From 3d5850099708590447dd9f82e8f333ff2713ff9f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 1 Jul 2025 16:55:51 +0200
Subject: [PATCH 01/20] Supabase local development setup

---
 package-lock.json                             | 122 ++-
 package.json                                  |   1 +
 supabase/.gitignore                           |   8 +
 supabase/config.toml                          | 322 +++++++
 .../20250701144235_remote_schema.sql          | 827 ++++++++++++++++++
 .../20250701144258_remote_schema.sql          |  34 +
 6 files changed, 1307 insertions(+), 7 deletions(-)
 create mode 100644 supabase/.gitignore
 create mode 100644 supabase/config.toml
 create mode 100644 supabase/migrations/20250701144235_remote_schema.sql
 create mode 100644 supabase/migrations/20250701144258_remote_schema.sql

diff --git a/package-lock.json b/package-lock.json
index 08b4194..914a67e 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -26,6 +26,7 @@
 				"prettier": "^3.4.2",
 				"prettier-plugin-svelte": "^3.3.3",
 				"prettier-plugin-tailwindcss": "^0.6.11",
+				"supabase": "^2.30.4",
 				"svelte": "^5.0.0",
 				"svelte-check": "^4.0.0",
 				"tailwindcss": "^4.0.0",
@@ -1515,6 +1516,23 @@
 				"node": "*"
 			}
 		},
+		"node_modules/bin-links": {
+			"version": "5.0.0",
+			"resolved": "https://registry.npmjs.org/bin-links/-/bin-links-5.0.0.tgz",
+			"integrity": "sha512-sdleLVfCjBtgO5cNjA2HVRvWBJAHs4zwenaCPMNJAJU0yNxpzj80IpjOIimkpkr+mhlA+how5poQtt53PygbHA==",
+			"dev": true,
+			"license": "ISC",
+			"dependencies": {
+				"cmd-shim": "^7.0.0",
+				"npm-normalize-package-bin": "^4.0.0",
+				"proc-log": "^5.0.0",
+				"read-cmd-shim": "^5.0.0",
+				"write-file-atomic": "^6.0.0"
+			},
+			"engines": {
+				"node": "^18.17.0 || >=20.5.0"
+			}
+		},
 		"node_modules/buffer-equal-constant-time": {
 			"version": "1.0.1",
 			"resolved": "https://registry.npmjs.org/buffer-equal-constant-time/-/buffer-equal-constant-time-1.0.1.tgz",
@@ -1605,6 +1623,16 @@
 				"node": ">=6"
 			}
 		},
+		"node_modules/cmd-shim": {
+			"version": "7.0.0",
+			"resolved": "https://registry.npmjs.org/cmd-shim/-/cmd-shim-7.0.0.tgz",
+			"integrity": "sha512-rtpaCbr164TPPh+zFdkWpCyZuKkjpAzODfaZCf/SVJZzJN+4bHQb/LP3Jzq5/+84um3XXY8r548XiWKSborwVw==",
+			"dev": true,
+			"license": "ISC",
+			"engines": {
+				"node": "^18.17.0 || >=20.5.0"
+			}
+		},
 		"node_modules/color-convert": {
 			"version": "2.0.1",
 			"resolved": "https://registry.npmjs.org/color-convert/-/color-convert-2.0.1.tgz",
@@ -2149,6 +2177,16 @@
 				"node": ">= 14"
 			}
 		},
+		"node_modules/imurmurhash": {
+			"version": "0.1.4",
+			"resolved": "https://registry.npmjs.org/imurmurhash/-/imurmurhash-0.1.4.tgz",
+			"integrity": "sha512-JmXMZ6wuvDmLiHEml9ykzqO6lwFbof0GG4IkcGaENdCRDDmMVnny7s5HsIgHCbaq0w2MyPhDqkhTUgS2LU2PHA==",
+			"dev": true,
+			"license": "MIT",
+			"engines": {
+				"node": ">=0.8.19"
+			}
+		},
 		"node_modules/is-core-module": {
 			"version": "2.16.1",
 			"resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.16.1.tgz",
@@ -2643,6 +2681,16 @@
 				"url": "https://opencollective.com/node-fetch"
 			}
 		},
+		"node_modules/npm-normalize-package-bin": {
+			"version": "4.0.0",
+			"resolved": "https://registry.npmjs.org/npm-normalize-package-bin/-/npm-normalize-package-bin-4.0.0.tgz",
+			"integrity": "sha512-TZKxPvItzai9kN9H/TkmCtx/ZN/hvr3vUycjlfmH0ootY9yFBzNOpiXAdIn1Iteqsvk4lQn6B5PTrt+n6h8k/w==",
+			"dev": true,
+			"license": "ISC",
+			"engines": {
+				"node": "^18.17.0 || >=20.5.0"
+			}
+		},
 		"node_modules/object-inspect": {
 			"version": "1.13.4",
 			"resolved": "https://registry.npmjs.org/object-inspect/-/object-inspect-1.13.4.tgz",
@@ -2888,6 +2936,16 @@
 				}
 			}
 		},
+		"node_modules/proc-log": {
+			"version": "5.0.0",
+			"resolved": "https://registry.npmjs.org/proc-log/-/proc-log-5.0.0.tgz",
+			"integrity": "sha512-Azwzvl90HaF0aCz1JrDdXQykFakSSNPaPoiZ9fm5qJIMHioDZEi7OAdRwSm6rSoPtY3Qutnm3L7ogmg3dc+wbQ==",
+			"dev": true,
+			"license": "ISC",
+			"engines": {
+				"node": "^18.17.0 || >=20.5.0"
+			}
+		},
 		"node_modules/qrcode": {
 			"version": "1.5.4",
 			"resolved": "https://registry.npmjs.org/qrcode/-/qrcode-1.5.4.tgz",
@@ -2932,6 +2990,16 @@
 				"quoted-printable": "bin/quoted-printable"
 			}
 		},
+		"node_modules/read-cmd-shim": {
+			"version": "5.0.0",
+			"resolved": "https://registry.npmjs.org/read-cmd-shim/-/read-cmd-shim-5.0.0.tgz",
+			"integrity": "sha512-SEbJV7tohp3DAAILbEMPXavBjAnMN0tVnh4+9G8ihV4Pq3HYF9h8QNez9zkJ1ILkv9G2BjdzwctznGZXgu/HGw==",
+			"dev": true,
+			"license": "ISC",
+			"engines": {
+				"node": "^18.17.0 || >=20.5.0"
+			}
+		},
 		"node_modules/readdirp": {
 			"version": "4.1.2",
 			"resolved": "https://registry.npmjs.org/readdirp/-/readdirp-4.1.2.tgz",
@@ -3136,6 +3204,19 @@
 				"url": "https://github.com/sponsors/ljharb"
 			}
 		},
+		"node_modules/signal-exit": {
+			"version": "4.1.0",
+			"resolved": "https://registry.npmjs.org/signal-exit/-/signal-exit-4.1.0.tgz",
+			"integrity": "sha512-bzyZ1e88w9O1iNJbKnOlvYTrWPDl46O1bG0D3XInv+9tkPrxrN8jUUTiFlDkkmKWgn1M6CfIA13SuGqOa9Korw==",
+			"dev": true,
+			"license": "ISC",
+			"engines": {
+				"node": ">=14"
+			},
+			"funding": {
+				"url": "https://github.com/sponsors/isaacs"
+			}
+		},
 		"node_modules/simple-icons": {
 			"version": "15.3.0",
 			"resolved": "https://registry.npmjs.org/simple-icons/-/simple-icons-15.3.0.tgz",
@@ -3204,6 +3285,26 @@
 				"node": ">=8"
 			}
 		},
+		"node_modules/supabase": {
+			"version": "2.30.4",
+			"resolved": "https://registry.npmjs.org/supabase/-/supabase-2.30.4.tgz",
+			"integrity": "sha512-AOCyd2vmBBMTXbnahiCU0reRNxKS4n5CrPciUF2tcTrQ8dLzl1HwcLfe5DrG8E0QRcKHPDdzprmh/2+y4Ta5MA==",
+			"dev": true,
+			"hasInstallScript": true,
+			"license": "MIT",
+			"dependencies": {
+				"bin-links": "^5.0.0",
+				"https-proxy-agent": "^7.0.2",
+				"node-fetch": "^3.3.2",
+				"tar": "7.4.3"
+			},
+			"bin": {
+				"supabase": "bin/supabase"
+			},
+			"engines": {
+				"npm": ">=8"
+			}
+		},
 		"node_modules/supports-preserve-symlinks-flag": {
 			"version": "1.0.0",
 			"resolved": "https://registry.npmjs.org/supports-preserve-symlinks-flag/-/supports-preserve-symlinks-flag-1.0.0.tgz",
@@ -3265,13 +3366,6 @@
 				"typescript": ">=5.0.0"
 			}
 		},
-		"node_modules/svelte-kit": {
-			"version": "1.2.0",
-			"resolved": "https://registry.npmjs.org/svelte-kit/-/svelte-kit-1.2.0.tgz",
-			"integrity": "sha512-RRaOHBhpDv4g2v9tcq8iNw055Pt0MlLps6JVA7/40f4KAbtztXSI4T6MZYbHRirO708urfAAMx6Qow+tQfCHug==",
-			"hasInstallScript": true,
-			"license": "MIT"
-		},
 		"node_modules/tailwindcss": {
 			"version": "4.1.7",
 			"resolved": "https://registry.npmjs.org/tailwindcss/-/tailwindcss-4.1.7.tgz",
@@ -3551,6 +3645,20 @@
 				"node": ">=8"
 			}
 		},
+		"node_modules/write-file-atomic": {
+			"version": "6.0.0",
+			"resolved": "https://registry.npmjs.org/write-file-atomic/-/write-file-atomic-6.0.0.tgz",
+			"integrity": "sha512-GmqrO8WJ1NuzJ2DrziEI2o57jKAVIQNf8a18W3nCYU3H7PNWqCCVTeH6/NQE93CIllIgQS98rrmVkYgTX9fFJQ==",
+			"dev": true,
+			"license": "ISC",
+			"dependencies": {
+				"imurmurhash": "^0.1.4",
+				"signal-exit": "^4.0.1"
+			},
+			"engines": {
+				"node": "^18.17.0 || >=20.5.0"
+			}
+		},
 		"node_modules/ws": {
 			"version": "8.18.2",
 			"resolved": "https://registry.npmjs.org/ws/-/ws-8.18.2.tgz",
diff --git a/package.json b/package.json
index e904f68..b069470 100644
--- a/package.json
+++ b/package.json
@@ -22,6 +22,7 @@
 		"prettier": "^3.4.2",
 		"prettier-plugin-svelte": "^3.3.3",
 		"prettier-plugin-tailwindcss": "^0.6.11",
+		"supabase": "^2.30.4",
 		"svelte": "^5.0.0",
 		"svelte-check": "^4.0.0",
 		"tailwindcss": "^4.0.0",
diff --git a/supabase/.gitignore b/supabase/.gitignore
new file mode 100644
index 0000000..ad9264f
--- /dev/null
+++ b/supabase/.gitignore
@@ -0,0 +1,8 @@
+# Supabase
+.branches
+.temp
+
+# dotenvx
+.env.keys
+.env.local
+.env.*.local
diff --git a/supabase/config.toml b/supabase/config.toml
new file mode 100644
index 0000000..262d9ee
--- /dev/null
+++ b/supabase/config.toml
@@ -0,0 +1,322 @@
+# For detailed configuration reference documentation, visit:
+# https://supabase.com/docs/guides/local-development/cli/config
+# A string used to distinguish different Supabase projects on the same host. Defaults to the
+# working directory name when running `supabase init`.
+project_id = "scan-wave"
+
+[api]
+enabled = true
+# Port to use for the API URL.
+port = 54321
+# Schemas to expose in your API. Tables, views and stored procedures in this schema will get API
+# endpoints. `public` and `graphql_public` schemas are included by default.
+schemas = ["public", "graphql_public"]
+# Extra schemas to add to the search_path of every request.
+extra_search_path = ["public", "extensions"]
+# The maximum number of rows returns from a view, table, or stored procedure. Limits payload size
+# for accidental or malicious requests.
+max_rows = 1000
+
+[api.tls]
+# Enable HTTPS endpoints locally using a self-signed certificate.
+enabled = false
+
+[db]
+# Port to use for the local database URL.
+port = 54322
+# Port used by db diff command to initialize the shadow database.
+shadow_port = 54320
+# The database major version to use. This has to be the same as your remote database's. Run `SHOW
+# server_version;` on the remote database to check.
+major_version = 17
+
+[db.pooler]
+enabled = false
+# Port to use for the local connection pooler.
+port = 54329
+# Specifies when a server connection can be reused by other clients.
+# Configure one of the supported pooler modes: `transaction`, `session`.
+pool_mode = "transaction"
+# How many server connections to allow per user/database pair.
+default_pool_size = 20
+# Maximum number of client connections allowed.
+max_client_conn = 100
+
+# [db.vault]
+# secret_key = "env(SECRET_VALUE)"
+
+[db.migrations]
+# If disabled, migrations will be skipped during a db push or reset.
+enabled = true
+# Specifies an ordered list of schema files that describe your database.
+# Supports glob patterns relative to supabase directory: "./schemas/*.sql"
+schema_paths = []
+
+[db.seed]
+# If enabled, seeds the database after migrations during a db reset.
+enabled = true
+# Specifies an ordered list of seed files to load during db reset.
+# Supports glob patterns relative to supabase directory: "./seeds/*.sql"
+sql_paths = ["./seed.sql"]
+
+[realtime]
+enabled = true
+# Bind realtime via either IPv4 or IPv6. (default: IPv4)
+# ip_version = "IPv6"
+# The maximum length in bytes of HTTP request headers. (default: 4096)
+# max_header_length = 4096
+
+[studio]
+enabled = true
+# Port to use for Supabase Studio.
+port = 54323
+# External URL of the API server that frontend connects to.
+api_url = "http://127.0.0.1"
+# OpenAI API Key to use for Supabase AI in the Supabase Studio.
+openai_api_key = "env(OPENAI_API_KEY)"
+
+# Email testing server. Emails sent with the local dev setup are not actually sent - rather, they
+# are monitored, and you can view the emails that would have been sent from the web interface.
+[inbucket]
+enabled = true
+# Port to use for the email testing server web interface.
+port = 54324
+# Uncomment to expose additional ports for testing user applications that send emails.
+# smtp_port = 54325
+# pop3_port = 54326
+# admin_email = "admin@email.com"
+# sender_name = "Admin"
+
+[storage]
+enabled = true
+# The maximum file size allowed (e.g. "5MB", "500KB").
+file_size_limit = "50MiB"
+
+# Image transformation API is available to Supabase Pro plan.
+# [storage.image_transformation]
+# enabled = true
+
+# Uncomment to configure local storage buckets
+# [storage.buckets.images]
+# public = false
+# file_size_limit = "50MiB"
+# allowed_mime_types = ["image/png", "image/jpeg"]
+# objects_path = "./images"
+
+[auth]
+enabled = true
+# The base URL of your website. Used as an allow-list for redirects and for constructing URLs used
+# in emails.
+site_url = "http://127.0.0.1:3000"
+# A list of *exact* URLs that auth providers are permitted to redirect to post authentication.
+additional_redirect_urls = ["https://127.0.0.1:3000"]
+# How long tokens are valid for, in seconds. Defaults to 3600 (1 hour), maximum 604,800 (1 week).
+jwt_expiry = 3600
+# If disabled, the refresh token will never expire.
+enable_refresh_token_rotation = true
+# Allows refresh tokens to be reused after expiry, up to the specified interval in seconds.
+# Requires enable_refresh_token_rotation = true.
+refresh_token_reuse_interval = 10
+# Allow/disallow new user signups to your project.
+enable_signup = true
+# Allow/disallow anonymous sign-ins to your project.
+enable_anonymous_sign_ins = false
+# Allow/disallow testing manual linking of accounts
+enable_manual_linking = false
+# Passwords shorter than this value will be rejected as weak. Minimum 6, recommended 8 or more.
+minimum_password_length = 6
+# Passwords that do not meet the following requirements will be rejected as weak. Supported values
+# are: `letters_digits`, `lower_upper_letters_digits`, `lower_upper_letters_digits_symbols`
+password_requirements = ""
+
+[auth.rate_limit]
+# Number of emails that can be sent per hour. Requires auth.email.smtp to be enabled.
+email_sent = 2
+# Number of SMS messages that can be sent per hour. Requires auth.sms to be enabled.
+sms_sent = 30
+# Number of anonymous sign-ins that can be made per hour per IP address. Requires enable_anonymous_sign_ins = true.
+anonymous_users = 30
+# Number of sessions that can be refreshed in a 5 minute interval per IP address.
+token_refresh = 150
+# Number of sign up and sign-in requests that can be made in a 5 minute interval per IP address (excludes anonymous users).
+sign_in_sign_ups = 30
+# Number of OTP / Magic link verifications that can be made in a 5 minute interval per IP address.
+token_verifications = 30
+# Number of Web3 logins that can be made in a 5 minute interval per IP address.
+web3 = 30
+
+# Configure one of the supported captcha providers: `hcaptcha`, `turnstile`.
+# [auth.captcha]
+# enabled = true
+# provider = "hcaptcha"
+# secret = ""
+
+[auth.email]
+# Allow/disallow new user signups via email to your project.
+enable_signup = true
+# If enabled, a user will be required to confirm any email change on both the old, and new email
+# addresses. If disabled, only the new email is required to confirm.
+double_confirm_changes = true
+# If enabled, users need to confirm their email address before signing in.
+enable_confirmations = false
+# If enabled, users will need to reauthenticate or have logged in recently to change their password.
+secure_password_change = false
+# Controls the minimum amount of time that must pass before sending another signup confirmation or password reset email.
+max_frequency = "1s"
+# Number of characters used in the email OTP.
+otp_length = 6
+# Number of seconds before the email OTP expires (defaults to 1 hour).
+otp_expiry = 3600
+
+# Use a production-ready SMTP server
+# [auth.email.smtp]
+# enabled = true
+# host = "smtp.sendgrid.net"
+# port = 587
+# user = "apikey"
+# pass = "env(SENDGRID_API_KEY)"
+# admin_email = "admin@email.com"
+# sender_name = "Admin"
+
+# Uncomment to customize email template
+# [auth.email.template.invite]
+# subject = "You have been invited"
+# content_path = "./supabase/templates/invite.html"
+
+[auth.sms]
+# Allow/disallow new user signups via SMS to your project.
+enable_signup = false
+# If enabled, users need to confirm their phone number before signing in.
+enable_confirmations = false
+# Template for sending OTP to users
+template = "Your code is {{ .Code }}"
+# Controls the minimum amount of time that must pass before sending another sms otp.
+max_frequency = "5s"
+
+# Use pre-defined map of phone number to OTP for testing.
+# [auth.sms.test_otp]
+# 4152127777 = "123456"
+
+# Configure logged in session timeouts.
+# [auth.sessions]
+# Force log out after the specified duration.
+# timebox = "24h"
+# Force log out if the user has been inactive longer than the specified duration.
+# inactivity_timeout = "8h"
+
+# This hook runs before a new user is created and allows developers to reject the request based on the incoming user object.
+# [auth.hook.before_user_created]
+# enabled = true
+# uri = "pg-functions://postgres/auth/before-user-created-hook"
+
+# This hook runs before a token is issued and allows you to add additional claims based on the authentication method used.
+# [auth.hook.custom_access_token]
+# enabled = true
+# uri = "pg-functions://<database>/<schema>/<hook_name>"
+
+# Configure one of the supported SMS providers: `twilio`, `twilio_verify`, `messagebird`, `textlocal`, `vonage`.
+[auth.sms.twilio]
+enabled = false
+account_sid = ""
+message_service_sid = ""
+# DO NOT commit your Twilio auth token to git. Use environment variable substitution instead:
+auth_token = "env(SUPABASE_AUTH_SMS_TWILIO_AUTH_TOKEN)"
+
+# Multi-factor-authentication is available to Supabase Pro plan.
+[auth.mfa]
+# Control how many MFA factors can be enrolled at once per user.
+max_enrolled_factors = 10
+
+# Control MFA via App Authenticator (TOTP)
+[auth.mfa.totp]
+enroll_enabled = false
+verify_enabled = false
+
+# Configure MFA via Phone Messaging
+[auth.mfa.phone]
+enroll_enabled = false
+verify_enabled = false
+otp_length = 6
+template = "Your code is {{ .Code }}"
+max_frequency = "5s"
+
+# Configure MFA via WebAuthn
+# [auth.mfa.web_authn]
+# enroll_enabled = true
+# verify_enabled = true
+
+# Use an external OAuth provider. The full list of providers are: `apple`, `azure`, `bitbucket`,
+# `discord`, `facebook`, `github`, `gitlab`, `google`, `keycloak`, `linkedin_oidc`, `notion`, `twitch`,
+# `twitter`, `slack`, `spotify`, `workos`, `zoom`.
+[auth.external.apple]
+enabled = false
+client_id = ""
+# DO NOT commit your OAuth provider secret to git. Use environment variable substitution instead:
+secret = "env(SUPABASE_AUTH_EXTERNAL_APPLE_SECRET)"
+# Overrides the default auth redirectUrl.
+redirect_uri = ""
+# Overrides the default auth provider URL. Used to support self-hosted gitlab, single-tenant Azure,
+# or any other third-party OIDC providers.
+url = ""
+# If enabled, the nonce check will be skipped. Required for local sign in with Google auth.
+skip_nonce_check = false
+
+# Allow Solana wallet holders to sign in to your project via the Sign in with Solana (SIWS, EIP-4361) standard.
+# You can configure "web3" rate limit in the [auth.rate_limit] section and set up [auth.captcha] if self-hosting.
+[auth.web3.solana]
+enabled = false
+
+# Use Firebase Auth as a third-party provider alongside Supabase Auth.
+[auth.third_party.firebase]
+enabled = false
+# project_id = "my-firebase-project"
+
+# Use Auth0 as a third-party provider alongside Supabase Auth.
+[auth.third_party.auth0]
+enabled = false
+# tenant = "my-auth0-tenant"
+# tenant_region = "us"
+
+# Use AWS Cognito (Amplify) as a third-party provider alongside Supabase Auth.
+[auth.third_party.aws_cognito]
+enabled = false
+# user_pool_id = "my-user-pool-id"
+# user_pool_region = "us-east-1"
+
+# Use Clerk as a third-party provider alongside Supabase Auth.
+[auth.third_party.clerk]
+enabled = false
+# Obtain from https://clerk.com/setup/supabase
+# domain = "example.clerk.accounts.dev"
+
+[edge_runtime]
+enabled = true
+# Configure one of the supported request policies: `oneshot`, `per_worker`.
+# Use `oneshot` for hot reload, or `per_worker` for load testing.
+policy = "oneshot"
+# Port to attach the Chrome inspector for debugging edge functions.
+inspector_port = 8083
+# The Deno major version to use.
+deno_version = 1
+
+# [edge_runtime.secrets]
+# secret_key = "env(SECRET_VALUE)"
+
+[analytics]
+enabled = true
+port = 54327
+# Configure one of the supported backends: `postgres`, `bigquery`.
+backend = "postgres"
+
+# Experimental features may be deprecated any time
+[experimental]
+# Configures Postgres storage engine to use OrioleDB (S3)
+orioledb_version = ""
+# Configures S3 bucket URL, eg. <bucket_name>.s3-<region>.amazonaws.com
+s3_host = "env(S3_HOST)"
+# Configures S3 bucket region, eg. us-east-1
+s3_region = "env(S3_REGION)"
+# Configures AWS_ACCESS_KEY_ID for S3 bucket
+s3_access_key = "env(S3_ACCESS_KEY)"
+# Configures AWS_SECRET_ACCESS_KEY for S3 bucket
+s3_secret_key = "env(S3_SECRET_KEY)"
diff --git a/supabase/migrations/20250701144235_remote_schema.sql b/supabase/migrations/20250701144235_remote_schema.sql
new file mode 100644
index 0000000..05aaa3b
--- /dev/null
+++ b/supabase/migrations/20250701144235_remote_schema.sql
@@ -0,0 +1,827 @@
+
+
+SET statement_timeout = 0;
+SET lock_timeout = 0;
+SET idle_in_transaction_session_timeout = 0;
+SET client_encoding = 'UTF8';
+SET standard_conforming_strings = on;
+SELECT pg_catalog.set_config('search_path', '', false);
+SET check_function_bodies = false;
+SET xmloption = content;
+SET client_min_messages = warning;
+SET row_security = off;
+
+
+CREATE EXTENSION IF NOT EXISTS "pg_cron" WITH SCHEMA "pg_catalog";
+
+
+
+
+
+
+COMMENT ON SCHEMA "public" IS 'standard public schema';
+
+
+
+CREATE EXTENSION IF NOT EXISTS "pg_graphql" WITH SCHEMA "graphql";
+
+
+
+
+
+
+CREATE EXTENSION IF NOT EXISTS "pg_stat_statements" WITH SCHEMA "extensions";
+
+
+
+
+
+
+CREATE EXTENSION IF NOT EXISTS "pgcrypto" WITH SCHEMA "extensions";
+
+
+
+
+
+
+CREATE EXTENSION IF NOT EXISTS "pgjwt" WITH SCHEMA "extensions";
+
+
+
+
+
+
+CREATE EXTENSION IF NOT EXISTS "supabase_vault" WITH SCHEMA "vault";
+
+
+
+
+
+
+CREATE EXTENSION IF NOT EXISTS "uuid-ossp" WITH SCHEMA "extensions";
+
+
+
+
+
+
+CREATE TYPE "public"."section_posititon" AS ENUM (
+    'events_manager',
+    'member'
+);
+
+
+ALTER TYPE "public"."section_posititon" OWNER TO "postgres";
+
+
+CREATE OR REPLACE FUNCTION "public"."archive_event"("_event_id" "uuid") RETURNS "void"
+    LANGUAGE "plpgsql" SECURITY DEFINER
+    AS $$
+DECLARE
+    v_total      bigint;
+    v_scanned    bigint;
+    v_evt        public.events%ROWTYPE;
+BEGIN
+    -------------------------------------------------------------------------
+    -- A. Fetch the event
+    -------------------------------------------------------------------------
+    SELECT * INTO v_evt
+    FROM public.events
+    WHERE id = _event_id;
+
+    IF NOT FOUND THEN
+        RAISE EXCEPTION 'archive_event_and_delete(): event % does not exist', _event_id;
+    END IF;
+
+    -------------------------------------------------------------------------
+    -- B. Count participants
+    -------------------------------------------------------------------------
+    SELECT  COUNT(*)                               AS total,
+            COUNT(*) FILTER (WHERE scanned)        AS scanned
+    INTO    v_total, v_scanned
+    FROM    public.participants
+    WHERE   event = _event_id;
+
+    -------------------------------------------------------------------------
+    -- C. Upsert into events_archived (now with section_id)
+    -------------------------------------------------------------------------
+    INSERT INTO public.events_archived (
+             id,           created_at,     date,         name,
+             section_id,   total_participants, scanned_participants )
+    VALUES ( v_evt.id,     clock_timestamp(), v_evt.date, v_evt.name,
+             v_evt.section_id, v_total,         v_scanned )
+    ON CONFLICT (id) DO UPDATE
+          SET created_at          = EXCLUDED.created_at,
+              date                = EXCLUDED.date,
+              name                = EXCLUDED.name,
+              section_id          = EXCLUDED.section_id,
+              total_participants  = EXCLUDED.total_participants,
+              scanned_participants= EXCLUDED.scanned_participants;
+
+    -------------------------------------------------------------------------
+    -- D. Delete original event row (participants cascade away)
+    -------------------------------------------------------------------------
+    DELETE FROM public.events
+    WHERE id = _event_id;
+END;
+$$;
+
+
+ALTER FUNCTION "public"."archive_event"("_event_id" "uuid") OWNER TO "postgres";
+
+
+CREATE OR REPLACE FUNCTION "public"."auto_archive_events"("_age_days" integer DEFAULT 7) RETURNS integer
+    LANGUAGE "plpgsql" SECURITY DEFINER
+    AS $$
+DECLARE
+    v_cnt       int := 0;
+    v_event_id  uuid;
+BEGIN
+    FOR v_event_id IN
+        SELECT id
+        FROM   public.events
+        WHERE  date IS NOT NULL
+          AND  date <= CURRENT_DATE - _age_days
+    LOOP
+        BEGIN
+            PERFORM public.archive_event(v_event_id);
+            v_cnt := v_cnt + 1;
+        EXCEPTION
+            WHEN others THEN
+                -- Optionally record the failure somewhere and continue
+                RAISE WARNING 'Failed to archive event %, %', v_event_id, SQLERRM;
+        END;
+    END LOOP;
+
+    RETURN v_cnt;
+END;
+$$;
+
+
+ALTER FUNCTION "public"."auto_archive_events"("_age_days" integer) OWNER TO "postgres";
+
+SET default_tablespace = '';
+
+SET default_table_access_method = "heap";
+
+
+CREATE TABLE IF NOT EXISTS "public"."events" (
+    "id" "uuid" DEFAULT "gen_random_uuid"() NOT NULL,
+    "created_at" timestamp with time zone DEFAULT "now"() NOT NULL,
+    "created_by" "uuid" DEFAULT "auth"."uid"(),
+    "name" "text",
+    "date" "date",
+    "section_id" "uuid"
+);
+
+
+ALTER TABLE "public"."events" OWNER TO "postgres";
+
+
+COMMENT ON TABLE "public"."events" IS 'Table of all events created';
+
+
+
+CREATE OR REPLACE FUNCTION "public"."create_event"("p_name" "text", "p_date" "date") RETURNS "public"."events"
+    LANGUAGE "plpgsql" SECURITY DEFINER
+    SET "search_path" TO 'public'
+    AS $$
+declare
+  v_user    uuid := auth.uid();                     -- current user
+  v_section uuid;                                   -- their section_id
+  v_evt     public.events%rowtype;                  -- the inserted event
+begin
+  -- 1) lookup the user's section
+  select section_id
+    into v_section
+    from public.profiles
+   where id = v_user;
+
+  if v_section is null then
+    raise exception 'no profile/section found for user %', v_user;
+  end if;
+
+  -- 2) insert into events, filling created_by and section_id
+  insert into public.events (
+    name,
+    date,
+    created_by,
+    section_id
+  )
+  values (
+    p_name,
+    p_date,
+    v_user,
+    v_section
+  )
+  returning * into v_evt;
+
+  -- 3) return the full row
+  return v_evt;
+end;
+$$;
+
+
+ALTER FUNCTION "public"."create_event"("p_name" "text", "p_date" "date") OWNER TO "postgres";
+
+
+CREATE TABLE IF NOT EXISTS "public"."participants" (
+    "id" "uuid" DEFAULT "gen_random_uuid"() NOT NULL,
+    "created_at" timestamp with time zone DEFAULT "now"() NOT NULL,
+    "created_by" "uuid" DEFAULT "auth"."uid"(),
+    "event" "uuid",
+    "name" "text",
+    "surname" "text",
+    "email" "text",
+    "scanned" boolean DEFAULT false,
+    "scanned_at" timestamp with time zone,
+    "scanned_by" "uuid",
+    "section_id" "uuid"
+);
+
+
+ALTER TABLE "public"."participants" OWNER TO "postgres";
+
+
+COMMENT ON TABLE "public"."participants" IS 'Table of all qrcodes issued';
+
+
+
+CREATE OR REPLACE FUNCTION "public"."create_qrcodes_bulk"("p_section_id" "uuid", "p_event_id" "uuid", "p_names" "text"[], "p_surnames" "text"[], "p_emails" "text"[]) RETURNS SETOF "public"."participants"
+    LANGUAGE "plpgsql" SECURITY DEFINER
+    SET "search_path" TO 'public', 'pg_temp'
+    AS $$BEGIN
+    -----------------------------------------------------------------
+    -- 1) keep the array-length check exactly as before
+    -----------------------------------------------------------------
+    IF array_length(p_names, 1)  IS DISTINCT FROM
+       array_length(p_surnames,1) OR
+       array_length(p_names, 1)  IS DISTINCT FROM
+       array_length(p_emails,  1) THEN
+       RAISE EXCEPTION
+         'Names, surnames and emails arrays must all be the same length';
+    END IF;
+
+    RETURN QUERY
+    INSERT INTO public.participants (section_id, event, name, surname, email)
+    SELECT  p_section_id,
+            p_event_id,
+            n, s, e
+    FROM   unnest(p_names, p_surnames, p_emails) AS u(n, s, e)
+    RETURNING *;
+END;$$;
+
+
+ALTER FUNCTION "public"."create_qrcodes_bulk"("p_section_id" "uuid", "p_event_id" "uuid", "p_names" "text"[], "p_surnames" "text"[], "p_emails" "text"[]) OWNER TO "postgres";
+
+
+CREATE OR REPLACE FUNCTION "public"."handle_new_user"() RETURNS "trigger"
+    LANGUAGE "plpgsql" SECURITY DEFINER
+    SET "search_path" TO 'public', 'auth'
+    AS $$begin
+  insert into public.profiles(id, display_name, created_at, updated_at)
+  values (new.id,
+          coalesce(new.raw_user_meta_data ->> 'display_name',   -- meta-data name if present
+                   split_part(new.email, '@', 1)),             -- fallback: part of the email
+          now(), now());
+  return new;
+end;$$;
+
+
+ALTER FUNCTION "public"."handle_new_user"() OWNER TO "postgres";
+
+
+CREATE OR REPLACE FUNCTION "public"."scan_ticket"("_ticket_id" "uuid") RETURNS "void"
+    LANGUAGE "plpgsql" SECURITY DEFINER
+    SET "search_path" TO 'public'
+    AS $$BEGIN
+  UPDATE participants
+  SET scanned = true,
+      scanned_at = NOW(),
+      scanned_by  = auth.uid()
+  WHERE id = _ticket_id;
+  
+  -- optionally, make sure exactly one row was updated
+  IF NOT FOUND THEN
+     RAISE EXCEPTION 'Ticket % not found or already scanned', _ticket_id;
+  END IF;
+END;$$;
+
+
+ALTER FUNCTION "public"."scan_ticket"("_ticket_id" "uuid") OWNER TO "postgres";
+
+
+CREATE TABLE IF NOT EXISTS "public"."events_archived" (
+    "id" "uuid" DEFAULT "gen_random_uuid"() NOT NULL,
+    "created_at" timestamp with time zone DEFAULT "now"() NOT NULL,
+    "date" "date",
+    "name" "text" NOT NULL,
+    "total_participants" numeric,
+    "scanned_participants" numeric,
+    "section_id" "uuid"
+);
+
+
+ALTER TABLE "public"."events_archived" OWNER TO "postgres";
+
+
+CREATE TABLE IF NOT EXISTS "public"."profiles" (
+    "id" "uuid" NOT NULL,
+    "display_name" "text",
+    "created_at" timestamp with time zone DEFAULT "now"(),
+    "updated_at" timestamp with time zone DEFAULT "now"(),
+    "section_id" "uuid",
+    "section_position" "public"."section_posititon" DEFAULT 'member'::"public"."section_posititon" NOT NULL
+);
+
+
+ALTER TABLE "public"."profiles" OWNER TO "postgres";
+
+
+CREATE TABLE IF NOT EXISTS "public"."sections" (
+    "id" "uuid" DEFAULT "gen_random_uuid"() NOT NULL,
+    "created_at" timestamp with time zone DEFAULT "now"() NOT NULL,
+    "name" "text" NOT NULL
+);
+
+
+ALTER TABLE "public"."sections" OWNER TO "postgres";
+
+
+COMMENT ON TABLE "public"."sections" IS 'List of ESN sections using the app';
+
+
+
+ALTER TABLE ONLY "public"."events_archived"
+    ADD CONSTRAINT "events_archived_pkey" PRIMARY KEY ("id");
+
+
+
+ALTER TABLE ONLY "public"."events"
+    ADD CONSTRAINT "events_pkey" PRIMARY KEY ("id");
+
+
+
+ALTER TABLE ONLY "public"."profiles"
+    ADD CONSTRAINT "profiles_pkey" PRIMARY KEY ("id");
+
+
+
+ALTER TABLE ONLY "public"."participants"
+    ADD CONSTRAINT "qrcodes_pkey" PRIMARY KEY ("id");
+
+
+
+ALTER TABLE ONLY "public"."sections"
+    ADD CONSTRAINT "sections_name_key" UNIQUE ("name");
+
+
+
+ALTER TABLE ONLY "public"."sections"
+    ADD CONSTRAINT "sections_pkey" PRIMARY KEY ("id");
+
+
+
+ALTER TABLE ONLY "public"."events_archived"
+    ADD CONSTRAINT "events_archived_section_id_fkey" FOREIGN KEY ("section_id") REFERENCES "public"."sections"("id") ON DELETE CASCADE;
+
+
+
+ALTER TABLE ONLY "public"."events"
+    ADD CONSTRAINT "events_created_by_fkey" FOREIGN KEY ("created_by") REFERENCES "auth"."users"("id");
+
+
+
+ALTER TABLE ONLY "public"."events"
+    ADD CONSTRAINT "events_section_id_fkey" FOREIGN KEY ("section_id") REFERENCES "public"."sections"("id") ON DELETE CASCADE;
+
+
+
+ALTER TABLE ONLY "public"."participants"
+    ADD CONSTRAINT "participants_created_by_fkey" FOREIGN KEY ("created_by") REFERENCES "auth"."users"("id") ON DELETE CASCADE;
+
+
+
+ALTER TABLE ONLY "public"."participants"
+    ADD CONSTRAINT "participants_event_fkey" FOREIGN KEY ("event") REFERENCES "public"."events"("id") ON DELETE CASCADE;
+
+
+
+ALTER TABLE ONLY "public"."participants"
+    ADD CONSTRAINT "participants_scanned_by_fkey" FOREIGN KEY ("scanned_by") REFERENCES "public"."profiles"("id") ON DELETE CASCADE;
+
+
+
+ALTER TABLE ONLY "public"."profiles"
+    ADD CONSTRAINT "profiles_id_fkey" FOREIGN KEY ("id") REFERENCES "auth"."users"("id") ON DELETE CASCADE;
+
+
+
+ALTER TABLE ONLY "public"."profiles"
+    ADD CONSTRAINT "profiles_section_id_fkey" FOREIGN KEY ("section_id") REFERENCES "public"."sections"("id") ON DELETE CASCADE;
+
+
+
+ALTER TABLE ONLY "public"."participants"
+    ADD CONSTRAINT "qrcodes_scanned_by_fkey" FOREIGN KEY ("scanned_by") REFERENCES "auth"."users"("id");
+
+
+
+ALTER TABLE ONLY "public"."participants"
+    ADD CONSTRAINT "qrcodes_section_id_fkey" FOREIGN KEY ("section_id") REFERENCES "public"."sections"("id") ON DELETE CASCADE;
+
+
+
+CREATE POLICY "Access only to section resources" ON "public"."events_archived" FOR SELECT TO "authenticated" USING ((EXISTS ( SELECT 1
+   FROM "public"."profiles" "p"
+  WHERE ("p"."section_id" = "events_archived"."section_id"))));
+
+
+
+CREATE POLICY "Enable select for authenticated users only" ON "public"."profiles" FOR SELECT TO "authenticated" USING (true);
+
+
+
+CREATE POLICY "Enable select for authenticated users only" ON "public"."sections" FOR SELECT TO "authenticated" USING (true);
+
+
+
+CREATE POLICY "Only display section resources" ON "public"."events" FOR SELECT TO "authenticated" USING ((EXISTS ( SELECT 1
+   FROM "public"."profiles" "p"
+  WHERE ("p"."section_id" = "events"."section_id"))));
+
+
+
+CREATE POLICY "Only display section resources" ON "public"."participants" FOR SELECT TO "authenticated" USING ((EXISTS ( SELECT 1
+   FROM "public"."profiles" "p"
+  WHERE ("p"."section_id" = "participants"."section_id"))));
+
+
+
+ALTER TABLE "public"."events" ENABLE ROW LEVEL SECURITY;
+
+
+ALTER TABLE "public"."events_archived" ENABLE ROW LEVEL SECURITY;
+
+
+ALTER TABLE "public"."participants" ENABLE ROW LEVEL SECURITY;
+
+
+ALTER TABLE "public"."profiles" ENABLE ROW LEVEL SECURITY;
+
+
+ALTER TABLE "public"."sections" ENABLE ROW LEVEL SECURITY;
+
+
+
+
+ALTER PUBLICATION "supabase_realtime" OWNER TO "postgres";
+
+
+
+
+
+GRANT USAGE ON SCHEMA "public" TO "postgres";
+GRANT USAGE ON SCHEMA "public" TO "anon";
+GRANT USAGE ON SCHEMA "public" TO "authenticated";
+GRANT USAGE ON SCHEMA "public" TO "service_role";
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+GRANT ALL ON FUNCTION "public"."archive_event"("_event_id" "uuid") TO "anon";
+GRANT ALL ON FUNCTION "public"."archive_event"("_event_id" "uuid") TO "authenticated";
+GRANT ALL ON FUNCTION "public"."archive_event"("_event_id" "uuid") TO "service_role";
+
+
+
+GRANT ALL ON FUNCTION "public"."auto_archive_events"("_age_days" integer) TO "anon";
+GRANT ALL ON FUNCTION "public"."auto_archive_events"("_age_days" integer) TO "authenticated";
+GRANT ALL ON FUNCTION "public"."auto_archive_events"("_age_days" integer) TO "service_role";
+
+
+
+GRANT ALL ON TABLE "public"."events" TO "anon";
+GRANT ALL ON TABLE "public"."events" TO "authenticated";
+GRANT ALL ON TABLE "public"."events" TO "service_role";
+
+
+
+GRANT ALL ON FUNCTION "public"."create_event"("p_name" "text", "p_date" "date") TO "anon";
+GRANT ALL ON FUNCTION "public"."create_event"("p_name" "text", "p_date" "date") TO "authenticated";
+GRANT ALL ON FUNCTION "public"."create_event"("p_name" "text", "p_date" "date") TO "service_role";
+
+
+
+GRANT ALL ON TABLE "public"."participants" TO "anon";
+GRANT ALL ON TABLE "public"."participants" TO "authenticated";
+GRANT ALL ON TABLE "public"."participants" TO "service_role";
+
+
+
+GRANT ALL ON FUNCTION "public"."create_qrcodes_bulk"("p_section_id" "uuid", "p_event_id" "uuid", "p_names" "text"[], "p_surnames" "text"[], "p_emails" "text"[]) TO "anon";
+GRANT ALL ON FUNCTION "public"."create_qrcodes_bulk"("p_section_id" "uuid", "p_event_id" "uuid", "p_names" "text"[], "p_surnames" "text"[], "p_emails" "text"[]) TO "authenticated";
+GRANT ALL ON FUNCTION "public"."create_qrcodes_bulk"("p_section_id" "uuid", "p_event_id" "uuid", "p_names" "text"[], "p_surnames" "text"[], "p_emails" "text"[]) TO "service_role";
+
+
+
+GRANT ALL ON FUNCTION "public"."handle_new_user"() TO "anon";
+GRANT ALL ON FUNCTION "public"."handle_new_user"() TO "authenticated";
+GRANT ALL ON FUNCTION "public"."handle_new_user"() TO "service_role";
+
+
+
+GRANT ALL ON FUNCTION "public"."scan_ticket"("_ticket_id" "uuid") TO "anon";
+GRANT ALL ON FUNCTION "public"."scan_ticket"("_ticket_id" "uuid") TO "authenticated";
+GRANT ALL ON FUNCTION "public"."scan_ticket"("_ticket_id" "uuid") TO "service_role";
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+GRANT ALL ON TABLE "public"."events_archived" TO "anon";
+GRANT ALL ON TABLE "public"."events_archived" TO "authenticated";
+GRANT ALL ON TABLE "public"."events_archived" TO "service_role";
+
+
+
+GRANT ALL ON TABLE "public"."profiles" TO "anon";
+GRANT ALL ON TABLE "public"."profiles" TO "authenticated";
+GRANT ALL ON TABLE "public"."profiles" TO "service_role";
+
+
+
+GRANT ALL ON TABLE "public"."sections" TO "anon";
+GRANT ALL ON TABLE "public"."sections" TO "authenticated";
+GRANT ALL ON TABLE "public"."sections" TO "service_role";
+
+
+
+
+
+
+
+
+
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON SEQUENCES  TO "postgres";
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON SEQUENCES  TO "anon";
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON SEQUENCES  TO "authenticated";
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON SEQUENCES  TO "service_role";
+
+
+
+
+
+
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON FUNCTIONS  TO "postgres";
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON FUNCTIONS  TO "anon";
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON FUNCTIONS  TO "authenticated";
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON FUNCTIONS  TO "service_role";
+
+
+
+
+
+
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON TABLES  TO "postgres";
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON TABLES  TO "anon";
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON TABLES  TO "authenticated";
+ALTER DEFAULT PRIVILEGES FOR ROLE "postgres" IN SCHEMA "public" GRANT ALL ON TABLES  TO "service_role";
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+RESET ALL;
diff --git a/supabase/migrations/20250701144258_remote_schema.sql b/supabase/migrations/20250701144258_remote_schema.sql
new file mode 100644
index 0000000..0ca0894
--- /dev/null
+++ b/supabase/migrations/20250701144258_remote_schema.sql
@@ -0,0 +1,34 @@
+revoke select on table "auth"."schema_migrations" from "postgres";
+
+CREATE TRIGGER on_auth_users_created AFTER INSERT ON auth.users FOR EACH ROW EXECUTE FUNCTION handle_new_user();
+
+
+grant delete on table "storage"."s3_multipart_uploads" to "postgres";
+
+grant insert on table "storage"."s3_multipart_uploads" to "postgres";
+
+grant references on table "storage"."s3_multipart_uploads" to "postgres";
+
+grant select on table "storage"."s3_multipart_uploads" to "postgres";
+
+grant trigger on table "storage"."s3_multipart_uploads" to "postgres";
+
+grant truncate on table "storage"."s3_multipart_uploads" to "postgres";
+
+grant update on table "storage"."s3_multipart_uploads" to "postgres";
+
+grant delete on table "storage"."s3_multipart_uploads_parts" to "postgres";
+
+grant insert on table "storage"."s3_multipart_uploads_parts" to "postgres";
+
+grant references on table "storage"."s3_multipart_uploads_parts" to "postgres";
+
+grant select on table "storage"."s3_multipart_uploads_parts" to "postgres";
+
+grant trigger on table "storage"."s3_multipart_uploads_parts" to "postgres";
+
+grant truncate on table "storage"."s3_multipart_uploads_parts" to "postgres";
+
+grant update on table "storage"."s3_multipart_uploads_parts" to "postgres";
+
+
-- 
2.49.1


