Merge branch 'bruno' of https://git.vontor.cz/Brunobrno/vontor-cz into bruno

.github/copilot-instructions.md

@@ -0,0 +1,119 @@
+# Copilot Instructions for Vontor CZ
+
+## Overview
+This monorepo contains a Django backend and a Vite/React frontend, orchestrated via Docker Compose. The project is designed for a Czech e-marketplace, with custom payment integrations and real-time features.
+
+## Architecture
+- **backend/**: Django project (`vontor_cz`), custom `account` app, and third-party payment integrations (`thirdparty/`).
+  - Uses Django REST Framework, Channels (ASGI), Celery, and S3/static/media via `django-storages`.
+  - Custom user model: `account.CustomUser`.
+  - API docs: DRF Spectacular (`/api/schema/`).
+- **frontend/**: Vite + React + TypeScript app.
+  - Organized by `src/api/`, `components/`, `features/`, `layouts/`, `pages/`, `routes/`.
+  - Uses React Router layouts and nested routes (see `src/layouts/`, `src/routes/`).
+  - Uses Tailwind CSS for styling (configured via `src/index.css` with `@import "tailwindcss";`). Prefer utility classes over custom CSS.
+
+## Developer Workflows
+- **Backend**
+  - Local dev: `python manage.py runserver` (or use Docker Compose)
+  - Migrations: `python manage.py makemigrations && python manage.py migrate`
+  - Celery: `celery -A vontor_cz worker -l info`
+  - Channels: Daphne/ASGI (see Docker Compose command)
+  - Env config: `.env` files in `backend/` (see `.gitignore` for secrets)
+- **Frontend**
+  - Install: `npm install`
+  - Dev server: `npm run dev`
+  - Build: `npm run build`
+  - Preview: `npm run preview`
+  - Static assets: `src/assets/` (import in JS/CSS), `public/` (referenced in HTML)
+
+## Conventions & Patterns
+- **Backend**
+  - Use environment variables for secrets and config (see `settings.py`).
+  - Static/media files: S3 in production, local in dev (see `settings.py`).
+  - API versioning and docs: DRF Spectacular config in `settings.py`.
+  - Custom permissions, filters, and serializers in each app.
+- **Frontend**
+  - Use React Router layouts for shared UI (see `src/layouts/`, `LAYOUTS.md`).
+  - API calls and JWT handling in `src/api/`.
+  - Route definitions and guards in `src/routes/` (`ROUTES.md`).
+  - Use TypeScript strict mode (see `tsconfig.*.json`).
+  - Linting: ESLint config in `eslint.config.js`.
+  - Styling: Tailwind CSS is present. Prefer utility classes; keep minimal component-scoped CSS. Global/base styles live in `src/index.css`. Avoid inline styles and CSS-in-JS unless necessary.
+
+### Frontend API Client (required)
+All frontend API calls must use the shared client at frontend/src/api/Client.ts.
+
+- Client.public: no cookies, no Authorization header (for public Django endpoints).
+- Client.auth: sends cookies and includes Bearer token; auto-refreshes on 401 (retries up to 2x).
+- Centralized error handling: subscribe via Client.onError to show toasts/snackbars.
+- Tokens are stored in cookies by Client.setTokens and cleared by Client.clearTokens.
+
+Example usage (TypeScript)
+```ts
+import Client from "@/api/Client";
+
+// Public request (no credentials)
+async function listPublicItems() {
+  const res = await Client.public.get("/api/public/items/");
+  return res.data;
+}
+
+// Login (obtain tokens and persist to cookies)
+async function login(username: string, password: string) {
+  // Default SimpleJWT endpoint (adjust if your backend differs)
+  const res = await Client.public.post("/api/token/", { username, password });
+  const { access, refresh } = res.data;
+  Client.setTokens(access, refresh);
+}
+
+// Authenticated requests (auto Bearer + refresh on 401)
+async function fetchProfile() {
+  const res = await Client.auth.get("/api/users/me/");
+  return res.data;
+}
+
+function logout() {
+  Client.clearTokens();
+  window.location.assign("/login");
+}
+
+// Global error toasts
+import { useEffect } from "react";
+function useApiErrors(showToast: (msg: string) => void) {
+  useEffect(() => {
+    const unsubscribe = Client.onError((e) => {
+      const { message, status } = e.detail;
+      showToast(status ? `${status}: ${message}` : message);
+    });
+    return unsubscribe;
+  }, [showToast]);
+}
+```
+
+Vite env used by the client:
+- VITE_API_BASE_URL (default: http://localhost:8000)
+- VITE_API_REFRESH_URL (default: /api/token/refresh/)
+- VITE_LOGIN_PATH (default: /login)
+
+Notes
+- Public client never sends cookies or Authorization.
+- Ensure Django CORS settings allow your frontend origin. See backend/vontor_cz/settings.py.
+- Use React Router layouts and guards as documented in frontend/src/routes/ROUTES.md and frontend/src/layouts/LAYOUTS.md.
+
+## Integration Points
+- **Payments**: `thirdparty/` contains custom integrations for Stripe, GoPay, Trading212.
+- **Real-time**: Django Channels (ASGI, Redis) for websockets.
+- **Task queue**: Celery + Redis for async/background jobs.
+- **API**: REST endpoints, JWT auth, API key support.
+
+## References
+- [frontend/REACT.md](../frontend/REACT.md): Frontend structure, workflows, and conventions.
+- [frontend/src/layouts/LAYOUTS.md](../frontend/src/layouts/LAYOUTS.md): Layout/component patterns.
+- [frontend/src/routes/ROUTES.md](../frontend/src/routes/ROUTES.md): Routing conventions.
+- [backend/vontor_cz/settings.py](../backend/vontor_cz/settings.py): All backend config, env, and integration details.
+- [docker-compose.yml](../docker-compose.yml): Service orchestration and dev workflow.
+
+---
+
+**When in doubt, check the referenced markdown files and `settings.py` for project-specific logic and patterns.**

.vscode/launch.json

@@ -0,0 +1,15 @@
+{
+    // Use IntelliSense to learn about possible attributes.
+    // Hover to view descriptions of existing attributes.
+    // For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
+    "version": "0.2.0",
+    "configurations": [
+        {
+            "type": "chrome",
+            "request": "launch",
+            "name": "Launch Chrome against localhost",
+            "url": "http://localhost:8080",
+            "webRoot": "${workspaceFolder}"
+        }
+    ]
+}

absolete_frontend/eslint.config.js

@@ -0,0 +1,23 @@
+import js from '@eslint/js'
+import globals from 'globals'
+import reactHooks from 'eslint-plugin-react-hooks'
+import reactRefresh from 'eslint-plugin-react-refresh'
+import tseslint from 'typescript-eslint'
+import { globalIgnores } from 'eslint/config'
+
+export default tseslint.config([
+  globalIgnores(['dist']),
+  {
+    files: ['**/*.{ts,tsx}'],
+    extends: [
+      js.configs.recommended,
+      tseslint.configs.recommended,
+      reactHooks.configs['recommended-latest'],
+      reactRefresh.configs.vite,
+    ],
+    languageOptions: {
+      ecmaVersion: 2020,
+      globals: globals.browser,
+    },
+  },
+])

absolete_frontend/index.html

@@ -0,0 +1,14 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <link rel="stylesheet" href="reset.css">
+    <meta charset="UTF-8" />
+    <link rel="icon" type="image/svg+xml" href="/vite.svg" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Vite + React + TS</title>
+  </head>
+  <body>
+    <div id="root"></div>
+    <script type="module" src="/src/main.tsx"></script>
+  </body>
+</html>

absolete_frontend/package.json

@@ -0,0 +1,36 @@
+{
+  "name": "frontend",
+  "private": true,
+  "version": "0.0.0",
+  "type": "module",
+  "scripts": {
+    "dev": "vite",
+    "build": "tsc -b && vite build",
+    "lint": "eslint .",
+    "preview": "vite preview"
+  },
+  "dependencies": {
+    "@tailwindcss/vite": "^4.1.16",
+    "@types/react-router": "^5.1.20",
+    "axios": "^1.13.0",
+    "react": "^19.1.1",
+    "react-dom": "^19.1.1",
+    "react-icons": "^5.5.0",
+    "react-router-dom": "^7.8.1",
+    "tailwindcss": "^4.1.16"
+  },
+  "devDependencies": {
+    "@eslint/js": "^9.33.0",
+    "@types/axios": "^0.9.36",
+    "@types/react": "^19.1.10",
+    "@types/react-dom": "^19.1.7",
+    "@vitejs/plugin-react": "^5.0.0",
+    "eslint": "^9.33.0",
+    "eslint-plugin-react-hooks": "^5.2.0",
+    "eslint-plugin-react-refresh": "^0.4.20",
+    "globals": "^16.3.0",
+    "typescript": "~5.8.3",
+    "typescript-eslint": "^8.39.1",
+    "vite": "^7.1.2"
+  }
+}

absolete_frontend/src/App.tsx

@@ -0,0 +1,33 @@
+import { BrowserRouter as Router, Routes, Route, Link, Outlet } from "react-router-dom"
+import Home from "./pages/home/home";
+import HomeLayout from "./layouts/HomeLayout";
+import Downloader from "./pages/downloader/Downloader";
+
+import PrivateRoute from "./routes/PrivateRoute";
+
+import { UserContextProvider } from "./context/UserContext";
+
+
+export default function App() {
+  return (
+    <Router>
+      <UserContextProvider>
+      
+        {/* Layout route */}
+        <Route path="/" element={<HomeLayout />}>
+          <Route index element={<Home />} />
+          <Route path="downloader" element={<Downloader />} />
+        </Route>
+
+        <Route element={<PrivateRoute />}>
+          {/* Protected routes go here */}
+          <Route path="/" element={<HomeLayout />} >
+            <Route path="protected-downloader" element={<Downloader />} />
+          </Route>
+
+        </Route>
+
+      </UserContextProvider>
+    </Router>
+  )
+}

