetching all active users");
     return await this.userService.getAllActiveUsers();
   }
-  // Make sure to put a guard on this route
-  @Post("change-role")
+
+  /**
+   * Change a user's role (make sure guard is on this route)
+   */
+  @Patch("change-role")
+  @ApiResponse({
+    status : 200,
+    description : "User role changed successfully"
+  })
+  @ApiResponse({
+    status : 400,
+    description : "{Error encountered}"
+  })
+  @ApiResponse({
+    status : 401,
+    description : "Unauthorized"
+  })
+  @ApiResponse({
+    status : 404,
+    description : "Not Found"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyAdminRoleGuard)
   async addToGroup(
-    @Body("user") user: User,
-    @Body("groupName") groupName: UserStatus,
-    @Body("requestedBy") requestedBy: User
+    @Body() changeRoleBody: ChangeRoleBody
   ): Promise<User> {
     let newUser: User = await this.userService.addUserToGroup(
-      user,
-      groupName,
-      requestedBy
+      changeRoleBody.user,
+      changeRoleBody.groupName,
+      changeRoleBody.requestedBy
     );
     return newUser as User;
   }
 
+  /**
+   * Delete a user
+   */
   @Post("delete-user")
+  @ApiResponse({
+    status : 201,
+    description : "User deleted successfully"
+  })
+  @ApiResponse({
+    status : 400,
+    description : "{Error encountered}"
+  })
+  @ApiResponse({
+    status : 401,
+    description : "Unauthorized"
+  })
+  @ApiResponse({
+    status : 404,
+    description : "Not Found"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyAdminRoleGuard)
   async deleteUser(
-    @Body("user") user: User,
-    @Body("requestedBy") requestedBy: User
+    @Body() deleteUserBody: DeleteUserBody  
   ): Promise<User> {
-    let deletedUser = await this.userService.deleteUser(user, requestedBy);
-    return user as User;
+    let deletedUser = await this.userService.deleteUser(deleteUserBody.user, deleteUserBody.requestedBy);
+    return deletedUser as User;
   }
 
+  /**
+   * Get user by ID
+   */
   @Get(":id")
+  @ApiParam({
+    name: 'id',
+    description: 'User ID to retrieve',
+    required: true,
+    type: String
+  })
+  @ApiResponse({
+    status : 200,
+    description : "User retrieved successfully"
+  })
+  @ApiResponse({
+    status : 500,
+    description : "Internal Server Error"
+  })
   @UseGuards(VerifyUserGuard)
-  async getUserById(@Param("id") userId: string) {
+  async getUserById(@Param('id') userId: string): Promise<User> {
     return await this.userService.getUserById(userId);
   }
 }
diff --git a/backend/src/user/user.service.ts b/backend/src/user/user.service.ts
index 3f55ecf1..a1fadaf1 100644
--- a/backend/src/user/user.service.ts
+++ b/backend/src/user/user.service.ts
@@ -102,6 +102,7 @@ export class UserService {
     const deleteResult = await this.dynamoDb.delete(deleteParams).promise();
 
     if (!deleteResult.Attributes) {
+      this.logger.error(`DynamoDB delete did not return deleted attributes for ${username}`);
       throw new InternalServerErrorException(
         "Failed to delete user from database"
       );
@@ -275,6 +276,9 @@ async addUserToGroup(
         requestedBy.position === UserStatus.Admin &&
         groupName !== UserStatus.Admin
       ) {
+        this.logger.warn(
+          `Administrator ${requestedBy.userId} attempted to demote themselves`
+        );
         throw new BadRequestException(
           "Administrators cannot demote themselves"
         );
@@ -542,7 +546,6 @@ async getAllActiveUsers(): Promise<User[]> {
         this.logger.error("DynamoDB scan result:", result);
         throw new NotFoundException("No active users found.");
       }
-      
       const users: User[] = (result.Items || []).map((item) => ({
         userId: item.userId, // Assign name to userId
         position: item.position as UserStatus,

From 29c297ab90756e53f020a428b7645d86ddf979a7 Mon Sep 17 00:00:00 2001
From: lyannne <xu.ly@northeastern.edu>
Date: Sat, 24 Jan 2026 15:39:38 -0500
Subject: [PATCH 08/10] created VerifyAdminOrEmployeeRoleGuard since inactive
 accounts shouldnt be able to make any API calls, changed verifyuserguard
 instances to that

---
 backend/src/guards/auth.guard.ts    | 54 +++++++++++++++++++++++++++++
 backend/src/user/user.controller.ts | 18 ++++++----
 2 files changed, 66 insertions(+), 6 deletions(-)

diff --git a/backend/src/guards/auth.guard.ts b/backend/src/guards/auth.guard.ts
index cfc9241f..3b943741 100644
--- a/backend/src/guards/auth.guard.ts
+++ b/backend/src/guards/auth.guard.ts
@@ -87,3 +87,57 @@ export class VerifyAdminRoleGuard implements CanActivate {
     }
   }
 }
+
+@Injectable()
+export class VerifyAdminOrEmployeeRoleGuard implements CanActivate {
+  private verifier: any;
+  private readonly logger: Logger;
+  
+  constructor() {
+    const userPoolId = process.env.COGNITO_USER_POOL_ID;
+    this.logger = new Logger(VerifyAdminOrEmployeeRoleGuard.name);
+    
+    if (userPoolId) {
+      this.verifier = CognitoJwtVerifier.create({
+        userPoolId,
+        tokenUse: "access",
+        clientId: process.env.COGNITO_CLIENT_ID,
+      });
+    } else {
+      throw new Error(
+        "[AUTH] USER POOL ID is not defined in environment variables"
+      );
+    }
+  }
+  
+  async canActivate(context: ExecutionContext): Promise<boolean> {
+    try {
+      const request = context.switchToHttp().getRequest();
+      const accessToken = request.cookies["access_token"];
+      
+      if (!accessToken) {
+        this.logger.error("No access token found in cookies");
+        return false;
+      }
+      
+      const result = await this.verifier.verify(accessToken);
+      const groups = result['cognito:groups'] || [];
+      
+      this.logger.log(`User groups from token: ${groups.join(', ')}`);
+      
+      // Check if user is either Admin or Employee
+      const isAuthorized = groups.includes('Admin') || groups.includes('Employee');
+      
+      if (!isAuthorized) {
+        this.logger.warn("Access denied: User is not an Admin or Employee");
+        return false;
+      }
+      
+      return true;
+      
+    } catch (error) {
+      this.logger.error("Token verification failed:", error);
+      return false;
+    }
+  }
+}
diff --git a/backend/src/user/user.controller.ts b/backend/src/user/user.controller.ts
index 0833c6c9..71078449 100644
--- a/backend/src/user/user.controller.ts
+++ b/backend/src/user/user.controller.ts
@@ -2,8 +2,8 @@ import { Controller, Get, Post, Patch, Body, Param, UseGuards } from "@nestjs/co
 import { UserService } from "./user.service";
 import { User } from "../../../middle-layer/types/User";
 import { UserStatus } from "../../../middle-layer/types/UserStatus";
-import { VerifyAdminRoleGuard, VerifyUserGuard } from "../guards/auth.guard";
-import { ApiResponse, ApiParam } from "@nestjs/swagger";
+import { VerifyAdminRoleGuard, VerifyUserGuard, VerifyAdminOrEmployeeRoleGuard } from "../guards/auth.guard";
+import { ApiResponse, ApiParam , ApiBearerAuth} from "@nestjs/swagger";
 import { ChangeRoleBody, DeleteUserBody } from "./types/user.types";
 