From 5fd647d894fb1a8d81123ffaad78b77014f574db Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Wed, 2 Jul 2025 21:04:45 +0200
Subject: [PATCH 02/20] Out with the old flow

---
 .../private/events/creator/+page.svelte       | 131 ---------
 .../events/creator/emailtest/+page.svelte     | 110 --------
 .../events/creator/finish/+page.svelte        | 252 ------------------
 .../creator/steps/StepConnectGoogle.svelte    |  75 ------
 .../creator/steps/StepCraftEmail.svelte       |  69 -----
 .../creator/steps/StepCreateEvent.svelte      |  84 ------
 .../events/creator/steps/StepOverview.svelte  |  77 ------
 .../steps/StepUploadParticipants.svelte       | 158 -----------
 src/routes/private/events/event/+page.svelte  | 162 -----------
 9 files changed, 1118 deletions(-)
 delete mode 100644 src/routes/private/events/creator/+page.svelte
 delete mode 100644 src/routes/private/events/creator/emailtest/+page.svelte
 delete mode 100644 src/routes/private/events/creator/finish/+page.svelte
 delete mode 100644 src/routes/private/events/creator/steps/StepConnectGoogle.svelte
 delete mode 100644 src/routes/private/events/creator/steps/StepCraftEmail.svelte
 delete mode 100644 src/routes/private/events/creator/steps/StepCreateEvent.svelte
 delete mode 100644 src/routes/private/events/creator/steps/StepOverview.svelte
 delete mode 100644 src/routes/private/events/creator/steps/StepUploadParticipants.svelte
 delete mode 100644 src/routes/private/events/event/+page.svelte