absolete_frontend/src/api/Client.ts

@@ -0,0 +1,275 @@
+import axios from "axios";
+
+// --- ENV CONFIG ---
+const API_BASE_URL =
+  import.meta.env.VITE_API_BASE_URL || "http://localhost:8000";
+
+const LOGIN_PATH = import.meta.env.VITE_LOGIN_PATH || "/login";
+
+
+// --- ERROR EVENT BUS ---
+const ERROR_EVENT = "api:error";
+type ApiErrorDetail = {
+  message: string;
+  status?: number;
+  url?: string;
+  data?: unknown;
+};
+
+// Use interface instead of arrow function types for readability
+interface ApiErrorHandler {
+  (e: CustomEvent<ApiErrorDetail>): void;
+}
+
+function notifyError(detail: ApiErrorDetail) {
+  window.dispatchEvent(new CustomEvent<ApiErrorDetail>(ERROR_EVENT, { detail }));
+  // eslint-disable-next-line no-console
+  console.error("[API ERROR]", detail);
+}
+function onError(handler: ApiErrorHandler) {
+  const wrapped = handler as EventListener;
+  window.addEventListener(ERROR_EVENT, wrapped as EventListener);
+
+  return () => window.removeEventListener(ERROR_EVENT, wrapped);
+}
+
+// --- AXIOS INSTANCES ---
+// Always send cookies. Django will set auth cookies; browser will include them automatically.
+function createAxios(baseURL: string): any {
+  const instance = axios.create({
+    baseURL,
+    withCredentials: true, // cookies
+    headers: {
+      "Content-Type": "application/json",
+    },
+    timeout: 20000,
+  });
+  return instance;
+}
+
+// Use a single behavior for both: cookies are always sent
+const apiPublic = createAxios(API_BASE_URL);
+const apiAuth = createAxios(API_BASE_URL);
+
+
+// --- REQUEST INTERCEPTOR (PUBLIC) ---
+// Ensure no Authorization header is ever sent by the public client
+apiPublic.interceptors.request.use(function (config: any) {
+  if (config?.headers && (config.headers as any).Authorization) {
+    delete (config.headers as any).Authorization;
+  }
+
+  return config;
+});
+
+// --- REQUEST INTERCEPTOR (AUTH) ---
+// Do not attach Authorization header; rely on cookies set by Django.
+apiAuth.interceptors.request.use(function (config: any) {
+  (config as any)._retryCount = (config as any)._retryCount || 0;
+
+  return config;
+});
+
+// --- RESPONSE INTERCEPTOR (AUTH) ---
+// Simplified: on 401, redirect to login. Server manages refresh via cookies.
+apiAuth.interceptors.response.use(
+  function (response: any) {
+    return response;
+  },
+  async function (error: any) {
+    if (!error.response) {
+      alert("Backend connection is unavailable. Please check your network.");
+
+      notifyError({
+        message: "Network error or backend unavailable",
+        url: error.config?.url,
+      });
+
+      return Promise.reject(error);
+    }
+
+    const status = error.response.status;
+    if (status === 401) {
+      ClearTokens();
+      window.location.assign(LOGIN_PATH);
+      return Promise.reject(error);
+    }
+
+    notifyError({
+      message:
+        (error.response.data as any)?.detail ||
+        (error.response.data as any)?.message ||
+        `Request failed with status ${status}`,
+      status,
+      url: error.config?.url,
+      data: error.response.data,
+    });
+    return Promise.reject(error);
+  }
+);
+
+// --- PUBLIC CLIENT: still emits errors and alerts on network failure ---
+apiPublic.interceptors.response.use(
+  function (response: any) {
+    return response;
+  },
+  async function (error: any) {
+    if (!error.response) {
+      alert("Backend connection is unavailable. Please check your network.");
+      notifyError({
+        message: "Network error or backend unavailable",
+        url: error.config?.url,
+      });
+      return Promise.reject(error);
+    }
+    notifyError({
+      message:
+        (error.response.data as any)?.detail ||
+        (error.response.data as any)?.message ||
+        `Request failed with status ${error.response.status}`,
+      status: error.response.status,
+      url: error.config?.url,
+      data: error.response.data,
+    });
+    return Promise.reject(error);
+  }
+);
+
+
+
+
+function Logout() {
+  try {
+    const LogOutResponse = apiAuth.post("/api/logout/");
+
+    if (LogOutResponse.body.detail != "Logout successful") {
+      throw new Error("Logout failed");
+    }
+
+    ClearTokens();
+
+  } catch (error) {
+    console.error("Error during logout:", error);
+  }
+}
+
+function ClearTokens(){
+  document.cookie = "access_token=; Max-Age=0; path=/";
+  document.cookie = "refresh_token=; Max-Age=0; path=/";
+}
+
+
+// --- EXPORT DEFAULT API WRAPPER ---
+const Client = {
+  // Axios instances
+  auth: apiAuth,
+  public: apiPublic,
+
+  Logout,
+
+  // Error subscription
+  onError,
+};
+
+export default Client;
+
+/**
+USAGE EXAMPLES (TypeScript/React)
+
+Import the client
+--------------------------------------------------
+import Client from "@/api/Client";
+
+
+Login: obtain tokens and persist to cookies
+--------------------------------------------------
+async function login(username: string, password: string) {
+  // SimpleJWT default login endpoint (adjust if your backend differs)
+  // Example backend endpoint: POST /api/token/ -> { access, refresh }
+  const res = await Client.public.post("/api/token/", { username, password });
+  const { access, refresh } = res.data;
+  Client.setTokens(access, refresh);
+  // After this, Client.auth will automatically attach Authorization header
+  // and refresh when receiving a 401 (up to 2 retries).
+}
+
+
+Public request (no cookies, no Authorization)
+--------------------------------------------------
+// The public client does NOT send cookies or Authorization.
+async function listPublicItems() {
+  const res = await Client.public.get("/api/public/items/");
+  return res.data;
+}
+
+
+Authenticated requests (auto Bearer header + refresh on 401)
+--------------------------------------------------
+async function fetchProfile() {
+  const res = await Client.auth.get("/api/users/me/");
+  return res.data;
+}
+
+async function updateProfile(payload: { first_name?: string; last_name?: string }) {
+  const res = await Client.auth.patch("/api/users/me/", payload);
+  return res.data;
+}
+
+
+Global error handling (UI notifications)
+--------------------------------------------------
+import { useEffect } from "react";
+
+function useApiErrors(showToast: (msg: string) => void) {
+  useEffect(function () {
+    const unsubscribe = Client.onError(function (e) {
+      const { message, status } = e.detail;
+      showToast(status ? String(status) + ": " + message : message);
+    });
+    return unsubscribe;
+  }, [showToast]);
+}
+
+// Note: Network connectivity issues trigger an alert and also dispatch api:error.
+// All errors are logged to console for developers.
+
+
+Logout
+--------------------------------------------------
+function logout() {
+  Client.clearTokens();
+  window.location.assign("/login");
+}
+
+
+Route protection (PrivateRoute)
+--------------------------------------------------
+// If you created src/routes/PrivateRoute.tsx, wrap your protected routes with it.
+// PrivateRoute checks for "access_token" cookie presence and redirects to /login if missing.
+
+// Example:
+// <Routes>
+//   <Route element={<PrivateRoute />} >
+//     <Route element={<MainLayout />}>
+//       <Route path="/" element={<Dashboard />} />
+//       <Route path="/profile" element={<Profile />} />
+//     </Route>
+//   </Route>
+//   <Route path="/login" element={<Login />} />
+// </Routes>
+
+
+Refresh and retry flow (what happens on 401)
+--------------------------------------------------
+// 1) Client.auth request receives 401 from backend
+// 2) Client tries to refresh access token using refresh_token cookie
+// 3) If refresh succeeds, original request is retried (max 2 times)
+// 4) If still 401 (or no refresh token), tokens are cleared and user is redirected to /login
+
+
+Environment variables (optional overrides)
+--------------------------------------------------
+// VITE_API_BASE_URL      default: "http://localhost:8000"
+// VITE_API_REFRESH_URL   default: "/api/token/refresh/"
+// VITE_LOGIN_PATH        default: "/login"
+*/

absolete_frontend/src/api/apps/Downloader.ts

@@ -0,0 +1,114 @@
+import Client from "../Client";
+
+// Available output containers (must match backend)
+export const FORMAT_EXTS = ["mp4", "mkv", "webm", "flv", "mov", "avi", "ogg"] as const;
+export type FormatExt = (typeof FORMAT_EXTS)[number];
+
+export type InfoResponse = {
+  title: string | null;
+  duration: number | null;
+  thumbnail: string | null;
+  video_resolutions: string[];   // e.g. ["2160p", "1440p", "1080p", ...]
+  audio_resolutions: string[];   // e.g. ["320kbps", "160kbps", ...]
+};
+
+// GET info for a URL
+export async function fetchInfo(url: string): Promise<InfoResponse> {
+  const res = await Client.public.get("/api/downloader/download/", {
+    params: { url },
+  });
+  return res.data as InfoResponse;
+}
+
+// POST to stream binary immediately; returns { blob, filename }
+export async function downloadImmediate(args: {
+  url: string;
+  ext: FormatExt;
+  videoResolution?: string | number; // "1080p" or 1080
+  audioResolution?: string | number; // "160kbps" or 160
+}): Promise<{ blob: Blob; filename: string }> {
+  const video_quality = toHeight(args.videoResolution);
+  const audio_quality = toKbps(args.audioResolution);
+
+  if (video_quality == null || audio_quality == null) {
+    throw new Error("Please select both video and audio quality.");
+  }
+
+  const res = await Client.public.post(
+    "/api/downloader/download/",
+    {
+      url: args.url,
+      ext: args.ext,
+      video_quality,
+      audio_quality,
+    },
+    { responseType: "blob" }
+  );
+
+  const cd = res.headers?.["content-disposition"] as string | undefined;
+  const xfn = res.headers?.["x-filename"] as string | undefined;
+  const filename =
+    parseContentDispositionFilename(cd) ||
+    (xfn && xfn.trim()) ||
+    inferFilenameFromUrl(args.url, res.headers?.["content-type"] as string | undefined) ||
+    `download.${args.ext}`;
+
+  return { blob: res.data as Blob, filename };
+}
+
+// Helpers
+export function parseContentDispositionFilename(cd?: string): string | null {
+  if (!cd) return null;
+  const utf8Match = cd.match(/filename\*\s*=\s*UTF-8''([^;]+)/i);
+  if (utf8Match?.[1]) return decodeURIComponent(utf8Match[1]);
+  const plainMatch = cd.match(/filename\s*=\s*"([^"]+)"/i) || cd.match(/filename\s*=\s*([^;]+)/i);
+  return plainMatch?.[1]?.trim() || null;
+}
+
+function inferFilenameFromUrl(url: string, contentType?: string): string {
+  try {
+    const u = new URL(url);
+    const last = u.pathname.split("/").filter(Boolean).pop();
+    if (last) return last;
+  } catch {
+    // ignore
+  }
+  if (contentType) {
+    const ext = contentTypeToExt(contentType);
+    return `download${ext ? `.${ext}` : ""}`;
+  }
+  return "download.bin";
+}
+
+function contentTypeToExt(ct?: string): string | null {
+  if (!ct) return null;
+  const map: Record<string, string> = {
+    "video/mp4": "mp4",
+    "video/x-matroska": "mkv",
+    "video/webm": "webm",
+    "video/x-flv": "flv",
+    "video/quicktime": "mov",
+    "video/x-msvideo": "avi",
+    "video/ogg": "ogg",
+    "application/octet-stream": "bin",
+  };
+  return map[ct] || null;
+}
+
+function toHeight(v?: string | number): number | undefined {
+  if (typeof v === "number") return v || undefined;
+  if (!v) return undefined;
+  const m = /^(\d{2,4})p$/i.exec(v.trim());
+  if (m) return parseInt(m[1], 10);
+  const n = Number(v);
+  return Number.isFinite(n) ? (n as number) : undefined;
+}
+
+function toKbps(v?: string | number): number | undefined {
+  if (typeof v === "number") return v || undefined;
+  if (!v) return undefined;
+  const m = /^(\d{2,4})\s*kbps$/i.exec(v.trim());
+  if (m) return parseInt(m[1], 10);
+  const n = Number(v);
+  return Number.isFinite(n) ? (n as number) : undefined;
+}

absolete_frontend/src/api/get_chocies.ts

@@ -1,4 +1,4 @@
-import { apiRequest } from "./axios";
+import Client from "./Client";
 
 /**
  * Loads enum values from an OpenAPI schema for a given path, method, and field (e.g., category).
@@ -16,7 +16,7 @@ export async function fetchEnumFromSchemaJson(
   schemaUrl: string = "/schema/?format=json"
 ): Promise<Array<{ value: string; label: string }>> {
   try {
-    const schema = await apiRequest("get", schemaUrl);
+    const schema = await Client.public.get(schemaUrl);
 
     const methodDef = schema.paths?.[path]?.[method];
     if (!methodDef) {

absolete_frontend/src/api/models/User.ts

@@ -0,0 +1,82 @@
+// frontend/src/api/model/user.js
+// User API model for searching users by username
+// Structure matches other model files (see order.js for reference)
+
+import Client from '../Client';
+
+const API_BASE_URL = "/account/users";
+
+const userAPI = {
+  /**
+   * Get current authenticated user
+   * @returns {Promise<User>}
+   */
+  async getCurrentUser() {
+    const response = await Client.auth.get(`${API_BASE_URL}/me/`);
+    return response.data;
+  },
+
+  /**
+   * Get all users
+   * @returns {Promise<Array<User>>}
+   */
+  async getUsers(params: Object) {
+    const response = await Client.auth.get(`${API_BASE_URL}/`, { params });
+    return response.data;
+  },
+
+  /**
+   * Get a single user by ID
+   * @param {number|string} id
+   * @returns {Promise<User>}
+   */
+  async getUser(id: number) {
+    const response = await Client.auth.get(`${API_BASE_URL}/${id}/`);
+    return response.data;
+  },
+
+  /**
+   * Update a user by ID
+   * @param {number|string} id
+   * @param {Object} data
+   * @returns {Promise<User>}
+   */
+  async updateUser(id: number, data: Object) {
+    const response = await Client.auth.patch(`${API_BASE_URL}/${id}/`, data);
+    return response.data;
+  },
+
+  /**
+   * Delete a user by ID
+   * @param {number|string} id
+   * @returns {Promise<void>}
+   */
+  async deleteUser(id: number) {
+    const response = await Client.auth.delete(`${API_BASE_URL}/${id}/`);
+    return response.data;
+  },
+
+  /**
+   * Create a new user
+   * @param {Object} data
+   * @returns {Promise<User>}
+   */
+  async createUser(data: Object) {
+    const response = await Client.auth.post(`${API_BASE_URL}/`, data);
+    return response.data;
+  },
+
+  /**
+   * Search users by username (partial match)
+   * @param {Object} params - { username: string }
+   * @returns {Promise<Array<User>>}
+   */
+  async searchUsers(params: { username: string }) {
+    // Adjust the endpoint as needed for your backend
+    const response = await Client.auth.get(`${API_BASE_URL}/`, { params });
+    console.log("User search response:", response.data);
+    return response.data;
+  },
+};
+
+export default userAPI;