 @Controller("user")
@@ -22,7 +22,8 @@ export class UserController {
     status : 500,
     description : "Internal Server Error"
   })
-  @UseGuards(VerifyUserGuard)
+  @UseGuards(VerifyAdminOrEmployeeRoleGuard)
+  @ApiBearerAuth()
   async getAllUsers() {
     return await this.userService.getAllUsers();
   }
@@ -40,7 +41,8 @@ export class UserController {
     status : 500,
     description : "Internal Server Error"
   })
-  @UseGuards(VerifyUserGuard)
+  @UseGuards(VerifyAdminOrEmployeeRoleGuard)
+  @ApiBearerAuth()
   async getAllInactiveUsers(): Promise<User[]> {
     return await this.userService.getAllInactiveUsers();
   }
@@ -57,7 +59,8 @@ export class UserController {
     status : 500,
     description : "Internal Server Error"
   })
-  @UseGuards(VerifyUserGuard)
+  @UseGuards(VerifyAdminOrEmployeeRoleGuard)
+  @ApiBearerAuth()
   async getAllActiveUsers(): Promise<User[]> {
     console.log("Fetching all active users");
     return await this.userService.getAllActiveUsers();
@@ -88,6 +91,7 @@ export class UserController {
     description : "Internal Server Error"
   })
   @UseGuards(VerifyAdminRoleGuard)
+  @ApiBearerAuth()
   async addToGroup(
     @Body() changeRoleBody: ChangeRoleBody
   ): Promise<User> {
@@ -124,6 +128,7 @@ export class UserController {
     description : "Internal Server Error"
   })
   @UseGuards(VerifyAdminRoleGuard)
+  @ApiBearerAuth()
   async deleteUser(
     @Body() deleteUserBody: DeleteUserBody  
   ): Promise<User> {
@@ -149,7 +154,8 @@ export class UserController {
     status : 500,
     description : "Internal Server Error"
   })
-  @UseGuards(VerifyUserGuard)
+  @UseGuards(VerifyAdminOrEmployeeRoleGuard)
+  @ApiBearerAuth()
   async getUserById(@Param('id') userId: string): Promise<User> {
     return await this.userService.getUserById(userId);
   }

From 20f1fc0bc8eb8253879f9d43dfd5bf64c7b58f7d Mon Sep 17 00:00:00 2001
From: lyannne <xu.ly@northeastern.edu>
Date: Sat, 24 Jan 2026 16:31:20 -0500
Subject: [PATCH 09/10] made delete route a delete, changed adminguard to
 contain user information, changed request bodies to use that information to
 get the user requested

---
 backend/src/guards/auth.guard.ts     |  8 ++++
 backend/src/user/types/user.types.ts | 18 ---------
 backend/src/user/user.controller.ts  | 58 +++++++++++++++++++++++-----
 backend/src/user/user.service.ts     |  4 +-
 frontend/src/Register.tsx            |  2 +-
 5 files changed, 60 insertions(+), 30 deletions(-)

diff --git a/backend/src/guards/auth.guard.ts b/backend/src/guards/auth.guard.ts
index 3b943741..1c907612 100644
--- a/backend/src/guards/auth.guard.ts
+++ b/backend/src/guards/auth.guard.ts
@@ -73,6 +73,14 @@ export class VerifyAdminRoleGuard implements CanActivate {
       }
       const result = await this.verifier.verify(accessToken);
       const groups = result['cognito:groups'] || [];
+      
+      // Attach user info to request for use in controllers
+      request.user = {
+        userId: result['username'] || result['cognito:username'],
+        email: result['email'],
+        position: groups.includes('Admin') ? 'Admin' : (groups.includes('Employee') ? 'Employee' : 'Inactive')
+      };
+      
       console.log("User groups from token:", groups); 
       if (!groups.includes('Admin')) {
         console.warn("Access denied: User is not an Admin");
diff --git a/backend/src/user/types/user.types.ts b/backend/src/user/types/user.types.ts
index 83423f7d..8cd99c2c 100644
--- a/backend/src/user/types/user.types.ts
+++ b/backend/src/user/types/user.types.ts
@@ -8,22 +8,4 @@ export class ChangeRoleBody {
     email: string 
   };
   groupName!: UserStatus;
-  requestedBy!: {   
-    userId: string,
-    position: UserStatus,
-    email: string 
-  };
-}
-
-export class DeleteUserBody {
-  user!: {   
-    userId: string,
-    position: UserStatus,
-    email: string 
-  };
-  requestedBy!: {   
-    userId: string,
-    position: UserStatus,
-    email: string 
-  };
 }
\ No newline at end of file
diff --git a/backend/src/user/user.controller.ts b/backend/src/user/user.controller.ts
index 71078449..b6a97722 100644
--- a/backend/src/user/user.controller.ts
+++ b/backend/src/user/user.controller.ts
@@ -1,10 +1,10 @@
-import { Controller, Get, Post, Patch, Body, Param, UseGuards } from "@nestjs/common";
+import { Controller, Get, Patch, Delete, Body, Param, UseGuards, Req } from "@nestjs/common";
 import { UserService } from "./user.service";
 import { User } from "../../../middle-layer/types/User";
 import { UserStatus } from "../../../middle-layer/types/UserStatus";
 import { VerifyAdminRoleGuard, VerifyUserGuard, VerifyAdminOrEmployeeRoleGuard } from "../guards/auth.guard";
 import { ApiResponse, ApiParam , ApiBearerAuth} from "@nestjs/swagger";
-import { ChangeRoleBody, DeleteUserBody } from "./types/user.types";
+import { ChangeRoleBody } from "./types/user.types";
 