diff --git a/src/routes/private/events/creator/+page.svelte b/src/routes/private/events/creator/+page.svelte
deleted file mode 100644
index 4a2818f..0000000
--- a/src/routes/private/events/creator/+page.svelte
+++ /dev/null
@@ -1,131 +0,0 @@
-<script lang="ts">
-	import StepConnectGoogle from './steps/StepConnectGoogle.svelte';
-	import StepCraftEmail from './steps/StepCraftEmail.svelte';
-	import StepCreateEvent from './steps/StepCreateEvent.svelte';
-	import StepOverview from './steps/StepOverview.svelte';
-	import StepUploadParticipants from './steps/StepUploadParticipants.svelte';
-	import { onMount } from 'svelte';
-	import { page } from '$app/state';
-
-	let { data, form } = $props();
-
-	let event = $state({});
-	let participants = $state([]);
-	let email = $state({ body: '', subject: '' });
-	let authorized = $state(false);
-	let existingEventId = $state(null);
-	let isAddingParticipants = $state(false);
-
-	onMount(async () => {
-		const eventId = page.url.searchParams.get('eventId');
-		if (eventId) {
-			existingEventId = eventId;
-			isAddingParticipants = true;
-
-			// Fetch existing event data to prefill the form
-			const { data: existingEvent } = await data.supabase
-				.from('events')
-				.select('*')
-				.eq('id', eventId)
-				.single();
-
-			if (existingEvent) {
-				event = {
-					name: existingEvent.name,
-					date: existingEvent.date,
-					id: existingEvent.id
-				};
-			}
-		}
-	});
-
-	$effect(() => {
-		if (form && form.event) {
-			event = form.event;
-		}
-		if (form && form.participants) {
-			participants = form.participants;
-		}
-	});
-
-	// Array of step components in order
-	const steps = [
-		StepConnectGoogle,
-		StepCreateEvent,
-		StepUploadParticipants,
-		StepCraftEmail,
-		StepOverview
-	];
-
-	let step: number = $state(0);
-
-	let stepConditions = $derived([
-		authorized,
-		!!event?.name,
-		!!participants?.length,
-		!!email.subject
-	]);
-
-	function nextStep() {
-		if (step < steps.length - 1) step += 1;
-	}
-	function prevStep() {
-		if (step > 0) step -= 1;
-	}
-</script>
-
-{#if isAddingParticipants}
-	<div class="mt-2 mb-4">
-		<h1 class="text-center text-xl font-semibold text-gray-700">
-			Adding Participants to "{event.name}"
-		</h1>
-	</div>
-{/if}
-
-{#if step == 0}
-	<StepConnectGoogle bind:authorized />
-{:else if step == 1}
-	<StepCreateEvent bind:event readonly={isAddingParticipants} />
-{:else if step == 2}
-	<StepUploadParticipants bind:participants />
-{:else if step == 3}
-	<StepCraftEmail bind:email />
-{:else if step == 4}
-	<StepOverview
-		{data}
-		{event}
-		{participants}
-		{email}
-		{stepConditions}
-		{existingEventId}
-		{isAddingParticipants}
-	/>
-{/if}
-
-<div class="pb-20"></div>
-
-<div
-	class="fixed bottom-0 left-0 z-10 flex w-full items-center justify-between gap-4 border-t border-gray-300 bg-white px-4 py-2"
-	style="max-width: 100vw;"
->
-	<div class="justify-content-center container mx-auto flex max-w-2xl p-2">
-		<button
-			onclick={prevStep}
-			disabled={step === 0}
-			class="min-w-[100px] rounded-md border border-gray-300 bg-white px-4 py-2 text-gray-700 transition hover:bg-gray-50 disabled:cursor-not-allowed disabled:opacity-50"
-			aria-label="Previous step"
-		>
-			Previous
-		</button>
-		<span class="flex flex-1 items-center justify-center text-center font-medium text-gray-600">
-			Step {step + 1} of {steps.length}
-		</span>
-		<button
-			onclick={nextStep}
-			disabled={step === steps.length - 1 || !stepConditions[step]}
-			class="min-w-[100px] rounded border border-gray-300 bg-white px-4 py-2 text-gray-700 transition hover:bg-gray-50 disabled:cursor-not-allowed disabled:opacity-50"
-		>
-			Next
-		</button>
-	</div>
-</div>
diff --git a/src/routes/private/events/creator/emailtest/+page.svelte b/src/routes/private/events/creator/emailtest/+page.svelte
deleted file mode 100644
index 3d67361..0000000
--- a/src/routes/private/events/creator/emailtest/+page.svelte
+++ /dev/null
@@ -1,110 +0,0 @@
-<script lang="ts">
-import { onMount } from 'svelte';
-import { goto } from '$app/navigation';
-
-let to = '';
-let subject = '';
-let body = '';
-let qrcode_b64 = '';
-let loading = false;
-let error = '';
-let success = '';
-let authorized = false;
-let refreshToken = '';
-
-async function validateToken(token: string): Promise<boolean> {
-	if (!token) return false;
-	const res = await fetch('/private/api/gmail', {
-		method: 'POST',
-		headers: { 'Content-Type': 'application/json' },
-		body: JSON.stringify({ action: 'validate', refreshToken: token })
-	});
-	if (!res.ok) return false;
-	const data = await res.json();
-	return !!data.valid;
-}
-
-onMount(async () => {
-	refreshToken = localStorage.getItem('gmail_refresh_token') ?? '';
-	authorized = await validateToken(refreshToken);
-});
-
-const connect = () => goto('/private/api/gmail?action=auth');
-
-async function sendTestEmail(event: Event) {
-	event.preventDefault();
-	error = '';
-	success = '';
-	loading = true;
-	try {
-		const r = await fetch('/private/api/gmail', {
-			method: 'POST',
-			headers: { 'Content-Type': 'application/json' },
-			body: JSON.stringify({
-				action: 'send',
-				to,
-				subject,
-				text: body,
-				qr_code: qrcode_b64,
-				refreshToken
-			})
-		});
-		if (r.ok) {
-			success = 'Email sent!';
-			to = subject = body = qrcode_b64 = '';
-		} else {
-			error = await r.text();
-		}
-	} catch (e) {
-		error = e.message || 'Unknown error';
-	}
-	loading = false;
-}
-</script>
-
-<div class="max-w-lg mx-auto bg-white border border-gray-300 rounded p-8 mt-8 shadow">
-	<h2 class="text-2xl font-semibold mb-6 text-center">Test Email Sender</h2>
-	{#if !authorized}
-		<div class="mb-4 flex items-center justify-between">
-			<p class="text-gray-700">Google not connected.</p>
-			<button class="btn bg-blue-600 hover:bg-blue-700 text-white font-semibold py-2 px-4 rounded ml-auto" onclick={connect}>
-				Connect Google
-			</button>
-		</div>
-		<form onsubmit={sendTestEmail} class="space-y-4">
-			<label class="block">
-				<span class="text-gray-700">To</span>
-				<input type="email" class="mt-1 block w-full border border-gray-300 rounded px-3 py-2 focus:outline-none focus:ring-2 focus:ring-blue-200" bind:value={to} required />
-			</label>
-			<label class="block">
-				<span class="text-gray-700">Subject</span>
-				<input type="text" class="mt-1 block w-full border border-gray-300 rounded px-3 py-2 focus:outline-none focus:ring-2 focus:ring-blue-200" bind:value={subject} required />
-			</label>
-			<label class="block">
-				<span class="text-gray-700">Body</span>
-				<textarea class="mt-1 block w-full border border-gray-300 rounded px-3 py-2 focus:outline-none focus:ring-2 focus:ring-blue-200 resize-none" rows="6" bind:value={body} required></textarea>
-			</label>
-			<label class="block">
-				<span class="text-gray-700">QR Code (base64, data:image/png;base64,...)</span>
-				<input type="text" class="mt-1 block w-full border border-gray-300 rounded px-3 py-2 focus:outline-none focus:ring-2 focus:ring-blue-200 font-mono text-xs" bind:value={qrcode_b64} placeholder="Paste base64 image string here" required />
-			</label>
-			<button type="submit" class="w-full py-2 bg-blue-600 text-white rounded hover:bg-blue-700 transition" disabled={loading}>
-				{#if loading}
-					<svg class="animate-spin h-5 w-5 mr-2 inline-block text-white" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24">
-						<circle class="opacity-25" cx="12" cy="12" r="10" stroke="currentColor" stroke-width="4"></circle>
-						<path class="opacity-75" fill="currentColor" d="M4 12a8 8 0 018-8v8z"></path>
-					</svg>
-					Sending...
-				{:else}
-					Send Test Email
-				{/if}
-			</button>
-		</form>
-	{/if}
-	{#if error}
-		<div class="rounded border-l-4 border-red-500 bg-red-100 p-4 text-red-700 mt-4">{error}</div>
-	{/if}
-	{#if success}
-		<div class="rounded border-l-4 border-green-500 bg-green-100 p-4 text-green-700 mt-4">{success}</div>
-	{/if}
-</div>
diff --git a/src/routes/private/events/creator/finish/+page.svelte b/src/routes/private/events/creator/finish/+page.svelte
deleted file mode 100644
index 93dc831..0000000
--- a/src/routes/private/events/creator/finish/+page.svelte
+++ /dev/null
@@ -1,252 +0,0 @@
-<script lang="ts">
-	import { page } from '$app/state';
-	import { onMount } from 'svelte';
-	import QRCode from 'qrcode';
-
-	let { data } = $props();
-	let session_storage_id = page.url.searchParams.get('data');
-	let all_data = {};
-
-	const StepStatus = {
-		Loading: 'loading',
-		Waiting: 'waiting',
-		Success: 'success',
-		Failure: 'failure'
-	} as const;
-	type StepStatus = (typeof StepStatus)[keyof typeof StepStatus];
-	let event_status: StepStatus = $state(StepStatus.Waiting);
-	let participants_status: StepStatus = $state(StepStatus.Waiting);
-	let email_status: StepStatus = $state(StepStatus.Waiting);
-
-	let createdParticipants = $state([]);
-	let mailStatuses = $state([]); // { email, name, status: 'pending' | 'success' | 'failure' }
-
-	onMount(async () => {
-		if (!session_storage_id) {
-			console.error('No session storage ID provided in the URL');
-			return;
-		}
-		all_data = JSON.parse(sessionStorage.getItem(session_storage_id) || '{}');
-
-		try {
-			let createdEvent;
-			
-			if (all_data.isAddingParticipants && all_data.existingEventId) {
-				// Skip event creation for existing events
-				event_status = StepStatus.Success;
-				createdEvent = { id: all_data.existingEventId, ...all_data.event };
-			} else {
-				// Create new event
-				event_status = StepStatus.Loading;
-				createdEvent = await createEventInSupabase(all_data.event);
-				event_status = StepStatus.Success;
-			}
-
-			participants_status = StepStatus.Loading;
-			createdParticipants = await createParticipantsInSupabase(all_data.participants, createdEvent);
-			participants_status = StepStatus.Success;
-
-		} catch (e) {
-			if (event_status === StepStatus.Loading) event_status = StepStatus.Failure;
-			else participants_status = StepStatus.Failure;
-			console.error(e);
-		}
-	});
-
-	async function createEventInSupabase(event) {
-		console.log('Creating event in Supabase:', event);
-		const { data: createdEvent, error: eventError } = await data.supabase.rpc('create_event', {
-			p_name: event.name,
-			p_date: event.date
-		});
-		console.log('Created event:', createdEvent);
-		if (eventError) throw eventError;
-		return createdEvent;
-	}
-
-	async function createParticipantsInSupabase(participants, event) {
-		const names = participants.map((p) => p.name);
-		const surnames = participants.map((p) => p.surname);
-		const emails = participants.map((p) => p.email);
-		const {
-			data: { user },
-			error: authError
-		} = await data.supabase.auth.getUser();
-		const { data: user_profile, error: profileError } = await data.supabase
-			.from('profiles')
-			.select('*, section:sections (id, name)')
-			.eq('id', user?.id)
-			.single();
-		const { data: result, error: qrCodeError } = await data.supabase.rpc('create_qrcodes_bulk', {
-			p_section_id: user_profile?.section.id,
-			p_event_id: event.id,
-			p_names: names,
-			p_surnames: surnames,
-			p_emails: emails
-		});
-		if (qrCodeError) throw qrCodeError;
-		return result;
-	}
-
-	async function sendEmails(participants, email) {
-		mailStatuses = participants.map((p) => ({ email: p.email, name: `${p.name} ${p.surname}`, status: 'pending' }));
-		let allSuccess = true;
-		for (let i = 0; i < participants.length; i++) {
-			const obj = participants[i];
-			let qr_code = await dataToBase64(obj.id);
-			const payload = {
-				action: 'send',
-				to: obj.email,
-				subject: email.subject,
-				text: email.body,
-				qr_code: qr_code,
-				refreshToken: localStorage.getItem('gmail_refresh_token')
-			};
-			try {
-				const res = await fetch('/private/api/gmail', {
-					method: 'POST',
-					headers: { 'Content-Type': 'application/json' },
-					body: JSON.stringify(payload)
-				});
-				if (res.ok) {
-					mailStatuses[i].status = 'success';
-				} else {
-					mailStatuses[i].status = 'failure';
-					allSuccess = false;
-					console.error('Failed to send email to', obj.email, await res.text());
-				}
-			} catch (e) {
-				mailStatuses[i].status = 'failure';
-				allSuccess = false;
-				console.error('Failed to send email to', obj.email, e);
-			}
-		}
-		return allSuccess;
-	}
-
-	async function dataToBase64(data: string): Promise<string> {
-		try {
-			const url = await QRCode.toDataURL(data);
-			const parts = url.split(',');
-			const base64 = parts[1];
-			return base64;
-		} catch (err) {
-			console.error(err);
-			return '';
-		}
-	}
-
-	async function launchMailCampaign() {
-		email_status = StepStatus.Loading;
-		try {
-			const allSuccess = await sendEmails(createdParticipants, all_data.email);
-			email_status = allSuccess ? StepStatus.Success : StepStatus.Failure;
-		} catch (e) {
-			email_status = StepStatus.Failure;
-			console.error(e);
-		}
-	}
-</script>
-
-<!-- Creating Event Entry -->
-<div class="mb-4 rounded border border-gray-300 bg-white p-4">
-	<h2 class="mb-2 text-xl font-bold">
-		{all_data.isAddingParticipants ? 'Using existing event' : 'Creating event'}
-	</h2>
-	{#if event_status === StepStatus.Waiting}
-		<span class="text-black-600">Waiting...</span>
-	{:else if event_status === StepStatus.Loading}
-		<span class="text-black-600">Creating event...</span>
-	{:else if event_status === StepStatus.Success}
-		<span class="text-green-600">
-			{all_data.isAddingParticipants ? 'Using existing event.' : 'Event created successfully.'}
-		</span>
-	{:else if event_status === StepStatus.Failure}
-		<span class="text-red-600">Failed to create event.</span>
-	{/if}
-</div>
-
-<!-- Creating Database Entries -->
-<div class="mb-4 rounded border border-gray-300 bg-white p-4">
-	<h2 class="mb-2 text-xl font-bold">Creating QR codes for participants</h2>
-	{#if participants_status === StepStatus.Waiting}
-		<span class="text-black-600">Waiting...</span>
-	{:else if participants_status === StepStatus.Loading}
-		<span class="text-black-600">Creating entries...</span>
-	{:else if participants_status === StepStatus.Success}
-		<span class="text-green-600">QR codes created successfully.</span>
-	{:else if participants_status === StepStatus.Failure}
-		<span class="text-red-600">Failed to create QR codes.</span>
-	{/if}
-</div>
-
-<!-- Sending Emails -->
-<div class="rounded border border-gray-300 bg-white p-4">
-	<h2 class="mb-1 text-xl font-bold">Sending emails</h2>
-	<p class="text-sm text-red-500 mb-2">After pressing send, you must not exit this window until the mail are all sent!</p>
-	{#if email_status === StepStatus.Waiting}
-		<div class="flex items-center justify-between">
-			<span class="text-black-600">Waiting...</span>
-			<button
-				disabled={event_status !== StepStatus.Success || participants_status !== StepStatus.Success}
-				onclick={launchMailCampaign}
-				class="ml-4 px-6 py-2 rounded font-semibold transition disabled:opacity-50 disabled:cursor-not-allowed
-					{event_status === StepStatus.Success && participants_status === StepStatus.Success ? 'bg-blue-600 hover:bg-blue-700 text-white' : 'bg-gray-400 text-white'}"
-			>
-				Send all emails
-			</button>
-		</div>
-	{:else}
-		<ul class="mt-4 space-y-2">
-			{#each createdParticipants as p, i}
-				<li class="flex items-center border-b pb-1 gap-2">
-					{#if mailStatuses[i]?.status === 'success'}
-						<svg
-							title="Sent"
-							class="mr-2 inline h-4 w-4 text-green-600"
-							fill="none"
-							stroke="currentColor"
-							stroke-width="2"
-							viewBox="0 0 24 24"
-						>
-							<path stroke-linecap="round" stroke-linejoin="round" d="M5 13l4 4L19 7" />
-						</svg>
-					{:else if mailStatuses[i]?.status === 'failure'}
-						<svg
-							title="Failed"
-							class="mr-2 inline h-4 w-4 text-red-600"
-							fill="none"
-							stroke="currentColor"
-							stroke-width="2"
-							viewBox="0 0 24 24"
-						>
-							<circle cx="12" cy="12" r="10" stroke="currentColor" stroke-width="2" fill="none" />
-							<line x1="8" y1="8" x2="16" y2="16" stroke="currentColor" stroke-width="2" />
-							<line x1="16" y1="8" x2="8" y2="16" stroke="currentColor" stroke-width="2" />
-						</svg>
-					{:else}
-						<svg
-							title="Pending"
-							class="mr-2 inline h-4 w-4 text-gray-400"
-							fill="none"
-							stroke="currentColor"
-							stroke-width="2"
-							viewBox="0 0 24 24"
-						>
-							<circle cx="12" cy="12" r="10" stroke="currentColor" stroke-width="2" fill="none" />
-						</svg>
-					{/if}
-					<span class="font-semibold">{p.name} {p.surname}</span>
-					<span class="font-mono text-xs text-gray-600 ml-auto">{p.email}</span>
-				</li>
-			{/each}
-		</ul>
-		{#if email_status === StepStatus.Loading}
-			<span class="block mt-2 text-black-600">Sending emails...</span>
-		{:else if email_status === StepStatus.Success}
-			<span class="block mt-2 text-green-600">Emails sent successfully.</span>
-		{:else if email_status === StepStatus.Failure}
-			<span class="block mt-2 text-red-600">Failed to send emails.</span>
-		{/if}
-	{/if}
-</div>
diff --git a/src/routes/private/events/creator/steps/StepConnectGoogle.svelte b/src/routes/private/events/creator/steps/StepConnectGoogle.svelte
deleted file mode 100644
index 4d381c9..0000000
--- a/src/routes/private/events/creator/steps/StepConnectGoogle.svelte
+++ /dev/null
@@ -1,75 +0,0 @@
-<script lang="ts">
-	import { onMount } from 'svelte';
-	import { goto } from '$app/navigation';
-
-	export let authorized = false;
-
-	let refreshToken = '';
-	let loading = true;
-
-	let to = '';
-	let subject = '';
-	let body = '';
-
-	async function validateToken(token: string): Promise<boolean> {
-		if (!token) return false;
-		const res = await fetch('/private/api/gmail', {
-			method: 'POST',
-			headers: { 'Content-Type': 'application/json' },
-			body: JSON.stringify({ action: 'validate', refreshToken: token })
-		});
-		if (!res.ok) return false;
-		const data = await res.json();
-		return !!data.valid;
-	}
-
-	onMount(async () => {
-		refreshToken = localStorage.getItem('gmail_refresh_token') ?? '';
-		loading = true;
-		authorized = await validateToken(refreshToken);
-		loading = false;
-	});
-
-	/* ⇢ redirects straight to Google via server 302 */
-	const connect = () => goto('/private/api/gmail?action=auth');
-
-	async function disconnect() {
-		if (!confirm('Disconnect Google account?')) return;
-		await fetch('/private/api/gmail', {
-			method: 'POST',
-			headers: { 'Content-Type': 'application/json' },
-			body: JSON.stringify({ action: 'revoke', refreshToken })
-		});
-		localStorage.removeItem('gmail_refresh_token');
-		refreshToken = '';
-		authorized = false;
-	}
-</script>
-
-<div class="mb-4 mt-2 rounded border border-gray-300 bg-white p-4">
-	{#if loading}
-		<div class="flex items-center space-x-2">
-			<svg class="animate-spin h-5 w-5 text-gray-500" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24">
-				<circle class="opacity-25" cx="12" cy="12" r="10" stroke="currentColor" stroke-width="4"></circle>
-				<path class="opacity-75" fill="currentColor" d="M4 12a8 8 0 018-8v8z"></path>
-			</svg>
-			<span>Checking Google connection...</span>
-		</div>
-	{:else}
-		{#if !authorized}
-			<section class="flex items-center justify-between w-full">
-				<p class="mr-4">You haven’t connected your Google account yet.</p>
-				<button class="btn bg-blue-600 hover:bg-blue-700 text-white font-semibold py-2 px-4 rounded ml-auto" onclick={connect}>
-					Connect Google
-				</button>
-			</section>
-		{:else}
-			<div class="flex items-center space-x-2 text-green-600">
-				<svg class="h-5 w-5" fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
-					<path stroke-linecap="round" stroke-linejoin="round" d="M5 13l4 4L19 7" />
-				</svg>
-				<span>Your connection to Google is good, proceed to next step</span>
-			</div>
-		{/if}
-	{/if}
-</div>
diff --git a/src/routes/private/events/creator/steps/StepCraftEmail.svelte b/src/routes/private/events/creator/steps/StepCraftEmail.svelte
deleted file mode 100644
index 085baaf..0000000
--- a/src/routes/private/events/creator/steps/StepCraftEmail.svelte
+++ /dev/null
@@ -1,69 +0,0 @@
-<script lang="ts">
-	let { email = $bindable() } = $props();
-
-	let showForm = $derived(!email.subject || !email.body);
-
-	function handleSubmit(e: Event) {
-		e.preventDefault();
-		const form = e.target as HTMLFormElement;
-		const formData = new FormData(form);
-		email = {
-			subject: formData.get('subject') as string,
-			body: formData.get('body') as string
-		};
-		showForm = false;
-	}
-
-	function showEditForm() {
-		showForm = true;
-	}
-</script>
-
-{#if showForm}
-	<form onsubmit={handleSubmit} class="flex mt-2 flex-col space-y-4 bg-white p-8 rounded border border-gray-300 w-full shadow-none">
-		<h2 class="text-2xl font-semibold text-center mb-4">Craft Email</h2>
-		<label class="flex flex-col text-gray-700">
-			Subject
-			<input
-				type="text"
-				name="subject"
-				value={email.subject ?? ''}
-				class="mt-1 px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-200"
-				required
-			/>
-		</label>
-		<label class="flex flex-col text-gray-700">
-			Body
-			<textarea
-				name="body"
-				value={email.body ?? ''}
-				class="mt-1 px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-200 resize-none"
-				rows="6"
-				required
-			></textarea>
-		</label>
-		<button
-			type="submit"
-			class="mt-4 w-full rounded bg-blue-600 py-2 text-white transition hover:bg-blue-700"
-		>
-			Save
-		</button>
-	</form>
-{:else}
-	<button
-		class="mb-4 mt-2 w-full rounded bg-blue-600 py-2 text-white transition hover:bg-blue-700"
-		onclick={showEditForm}
-		aria-label="Edit email"
-	>
-		Edit email
-	</button>
-	<div class="rounded border border-gray-300 bg-white p-4">
-		<h2 class="mb-2 text-xl font-bold">Email Preview</h2>
-		<div class="mb-2">
-			<span class="block font-semibold">{email.subject}</span>
-		</div>
-		<div class="whitespace-pre-line text-gray-800">
-			{email.body}
-		</div>
-	</div>
-{/if}
\ No newline at end of file
diff --git a/src/routes/private/events/creator/steps/StepCreateEvent.svelte b/src/routes/private/events/creator/steps/StepCreateEvent.svelte
deleted file mode 100644
index ad0856e..0000000
--- a/src/routes/private/events/creator/steps/StepCreateEvent.svelte
+++ /dev/null
@@ -1,84 +0,0 @@
-<script lang="ts">
-	let { event = $bindable(), readonly = false } = $props();
-
-	let loading = $state(false);
-	let showForm = $derived((!event.name || !event.date) && !readonly);
-
-	function handleSubmit(e: Event) {
-		e.preventDefault();
-		loading = true;
-		const form = e.target as HTMLFormElement;
-		const formData = new FormData(form);
-		event = {
-			name: formData.get('name'),
-			date: formData.get('date')
-		};
-		showForm = false;
-		loading = false;
-	}
-
-	function showEditForm() {
-		if (!readonly) {
-			showForm = true;
-		}
-	}
-</script>
-
-{#if showForm}
-	<form
-		onsubmit={handleSubmit}
-		autocomplete="off"
-		class="flex mt-2 w-full flex-col space-y-4 rounded border border-gray-300 bg-white p-8 shadow-none"
-	>
-		<h2 class="mb-4 text-center text-2xl font-semibold">Create Event</h2>
-		<label class="mt-2 flex flex-col text-gray-700">
-			Name
-			<input
-				type="text"
-				name="name"
-				class="mt-1 rounded border border-gray-300 px-3 py-2 focus:ring-2 focus:ring-blue-200 focus:outline-none"
-				required
-				value={event.name ?? ''}
-			/>
-		</label>
-		<label class="mt-2 flex flex-col text-gray-700">
-			Date
-			<input
-				type="date"
-				name="date"
-				class="mt-1 rounded border border-gray-300 px-3 py-2 focus:ring-2 focus:ring-blue-200 focus:outline-none"
-				required
-				value={event.date ?? ''}
-			/>
-		</label>
-		<button
-			type="submit"
-			class="mt-4 w-full rounded bg-blue-600 py-2 text-white transition hover:bg-blue-700"
-		>
-			Save
-		</button>
-	</form>
-{/if}
-
-{#if !showForm}
-	{#if !readonly}
-		<button
-			class="mb-4 mt-2 w-full rounded bg-blue-600 py-2 text-white transition hover:bg-blue-700"
-			onclick={showEditForm}
-			aria-label="Edit event"
-		>
-			Edit the event
-		</button>
-	{/if}
-	<div class="rounded border border-gray-300 bg-white p-4">
-		<h2 class="mb-2 text-xl font-bold">Event Preview</h2>
-		{#if Object.keys(event).length > 0}
-			<ul>
-				<li><span class="font-semibold">{event.name}</span></li>
-				<li class="text-gray-700">{event.date}</li>
-			</ul>
-		{:else}
-			<strong class="text-gray-700">No event created yet...</strong>
-		{/if}
-	</div>
-{/if}
diff --git a/src/routes/private/events/creator/steps/StepOverview.svelte b/src/routes/private/events/creator/steps/StepOverview.svelte
deleted file mode 100644
index 8f23aa9..0000000
--- a/src/routes/private/events/creator/steps/StepOverview.svelte
+++ /dev/null
@@ -1,77 +0,0 @@
-<script lang="ts">
-	import { goto } from '$app/navigation';
-	
-	let { data, event, participants, email, stepConditions, existingEventId = null, isAddingParticipants = false } = $props();
-
-	function redirectToFinish() {
-		// Generate a random variable name
-		const varName = 'event_' + Math.random().toString(36).substr(2, 9);
-		// Save the data to sessionStorage
-		sessionStorage.setItem(
-			varName,
-			JSON.stringify({ event, participants, email, existingEventId, isAddingParticipants })
-		);
-		// Redirect with the variable name as a query parameter
-		goto(`/private/events/creator/finish?data=${encodeURIComponent(varName)}`);
-	}
-
-</script>
-
-<!-- New Event Overview -->
-<div class="mb-4 mt-2 rounded border border-gray-300 bg-white p-4">
-	<h2 class="mb-2 text-xl font-bold">Event Overview</h2>
-	<ul class="space-y-1">
-		<li><span class="font-semibold">Name:</span> {event.name}</li>
-		<li><span class="font-semibold">Date:</span> {event.date}</li>
-	</ul>
-</div>
-
-<!-- Email Overview -->
-<div class="mb-4 rounded border border-gray-300 bg-white p-4">
-	<h2 class="mb-2 text-xl font-bold">Email Preview</h2>
-	<div class="mb-2"><span class="font-semibold">Subject:</span> {email.subject}</div>
-	<div class="rounded border bg-gray-50 p-2 whitespace-pre-line text-gray-700">
-		<span class="font-semibold"></span>
-		<div>{email.body}</div>
-	</div>
-</div>
-
-<!-- Participants Overview -->
-<div class="rounded border border-gray-300 bg-white p-4">
-	<h2 class="mb-2 text-xl font-bold">Participants ({participants.length})</h2>
-	<ul class="space-y-1">
-		{#each participants.slice(0, 10) as p}
-			<li class="flex items-center gap-2 border-b pb-1 last:border-b-0">
-				<span class="font-semibold">{p.name} {p.surname}</span>
-				<span class="flex-1"></span>
-				<span class="text-right font-mono text-xs text-gray-600">{p.email}</span>
-			</li>
-		{/each}
-	</ul>
-	<p class="mt-2 text-sm text-gray-500">Note: Only the first 10 participants are shown.</p>
-</div>
-
-<button
-	onclick={redirectToFinish}
-	class="mt-4 w-full rounded bg-blue-600 px-4 py-3 font-bold text-white
-	transition-colors duration-200 hover:bg-blue-700
-	disabled:cursor-not-allowed disabled:bg-gray-300 disabled:text-gray-500"
-	disabled={!stepConditions.every(Boolean)}
->
-	{isAddingParticipants ? 'Add participants and send emails' : 'Generate QR codes and send'}
-</button>
-
-<div class="mt-2 space-y-1">
-	{#if !stepConditions[0]}
-		<p class="text-sm text-red-500">Please provide an event name before proceeding.</p>
-	{/if}
-	{#if !stepConditions[1]}
-		<p class="text-sm text-red-500">Please add at least one participant before proceeding.</p>
-	{/if}
-	{#if !stepConditions[2]}
-		<p class="text-sm text-red-500">Please provide an email subject before proceeding.</p>
-	{/if}
-	{#if !stepConditions[3]}
-		<p class="text-sm text-red-500">Please provide an email body before proceeding.</p>
-	{/if}
-</div>
diff --git a/src/routes/private/events/creator/steps/StepUploadParticipants.svelte b/src/routes/private/events/creator/steps/StepUploadParticipants.svelte
deleted file mode 100644
index d973d4f..0000000
--- a/src/routes/private/events/creator/steps/StepUploadParticipants.svelte
+++ /dev/null
@@ -1,158 +0,0 @@
-<script lang="ts">
-	import Papa from 'papaparse';
-
-	let { participants = $bindable() } = $props();
-	let showForm = $derived(participants.length === 0);
-	let errors = $state([]);
-
-	function isValidEmail(email: string): boolean {
-		return /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(email);
-	}
-
-	async function handleSubmit(e: Event) {
-		e.preventDefault();
-		errors = [];
-		const form = e.target as HTMLFormElement;
-		const fileInput = form.elements.namedItem('participants') as HTMLInputElement;
-		const file = fileInput?.files?.[0];
-		if (!file) return;
-		const csvText = await file.text();
-		const { data: parsedRows } = Papa.parse<string[]>(csvText, {
-			skipEmptyLines: true,
-			header: false
-		});
-		// Remove the first row (header)
-		if (parsedRows.length > 0) {
-			parsedRows.shift();
-		}
-		const validated = [];
-		parsedRows.forEach((row, idx) => {
-			if (!row || row.length < 3) {
-				errors.push(`Row ${idx + 2} is missing columns.`);
-				return;
-			}
-			const [name, surname, email] = row;
-			if (!name || !surname || !email) {
-				errors.push(`Row ${idx + 2} has missing values.`);
-				return;
-			}
-			validated.push({
-				name,
-				surname,
-				email,
-				email_valid: isValidEmail(email)
-			});
-		});
-		if (errors.length > 0) {
-			return; // Do not proceed if there are errors
-		}
-		if (validated.length === 0) {
-			participants = [];
-			return;
-		}
-		participants = validated.sort((a, b) => {
-			if (a.email_valid === b.email_valid) return 0;
-			return a.email_valid ? 1 : -1;
-		});
-		showForm = false;
-	}
-
-	function showEditForm() {
-		showForm = true;
-	}
-</script>
-
-{#if showForm}
-	{#if errors.length > 0}
-		<div class="mb-4 mt-2 rounded border border-red-400 bg-red-50 p-4 text-red-700">
-			<ul class="list-disc ml-4">
-				{#each errors as err}
-					<li>{err}</li>
-				{/each}
-			</ul>
-		</div>
-	{/if}
-	<form
-		onsubmit={handleSubmit}
-		autocomplete="off"
-		enctype="multipart/form-data"
-		class="flex mt-2 w-full flex-col space-y-4 rounded border border-gray-300 bg-white p-8 shadow-none"
-	>
-		<h2 class="mb-4 text-center text-2xl font-semibold">Upload Participants</h2>
-		<label class="flex flex-col text-gray-700">
-			CSV File
-			<input
-				type="file"
-				name="participants"
-				id="participants"
-				accept=".csv"
-				class="mt-1 rounded border border-gray-300 px-3 py-2 focus:ring-2 focus:ring-blue-200 focus:outline-none"
-				required
-			/>
-		</label>
-		<button
-			type="submit"
-			class="w-full rounded bg-blue-600 py-2 text-white transition hover:bg-blue-700"
-		>
-			Submit
-		</button>
-	</form>
-{:else}
-	<button
-		class="w-full mt-2 rounded bg-blue-600 py-2 text-white transition hover:bg-blue-700"
-		onclick={showEditForm}
-		aria-label="Edit participants"
-	>
-		Edit participants
-	</button>
-{/if}
-
-{#if !showForm}
-	<div class="mt-4 rounded border border-gray-300 bg-white p-4">
-		<div class="mb-2 flex items-center justify-between">
-			<h2 class="text-xl font-bold">Participants ({participants.length})</h2>
-			{#if participants.length > 0}
-				{#if participants.some((p) => !p.email_valid)}
-					<span class="text-xs text-gray-500">Some emails appear invalid</span>
-				{:else}
-					<span class="text-xs text-gray-500">All emails appear valid</span>
-				{/if}
-			{/if}
-		</div>
-
-		<ul class="space-y-1">
-			{#each participants as p}
-				<li class="flex items-center gap-2 border-b pb-1 last:border-b-0">
-					{#if p.email_valid}
-						<svg
-							title="Valid email"
-							class="mr-2 inline h-4 w-4 text-green-600"
-							fill="none"
-							stroke="currentColor"
-							stroke-width="2"
-							viewBox="0 0 24 24"
-						>
-							<path stroke-linecap="round" stroke-linejoin="round" d="M5 13l4 4L19 7" />
-						</svg>
-					{:else}
-						<svg
-							title="Invalid email"
-							class="mr-2 inline h-4 w-4 text-red-600"
-							fill="none"
-							stroke="currentColor"
-							stroke-width="2"
-							viewBox="0 0 24 24"
-						>
-							<circle cx="12" cy="12" r="10" stroke="currentColor" stroke-width="2" fill="none" />
-							<line x1="8" y1="8" x2="16" y2="16" stroke="currentColor" stroke-width="2" />
-							<line x1="16" y1="8" x2="8" y2="16" stroke="currentColor" stroke-width="2" />
-						</svg>
-					{/if}
-					<span class="font-semibold">{p.name} {p.surname}</span>
-					<span class="flex-1"></span>
-					<span class="text-right font-mono text-xs text-gray-600">{p.email}</span>
-				</li>
-			{/each}
-		</ul>
-	</div>
-{/if}
diff --git a/src/routes/private/events/event/+page.svelte b/src/routes/private/events/event/+page.svelte
deleted file mode 100644
index fbe63d5..0000000
--- a/src/routes/private/events/event/+page.svelte
+++ /dev/null
@@ -1,162 +0,0 @@
-<script lang="ts">
-	import { onMount } from 'svelte';
-	import { page } from '$app/state';
-
-	let { data } = $props();
-
-	let event_data: any = $state(null);
-	let participants: any[] = $state([]);
-	let loading = $state(true);
-	let scannedCount: number = $state(0);
-	let notScannedCount: number = $state(0);
-
-	onMount(async () => {
-		const event_id = page.url.searchParams.get('id');
-
-		if (!event_id) {
-			loading = false;
-			return;
-		}
-
-		const { data: event } = await data.supabase
-			.from('events')
-			.select('*')
-			.eq('id', event_id)
-			.single();
-		event_data = event;
-
-		const { data: parts } = await data.supabase
-			.from('participants')
-			.select('*, scanned_by:profiles (id, display_name)')
-			.eq('event', event_id);
-		participants = parts || [];
-		scannedCount = participants.filter((p) => p.scanned).length;
-		notScannedCount = participants.length - scannedCount;
-		loading = false;
-	});
-</script>
-
-<h1 class="mt-2 mb-4 text-center text-2xl font-bold">Event Overview</h1>
-
-<div class="mb-2 rounded border border-gray-300 bg-white p-4">
-	<div class="flex items-center justify-between gap-4">
-		<div class="flex flex-col gap-1">
-			{#if loading}
-				<div class="mb-2 h-6 w-40 animate-pulse rounded bg-gray-200"></div>
-				<div class="h-4 w-24 animate-pulse rounded bg-gray-100"></div>
-			{:else}
-				<span class="text-gray-700 text-lg font-semibold">{event_data?.name}</span>
-				<span class="text-gray-500 text-sm">{event_data?.date}</span>
-			{/if}
-		</div>
-		{#if loading}
-			<div class="h-10 w-32 animate-pulse rounded bg-gray-200"></div>
-		{:else if event_data}
-			<a
-				href={`/private/events/creator?eventId=${event_data.id}`}
-				class="rounded border border-gray-300 bg-blue-600 px-6 py-2 font-semibold text-white transition hover:bg-blue-700"
-			>
-				Add Participants
-			</a>
-		{/if}
-	</div>
-</div>
-
-<div class="mb-2 flex items-center rounded border border-gray-300 bg-white p-4">
-	<div class="flex flex-1 items-center justify-center gap-2">
-		<svg
-			class="inline h-4 w-4 text-green-600"
-			fill="none"
-			stroke="currentColor"
-			stroke-width="2"
-			viewBox="0 0 24 24"
-		>
-			<path stroke-linecap="round" stroke-linejoin="round" d="M5 13l4 4L19 7" />
-		</svg>
-		{#if loading}
-			<div class="h-4 w-16 animate-pulse rounded bg-gray-200"></div>
-		{:else}
-			<span class="text-sm text-gray-700">Scanned ({scannedCount})</span>
-		{/if}
-	</div>
-	<div class="mx-4 h-8 w-px bg-gray-300"></div>
-	<div class="flex flex-1 items-center justify-center gap-2">
-		<svg
-			class="inline h-4 w-4 text-red-600"
-			fill="none"
-			stroke="currentColor"
-			stroke-width="2"
-			viewBox="0 0 24 24"
-		>
-			<circle cx="12" cy="12" r="10" stroke="currentColor" stroke-width="2" fill="none" />
-			<line x1="8" y1="8" x2="16" y2="16" stroke="currentColor" stroke-width="2" />
-			<line x1="16" y1="8" x2="8" y2="16" stroke="currentColor" stroke-width="2" />
-		</svg>
-		{#if loading}
-			<div class="h-4 w-24 animate-pulse rounded bg-gray-200"></div>
-		{:else}
-			<span class="text-sm text-gray-700">Not scanned ({notScannedCount})</span>
-		{/if}
-	</div>
-</div>
-
-<div class="rounded border border-gray-300 bg-white p-4">
-	<h2 class="mb-2 rounded text-xl font-bold">
-		{#if loading}
-			<div class="h-6 w-32 animate-pulse rounded bg-gray-200"></div>
-		{:else}
-			Participants ({participants.length})
-		{/if}
-	</h2>
-	<ul class="space-y-1">
-		{#if loading}
-			<li>
-				<div class="h-10 w-full animate-pulse rounded bg-gray-200"></div>
-			</li>
-		{:else}
-			{#each participants as p}
-				<li class="flex items-center gap-2 border-b border-gray-300 pb-1 last:border-b-0">
-					{#if p.scanned}
-						<svg
-							title="Scanned"
-							class="mr-2 inline h-4 w-4 text-green-600"
-							fill="none"
-							stroke="currentColor"
-							stroke-width="2"
-							viewBox="0 0 24 24"
-						>
-							<path stroke-linecap="round" stroke-linejoin="round" d="M5 13l4 4L19 7" />
-						</svg>
-					{:else}
-						<svg
-							title="Not scanned"
-							class="mr-2 inline h-4 w-4 text-red-600"
-							fill="none"
-							stroke="currentColor"
-							stroke-width="2"
-							viewBox="0 0 24 24"
-						>
-							<circle cx="12" cy="12" r="10" stroke="currentColor" stroke-width="2" fill="none" />
-							<line x1="8" y1="8" x2="16" y2="16" stroke="currentColor" stroke-width="2" />
-							<line x1="16" y1="8" x2="8" y2="16" stroke="currentColor" stroke-width="2" />
-						</svg>
-					{/if}
-					<span class="font-semibold">{p.name} {p.surname}</span>
-					<span class="flex-1"></span>
-					{#if p.scanned_by}
-						<div class="ml-2 flex flex-row items-end">
-							<span class="mr-1 text-xs text-gray-500">
-								{new Date(p.scanned_at).toLocaleTimeString([], {
-									hour: '2-digit',
-									minute: '2-digit',
-									hour12: false
-								})}
-							</span>
-							<span class="text-xs text-gray-500">by {p.scanned_by.display_name}</span>
-						</div>
-					{/if}
-				</li>
-			{/each}
-		{/if}
-	</ul>
-</div>
-- 
2.49.1


From 822f1a73425bfa31cada633a9006f36b6485000c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Wed, 2 Jul 2025 21:50:45 +0200
Subject: [PATCH 03/20] First stage of the new flow

---
 .env.example                                  |   7 +-
 .github/copilot-instructions.md               |  83 +-
 src/lib/gmail.ts                              |  80 ++
 src/lib/google-server.ts                      |  38 +
 src/lib/google.ts                             | 144 ++--
 src/lib/sheets.ts                             |  58 ++
 src/routes/api/auth/refresh/+server.ts        |  30 +
 .../api/sheets/[sheetId]/data/+server.ts      |  22 +
 src/routes/api/sheets/recent/+server.ts       |  20 +
 src/routes/auth/google/+server.ts             |   8 +
 src/routes/auth/google/callback/+server.ts    | 110 +++
 src/routes/private/api/gmail/+server.ts       |   2 +-
 src/routes/private/events/+page.svelte        |  53 +-
 .../private/events/event/new/+page.server.ts  |   7 +
 .../private/events/event/new/+page.svelte     | 795 ++++++++++++++++++
 15 files changed, 1317 insertions(+), 140 deletions(-)
 create mode 100644 src/lib/gmail.ts
 create mode 100644 src/lib/google-server.ts
 create mode 100644 src/lib/sheets.ts
 create mode 100644 src/routes/api/auth/refresh/+server.ts
 create mode 100644 src/routes/api/sheets/[sheetId]/data/+server.ts
 create mode 100644 src/routes/api/sheets/recent/+server.ts
 create mode 100644 src/routes/auth/google/+server.ts
 create mode 100644 src/routes/auth/google/callback/+server.ts
 create mode 100644 src/routes/private/events/event/new/+page.server.ts
 create mode 100644 src/routes/private/events/event/new/+page.svelte

diff --git a/.env.example b/.env.example
index e3df937..32ce1d1 100644
--- a/.env.example
+++ b/.env.example
@@ -1,2 +1,7 @@
 PUBLIC_SUPABASE_URL=https://abc.supabase.co
-PUBLIC_SUPABASE_ANON_KEY=eyJhbGciOiJIUzI16C_s
\ No newline at end of file
+PUBLIC_SUPABASE_ANON_KEY=eyJhbGciOiJIUzI16C_s
+
+# Google OAuth Configuration
+GOOGLE_CLIENT_ID=your-google-client-id
+GOOGLE_CLIENT_SECRET=your-google-client-secret
+GOOGLE_REDIRECT_URI=http://localhost:5173
\ No newline at end of file
diff --git a/.github/copilot-instructions.md b/.github/copilot-instructions.md
index c53c216..a67c7e3 100644
--- a/.github/copilot-instructions.md
+++ b/.github/copilot-instructions.md
@@ -85,4 +85,85 @@ NEVER $: label syntax; use $state(), $derived(), and $effect().
 If you want to use supabse client in the browser, it is stored in the data
 variable obtained from let { data } = $props();
 