absolete_frontend/src/api/websockets/WebSocketClient.ts

@@ -0,0 +1,19 @@
+const wsUri = "ws://127.0.0.1/";
+
+const websocket = new WebSocket(wsUri);
+
+websocket.onopen = function (event) {
+  console.log("WebSocket is open now.", event);
+};
+
+websocket.onmessage = function (event) {
+  console.log("WebSocket message received:", event.data);
+};
+
+websocket.onclose = function (event) {
+  console.log("WebSocket is closed now.", event.reason);
+};
+
+websocket.onerror = function (event) {
+  console.error("WebSocket error observed:", event);
+};

absolete_frontend/src/components/Footer/footer.module.css

@@ -0,0 +1,40 @@
+footer a{
+    color: var(--c-text);
+    text-decoration: none;
+}
+footer a i{
+    color: white;
+    text-decoration: none;
+}
+footer a:hover i{
+    color: var(--c-text);
+    text-decoration: none;
+}
+footer{
+    font-family: "Roboto Mono", monospace;
+
+    background-color: var(--c-boxes);
+
+    margin-top: 2em;
+    display: flex;
+
+    color: white;
+    align-items: center;
+    justify-content: space-evenly;
+}
+footer address{
+    padding: 1em;
+    font-style: normal;
+}
+footer .contacts{
+    font-size: 2em;
+
+}
+
+@media only screen and (max-width: 990px){
+    footer{
+        flex-direction: column;
+        padding-bottom: 1em;
+        padding-top: 1em;
+    }
+  }

absolete_frontend/src/components/Footer/footer.tsx

@@ -0,0 +1,76 @@
+import styles from "./footer.module.css"
+
+export default function Footer() {
+  return (
+    <footer id="contacts">
+      <div>
+        <h1>vontor.cz</h1>
+      </div>
+
+      <address>
+        Written by <b>David Bruno Vontor | © 2025</b>
+        <br />
+        <p>
+          Tel.:{" "}
+          <a href="tel:+420605512624">
+            <u>+420 605 512 624</u>
+          </a>
+        </p>
+        <p>
+          E-mail:{" "}
+          <a href="mailto:brunovontor@gmail.com">
+            <u>brunovontor@gmail.com</u>
+          </a>
+        </p>
+        <p>
+          IČO:{" "}
+          <a
+            href="https://www.rzp.cz/verejne-udaje/cs/udaje/vyber-subjektu;ico=21613109;"
+            target="_blank"
+            rel="noopener noreferrer"
+          >
+            <u>21613109</u>
+          </a>
+        </p>
+      </address>
+
+      <div className="contacts">
+        <a
+          href="https://github.com/Brunobrno"
+          target="_blank"
+          rel="noopener noreferrer"
+        >
+          <i className="fa fa-github"></i>
+        </a>
+        <a
+          href="https://www.instagram.com/brunovontor/"
+          target="_blank"
+          rel="noopener noreferrer"
+        >
+          <i className="fa fa-instagram"></i>
+        </a>
+        <a
+          href="https://twitter.com/BVontor"
+          target="_blank"
+          rel="noopener noreferrer"
+        >
+          <i className="fa-brands fa-x-twitter"></i>
+        </a>
+        <a
+          href="https://steamcommunity.com/id/Brunobrno/"
+          target="_blank"
+          rel="noopener noreferrer"
+        >
+          <i className="fa-brands fa-steam"></i>
+        </a>
+        <a
+          href="https://www.youtube.com/@brunovontor"
+          target="_blank"
+          rel="noopener noreferrer"
+        >
+          <i className="fa-brands fa-youtube"></i>
+        </a>
+      </div>
+    </footer>
+  )
+}

absolete_frontend/src/components/Forms/ContactMe/ContactMeForm.tsx

@@ -0,0 +1,85 @@
+import React, { useState, useRef } from "react"
+import styles from "./contact-me.module.css"
+import { LuMousePointerClick } from "react-icons/lu";
+
+export default function ContactMeForm() {
+  const [opened, setOpened] = useState(false)
+  const [contentMoveUp, setContentMoveUp] = useState(false)
+  const [openingBehind, setOpeningBehind] = useState(false)
+  const [success, setSuccess] = useState(false)
+  const openingRef = useRef<HTMLDivElement>(null)
+
+  function handleSubmit() {
+    // form submission logic here
+  }
+
+  const toggleOpen = () => {
+    if (!opened) {
+      setOpened(true)
+      setOpeningBehind(false)
+      setContentMoveUp(false)
+      // Wait for the rotate-opening animation to finish before moving content up
+      // The actual moveUp will be handled in onTransitionEnd
+    } else {
+      setContentMoveUp(false)
+      setOpeningBehind(false)
+      setTimeout(() => setOpened(false), 1000) // match transition duration
+    }
+  }
+
+  const handleTransitionEnd = (e: React.TransitionEvent<HTMLDivElement>) => {
+    if (opened && e.propertyName === "transform") {
+      setContentMoveUp(true)
+      // Move the opening behind after the animation
+      setTimeout(() => setOpeningBehind(true), 10)
+    }
+    if (!opened && e.propertyName === "transform") {
+      setOpeningBehind(false)
+    }
+  }
+
+  return (
+    <div className={styles["contact-me"]}>
+      <div
+        ref={openingRef}
+        className={
+          [
+            styles.opening,
+            opened ? styles["rotate-opening"] : "",
+            openingBehind ? styles["opening-behind"] : ""
+          ].filter(Boolean).join(" ")
+        }
+        onClick={toggleOpen}
+        onTransitionEnd={handleTransitionEnd}
+      >
+        <LuMousePointerClick/>
+      </div>
+
+      <div
+        className={
+          contentMoveUp
+            ? `${styles.content} ${styles["content-moveup"]}`
+            : styles.content
+        }
+      >
+        <form onSubmit={handleSubmit}>
+          <input
+            type="email"
+            name="email"
+            placeholder="Váš email"
+            required
+          />
+          <textarea
+            name="message"
+            placeholder="Vaše zpráva"
+            required
+          />
+          <input type="submit"/>
+        </form>
+      </div>
+
+      <div className={styles.cover}></div>
+      <div className={styles.triangle}></div>
+    </div>
+  )
+}

absolete_frontend/src/components/Forms/ContactMe/contact-me.module.css

@@ -35,6 +35,11 @@
     transform: rotateX(180deg);
 }
 
+.opening svg{
+    margin: auto;
+    font-size: 3em;
+    margin-top: -0.5em;
+}
 
 
 .contact-me .content {
@@ -89,7 +94,7 @@
 
 }
 
-
+.opening-behind { z-index: 0 !important; }
 
 .contact-me .cover {
     position: absolute;

absolete_frontend/src/components/ads/Drone/Drone.tsx

@@ -0,0 +1,90 @@
+import React, { useEffect, useRef } from "react"
+import styles from "./drone.module.css"
+
+export default function Drone() {
+  const videoRef = useRef<HTMLVideoElement | null>(null)
+  const sourceRef = useRef<HTMLSourceElement | null>(null)
+
+  useEffect(() => {
+    function setVideoDroneQuality() {
+      if (!sourceRef.current || !videoRef.current) return
+
+      const videoSources = {
+        fullHD: "static/home/video/drone-background-video-1080p.mp4", // For desktops (1920x1080)
+        hd: "static/home/video/drone-background-video-720p.mp4",      // For tablets/smaller screens (1280x720)
+        lowRes: "static/home/video/drone-background-video-480p.mp4"   // For mobile devices or low performance (854x480)
+      }
+
+      const screenWidth = window.innerWidth
+
+      // Pick appropriate source
+      if (screenWidth >= 1920) {
+        sourceRef.current.src =
+          "https://vontor-cz.s3.eu-central-1.amazonaws.com/" + videoSources.fullHD
+      } else if (screenWidth >= 1280) {
+        sourceRef.current.src =
+          "https://vontor-cz.s3.eu-central-1.amazonaws.com/" + videoSources.hd
+      } else {
+        sourceRef.current.src =
+          "https://vontor-cz.s3.eu-central-1.amazonaws.com/" + videoSources.lowRes
+      }
+
+      // Reload video
+      videoRef.current.load()
+      console.log("Drone video set!")
+    }
+
+    // Run once on mount
+    setVideoDroneQuality()
+
+    // Optional: rerun on resize
+    window.addEventListener("resize", setVideoDroneQuality)
+    return () => {
+      window.removeEventListener("resize", setVideoDroneQuality)
+    }
+  }, [])
+
+  return (
+    <div className={`${styles.drone}`}>
+      <video
+        ref={videoRef}
+        id="drone-video"
+        className={styles.videoBackground}
+        autoPlay
+        muted
+        loop
+        playsInline
+      >
+        <source ref={sourceRef} id="video-source" type="video/mp4" />
+        Your browser does not support video.
+      </video>
+
+      <article>
+        <header>
+          <h1>Letecké záběry, co zaujmou</h1>
+        </header>
+
+        <main>
+          <section>
+            <h2>Oprávnění</h2>
+            <p>Oprávnění A1/A2/A3 + radiostanice. Bezpečný provoz i v omezených zónách, povolení zajistím.</p>
+          </section>
+
+          <section>
+            <h2>Cena</h2>
+            <p>Paušál 3 000 Kč. Ostrava zdarma; mimo 10 Kč/km. Cena se může lišit dle povolení.</p>
+          </section>
+
+          <section>
+            <h2>Výstup</h2>
+            <p>Krátký sestřih nebo surové záběry — podle potřeby.</p>
+          </section>
+        </main>
+
+        <div>
+          <a href="#contacts">Zájem?</a>
+        </div>
+      </article>
+    </div>
+  )
+}

absolete_frontend/src/components/ads/Drone/drone.module.css

@@ -13,7 +13,7 @@
 }
 
 
-.drone .video-background {
+.drone .videoBackground {
     height: 100%;
     width: 100%;
     position: absolute;

absolete_frontend/src/components/ads/Portfolio/Portfolio.module.css

@@ -20,15 +20,26 @@
     height: 100%;
     width: 100%;
     background-color: #c2a67d;
+    color: #5e5747;
 
     border-radius: 1em;
 
     transform-origin: bottom;
     transition: transform 0.5s ease-in-out;
 
+    transform: skew(-5deg);
     z-index: 3;
 
+    box-shadow: #000000 5px 5px 15px;
+
 }
+.portfolio div span svg{
+    font-size: 5em;
+    cursor: pointer;
+    animation: shake 0.4s ease-in-out infinite;
+}
+
+
 
 @keyframes shake {
     0% { transform: translateX(0); }
@@ -48,14 +59,14 @@
 }
 
 .portfolio .door-open{
-    transform: rotateX(180deg);
+    transform: rotateX(90deg) skew(-2deg) !important;
 }
 
 .portfolio>header {
     width: fit-content;
     position: absolute;
-    z-index: 5;
+    z-index: 0;
-    top: -4.7em;
+    top: -3.7em;
     left: 0;
     padding: 1em 3em;
     padding-bottom: 0;
@@ -112,6 +123,7 @@
 
 
 .portfolio div {
+    width: 100%;
     padding: 3em;
     background-color: #cdc19c;
     display: flex;
@@ -122,6 +134,8 @@
 
     border-radius: 1em;
     border-top-left-radius: 0;
+
+    aspect-ratio: 16 / 9;
 }
 