 @Controller("user")
 export class UserController {
@@ -18,6 +18,10 @@ export class UserController {
     status : 200,
     description : "All users retrieved successfully"
   })
+  @ApiResponse({
+    status : 403,
+    description : "Forbidden"
+  })
   @ApiResponse({
     status : 500,
     description : "Internal Server Error"
@@ -37,6 +41,10 @@ export class UserController {
     status : 200,
     description : "All inactive users retrieved successfully"
   })
+  @ApiResponse({
+    status : 403,
+    description : "Forbidden"
+  })
   @ApiResponse({
     status : 500,
     description : "Internal Server Error"
@@ -55,6 +63,10 @@ export class UserController {
     status : 200,
     description : "All active users retrieved successfully"
   })
+  @ApiResponse({
+    status : 403,
+    description : "Forbidden"
+  })
   @ApiResponse({
     status : 500,
     description : "Internal Server Error"
@@ -82,6 +94,10 @@ export class UserController {
     status : 401,
     description : "Unauthorized"
   })
+  @ApiResponse({
+    status : 403,
+    description : "Forbidden"
+  })
   @ApiResponse({
     status : 404,
     description : "Not Found"
@@ -93,12 +109,16 @@ export class UserController {
   @UseGuards(VerifyAdminRoleGuard)
   @ApiBearerAuth()
   async addToGroup(
-    @Body() changeRoleBody: ChangeRoleBody
+    @Body() changeRoleBody: ChangeRoleBody,
+    @Req() req: any
   ): Promise<User> {
+    // Get the requesting admin from the authenticated session (attached by guard)
+    const requestedBy: User = req.user;
+    
     let newUser: User = await this.userService.addUserToGroup(
       changeRoleBody.user,
       changeRoleBody.groupName,
-      changeRoleBody.requestedBy
+      requestedBy
     );
     return newUser as User;
   }
@@ -106,9 +126,15 @@ export class UserController {
   /**
    * Delete a user
    */
-  @Post("delete-user")
+  @Delete("delete-user/:userId")
+  @ApiParam({
+    name: 'userId',
+    description: 'ID of the user to delete',
+    required: true,
+    type: String
+  })
   @ApiResponse({
-    status : 201,
+    status : 200,
     description : "User deleted successfully"
   })
   @ApiResponse({
@@ -119,6 +145,10 @@ export class UserController {
     status : 401,
     description : "Unauthorized"
   })
+  @ApiResponse({
+    status : 403,
+    description : "Forbidden"
+  })
   @ApiResponse({
     status : 404,
     description : "Not Found"
@@ -130,10 +160,16 @@ export class UserController {
   @UseGuards(VerifyAdminRoleGuard)
   @ApiBearerAuth()
   async deleteUser(
-    @Body() deleteUserBody: DeleteUserBody  
+    @Param('userId') userId: string,
+    @Req() req: any
   ): Promise<User> {
-    let deletedUser = await this.userService.deleteUser(deleteUserBody.user, deleteUserBody.requestedBy);
-    return deletedUser as User;
+    // Get the requesting admin from the authenticated session (attached by guard)
+    const requestedBy: User = req.user;
+    
+    // Fetch the user to delete from the database
+    const userToDelete: User = await this.userService.getUserById(userId);
+    
+    return await this.userService.deleteUser(userToDelete, requestedBy);
   }
 
   /**
@@ -150,6 +186,10 @@ export class UserController {
     status : 200,
     description : "User retrieved successfully"
   })
+  @ApiResponse({
+    status : 403,
+    description : "Forbidden"
+  })
   @ApiResponse({
     status : 500,
     description : "Internal Server Error"
diff --git a/backend/src/user/user.service.ts b/backend/src/user/user.service.ts
index a1fadaf1..ad46eedb 100644
--- a/backend/src/user/user.service.ts
+++ b/backend/src/user/user.service.ts
@@ -464,7 +464,7 @@ async addUserToGroup(
 
   // purpose statement: retrieves user by their userId
   // use case: not actually sure right now, maybe is there is an option for admin to click on a specific user to see details?
-  async getUserById(userId: string): Promise<any> {
+  async getUserById(userId: string): Promise<User> {
     const params = {
       TableName: process.env.DYNAMODB_USER_TABLE_NAME || "TABLE_FAILURE",
       Key: {
@@ -477,7 +477,7 @@ async addUserToGroup(
       const data = await this.dynamoDb.get(params).promise();
       
       this.logger.log(`✅ Successfully retrieved user ${userId}`);
-      return data.Item;
+      return data.Item as User;
     } catch (error) {
       this.logger.error(`Failed to retrieve user ${userId} from DynamoDB:`, error);
       throw new InternalServerErrorException('Could not retrieve user.');
diff --git a/frontend/src/Register.tsx b/frontend/src/Register.tsx
index 58fe0a11..136be513 100644
--- a/frontend/src/Register.tsx
+++ b/frontend/src/Register.tsx
@@ -205,7 +205,7 @@ const Register = observer(() => {
             <hr className="border-[#757575] w-[45%]" />
           </div>
           <div className="flex items-center mt-4 justify-center">
-            Don't have an account?{" "}
+            Have an account?{" "}
             <button
               type="button"
               onClick={() => navigate("/login")}

From 657accb22dc129c5a3e9897e6d0089ff57529b84 Mon Sep 17 00:00:00 2001
From: lyannne <xu.ly@northeastern.edu>
Date: Sat, 24 Jan 2026 16:42:19 -0500
Subject: [PATCH 10/10] fixed test

---
 .../src/user/__test__/user.service.spec.ts    |   5 +-
 package-lock.json                             | 757 ++++++++++++++++++
 2 files changed, 761 insertions(+), 1 deletion(-)
 create mode 100644 package-lock.json

diff --git a/backend/src/user/__test__/user.service.spec.ts b/backend/src/user/__test__/user.service.spec.ts
index bd7a9923..1500da31 100644
--- a/backend/src/user/__test__/user.service.spec.ts
+++ b/backend/src/user/__test__/user.service.spec.ts
@@ -4,7 +4,7 @@ import { UserService } from '../user.service';
 
 import * as AWS from 'aws-sdk';
 
-import { VerifyUserGuard, VerifyAdminRoleGuard } from '../../guards/auth.guard';
+import { VerifyUserGuard, VerifyAdminRoleGuard, VerifyAdminOrEmployeeRoleGuard } from '../../guards/auth.guard';
 import { describe, it, expect, beforeEach, beforeAll, vi } from 'vitest';
 
 // Create mock functions at module level (BEFORE mock)
@@ -77,6 +77,9 @@ vi.mock('../../guards/auth.guard', () => ({
   }),
   VerifyAdminRoleGuard: vi.fn(class MockVerifyAdminRoleGuard {
     canActivate = vi.fn().mockResolvedValue(true);
+  }),
+  VerifyAdminOrEmployeeRoleGuard: vi.fn(class MockVerifyAdminOrEmployeeRoleGuard {
+    canActivate = vi.fn().mockResolvedValue(true);
   })
 }));
 