-Using `on:click` to listen to the click event is deprecated. Use the event attribute `onclick` instead
\ No newline at end of file
+Using `on:click` to listen to the click event is deprecated. Use the event attribute `onclick` instead
+
+onsubmit|preventDefault={handleSubmit} is depracated, do not use it!
+
+Loading session using page.server.ts is not needed as the session is already available in the locals object.
+
+
+The database schema in supabase is as follows:
+-- WARNING: This schema is for context only and is not meant to be run.
+-- Table order and constraints may not be valid for execution.
+
+CREATE TABLE public.events (
+  id uuid NOT NULL DEFAULT gen_random_uuid(),
+  created_at timestamp with time zone NOT NULL DEFAULT now(),
+  created_by uuid DEFAULT auth.uid(),
+  name text,
+  date date,
+  section_id uuid,
+  email_subject text,
+  email_body text,
+  sheet_id text,
+  name_column numeric,
+  surname_column numeric,
+  email_column numeric,
+  confirmation_column numeric,
+  CONSTRAINT events_pkey PRIMARY KEY (id),
+  CONSTRAINT events_created_by_fkey FOREIGN KEY (created_by) REFERENCES auth.users(id),
+  CONSTRAINT events_section_id_fkey FOREIGN KEY (section_id) REFERENCES public.sections(id)
+);
+CREATE TABLE public.events_archived (
+  id uuid NOT NULL DEFAULT gen_random_uuid(),
+  created_at timestamp with time zone NOT NULL DEFAULT now(),
+  date date,
+  name text NOT NULL,
+  total_participants numeric,
+  scanned_participants numeric,
+  section_id uuid,
+  CONSTRAINT events_archived_pkey PRIMARY KEY (id),
+  CONSTRAINT events_archived_section_id_fkey FOREIGN KEY (section_id) REFERENCES public.sections(id)
+);
+CREATE TABLE public.participants (
+  id uuid NOT NULL DEFAULT gen_random_uuid(),
+  created_at timestamp with time zone NOT NULL DEFAULT now(),
+  created_by uuid DEFAULT auth.uid(),
+  event uuid,
+  name text,
+  surname text,
+  email text,
+  scanned boolean DEFAULT false,
+  scanned_at timestamp with time zone,
+  scanned_by uuid,
+  section_id uuid,
+  CONSTRAINT participants_pkey PRIMARY KEY (id),
+  CONSTRAINT participants_created_by_fkey FOREIGN KEY (created_by) REFERENCES auth.users(id),
+  CONSTRAINT participants_event_fkey FOREIGN KEY (event) REFERENCES public.events(id),
+  CONSTRAINT participants_scanned_by_fkey FOREIGN KEY (scanned_by) REFERENCES public.profiles(id),
+  CONSTRAINT qrcodes_scanned_by_fkey FOREIGN KEY (scanned_by) REFERENCES auth.users(id),
+  CONSTRAINT qrcodes_section_id_fkey FOREIGN KEY (section_id) REFERENCES public.sections(id)
+);
+CREATE TABLE public.profiles (
+  id uuid NOT NULL,
+  display_name text,
+  created_at timestamp with time zone DEFAULT now(),
+  updated_at timestamp with time zone DEFAULT now(),
+  section_id uuid,
+  section_position USER-DEFINED NOT NULL DEFAULT 'member'::section_posititon,
+  CONSTRAINT profiles_pkey PRIMARY KEY (id),
+  CONSTRAINT profiles_id_fkey FOREIGN KEY (id) REFERENCES auth.users(id),
+  CONSTRAINT profiles_section_id_fkey FOREIGN KEY (section_id) REFERENCES public.sections(id)
+);
+CREATE TABLE public.sections (
+  id uuid NOT NULL DEFAULT gen_random_uuid(),
+  created_at timestamp with time zone NOT NULL DEFAULT now(),
+  name text NOT NULL UNIQUE,
+  CONSTRAINT sections_pkey PRIMARY KEY (id)
+);
+
+An event is created by calling RPC databse function create_event
+by passing the following parameters: 
+- name, date, email_subject, email_body, sheet_id, name_column, surname_column, email_column, confirmation_column
+
+
diff --git a/src/lib/gmail.ts b/src/lib/gmail.ts
new file mode 100644
index 0000000..c46488d
--- /dev/null
+++ b/src/lib/gmail.ts
@@ -0,0 +1,80 @@
+import { google } from 'googleapis';
+import quotedPrintable from 'quoted-printable';
+import { getAuthenticatedClient } from './google-server.js';
+
+export function createEmailTemplate(text: string): string {
+	return `<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <style>
+      @import url('https://fonts.googleapis.com/css2?family=Lato&display=swap');
+    </style>
+  </head>
+  <body style="font-family: 'Lato', sans-serif; background-color: #f9f9f9; padding: 20px; margin: 0;">
+    <div style="max-width: 600px; margin: auto; background: white; padding: 20px; border-radius: 8px; box-shadow: 0 2px 4px rgba(0,0,0,0.05);">
+      <p style="white-space: pre-line;font-size: 16px; line-height: 1.5; color: #333;">${text}</p>
+      <img src="cid:qrCode1" alt="QR Code" style="display: block; margin: 20px auto; max-width: 50%; min-width: 200px; height: auto;" />
+      <div style="width: 100%; display: flex; flex-direction: row; justify-content: space-between">
+        <div style="height: 4px; width: 20%; background: #00aeef;"></div>
+        <div style="height: 4px; width: 20%; background: #ec008c;"></div>
+        <div style="height: 4px; width: 20%; background: #7ac143;"></div>
+        <div style="height: 4px; width: 20%; background: #f47b20;"></div>
+        <div style="height: 4px; width: 20%; background: #2e3192;"></div>
+      </div>
+      <div style="font-size: 12px; color: #999; padding-top: 0px; margin-top: 10px; line-height: 1.5; ">
+        <p>This email has been generated with the help of ScanWave</p>
+      </div>
+    </div>
+  </body>
+</html>`;
+}
+
+export async function sendGmail(
+	refreshToken: string,
+	{ to, subject, text, qr_code }: { to: string; subject: string; text: string; qr_code: string }
+) {
+	const oauth = getAuthenticatedClient(refreshToken);
+	const gmail = google.gmail({ version: 'v1', auth: oauth });
+
+	const message_html = createEmailTemplate(text);
+	const boundary = 'BOUNDARY';
+	const nl = '\r\n';
+
+	// Convert HTML to a Buffer, then to latin1 string for quotedPrintable.encode
+	const htmlBuffer = Buffer.from(message_html, 'utf8');
+	const htmlLatin1 = htmlBuffer.toString('latin1');
+	const htmlQP = quotedPrintable.encode(htmlLatin1);
+	const qrLines = qr_code.replace(/.{1,76}/g, '$&' + nl);
+
+	const rawParts = [
+		'MIME-Version: 1.0',
+		`To: ${to}`,
+		`Subject: ${subject}`,
+		`Content-Type: multipart/related; boundary="${boundary}"`,
+		'',
+		`--${boundary}`,
+		'Content-Type: text/html; charset="UTF-8"',
+		'Content-Transfer-Encoding: quoted-printable',
+		'',
+		htmlQP,
+		'',
+		`--${boundary}`,
+		'Content-Type: image/png',
+		'Content-Transfer-Encoding: base64',
+		'Content-ID: <qrCode1>',
+		'Content-Disposition: inline; filename="qr.png"',
+		'',
+		qrLines,
+		'',
+		`--${boundary}--`,
+		''
+	];
+
+	const rawMessage = rawParts.join(nl);
+	const raw = Buffer.from(rawMessage).toString('base64url');
+
+	await gmail.users.messages.send({
+		userId: 'me',
+		requestBody: { raw }
+	});
+}
diff --git a/src/lib/google-server.ts b/src/lib/google-server.ts
new file mode 100644
index 0000000..7d98157
--- /dev/null
+++ b/src/lib/google-server.ts
@@ -0,0 +1,38 @@
+import { google } from 'googleapis';
+import { env } from '$env/dynamic/private';
+
+export const scopes = [
+	'https://www.googleapis.com/auth/gmail.send',
+	'https://www.googleapis.com/auth/userinfo.email',
+	'https://www.googleapis.com/auth/drive.readonly',
+	'https://www.googleapis.com/auth/spreadsheets.readonly'
+];
+
+export function getOAuthClient() {
+	return new google.auth.OAuth2(
+		env.GOOGLE_CLIENT_ID,
+		env.GOOGLE_CLIENT_SECRET,
+		env.GOOGLE_REDIRECT_URI
+	);
+}
+
+export function createAuthUrl() {
+	return getOAuthClient().generateAuthUrl({
+		access_type: 'offline',
+		prompt: 'consent',
+		scope: scopes,
+		redirect_uri: env.GOOGLE_REDIRECT_URI
+	});
+}
+
+export async function exchangeCodeForTokens(code: string) {
+	const { tokens } = await getOAuthClient().getToken(code);
+	if (!tokens.refresh_token) throw new Error('No refresh_token returned');
+	return tokens.refresh_token;
+}
+
+export function getAuthenticatedClient(refreshToken: string) {
+	const oauth = getOAuthClient();
+	oauth.setCredentials({ refresh_token: refreshToken });
+	return oauth;
+}
diff --git a/src/lib/google.ts b/src/lib/google.ts
index 792deb2..718199b 100644
--- a/src/lib/google.ts
+++ b/src/lib/google.ts
@@ -1,108 +1,60 @@
-import { google } from 'googleapis';
-import { env } from '$env/dynamic/private';
-import quotedPrintable from 'quoted-printable';   //  tiny, zero-dep package
+import { browser } from '$app/environment';
 
+// Client-side only functions
 export const scopes = [
 	'https://www.googleapis.com/auth/gmail.send',
-	'https://www.googleapis.com/auth/userinfo.email'
+	'https://www.googleapis.com/auth/userinfo.email',
+	'https://www.googleapis.com/auth/drive.readonly',
+	'https://www.googleapis.com/auth/spreadsheets.readonly'
 ];
 
-export function getOAuthClient() {
-	return new google.auth.OAuth2(
-		env.GOOGLE_CLIENT_ID,
-		env.GOOGLE_CLIENT_SECRET,
-		env.GOOGLE_REDIRECT_URI
-	);
+// Client-side functions for browser environment
+export async function initGoogleAuth(): Promise<void> {
+	if (!browser) return;
+	// Google Auth initialization is handled by the OAuth flow
+	// No initialization needed for our server-side approach
 }
 
-export function createAuthUrl() {
-	return getOAuthClient().generateAuthUrl({
-		access_type: 'offline',
-		prompt: 'consent',
-		scope: scopes
-	});
+export function getAuthUrl(): string {
+	if (!browser) return '';
+	// This should be obtained from the server
+	return '/auth/google';
 }
 
-export async function exchangeCodeForTokens(code: string) {
-	const { tokens } = await getOAuthClient().getToken(code);
-	if (!tokens.refresh_token) throw new Error('No refresh_token returned');
-	return tokens.refresh_token;
+export async function isTokenValid(accessToken: string): Promise<boolean> {
+	if (!browser) return false;
+	
+	try {
+		const response = await fetch(`https://www.googleapis.com/oauth2/v1/tokeninfo?access_token=${accessToken}`);
+		const data = await response.json();
+		
+		if (response.ok && data.expires_in && data.expires_in > 0) {
+			return true;
+		}
+		return false;
+	} catch (error) {
+		console.error('Error validating token:', error);
+		return false;
+	}
 }
 
-export async function sendGmail(
-	refreshToken: string,
-	{ to, subject, text, qr_code }: { to: string; subject: string; text: string; qr_code: string }
-) {
-	const oauth = getOAuthClient();
-	oauth.setCredentials({ refresh_token: refreshToken });
-
-	const gmail = google.gmail({ version: 'v1', auth: oauth });
-
-	const message_html =
-		`<!DOCTYPE html>
-<html lang="en">
-  <head>
-    <style>
-      @import url('https://fonts.googleapis.com/css2?family=Lato&display=swap');
-    </style>
-  </head>
-  <body style="font-family: 'Lato', sans-serif; background-color: #f9f9f9; padding: 20px; margin: 0;">
-    <div style="max-width: 600px; margin: auto; background: white; padding: 20px; border-radius: 8px; box-shadow: 0 2px 4px rgba(0,0,0,0.05);">
-      <p style="white-space: pre-line;font-size: 16px; line-height: 1.5; color: #333;">${text}</p>
-      <img src="cid:qrCode1" alt="QR Code" style="display: block; margin: 20px auto; max-width: 50%; min-width: 200px; height: auto;" />
-      <div style="width: 100%; display: flex; flex-direction: row; justify-content: space-between">
-        <div style="height: 4px; width: 20%; background: #00aeef;"></div>
-        <div style="height: 4px; width: 20%; background: #ec008c;"></div>
-        <div style="height: 4px; width: 20%; background: #7ac143;"></div>
-        <div style="height: 4px; width: 20%; background: #f47b20;"></div>
-        <div style="height: 4px; width: 20%; background: #2e3192;"></div>
-      </div>
-      <div style="font-size: 12px; color: #999; padding-top: 0px; margin-top: 10px; line-height: 1.5; ">
-        <p>This email has been generated with the help of ScanWave</p>
-      </div>
-    </div>
-  </body>
-</html>`;
-
-	const boundary = 'BOUNDARY';
-	const nl = '\r\n';                   // RFC-5322 line ending
-
-	// Convert HTML to a Buffer, then to latin1 string for quotedPrintable.encode
-	const htmlBuffer = Buffer.from(message_html, 'utf8');
-	const htmlLatin1 = htmlBuffer.toString('latin1');
-	const htmlQP = quotedPrintable.encode(htmlLatin1);
-	const qrLines = qr_code.replace(/.{1,76}/g, '$&' + nl);
-
-	const rawParts = [
-		'MIME-Version: 1.0',
-		`To: ${to}`,
-		`Subject: ${subject}`,
-		`Content-Type: multipart/related; boundary="${boundary}"`,
-		'',
-		`--${boundary}`,
-		'Content-Type: text/html; charset="UTF-8"',
-		'Content-Transfer-Encoding: quoted-printable',
-		'',
-		htmlQP,
-		'',
-		`--${boundary}`,
-		'Content-Type: image/png',
-		'Content-Transfer-Encoding: base64',
-		'Content-ID: <qrCode1>',
-		'Content-Disposition: inline; filename="qr.png"',
-		'',
-		qrLines,
-		'',
-		`--${boundary}--`,
-		''
-	];
-
-	const rawMessage = rawParts.join(nl);
-
-	const raw = Buffer.from(rawMessage).toString('base64url');
-
-	await gmail.users.messages.send({
-		userId: 'me',
-		requestBody: { raw }
-	});
+export async function refreshAccessToken(refreshToken: string): Promise<string | null> {
+	try {
+		const response = await fetch('/api/auth/refresh', {
+			method: 'POST',
+			headers: {
+				'Content-Type': 'application/json'
+			},
+			body: JSON.stringify({ refreshToken })
+		});
+		
+		if (response.ok) {
+			const data = await response.json();
+			return data.accessToken;
+		}
+		return null;
+	} catch (error) {
+		console.error('Error refreshing token:', error);
+		return null;
+	}
 }
diff --git a/src/lib/sheets.ts b/src/lib/sheets.ts
new file mode 100644
index 0000000..b8dcc4c
--- /dev/null
+++ b/src/lib/sheets.ts
@@ -0,0 +1,58 @@
+import { google } from 'googleapis';
+import { getAuthenticatedClient } from './google-server.js';
+
+export interface GoogleSheet {
+	id: string;
+	name: string;
+	modifiedTime: string;
+	webViewLink: string;
+}
+
+export interface SheetData {
+	values: string[][];
+}
+
+export async function getRecentSpreadsheets(refreshToken: string, limit: number = 10): Promise<GoogleSheet[]> {
+	const oauth = getAuthenticatedClient(refreshToken);
+	const drive = google.drive({ version: 'v3', auth: oauth });
+
+	const response = await drive.files.list({
+		q: "mimeType='application/vnd.google-apps.spreadsheet'",
+		orderBy: 'modifiedTime desc',
+		pageSize: limit,
+		fields: 'files(id,name,modifiedTime,webViewLink)'
+	});
+
+	return response.data.files?.map(file => ({
+		id: file.id!,
+		name: file.name!,
+		modifiedTime: file.modifiedTime!,
+		webViewLink: file.webViewLink!
+	})) || [];
+}
+
+export async function getSpreadsheetData(refreshToken: string, spreadsheetId: string, range: string = 'A1:Z10'): Promise<SheetData> {
+	const oauth = getAuthenticatedClient(refreshToken);
+	const sheets = google.sheets({ version: 'v4', auth: oauth });
+
+	const response = await sheets.spreadsheets.values.get({
+		spreadsheetId,
+		range
+	});
+
+	return {
+		values: response.data.values || []
+	};
+}
+
+export async function getSpreadsheetInfo(refreshToken: string, spreadsheetId: string) {
+	const oauth = getAuthenticatedClient(refreshToken);
+	const sheets = google.sheets({ version: 'v4', auth: oauth });
+
+	const response = await sheets.spreadsheets.get({
+		spreadsheetId,
+		fields: 'properties.title,sheets.properties(title,sheetId)'
+	});
+
+	return response.data;
+}
diff --git a/src/routes/api/auth/refresh/+server.ts b/src/routes/api/auth/refresh/+server.ts
new file mode 100644
index 0000000..e6561ee
--- /dev/null
+++ b/src/routes/api/auth/refresh/+server.ts
@@ -0,0 +1,30 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { getOAuthClient } from '$lib/google-server.js';
+
+export const POST: RequestHandler = async ({ request }) => {
+	try {
+		const { refreshToken } = await request.json();
+		
+		if (!refreshToken) {
+			return json({ error: 'Refresh token is required' }, { status: 400 });
+		}
+
+		const oauth = getOAuthClient();
+		oauth.setCredentials({ refresh_token: refreshToken });
+
+		const { credentials } = await oauth.refreshAccessToken();
+		
+		if (!credentials.access_token) {
+			return json({ error: 'Failed to refresh token' }, { status: 500 });
+		}
+
+		return json({ 
+			accessToken: credentials.access_token,
+			expiresIn: credentials.expiry_date 
+		});
+	} catch (error) {
+		console.error('Error refreshing access token:', error);
+		return json({ error: 'Failed to refresh access token' }, { status: 500 });
+	}
+};
diff --git a/src/routes/api/sheets/[sheetId]/data/+server.ts b/src/routes/api/sheets/[sheetId]/data/+server.ts
new file mode 100644
index 0000000..263e099
--- /dev/null
+++ b/src/routes/api/sheets/[sheetId]/data/+server.ts
@@ -0,0 +1,22 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { getSpreadsheetData } from '$lib/sheets.js';
+
+export const GET: RequestHandler = async ({ params, request }) => {
+	try {
+		const { sheetId } = params;
+		const authHeader = request.headers.get('authorization');
+		
+		if (!authHeader?.startsWith('Bearer ')) {
+			return json({ error: 'Missing or invalid authorization header' }, { status: 401 });
+		}
+
+		const refreshToken = authHeader.slice(7);
+		const sheetData = await getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
+
+		return json(sheetData);
+	} catch (error) {
+		console.error('Error fetching spreadsheet data:', error);
+		return json({ error: 'Failed to fetch spreadsheet data' }, { status: 500 });
+	}
+};
diff --git a/src/routes/api/sheets/recent/+server.ts b/src/routes/api/sheets/recent/+server.ts
new file mode 100644
index 0000000..d9b94a2
--- /dev/null
+++ b/src/routes/api/sheets/recent/+server.ts
@@ -0,0 +1,20 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { getRecentSpreadsheets } from '$lib/sheets.js';
+
+export const GET: RequestHandler = async ({ request }) => {
+	try {
+		const authHeader = request.headers.get('authorization');
+		if (!authHeader?.startsWith('Bearer ')) {
+			return json({ error: 'Missing or invalid authorization header' }, { status: 401 });
+		}
+
+		const refreshToken = authHeader.slice(7);
+		const sheets = await getRecentSpreadsheets(refreshToken, 20);
+
+		return json(sheets);
+	} catch (error) {
+		console.error('Error fetching recent spreadsheets:', error);
+		return json({ error: 'Failed to fetch spreadsheets' }, { status: 500 });
+	}
+};
diff --git a/src/routes/auth/google/+server.ts b/src/routes/auth/google/+server.ts
new file mode 100644
index 0000000..d407c22
--- /dev/null
+++ b/src/routes/auth/google/+server.ts
@@ -0,0 +1,8 @@
+import { redirect } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { createAuthUrl } from '$lib/google-server.js';
+
+export const GET: RequestHandler = () => {
+	const authUrl = createAuthUrl();
+    throw redirect(302, authUrl);
+};
diff --git a/src/routes/auth/google/callback/+server.ts b/src/routes/auth/google/callback/+server.ts
new file mode 100644
index 0000000..840490c
--- /dev/null
+++ b/src/routes/auth/google/callback/+server.ts
@@ -0,0 +1,110 @@
+import { redirect } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { getOAuthClient } from '$lib/google-server.js';
+
+export const GET: RequestHandler = async ({ url }) => {
+	try {
+		const code = url.searchParams.get('code');
+		const error = url.searchParams.get('error');
+
+		if (error) {
+			console.error('Google OAuth error:', error);
+			throw redirect(302, '/private/events?error=google_auth_denied');
+		}
+
+		if (!code) {
+			throw redirect(302, '/private/events?error=missing_auth_code');
+		}
+
+		// Exchange code for tokens
+		const oauth = getOAuthClient();
+		const { tokens } = await oauth.getToken(code);
+
+		if (!tokens.refresh_token || !tokens.access_token) {
+			throw redirect(302, '/private/events?error=incomplete_tokens');
+		}
+
+		// Create a success page with tokens that closes the popup and communicates with parent
+		const html = `
+<!DOCTYPE html>
+<html>
+<head>
+	<title>Google Authentication Success</title>
+	<style>
+		body {
+			font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif;
+			display: flex;
+			align-items: center;
+			justify-content: center;
+			height: 100vh;
+			margin: 0;
+			background: #f9fafb;
+		}
+		.container {
+			text-align: center;
+			padding: 2rem;
+			background: white;
+			border-radius: 8px;
+			box-shadow: 0 1px 3px rgba(0, 0, 0, 0.1);
+		}
+		.success {
+			color: #059669;
+			margin-bottom: 1rem;
+		}
+		.loading {
+			color: #6b7280;
+		}
+	</style>
+</head>
+<body>
+	<div class="container">
+		<div class="success">✓ Authentication successful!</div>
+		<div class="loading">Closing window...</div>
+	</div>
+	<script>
+		(function() {
+			try {
+				// Store tokens in the parent window's localStorage
+				if (window.opener && !window.opener.closed) {
+					window.opener.localStorage.setItem('google_access_token', '${tokens.access_token}');
+					window.opener.localStorage.setItem('google_refresh_token', '${tokens.refresh_token}');
+					
+					// Send success message to parent
+					window.opener.postMessage({ 
+						type: 'GOOGLE_AUTH_SUCCESS',
+						tokens: {
+							accessToken: '${tokens.access_token}',
+							refreshToken: '${tokens.refresh_token}'
+						}
+					}, '*');
+					
+					// Close the popup after a short delay to ensure message is received
+					setTimeout(() => {
+						window.close();
+					}, 500);
+				} else {
+					// If no opener, close immediately
+					window.close();
+				}
+			} catch (error) {
+				console.error('Error in auth callback:', error);
+				// Try to close the window anyway
+				setTimeout(() => {
+					window.close();
+				}, 1000);
+			}
+		})();
+	</script>
+</body>
+</html>`;
+
+		return new Response(html, {
+			headers: {
+				'Content-Type': 'text/html'
+			}
+		});
+	} catch (error) {
+		console.error('Error handling Google OAuth callback:', error);
+		throw redirect(302, '/private/events?error=google_auth_failed');
+	}
+};
diff --git a/src/routes/private/api/gmail/+server.ts b/src/routes/private/api/gmail/+server.ts
index ca0e7d4..62b73e8 100644
--- a/src/routes/private/api/gmail/+server.ts
+++ b/src/routes/private/api/gmail/+server.ts
@@ -3,9 +3,9 @@ import { json, redirect } from '@sveltejs/kit';
 import {
 	createAuthUrl,
 	exchangeCodeForTokens,
-	sendGmail,
 	getOAuthClient
 } from '$lib/google';
+import { sendGmail } from '$lib/gmail';
 
 /* ───────────── GET ───────────── */
 export const GET: RequestHandler = async ({ url }) => {
diff --git a/src/routes/private/events/+page.svelte b/src/routes/private/events/+page.svelte
index 47dc1f6..01b0edc 100644
--- a/src/routes/private/events/+page.svelte
+++ b/src/routes/private/events/+page.svelte
@@ -1,53 +1,24 @@
 <script lang="ts">
-    import { onMount } from 'svelte';
-    import SingleEvent from './SingleEvent.svelte';
-
-    let { data } = $props();
-
-    let events: any[] = $state([]);
-    let archived_events: any[] = $state([]);
-    let loading = $state(true);
-
-    onMount(async () => {
-      const { data: evs } = await data.supabase
-        .from('events')
-        .select('id, name, date')
-        .order('date', { ascending: false });
-
-      const { data: aevs } = await data.supabase
-        .from('events_archived')
-        .select('id, name, date')
-        .order('date', { ascending: false });    
-
-      events = evs || [];
-      archived_events = aevs || [];        
-      loading = false;
-    });
+    export let data;
 </script>
 
 <h1 class="text-2xl font-bold mb-4 mt-2 text-center">All Events</h1>
 <div class="grid grid-cols-1 md:grid-cols-2 gap-4 max-w-2xl mx-auto">
-  {#if loading}
-    {#each Array(4) as _}
-      <div class="block border border-gray-300 rounded bg-white p-4 shadow-none min-h-[72px] h-full w-full">
-        <div class="flex flex-col gap-1">
-          <span class="font-semibold text-lg text-gray-300 bg-gray-200 rounded w-1/2 h-6 mb-2 inline-block"></span>
-          <span class="text-gray-300 text-sm bg-gray-100 rounded w-1/3 h-4 inline-block"></span>
-        </div>
+  {#each data.events as event}
+    <a
+      href={`/private/events/event?id=${event.id}`}
+      class="block border border-gray-300 rounded bg-white p-4 shadow-none transition cursor-pointer hover:border-blue-500 group"
+    >
+      <div class="flex flex-col gap-1">
+        <span class="font-semibold text-lg text-black-700 group-hover:underline">{event.name}</span>
+        <span class="text-gray-500 text-sm">{event.date}</span>
       </div>
-    {/each}
-  {:else}
-    {#each events as event}
-      <SingleEvent id={event.id} name={event.name} date={event.date} archived={false} />
-    {/each}
-    {#each archived_events as event}
-      <SingleEvent id={event.id} name={event.name} date={event.date} archived={true} />
-    {/each}
-  {/if}
+    </a>
+  {/each}
 </div>
 