 .portfolio div article {
@@ -136,7 +150,6 @@
 }
 
 .portfolio div article header a img {
-    padding: 2em 0;
     width: 80%;
     margin: auto;
 }

absolete_frontend/src/components/ads/Portfolio/Portfolio.tsx

@@ -0,0 +1,86 @@
+import React, { useState } from "react"
+import styles from "./Portfolio.module.css"
+import { LuMousePointerClick } from "react-icons/lu";
+
+interface PortfolioItem {
+  href: string
+  src: string
+  alt: string
+  // Optional per-item styling (prefer Tailwind utility classes in className/imgClassName)
+  className?: string
+  imgClassName?: string
+  style?: React.CSSProperties
+  imgStyle?: React.CSSProperties
+}
+
+const portfolioItems: PortfolioItem[] = [
+  {
+    href: "https://davo1.cz",
+    src: "/portfolio/davo1.png",
+    alt: "davo1.cz logo",
+    imgClassName: "bg-black rounded-lg p-4",
+    //className: "bg-white/5 rounded-lg p-4",
+  },
+  {
+    href: "https://perlica.cz",
+    src: "/portfolio/perlica.png",
+    alt: "Perlica logo",
+    imgClassName: "rounded-lg", 
+    // imgClassName: "max-h-12",
+  },
+  {
+    href: "http://epinger2.cz",
+    src: "/portfolio/epinger.png",
+    alt: "Epinger2 logo",
+    imgClassName: "bg-white rounded-lg",
+    // imgClassName: "max-h-12",
+  },
+]
+
+export default function Portfolio() {
+  const [doorOpen, setDoorOpen] = useState(false)
+
+  const toggleDoor = () => setDoorOpen((prev) => !prev)
+
+  return (
+    <div className={styles.portfolio} id="portfolio">
+      <header>
+        <h1>Portfolio</h1>
+      </header>
+
+      <div>
+
+        <span
+          className={
+            doorOpen
+              ? `${styles.door} ${styles["door-open"]}`
+              : styles.door
+          }
+          onClick={toggleDoor}
+        >
+          <LuMousePointerClick/>
+        </span>
+
+        {portfolioItems.map((item, index) => (
+          <article
+            key={index}
+            className={`${styles.article} ${item.className ?? ""}`}
+            style={item.style}
+          >
+            <header>
+              <a href={item.href} target="_blank" rel="noopener noreferrer">
+                <img
+                  src={item.src}
+                  alt={item.alt}
+                  className={item.imgClassName}
+                  style={item.imgStyle}
+                />
+              </a>
+            </header>
+            <main></main>
+          </article>
+        ))}
+      </div>
+    </div>
+  )
+}

absolete_frontend/src/components/navbar/HomeNav.module.css

@@ -0,0 +1,304 @@
+nav{
+    padding: 1.1em;
+
+    font-family: "Roboto Mono", monospace;
+
+    position: -webkit-sticky;
+    position: sticky;
+    top: 0; /* required */
+
+    transition: top 1s ease-in-out, border-radius 1s ease-in-out;
+
+   
+
+    z-index: 5;
+    padding-left: 2em;
+    padding-right: 2em;
+    width: max-content;
+
+    background: var(--c-boxes);
+    /*background: -moz-linear-gradient(117deg, rgba(34,34,34,1) 0%, rgba(59,54,54,1) 100%);
+    background: -webkit-linear-gradient(117deg, rgba(34,34,34,1) 0%, rgba(59,54,54,1) 100%);
+    background: linear-gradient(117deg, rgba(34,34,34,1) 0%, rgba(59,54,54,1) 100%);
+    filter: progid:DXImageTransform.Microsoft.gradient(startColorstr="#222222",endColorstr="#3b3636",GradientType=1);*/
+
+    color: #fff;
+    text-align: center;
+
+    margin: auto;
+    
+    border-radius: 2em;
+}
+nav.isSticky-nav{
+    border-top-left-radius: 0;
+    border-top-right-radius: 0;
+}
+nav ul #nav-logo{
+    border-right: 0.2em solid var(--c-lines);
+}
+/* Add class alias for logo used in TSX */
+.logo {
+    border-right: 0.2em solid var(--c-lines);
+}
+nav ul #nav-logo span{
+    line-height: 0.75;
+    font-size: 1.5em;
+}
+nav a{
+    color: #fff;
+    transition: color 1s;
+
+    position: relative;
+    text-decoration: none;
+}
+nav a:hover{
+    color: #fff;
+}
+/* Unify link/summary layout to prevent distortion */
+nav a,
+nav summary {
+    color: #fff;
+    transition: color 1s;
+    position: relative;
+    text-decoration: none;
+    cursor: pointer;
+    display: inline-block;            /* ensure consistent inline sizing */
+    vertical-align: middle;           /* align with neighbors */
+    padding: 0;                       /* keep padding controlled by li */
+}
+
+nav a::before {
+    content: "";
+    position: absolute;
+    display: block;
+    width: 100%;
+    height: 2px;
+    bottom: 0;
+    left: 0;
+    background-color: #fff;
+    transform: scaleX(0);
+    transition: transform 0.3s ease;
+}
+nav a:hover::before {
+    transform: scaleX(1);
+}
+nav summary:hover {
+    color: #fff;
+}
+
+/* underline effect shared for links and summary */
+nav a::before,
+nav summary::before {
+    content: "";
+    position: absolute;
+    display: block;
+    width: 100%;
+    height: 2px;
+    bottom: 0;
+    left: 0;
+    background-color: #fff;
+    transform: scaleX(0);
+    transition: transform 0.3s ease;
+}
+nav a:hover::before,
+nav summary:hover::before {
+    transform: scaleX(1);
+}
+
+/* Submenu support */
+.hasSubmenu {
+    position: relative;
+    vertical-align: middle;           /* align with other inline items */
+}
+
+/* Keep details inline to avoid breaking the first row flow */
+.hasSubmenu details {
+    display: inline-block;
+    margin: 0;
+    padding: 0;
+}
+
+/* Ensure "Services" and caret stay on the same line */
+.hasSubmenu details > summary {
+    display: inline-flex;       /* horizontal layout */
+    align-items: center;        /* vertical alignment */
+    gap: 0.5em;                 /* space between text and icon */
+    white-space: nowrap;        /* prevent wrapping */
+}
+
+/* Hide native disclosure icon/marker on summary */
+.hasSubmenu details > summary {
+    list-style: none;
+    outline: none;
+}
+.hasSubmenu details > summary::-webkit-details-marker {
+    display: none;
+}
+.hasSubmenu details > summary::marker {
+    content: "";
+}
+
+/* Reusable caret for submenu triggers */
+.caret {
+    transition: transform 0.2s ease-in-out;
+}
+
+/* Rotate caret when submenu is open */
+.hasSubmenu details[open] .caret {
+    transform: rotate(180deg);
+}
+
+/* Submenu box: place directly under nav with a tiny gap (no overlap) */
+.submenu {
+    list-style: none;
+    margin: 1em 0;
+    padding: 0.5em 0;
+    position: absolute;
+    left: 0;
+    top: calc(100% + 0.25em);
+    display: none;
+    background: var(--c-background-light);
+    border: 1px solid var(--c-lines);
+    border-radius: 0.75em;
+    min-width: max-content;
+    text-align: left;
+    z-index: 10;
+}
+.submenu li {
+    display: block;
+    padding: 0;
+}
+.submenu a {
+    display: inline-block;
+    padding: 0;             /* remove padding so underline equals text width */
+    margin: 0.35em 0;  /* spacing without affecting underline width */
+}
+
+/* Show submenu when open */
+.hasSubmenu details[open] .submenu {
+    display: flex;
+    flex-direction: column;
+}
+
+/* Hamburger toggle class (used by TSX) */
+.toggle {
+    display: none;
+    transition: transform 0.5s ease;
+}
+.toggleRotated {
+    transform: rotate(180deg);
+}
+
+/* Bridge TSX classnames to existing rules */
+.navList {
+    list-style: none;
+    padding: 0;
+}
+.navList li {
+    display: inline;
+    padding: 0 3em;
+}
+.navList li a {
+    text-decoration: none;
+}
+
+nav ul {
+    list-style: none;
+    padding: 0;
+}
+
+nav ul li {
+    display: inline;
+    padding: 0 3em;
+}
+
+nav ul li a {
+    text-decoration: none;
+}
+#toggle-nav{
+    display: none;
+
+    -webkit-transition: transform 0.5s ease;
+    -moz-transition: transform 0.5s ease;
+    -o-transition: transform 0.5s ease;
+    -ms-transition: transform 0.5s ease;
+    transition: transform 0.5s ease;
+}
+.toggle-nav-rotated {
+    transform: rotate(360deg);
+}
+.nav-open{
+    max-height: 20em;
+}
+@media only screen and (max-width: 990px){
+    #toggle-nav{
+        margin-top: 0.25em;
+        margin-left: 0.75em;
+        position: absolute;
+        left: 0;
+        display: block;
+        font-size: 2em;
+    }
+    nav{
+        width: 100%;
+        padding: 0;
+        border-top-right-radius: 0;
+        border-top-left-radius: 0;
+        border-bottom-left-radius: 1em;
+        border-bottom-right-radius: 1em;
+        overflow: hidden;
+    }
+    nav ul {
+        margin-top: 1em;
+        gap: 2em;
+        display: flex;
+        flex-direction: column;
+
+        -webkit-transition: max-height 1s ease;
+        -moz-transition: max-height 1s ease;
+        -o-transition: max-height 1s ease;
+        -ms-transition: max-height 1s ease;
+        transition: max-height 1s ease;
+
+        max-height: 2em;
+    }
+    /* When TSX adds styles.open to the UL, expand it */
+    .open {
+        max-height: 20em;
+    }
+
+    nav ul:last-child{
+        padding-bottom: 1em;
+    }
+    nav ul #nav-logo {
+        margin: auto;
+        padding-bottom: 0.5em;
+        margin-bottom: -1em;
+        border-bottom: 0.2em solid var(--c-lines);
+        border-right: none;
+    }
+    /* Show hamburger on mobile */
+    .toggle {
+        margin-top: 0.25em;
+        margin-left: 0.75em;
+        position: absolute;
+        left: 0;
+        display: block;
+        font-size: 2em;
+    }
+
+    /* Submenu stacks inline under the parent item on mobile */
+    .submenu {
+        position: static;
+        border: none;
+        border-radius: 0;
+        background: transparent;
+        padding: 0 0 0.5em 0.5em;
+        min-width: unset;
+    }
+    .submenu a {
+        display: inline-block;
+        padding: 0;            /* keep no padding on mobile too */
+        margin: 0.25em 0.5em;  /* spacing via margin */
+    }
+}

absolete_frontend/src/components/navbar/HomeNav.tsx

@@ -0,0 +1,52 @@
+import React, { useState, useContext } from "react"
+import styles from "./HomeNav.module.css"
+import { FaBars, FaChevronDown } from "react-icons/fa";
+
+import { UserContext } from "../../context/UserContext";
+
+export default function HomeNav() {
+  const [navOpen, setNavOpen] = useState(false)
+
+  const toggleNav = () => setNavOpen((prev) => !prev)
+
+  const { user } = useContext(UserContext);
+
+  return (
+    <nav className={styles.nav}>
+      <FaBars
+        className={`${styles.toggle} ${navOpen ? styles.toggleRotated : ""}`}
+        onClick={toggleNav}
+        aria-label="Toggle navigation"
+        aria-expanded={navOpen}
+      />
+
+      <ul className={`${styles.navList} ${navOpen ? styles.open : ""}`}>
+        <li id="nav-logo" className={styles.logo}>
+          <span>vontor.cz</span>
+        </li>
+        <li>
+          <a href="/">Home</a>
+        </li>
+        <li>
+          <a href="#portfolio">Portfolio</a>
+        </li>
+        <li className={styles.hasSubmenu}>
+          <details>
+            <summary>
+              Services
+              <FaChevronDown className={`${styles.caret} ml-2 inline-block`} aria-hidden="true" />
+            </summary>
+            <ul className={styles.submenu}>
+              <li><a href="#web">Web development</a></li>
+              <li><a href="#integration">Integrations</a></li>
+              <li><a href="#support">Support</a></li>
+            </ul>
+          </details>
+        </li>
+        <li>
+          <a href="#contactme-form">Contact me</a>
+        </li>
+      </ul>
+    </nav>
+  )
+}

absolete_frontend/src/context/Context.md

@@ -0,0 +1,30 @@
+/*
+# EXAMPLE USAGE OF CONTEXT IN A COMPONENT:
+
+## Wrap your app tree with the provider (e.g., in App.tsx)
+
+```tsx
+import { UserContextProvider } from "../context/UserContext";
+function App() {
+    return (
+        <UserContextProvider>
+        <YourRoutes />
+        </UserContextProvider>
+    );
+}
+```
+
+
+
+## Consume in any child component
+```tsx
+import React, { useContext } from "react"
+import { UserContext } from '../context/UserContext';
+
+export default function ExampleComponent() {
+  const { user, setUser } = useContext(UserContext);
+
+
+  return ...;
+}
+```

absolete_frontend/src/context/UserContext.tsx

@@ -0,0 +1,75 @@
+import React, { createContext, useState, useContext, useEffect } from 'react';
+
+import userAPI from '../api/models/User';
+
+// definice uživatele
+export interface User {
+  id: string;
+  email: string;
+  username: string;
+}
+
+// určíme typ kontextu
+interface GlobalContextType {
+  user: User | null;
+  setUser: React.Dispatch<React.SetStateAction<User | null>>;
+}
+
+// vytvoříme a exportneme kontext !!!
+export const UserContext = createContext<GlobalContextType | null>(null);
+
+
+// hook pro použití kontextu
+// zabal routy do téhle komponenty!!!
+export const UserContextProvider: React.FC<{ children: React.ReactNode }> = ({ children }) => {
+  const [user, setUser] = useState<User | null>(null);
+
+  useEffect(() => {
+
+    const fetchUser = async () => {
+      try {
+        const currentUser = await userAPI.getCurrentUser();
+        setUser(currentUser);
+      } catch (error) {
+        console.error('Failed to load user:', error);
+        setUser(null);
+      }
+    };
+
+    fetchUser();
+
+  }, []);
+    
+  return (
+    <UserContext.Provider value={{ user, setUser }}>
+      {children}
+    </UserContext.Provider>
+  );
+};
+
+
+/*
+EXAMPLE USAGE OF CONTEXT IN A COMPONENT:
+
+// Wrap your app tree with the provider (e.g., in App.tsx)
+// import { UserContextProvider } from "../context/UserContext";
+// function App() {
+//   return (
+//     <UserContextProvider>
+//       <YourRoutes />
+//     </UserContextProvider>
+//   );
+// }
+
+// Consume in any child component
+import React, { useContext } from "react"
+import { UserContext } from '../context/UserContext';
+
+export default function ExampleComponent() {
+  const { user, setUser } = useContext(UserContext);
+
+
+  return ...;
+}
+
+*/