diff --git a/package-lock.json b/package-lock.json
new file mode 100644
index 00000000..a1c2ccf7
--- /dev/null
+++ b/package-lock.json
@@ -0,0 +1,757 @@
+{
+  "name": "bcan",
+  "lockfileVersion": 3,
+  "requires": true,
+  "packages": {
+    "node_modules/@nodelib/fs.scandir": {
+      "version": "2.1.5",
+      "resolved": "https://registry.npmjs.org/@nodelib/fs.scandir/-/fs.scandir-2.1.5.tgz",
+      "integrity": "sha512-vq24Bq3ym5HEQm2NKCr3yXDwjc7vTsEThRDnkp2DK9p1uqLR+DHurm/NOTo0KG7HYHU7eppKZj3MyqYuMBf62g==",
+      "license": "MIT",
+      "dependencies": {
+        "@nodelib/fs.stat": "2.0.5",
+        "run-parallel": "^1.1.9"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/@nodelib/fs.stat": {
+      "version": "2.0.5",
+      "resolved": "https://registry.npmjs.org/@nodelib/fs.stat/-/fs.stat-2.0.5.tgz",
+      "integrity": "sha512-RkhPPp2zrqDAQA/2jNhnztcPAlv64XdhIp7a7454A5ovI7Bukxgt7MX7udwAu3zg1DcpPU0rz3VV1SeaqvY4+A==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/@nodelib/fs.walk": {
+      "version": "1.2.8",
+      "resolved": "https://registry.npmjs.org/@nodelib/fs.walk/-/fs.walk-1.2.8.tgz",
+      "integrity": "sha512-oGB+UxlgWcgQkgwo8GcEGwemoTFt3FIO9ababBmaGwXIoBKZ+GTy0pP185beGg7Llih/NSHSV2XAs1lnznocSg==",
+      "license": "MIT",
+      "dependencies": {
+        "@nodelib/fs.scandir": "2.1.5",
+        "fastq": "^1.6.0"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/@reduxjs/toolkit": {
+      "version": "2.9.0",
+      "resolved": "https://registry.npmjs.org/@reduxjs/toolkit/-/toolkit-2.9.0.tgz",
+      "integrity": "sha512-fSfQlSRu9Z5yBkvsNhYF2rPS8cGXn/TZVrlwN1948QyZ8xMZ0JvP50S2acZNaf+o63u6aEeMjipFyksjIcWrog==",
+      "license": "MIT",
+      "dependencies": {
+        "@standard-schema/spec": "^1.0.0",
+        "@standard-schema/utils": "^0.3.0",
+        "immer": "^10.0.3",
+        "redux": "^5.0.1",
+        "redux-thunk": "^3.1.0",
+        "reselect": "^5.1.0"
+      },
+      "peerDependencies": {
+        "react": "^16.9.0 || ^17.0.0 || ^18 || ^19",
+        "react-redux": "^7.2.1 || ^8.1.3 || ^9.0.0"
+      },
+      "peerDependenciesMeta": {
+        "react": {
+          "optional": true
+        },
+        "react-redux": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@standard-schema/spec": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/@standard-schema/spec/-/spec-1.0.0.tgz",
+      "integrity": "sha512-m2bOd0f2RT9k8QJx1JN85cZYyH1RqFBdlwtkSlf4tBDYLCiiZnv1fIIwacK6cqwXavOydf0NPToMQgpKq+dVlA==",
+      "license": "MIT"
+    },
+    "node_modules/@standard-schema/utils": {
+      "version": "0.3.0",
+      "resolved": "https://registry.npmjs.org/@standard-schema/utils/-/utils-0.3.0.tgz",
+      "integrity": "sha512-e7Mew686owMaPJVNNLs55PUvgz371nKgwsc4vxE49zsODpJEnxgxRo2y/OKrqueavXgZNMDVj3DdHFlaSAeU8g==",
+      "license": "MIT"
+    },
+    "node_modules/@ts-morph/common": {
+      "version": "0.24.0",
+      "resolved": "https://registry.npmjs.org/@ts-morph/common/-/common-0.24.0.tgz",
+      "integrity": "sha512-c1xMmNHWpNselmpIqursHeOHHBTIsJLbB+NuovbTTRCNiTLEr/U9dbJ8qy0jd/O2x5pc3seWuOUN5R2IoOTp8A==",
+      "license": "MIT",
+      "dependencies": {
+        "fast-glob": "^3.3.2",
+        "minimatch": "^9.0.4",
+        "mkdirp": "^3.0.1",
+        "path-browserify": "^1.0.1"
+      }
+    },
+    "node_modules/@types/d3-array": {
+      "version": "3.2.2",
+      "resolved": "https://registry.npmjs.org/@types/d3-array/-/d3-array-3.2.2.tgz",
+      "integrity": "sha512-hOLWVbm7uRza0BYXpIIW5pxfrKe0W+D5lrFiAEYR+pb6w3N2SwSMaJbXdUfSEv+dT4MfHBLtn5js0LAWaO6otw==",
+      "license": "MIT"
+    },
+    "node_modules/@types/d3-color": {
+      "version": "3.1.3",
+      "resolved": "https://registry.npmjs.org/@types/d3-color/-/d3-color-3.1.3.tgz",
+      "integrity": "sha512-iO90scth9WAbmgv7ogoq57O9YpKmFBbmoEoCHDB2xMBY0+/KVrqAaCDyCE16dUspeOvIxFFRI+0sEtqDqy2b4A==",
+      "license": "MIT"
+    },
+    "node_modules/@types/d3-ease": {
+      "version": "3.0.2",
+      "resolved": "https://registry.npmjs.org/@types/d3-ease/-/d3-ease-3.0.2.tgz",
+      "integrity": "sha512-NcV1JjO5oDzoK26oMzbILE6HW7uVXOHLQvHshBUW4UMdZGfiY6v5BeQwh9a9tCzv+CeefZQHJt5SRgK154RtiA==",
+      "license": "MIT"
+    },
+    "node_modules/@types/d3-interpolate": {
+      "version": "3.0.4",
+      "resolved": "https://registry.npmjs.org/@types/d3-interpolate/-/d3-interpolate-3.0.4.tgz",
+      "integrity": "sha512-mgLPETlrpVV1YRJIglr4Ez47g7Yxjl1lj7YKsiMCb27VJH9W8NVM6Bb9d8kkpG/uAQS5AmbA48q2IAolKKo1MA==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/d3-color": "*"
+      }
+    },
+    "node_modules/@types/d3-path": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/@types/d3-path/-/d3-path-3.1.1.tgz",
+      "integrity": "sha512-VMZBYyQvbGmWyWVea0EHs/BwLgxc+MKi1zLDCONksozI4YJMcTt8ZEuIR4Sb1MMTE8MMW49v0IwI5+b7RmfWlg==",
+      "license": "MIT"
+    },
+    "node_modules/@types/d3-scale": {
+      "version": "4.0.9",
+      "resolved": "https://registry.npmjs.org/@types/d3-scale/-/d3-scale-4.0.9.tgz",
+      "integrity": "sha512-dLmtwB8zkAeO/juAMfnV+sItKjlsw2lKdZVVy6LRr0cBmegxSABiLEpGVmSJJ8O08i4+sGR6qQtb6WtuwJdvVw==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/d3-time": "*"
+      }
+    },
+    "node_modules/@types/d3-shape": {
+      "version": "3.1.7",
+      "resolved": "https://registry.npmjs.org/@types/d3-shape/-/d3-shape-3.1.7.tgz",