 <a
-  href="/private/events/creator"
+  href="/private/events/event/new"
   class="fixed bottom-6 left-1/2 -translate-x-1/2 z-50 bg-blue-600 hover:bg-blue-700 text-white font-bold py-3 px-8 rounded-full shadow-none border border-gray-300"
 >
   New Event
diff --git a/src/routes/private/events/event/new/+page.server.ts b/src/routes/private/events/event/new/+page.server.ts
new file mode 100644
index 0000000..036c394
--- /dev/null
+++ b/src/routes/private/events/event/new/+page.server.ts
@@ -0,0 +1,7 @@
+export const load = async ({ locals }: { locals: any }) => {
+	const { session } = await locals.safeGetSession();
+
+	return {
+		session
+	};
+};
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
new file mode 100644
index 0000000..bad1c12
--- /dev/null
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -0,0 +1,795 @@
+<script lang="ts">
+	import { onMount } from 'svelte';
+	import type { GoogleSheet } from '$lib/sheets.js';
+	import { isTokenValid, refreshAccessToken } from '$lib/google.js';
+
+	let { data } = $props();
+
+	// Step management
+	let currentStep = $state(0); // Start at step 0 for Google auth check
+	const totalSteps = 4; // Increased to include auth step
+
+	// Step 0: Google Auth
+	let authData = $state({
+		isConnected: false,
+		checking: true,
+		connecting: false,
+		showCancelOption: false,
+		token: null as string | null,
+		error: null as string | null
+	});
+
+	// Step 1: Event Details
+	let eventData = $state({
+		name: '',
+		date: ''
+	});
+
+	// Step 2: Google Sheets
+	let sheetsData = $state({
+		availableSheets: [] as GoogleSheet[],
+		selectedSheet: null as GoogleSheet | null,
+		sheetData: [] as string[][],
+		columnMapping: {
+			name: 0,  // Initialize to 0 (no column selected)
+			surname: 0,
+			email: 0,
+			confirmation: 0
+		},
+		loading: false,
+		expandedSheetList: true // Add this flag to control sheet list expansion
+	});
+
+	// Step 3: Email
+	let emailData = $state({
+		subject: '',
+		body: ''
+	});
+
+	// General state
+	let loading = $state(false);
+	let errors = $state<Record<string, string>>({});
+
+	onMount(async () => {
+		// Check Google auth status on mount
+		await checkGoogleAuth();
+		
+		if (currentStep === 2) {
+			await loadRecentSheets();
+		}
+	});
+
+	// Google Auth functions
+	async function checkGoogleAuth() {
+		authData.checking = true;
+		try {
+			const accessToken = localStorage.getItem('google_access_token');
+			const refreshToken = localStorage.getItem('google_refresh_token');
+			
+			if (accessToken && refreshToken) {
+				// Check if token is still valid
+				const isValid = await isTokenValid(accessToken);
+				authData.isConnected = isValid;
+				authData.token = accessToken;
+			} else {
+				authData.isConnected = false;
+			}
+		} catch (error) {
+			console.error('Error checking Google auth:', error);
+			authData.isConnected = false;
+			authData.error = 'Error checking Google connection';
+		} finally {
+			authData.checking = false;
+		}
+	}
+
+	async function connectToGoogle() {
+		authData.error = '';
+		authData.connecting = true;
+		
+		try {
+			// Open popup window for OAuth
+			const popup = window.open(
+				'/auth/google',
+				'google-auth',
+				'width=500,height=600,scrollbars=yes,resizable=yes,left=' + 
+				Math.round(window.screen.width / 2 - 250) + ',top=' + 
+				Math.round(window.screen.height / 2 - 300)
+			);
+
+			if (!popup) {
+				authData.error = 'Failed to open popup window. Please allow popups for this site.';
+				authData.connecting = false;
+				return;
+			}
+
+			let authCompleted = false;
+			let popupTimer: number | null = null;
+			let cancelTimeout: number | null = null;
+
+			// Listen for messages from the popup
+			const messageHandler = (event: MessageEvent) => {
+				if (event.data?.type === 'GOOGLE_AUTH_SUCCESS') {
+					authCompleted = true;
+					authData.connecting = false;
+					authData.showCancelOption = false;
+					window.removeEventListener('message', messageHandler);
+					
+					// Clean up timers
+					if (popupTimer) clearTimeout(popupTimer);
+					if (cancelTimeout) clearTimeout(cancelTimeout);
+					
+					// Check auth status again after success
+					setTimeout(checkGoogleAuth, 100);
+				}
+			};
+
+			// Clean up function to handle all cleanup in one place
+			const cleanUp = () => {
+				window.removeEventListener('message', messageHandler);
+				if (popupTimer) clearTimeout(popupTimer);
+				if (cancelTimeout) clearTimeout(cancelTimeout);
+				authData.connecting = false;
+			};
+
+			window.addEventListener('message', messageHandler);
+
+			// Set a timeout to check auth status regardless of popup state
+			// This is a workaround for Cross-Origin-Opener-Policy restrictions
+			popupTimer = setTimeout(() => {
+				// Only check if auth isn't already completed
+				if (!authCompleted) {
+					cleanUp();
+					// Check if tokens were stored by the popup before it was closed
+					setTimeout(checkGoogleAuth, 100);
+				}
+			}, 60 * 1000) as unknown as number;
+
+			// After 20 seconds with no response, show cancel option
+			cancelTimeout = setTimeout(() => {
+				if (!authCompleted) {
+					authData.showCancelOption = true;
+				}
+			}, 20 * 1000) as unknown as number;
+
+			// Set a final timeout to clean up everything if nothing else worked
+			setTimeout(() => {
+				if (!authCompleted) {
+					cleanUp();
+				}
+			}, 3 * 60 * 1000); // 3 minute max timeout
+
+		} catch (error) {
+			console.error('Error connecting to Google:', error);
+			authData.error = 'Failed to connect to Google';
+			authData.connecting = false;
+		}
+	}
+	
+	function cancelGoogleAuth() {
+		authData.connecting = false;
+		authData.showCancelOption = false;
+	}
+
+	// Step navigation
+	function nextStep() {
+		if (validateCurrentStep()) {
+			currentStep = Math.min(currentStep + 1, totalSteps - 1);
+			if (currentStep === 2) {
+				loadRecentSheets();
+			}
+		}
+	}
+
+	function prevStep() {
+		currentStep = Math.max(currentStep - 1, 0);
+	}
+
+	function validateCurrentStep(): boolean {
+		errors = {};
+		
+		if (currentStep === 0) {
+			if (!authData.isConnected) {
+				errors.auth = 'Please connect your Google account to continue';
+				return false;
+			}
+		} else if (currentStep === 1) {
+			if (!eventData.name.trim()) {
+				errors.name = 'Event name is required';
+			}
+			if (!eventData.date) {
+				errors.date = 'Event date is required';
+			}
+		} else if (currentStep === 2) {
+			if (!sheetsData.selectedSheet) {
+				errors.sheet = 'Please select a Google Sheet';
+			}
+			
+			if (sheetsData.selectedSheet) {
+				// Validate column mappings
+				const { name, surname, email, confirmation } = sheetsData.columnMapping;
+				const missingColumns = [];
+				
+				if (!name) missingColumns.push('Name');
+				if (!surname) missingColumns.push('Surname');
+				if (!email) missingColumns.push('Email');
+				if (!confirmation) missingColumns.push('Confirmation');
+				
+				if (missingColumns.length > 0) {
+					errors.sheetData = `Please map the following columns: ${missingColumns.join(', ')}`;
+				}
+			}
+		} else if (currentStep === 3) {
+			if (!emailData.subject.trim()) {
+				errors.subject = 'Email subject is required';
+			}
+			if (!emailData.body.trim()) {
+				errors.body = 'Email body is required';
+			}
+		}
+
+		return Object.keys(errors).length === 0;
+	}
+
+	// Google Sheets functions
+	async function loadRecentSheets() {
+		sheetsData.loading = true;
+		// Always expand the sheet list when loading new sheets
+		sheetsData.expandedSheetList = true;
+		
+		try {
+			// TODO: Replace with actual API call
+			const response = await fetch('/api/sheets/recent', {
+				method: 'GET',
+				headers: {
+					'Authorization': `Bearer ${localStorage.getItem('google_refresh_token')}`
+				}
+			});
+			
+			if (response.ok) {
+				sheetsData.availableSheets = await response.json();
+			}
+		} catch (error) {
+			console.error('Error loading sheets:', error);
+			errors.sheets = 'Failed to load Google Sheets';
+		} finally {
+			sheetsData.loading = false;
+		}
+	}
+
+	async function selectSheet(sheet: GoogleSheet) {
+		const sameSheet = sheetsData.selectedSheet?.id === sheet.id;
+		
+		sheetsData.selectedSheet = sheet;
+		sheetsData.loading = true;
+		
+		// Collapse sheet list when selecting a new sheet
+		if (!sameSheet) {
+			sheetsData.expandedSheetList = false;
+		}
+		
+		try {
+			// TODO: Replace with actual API call
+			const response = await fetch(`/api/sheets/${sheet.id}/data`, {
+				method: 'GET',
+				headers: {
+					'Authorization': `Bearer ${localStorage.getItem('google_refresh_token')}`
+				}
+			});
+			
+			if (response.ok) {
+				const data = await response.json();
+				sheetsData.sheetData = data.values || [];
+			}
+		} catch (error) {
+			console.error('Error loading sheet data:', error);
+			errors.sheetData = 'Failed to load sheet data';
+		} finally {
+			sheetsData.loading = false;
+		}
+	}
+	
+	// Toggle the sheet list expansion
+	function toggleSheetList() {
+		sheetsData.expandedSheetList = !sheetsData.expandedSheetList;
+	}
+
+	// Final submission
+	async function createEvent() {
+		if (!validateCurrentStep()) return;
+
+		loading = true;
+		try {
+			// TODO: Replace with actual Supabase function call
+			const { error } = await data.supabase.rpc('create_event', {
+				p_name: eventData.name,
+				p_date: eventData.date,
+				p_email_subject: emailData.subject,
+				p_email_body: emailData.body,
+				p_sheet_id: sheetsData.selectedSheet?.id,
+				p_name_column: sheetsData.columnMapping.name,
+				p_surname_column: sheetsData.columnMapping.surname,
+				p_email_column: sheetsData.columnMapping.email,
+				p_confirmation_column: sheetsData.columnMapping.confirmation
+			});
+
+			if (error) throw error;
+
+			// Redirect to events list or show success message
+			window.location.href = '/private/events';
+		} catch (error) {
+			console.error('Error creating event:', error);
+			errors.submit = 'Failed to create event. Please try again.';
+		} finally {
+			loading = false;
+		}
+	}
+
+	// Computed values
+	let canProceed = $derived(() => {
+		if (currentStep === 0) return authData.isConnected;
+		if (currentStep === 1) return eventData.name && eventData.date;
+		if (currentStep === 2) {
+			const { name, surname, email, confirmation } = sheetsData.columnMapping;
+			return sheetsData.selectedSheet && name && surname && email && confirmation;
+		}
+		if (currentStep === 3) return emailData.subject && emailData.body;
+		return false;
+	});
+
+	let stepTitle = $derived(() => {
+		if (currentStep === 0) return 'Connect Google Account';
+		if (currentStep === 1) return 'Event Details';
+		if (currentStep === 2) return 'Connect Google Sheets';
+		if (currentStep === 3) return 'Email Settings';
+		return '';
+	});
+</script>
+
+<div class="max-w-4xl mx-auto p-6">
+	<!-- Header -->
+	<div class="mb-8">
+		<h1 class="text-2xl font-bold text-gray-900 mb-2">Create New Event</h1>
+		<div class="flex items-center gap-4">
+			{#each Array(totalSteps) as _, index}
+				<div class="flex items-center gap-2">
+					<div class="w-8 h-8 rounded-full flex items-center justify-center text-sm font-medium {
+						index === currentStep ? 'bg-blue-600 text-white' :
+						index < currentStep ? 'bg-green-600 text-white' :
+						'bg-gray-200 text-gray-600'
+					}">
+						{index + 1}
+					</div>
+					{#if index < totalSteps - 1}
+						<div class="w-8 h-1 {
+							index < currentStep ? 'bg-green-600' : 'bg-gray-200'
+						}"></div>
+					{/if}
+				</div>
+			{/each}
+		</div>
+		<p class="text-gray-600 mt-2">Step {currentStep + 1} of {totalSteps}: {stepTitle}</p>
+	</div>
+
+	<!-- Step Content -->
+	<div class="rounded-lg border border-gray-300 bg-white p-6 mb-6">
+		{#if currentStep === 0}
+			<!-- Step 0: Google Authentication -->
+			<div class="space-y-6">
+				<div class="text-center">
+					<h3 class="text-lg font-medium text-gray-900 mb-4">Connect Your Google Account</h3>
+					<p class="text-gray-600 mb-6">
+						To create events and import participants from Google Sheets, you need to connect your Google account.
+					</p>
+
+					{#if authData.checking}
+						<div class="flex justify-center items-center space-x-2">
+							<div class="animate-spin rounded-full h-6 w-6 border-b-2 border-blue-600"></div>
+							<span class="text-gray-600">Checking connection...</span>
+						</div>
+					{:else if authData.isConnected}
+						<div class="rounded-lg bg-green-50 border border-green-200 p-4 mb-4">
+							<div class="flex items-center">
+								<div class="flex-shrink-0">
+									<svg class="h-5 w-5 text-green-400" viewBox="0 0 20 20" fill="currentColor">
+										<path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zm3.707-9.293a1 1 0 00-1.414-1.414L9 10.586 7.707 9.293a1 1 0 00-1.414 1.414l2 2a1 1 0 001.414 0l4-4z" clip-rule="evenodd" />
+									</svg>
+								</div>
+								<div class="ml-3">
+									<p class="text-sm font-medium text-green-800">
+										Google account connected successfully!
+									</p>
+									<p class="text-sm text-green-700 mt-1">
+										You can now access Google Sheets and Gmail features.
+									</p>
+								</div>
+							</div>
+						</div>
+					{:else}
+						<div class="rounded-lg bg-yellow-50 border border-yellow-200 p-4 mb-4">
+							<div class="flex items-center">
+								<div class="flex-shrink-0">
+									<svg class="h-5 w-5 text-yellow-400" viewBox="0 0 20 20" fill="currentColor">
+										<path fill-rule="evenodd" d="M8.257 3.099c.765-1.36 2.722-1.36 3.486 0l5.58 9.92c.75 1.334-.213 2.98-1.742 2.98H4.42c-1.53 0-2.493-1.646-1.743-2.98l5.58-9.92zM11 13a1 1 0 11-2 0 1 1 0 012 0zm-1-8a1 1 0 00-1 1v3a1 1 0 002 0V6a1 1 0 00-1-1z" clip-rule="evenodd" />
+									</svg>
+								</div>
+								<div class="ml-3">
+									<p class="text-sm font-medium text-yellow-800">
+										Google account not connected
+									</p>
+									<p class="text-sm text-yellow-700 mt-1">
+										Please connect your Google account to continue with event creation.
+									</p>
+								</div>
+							</div>
+						</div>
+
+						<div class="flex flex-col gap-3">
+							<button
+								onclick={connectToGoogle}
+								disabled={authData.connecting}
+								class="inline-flex items-center px-6 py-3 border border-transparent text-base font-medium rounded-md text-white bg-blue-600 hover:bg-blue-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 transition disabled:opacity-50 disabled:cursor-not-allowed"
+								aria-label="Connect to Google account"
+							>
+								{#if authData.connecting}
+									<div class="w-5 h-5 mr-2 animate-spin rounded-full border-2 border-white border-t-transparent"></div>
+									Connecting...
+								{:else}
+									<svg class="w-5 h-5 mr-2" viewBox="0 0 24 24">
+										<path fill="currentColor" d="M22.56 12.25c0-.78-.07-1.53-.2-2.25H12v4.26h5.92c-.26 1.37-1.04 2.53-2.21 3.31v2.77h3.57c2.08-1.92 3.28-4.74 3.28-8.09z"/>
+										<path fill="currentColor" d="M12 23c2.97 0 5.46-.98 7.28-2.66l-3.57-2.77c-.98.66-2.23 1.06-3.71 1.06-2.86 0-5.29-1.93-6.16-4.53H2.18v2.84C3.99 20.53 7.7 23 12 23z"/>
+										<path fill="currentColor" d="M5.84 14.09c-.22-.66-.35-1.36-.35-2.09s.13-1.43.35-2.09V7.07H2.18C1.43 8.55 1 10.22 1 12s.43 3.45 1.18 4.93l2.85-2.22.81-.62z"/>
+										<path fill="currentColor" d="M12 5.38c1.62 0 3.06.56 4.21 1.64l3.15-3.15C17.45 2.09 14.97 1 12 1 7.7 1 3.99 3.47 2.18 7.07l3.66 2.84c.87-2.6 3.3-4.53 6.16-4.53z"/>
+									</svg>
+									Connect to Google
+								{/if}
+							</button>
+							
+							{#if authData.connecting && authData.showCancelOption}
+								<button
+									onclick={cancelGoogleAuth}
+									class="text-sm text-gray-600 hover:text-gray-900"
+									aria-label="Cancel Google authentication"
+								>
+									Cancel connection
+								</button>
+								<p class="text-xs text-gray-500 mt-1">
+									Taking too long? You can cancel and try again.
+								</p>
+							{/if}
+						</div>
+					{/if}
+
+					{#if authData.error}
+						<div class="mt-4 rounded-lg bg-red-50 border border-red-200 p-4">
+							<div class="flex items-center">
+								<div class="flex-shrink-0">
+									<svg class="h-5 w-5 text-red-400" viewBox="0 0 20 20" fill="currentColor">
+										<path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zM8.707 7.293a1 1 0 00-1.414 1.414L8.586 10l-1.293 1.293a1 1 0 101.414 1.414L10 11.414l1.293 1.293a1 1 0 001.414-1.414L11.414 10l1.293-1.293a1 1 0 00-1.414-1.414L10 8.586 8.707 7.293z" clip-rule="evenodd" />
+									</svg>
+								</div>
+								<div class="ml-3">
+									<p class="text-sm font-medium text-red-800">
+										Connection Error
+									</p>
+									<p class="text-sm text-red-700 mt-1">
+										{authData.error}
+									</p>
+								</div>
+							</div>
+						</div>
+					{/if}
+
+					{#if errors.auth}
+						<p class="mt-2 text-sm text-red-600">{errors.auth}</p>
+					{/if}
+				</div>
+			</div>
+
+		{:else if currentStep === 1}
+			<!-- Step 1: Event Details -->
+			<div class="space-y-6">
+				<div>
+					<label for="eventName" class="block text-sm font-medium text-gray-700 mb-2">
+						Event Name *
+					</label>
+					<input
+						id="eventName"
+						type="text"
+						bind:value={eventData.name}
+						class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+						placeholder="Enter event name"
+					/>
+					{#if errors.name}
+						<p class="mt-1 text-sm text-red-600">{errors.name}</p>
+					{/if}
+				</div>
+
+				<div>
+					<label for="eventDate" class="block text-sm font-medium text-gray-700 mb-2">
+						Event Date *
+					</label>
+					<input
+						id="eventDate"
+						type="date"
+						bind:value={eventData.date}
+						class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+					/>
+					{#if errors.date}
+						<p class="mt-1 text-sm text-red-600">{errors.date}</p>
+					{/if}
+				</div>
+			</div>
+
+		{:else if currentStep === 2}
+			<!-- Step 2: Google Sheets -->
+			<div class="space-y-6">
+				<div>
+					<h3 class="text-lg font-medium text-gray-900 mb-4">Select Google Sheet</h3>
+					
+					{#if sheetsData.loading && sheetsData.availableSheets.length === 0}
+						<div class="space-y-3">
+							{#each Array(5) as _}
+								<div class="p-4 border border-gray-200 rounded animate-pulse">
+									<div class="h-4 bg-gray-200 rounded w-3/4 mb-2"></div>
+									<div class="h-3 bg-gray-100 rounded w-1/2"></div>
+								</div>
+							{/each}
+						</div>
+					{:else if sheetsData.availableSheets.length === 0}
+						<div class="text-center py-8">
+							<p class="text-gray-500">No Google Sheets found.</p>
+							<button
+								onclick={loadRecentSheets}
+								class="mt-2 px-4 py-2 bg-blue-600 text-white rounded hover:bg-blue-700 transition"
+							>
+								Refresh
+							</button>
+						</div>
+					{:else}
+						<div class="space-y-3">
+							{#if !sheetsData.expandedSheetList && sheetsData.selectedSheet}
+								<!-- Selected sheet only (collapsed view) -->
+								<div class="flex items-center justify-between p-4 border border-blue-500 bg-blue-50 rounded">
+									<div>
+										<div class="font-medium text-gray-900">{sheetsData.selectedSheet.name}</div>
+										<div class="text-sm text-gray-500">
+											Modified: {new Date(sheetsData.selectedSheet.modifiedTime).toLocaleDateString()}
+										</div>
+									</div>
+									<button
+										onclick={toggleSheetList}
+										class="text-blue-600 hover:text-blue-800 flex items-center"
+										aria-label="Show all sheets"
+									>
+										<span class="text-sm mr-1">Change</span>
+										<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4" viewBox="0 0 20 20" fill="currentColor">
+											<path fill-rule="evenodd" d="M5.293 7.293a1 1 0 011.414 0L10 10.586l3.293-3.293a1 1 0 111.414 1.414l-4 4a1 1 0 01-1.414 0l-4-4a1 1 0 010-1.414z" clip-rule="evenodd" />
+										</svg>
+									</button>
+								</div>
+							{:else}
+								<!-- All sheets (expanded view) -->
+								<div class="flex justify-between items-center mb-2">
+									<h4 class="text-sm font-medium text-gray-700">Available Sheets</h4>
+									{#if sheetsData.selectedSheet}
+										<button
+											onclick={toggleSheetList}
+											class="text-sm text-blue-600 hover:text-blue-800"
+											aria-label="Hide sheet list"
+										>
+											Collapse list
+										</button>
+									{/if}
+								</div>
+								<div class="grid gap-3">
+									{#each sheetsData.availableSheets as sheet}
+										<button
+											onclick={() => selectSheet(sheet)}
+											class="p-4 text-left border border-gray-200 rounded hover:border-blue-500 transition {
+												sheetsData.selectedSheet?.id === sheet.id ? 'border-blue-500 bg-blue-50' : ''
+											}"
+										>
+											<div class="font-medium text-gray-900">{sheet.name}</div>
+											<div class="text-sm text-gray-500">
+												Modified: {new Date(sheet.modifiedTime).toLocaleDateString()}
+											</div>
+										</button>
+									{/each}
+								</div>
+							{/if}
+						</div>
+					{/if}
+
+					{#if errors.sheet}
+						<p class="mt-2 text-sm text-red-600">{errors.sheet}</p>
+					{/if}
+				</div>
+
+				{#if sheetsData.selectedSheet && sheetsData.sheetData.length > 0}
+					<div>
+						<h4 class="text-md font-medium text-gray-900 mb-3">Column Mapping</h4>
+						
+						<!-- Instructions for column mapping -->
+						<div class="bg-blue-50 p-4 rounded-md border border-blue-200 mb-4">
+							<p class="text-sm text-blue-800 mb-2 font-medium">Column Mapping Instructions:</p>
+							<p class="text-sm text-blue-700">
+								Select what each column represents by using the dropdown in each column header. 
+								Make sure to assign Name, Surname, Email, and Confirmation columns.
+							</p>
+						</div>
+						
+						<div class="overflow-x-auto">
+							<table class="w-full border border-gray-200 rounded">
+								<thead>
+									<tr class="bg-gray-50">
+										{#each sheetsData.sheetData[0] || [] as header, index}
+											<th class="px-3 py-2 border-b border-gray-200 text-left">
+												<div class="flex flex-col gap-2">
+													<div class="font-medium text-gray-900">
+														Column {index + 1}
+														<span class="text-xs text-gray-500">({header || 'Empty'})</span>
+													</div>
+													<select 
+														class="text-sm normal-case font-normal px-2 py-1 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+														aria-label={`Select data type for column ${index + 1}`}
+														onclick={(e) => e.stopPropagation()}
+														onchange={(e) => {
+															const value = e.target.value;
+															if (value === "none") return;
+															
+															// Reset previous selection if this column was already mapped
+															if (sheetsData.columnMapping.name === index + 1) sheetsData.columnMapping.name = 0;
+															if (sheetsData.columnMapping.surname === index + 1) sheetsData.columnMapping.surname = 0;
+															if (sheetsData.columnMapping.email === index + 1) sheetsData.columnMapping.email = 0;
+															if (sheetsData.columnMapping.confirmation === index + 1) sheetsData.columnMapping.confirmation = 0;
+															
+															// Set new mapping
+															if (value === "name") sheetsData.columnMapping.name = index + 1;
+															else if (value === "surname") sheetsData.columnMapping.surname = index + 1;
+															else if (value === "email") sheetsData.columnMapping.email = index + 1;
+															else if (value === "confirmation") sheetsData.columnMapping.confirmation = index + 1;
+														}}
+													>
+														<option value="none">Select data type</option>
+														<option value="name" selected={sheetsData.columnMapping.name === index + 1}>Name</option>
+														<option value="surname" selected={sheetsData.columnMapping.surname === index + 1}>Surname</option>
+														<option value="email" selected={sheetsData.columnMapping.email === index + 1}>Email</option>
+														<option value="confirmation" selected={sheetsData.columnMapping.confirmation === index + 1}>Confirmation</option>
+													</select>
+													{#if sheetsData.columnMapping.name === index + 1}
+														<span class="bg-green-100 text-green-800 text-xs px-2 py-1 rounded">Name Column</span>
+													{:else if sheetsData.columnMapping.surname === index + 1}
+														<span class="bg-blue-100 text-blue-800 text-xs px-2 py-1 rounded">Surname Column</span>
+													{:else if sheetsData.columnMapping.email === index + 1}
+														<span class="bg-purple-100 text-purple-800 text-xs px-2 py-1 rounded">Email Column</span>
+													{:else if sheetsData.columnMapping.confirmation === index + 1}
+														<span class="bg-amber-100 text-amber-800 text-xs px-2 py-1 rounded">Confirmation Column</span>
+													{/if}
+												</div>
+											</th>
+										{/each}
+									</tr>
+								</thead>
+								<tbody>
+									{#each sheetsData.sheetData.slice(0, 10) as row, rowIndex}
+										<tr class="hover:bg-gray-50">
+											{#each row as cell, cellIndex}
+												<td class="px-3 py-2 border-b border-gray-100 text-sm">
+													<span 
+														class={
+															sheetsData.columnMapping.name === cellIndex + 1 ? 'font-medium text-green-700' : 
+															sheetsData.columnMapping.surname === cellIndex + 1 ? 'font-medium text-blue-700' : 
+															sheetsData.columnMapping.email === cellIndex + 1 ? 'font-medium text-purple-700' : 
+															sheetsData.columnMapping.confirmation === cellIndex + 1 ? 'font-medium text-amber-700' : 
+															'text-gray-700'
+														}
+													>
+														{cell || ''}
+													</span>
+												</td>
+											{/each}
+										</tr>
+									{/each}
+								</tbody>
+							</table>
+						</div>
+						<p class="mt-2 text-sm text-gray-500">Showing first 10 rows</p>
+					</div>
+				{/if}
+
+				{#if sheetsData.loading && sheetsData.selectedSheet}
+					<div class="text-center py-4">
+						<div class="text-gray-600">Loading sheet data...</div>
+					</div>
+				{/if}
+
+				{#if errors.sheetData}
+					<p class="text-sm text-red-600">{errors.sheetData}</p>
+				{/if}
+			</div>
+
+		{:else if currentStep === 3}
+			<!-- Step 3: Email Settings -->
+			<div class="space-y-6">
+				<div>
+					<label for="emailSubject" class="block text-sm font-medium text-gray-700 mb-2">
+						Email Subject *
+					</label>
+					<input
+						id="emailSubject"
+						type="text"
+						bind:value={emailData.subject}
+						class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+						placeholder="Event invitation subject"
+					/>
+					{#if errors.subject}
+						<p class="mt-1 text-sm text-red-600">{errors.subject}</p>
+					{/if}
+				</div>
+
+				<div>
+					<label for="emailBody" class="block text-sm font-medium text-gray-700 mb-2">
+						Email Body *
+					</label>
+					<textarea
+						id="emailBody"
+						bind:value={emailData.body}
+						rows="8"
+						class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+						placeholder="Email message content..."
+					></textarea>
+					{#if errors.body}
+						<p class="mt-1 text-sm text-red-600">{errors.body}</p>
+					{/if}
+				</div>
+
+				<!-- Preview -->
+				<div class="border-t border-gray-200 pt-6">
+					<h4 class="text-md font-medium text-gray-900 mb-3">Preview</h4>
+					<div class="border border-gray-200 rounded p-4 bg-gray-50">
+						<div class="font-medium text-gray-900 mb-2">Subject: {emailData.subject || 'No subject'}</div>
+						<div class="text-gray-700 whitespace-pre-line">{emailData.body || 'No content'}</div>
+					</div>
+				</div>
+			</div>
+		{/if}
+
+		{#if errors.submit}
+			<div class="mt-4 p-3 bg-red-50 border border-red-200 rounded">
+				<p class="text-sm text-red-600">{errors.submit}</p>
+			</div>
+		{/if}
+	</div>
+
+	<!-- Navigation -->
+	<div class="flex items-center justify-between">
+		<button
+			onclick={prevStep}
+			disabled={currentStep === 0}
+			class="px-4 py-2 text-gray-700 bg-gray-100 hover:bg-gray-200 rounded transition disabled:opacity-50 disabled:cursor-not-allowed"
+		>
+			Previous
+		</button>
+
+		<div class="flex gap-2">
+			{#if currentStep < totalSteps - 1}
+				<button
+					onclick={nextStep}
+					disabled={currentStep === 0 ? !authData.isConnected : !canProceed}
+					class="px-6 py-2 bg-blue-600 text-white font-semibold rounded hover:bg-blue-700 transition disabled:opacity-50 disabled:cursor-not-allowed"
+				>
+					Next
+				</button>
+			{:else}
+				<button
+					onclick={createEvent}
+					disabled={!canProceed || loading}
+					class="px-6 py-2 bg-green-600 text-white font-semibold rounded hover:bg-green-700 transition disabled:opacity-50 disabled:cursor-not-allowed"
+				>
+					{loading ? 'Creating...' : 'Create Event'}
+				</button>
+			{/if}
+		</div>
+	</div>
+</div>
-- 
2.49.1


From c2949e4bfeff1fbb09aa8a8395960a3a2b1b80f7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Wed, 2 Jul 2025 23:23:15 +0200
Subject: [PATCH 04/20] Create event creation structuring and polishing

---
 .../private/events/event/new/+page.server.ts  |   7 -
 .../private/events/event/new/+page.svelte     | 524 +++---------------
 .../new/components/EmailSettingsStep.svelte   |  43 ++
 .../new/components/EventDetailsStep.svelte    |  44 ++
 .../new/components/GoogleAuthStep.svelte      | 144 +++++
 .../new/components/GoogleSheetsStep.svelte    | 213 +++++++
 .../new/components/StepNavigation.svelte      |  42 ++
 .../event/new/components/StepNavigator.svelte |  28 +
 8 files changed, 600 insertions(+), 445 deletions(-)
 delete mode 100644 src/routes/private/events/event/new/+page.server.ts
 create mode 100644 src/routes/private/events/event/new/components/EmailSettingsStep.svelte
 create mode 100644 src/routes/private/events/event/new/components/EventDetailsStep.svelte
 create mode 100644 src/routes/private/events/event/new/components/GoogleAuthStep.svelte
 create mode 100644 src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
 create mode 100644 src/routes/private/events/event/new/components/StepNavigation.svelte
 create mode 100644 src/routes/private/events/event/new/components/StepNavigator.svelte

diff --git a/src/routes/private/events/event/new/+page.server.ts b/src/routes/private/events/event/new/+page.server.ts
deleted file mode 100644
index 036c394..0000000
--- a/src/routes/private/events/event/new/+page.server.ts
+++ /dev/null
@@ -1,7 +0,0 @@
-export const load = async ({ locals }: { locals: any }) => {
-	const { session } = await locals.safeGetSession();
-
-	return {
-		session
-	};
-};
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
index bad1c12..5f20ee6 100644
--- a/src/routes/private/events/event/new/+page.svelte
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -2,6 +2,15 @@
 	import { onMount } from 'svelte';
 	import type { GoogleSheet } from '$lib/sheets.js';
 	import { isTokenValid, refreshAccessToken } from '$lib/google.js';
+    import { goto } from '$app/navigation';
+	
+	// Import Components
+	import GoogleAuthStep from './components/GoogleAuthStep.svelte';
+	import EventDetailsStep from './components/EventDetailsStep.svelte';
+	import GoogleSheetsStep from './components/GoogleSheetsStep.svelte';
+	import EmailSettingsStep from './components/EmailSettingsStep.svelte';
+	import StepNavigator from './components/StepNavigator.svelte';
+	import StepNavigation from './components/StepNavigation.svelte';
 
 	let { data } = $props();
 