absolete_frontend/src/index.css

@@ -1,3 +1,5 @@
+@import "tailwindcss";
+
 :root {
   font-family: system-ui, Avenir, Helvetica, Arial, sans-serif;
   line-height: 1.5;
@@ -11,15 +13,12 @@
   text-rendering: optimizeLegibility;
   -webkit-font-smoothing: antialiased;
   -moz-osx-font-smoothing: grayscale;
-}
+  --c-background: #031D44; /*background*/
-
+  --c-background-light: #04395E; /*background-highlight*/
-a {
+  --c-boxes: #24719f;; /*boxes*/
-  font-weight: 500;
+  --c-lines: #87a9da; /*lines*/
-  color: #646cff;
+  --c-text: #CAF0F8; /*text*/
-  text-decoration: inherit;
+  --c-other: #70A288; /*other*/
-}
-a:hover {
-  color: #535bf2;
 }
 
 body {

absolete_frontend/src/layouts/Default.tsx

@@ -0,0 +1,28 @@
+import Footer from "../components/Footer/footer";
+import ContactMeForm from "../components/Forms/ContactMe/ContactMeForm";
+import HomeNav from "../components/navbar/HomeNav";
+import Drone from "../components/ads/Drone/Drone";
+import Portfolio from "../components/ads/Portfolio/Portfolio";
+import Home from "../pages/home/home";
+import { Outlet } from "react-router";
+
+export default function HomeLayout(){
+    return(
+        <>
+            {/* Example usage of imported components, adjust as needed */}
+            
+            <HomeNav />
+            
+            <Home /> {/*page*/}
+            <div style={{margin: "10em 0"}}>
+                <Drone />
+            </div>
+            <Outlet />
+            <Portfolio />
+            <div style={{ margin: "6em auto", marginTop: "15em", maxWidth: "80vw" }}>
+                <ContactMeForm />
+            </div>
+            <Footer />
+        </>
+    )
+}

absolete_frontend/src/layouts/HomeLayout.tsx

@@ -0,0 +1,28 @@
+import Footer from "../components/Footer/footer";
+import ContactMeForm from "../components/Forms/ContactMe/ContactMeForm";
+import HomeNav from "../components/navbar/HomeNav";
+import Drone from "../components/ads/Drone/Drone";
+import Portfolio from "../components/ads/Portfolio/Portfolio";
+import Home from "../pages/home/home";
+import { Outlet } from "react-router";
+
+export default function HomeLayout(){
+    return(
+        <>
+            {/* Example usage of imported components, adjust as needed */}
+            
+            <HomeNav />
+            
+            <Home /> {/*page*/}
+            <div style={{margin: "10em 0"}}>
+                <Drone />
+            </div>
+            <Outlet />
+            <Portfolio />
+            <div style={{ margin: "6em auto", marginTop: "15em", maxWidth: "80vw" }}>
+                <ContactMeForm />
+            </div>
+            <Footer />
+        </>
+    )
+}

absolete_frontend/src/pages/downloader/Downloader.tsx

@@ -0,0 +1,206 @@
+import { useEffect, useMemo, useState } from "react";
+import {
+  fetchInfo,
+  downloadImmediate,
+  FORMAT_EXTS,
+  type InfoResponse,
+  parseContentDispositionFilename,
+} from "../../api/apps/Downloader";
+
+export default function Downloader() {
+  const [url, setUrl] = useState("");
+  const [probing, setProbing] = useState(false);
+  const [downloading, setDownloading] = useState(false);
+  const [error, setError] = useState<string | null>(null);
+  const [info, setInfo] = useState<InfoResponse | null>(null);
+
+  const [ext, setExt] = useState<typeof FORMAT_EXTS[number]>("mp4");
+  const [videoRes, setVideoRes] = useState<string | undefined>(undefined);
+  const [audioRes, setAudioRes] = useState<string | undefined>(undefined);
+
+  useEffect(() => {
+    if (info?.video_resolutions?.length && !videoRes) {
+      setVideoRes(info.video_resolutions[0]);
+    }
+    if (info?.audio_resolutions?.length && !audioRes) {
+      setAudioRes(info.audio_resolutions[0]);
+    }
+  }, [info]);
+
+  async function onProbe(e: React.FormEvent) {
+    e.preventDefault();
+    setError(null);
+    setInfo(null);
+    setProbing(true);
+    try {
+      const res = await fetchInfo(url);
+      setInfo(res);
+      // reset selections from fresh info
+      setVideoRes(res.video_resolutions?.[0]);
+      setAudioRes(res.audio_resolutions?.[0]);
+    } catch (e: any) {
+      setError(
+        e?.response?.data?.error ||
+        e?.response?.data?.detail ||
+        e?.message ||
+        "Failed to get info."
+      );
+    } finally {
+      setProbing(false);
+    }
+  }
+
+  async function onDownload() {
+    setError(null);
+    setDownloading(true);
+    try {
+      const { blob, filename } = await downloadImmediate({
+        url,
+        ext,
+        videoResolution: videoRes,
+        audioResolution: audioRes,
+      });
+      const name = filename || parseContentDispositionFilename("") || `download.${ext}`;
+      const href = URL.createObjectURL(blob);
+      const a = document.createElement("a");
+      a.href = href;
+      a.download = name;
+      document.body.appendChild(a);
+      a.click();
+      document.body.removeChild(a);
+      URL.revokeObjectURL(href);
+    } catch (e: any) {
+      setError(
+        e?.response?.data?.error ||
+        e?.response?.data?.detail ||
+        e?.message ||
+        "Download failed."
+      );
+    } finally {
+      setDownloading(false);
+    }
+  }
+
+  const canDownload = useMemo(
+    () => !!url && !!ext && !!videoRes && !!audioRes,
+    [url, ext, videoRes, audioRes]
+  );
+
+  return (
+    <div className="max-w-3xl mx-auto p-4 space-y-4">
+      <h1 className="text-2xl font-semibold">Downloader</h1>
+
+      {error && <div className="rounded border border-red-300 bg-red-50 text-red-700 p-2">{error}</div>}
+
+      <form onSubmit={onProbe} className="grid gap-3">
+        <label className="grid gap-1">
+          <span className="text-sm font-medium">URL</span>
+          <input
+            type="url"
+            required
+            placeholder="https://example.com/video"
+            value={url}
+            onChange={(e) => setUrl(e.target.value)}
+            className="w-full border rounded p-2"
+          />
+        </label>
+
+        <div className="flex gap-2">
+          <button
+            type="submit"
+            disabled={!url || probing}
+            className="px-3 py-2 rounded bg-blue-600 text-white disabled:opacity-50"
+          >
+            {probing ? "Probing..." : "Get info"}
+          </button>
+          <button
+            type="button"
+            onClick={onDownload}
+            disabled={!canDownload || downloading}
+            className="px-3 py-2 rounded bg-emerald-600 text-white disabled:opacity-50"
+          >
+            {downloading ? "Downloading..." : "Download"}
+          </button>
+        </div>
+      </form>
+
+      {info && (
+        <div className="space-y-3">
+          <div className="flex items-start gap-3">
+            {info.thumbnail && (
+              <img
+                src={info.thumbnail}
+                alt={info.title || "thumbnail"}
+                className="w-40 h-24 object-cover rounded border"
+              />
+            )}
+            <div className="text-sm text-gray-800 space-y-1">
+              <div>
+                <span className="font-medium">Title:</span> {info.title || "-"}
+              </div>
+              <div>
+                <span className="font-medium">Duration:</span>{" "}
+                {info.duration ? `${Math.round(info.duration)} s` : "-"}
+              </div>
+            </div>
+          </div>
+
+          <div className="grid md:grid-cols-3 gap-3">
+            <label className="grid gap-1">
+              <span className="text-sm font-medium">Container</span>
+              <select
+                value={ext}
+                onChange={(e) => setExt(e.target.value as any)}
+                className="border rounded p-2"
+              >
+                {FORMAT_EXTS.map((x) => (
+                  <option key={x} value={x}>
+                    {x.toUpperCase()}
+                  </option>
+                ))}
+              </select>
+            </label>
+
+            <label className="grid gap-1">
+              <span className="text-sm font-medium">Video resolution</span>
+              <select
+                value={videoRes || ""}
+                onChange={(e) => setVideoRes(e.target.value || undefined)}
+                className="border rounded p-2"
+              >
+                {info.video_resolutions?.length ? (
+                  info.video_resolutions.map((r) => (
+                    <option key={r} value={r}>
+                      {r}
+                    </option>
+                  ))
+                ) : (
+                  <option value="">-</option>
+                )}
+              </select>
+            </label>
+
+            <label className="grid gap-1">
+              <span className="text-sm font-medium">Audio bitrate</span>
+              <select
+                value={audioRes || ""}
+                onChange={(e) => setAudioRes(e.target.value || undefined)}
+                className="border rounded p-2"
+              >
+                {info.audio_resolutions?.length ? (
+                  info.audio_resolutions.map((r) => (
+                    <option key={r} value={r}>
+                      {r}
+                    </option>
+                  ))
+                ) : (
+                  <option value="">-</option>
+                )}
+              </select>
+            </label>
+          </div>
+        </div>
+      )}
+    </div>
+  );
+}

absolete_frontend/src/pages/home/Home.module.css

@@ -4,6 +4,15 @@
 
 @import url('https://fonts.googleapis.com/css2?family=Exo:ital,wght@0,100..900;1,100..900&display=swap');
 
+:root{
+    --c-background: #031D44; /*background*/
+    --c-background-light: #04395E; /*background-highlight*/
+    --c-boxes: #24719f;; /*boxes*/
+    --c-lines: #87a9da; /*lines*/
+    --c-text: #CAF0F8; /*text*/
+    --c-other: #70A288; /*other*/
+}
+
 html{
     scroll-behavior: smooth;
 }
@@ -34,44 +43,9 @@ body{
     font-weight: 400;
     font-style: normal;
 }
-footer a{
-    color: var(--c-text);
-    text-decoration: none;
-}
-footer a i{
-    color: white;
-    text-decoration: none;
-}
-footer{
-    font-family: "Roboto Mono", monospace;
 
-    background-color: var(--c-boxes);
 
-    margin-top: 2em;
+.introduction {
-    display: flex;
-
-    color: white;
-    align-items: center;
-    justify-content: space-evenly;
-}
-footer address{
-    padding: 1em;
-    font-style: normal;
-}
-footer .contacts{
-    font-size: 2em;
-
-}
-
-@media only screen and (max-width: 990px){
-    footer{
-        flex-direction: column;
-        padding-bottom: 1em;
-        padding-top: 1em;
-    }
-  }
-
-  .introduction {
     display: flex;
     flex-direction: column;
     color: var(--c-text);
@@ -85,6 +59,7 @@ footer .contacts{
 