+      "integrity": "sha512-VLvUQ33C+3J+8p+Daf+nYSOsjB4GXp19/S/aGo60m9h1v6XaxjiT82lKVWJCfzhtuZ3yD7i/TPeC/fuKLLOSmg==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/d3-path": "*"
+      }
+    },
+    "node_modules/@types/d3-time": {
+      "version": "3.0.4",
+      "resolved": "https://registry.npmjs.org/@types/d3-time/-/d3-time-3.0.4.tgz",
+      "integrity": "sha512-yuzZug1nkAAaBlBBikKZTgzCeA+k1uy4ZFwWANOfKw5z5LRhV0gNA7gNkKm7HoK+HRN0wX3EkxGk0fpbWhmB7g==",
+      "license": "MIT"
+    },
+    "node_modules/@types/d3-timer": {
+      "version": "3.0.2",
+      "resolved": "https://registry.npmjs.org/@types/d3-timer/-/d3-timer-3.0.2.tgz",
+      "integrity": "sha512-Ps3T8E8dZDam6fUyNiMkekK3XUsaUEik+idO9/YjPtfj2qruF8tFBXS7XhtE4iIXBLxhmLjP3SXpLhVf21I9Lw==",
+      "license": "MIT"
+    },
+    "node_modules/@types/use-sync-external-store": {
+      "version": "0.0.6",
+      "resolved": "https://registry.npmjs.org/@types/use-sync-external-store/-/use-sync-external-store-0.0.6.tgz",
+      "integrity": "sha512-zFDAD+tlpf2r4asuHEj0XH6pY6i0g5NeAHPn+15wk3BV6JA69eERFXC1gyGThDkVa1zCyKr5jox1+2LbV/AMLg==",
+      "license": "MIT"
+    },
+    "node_modules/balanced-match": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/balanced-match/-/balanced-match-1.0.2.tgz",
+      "integrity": "sha512-3oSeUO0TMV67hN1AmbXsK4yaqU7tjiHlbxRDZOpH0KW9+CeX4bRAaX0Anxt0tx2MrpRpWwQaPwIlISEJhYU5Pw==",
+      "license": "MIT"
+    },
+    "node_modules/baseline-browser-mapping": {
+      "version": "2.8.32",
+      "resolved": "https://registry.npmjs.org/baseline-browser-mapping/-/baseline-browser-mapping-2.8.32.tgz",
+      "integrity": "sha512-OPz5aBThlyLFgxyhdwf/s2+8ab3OvT7AdTNvKHBwpXomIYeXqpUUuT8LrdtxZSsWJ4R4CU1un4XGh5Ez3nlTpw==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "bin": {
+        "baseline-browser-mapping": "dist/cli.js"
+      }
+    },
+    "node_modules/brace-expansion": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.1.tgz",
+      "integrity": "sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==",
+      "license": "MIT",
+      "dependencies": {
+        "balanced-match": "^1.0.0"
+      }
+    },
+    "node_modules/braces": {
+      "version": "3.0.3",
+      "resolved": "https://registry.npmjs.org/braces/-/braces-3.0.3.tgz",
+      "integrity": "sha512-yQbXgO/OSZVD2IsiLlro+7Hf6Q18EJrKSEsdoMzKePKXct3gvD8oLcOQdIzGupr5Fj+EDe8gO/lxc1BzfMpxvA==",
+      "license": "MIT",
+      "dependencies": {
+        "fill-range": "^7.1.1"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/clsx": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/clsx/-/clsx-2.1.1.tgz",
+      "integrity": "sha512-eYm0QWBtUrBWZWG0d386OGAw16Z995PiOVo2B7bjWSbHedGl5e0ZWaq65kOGgUSNesEIDkB9ISbTg/JK9dhCZA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/code-block-writer": {
+      "version": "13.0.3",
+      "resolved": "https://registry.npmjs.org/code-block-writer/-/code-block-writer-13.0.3.tgz",
+      "integrity": "sha512-Oofo0pq3IKnsFtuHqSF7TqBfr71aeyZDVJ0HpmqB7FBM2qEigL0iPONSCZSO9pE9dZTAxANe5XHG9Uy0YMv8cg==",
+      "license": "MIT"
+    },
+    "node_modules/d3-array": {
+      "version": "3.2.4",
+      "resolved": "https://registry.npmjs.org/d3-array/-/d3-array-3.2.4.tgz",
+      "integrity": "sha512-tdQAmyA18i4J7wprpYq8ClcxZy3SC31QMeByyCFyRt7BVHdREQZ5lpzoe5mFEYZUWe+oq8HBvk9JjpibyEV4Jg==",
+      "license": "ISC",
+      "dependencies": {
+        "internmap": "1 - 2"
+      },
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-color": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/d3-color/-/d3-color-3.1.0.tgz",
+      "integrity": "sha512-zg/chbXyeBtMQ1LbD/WSoW2DpC3I0mpmPdW+ynRTj/x2DAWYrIY7qeZIHidozwV24m4iavr15lNwIwLxRmOxhA==",
+      "license": "ISC",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-ease": {
+      "version": "3.0.1",
+      "resolved": "https://registry.npmjs.org/d3-ease/-/d3-ease-3.0.1.tgz",
+      "integrity": "sha512-wR/XK3D3XcLIZwpbvQwQ5fK+8Ykds1ip7A2Txe0yxncXSdq1L9skcG7blcedkOX+ZcgxGAmLX1FrRGbADwzi0w==",
+      "license": "BSD-3-Clause",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-format": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/d3-format/-/d3-format-3.1.0.tgz",
+      "integrity": "sha512-YyUI6AEuY/Wpt8KWLgZHsIU86atmikuoOmCfommt0LYHiQSPjvX2AcFc38PX0CBpr2RCyZhjex+NS/LPOv6YqA==",
+      "license": "ISC",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-interpolate": {
+      "version": "3.0.1",
+      "resolved": "https://registry.npmjs.org/d3-interpolate/-/d3-interpolate-3.0.1.tgz",
+      "integrity": "sha512-3bYs1rOD33uo8aqJfKP3JWPAibgw8Zm2+L9vBKEHJ2Rg+viTR7o5Mmv5mZcieN+FRYaAOWX5SJATX6k1PWz72g==",
+      "license": "ISC",
+      "dependencies": {
+        "d3-color": "1 - 3"
+      },
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-path": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/d3-path/-/d3-path-3.1.0.tgz",
+      "integrity": "sha512-p3KP5HCf/bvjBSSKuXid6Zqijx7wIfNW+J/maPs+iwR35at5JCbLUT0LzF1cnjbCHWhqzQTIN2Jpe8pRebIEFQ==",
+      "license": "ISC",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-scale": {
+      "version": "4.0.2",
+      "resolved": "https://registry.npmjs.org/d3-scale/-/d3-scale-4.0.2.tgz",
+      "integrity": "sha512-GZW464g1SH7ag3Y7hXjf8RoUuAFIqklOAq3MRl4OaWabTFJY9PN/E1YklhXLh+OQ3fM9yS2nOkCoS+WLZ6kvxQ==",
+      "license": "ISC",
+      "dependencies": {
+        "d3-array": "2.10.0 - 3",