@@ -16,7 +25,8 @@
 		connecting: false,
 		showCancelOption: false,
 		token: null as string | null,
-		error: null as string | null
+		error: null as string | null,
+		userEmail: null as string | null
 	});
 
 	// Step 1: Event Details
@@ -71,13 +81,20 @@
 				const isValid = await isTokenValid(accessToken);
 				authData.isConnected = isValid;
 				authData.token = accessToken;
+				
+				if (isValid) {
+					// Fetch user info
+					await fetchUserInfo(accessToken);
+				}
 			} else {
 				authData.isConnected = false;
+				authData.userEmail = null;
 			}
 		} catch (error) {
 			console.error('Error checking Google auth:', error);
 			authData.isConnected = false;
 			authData.error = 'Error checking Google connection';
+			authData.userEmail = null;
 		} finally {
 			authData.checking = false;
 		}
@@ -170,6 +187,59 @@
 		authData.connecting = false;
 		authData.showCancelOption = false;
 	}
+	
+	async function fetchUserInfo(accessToken: string) {
+		try {
+			const response = await fetch('https://www.googleapis.com/oauth2/v2/userinfo', {
+				headers: {
+					Authorization: `Bearer ${accessToken}`
+				}
+			});
+			
+			if (response.ok) {
+				const userData = await response.json();
+				authData.userEmail = userData.email;
+			} else {
+				console.error('Failed to fetch user info:', await response.text());
+				authData.userEmail = null;
+			}
+		} catch (error) {
+			console.error('Error fetching user info:', error);
+			authData.userEmail = null;
+		}
+	}
+	
+	async function disconnectGoogle() {
+		try {
+			// First revoke the token at Google
+			const accessToken = localStorage.getItem('google_access_token');
+			if (accessToken) {
+				await fetch(`https://accounts.google.com/o/oauth2/revoke?token=${accessToken}`, {
+					method: 'GET',
+					headers: {
+						'Content-Type': 'application/x-www-form-urlencoded'
+					}
+				});
+			}
+			
+			// Remove tokens from local storage
+			localStorage.removeItem('google_access_token');
+			localStorage.removeItem('google_refresh_token');
+			
+			// Update auth state
+			authData.isConnected = false;
+			authData.token = null;
+			authData.userEmail = null;
+			
+			// Clear any selected sheets data
+			sheetsData.availableSheets = [];
+			sheetsData.selectedSheet = null;
+			sheetsData.sheetData = [];
+		} catch (error) {
+			console.error('Error disconnecting from Google:', error);
+			authData.error = 'Failed to disconnect from Google';
+		}
+	}
 
 	// Step navigation
 	function nextStep() {
@@ -300,7 +370,6 @@
 
 		loading = true;
 		try {
-			// TODO: Replace with actual Supabase function call
 			const { error } = await data.supabase.rpc('create_event', {
 				p_name: eventData.name,
 				p_date: eventData.date,
@@ -316,7 +385,7 @@
 			if (error) throw error;
 
 			// Redirect to events list or show success message
-			window.location.href = '/private/events';
+			goto('/private/events');
 		} catch (error) {
 			console.error('Error creating event:', error);
 			errors.submit = 'Failed to create event. Please try again.';
@@ -336,423 +405,22 @@
 		if (currentStep === 3) return emailData.subject && emailData.body;
 		return false;
 	});
-
-	let stepTitle = $derived(() => {
-		if (currentStep === 0) return 'Connect Google Account';
-		if (currentStep === 1) return 'Event Details';
-		if (currentStep === 2) return 'Connect Google Sheets';
-		if (currentStep === 3) return 'Email Settings';
-		return '';
-	});
 </script>
 
 <div class="max-w-4xl mx-auto p-6">
 	<!-- Header -->
-	<div class="mb-8">
-		<h1 class="text-2xl font-bold text-gray-900 mb-2">Create New Event</h1>
-		<div class="flex items-center gap-4">
-			{#each Array(totalSteps) as _, index}
-				<div class="flex items-center gap-2">
-					<div class="w-8 h-8 rounded-full flex items-center justify-center text-sm font-medium {
-						index === currentStep ? 'bg-blue-600 text-white' :
-						index < currentStep ? 'bg-green-600 text-white' :
-						'bg-gray-200 text-gray-600'
-					}">
-						{index + 1}
-					</div>
-					{#if index < totalSteps - 1}
-						<div class="w-8 h-1 {
-							index < currentStep ? 'bg-green-600' : 'bg-gray-200'
-						}"></div>
-					{/if}
-				</div>
-			{/each}
-		</div>
-		<p class="text-gray-600 mt-2">Step {currentStep + 1} of {totalSteps}: {stepTitle}</p>
-	</div>
+	<StepNavigator {currentStep} {totalSteps} />
 
 	<!-- Step Content -->
 	<div class="rounded-lg border border-gray-300 bg-white p-6 mb-6">
 		{#if currentStep === 0}
-			<!-- Step 0: Google Authentication -->
-			<div class="space-y-6">
-				<div class="text-center">
-					<h3 class="text-lg font-medium text-gray-900 mb-4">Connect Your Google Account</h3>
-					<p class="text-gray-600 mb-6">
-						To create events and import participants from Google Sheets, you need to connect your Google account.
-					</p>
-
-					{#if authData.checking}
-						<div class="flex justify-center items-center space-x-2">
-							<div class="animate-spin rounded-full h-6 w-6 border-b-2 border-blue-600"></div>
-							<span class="text-gray-600">Checking connection...</span>
-						</div>
-					{:else if authData.isConnected}
-						<div class="rounded-lg bg-green-50 border border-green-200 p-4 mb-4">
-							<div class="flex items-center">
-								<div class="flex-shrink-0">
-									<svg class="h-5 w-5 text-green-400" viewBox="0 0 20 20" fill="currentColor">
-										<path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zm3.707-9.293a1 1 0 00-1.414-1.414L9 10.586 7.707 9.293a1 1 0 00-1.414 1.414l2 2a1 1 0 001.414 0l4-4z" clip-rule="evenodd" />
-									</svg>
-								</div>
-								<div class="ml-3">
-									<p class="text-sm font-medium text-green-800">
-										Google account connected successfully!
-									</p>
-									<p class="text-sm text-green-700 mt-1">
-										You can now access Google Sheets and Gmail features.
-									</p>
-								</div>
-							</div>
-						</div>
-					{:else}
-						<div class="rounded-lg bg-yellow-50 border border-yellow-200 p-4 mb-4">
-							<div class="flex items-center">
-								<div class="flex-shrink-0">
-									<svg class="h-5 w-5 text-yellow-400" viewBox="0 0 20 20" fill="currentColor">
-										<path fill-rule="evenodd" d="M8.257 3.099c.765-1.36 2.722-1.36 3.486 0l5.58 9.92c.75 1.334-.213 2.98-1.742 2.98H4.42c-1.53 0-2.493-1.646-1.743-2.98l5.58-9.92zM11 13a1 1 0 11-2 0 1 1 0 012 0zm-1-8a1 1 0 00-1 1v3a1 1 0 002 0V6a1 1 0 00-1-1z" clip-rule="evenodd" />
-									</svg>
-								</div>
-								<div class="ml-3">
-									<p class="text-sm font-medium text-yellow-800">
-										Google account not connected
-									</p>
-									<p class="text-sm text-yellow-700 mt-1">
-										Please connect your Google account to continue with event creation.
-									</p>
-								</div>
-							</div>
-						</div>
-
-						<div class="flex flex-col gap-3">
-							<button
-								onclick={connectToGoogle}
-								disabled={authData.connecting}
-								class="inline-flex items-center px-6 py-3 border border-transparent text-base font-medium rounded-md text-white bg-blue-600 hover:bg-blue-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 transition disabled:opacity-50 disabled:cursor-not-allowed"
-								aria-label="Connect to Google account"
-							>
-								{#if authData.connecting}
-									<div class="w-5 h-5 mr-2 animate-spin rounded-full border-2 border-white border-t-transparent"></div>
-									Connecting...
-								{:else}
-									<svg class="w-5 h-5 mr-2" viewBox="0 0 24 24">
-										<path fill="currentColor" d="M22.56 12.25c0-.78-.07-1.53-.2-2.25H12v4.26h5.92c-.26 1.37-1.04 2.53-2.21 3.31v2.77h3.57c2.08-1.92 3.28-4.74 3.28-8.09z"/>
-										<path fill="currentColor" d="M12 23c2.97 0 5.46-.98 7.28-2.66l-3.57-2.77c-.98.66-2.23 1.06-3.71 1.06-2.86 0-5.29-1.93-6.16-4.53H2.18v2.84C3.99 20.53 7.7 23 12 23z"/>
-										<path fill="currentColor" d="M5.84 14.09c-.22-.66-.35-1.36-.35-2.09s.13-1.43.35-2.09V7.07H2.18C1.43 8.55 1 10.22 1 12s.43 3.45 1.18 4.93l2.85-2.22.81-.62z"/>
-										<path fill="currentColor" d="M12 5.38c1.62 0 3.06.56 4.21 1.64l3.15-3.15C17.45 2.09 14.97 1 12 1 7.7 1 3.99 3.47 2.18 7.07l3.66 2.84c.87-2.6 3.3-4.53 6.16-4.53z"/>
-									</svg>
-									Connect to Google
-								{/if}
-							</button>
-							
-							{#if authData.connecting && authData.showCancelOption}
-								<button
-									onclick={cancelGoogleAuth}
-									class="text-sm text-gray-600 hover:text-gray-900"
-									aria-label="Cancel Google authentication"
-								>
-									Cancel connection
-								</button>
-								<p class="text-xs text-gray-500 mt-1">
-									Taking too long? You can cancel and try again.
-								</p>
-							{/if}
-						</div>
-					{/if}
-
-					{#if authData.error}
-						<div class="mt-4 rounded-lg bg-red-50 border border-red-200 p-4">
-							<div class="flex items-center">
-								<div class="flex-shrink-0">
-									<svg class="h-5 w-5 text-red-400" viewBox="0 0 20 20" fill="currentColor">
-										<path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zM8.707 7.293a1 1 0 00-1.414 1.414L8.586 10l-1.293 1.293a1 1 0 101.414 1.414L10 11.414l1.293 1.293a1 1 0 001.414-1.414L11.414 10l1.293-1.293a1 1 0 00-1.414-1.414L10 8.586 8.707 7.293z" clip-rule="evenodd" />
-									</svg>
-								</div>
-								<div class="ml-3">
-									<p class="text-sm font-medium text-red-800">
-										Connection Error
-									</p>
-									<p class="text-sm text-red-700 mt-1">
-										{authData.error}
-									</p>
-								</div>
-							</div>
-						</div>
-					{/if}
-
-					{#if errors.auth}
-						<p class="mt-2 text-sm text-red-600">{errors.auth}</p>
-					{/if}
-				</div>
-			</div>
-
+			<GoogleAuthStep {authData} {errors} {connectToGoogle} {cancelGoogleAuth} {disconnectGoogle} />
 		{:else if currentStep === 1}
-			<!-- Step 1: Event Details -->
-			<div class="space-y-6">
-				<div>
-					<label for="eventName" class="block text-sm font-medium text-gray-700 mb-2">
-						Event Name *
-					</label>
-					<input
-						id="eventName"
-						type="text"
-						bind:value={eventData.name}
-						class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
-						placeholder="Enter event name"
-					/>
-					{#if errors.name}
-						<p class="mt-1 text-sm text-red-600">{errors.name}</p>
-					{/if}
-				</div>
-
-				<div>
-					<label for="eventDate" class="block text-sm font-medium text-gray-700 mb-2">
-						Event Date *
-					</label>
-					<input
-						id="eventDate"
-						type="date"
-						bind:value={eventData.date}
-						class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
-					/>
-					{#if errors.date}
-						<p class="mt-1 text-sm text-red-600">{errors.date}</p>
-					{/if}
-				</div>
-			</div>
-
+			<EventDetailsStep {eventData} {errors} />
 		{:else if currentStep === 2}
-			<!-- Step 2: Google Sheets -->
-			<div class="space-y-6">
-				<div>
-					<h3 class="text-lg font-medium text-gray-900 mb-4">Select Google Sheet</h3>
-					
-					{#if sheetsData.loading && sheetsData.availableSheets.length === 0}
-						<div class="space-y-3">
-							{#each Array(5) as _}
-								<div class="p-4 border border-gray-200 rounded animate-pulse">
-									<div class="h-4 bg-gray-200 rounded w-3/4 mb-2"></div>
-									<div class="h-3 bg-gray-100 rounded w-1/2"></div>
-								</div>
-							{/each}
-						</div>
-					{:else if sheetsData.availableSheets.length === 0}
-						<div class="text-center py-8">
-							<p class="text-gray-500">No Google Sheets found.</p>
-							<button
-								onclick={loadRecentSheets}
-								class="mt-2 px-4 py-2 bg-blue-600 text-white rounded hover:bg-blue-700 transition"
-							>
-								Refresh
-							</button>
-						</div>
-					{:else}
-						<div class="space-y-3">
-							{#if !sheetsData.expandedSheetList && sheetsData.selectedSheet}
-								<!-- Selected sheet only (collapsed view) -->
-								<div class="flex items-center justify-between p-4 border border-blue-500 bg-blue-50 rounded">
-									<div>
-										<div class="font-medium text-gray-900">{sheetsData.selectedSheet.name}</div>
-										<div class="text-sm text-gray-500">
-											Modified: {new Date(sheetsData.selectedSheet.modifiedTime).toLocaleDateString()}
-										</div>
-									</div>
-									<button
-										onclick={toggleSheetList}
-										class="text-blue-600 hover:text-blue-800 flex items-center"
-										aria-label="Show all sheets"
-									>
-										<span class="text-sm mr-1">Change</span>
-										<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4" viewBox="0 0 20 20" fill="currentColor">
-											<path fill-rule="evenodd" d="M5.293 7.293a1 1 0 011.414 0L10 10.586l3.293-3.293a1 1 0 111.414 1.414l-4 4a1 1 0 01-1.414 0l-4-4a1 1 0 010-1.414z" clip-rule="evenodd" />
-										</svg>
-									</button>
-								</div>
-							{:else}
-								<!-- All sheets (expanded view) -->
-								<div class="flex justify-between items-center mb-2">
-									<h4 class="text-sm font-medium text-gray-700">Available Sheets</h4>
-									{#if sheetsData.selectedSheet}
-										<button
-											onclick={toggleSheetList}
-											class="text-sm text-blue-600 hover:text-blue-800"
-											aria-label="Hide sheet list"
-										>
-											Collapse list
-										</button>
-									{/if}
-								</div>
-								<div class="grid gap-3">
-									{#each sheetsData.availableSheets as sheet}
-										<button
-											onclick={() => selectSheet(sheet)}
-											class="p-4 text-left border border-gray-200 rounded hover:border-blue-500 transition {
-												sheetsData.selectedSheet?.id === sheet.id ? 'border-blue-500 bg-blue-50' : ''
-											}"
-										>
-											<div class="font-medium text-gray-900">{sheet.name}</div>
-											<div class="text-sm text-gray-500">
-												Modified: {new Date(sheet.modifiedTime).toLocaleDateString()}
-											</div>
-										</button>
-									{/each}
-								</div>
-							{/if}
-						</div>
-					{/if}
-
-					{#if errors.sheet}
-						<p class="mt-2 text-sm text-red-600">{errors.sheet}</p>
-					{/if}
-				</div>
-
-				{#if sheetsData.selectedSheet && sheetsData.sheetData.length > 0}
-					<div>
-						<h4 class="text-md font-medium text-gray-900 mb-3">Column Mapping</h4>
-						
-						<!-- Instructions for column mapping -->
-						<div class="bg-blue-50 p-4 rounded-md border border-blue-200 mb-4">
-							<p class="text-sm text-blue-800 mb-2 font-medium">Column Mapping Instructions:</p>
-							<p class="text-sm text-blue-700">
-								Select what each column represents by using the dropdown in each column header. 
-								Make sure to assign Name, Surname, Email, and Confirmation columns.
-							</p>
-						</div>
-						
-						<div class="overflow-x-auto">
-							<table class="w-full border border-gray-200 rounded">
-								<thead>
-									<tr class="bg-gray-50">
-										{#each sheetsData.sheetData[0] || [] as header, index}
-											<th class="px-3 py-2 border-b border-gray-200 text-left">
-												<div class="flex flex-col gap-2">
-													<div class="font-medium text-gray-900">
-														Column {index + 1}
-														<span class="text-xs text-gray-500">({header || 'Empty'})</span>
-													</div>
-													<select 
-														class="text-sm normal-case font-normal px-2 py-1 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
-														aria-label={`Select data type for column ${index + 1}`}
-														onclick={(e) => e.stopPropagation()}
-														onchange={(e) => {
-															const value = e.target.value;
-															if (value === "none") return;
-															
-															// Reset previous selection if this column was already mapped
-															if (sheetsData.columnMapping.name === index + 1) sheetsData.columnMapping.name = 0;
-															if (sheetsData.columnMapping.surname === index + 1) sheetsData.columnMapping.surname = 0;
-															if (sheetsData.columnMapping.email === index + 1) sheetsData.columnMapping.email = 0;
-															if (sheetsData.columnMapping.confirmation === index + 1) sheetsData.columnMapping.confirmation = 0;
-															
-															// Set new mapping
-															if (value === "name") sheetsData.columnMapping.name = index + 1;
-															else if (value === "surname") sheetsData.columnMapping.surname = index + 1;
-															else if (value === "email") sheetsData.columnMapping.email = index + 1;
-															else if (value === "confirmation") sheetsData.columnMapping.confirmation = index + 1;
-														}}
-													>
-														<option value="none">Select data type</option>
-														<option value="name" selected={sheetsData.columnMapping.name === index + 1}>Name</option>
-														<option value="surname" selected={sheetsData.columnMapping.surname === index + 1}>Surname</option>
-														<option value="email" selected={sheetsData.columnMapping.email === index + 1}>Email</option>
-														<option value="confirmation" selected={sheetsData.columnMapping.confirmation === index + 1}>Confirmation</option>
-													</select>
-													{#if sheetsData.columnMapping.name === index + 1}
-														<span class="bg-green-100 text-green-800 text-xs px-2 py-1 rounded">Name Column</span>
-													{:else if sheetsData.columnMapping.surname === index + 1}
-														<span class="bg-blue-100 text-blue-800 text-xs px-2 py-1 rounded">Surname Column</span>
-													{:else if sheetsData.columnMapping.email === index + 1}
-														<span class="bg-purple-100 text-purple-800 text-xs px-2 py-1 rounded">Email Column</span>
-													{:else if sheetsData.columnMapping.confirmation === index + 1}
-														<span class="bg-amber-100 text-amber-800 text-xs px-2 py-1 rounded">Confirmation Column</span>
-													{/if}
-												</div>
-											</th>
-										{/each}
-									</tr>
-								</thead>
-								<tbody>
-									{#each sheetsData.sheetData.slice(0, 10) as row, rowIndex}
-										<tr class="hover:bg-gray-50">
-											{#each row as cell, cellIndex}
-												<td class="px-3 py-2 border-b border-gray-100 text-sm">
-													<span 
-														class={
-															sheetsData.columnMapping.name === cellIndex + 1 ? 'font-medium text-green-700' : 
-															sheetsData.columnMapping.surname === cellIndex + 1 ? 'font-medium text-blue-700' : 
-															sheetsData.columnMapping.email === cellIndex + 1 ? 'font-medium text-purple-700' : 
-															sheetsData.columnMapping.confirmation === cellIndex + 1 ? 'font-medium text-amber-700' : 
-															'text-gray-700'
-														}
-													>
-														{cell || ''}
-													</span>
-												</td>
-											{/each}
-										</tr>
-									{/each}
-								</tbody>
-							</table>
-						</div>
-						<p class="mt-2 text-sm text-gray-500">Showing first 10 rows</p>
-					</div>
-				{/if}
-
-				{#if sheetsData.loading && sheetsData.selectedSheet}
-					<div class="text-center py-4">
-						<div class="text-gray-600">Loading sheet data...</div>
-					</div>
-				{/if}
-
-				{#if errors.sheetData}
-					<p class="text-sm text-red-600">{errors.sheetData}</p>
-				{/if}
-			</div>
-
+			<GoogleSheetsStep {sheetsData} {errors} {loadRecentSheets} {selectSheet} {toggleSheetList} />
 		{:else if currentStep === 3}
-			<!-- Step 3: Email Settings -->
-			<div class="space-y-6">
-				<div>
-					<label for="emailSubject" class="block text-sm font-medium text-gray-700 mb-2">
-						Email Subject *
-					</label>
-					<input
-						id="emailSubject"
-						type="text"
-						bind:value={emailData.subject}
-						class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
-						placeholder="Event invitation subject"
-					/>
-					{#if errors.subject}
-						<p class="mt-1 text-sm text-red-600">{errors.subject}</p>
-					{/if}
-				</div>
-
-				<div>
-					<label for="emailBody" class="block text-sm font-medium text-gray-700 mb-2">
-						Email Body *
-					</label>
-					<textarea
-						id="emailBody"
-						bind:value={emailData.body}
-						rows="8"
-						class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
-						placeholder="Email message content..."
-					></textarea>
-					{#if errors.body}
-						<p class="mt-1 text-sm text-red-600">{errors.body}</p>
-					{/if}
-				</div>
-
-				<!-- Preview -->
-				<div class="border-t border-gray-200 pt-6">
-					<h4 class="text-md font-medium text-gray-900 mb-3">Preview</h4>
-					<div class="border border-gray-200 rounded p-4 bg-gray-50">
-						<div class="font-medium text-gray-900 mb-2">Subject: {emailData.subject || 'No subject'}</div>
-						<div class="text-gray-700 whitespace-pre-line">{emailData.body || 'No content'}</div>
-					</div>
-				</div>
-			</div>
+			<EmailSettingsStep {emailData} {errors} />
 		{/if}
 