     /* gap: 4em;*/
 }
+
 .introduction h1{
     font-size: 2em;
 }

absolete_frontend/src/pages/home/home.tsx

@@ -0,0 +1,49 @@
+import React, { useEffect } from "react"
+import styles from "./Home.module.css"
+
+
+
+export default function Home() {
+  useEffect(() => {
+    const handleClick = (event: MouseEvent) => {
+      const randomId = "spark-" + Math.floor(Math.random() * 100000)
+
+      const spark = document.createElement("div")
+      spark.className = "spark-cursor"
+      spark.id = randomId
+      document.body.appendChild(spark)
+
+      // pozice a barva
+      spark.style.top = `${event.pageY}px`
+      spark.style.left = `${event.pageX}px`
+      spark.style.filter = `hue-rotate(${Math.random() * 360}deg)`
+
+      for (let i = 0; i < 8; i++) {
+        const span = document.createElement("span")
+        span.style.transform = `rotate(${i * 45}deg)`
+        spark.appendChild(span)
+      }
+
+      setTimeout(() => {
+        spark.querySelectorAll("span").forEach((s) => {
+          (s as HTMLElement).classList.add("animate")
+        })
+      }, 10)
+
+      setTimeout(() => {
+        spark.remove()
+      }, 1000)
+    }
+
+    document.body.addEventListener("click", handleClick)
+
+    // cleanup když komponenta zmizí
+    return () => {
+      document.body.removeEventListener("click", handleClick)
+    }
+  }, [])
+
+  return (
+    <></>
+  )
+}

absolete_frontend/src/routes/PrivateRoute.tsx

@@ -0,0 +1,22 @@
+import { Navigate, Outlet, useLocation } from "react-router-dom";
+
+function getCookie(name: string): string | null {
+  const nameEQ = name + "=";
+  const ca = document.cookie.split(";").map((c) => c.trim());
+  for (const c of ca) {
+    if (c.indexOf(nameEQ) === 0) return decodeURIComponent(c.substring(nameEQ.length));
+  }
+  return null;
+}
+
+const ACCESS_COOKIE = "access_token";
+
+export default function PrivateRoute() {
+  const location = useLocation();
+  const isLoggedIn = !!getCookie(ACCESS_COOKIE);
+
+  if (!isLoggedIn) {
+    return <Navigate to="/login" replace state={{ from: location }} />;
+  }
+  return <Outlet />;
+}

absolete_frontend/tsconfig.app.json

@@ -0,0 +1,27 @@
+{
+  "compilerOptions": {
+    "tsBuildInfoFile": "./node_modules/.tmp/tsconfig.app.tsbuildinfo",
+    "target": "ES2022",
+    "useDefineForClassFields": true,
+    "lib": ["ES2022", "DOM", "DOM.Iterable"],
+    "module": "ESNext",
+    "skipLibCheck": true,
+
+    /* Bundler mode */
+    "moduleResolution": "bundler",
+    "allowImportingTsExtensions": true,
+    "verbatimModuleSyntax": true,
+    "moduleDetection": "force",
+    "noEmit": true,
+    "jsx": "react-jsx",
+
+    /* Linting */
+    "strict": true,
+    "noUnusedLocals": true,
+    "noUnusedParameters": true,
+    "erasableSyntaxOnly": true,
+    "noFallthroughCasesInSwitch": true,
+    "noUncheckedSideEffectImports": true
+  },
+  "include": ["src"]
+}

absolete_frontend/tsconfig.json

@@ -0,0 +1,7 @@
+{
+  "files": [],
+  "references": [
+    { "path": "./tsconfig.app.json" },
+    { "path": "./tsconfig.node.json" }
+  ]
+}

absolete_frontend/tsconfig.node.json

@@ -0,0 +1,25 @@
+{
+  "compilerOptions": {
+    "tsBuildInfoFile": "./node_modules/.tmp/tsconfig.node.tsbuildinfo",
+    "target": "ES2023",
+    "lib": ["ES2023"],
+    "module": "ESNext",
+    "skipLibCheck": true,
+
+    /* Bundler mode */
+    "moduleResolution": "bundler",
+    "allowImportingTsExtensions": true,
+    "verbatimModuleSyntax": true,
+    "moduleDetection": "force",
+    "noEmit": true,
+
+    /* Linting */
+    "strict": true,
+    "noUnusedLocals": true,
+    "noUnusedParameters": true,
+    "erasableSyntaxOnly": true,
+    "noFallthroughCasesInSwitch": true,
+    "noUncheckedSideEffectImports": true
+  },
+  "include": ["vite.config.ts"]
+}

absolete_frontend/vite.config.ts

@@ -0,0 +1,11 @@
+import { defineConfig } from 'vite'
+import tailwindcss from '@tailwindcss/vite'
+import react from '@vitejs/plugin-react'
+
+// https://vite.dev/config/
+export default defineConfig({
+  plugins: [
+    react(),
+    tailwindcss()
+  ],
+})

backend/Dockerfile

@@ -2,6 +2,8 @@ FROM python:3.12-slim
 
 WORKDIR /app
 
+RUN apt update && apt install ffmpeg -y
+
 COPY requirements.txt .
 RUN pip install --no-cache-dir -r requirements.txt
 

backend/account/migrations/0001_initial.py

@@ -1,4 +1,4 @@
-# Generated by Django 5.2.5 on 2025-08-13 23:19
+# Generated by Django 5.2.7 on 2025-10-28 22:28
 
 import account.models
 import django.contrib.auth.validators
@@ -30,16 +30,16 @@ class Migration(migrations.Migration):
                 ('date_joined', models.DateTimeField(default=django.utils.timezone.now, verbose_name='date joined')),
                 ('is_deleted', models.BooleanField(default=False)),
                 ('deleted_at', models.DateTimeField(blank=True, null=True)),
-                ('role', models.CharField(blank=True, choices=[('admin', 'Administrátor'), ('user', 'Uživatel')], max_length=32, null=True)),
+                ('role', models.CharField(choices=[('admin', 'Admin'), ('mod', 'Moderator'), ('regular', 'Regular')], default='regular', max_length=20)),
+                ('phone_number', models.CharField(blank=True, max_length=16, null=True, unique=True, validators=[django.core.validators.RegexValidator('^\\+?\\d{9,15}$', message='Zadejte platné telefonní číslo.')])),
                 ('email_verified', models.BooleanField(default=False)),
-                ('phone_number', models.CharField(blank=True, max_length=16, unique=True, validators=[django.core.validators.RegexValidator('^\\+?\\d{9,15}$', message='Zadejte platné telefonní číslo.')])),
                 ('email', models.EmailField(db_index=True, max_length=254, unique=True)),
+                ('gdpr', models.BooleanField(default=False)),
+                ('is_active', models.BooleanField(default=False)),
                 ('create_time', models.DateTimeField(auto_now_add=True)),
                 ('city', models.CharField(blank=True, max_length=100, null=True)),
                 ('street', models.CharField(blank=True, max_length=200, null=True)),
                 ('postal_code', models.CharField(blank=True, max_length=5, null=True, validators=[django.core.validators.RegexValidator(code='invalid_postal_code', message='Postal code must contain exactly 5 digits.', regex='^\\d{5}$')])),
-                ('gdpr', models.BooleanField(default=False)),
-                ('is_active', models.BooleanField(default=False)),
                 ('groups', models.ManyToManyField(blank=True, help_text='The groups this user belongs to.', related_name='customuser_set', related_query_name='customuser', to='auth.group')),
                 ('user_permissions', models.ManyToManyField(blank=True, help_text='Specific permissions for this user.', related_name='customuser_set', related_query_name='customuser', to='auth.permission')),
             ],
@@ -47,8 +47,8 @@ class Migration(migrations.Migration):
                 'abstract': False,
             },
             managers=[
-                ('objects', account.models.CustomUserActiveManager()),
+                ('objects', account.models.CustomUserManager()),
-                ('all_objects', account.models.CustomUserAllManager()),
+                ('active', account.models.ActiveUserManager()),
             ],
         ),
     ]

backend/account/migrations/0002_customuser_email_verification_sent_at_and_more.py

@@ -0,0 +1,23 @@
+# Generated by Django 5.2.7 on 2025-10-31 07:36
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('account', '0001_initial'),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name='customuser',
+            name='email_verification_sent_at',
+            field=models.DateTimeField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name='customuser',
+            name='email_verification_token',
+            field=models.CharField(blank=True, db_index=True, max_length=128, null=True),
+        ),
+    ]

backend/account/models.py

@@ -1,8 +1,9 @@
 import uuid
 from django.db import models
-from django.contrib.auth.models import AbstractUser, Group, Permission
+from django.contrib.auth.models import AbstractUser, UserManager, Group, Permission
-from django.core.validators import RegexValidator, MinLengthValidator, MaxValueValidator, MinValueValidator
+from django.core.validators import RegexValidator
 
+from django.utils.crypto import get_random_string 
 from django.conf import settings
 from django.db import models
 from django.utils import timezone
@@ -16,16 +17,13 @@ import logging
 
 logger = logging.getLogger(__name__)
 
-# Custom User Manager to handle soft deletion
+class CustomUserManager(UserManager):
-class CustomUserActiveManager(UserManager):
+    # Inherit get_by_natural_key and all auth behaviors
-    def get_queryset(self):
+    use_in_migrations = True
-        return super().get_queryset().filter(is_deleted=False)
 
-# Custom User Manager to handle all users, including soft deleted
+class ActiveUserManager(CustomUserManager):
-class CustomUserAllManager(UserManager):
     def get_queryset(self):
-        return super().get_queryset()
+        return super().get_queryset().filter(is_active=True)
-
 
 class CustomUser(SoftDeleteModel, AbstractUser):
     groups = models.ManyToManyField(
@@ -43,64 +41,45 @@ class CustomUser(SoftDeleteModel, AbstractUser):
         related_query_name="customuser",
     )
 
-    ROLE_CHOICES = (
+    class Role(models.TextChoices):
-        ('admin', 'Administrátor'),
+        ADMIN = "admin", "Admin"
-        ('user', 'Uživatel'),
+        MANAGER = "mod", "Moderator"
-    )
+        CUSTOMER = "regular", "Regular"
-    role = models.CharField(max_length=32, choices=ROLE_CHOICES, null=True, blank=True)
+
+    role = models.CharField(max_length=20, choices=Role.choices, default=Role.CUSTOMER)
 
-    """ACCOUNT_TYPES = (
-        ('company', 'Firma'),
-        ('individual', 'Fyzická osoba')
-    )
-    account_type = models.CharField(max_length=32, choices=ACCOUNT_TYPES, null=True, blank=True)"""
     
-    email_verified = models.BooleanField(default=False)
 
     phone_number = models.CharField(
+        null=True,
+        blank=True,
+
         unique=True,
         max_length=16,
-        blank=True,
         validators=[RegexValidator(r'^\+?\d{9,15}$', message="Zadejte platné telefonní číslo.")]
     )
     
+    email_verified = models.BooleanField(default=False)
     email = models.EmailField(unique=True, db_index=True)
+
+    # + fields for email verification flow
+    email_verification_token = models.CharField(max_length=128, null=True, blank=True, db_index=True)
+    email_verification_sent_at = models.DateTimeField(null=True, blank=True)
+
+    gdpr = models.BooleanField(default=False)
+    is_active = models.BooleanField(default=False)
+
     create_time = models.DateTimeField(auto_now_add=True)
 
 
-    """company_id = models.CharField(
-        max_length=8,
-        blank=True,
-        null=True,
-        validators=[
-            RegexValidator(
-                regex=r'^\d{8}$',
-                message="Company ID must contain exactly 8 digits.",
-                code='invalid_company_id'
-            )
-        ]
-    )"""
-
-    """personal_id = models.CharField(
-        max_length=11,
-        blank=True,
-        null=True,
-        validators=[
-            RegexValidator(
-                regex=r'^\d{6}/\d{3,4}$',
-                message="Personal ID must be in the format 123456/7890.",
-                code='invalid_personal_id'
-            )
-        ]
-    )"""
-
     city = models.CharField(null=True, blank=True, max_length=100)
     street = models.CharField(null=True, blank=True, max_length=200)
 
     postal_code = models.CharField(
-        max_length=5,
         blank=True,
         null=True,
+
+        max_length=5,
         validators=[
             RegexValidator(
                 regex=r'^\d{5}$',
@@ -109,44 +88,73 @@ class CustomUser(SoftDeleteModel, AbstractUser):
             )
         ]
     )
-    gdpr = models.BooleanField(default=False)
 
-    is_active = models.BooleanField(default=False)
+    USERNAME_FIELD = "username"
+    REQUIRED_FIELDS = [
+        "email"
+    ]
 
-    objects = CustomUserActiveManager()
+    # Ensure default manager has get_by_natural_key
-    all_objects = CustomUserAllManager()
+    objects = CustomUserManager()
-
+    # Optional convenience manager for active users only
-    REQUIRED_FIELDS = ['email', "username", "password"]
+    active = ActiveUserManager()
-
-
-    def __str__(self):
-        return f"{self.email} at {self.create_time.strftime('%d-%m-%Y %H:%M:%S')}"
     
     def delete(self, *args, **kwargs):
         self.is_active = False
 
-        #self.orders.all().update(is_deleted=True, deleted_at=timezone.now())
-
         return super().delete(*args, **kwargs)
     
     def save(self, *args, **kwargs):
-        is_new = self.pk is None  # check BEFORE saving
+        is_new = self._state.adding  # True if object hasn't been saved yet
 