+        "d3-format": "1 - 3",
+        "d3-interpolate": "1.2.0 - 3",
+        "d3-time": "2.1.1 - 3",
+        "d3-time-format": "2 - 4"
+      },
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-shape": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/d3-shape/-/d3-shape-3.2.0.tgz",
+      "integrity": "sha512-SaLBuwGm3MOViRq2ABk3eLoxwZELpH6zhl3FbAoJ7Vm1gofKx6El1Ib5z23NUEhF9AsGl7y+dzLe5Cw2AArGTA==",
+      "license": "ISC",
+      "dependencies": {
+        "d3-path": "^3.1.0"
+      },
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-time": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/d3-time/-/d3-time-3.1.0.tgz",
+      "integrity": "sha512-VqKjzBLejbSMT4IgbmVgDjpkYrNWUYJnbCGo874u7MMKIWsILRX+OpX/gTk8MqjpT1A/c6HY2dCA77ZN0lkQ2Q==",
+      "license": "ISC",
+      "dependencies": {
+        "d3-array": "2 - 3"
+      },
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-time-format": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/d3-time-format/-/d3-time-format-4.1.0.tgz",
+      "integrity": "sha512-dJxPBlzC7NugB2PDLwo9Q8JiTR3M3e4/XANkreKSUxF8vvXKqm1Yfq4Q5dl8budlunRVlUUaDUgFt7eA8D6NLg==",
+      "license": "ISC",
+      "dependencies": {
+        "d3-time": "1 - 3"
+      },
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/d3-timer": {
+      "version": "3.0.1",
+      "resolved": "https://registry.npmjs.org/d3-timer/-/d3-timer-3.0.1.tgz",
+      "integrity": "sha512-ndfJ/JxxMd3nw31uyKoY2naivF+r29V+Lc0svZxe1JvvIRmi8hUsrMvdOwgS1o6uBHmiz91geQ0ylPP0aj1VUA==",
+      "license": "ISC",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/decimal.js-light": {
+      "version": "2.5.1",
+      "resolved": "https://registry.npmjs.org/decimal.js-light/-/decimal.js-light-2.5.1.tgz",
+      "integrity": "sha512-qIMFpTMZmny+MMIitAB6D7iVPEorVw6YQRWkvarTkT4tBeSLLiHzcwj6q0MmYSFCiVpiqPJTJEYIrpcPzVEIvg==",
+      "license": "MIT"
+    },
+    "node_modules/es-toolkit": {
+      "version": "1.40.0",
+      "resolved": "https://registry.npmjs.org/es-toolkit/-/es-toolkit-1.40.0.tgz",
+      "integrity": "sha512-8o6w0KFmU0CiIl0/Q/BCEOabF2IJaELM1T2PWj6e8KqzHv1gdx+7JtFnDwOx1kJH/isJ5NwlDG1nCr1HrRF94Q==",
+      "license": "MIT",
+      "workspaces": [
+        "docs",
+        "benchmarks"
+      ]
+    },
+    "node_modules/eventemitter3": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/eventemitter3/-/eventemitter3-5.0.1.tgz",
+      "integrity": "sha512-GWkBvjiSZK87ELrYOSESUYeVIc9mvLLf/nXalMOS5dYrgZq9o5OVkbZAVM06CVxYsCwH9BDZFPlQTlPA1j4ahA==",
+      "license": "MIT"
+    },
+    "node_modules/fast-glob": {
+      "version": "3.3.3",
+      "resolved": "https://registry.npmjs.org/fast-glob/-/fast-glob-3.3.3.tgz",
+      "integrity": "sha512-7MptL8U0cqcFdzIzwOTHoilX9x5BrNqye7Z/LuC7kCMRio1EMSyqRK3BEAUD7sXRq4iT4AzTVuZdhgQ2TCvYLg==",
+      "license": "MIT",
+      "dependencies": {
+        "@nodelib/fs.stat": "^2.0.2",
+        "@nodelib/fs.walk": "^1.2.3",
+        "glob-parent": "^5.1.2",
+        "merge2": "^1.3.0",
+        "micromatch": "^4.0.8"
+      },
+      "engines": {
+        "node": ">=8.6.0"
+      }
+    },
+    "node_modules/fastq": {
+      "version": "1.18.0",
+      "resolved": "https://registry.npmjs.org/fastq/-/fastq-1.18.0.tgz",
+      "integrity": "sha512-QKHXPW0hD8g4UET03SdOdunzSouc9N4AuHdsX8XNcTsuz+yYFILVNIX4l9yHABMhiEI9Db0JTTIpu0wB+Y1QQw==",
+      "license": "ISC",
+      "dependencies": {
+        "reusify": "^1.0.4"
+      }
+    },
+    "node_modules/fill-range": {
+      "version": "7.1.1",
+      "resolved": "https://registry.npmjs.org/fill-range/-/fill-range-7.1.1.tgz",
+      "integrity": "sha512-YsGpe3WHLK8ZYi4tWDg2Jy3ebRz2rXowDxnld4bkQB00cc/1Zw9AWnC0i9ztDJitivtQvaI9KaLyKrc+hBW0yg==",
+      "license": "MIT",
+      "dependencies": {
+        "to-regex-range": "^5.0.1"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/glob-parent": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-5.1.2.tgz",
+      "integrity": "sha512-AOIgSQCepiJYwP3ARnGx+5VnTu2HBYdzbGP45eLw1vr3zB3vZLeyed1sC9hnbcOc9/SrMyM5RPQrkGz4aS9Zow==",
+      "license": "ISC",
+      "dependencies": {
+        "is-glob": "^4.0.1"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/immer": {
+      "version": "10.1.3",
+      "resolved": "https://registry.npmjs.org/immer/-/immer-10.1.3.tgz",
+      "integrity": "sha512-tmjF/k8QDKydUlm3mZU+tjM6zeq9/fFpPqH9SzWmBnVVKsPBg/V66qsMwb3/Bo90cgUN+ghdVBess+hPsxUyRw==",
+      "license": "MIT",
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/immer"
+      }
+    },
+    "node_modules/internmap": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/internmap/-/internmap-2.0.3.tgz",
+      "integrity": "sha512-5Hh7Y1wQbvY5ooGgPbDaL5iYLAPzMTUrjMulskHLH6wnv/A+1q5rgEaiuqEjB+oxGXIVZs1FF+R/KPN3ZSQYYg==",
+      "license": "ISC",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/is-extglob": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/is-extglob/-/is-extglob-2.1.1.tgz",
+      "integrity": "sha512-SbKbANkN603Vi4jEZv49LeVJMn4yGwsbzZworEoyEiutsN3nJYdbO36zfhGJ6QEDpOZIFkDtnq5JRxmvl3jsoQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/is-glob": {
+      "version": "4.0.3",
+      "resolved": "https://registry.npmjs.org/is-glob/-/is-glob-4.0.3.tgz",
+      "integrity": "sha512-xelSayHH36ZgE7ZWhli7pW34hNbNl8Ojv5KVmkJD4hBdD3th8Tfk9vYasLM+mXWOZhFkgZfxhLSnrwRr4elSSg==",
+      "license": "MIT",
+      "dependencies": {