 		{#if errors.submit}
@@ -763,33 +431,13 @@
 	</div>
 
 	<!-- Navigation -->
-	<div class="flex items-center justify-between">
-		<button
-			onclick={prevStep}
-			disabled={currentStep === 0}
-			class="px-4 py-2 text-gray-700 bg-gray-100 hover:bg-gray-200 rounded transition disabled:opacity-50 disabled:cursor-not-allowed"
-		>
-			Previous
-		</button>
-
-		<div class="flex gap-2">
-			{#if currentStep < totalSteps - 1}
-				<button
-					onclick={nextStep}
-					disabled={currentStep === 0 ? !authData.isConnected : !canProceed}
-					class="px-6 py-2 bg-blue-600 text-white font-semibold rounded hover:bg-blue-700 transition disabled:opacity-50 disabled:cursor-not-allowed"
-				>
-					Next
-				</button>
-			{:else}
-				<button
-					onclick={createEvent}
-					disabled={!canProceed || loading}
-					class="px-6 py-2 bg-green-600 text-white font-semibold rounded hover:bg-green-700 transition disabled:opacity-50 disabled:cursor-not-allowed"
-				>
-					{loading ? 'Creating...' : 'Create Event'}
-				</button>
-			{/if}
-		</div>
-	</div>
+	<StepNavigation 
+		{currentStep} 
+		{totalSteps} 
+		{canProceed} 
+		{loading} 
+		{prevStep} 
+		{nextStep} 
+		{createEvent} 
+	/>
 </div>
diff --git a/src/routes/private/events/event/new/components/EmailSettingsStep.svelte b/src/routes/private/events/event/new/components/EmailSettingsStep.svelte
new file mode 100644
index 0000000..560d9a5
--- /dev/null
+++ b/src/routes/private/events/event/new/components/EmailSettingsStep.svelte
@@ -0,0 +1,43 @@
+<script lang="ts">
+	let { emailData, errors } = $props<{
+		emailData: {
+			subject: string;
+			body: string;
+		};
+		errors: Record<string, string>;
+	}>();
+</script>
+
+<div class="space-y-6">
+	<div>
+		<label for="emailSubject" class="block text-sm font-medium text-gray-700 mb-2">
+			Email Subject *
+		</label>
+		<input
+			id="emailSubject"
+			type="text"
+			bind:value={emailData.subject}
+			class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+			placeholder="Event invitation subject"
+		/>
+		{#if errors.subject}
+			<p class="mt-1 text-sm text-red-600">{errors.subject}</p>
+		{/if}
+	</div>
+
+	<div>
+		<label for="emailBody" class="block text-sm font-medium text-gray-700 mb-2">
+			Email Body *
+		</label>
+		<textarea
+			id="emailBody"
+			bind:value={emailData.body}
+			rows="8"
+			class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+			placeholder="Email message content..."
+		></textarea>
+		{#if errors.body}
+			<p class="mt-1 text-sm text-red-600">{errors.body}</p>
+		{/if}
+	</div>
+</div>
diff --git a/src/routes/private/events/event/new/components/EventDetailsStep.svelte b/src/routes/private/events/event/new/components/EventDetailsStep.svelte
new file mode 100644
index 0000000..3868340
--- /dev/null
+++ b/src/routes/private/events/event/new/components/EventDetailsStep.svelte
@@ -0,0 +1,44 @@
+<script lang="ts">
+	let { eventData, errors } = $props<{
+		eventData: {
+			name: string;
+			date: string;
+		};
+		errors: Record<string, string>;
+	}>();
+</script>
+
+<div class="space-y-6">
+	<div>
+		<h3 class="text-lg font-medium text-gray-900 mb-4">Event details</h3>
+
+		<label for="eventName" class="block text-sm font-medium text-gray-700 mb-2">
+			Event Name *
+		</label>
+		<input
+			id="eventName"
+			type="text"
+			bind:value={eventData.name}
+			class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+			placeholder="Enter event name"
+		/>
+		{#if errors.name}
+			<p class="mt-1 text-sm text-red-600">{errors.name}</p>
+		{/if}
+	</div>
+
+	<div>
+		<label for="eventDate" class="block text-sm font-medium text-gray-700 mb-2">
+			Event Date *
+		</label>
+		<input
+			id="eventDate"
+			type="date"
+			bind:value={eventData.date}
+			class="w-full px-3 py-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+		/>
+		{#if errors.date}
+			<p class="mt-1 text-sm text-red-600">{errors.date}</p>
+		{/if}
+	</div>
+</div>
diff --git a/src/routes/private/events/event/new/components/GoogleAuthStep.svelte b/src/routes/private/events/event/new/components/GoogleAuthStep.svelte
new file mode 100644
index 0000000..a3f469f
--- /dev/null
+++ b/src/routes/private/events/event/new/components/GoogleAuthStep.svelte
@@ -0,0 +1,144 @@
+<script lang="ts">
+	// Props
+	let { authData, errors, connectToGoogle, cancelGoogleAuth, disconnectGoogle } = $props<{
+		authData: {
+			isConnected: boolean;
+			checking: boolean;
+			connecting: boolean;
+			showCancelOption: boolean;
+			token: string | null;
+			error: string | null;
+			userEmail: string | null;
+		};
+		errors: Record<string, string>;
+		connectToGoogle: () => Promise<void>;
+		cancelGoogleAuth: () => void;
+		disconnectGoogle: () => Promise<void>;
+	}>();
+</script>
+
+<div class="space-y-6">
+	<div class="text-center">
+		<h3 class="text-lg font-medium text-gray-900 mb-4">Connect Your Google Account</h3>
+		<p class="text-gray-600 mb-6">
+			To create events and import participants from Google Sheets, you need to connect your Google account.
+		</p>
+
+		{#if authData.checking}
+			<div class="flex justify-center items-center space-x-2">
+				<div class="animate-spin rounded-full h-6 w-6 border-b-2 border-blue-600"></div>
+				<span class="text-gray-600">Checking connection...</span>
+			</div>
+		{:else if authData.isConnected}
+			<div class="rounded-lg bg-green-50 border border-green-200 p-4 mb-4">
+				<div class="flex items-center justify-start">
+					<div class="justify-start flex flex-col items-start">
+						<p class="text-sm font-medium text-green-800">
+							Google account connected successfully!
+						</p>
+						{#if authData.userEmail}
+							<div class="flex items-center mt-2 bg-white rounded-full px-3 py-1 border border-green-300">
+								<p class="text-sm font-medium text-gray-700">
+									{authData.userEmail}
+								</p>
+							</div>
+						{/if}
+						<p class="text-sm text-green-700 mt-2">
+							You can now access Google Sheets and Gmail features.
+						</p>
+					</div>
+				</div>
+				
+				<div class="mt-4 flex justify-end">
+					<button
+						onclick={disconnectGoogle}
+						class="text-sm text-red-600 hover:text-red-800 flex items-center"
+						aria-label="Disconnect Google account"
+					>
+						<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 mr-1" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+							<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 16l4-4m0 0l-4-4m4 4H7m6 4v1a3 3 0 01-3 3H6a3 3 0 01-3-3V7a3 3 0 013-3h4a3 3 0 013 3v1" />
+						</svg>
+						Disconnect
+					</button>
+				</div>
+			</div>
+		{:else}
+			<div class="rounded-lg bg-yellow-50 border border-yellow-200 p-4 mb-4">
+				<div class="flex items-center justify-start">
+					<div class="flex-shrink-0">
+						<svg class="h-5 w-5 text-yellow-400" viewBox="0 0 20 20" fill="currentColor">
+							<path fill-rule="evenodd" d="M8.257 3.099c.765-1.36 2.722-1.36 3.486 0l5.58 9.92c.75 1.334-.213 2.98-1.742 2.98H4.42c-1.53 0-2.493-1.646-1.743-2.98l5.58-9.92zM11 13a1 1 0 11-2 0 1 1 0 012 0zm-1-8a1 1 0 00-1 1v3a1 1 0 002 0V6a1 1 0 00-1-1z" clip-rule="evenodd" />
+						</svg>
+					</div>
+					<div class="ml-3 justify-start flex flex-col items-start">
+						<p class="text-sm font-medium text-yellow-800">
+							Google account not connected
+						</p>
+						<p class="text-sm text-yellow-700 mt-1">
+							Please connect your Google account to continue with event creation.
+						</p>
+					</div>
+				</div>
+			</div>
+
+			<div class="flex flex-col gap-3">
+				<button
+					onclick={connectToGoogle}
+					disabled={authData.connecting}
+					class="inline-flex items-center px-6 py-3 border border-transparent text-base font-medium rounded-md text-white bg-blue-600 hover:bg-blue-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 transition disabled:opacity-50 disabled:cursor-not-allowed"
+					aria-label="Connect to Google account"
+				>
+					{#if authData.connecting}
+						<div class="w-5 h-5 mr-2 animate-spin rounded-full border-2 border-white border-t-transparent"></div>
+						Connecting...
+					{:else}
+						<svg class="w-5 h-5 mr-2" viewBox="0 0 24 24">
+							<path fill="currentColor" d="M22.56 12.25c0-.78-.07-1.53-.2-2.25H12v4.26h5.92c-.26 1.37-1.04 2.53-2.21 3.31v2.77h3.57c2.08-1.92 3.28-4.74 3.28-8.09z"/>
+							<path fill="currentColor" d="M12 23c2.97 0 5.46-.98 7.28-2.66l-3.57-2.77c-.98.66-2.23 1.06-3.71 1.06-2.86 0-5.29-1.93-6.16-4.53H2.18v2.84C3.99 20.53 7.7 23 12 23z"/>
+							<path fill="currentColor" d="M5.84 14.09c-.22-.66-.35-1.36-.35-2.09s.13-1.43.35-2.09V7.07H2.18C1.43 8.55 1 10.22 1 12s.43 3.45 1.18 4.93l2.85-2.22.81-.62z"/>
+							<path fill="currentColor" d="M12 5.38c1.62 0 3.06.56 4.21 1.64l3.15-3.15C17.45 2.09 14.97 1 12 1 7.7 1 3.99 3.47 2.18 7.07l3.66 2.84c.87-2.6 3.3-4.53 6.16-4.53z"/>
+						</svg>
+						Connect to Google
+					{/if}
+				</button>
+				
+				{#if authData.connecting && authData.showCancelOption}
+					<button
+						onclick={cancelGoogleAuth}
+						class="text-sm text-gray-600 hover:text-gray-900"
+						aria-label="Cancel Google authentication"
+					>
+						Cancel connection
+					</button>
+					<p class="text-xs text-gray-500 mt-1">
+						Taking too long? You can cancel and try again.
+					</p>
+				{/if}
+			</div>
+		{/if}
+
+		{#if authData.error}
+			<div class="mt-4 rounded-lg bg-red-50 border border-red-200 p-4">
+				<div class="flex items-center">
+					<div class="flex-shrink-0">
+						<svg class="h-5 w-5 text-red-400" viewBox="0 0 20 20" fill="currentColor">
+							<path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zM8.707 7.293a1 1 0 00-1.414 1.414L8.586 10l-1.293 1.293a1 1 0 101.414 1.414L10 11.414l1.293 1.293a1 1 0 001.414-1.414L11.414 10l1.293-1.293a1 1 0 00-1.414-1.414L10 8.586 8.707 7.293z" clip-rule="evenodd" />
+						</svg>
+					</div>
+					<div class="ml-3">
+						<p class="text-sm font-medium text-red-800">
+							Connection Error
+						</p>
+						<p class="text-sm text-red-700 mt-1">
+							{authData.error}
+						</p>
+					</div>
+				</div>
+			</div>
+		{/if}
+
+		{#if errors.auth}
+			<p class="mt-2 text-sm text-red-600">{errors.auth}</p>
+		{/if}
+	</div>
+</div>
diff --git a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
new file mode 100644
index 0000000..2dac6ec
--- /dev/null
+++ b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
@@ -0,0 +1,213 @@
+<script lang="ts">
+	import type { GoogleSheet } from '$lib/sheets.js';
+	
+	// Props
+	let { sheetsData, errors, loadRecentSheets, selectSheet, toggleSheetList } = $props<{
+		sheetsData: {
+			availableSheets: GoogleSheet[];
+			selectedSheet: GoogleSheet | null;
+			sheetData: string[][];
+			columnMapping: {
+				name: number;
+				surname: number;
+				email: number;
+				confirmation: number;
+			};
+			loading: boolean;
+			expandedSheetList: boolean;
+		};
+		errors: Record<string, string>;
+		loadRecentSheets: () => Promise<void>;
+		selectSheet: (sheet: GoogleSheet) => Promise<void>;
+		toggleSheetList: () => void;
+	}>();
+</script>
+
+<div class="space-y-6">
+	<div>
+		<h3 class="text-lg font-medium text-gray-900 mb-4">Select Google Sheet</h3>
+		
+		{#if sheetsData.loading && sheetsData.availableSheets.length === 0}
+			<div class="space-y-3">
+				{#each Array(5) as _}
+					<div class="p-4 border border-gray-200 rounded animate-pulse">
+						<div class="h-4 bg-gray-200 rounded w-3/4 mb-2"></div>
+						<div class="h-3 bg-gray-100 rounded w-1/2"></div>
+					</div>
+				{/each}
+			</div>
+		{:else if sheetsData.availableSheets.length === 0}
+			<div class="text-center py-8">
+				<p class="text-gray-500">No Google Sheets found.</p>
+				<button
+					onclick={loadRecentSheets}
+					class="mt-2 px-4 py-2 bg-blue-600 text-white rounded hover:bg-blue-700 transition"
+				>
+					Refresh
+				</button>
+			</div>
+		{:else}
+			<div class="space-y-3">
+				{#if !sheetsData.expandedSheetList && sheetsData.selectedSheet}
+					<!-- Selected sheet only (collapsed view) -->
+					<div class="flex items-center justify-between p-4 border border-blue-500 bg-blue-50 rounded">
+						<div>
+							<div class="font-medium text-gray-900">{sheetsData.selectedSheet.name}</div>
+							<div class="text-sm text-gray-500">
+								Modified: {new Date(sheetsData.selectedSheet.modifiedTime).toLocaleDateString()}
+							</div>
+						</div>
+						<button
+							onclick={toggleSheetList}
+							class="text-blue-600 hover:text-blue-800 flex items-center"
+							aria-label="Show all sheets"
+						>
+							<span class="text-sm mr-1">Change</span>
+							<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4" viewBox="0 0 20 20" fill="currentColor">
+								<path fill-rule="evenodd" d="M5.293 7.293a1 1 0 011.414 0L10 10.586l3.293-3.293a1 1 0 111.414 1.414l-4 4a1 1 0 01-1.414 0l-4-4a1 1 0 010-1.414z" clip-rule="evenodd" />
+							</svg>
+						</button>
+					</div>
+				{:else}
+					<!-- All sheets (expanded view) -->
+					<div class="flex justify-between items-center mb-2">
+						<h4 class="text-sm font-medium text-gray-700">Available Sheets</h4>
+						{#if sheetsData.selectedSheet}
+							<button
+								onclick={toggleSheetList}
+								class="text-sm text-blue-600 hover:text-blue-800"
+								aria-label="Hide sheet list"
+							>
+								Collapse list
+							</button>
+						{/if}
+					</div>
+					<div class="grid gap-3">
+						{#each sheetsData.availableSheets as sheet}
+							<button
+								onclick={() => selectSheet(sheet)}
+								class="p-4 text-left border border-gray-200 rounded hover:border-blue-500 transition {
+									sheetsData.selectedSheet?.id === sheet.id ? 'border-blue-500 bg-blue-50' : ''
+								}"
+							>
+								<div class="font-medium text-gray-900">{sheet.name}</div>
+								<div class="text-sm text-gray-500">
+									Modified: {new Date(sheet.modifiedTime).toLocaleDateString()}
+								</div>
+							</button>
+						{/each}
+					</div>
+				{/if}
+			</div>
+		{/if}
+
+		{#if errors.sheet}
+			<p class="mt-2 text-sm text-red-600">{errors.sheet}</p>
+		{/if}
+	</div>
+
+	{#if sheetsData.selectedSheet && sheetsData.sheetData.length > 0}
+		<div>
+			<h3 class="text-lg font-medium text-gray-900 mb-4">Column Mapping</h3>
+			
+			<!-- Instructions for column mapping -->
+			<div class="bg-white p-4 rounded-md border border-gray-300 mb-4">
+				<p class="text-sm text-black-800 mb-2 font-medium">Column Mapping Instructions:</p>
+				<p class="text-sm text-black-700">
+					Select what each column represents by using the dropdown in each column header. 
+					Make sure to assign Name, Surname, Email, and Confirmation columns.
+				</p>
+			</div>
+			
+			<div class="overflow-x-auto">
+				<table class="w-full border border-gray-200 rounded">
+					<thead>
+						<tr class="bg-gray-50">
+							{#each sheetsData.sheetData[0] || [] as header, index}
+								<th class="px-3 py-2 border-b border-gray-200 text-left">
+									<div class="flex flex-col gap-2">
+										<div class="font-medium text-gray-900">
+											{header || `Empty Column ${index + 1}`}
+										</div>
+										<select 
+											class="text-sm normal-case font-normal px-2 py-1 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+											aria-label={`Select data type for column ${index + 1}`}
+											onclick={(e) => e.stopPropagation()}
+											onchange={(e) => {
+												const value = e.target.value;
+												if (value === "none") return;
+												
+												// Reset previous selection if this column was already mapped
+												if (sheetsData.columnMapping.name === index + 1) sheetsData.columnMapping.name = 0;
+												if (sheetsData.columnMapping.surname === index + 1) sheetsData.columnMapping.surname = 0;
+												if (sheetsData.columnMapping.email === index + 1) sheetsData.columnMapping.email = 0;
+												if (sheetsData.columnMapping.confirmation === index + 1) sheetsData.columnMapping.confirmation = 0;
+												
+												// Set new mapping
+												if (value === "name") sheetsData.columnMapping.name = index + 1;
+												else if (value === "surname") sheetsData.columnMapping.surname = index + 1;
+												else if (value === "email") sheetsData.columnMapping.email = index + 1;
+												else if (value === "confirmation") sheetsData.columnMapping.confirmation = index + 1;
+											}}
+										>
+											<option value="none">Select data type</option>
+											<option value="name" selected={sheetsData.columnMapping.name === index + 1}>Name</option>
+											<option value="surname" selected={sheetsData.columnMapping.surname === index + 1}>Surname</option>
+											<option value="email" selected={sheetsData.columnMapping.email === index + 1}>Email</option>
+											<option value="confirmation" selected={sheetsData.columnMapping.confirmation === index + 1}>Confirmation</option>
+										</select>
+										<div class="h-7 mt-1"> <!-- Fixed height container to prevent layout shift -->
+											{#if sheetsData.columnMapping.name === index + 1}
+												<span class="bg-green-100 text-green-800 text-xs px-2 py-1 rounded">Name Column</span>
+											{:else if sheetsData.columnMapping.surname === index + 1}
+												<span class="bg-blue-100 text-blue-800 text-xs px-2 py-1 rounded">Surname Column</span>
+											{:else if sheetsData.columnMapping.email === index + 1}
+												<span class="bg-purple-100 text-purple-800 text-xs px-2 py-1 rounded">Email Column</span>
+											{:else if sheetsData.columnMapping.confirmation === index + 1}
+												<span class="bg-amber-100 text-amber-800 text-xs px-2 py-1 rounded">Confirmation Column</span>
+											{:else}
+												<span class="bg-gray-100 text-gray-400 text-xs px-2 py-1 rounded">Not Mapped</span>
+											{/if}
+										</div>
+									</div>
+								</th>
+							{/each}
+						</tr>
+					</thead>
+					<tbody>
+						{#each sheetsData.sheetData.slice(0, 10) as row, rowIndex}
+							<tr class="hover:bg-gray-50">
+								{#each row as cell, cellIndex}
+									<td class="px-3 py-2 border-b border-gray-100 text-sm">
+										<span 
+											class={
+												sheetsData.columnMapping.name === cellIndex + 1 ? 'font-medium text-green-700' : 
+												sheetsData.columnMapping.surname === cellIndex + 1 ? 'font-medium text-blue-700' : 
+												sheetsData.columnMapping.email === cellIndex + 1 ? 'font-medium text-purple-700' : 
+												sheetsData.columnMapping.confirmation === cellIndex + 1 ? 'font-medium text-amber-700' : 
+												'text-gray-700'
+											}
+										>
+											{cell || ''}
+										</span>
+									</td>
+								{/each}
+							</tr>
+						{/each}
+					</tbody>
+				</table>
+			</div>
+			<p class="mt-2 text-sm text-gray-500">Showing first 10 rows</p>
+		</div>
+	{/if}
+
+	{#if sheetsData.loading && sheetsData.selectedSheet}
+		<div class="text-center py-4">
+			<div class="text-gray-600">Loading sheet data...</div>
+		</div>
+	{/if}
+
+	{#if errors.sheetData}
+		<p class="text-sm text-red-600">{errors.sheetData}</p>
+	{/if}
+</div>
diff --git a/src/routes/private/events/event/new/components/StepNavigation.svelte b/src/routes/private/events/event/new/components/StepNavigation.svelte
new file mode 100644
index 0000000..207caba
--- /dev/null
+++ b/src/routes/private/events/event/new/components/StepNavigation.svelte
@@ -0,0 +1,42 @@
+<script lang="ts">
+	// Props
+	let { currentStep, totalSteps, canProceed, loading, prevStep, nextStep, createEvent } = $props<{
+		currentStep: number;
+		totalSteps: number;
+		canProceed: boolean;
+		loading: boolean;
+		prevStep: () => void;
+		nextStep: () => void;
+		createEvent: () => Promise<void>;
+	}>();
+</script>
+
+<div class="flex items-center justify-between">
+	<button
+		onclick={prevStep}
+		disabled={currentStep === 0}
+		class="px-4 py-2 text-gray-700 bg-gray-100 hover:bg-gray-200 rounded transition disabled:opacity-50 disabled:cursor-not-allowed"
+	>
+		Previous
+	</button>
+
+	<div class="flex gap-2">
+		{#if currentStep < totalSteps - 1}
+			<button
+				onclick={nextStep}
+				disabled={!canProceed}
+				class="px-6 py-2 bg-blue-600 text-white font-semibold rounded hover:bg-blue-700 transition disabled:opacity-50 disabled:cursor-not-allowed"
+			>
+				Next
+			</button>
+		{:else}
+			<button
+				onclick={createEvent}
+				disabled={!canProceed || loading}
+				class="px-6 py-2 bg-green-600 text-white font-semibold rounded hover:bg-green-700 transition disabled:opacity-50 disabled:cursor-not-allowed"
+			>
+				{loading ? 'Creating...' : 'Create Event'}
+			</button>
+		{/if}
+	</div>
+</div>
diff --git a/src/routes/private/events/event/new/components/StepNavigator.svelte b/src/routes/private/events/event/new/components/StepNavigator.svelte
new file mode 100644
index 0000000..f26fb87
--- /dev/null
+++ b/src/routes/private/events/event/new/components/StepNavigator.svelte
@@ -0,0 +1,28 @@
+<script lang="ts">
+	// Props
+	let { currentStep, totalSteps, stepTitle } = $props<{
+		currentStep: number;
+		totalSteps: number;
+	}>();
+</script>
+
+<div class="mb-8">
+    <div class="flex items-center justify-center gap-4 w-full">
+		{#each Array(totalSteps) as _, index}
+			<div class="flex items-center gap-2">
+				<div class="w-8 h-8 rounded-full flex items-center justify-center text-sm font-medium {
+					index === currentStep ? 'bg-blue-600 text-white' :
+					index < currentStep ? 'bg-green-600 text-white' :
+					'bg-gray-200 text-gray-600'
+				}">
+					{index + 1}
+				</div>
+				{#if index < totalSteps - 1}
+					<div class="w-10 h-1 rounded {
+						index < currentStep ? 'bg-green-600' : 'bg-gray-200'
+					}"></div>
+				{/if}
+			</div>
+		{/each}
+	</div>
+</div>
-- 
2.49.1


From 878198fabde848e327c60b5a3e08a91df49edc73 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Wed, 2 Jul 2025 23:33:35 +0200
Subject: [PATCH 05/20] API reformatting

---
 src/lib/google.ts                             | 37 ++++++++++++++-
 src/routes/private/api/google/README.md       | 47 +++++++++++++++++++
 .../api/google/auth/refresh/+server.ts        | 30 ++++++++++++
 .../private/api/google/auth/revoke/+server.ts | 31 ++++++++++++
 .../api/google/auth/userinfo/+server.ts       | 33 +++++++++++++
 .../google/sheets/[sheetId]/data/+server.ts   | 22 +++++++++
 .../api/google/sheets/recent/+server.ts       | 20 ++++++++
 .../private/events/event/new/+page.svelte     | 33 +++++--------
 8 files changed, 230 insertions(+), 23 deletions(-)
 create mode 100644 src/routes/private/api/google/README.md
 create mode 100644 src/routes/private/api/google/auth/refresh/+server.ts
 create mode 100644 src/routes/private/api/google/auth/revoke/+server.ts
 create mode 100644 src/routes/private/api/google/auth/userinfo/+server.ts
 create mode 100644 src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
 create mode 100644 src/routes/private/api/google/sheets/recent/+server.ts

diff --git a/src/lib/google.ts b/src/lib/google.ts
index 718199b..4977884 100644
--- a/src/lib/google.ts
+++ b/src/lib/google.ts
@@ -40,7 +40,7 @@ export async function isTokenValid(accessToken: string): Promise<boolean> {
 
 export async function refreshAccessToken(refreshToken: string): Promise<string | null> {
 	try {
-		const response = await fetch('/api/auth/refresh', {
+		const response = await fetch('/private/api/google/auth/refresh', {
 			method: 'POST',
 			headers: {
 				'Content-Type': 'application/json'
@@ -58,3 +58,38 @@ export async function refreshAccessToken(refreshToken: string): Promise<string |
 		return null;
 	}
 }
+
+export async function getUserInfo(accessToken: string): Promise<{ email: string; name: string; picture: string } | null> {
+	try {
+		const response = await fetch('/private/api/google/auth/userinfo', {
+			headers: {
+				'Authorization': `Bearer ${accessToken}`
+			}
+		});
+		
+		if (response.ok) {
+			return await response.json();
+		}
+		return null;
+	} catch (error) {
+		console.error('Error fetching user info:', error);
+		return null;
+	}
+}
+
+export async function revokeToken(accessToken: string): Promise<boolean> {
+	try {
+		const response = await fetch('/private/api/google/auth/revoke', {
+			method: 'POST',
+			headers: {
+				'Content-Type': 'application/json'
+			},
+			body: JSON.stringify({ accessToken })
+		});
+		
+		return response.ok;
+	} catch (error) {
+		console.error('Error revoking token:', error);
+		return false;
+	}
+}
diff --git a/src/routes/private/api/google/README.md b/src/routes/private/api/google/README.md
new file mode 100644
index 0000000..6d1f46b
--- /dev/null
+++ b/src/routes/private/api/google/README.md
@@ -0,0 +1,47 @@
+# Google API Integration
+
+This directory contains unified endpoints for Google API integration, all protected under the `/private` route to ensure only authenticated users can access them.
+
+## Auth Endpoints
+
+### `/private/api/google/auth/refresh`
+
+- **Method**: POST
+- **Purpose**: Refreshes an access token using a refresh token
+- **Body**: `{ "refreshToken": "your-refresh-token" }`
+- **Response**: `{ "accessToken": "new-access-token", "expiresIn": 3600 }`
+
+### `/private/api/google/auth/userinfo`
+
+- **Method**: GET
+- **Purpose**: Gets information about the authenticated user
+- **Headers**: Authorization: Bearer `access_token`
+- **Response**: `{ "email": "user@example.com", "name": "User Name", "picture": "profile-pic-url" }`
+
+### `/private/api/google/auth/revoke`
+
+- **Method**: POST
+- **Purpose**: Revokes an access token
+- **Body**: `{ "accessToken": "token-to-revoke" }`
+- **Response**: `{ "success": true }`
+
+## Sheets Endpoints
+
+### `/private/api/google/sheets/recent`
+
+- **Method**: GET
+- **Purpose**: Gets a list of recent spreadsheets
+- **Headers**: Authorization: Bearer `refresh_token`
+- **Response**: Array of spreadsheet objects
+
+### `/private/api/google/sheets/[sheetId]/data`
+
+- **Method**: GET
+- **Purpose**: Gets data from a specific spreadsheet
+- **Headers**: Authorization: Bearer `refresh_token`
+- **URL Parameters**: sheetId - The ID of the spreadsheet
+- **Response**: Spreadsheet data including values array
+
+## Client Usage
+
+Use the utility functions in `$lib/google.ts` to interact with these endpoints.
diff --git a/src/routes/private/api/google/auth/refresh/+server.ts b/src/routes/private/api/google/auth/refresh/+server.ts
new file mode 100644
index 0000000..e6561ee
--- /dev/null
+++ b/src/routes/private/api/google/auth/refresh/+server.ts
@@ -0,0 +1,30 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { getOAuthClient } from '$lib/google-server.js';
+
+export const POST: RequestHandler = async ({ request }) => {
+	try {
+		const { refreshToken } = await request.json();
+		
+		if (!refreshToken) {
+			return json({ error: 'Refresh token is required' }, { status: 400 });
+		}
+
+		const oauth = getOAuthClient();
+		oauth.setCredentials({ refresh_token: refreshToken });
+
+		const { credentials } = await oauth.refreshAccessToken();
+		
+		if (!credentials.access_token) {
+			return json({ error: 'Failed to refresh token' }, { status: 500 });
+		}
+
+		return json({ 
+			accessToken: credentials.access_token,
+			expiresIn: credentials.expiry_date 
+		});
+	} catch (error) {
+		console.error('Error refreshing access token:', error);
+		return json({ error: 'Failed to refresh access token' }, { status: 500 });
+	}
+};
diff --git a/src/routes/private/api/google/auth/revoke/+server.ts b/src/routes/private/api/google/auth/revoke/+server.ts
new file mode 100644
index 0000000..b01adee
--- /dev/null
+++ b/src/routes/private/api/google/auth/revoke/+server.ts
@@ -0,0 +1,31 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+
+export const POST: RequestHandler = async ({ request }) => {
+	try {
+		const { accessToken } = await request.json();
+		
+		if (!accessToken) {
+			return json({ error: 'Access token is required' }, { status: 400 });
+		}
+
+		// Call Google's token revocation endpoint
+		const response = await fetch(`https://accounts.google.com/o/oauth2/revoke?token=${accessToken}`, {
+			method: 'POST',
+			headers: {
+				'Content-Type': 'application/x-www-form-urlencoded'
+			}
+		});
+
+		if (response.ok) {
+			return json({ success: true });
+		} else {
+			const error = await response.text();
+			console.error('Error revoking token:', error);
+			return json({ error: 'Failed to revoke token' }, { status: 500 });
+		}
+	} catch (error) {
+		console.error('Error revoking access token:', error);
+		return json({ error: 'Failed to revoke access token' }, { status: 500 });
+	}
+};
diff --git a/src/routes/private/api/google/auth/userinfo/+server.ts b/src/routes/private/api/google/auth/userinfo/+server.ts
new file mode 100644
index 0000000..cb98710
--- /dev/null
+++ b/src/routes/private/api/google/auth/userinfo/+server.ts
@@ -0,0 +1,33 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { getOAuthClient } from '$lib/google-server.js';
+import { google } from 'googleapis';
+
+export const GET: RequestHandler = async ({ request }) => {
+	try {
+		const authHeader = request.headers.get('authorization');
+		
+		if (!authHeader?.startsWith('Bearer ')) {
+			return json({ error: 'Missing or invalid authorization header' }, { status: 401 });
+		}
+
+		const accessToken = authHeader.slice(7);
+		
+		// Create OAuth client with the token
+		const oauth = getOAuthClient();
+		oauth.setCredentials({ access_token: accessToken });
+		
+		// Call the userinfo endpoint to get user details
+		const oauth2 = google.oauth2({ version: 'v2', auth: oauth });
+		const userInfo = await oauth2.userinfo.get();
+		
+		return json({
+			email: userInfo.data.email,
+			name: userInfo.data.name,
+			picture: userInfo.data.picture
+		});
+	} catch (error) {
+		console.error('Error fetching user info:', error);
+		return json({ error: 'Failed to fetch user info' }, { status: 500 });
+	}
+};
diff --git a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
new file mode 100644
index 0000000..263e099
--- /dev/null
+++ b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
@@ -0,0 +1,22 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { getSpreadsheetData } from '$lib/sheets.js';
+
+export const GET: RequestHandler = async ({ params, request }) => {
+	try {
+		const { sheetId } = params;
+		const authHeader = request.headers.get('authorization');
+		
+		if (!authHeader?.startsWith('Bearer ')) {
+			return json({ error: 'Missing or invalid authorization header' }, { status: 401 });
+		}
+
+		const refreshToken = authHeader.slice(7);
+		const sheetData = await getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
+
+		return json(sheetData);
+	} catch (error) {
+		console.error('Error fetching spreadsheet data:', error);
+		return json({ error: 'Failed to fetch spreadsheet data' }, { status: 500 });
+	}
+};
diff --git a/src/routes/private/api/google/sheets/recent/+server.ts b/src/routes/private/api/google/sheets/recent/+server.ts
new file mode 100644
index 0000000..d9b94a2
--- /dev/null
+++ b/src/routes/private/api/google/sheets/recent/+server.ts
@@ -0,0 +1,20 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { getRecentSpreadsheets } from '$lib/sheets.js';
+
+export const GET: RequestHandler = async ({ request }) => {
+	try {
+		const authHeader = request.headers.get('authorization');
+		if (!authHeader?.startsWith('Bearer ')) {
+			return json({ error: 'Missing or invalid authorization header' }, { status: 401 });
+		}
+
+		const refreshToken = authHeader.slice(7);
+		const sheets = await getRecentSpreadsheets(refreshToken, 20);
+
+		return json(sheets);
+	} catch (error) {
+		console.error('Error fetching recent spreadsheets:', error);
+		return json({ error: 'Failed to fetch spreadsheets' }, { status: 500 });
+	}
+};
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
index 5f20ee6..b3868bb 100644
--- a/src/routes/private/events/event/new/+page.svelte
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -1,8 +1,8 @@
 <script lang="ts">
 	import { onMount } from 'svelte';
 	import type { GoogleSheet } from '$lib/sheets.js';
-	import { isTokenValid, refreshAccessToken } from '$lib/google.js';
-    import { goto } from '$app/navigation';
+	import { isTokenValid, refreshAccessToken, getUserInfo, revokeToken } from '$lib/google.js';
+	import { goto } from '$app/navigation';
 	
 	// Import Components
 	import GoogleAuthStep from './components/GoogleAuthStep.svelte';
@@ -190,17 +190,11 @@
 	
 	async function fetchUserInfo(accessToken: string) {
 		try {
-			const response = await fetch('https://www.googleapis.com/oauth2/v2/userinfo', {
-				headers: {
-					Authorization: `Bearer ${accessToken}`
-				}
-			});
-			
-			if (response.ok) {
-				const userData = await response.json();
+			// Use the new getUserInfo function from our lib
+			const userData = await getUserInfo(accessToken);
+			if (userData) {
 				authData.userEmail = userData.email;
 			} else {
-				console.error('Failed to fetch user info:', await response.text());
 				authData.userEmail = null;
 			}
 		} catch (error) {
@@ -211,15 +205,10 @@
 	
 	async function disconnectGoogle() {
 		try {
-			// First revoke the token at Google
+			// First revoke the token at Google using our API
 			const accessToken = localStorage.getItem('google_access_token');
 			if (accessToken) {
-				await fetch(`https://accounts.google.com/o/oauth2/revoke?token=${accessToken}`, {
-					method: 'GET',
-					headers: {
-						'Content-Type': 'application/x-www-form-urlencoded'
-					}
-				});
+				await revokeToken(accessToken);
 			}
 			
 			// Remove tokens from local storage
@@ -308,8 +297,8 @@
 		sheetsData.expandedSheetList = true;
 		
 		try {
-			// TODO: Replace with actual API call
-			const response = await fetch('/api/sheets/recent', {
+			// Use the new unified API endpoint
+			const response = await fetch('/private/api/google/sheets/recent', {
 				method: 'GET',
 				headers: {
 					'Authorization': `Bearer ${localStorage.getItem('google_refresh_token')}`
@@ -339,8 +328,8 @@
 		}
 		
 		try {
-			// TODO: Replace with actual API call
-			const response = await fetch(`/api/sheets/${sheet.id}/data`, {
+			// Use the new unified API endpoint
+			const response = await fetch(`/private/api/google/sheets/${sheet.id}/data`, {
 				method: 'GET',
 				headers: {
 					'Authorization': `Bearer ${localStorage.getItem('google_refresh_token')}`
-- 
2.49.1


From 81e2e53cc55103490db2b06bda259aba1928b1af Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Wed, 2 Jul 2025 23:56:11 +0200
Subject: [PATCH 06/20] lib sources restructuring