+        # Pre-save flags for new users
         if is_new:
-
             if self.is_superuser or self.role == "admin":
+                # ensure admin flags are consistent
                 self.is_active = True
-
+                self.is_staff = True
-                if self.role == 'admin':
+                self.is_superuser = True
-                    self.is_staff = True
+                self.role = "admin"
-                    self.is_superuser = True
-
-                if self.is_superuser:
-                    self.role = 'admin'
-
             else:
                 self.is_staff = False
 
+        # First save to obtain a primary key
+        super().save(*args, **kwargs)
+
+        # Assign group after we have a PK
+        if is_new:
+            from django.contrib.auth.models import Group
+            group, _ = Group.objects.get_or_create(name=self.role)
+            # Use add/set now that PK exists
+            self.groups.set([group])
+
         return super().save(*args, **kwargs)
     
+    def generate_email_verification_token(self, length: int = 48, save: bool = True) -> str:
+        token = get_random_string(length=length)
+        self.email_verification_token = token
+        self.email_verification_sent_at = timezone.now()
+        if save:
+            self.save(update_fields=["email_verification_token", "email_verification_sent_at"])
+        return token
+
+    def verify_email_token(self, token: str, max_age_hours: int = 48, save: bool = True) -> bool:
+        if not token or not self.email_verification_token:
+            return False
+        # optional expiry check
+        if self.email_verification_sent_at:
+            age = timezone.now() - self.email_verification_sent_at
+            if age > timedelta(hours=max_age_hours):
+                return False
+        if token != self.email_verification_token:
+            return False
+
+        if not self.email_verified:
+            self.email_verified = True
+        # clear token after success
+        self.email_verification_token = None
+        self.email_verification_sent_at = None
+        if save:
+            self.save(update_fields=["email_verified", "email_verification_token", "email_verification_sent_at"])
+        return True
 

backend/account/permissions.py

@@ -1,41 +1,25 @@
+from urllib import request
 from rest_framework.permissions import BasePermission, SAFE_METHODS
 from rest_framework.permissions import IsAuthenticated
 from rest_framework_api_key.permissions import HasAPIKey
 
 
-#Podle svého uvážení (NEPOUŽÍVAT!!!)
-class RolePermission(BasePermission):
-    allowed_roles = []
-
-    def has_permission(self, request, view):
-        # Je uživatel přihlášený a má roli z povolených?
-        user_has_role = (
-            request.user and
-            request.user.is_authenticated and
-            getattr(request.user, "role", None) in self.allowed_roles
-        )
-
-        # Má API klíč?
-        has_api_key = HasAPIKey().has_permission(request, view)
-
-
-        return user_has_role or has_api_key
-
-
 #TOHLE POUŽÍT!!!
 #Prostě stačí vložit: RoleAllowed('seller','cityClerk')
 def RoleAllowed(*roles):
     """
     Allows safe methods for any authenticated user.
     Allows unsafe methods only for users with specific roles.
+    Allows access if a valid API key is provided.
 
     Args:
-        RolerAllowed('admin', 'user')
+        RoleAllowed('admin', 'user')
     """
     class SafeOrRolePermission(BasePermission):
-        
-
         def has_permission(self, request, view):
+            # Má API klíč?
+            has_api_key = HasAPIKey().has_permission(request, view)
+
             # Allow safe methods for any authenticated user
             if request.method in SAFE_METHODS:
                 return IsAuthenticated().has_permission(request, view)

backend/account/serializers.py

@@ -27,21 +27,16 @@ class CustomUserSerializer(serializers.ModelSerializer):
             "last_name",
             "email",
             "role",
-            "account_type",
             "email_verified",
             "phone_number",
             "create_time",
-            "var_symbol",
-            "bank_account",
-            "ICO",
-            "RC",
             "city",
             "street",
-            "PSC",
+            "postal_code",
-            "GDPR",
+            "gdpr",
             "is_active",
         ]
-        read_only_fields = ["id", "create_time", "GDPR", "username"]  # <-- removed "account_type"
+        read_only_fields = ["id", "create_time", "gdpr", "username"]  # <-- removed "account_type"
 
         def update(self, instance, validated_data):
             user = self.context["request"].user

backend/account/tasks.py

@@ -10,76 +10,143 @@ from .models import CustomUser
 
 logger = get_task_logger(__name__)
 
-@shared_task
+def send_email_with_context(recipients, subject, message=None, template_name=None, html_template_name=None, context=None):
-def send_password_reset_email_task(user_id):
+    """
-    try:
+    General function to send emails with a specific context.
-        user = CustomUser.objects.get(pk=user_id)
+    Supports rendering plain text and HTML templates.
-    except CustomUser.DoesNotExist:
+    Converts `user` in context to a plain dict to avoid template access to the model.
-        error_msg = f"Task send_password_reset_email has failed. Invalid User ID was sent."
+    """
-        logger.error(error_msg)
+    if isinstance(recipients, str):
-        raise Exception(error_msg)
+        recipients = [recipients]
-    uid = urlsafe_base64_encode(force_bytes(user.pk))
-    token = password_reset_token.make_token(user)
-    reset_url = f"{settings.FRONTEND_URL}/reset-password/{uid}/{token}"
-    html_message = render_to_string(
-        'emails/password_reset.html',
-        {'reset_url': reset_url}
-    )
-    if settings.EMAIL_BACKEND == 'django.core.mail.backends.console.EmailBackend':
-        logger.debug("\nEMAIL OBSAH:\n", html_message, "\nKONEC OBSAHU")
-    send_email_with_context(
-        recipients=user.email,
-        subject="Obnova hesla",
-        message=None,
-        html_message=html_message
-    )
 
-# Only email verification for user registration
+    html_message = None
+    if template_name or html_template_name:
+        # Best effort to resolve both templates if only one provided
+        if not template_name and html_template_name:
+            template_name = html_template_name.replace(".html", ".txt")
+        if not html_template_name and template_name:
+            html_template_name = template_name.replace(".txt", ".html")
+
+        ctx = dict(context or {})
+        # Sanitize user if someone passes the model by mistake
+        if "user" in ctx and not isinstance(ctx["user"], dict):
+            try:
+                ctx["user"] = _build_user_template_ctx(ctx["user"])
+            except Exception:
+                ctx["user"] = {}
+
+        message = render_to_string(template_name, ctx)
+        html_message = render_to_string(html_template_name, ctx)
+
+    try:
+        send_mail(
+            subject=subject,
+            message=message or "",
+            from_email=None,
+            recipient_list=recipients,
+            fail_silently=False,
+            html_message=html_message,
+        )
+        if settings.EMAIL_BACKEND == 'django.core.mail.backends.console.EmailBackend':
+            logger.debug(f"\nEMAIL OBSAH:\n{message}\nKONEC OBSAHU")
+        return True
+    except Exception as e:
+        logger.error(f"E-mail se neodeslal: {e}")
+        return False
+
+
+def _build_user_template_ctx(user: CustomUser) -> dict:
+    """
+    Return a plain dict for templates instead of passing the DB model.
+    Provides aliases to avoid template errors (firstname vs first_name).
+    Adds a backward-compatible key 'get_full_name' for templates using `user.get_full_name`.
+    """
+    first_name = getattr(user, "first_name", "") or ""
+    last_name = getattr(user, "last_name", "") or ""
+    full_name = f"{first_name} {last_name}".strip()
+    return {
+        "id": user.pk,
+        "email": getattr(user, "email", "") or "",
+        "first_name": first_name,
+        "firstname": first_name,   # alias for templates using `firstname`
+        "last_name": last_name,
+        "lastname": last_name,     # alias for templates using `lastname`
+        "full_name": full_name,
+        "get_full_name": full_name,  # compatibility for templates using method-style access
+    }
+
+#----------------------------------------------------------------------------------------------------
+
+# This function sends an email to the user for email verification after registration.
 @shared_task
 def send_email_verification_task(user_id):
     try:
         user = CustomUser.objects.get(pk=user_id)
     except CustomUser.DoesNotExist:
-        error_msg = f"Task send_email_verification_task has failed. Invalid User ID was sent."
+        logger.info(f"Task send_email_verification has failed. Invalid User ID was sent.")
-        logger.error(error_msg)
+        return 0
-        raise Exception(error_msg)
+    
     uid = urlsafe_base64_encode(force_bytes(user.pk))
-    token = account_activation_token.make_token(user)
+    # {changed} generate and store a per-user token
-    verification_url = f"{settings.FRONTEND_URL}/email-verification/?uidb64={uid}&token={token}"
+    token = user.generate_email_verification_token()
-    html_message = render_to_string(
+    verify_url = f"{settings.FRONTEND_URL}/email-verification/?uidb64={uid}&token={token}"
-        'emails/email_verification.html',
+
-        {'verification_url': verification_url}
+    context = {
-    )
+        "user": _build_user_template_ctx(user),
-    if settings.EMAIL_BACKEND == 'django.core.mail.backends.console.EmailBackend':
+        "action_url": verify_url,
-        logger.debug("\nEMAIL OBSAH:\n", html_message, "\nKONEC OBSAHU")
+        "frontend_url": settings.FRONTEND_URL,
+        "cta_label": "Ověřit e‑mail",
+    }
+
     send_email_with_context(
         recipients=user.email,
-        subject="Ověření e-mailu",
+        subject="Ověření e‑mailu",
-        message=None,
+        template_name="email/email_verification.txt",
-        html_message=html_message
+        html_template_name="email/email_verification.html",
+        context=context,
     )
 
 
 
-def send_email_with_context(recipients, subject, message=None, html_message=None):
+@shared_task
-    """
+def send_email_test_task(email):
-    General function to send emails with a specific context.
+    context = {
-    """
+        "action_url": settings.FRONTEND_URL,
-    if isinstance(recipients, str):
+        "frontend_url": settings.FRONTEND_URL,
-        recipients = [recipients]
+        "cta_label": "Otevřít aplikaci",
+    }
+    send_email_with_context(
+        recipients=email,
+        subject="Testovací e‑mail",
+        template_name="email/test.txt",
+        html_template_name="email/test.html",
+        context=context,
+    )
 
+
+@shared_task
+def send_password_reset_email_task(user_id):
     try:
-        send_mail(
+        user = CustomUser.objects.get(pk=user_id)
-            subject=subject,
+    except CustomUser.DoesNotExist:
-            message=message if message else '',
+        logger.info(f"Task send_password_reset_email has failed. Invalid User ID was sent.")
-            from_email=None,
+        return 0
-            recipient_list=recipients,
+    
-            fail_silently=False,
+    uid = urlsafe_base64_encode(force_bytes(user.pk))
-            html_message=html_message
+    token = password_reset_token.make_token(user)
-        )
+    reset_url = f"{settings.FRONTEND_URL}/reset-password/{uid}/{token}"
-        if settings.EMAIL_BACKEND == 'django.core.mail.backends.console.EmailBackend':
+
-            logger.debug("\nEMAIL OBSAH:\n", html_message if html_message else message, "\nKONEC OBSAHU")
+    context = {
-        return True
+        "user": _build_user_template_ctx(user),
-    except Exception as e:
+        "action_url": reset_url,
-        logger.error(f"E-mail se neodeslal: {e}")
+        "frontend_url": settings.FRONTEND_URL,
-        return False
+        "cta_label": "Obnovit heslo",
+    }
+
+    send_email_with_context(
+        recipients=user.email,
+        subject="Obnova hesla",
+        template_name="email/password_reset.txt",
+        html_template_name="email/password_reset.html",
+        context=context,
+    )