+        "is-extglob": "^2.1.1"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/is-number": {
+      "version": "7.0.0",
+      "resolved": "https://registry.npmjs.org/is-number/-/is-number-7.0.0.tgz",
+      "integrity": "sha512-41Cifkg6e8TylSpdtTpeLVMqvSBEVzTttHvERD741+pnZ8ANv0004MRL43QKPDlK9cGvNp6NZWZUBlbGXYxxng==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.12.0"
+      }
+    },
+    "node_modules/merge2": {
+      "version": "1.4.1",
+      "resolved": "https://registry.npmjs.org/merge2/-/merge2-1.4.1.tgz",
+      "integrity": "sha512-8q7VEgMJW4J8tcfVPy8g09NcQwZdbwFEqhe/WZkoIzjn/3TGDwtOCYtXGxA3O8tPzpczCCDgv+P2P5y00ZJOOg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/micromatch": {
+      "version": "4.0.8",
+      "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz",
+      "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==",
+      "license": "MIT",
+      "dependencies": {
+        "braces": "^3.0.3",
+        "picomatch": "^2.3.1"
+      },
+      "engines": {
+        "node": ">=8.6"
+      }
+    },
+    "node_modules/minimatch": {
+      "version": "9.0.5",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.5.tgz",
+      "integrity": "sha512-G6T0ZX48xgozx7587koeX9Ys2NYy6Gmv//P89sEte9V9whIapMNF4idKxnW2QtCcLiTWlb/wfCabAtAFWhhBow==",
+      "license": "ISC",
+      "dependencies": {
+        "brace-expansion": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=16 || 14 >=14.17"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
+    "node_modules/mkdirp": {
+      "version": "3.0.1",
+      "resolved": "https://registry.npmjs.org/mkdirp/-/mkdirp-3.0.1.tgz",
+      "integrity": "sha512-+NsyUUAZDmo6YVHzL/stxSu3t9YS1iljliy3BSDrXJ/dkn1KYdmtZODGGjLcc9XLgVVpH4KshHB8XmZgMhaBXg==",
+      "license": "MIT",
+      "bin": {
+        "mkdirp": "dist/cjs/src/bin.js"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
+    "node_modules/path-browserify": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/path-browserify/-/path-browserify-1.0.1.tgz",
+      "integrity": "sha512-b7uo2UCUOYZcnF/3ID0lulOJi/bafxa1xPe7ZPsammBSpjSWQkjNxlt635YGS2MiR9GjvuXCtz2emr3jbsz98g==",
+      "license": "MIT"
+    },
+    "node_modules/picomatch": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.1.tgz",
+      "integrity": "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=8.6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/jonschlinkert"
+      }
+    },
+    "node_modules/queue-microtask": {
+      "version": "1.2.3",
+      "resolved": "https://registry.npmjs.org/queue-microtask/-/queue-microtask-1.2.3.tgz",
+      "integrity": "sha512-NuaNSa6flKT5JaSYQzJok04JzTL1CA6aGhv5rfLW3PgqA+M2ChpZQnAC8h8i4ZFkBS8X5RqkDBHA7r4hej3K9A==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/feross"
+        },
+        {
+          "type": "patreon",
+          "url": "https://www.patreon.com/feross"
+        },
+        {
+          "type": "consulting",
+          "url": "https://feross.org/support"
+        }
+      ],
+      "license": "MIT"
+    },
+    "node_modules/react": {
+      "version": "19.2.0",
+      "resolved": "https://registry.npmjs.org/react/-/react-19.2.0.tgz",
+      "integrity": "sha512-tmbWg6W31tQLeB5cdIBOicJDJRR2KzXsV7uSK9iNfLWQ5bIZfxuPEHp7M8wiHyHnn0DD1i7w3Zmin0FtkrwoCQ==",
+      "license": "MIT",
+      "peer": true,
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/react-dom": {
+      "version": "19.2.0",
+      "resolved": "https://registry.npmjs.org/react-dom/-/react-dom-19.2.0.tgz",
+      "integrity": "sha512-UlbRu4cAiGaIewkPyiRGJk0imDN2T3JjieT6spoL2UeSf5od4n5LB/mQ4ejmxhCFT1tYe8IvaFulzynWovsEFQ==",
+      "license": "MIT",
+      "peer": true,
+      "dependencies": {
+        "scheduler": "^0.27.0"
+      },
+      "peerDependencies": {
+        "react": "^19.2.0"
+      }
+    },
+    "node_modules/react-is": {
+      "version": "19.2.0",
+      "resolved": "https://registry.npmjs.org/react-is/-/react-is-19.2.0.tgz",
+      "integrity": "sha512-x3Ax3kNSMIIkyVYhWPyO09bu0uttcAIoecO/um/rKGQ4EltYWVYtyiGkS/3xMynrbVQdS69Jhlv8FXUEZehlzA==",
+      "license": "MIT",
+      "peer": true
+    },
+    "node_modules/react-redux": {
+      "version": "9.2.0",
+      "resolved": "https://registry.npmjs.org/react-redux/-/react-redux-9.2.0.tgz",
+      "integrity": "sha512-ROY9fvHhwOD9ySfrF0wmvu//bKCQ6AeZZq1nJNtbDC+kk5DuSuNX/n6YWYF/SYy7bSba4D4FSz8DJeKY/S/r+g==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/use-sync-external-store": "^0.0.6",
+        "use-sync-external-store": "^1.4.0"
+      },
+      "peerDependencies": {
+        "@types/react": "^18.2.25 || ^19",
+        "react": "^18.0 || ^19",
+        "redux": "^5.0.0"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        },
+        "redux": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/recharts": {
+      "version": "3.2.1",
+      "resolved": "https://registry.npmjs.org/recharts/-/recharts-3.2.1.tgz",
+      "integrity": "sha512-0JKwHRiFZdmLq/6nmilxEZl3pqb4T+aKkOkOi/ZISRZwfBhVMgInxzlYU9D4KnCH3KINScLy68m/OvMXoYGZUw==",
+      "license": "MIT",
+      "dependencies": {
+        "@reduxjs/toolkit": "1.x.x || 2.x.x",
+        "clsx": "^2.1.1",
+        "decimal.js-light": "^2.5.1",
+        "es-toolkit": "^1.39.3",
+        "eventemitter3": "^5.0.1",
+        "immer": "^10.1.1",
+        "react-redux": "8.x.x || 9.x.x",
+        "reselect": "5.1.1",