backend/account/templates/emails/email_verification.html

@@ -1,19 +1,46 @@
-<!DOCTYPE html>
+<!doctype html>
 <html lang="cs">
-<head>
+  <body style="margin:0; padding:0; background-color:#f5f7fb;">
-    <meta charset="UTF-8">
+    <table role="presentation" cellpadding="0" cellspacing="0" border="0" width="100%" style="background-color:#f5f7fb;">
-    <title>Ověření e-mailu</title>
+      <tr>
-    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet">
+        <td align="center" style="padding:24px;">
-</head>
+          <table role="presentation" cellpadding="0" cellspacing="0" border="0" width="600" style="width:600px; max-width:100%; background-color:#ffffff; border:1px solid #e5e7eb;">
-<body>
+            <tr>
-    <div class="container mt-5">
+              <td style="background-color:#111827; color:#ffffff; font-family:Arial, Helvetica, sans-serif; font-size:18px; font-weight:bold; padding:16px 20px;">
-        <div class="card">
+                Ověření e‑mailu
-            <div class="card-body">
+              </td>
-                <h2 class="card-title">Ověření e-mailu</h2>
+            </tr>
-                <p class="card-text">Ověřte svůj e-mail kliknutím na odkaz níže:</p>
+            <tr>
-                <a href="{{ verification_url }}" class="btn btn-success">Ověřit e-mail</a>
+              <td style="padding:20px; font-family:Arial, Helvetica, sans-serif; font-size:14px; color:#1f2937; line-height:1.6;">
-            </div>
+                {% with name=user.first_name|default:user.firstname|default:user.get_full_name %}
-        </div>
+                <p style="margin:0 0 12px 0;">Dobrý den{% if name %} {{ name }}{% endif %},</p>
-    </div>
+                {% endwith %}
-</body>
+                <p style="margin:0 0 16px 0;">Děkujeme za registraci. Prosíme, ověřte svou e‑mailovou adresu kliknutím na tlačítko níže.</p>
+
+                {% if action_url and cta_label %}
+                <table role="presentation" cellpadding="0" cellspacing="0" border="0" style="margin:16px 0;">
+                  <tr>
+                    <td bgcolor="#2563eb" style="border-radius:6px;">
+                      <a href="{{ action_url }}" target="_blank" style="display:inline-block; padding:10px 16px; font-family:Arial, Helvetica, sans-serif; font-size:14px; color:#ffffff; text-decoration:none; font-weight:bold;">
+                        {{ cta_label }}
+                      </a>
+                    </td>
+                  </tr>
+                </table>
+                <p style="margin:0; color:#6b7280; font-size:12px;">Pokud tlačítko nefunguje, zkopírujte do prohlížeče tento odkaz:<br><span style="word-break:break-all;">{{ action_url }}</span></p>
+                {% endif %}
+              </td>
+            </tr>
+          </table>
+          <table role="presentation" cellpadding="0" cellspacing="0" border="0" width="600" style="width:600px; max-width:100%; margin-top:12px;">
+            <tr>
+              <td align="center" style="font-family:Arial, Helvetica, sans-serif; font-size:12px; color:#6b7280;">
+                Tento e‑mail byl odeslán z aplikace e‑tržnice.
+              </td>
+            </tr>
+          </table>
+        </td>
+      </tr>
+    </table>
+  </body>
 </html>

backend/account/templates/emails/email_verification.txt

@@ -0,0 +1,7 @@
+{% with name=user.first_name|default:user.firstname|default:user.get_full_name %}Dobrý den{% if name %} {{ name }}{% endif %},{% endwith %}
+
+Děkujeme za registraci. Prosíme, ověřte svou e‑mailovou adresu kliknutím na následující odkaz:
+
+{{ action_url }}
+
+Pokud jste účet nevytvořili vy, tento e‑mail ignorujte.

backend/account/templates/emails/password_reset.html

@@ -1,19 +1,46 @@
-<!DOCTYPE html>
+<!doctype html>
 <html lang="cs">
-<head>
+  <body style="margin:0; padding:0; background-color:#f5f7fb;">
-    <meta charset="UTF-8">
+    <table role="presentation" cellpadding="0" cellspacing="0" border="0" width="100%" style="background-color:#f5f7fb;">
-    <title>Obnova hesla</title>
+      <tr>
-    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet">
+        <td align="center" style="padding:24px;">
-</head>
+          <table role="presentation" cellpadding="0" cellspacing="0" border="0" width="600" style="width:600px; max-width:100%; background-color:#ffffff; border:1px solid #e5e7eb;">
-<body>
+            <tr>
-    <div class="container mt-5">
+              <td style="background-color:#111827; color:#ffffff; font-family:Arial, Helvetica, sans-serif; font-size:18px; font-weight:bold; padding:16px 20px;">
-        <div class="card">
+                Obnova hesla
-            <div class="card-body">
+              </td>
-                <h2 class="card-title">Obnova hesla</h2>
+            </tr>
-                <p class="card-text">Pro obnovu hesla klikněte na následující odkaz:</p>
+            <tr>
-                <a href="{{ reset_url }}" class="btn btn-primary">Obnovit heslo</a>
+              <td style="padding:20px; font-family:Arial, Helvetica, sans-serif; font-size:14px; color:#1f2937; line-height:1.6;">
-            </div>
+                {% with name=user.first_name|default:user.firstname|default:user.get_full_name %}
-        </div>
+                <p style="margin:0 0 12px 0;">Dobrý den{% if name %} {{ name }}{% endif %},</p>
-    </div>
+                {% endwith %}
-</body>
+                <p style="margin:0 0 12px 0;">Obdrželi jste tento e‑mail, protože byla požádána obnova hesla k vašemu účtu. Pokud jste o změnu nepožádali, tento e‑mail ignorujte.</p>
+
+                {% if action_url and cta_label %}
+                <table role="presentation" cellpadding="0" cellspacing="0" border="0" style="margin:16px 0;">
+                  <tr>
+                    <td bgcolor="#2563eb" style="border-radius:6px;">
+                      <a href="{{ action_url }}" target="_blank" style="display:inline-block; padding:10px 16px; font-family:Arial, Helvetica, sans-serif; font-size:14px; color:#ffffff; text-decoration:none; font-weight:bold;">
+                        {{ cta_label }}
+                      </a>
+                    </td>
+                  </tr>
+                </table>
+                <p style="margin:0; color:#6b7280; font-size:12px;">Pokud tlačítko nefunguje, zkopírujte do prohlížeče tento odkaz:<br><span style="word-break:break-all;">{{ action_url }}</span></p>
+                {% endif %}
+              </td>
+            </tr>
+          </table>
+          <table role="presentation" cellpadding="0" cellspacing="0" border="0" width="600" style="width:600px; max-width:100%; margin-top:12px;">
+            <tr>
+              <td align="center" style="font-family:Arial, Helvetica, sans-serif; font-size:12px; color:#6b7280;">
+                Tento e‑mail byl odeslán z aplikace e‑tržnice.
+              </td>
+            </tr>
+          </table>
+        </td>
+      </tr>
+    </table>
+  </body>
 </html>

backend/account/templates/emails/password_reset.txt

@@ -0,0 +1,7 @@
+{% with name=user.first_name|default:user.firstname|default:user.get_full_name %}Dobrý den{% if name %} {{ name }}{% endif %},{% endwith %}
+
+Obdrželi jste tento e‑mail, protože byla požádána obnova hesla k vašemu účtu.
+Pokud jste o změnu nepožádali, tento e‑mail ignorujte.
+
+Pro nastavení nového hesla použijte tento odkaz:
+{{ action_url }}

backend/account/templates/emails/test.html

@@ -0,0 +1,44 @@
+<!doctype html>
+<html lang="cs">
+  <body style="margin:0; padding:0; background-color:#f5f7fb;">
+    <table role="presentation" cellpadding="0" cellspacing="0" border="0" width="100%" style="background-color:#f5f7fb;">
+      <tr>
+        <td align="center" style="padding:24px;">
+          <table role="presentation" cellpadding="0" cellspacing="0" border="0" width="600" style="width:600px; max-width:100%; background-color:#ffffff; border:1px solid #e5e7eb;">
+            <tr>
+              <td style="background-color:#111827; color:#ffffff; font-family:Arial, Helvetica, sans-serif; font-size:18px; font-weight:bold; padding:16px 20px;">
+                Testovací e‑mail
+              </td>
+            </tr>
+            <tr>
+              <td style="padding:20px; font-family:Arial, Helvetica, sans-serif; font-size:14px; color:#1f2937; line-height:1.6;">
+                <p style="margin:0 0 12px 0;">Dobrý den,</p>
+                <p style="margin:0 0 16px 0;">Toto je testovací e‑mail z aplikace e‑tržnice.</p>
+
+                {% if action_url and cta_label %}
+                <table role="presentation" cellpadding="0" cellspacing="0" border="0" style="margin:16px 0;">
+                  <tr>
+                    <td bgcolor="#2563eb" style="border-radius:6px;">
+                      <a href="{{ action_url }}" target="_blank" style="display:inline-block; padding:10px 16px; font-family:Arial, Helvetica, sans-serif; font-size:14px; color:#ffffff; text-decoration:none; font-weight:bold;">
+                        {{ cta_label }}
+                      </a>
+                    </td>
+                  </tr>
+                </table>
+                <p style="margin:0; color:#6b7280; font-size:12px;">Pokud tlačítko nefunguje, zkopírujte do prohlížeče tento odkaz:<br><span style="word-break:break-all;">{{ action_url }}</span></p>
+                {% endif %}
+              </td>
+            </tr>
+          </table>
+          <table role="presentation" cellpadding="0" cellspacing="0" border="0" width="600" style="width:600px; max-width:100%; margin-top:12px;">
+            <tr>
+              <td align="center" style="font-family:Arial, Helvetica, sans-serif; font-size:12px; color:#6b7280;">
+                Tento e‑mail byl odeslán z aplikace e‑tržnice.
+              </td>
+            </tr>
+          </table>
+        </td>
+      </tr>
+    </table>
+  </body>
+</html>

backend/account/templates/emails/test.txt

@@ -0,0 +1,6 @@
+Dobrý den,
+
+Toto je testovací e‑mail z aplikace e‑tržnice.
+
+Odkaz na aplikaci:
+{{ action_url }}

backend/account/tests.py

@@ -1,3 +1,28 @@
 from django.test import TestCase
+from django.contrib.auth import get_user_model
+from rest_framework.test import APIClient
 
-# Create your tests here.
+
+class UserViewAnonymousTests(TestCase):
+	def setUp(self):
+		self.client = APIClient()
+		User = get_user_model()
+		self.target_user = User.objects.create_user(
+			username="target",
+			email="target@example.com",
+			password="pass1234",
+			is_active=True,
+		)
+
+	def test_anonymous_update_user_is_forbidden_and_does_not_crash(self):
+		url = f"/api/account/users/{self.target_user.id}/"
+		payload = {"username": "newname", "email": self.target_user.email}
+		resp = self.client.put(url, data=payload, format="json")
+		# Expect 403 Forbidden (permission denied), but most importantly no 500 error
+		self.assertEqual(resp.status_code, 403, msg=f"Unexpected status: {resp.status_code}, body={getattr(resp, 'data', resp.content)}")
+
+	def test_anonymous_retrieve_user_is_unauthorized(self):
+		url = f"/api/account/users/{self.target_user.id}/"
+		resp = self.client.get(url)
+		# Retrieve requires authentication per view; expect 401 Unauthorized
+		self.assertEqual(resp.status_code, 401, msg=f"Unexpected status: {resp.status_code}, body={getattr(resp, 'data', resp.content)}")

backend/account/views.py

@@ -160,7 +160,7 @@ class CookieTokenRefreshView(APIView):
         except TokenError:
             return Response({"detail": "Invalid refresh token."}, status=status.HTTP_401_UNAUTHORIZED)
         
-#---------------------------------------------LOGIN/LOGOUT------------------------------------------------
+#---------------------------------------------LOGOUT------------------------------------------------
 
 @extend_schema(
     tags=["Authentication"],
@@ -229,13 +229,17 @@ class UserView(viewsets.ModelViewSet):
 
         # Only admin or the user themselves can update or delete
         elif self.action in ['update', 'partial_update', 'destroy']:
-            if self.request.user.role == 'admin':
+            user = getattr(self, 'request', None) and getattr(self.request, 'user', None)
+            # Admins can modify any user
+            if user and getattr(user, 'is_authenticated', False) and getattr(user, 'role', None) == 'admin':
                 return [OnlyRolesAllowed("admin")()]
-            elif self.kwargs.get('pk') and str(self.request.user.id) == self.kwargs['pk']:
+            
+            # Users can modify their own record
+            if user and getattr(user, 'is_authenticated', False) and self.kwargs.get('pk') and str(getattr(user, 'id', '')) == self.kwargs['pk']:
                 return [IsAuthenticated()]
-            else:
+            
-                # fallback - deny access
+            # Fallback - deny access (prevents AttributeError for AnonymousUser)
-                return [OnlyRolesAllowed("admin")()]
+            return [OnlyRolesAllowed("admin")()]
 
         # Any authenticated user can retrieve (view) any user's profile
         elif self.action == 'retrieve':

backend/advertisement/admin.py

@@ -0,0 +1,3 @@
+from django.contrib import admin
+
+# Register your models here.

backend/advertisement/apps.py

@@ -0,0 +1,6 @@
+from django.apps import AppConfig
+
+
+class AdvertisementConfig(AppConfig):
+    default_auto_field = 'django.db.models.BigAutoField'
+    name = 'advertisement'

backend/advertisement/models.py

@@ -0,0 +1,3 @@
+from django.db import models
+
+# Create your models here.

backend/advertisement/tasks.py

@@ -0,0 +1,2 @@
+#udělat zasílaní reklamních emailů uživatelům.
+#newletter --> když se vytvoří nový record s reklamou email se uloží pomocí zaškrtnutí tlačítka v záznamu

backend/advertisement/tests.py

@@ -0,0 +1,3 @@
+from django.test import TestCase
+
+# Create your tests here.