+        "tiny-invariant": "^1.3.3",
+        "use-sync-external-store": "^1.2.2",
+        "victory-vendor": "^37.0.2"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "peerDependencies": {
+        "react": "^16.8.0 || ^17.0.0 || ^18.0.0 || ^19.0.0",
+        "react-dom": "^16.0.0 || ^17.0.0 || ^18.0.0 || ^19.0.0",
+        "react-is": "^16.8.0 || ^17.0.0 || ^18.0.0 || ^19.0.0"
+      }
+    },
+    "node_modules/redux": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/redux/-/redux-5.0.1.tgz",
+      "integrity": "sha512-M9/ELqF6fy8FwmkpnF0S3YKOqMyoWJ4+CS5Efg2ct3oY9daQvd/Pc71FpGZsVsbl3Cpb+IIcjBDUnnyBdQbq4w==",
+      "license": "MIT"
+    },
+    "node_modules/redux-thunk": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/redux-thunk/-/redux-thunk-3.1.0.tgz",
+      "integrity": "sha512-NW2r5T6ksUKXCabzhL9z+h206HQw/NJkcLm1GPImRQ8IzfXwRGqjVhKJGauHirT0DAuyy6hjdnMZaRoAcy0Klw==",
+      "license": "MIT",
+      "peerDependencies": {
+        "redux": "^5.0.0"
+      }
+    },
+    "node_modules/reselect": {
+      "version": "5.1.1",
+      "resolved": "https://registry.npmjs.org/reselect/-/reselect-5.1.1.tgz",
+      "integrity": "sha512-K/BG6eIky/SBpzfHZv/dd+9JBFiS4SWV7FIujVyJRux6e45+73RaUHXLmIR1f7WOMaQ0U1km6qwklRQxpJJY0w==",
+      "license": "MIT"
+    },
+    "node_modules/reusify": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/reusify/-/reusify-1.0.4.tgz",
+      "integrity": "sha512-U9nH88a3fc/ekCF1l0/UP1IosiuIjyTh7hBvXVMHYgVcfGvt897Xguj2UOLDeI5BG2m7/uwyaLVT6fbtCwTyzw==",
+      "license": "MIT",
+      "engines": {
+        "iojs": ">=1.0.0",
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/run-parallel": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/run-parallel/-/run-parallel-1.2.0.tgz",
+      "integrity": "sha512-5l4VyZR86LZ/lDxZTR6jqL8AFE2S0IFLMP26AbjsLVADxHdhB/c0GUsH+y39UfCi3dzz8OlQuPmnaJOMoDHQBA==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/feross"
+        },
+        {
+          "type": "patreon",
+          "url": "https://www.patreon.com/feross"
+        },
+        {
+          "type": "consulting",
+          "url": "https://feross.org/support"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "queue-microtask": "^1.2.2"
+      }
+    },
+    "node_modules/scheduler": {
+      "version": "0.27.0",
+      "resolved": "https://registry.npmjs.org/scheduler/-/scheduler-0.27.0.tgz",
+      "integrity": "sha512-eNv+WrVbKu1f3vbYJT/xtiF5syA5HPIMtf9IgY/nKg0sWqzAUEvqY/xm7OcZc/qafLx/iO9FgOmeSAp4v5ti/Q==",
+      "license": "MIT",
+      "peer": true
+    },
+    "node_modules/tiny-invariant": {
+      "version": "1.3.3",
+      "resolved": "https://registry.npmjs.org/tiny-invariant/-/tiny-invariant-1.3.3.tgz",
+      "integrity": "sha512-+FbBPE1o9QAYvviau/qC5SE3caw21q3xkvWKBtja5vgqOWIHHJ3ioaq1VPfn/Szqctz2bU/oYeKd9/z5BL+PVg==",
+      "license": "MIT"
+    },
+    "node_modules/to-regex-range": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/to-regex-range/-/to-regex-range-5.0.1.tgz",
+      "integrity": "sha512-65P7iz6X5yEr1cwcgvQxbbIw7Uk3gOy5dIdtZ4rDveLqhrdJP+Li/Hx6tyK0NEb+2GCyneCMJiGqrADCSNk8sQ==",
+      "license": "MIT",
+      "dependencies": {
+        "is-number": "^7.0.0"
+      },
+      "engines": {
+        "node": ">=8.0"
+      }
+    },
+    "node_modules/ts-morph": {
+      "version": "23.0.0",
+      "resolved": "https://registry.npmjs.org/ts-morph/-/ts-morph-23.0.0.tgz",
+      "integrity": "sha512-FcvFx7a9E8TUe6T3ShihXJLiJOiqyafzFKUO4aqIHDUCIvADdGNShcbc2W5PMr3LerXRv7mafvFZ9lRENxJmug==",
+      "license": "MIT",
+      "dependencies": {
+        "@ts-morph/common": "~0.24.0",
+        "code-block-writer": "^13.0.1"
+      }
+    },
+    "node_modules/typescript": {
+      "version": "5.7.3",
+      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.7.3.tgz",
+      "integrity": "sha512-84MVSjMEHP+FQRPy3pX9sTVV/INIex71s9TL2Gm5FG/WG1SqXeKyZ0k7/blY/4FdOzI12CBy1vGc4og/eus0fw==",
+      "license": "Apache-2.0",
+      "bin": {
+        "tsc": "bin/tsc",
+        "tsserver": "bin/tsserver"
+      },
+      "engines": {
+        "node": ">=14.17"
+      }
+    },
+    "node_modules/use-sync-external-store": {
+      "version": "1.6.0",
+      "resolved": "https://registry.npmjs.org/use-sync-external-store/-/use-sync-external-store-1.6.0.tgz",
+      "integrity": "sha512-Pp6GSwGP/NrPIrxVFAIkOQeyw8lFenOHijQWkUTrDvrF4ALqylP2C/KCkeS9dpUM3KvYRQhna5vt7IL95+ZQ9w==",
+      "license": "MIT",
+      "peerDependencies": {
+        "react": "^16.8.0 || ^17.0.0 || ^18.0.0 || ^19.0.0"
+      }
+    },
+    "node_modules/victory-vendor": {
+      "version": "37.3.6",
+      "resolved": "https://registry.npmjs.org/victory-vendor/-/victory-vendor-37.3.6.tgz",
+      "integrity": "sha512-SbPDPdDBYp+5MJHhBCAyI7wKM3d5ivekigc2Dk2s7pgbZ9wIgIBYGVw4zGHBml/qTFbexrofXW6Gu4noGxrOwQ==",
+      "license": "MIT AND ISC",
+      "dependencies": {
+        "@types/d3-array": "^3.0.3",
+        "@types/d3-ease": "^3.0.0",
+        "@types/d3-interpolate": "^3.0.1",
+        "@types/d3-scale": "^4.0.2",
+        "@types/d3-shape": "^3.1.0",
+        "@types/d3-time": "^3.0.0",
+        "@types/d3-timer": "^3.0.0",
+        "d3-array": "^3.1.6",
+        "d3-ease": "^3.0.1",
+        "d3-interpolate": "^3.0.1",
+        "d3-scale": "^4.0.2",
+        "d3-shape": "^3.1.0",
+        "d3-time": "^3.0.0",
+        "d3-timer": "^3.0.1"
+      }
+    }
+  }
+}