---
 src/lib/google/auth/client.ts                 | 121 ++++++++++++++++++
 src/lib/google/auth/server.ts                 |  57 +++++++++
 src/lib/google/gmail/index.ts                 |  90 +++++++++++++
 src/lib/google/index.ts                       |  18 +++
 src/lib/google/sheets/index.ts                |  77 +++++++++++
 src/lib/helpers/event.ts                      |  13 --
 src/lib/types/quoted-printable.d.ts           |   5 +
 src/routes/api/auth/refresh/+server.ts        |   4 +-
 .../api/sheets/[sheetId]/data/+server.ts      |   4 +-
 src/routes/api/sheets/recent/+server.ts       |   6 +-
 src/routes/auth/google/+server.ts             |   4 +-
 src/routes/auth/google/callback/+server.ts    |   4 +-
 src/routes/private/api/gmail/+server.ts       |  79 ------------
 .../api/google/auth/refresh/+server.ts        |   4 +-
 .../api/google/auth/userinfo/+server.ts       |   4 +-
 .../google/sheets/[sheetId]/data/+server.ts   |   4 +-
 .../api/google/sheets/recent/+server.ts       |   6 +-
 .../private/events/event/new/+page.svelte     |   4 +-
 .../new/components/GoogleSheetsStep.svelte    |   2 +-
 19 files changed, 391 insertions(+), 115 deletions(-)
 create mode 100644 src/lib/google/auth/client.ts
 create mode 100644 src/lib/google/auth/server.ts
 create mode 100644 src/lib/google/gmail/index.ts
 create mode 100644 src/lib/google/index.ts
 create mode 100644 src/lib/google/sheets/index.ts
 delete mode 100644 src/lib/helpers/event.ts
 create mode 100644 src/lib/types/quoted-printable.d.ts
 delete mode 100644 src/routes/private/api/gmail/+server.ts

diff --git a/src/lib/google/auth/client.ts b/src/lib/google/auth/client.ts
new file mode 100644
index 0000000..6c9e654
--- /dev/null
+++ b/src/lib/google/auth/client.ts
@@ -0,0 +1,121 @@
+import { browser } from '$app/environment';
+
+// Client-side only functions
+export const scopes = [
+	'https://www.googleapis.com/auth/gmail.send',
+	'https://www.googleapis.com/auth/userinfo.email',
+	'https://www.googleapis.com/auth/drive.readonly',
+	'https://www.googleapis.com/auth/spreadsheets.readonly'
+];
+
+/**
+ * Initialize Google Auth (placeholder for client-side)
+ */
+export async function initGoogleAuth(): Promise<void> {
+	if (!browser) return;
+	// Google Auth initialization is handled by the OAuth flow
+	// No initialization needed for our server-side approach
+}
+
+/**
+ * Get the Google Auth URL
+ * @returns URL for Google OAuth
+ */
+export function getAuthUrl(): string {
+	if (!browser) return '';
+	// This should be obtained from the server
+	return '/auth/google';
+}
+
+/**
+ * Check if an access token is valid
+ * @param accessToken - Google access token to validate
+ * @returns True if the token is valid
+ */
+export async function isTokenValid(accessToken: string): Promise<boolean> {
+	if (!browser) return false;
+	
+	try {
+		const response = await fetch(`https://www.googleapis.com/oauth2/v1/tokeninfo?access_token=${accessToken}`);
+		const data = await response.json();
+		
+		if (response.ok && data.expires_in && data.expires_in > 0) {
+			return true;
+		}
+		return false;
+	} catch (error) {
+		console.error('Error validating token:', error);
+		return false;
+	}
+}
+
+/**
+ * Refresh an access token using the refresh token
+ * @param refreshToken - Google refresh token
+ * @returns New access token or null if failed
+ */
+export async function refreshAccessToken(refreshToken: string): Promise<string | null> {
+	try {
+		const response = await fetch('/private/api/google/auth/refresh', {
+			method: 'POST',
+			headers: {
+				'Content-Type': 'application/json'
+			},
+			body: JSON.stringify({ refreshToken })
+		});
+		
+		if (response.ok) {
+			const data = await response.json();
+			return data.accessToken;
+		}
+		return null;
+	} catch (error) {
+		console.error('Error refreshing token:', error);
+		return null;
+	}
+}
+
+/**
+ * Get Google user information
+ * @param accessToken - Google access token
+ * @returns User info including email, name, and picture
+ */
+export async function getUserInfo(accessToken: string): Promise<{ email: string; name: string; picture: string } | null> {
+	try {
+		const response = await fetch('/private/api/google/auth/userinfo', {
+			headers: {
+				'Authorization': `Bearer ${accessToken}`
+			}
+		});
+		
+		if (response.ok) {
+			return await response.json();
+		}
+		return null;
+	} catch (error) {
+		console.error('Error fetching user info:', error);
+		return null;
+	}
+}
+
+/**
+ * Revoke a Google access token
+ * @param accessToken - Google access token to revoke
+ * @returns True if revocation was successful
+ */
+export async function revokeToken(accessToken: string): Promise<boolean> {
+	try {
+		const response = await fetch('/private/api/google/auth/revoke', {
+			method: 'POST',
+			headers: {
+				'Content-Type': 'application/json'
+			},
+			body: JSON.stringify({ accessToken })
+		});
+		
+		return response.ok;
+	} catch (error) {
+		console.error('Error revoking token:', error);
+		return false;
+	}
+}
diff --git a/src/lib/google/auth/server.ts b/src/lib/google/auth/server.ts
new file mode 100644
index 0000000..6e937ae
--- /dev/null
+++ b/src/lib/google/auth/server.ts
@@ -0,0 +1,57 @@
+import { google } from 'googleapis';
+import { env } from '$env/dynamic/private';
+
+// Define OAuth scopes for the Google APIs we need to access
+export const scopes = [
+	'https://www.googleapis.com/auth/gmail.send',
+	'https://www.googleapis.com/auth/userinfo.email',
+	'https://www.googleapis.com/auth/drive.readonly',
+	'https://www.googleapis.com/auth/spreadsheets.readonly'
+];
+
+/**
+ * Create a new OAuth2 client instance
+ * @returns Google OAuth2 client
+ */
+export function getOAuthClient() {
+	return new google.auth.OAuth2(
+		env.GOOGLE_CLIENT_ID,
+		env.GOOGLE_CLIENT_SECRET,
+		env.GOOGLE_REDIRECT_URI
+	);
+}
+
+/**
+ * Create a authentication URL for OAuth flow
+ * @returns Auth URL for Google OAuth
+ */
+export function createAuthUrl() {
+	return getOAuthClient().generateAuthUrl({
+		access_type: 'offline',
+		prompt: 'consent',
+		scope: scopes,
+		redirect_uri: env.GOOGLE_REDIRECT_URI
+	});
+}
+
+/**
+ * Exchange the authorization code for access and refresh tokens
+ * @param code - Authorization code from OAuth callback
+ * @returns Access and refresh tokens
+ */
+export async function exchangeCodeForTokens(code: string) {
+	const { tokens } = await getOAuthClient().getToken(code);
+	if (!tokens.refresh_token) throw new Error('No refresh_token returned');
+	return tokens;
+}
+
+/**
+ * Get an authenticated client using a refresh token
+ * @param refreshToken - Refresh token for authentication
+ * @returns Authenticated OAuth2 client
+ */
+export function getAuthenticatedClient(refreshToken: string) {
+	const oauth = getOAuthClient();
+	oauth.setCredentials({ refresh_token: refreshToken });
+	return oauth;
+}
diff --git a/src/lib/google/gmail/index.ts b/src/lib/google/gmail/index.ts
new file mode 100644
index 0000000..d281afc
--- /dev/null
+++ b/src/lib/google/gmail/index.ts
@@ -0,0 +1,90 @@
+import { google } from 'googleapis';
+import quotedPrintable from 'quoted-printable';
+import { getAuthenticatedClient } from '../auth/server.js';
+
+/**
+ * Create an HTML email template
+ * @param text - Email body text
+ * @returns HTML email template
+ */
+export function createEmailTemplate(text: string): string {
+	return `<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <style>
+      @import url('https://fonts.googleapis.com/css2?family=Lato&display=swap');
+    </style>
+  </head>
+  <body style="font-family: 'Lato', sans-serif; background-color: #f9f9f9; padding: 20px; margin: 0;">
+    <div style="max-width: 600px; margin: auto; background: white; padding: 20px; border-radius: 8px; box-shadow: 0 2px 4px rgba(0,0,0,0.05);">
+      <p style="white-space: pre-line;font-size: 16px; line-height: 1.5; color: #333;">${text}</p>
+      <img src="cid:qrCode1" alt="QR Code" style="display: block; margin: 20px auto; max-width: 50%; min-width: 200px; height: auto;" />
+      <div style="width: 100%; display: flex; flex-direction: row; justify-content: space-between">
+        <div style="height: 4px; width: 20%; background: #00aeef;"></div>
+        <div style="height: 4px; width: 20%; background: #ec008c;"></div>
+        <div style="height: 4px; width: 20%; background: #7ac143;"></div>
+        <div style="height: 4px; width: 20%; background: #f47b20;"></div>
+        <div style="height: 4px; width: 20%; background: #2e3192;"></div>
+      </div>
+      <div style="font-size: 12px; color: #999; padding-top: 0px; margin-top: 10px; line-height: 1.5; ">
+        <p>This email has been generated with the help of ScanWave</p>
+      </div>
+    </div>
+  </body>
+</html>`;
+}
+
+/**
+ * Send an email through Gmail
+ * @param refreshToken - Google refresh token
+ * @param params - Email parameters (to, subject, text, qr_code)
+ */
+export async function sendGmail(
+	refreshToken: string,
+	{ to, subject, text, qr_code }: { to: string; subject: string; text: string; qr_code: string }
+) {
+	const oauth = getAuthenticatedClient(refreshToken);
+	const gmail = google.gmail({ version: 'v1', auth: oauth });
+
+	const message_html = createEmailTemplate(text);
+	const boundary = 'BOUNDARY';
+	const nl = '\r\n';
+
+	// Convert HTML to a Buffer, then to latin1 string for quotedPrintable.encode
+	const htmlBuffer = Buffer.from(message_html, 'utf8');
+	const htmlLatin1 = htmlBuffer.toString('latin1');
+	const htmlQP = quotedPrintable.encode(htmlLatin1);
+	const qrLines = qr_code.replace(/.{1,76}/g, '$&' + nl);
+
+	const rawParts = [
+		'MIME-Version: 1.0',
+		`To: ${to}`,
+		`Subject: ${subject}`,
+		`Content-Type: multipart/related; boundary="${boundary}"`,
+		'',
+		`--${boundary}`,
+		'Content-Type: text/html; charset="UTF-8"',
+		'Content-Transfer-Encoding: quoted-printable',
+		'',
+		htmlQP,
+		'',
+		`--${boundary}`,
+		'Content-Type: image/png',
+		'Content-Transfer-Encoding: base64',
+		'Content-ID: <qrCode1>',
+		'Content-Disposition: inline; filename="qr.png"',
+		'',
+		qrLines,
+		'',
+		`--${boundary}--`,
+		''
+	];
+
+	const rawMessage = rawParts.join(nl);
+	const raw = Buffer.from(rawMessage).toString('base64url');
+
+	await gmail.users.messages.send({
+		userId: 'me',
+		requestBody: { raw }
+	});
+}
diff --git a/src/lib/google/index.ts b/src/lib/google/index.ts
new file mode 100644
index 0000000..c1e5bd5
--- /dev/null
+++ b/src/lib/google/index.ts
@@ -0,0 +1,18 @@
+/**
+ * Google API integration module
+ * 
+ * This module provides utilities for interacting with Google APIs:
+ * - Authentication (server and client-side)
+ * - Sheets API
+ * - Gmail API
+ */
+
+// Re-export auth utilities
+export * from './auth/client.js';
+export * as authServer from './auth/server.js';
+
+// Re-export sheets utilities
+export * as sheets from './sheets/index.js';
+
+// Re-export Gmail utilities
+export * as gmail from './gmail/index.js';
diff --git a/src/lib/google/sheets/index.ts b/src/lib/google/sheets/index.ts
new file mode 100644
index 0000000..8eaf173
--- /dev/null
+++ b/src/lib/google/sheets/index.ts
@@ -0,0 +1,77 @@
+import { google } from 'googleapis';
+import { getAuthenticatedClient } from '../auth/server.js';
+
+export interface GoogleSheet {
+	id: string;
+	name: string;
+	modifiedTime: string;
+	webViewLink: string;
+}
+
+export interface SheetData {
+	values: string[][];
+}
+
+/**
+ * Get a list of recent Google Sheets
+ * @param refreshToken - Google refresh token
+ * @param limit - Maximum number of sheets to return
+ * @returns List of Google Sheets
+ */
+export async function getRecentSpreadsheets(refreshToken: string, limit: number = 10): Promise<GoogleSheet[]> {
+	const oauth = getAuthenticatedClient(refreshToken);
+	const drive = google.drive({ version: 'v3', auth: oauth });
+
+	const response = await drive.files.list({
+		q: "mimeType='application/vnd.google-apps.spreadsheet'",
+		orderBy: 'modifiedTime desc',
+		pageSize: limit,
+		fields: 'files(id,name,modifiedTime,webViewLink)'
+	});
+
+	return response.data.files?.map(file => ({
+		id: file.id!,
+		name: file.name!,
+		modifiedTime: file.modifiedTime!,
+		webViewLink: file.webViewLink!
+	})) || [];
+}
+
+/**
+ * Get data from a Google Sheet
+ * @param refreshToken - Google refresh token
+ * @param spreadsheetId - ID of the spreadsheet
+ * @param range - Cell range to retrieve (default: A1:Z10)
+ * @returns Sheet data as a 2D array
+ */
+export async function getSpreadsheetData(refreshToken: string, spreadsheetId: string, range: string = 'A1:Z10'): Promise<SheetData> {
+	const oauth = getAuthenticatedClient(refreshToken);
+	const sheets = google.sheets({ version: 'v4', auth: oauth });
+
+	const response = await sheets.spreadsheets.values.get({
+		spreadsheetId,
+		range
+	});
+
+	return {
+		values: response.data.values || []
+	};
+}
+
+/**
+ * Get metadata about a Google Sheet
+ * @param refreshToken - Google refresh token
+ * @param spreadsheetId - ID of the spreadsheet
+ * @returns Spreadsheet metadata
+ */
+export async function getSpreadsheetInfo(refreshToken: string, spreadsheetId: string) {
+	const oauth = getAuthenticatedClient(refreshToken);
+	const sheets = google.sheets({ version: 'v4', auth: oauth });
+
+	const response = await sheets.spreadsheets.get({
+		spreadsheetId,
+		fields: 'properties.title,sheets.properties(title,sheetId)'
+	});
+
+	return response.data;
+}
diff --git a/src/lib/helpers/event.ts b/src/lib/helpers/event.ts
deleted file mode 100644
index 07fc008..0000000
--- a/src/lib/helpers/event.ts
+++ /dev/null
@@ -1,13 +0,0 @@
-export async function load({ data, url }) {
-    const event_id = url.searchParams.get('id');
-    const { data: event_data, error: eventError } = await locals.supabase
-        .from('events')
-        .select('*')
-        .eq('id', event_id)
-        .single()
-    const { data: participants, error: participantsError } = await locals.supabase
-        .from('participants')
-        .select('*, scanned_by:profiles (id, display_name)')
-        .eq('event', event_id)
-    return {event_data, participants};
-}
\ No newline at end of file
diff --git a/src/lib/types/quoted-printable.d.ts b/src/lib/types/quoted-printable.d.ts
new file mode 100644
index 0000000..a8b40d2
--- /dev/null
+++ b/src/lib/types/quoted-printable.d.ts
@@ -0,0 +1,5 @@
+declare module 'quoted-printable' {
+  export function encode(text: string): string;
+  export function decode(text: string): string;
+  export default { encode, decode };
+}
diff --git a/src/routes/api/auth/refresh/+server.ts b/src/routes/api/auth/refresh/+server.ts
index e6561ee..83eecbb 100644
--- a/src/routes/api/auth/refresh/+server.ts
+++ b/src/routes/api/auth/refresh/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getOAuthClient } from '$lib/google-server.js';
+import { authServer } from '$lib/google/index.js';
 
 export const POST: RequestHandler = async ({ request }) => {
 	try {
@@ -10,7 +10,7 @@ export const POST: RequestHandler = async ({ request }) => {
 			return json({ error: 'Refresh token is required' }, { status: 400 });
 		}
 
-		const oauth = getOAuthClient();
+		const oauth = authServer.getOAuthClient();
 		oauth.setCredentials({ refresh_token: refreshToken });
 
 		const { credentials } = await oauth.refreshAccessToken();
diff --git a/src/routes/api/sheets/[sheetId]/data/+server.ts b/src/routes/api/sheets/[sheetId]/data/+server.ts
index 263e099..e87c1ff 100644
--- a/src/routes/api/sheets/[sheetId]/data/+server.ts
+++ b/src/routes/api/sheets/[sheetId]/data/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getSpreadsheetData } from '$lib/sheets.js';
+import { sheets } from '$lib/google/index.js';
 
 export const GET: RequestHandler = async ({ params, request }) => {
 	try {
@@ -12,7 +12,7 @@ export const GET: RequestHandler = async ({ params, request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const sheetData = await getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
+		const sheetData = await sheets.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
 
 		return json(sheetData);
 	} catch (error) {
diff --git a/src/routes/api/sheets/recent/+server.ts b/src/routes/api/sheets/recent/+server.ts
index d9b94a2..ed01813 100644
--- a/src/routes/api/sheets/recent/+server.ts
+++ b/src/routes/api/sheets/recent/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getRecentSpreadsheets } from '$lib/sheets.js';
+import { sheets } from '$lib/google/index.js';
 
 export const GET: RequestHandler = async ({ request }) => {
 	try {
@@ -10,9 +10,9 @@ export const GET: RequestHandler = async ({ request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const sheets = await getRecentSpreadsheets(refreshToken, 20);
+		const spreadsheets = await sheets.getRecentSpreadsheets(refreshToken, 20);
 
-		return json(sheets);
+		return json(spreadsheets);
 	} catch (error) {
 		console.error('Error fetching recent spreadsheets:', error);
 		return json({ error: 'Failed to fetch spreadsheets' }, { status: 500 });
diff --git a/src/routes/auth/google/+server.ts b/src/routes/auth/google/+server.ts
index d407c22..49205f7 100644
--- a/src/routes/auth/google/+server.ts
+++ b/src/routes/auth/google/+server.ts
@@ -1,8 +1,8 @@
 import { redirect } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { createAuthUrl } from '$lib/google-server.js';
+import { authServer } from '$lib/google/index.js';
 
 export const GET: RequestHandler = () => {
-	const authUrl = createAuthUrl();
+	const authUrl = authServer.createAuthUrl();
     throw redirect(302, authUrl);
 };
diff --git a/src/routes/auth/google/callback/+server.ts b/src/routes/auth/google/callback/+server.ts
index 840490c..d369a58 100644
--- a/src/routes/auth/google/callback/+server.ts
+++ b/src/routes/auth/google/callback/+server.ts
@@ -1,6 +1,6 @@
 import { redirect } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getOAuthClient } from '$lib/google-server.js';
+import { authServer } from '$lib/google/index.js';
 
 export const GET: RequestHandler = async ({ url }) => {
 	try {
@@ -17,7 +17,7 @@ export const GET: RequestHandler = async ({ url }) => {
 		}
 
 		// Exchange code for tokens
-		const oauth = getOAuthClient();
+		const oauth = authServer.getOAuthClient();
 		const { tokens } = await oauth.getToken(code);
 
 		if (!tokens.refresh_token || !tokens.access_token) {
diff --git a/src/routes/private/api/gmail/+server.ts b/src/routes/private/api/gmail/+server.ts
deleted file mode 100644
index 62b73e8..0000000
--- a/src/routes/private/api/gmail/+server.ts
+++ /dev/null
@@ -1,79 +0,0 @@
-import type { RequestHandler } from './$types';
-import { json, redirect } from '@sveltejs/kit';
-import {
-	createAuthUrl,
-	exchangeCodeForTokens,
-	getOAuthClient
-} from '$lib/google';
-import { sendGmail } from '$lib/gmail';
-
-/* ───────────── GET ───────────── */
-export const GET: RequestHandler = async ({ url }) => {
-	/* 1.   /private/api/gmail?action=auth  → 302 to Google */
-	if (url.searchParams.get('action') === 'auth') {
-		throw redirect(302, createAuthUrl());
-	}
-
-	/* 2.   Google callback  /private/api/gmail?code=XXXX */
-	const code = url.searchParams.get('code');
-	if (code) {
-		try {
-			const refreshToken = await exchangeCodeForTokens(code);
-
-			const html = `
-				<script>
-					localStorage.setItem('gmail_refresh_token', ${JSON.stringify(refreshToken)});
-					location = '/private/events/creator';
-				</script>`;
-			return new Response(html, { headers: { 'Content-Type': 'text/html' } });
-		} catch (err) {
-			return new Response((err as Error).message, { status: 500 });
-		}
-	}
-
-	return new Response('Bad request', { status: 400 });
-};
-
-/* ───────────── POST ───────────── */
-export const POST: RequestHandler = async ({ request }) => {
-	const { action, refreshToken, to, subject, text, qr_code } = await request.json();
-
-	/* send e-mail */
-	if (action === 'send') {
-		if (!refreshToken) return new Response('Missing token', { status: 401 });
-		try {
-			await sendGmail(refreshToken, { to, subject, text, qr_code });
-			return json({ ok: true });
-		} catch (err) {
-			return new Response((err as Error).message, { status: 500 });
-		}
-	}
-
-	/* revoke token */
-	if (action === 'revoke') {
-		if (!refreshToken) return new Response('Missing token', { status: 401 });
-		try {
-			await getOAuthClient().revokeToken(refreshToken);
-			return json({ ok: true });
-		} catch (err) {
-			return new Response((err as Error).message, { status: 500 });
-		}
-	}
-
-	/* validate token */
-	if (action === 'validate') {
-		if (!refreshToken) {
-			return json({ valid: false });
-		}
-		try {
-			const oAuth2Client = getOAuthClient();
-			oAuth2Client.setCredentials({ refresh_token: refreshToken });
-			await oAuth2Client.getAccessToken(); // This will throw if invalid
-			return json({ valid: true });
-		} catch (err) {
-			return json({ valid: false, error: (err as Error).message });
-		}
-	}
-
-	return new Response('Bad request', { status: 400 });
-};
diff --git a/src/routes/private/api/google/auth/refresh/+server.ts b/src/routes/private/api/google/auth/refresh/+server.ts
index e6561ee..83eecbb 100644
--- a/src/routes/private/api/google/auth/refresh/+server.ts
+++ b/src/routes/private/api/google/auth/refresh/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getOAuthClient } from '$lib/google-server.js';
+import { authServer } from '$lib/google/index.js';
 
 export const POST: RequestHandler = async ({ request }) => {
 	try {
@@ -10,7 +10,7 @@ export const POST: RequestHandler = async ({ request }) => {
 			return json({ error: 'Refresh token is required' }, { status: 400 });
 		}
 
-		const oauth = getOAuthClient();
+		const oauth = authServer.getOAuthClient();
 		oauth.setCredentials({ refresh_token: refreshToken });
 
 		const { credentials } = await oauth.refreshAccessToken();
diff --git a/src/routes/private/api/google/auth/userinfo/+server.ts b/src/routes/private/api/google/auth/userinfo/+server.ts
index cb98710..ac76ea0 100644
--- a/src/routes/private/api/google/auth/userinfo/+server.ts
+++ b/src/routes/private/api/google/auth/userinfo/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getOAuthClient } from '$lib/google-server.js';
+import { authServer } from '$lib/google/index.js';
 import { google } from 'googleapis';
 
 export const GET: RequestHandler = async ({ request }) => {
@@ -14,7 +14,7 @@ export const GET: RequestHandler = async ({ request }) => {
 		const accessToken = authHeader.slice(7);
 		
 		// Create OAuth client with the token
-		const oauth = getOAuthClient();
+		const oauth = authServer.getOAuthClient();
 		oauth.setCredentials({ access_token: accessToken });
 		
 		// Call the userinfo endpoint to get user details
diff --git a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
index 263e099..e87c1ff 100644
--- a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
+++ b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getSpreadsheetData } from '$lib/sheets.js';
+import { sheets } from '$lib/google/index.js';
 
 export const GET: RequestHandler = async ({ params, request }) => {
 	try {
@@ -12,7 +12,7 @@ export const GET: RequestHandler = async ({ params, request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const sheetData = await getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
+		const sheetData = await sheets.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
 
 		return json(sheetData);
 	} catch (error) {
diff --git a/src/routes/private/api/google/sheets/recent/+server.ts b/src/routes/private/api/google/sheets/recent/+server.ts
index d9b94a2..ed01813 100644
--- a/src/routes/private/api/google/sheets/recent/+server.ts
+++ b/src/routes/private/api/google/sheets/recent/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getRecentSpreadsheets } from '$lib/sheets.js';
+import { sheets } from '$lib/google/index.js';
 
 export const GET: RequestHandler = async ({ request }) => {
 	try {
@@ -10,9 +10,9 @@ export const GET: RequestHandler = async ({ request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const sheets = await getRecentSpreadsheets(refreshToken, 20);
+		const spreadsheets = await sheets.getRecentSpreadsheets(refreshToken, 20);
 
-		return json(sheets);
+		return json(spreadsheets);
 	} catch (error) {
 		console.error('Error fetching recent spreadsheets:', error);
 		return json({ error: 'Failed to fetch spreadsheets' }, { status: 500 });
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
index b3868bb..3e87601 100644
--- a/src/routes/private/events/event/new/+page.svelte
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
 	import { onMount } from 'svelte';
-	import type { GoogleSheet } from '$lib/sheets.js';
-	import { isTokenValid, refreshAccessToken, getUserInfo, revokeToken } from '$lib/google.js';
+	import { sheets, isTokenValid, refreshAccessToken, getUserInfo, revokeToken } from '$lib/google/index.js';
+	import type { GoogleSheet } from '$lib/google/sheets/index.js';
 	import { goto } from '$app/navigation';
 	
 	// Import Components
diff --git a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
index 2dac6ec..fe62561 100644
--- a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
+++ b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-	import type { GoogleSheet } from '$lib/sheets.js';
+	import type { GoogleSheet } from '$lib/google/sheets/index.js';
 	
 	// Props
 	let { sheetsData, errors, loadRecentSheets, selectSheet, toggleSheetList } = $props<{
-- 
2.49.1


From 6debb8a7ce4b440e3b1b91c6e9878d075eed067a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Thu, 3 Jul 2025 00:02:35 +0200
Subject: [PATCH 07/20] Security fixes to lib files

---
 src/lib/google/client.ts                          |  8 ++++++++
 src/lib/google/client/index.ts                    |  5 +++++
 src/lib/google/client/types.ts                    | 14 ++++++++++++++
 src/lib/google/index.ts                           | 15 +++------------
 src/lib/google/server.ts                          | 14 ++++++++++++++
 .../private/api/google/auth/refresh/+server.ts    |  4 ++--
 .../private/api/google/auth/userinfo/+server.ts   |  4 ++--
 .../api/google/sheets/[sheetId]/data/+server.ts   |  4 ++--
 .../private/api/google/sheets/recent/+server.ts   |  4 ++--
 src/routes/private/events/event/new/+page.svelte  |  4 ++--
 .../event/new/components/GoogleSheetsStep.svelte  |  2 +-
 11 files changed, 55 insertions(+), 23 deletions(-)
 create mode 100644 src/lib/google/client.ts
 create mode 100644 src/lib/google/client/index.ts
 create mode 100644 src/lib/google/client/types.ts
 create mode 100644 src/lib/google/server.ts

diff --git a/src/lib/google/client.ts b/src/lib/google/client.ts
new file mode 100644
index 0000000..dcce5f2
--- /dev/null
+++ b/src/lib/google/client.ts
@@ -0,0 +1,8 @@
+/**
+ * Client-side Google API integration module
+ * 
+ * This module provides utilities for interacting with Google APIs from the client-side.
+ */
+
+// Re-export auth utilities
+export * from './auth/client.js';
diff --git a/src/lib/google/client/index.ts b/src/lib/google/client/index.ts
new file mode 100644
index 0000000..589398b
--- /dev/null
+++ b/src/lib/google/client/index.ts
@@ -0,0 +1,5 @@
+// Re-export client-side auth utilities
+export * from '../auth/client.js';
+
+// Re-export types
+export * from './types.js';
diff --git a/src/lib/google/client/types.ts b/src/lib/google/client/types.ts
new file mode 100644
index 0000000..d6f5986
--- /dev/null
+++ b/src/lib/google/client/types.ts
@@ -0,0 +1,14 @@
+/**
+ * Client-side type definitions for Google API integration
+ */
+
+export interface GoogleSheet {
+	id: string;
+	name: string;
+	modifiedTime: string;
+	webViewLink: string;
+}
+
+export interface SheetData {
+	values: string[][];
+}
diff --git a/src/lib/google/index.ts b/src/lib/google/index.ts
index c1e5bd5..eb972b5 100644
--- a/src/lib/google/index.ts
+++ b/src/lib/google/index.ts
@@ -1,18 +1,9 @@
 /**
  * Google API integration module
  * 
- * This module provides utilities for interacting with Google APIs:
- * - Authentication (server and client-side)
- * - Sheets API
- * - Gmail API
+ * This module provides utilities for interacting with Google APIs.
+ * NOTE: This is a client-side module. For server-side code, import from '$lib/google/server.js'
  */
 
-// Re-export auth utilities
+// Re-export client-side auth utilities
 export * from './auth/client.js';
-export * as authServer from './auth/server.js';
-
-// Re-export sheets utilities
-export * as sheets from './sheets/index.js';
-
-// Re-export Gmail utilities
-export * as gmail from './gmail/index.js';
diff --git a/src/lib/google/server.ts b/src/lib/google/server.ts
new file mode 100644
index 0000000..2ed029e
--- /dev/null
+++ b/src/lib/google/server.ts
@@ -0,0 +1,14 @@
+/**
+ * Server-side Google API integration module
+ * 
+ * This module provides utilities for interacting with Google APIs from the server-side.
+ */
+
+// Re-export server-side auth utilities
+export * from './auth/server.js';
+
+// Re-export sheets utilities
+export * from './sheets/index.js';
+
+// Re-export Gmail utilities
+export * from './gmail/index.js';
diff --git a/src/routes/private/api/google/auth/refresh/+server.ts b/src/routes/private/api/google/auth/refresh/+server.ts
index 83eecbb..5190a36 100644
--- a/src/routes/private/api/google/auth/refresh/+server.ts
+++ b/src/routes/private/api/google/auth/refresh/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { authServer } from '$lib/google/index.js';
+import { getOAuthClient } from '$lib/google/server.js';
 
 export const POST: RequestHandler = async ({ request }) => {
 	try {
@@ -10,7 +10,7 @@ export const POST: RequestHandler = async ({ request }) => {
 			return json({ error: 'Refresh token is required' }, { status: 400 });
 		}
 
-		const oauth = authServer.getOAuthClient();
+		const oauth = getOAuthClient();
 		oauth.setCredentials({ refresh_token: refreshToken });
 
 		const { credentials } = await oauth.refreshAccessToken();
diff --git a/src/routes/private/api/google/auth/userinfo/+server.ts b/src/routes/private/api/google/auth/userinfo/+server.ts
index ac76ea0..3c978d7 100644
--- a/src/routes/private/api/google/auth/userinfo/+server.ts
+++ b/src/routes/private/api/google/auth/userinfo/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { authServer } from '$lib/google/index.js';
+import { getOAuthClient } from '$lib/google/server.js';
 import { google } from 'googleapis';
 
 export const GET: RequestHandler = async ({ request }) => {
@@ -14,7 +14,7 @@ export const GET: RequestHandler = async ({ request }) => {
 		const accessToken = authHeader.slice(7);
 		
 		// Create OAuth client with the token
-		const oauth = authServer.getOAuthClient();
+		const oauth = getOAuthClient();
 		oauth.setCredentials({ access_token: accessToken });
 		
 		// Call the userinfo endpoint to get user details
diff --git a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
index e87c1ff..3126261 100644
--- a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
+++ b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { sheets } from '$lib/google/index.js';
+import { getSpreadsheetData } from '$lib/google/server.js';
 
 export const GET: RequestHandler = async ({ params, request }) => {
 	try {
@@ -12,7 +12,7 @@ export const GET: RequestHandler = async ({ params, request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const sheetData = await sheets.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
+		const sheetData = await getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
 
 		return json(sheetData);
 	} catch (error) {
diff --git a/src/routes/private/api/google/sheets/recent/+server.ts b/src/routes/private/api/google/sheets/recent/+server.ts
index ed01813..d39f4e8 100644
--- a/src/routes/private/api/google/sheets/recent/+server.ts
+++ b/src/routes/private/api/google/sheets/recent/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { sheets } from '$lib/google/index.js';
+import { getRecentSpreadsheets } from '$lib/google/server.js';
 
 export const GET: RequestHandler = async ({ request }) => {
 	try {
@@ -10,7 +10,7 @@ export const GET: RequestHandler = async ({ request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const spreadsheets = await sheets.getRecentSpreadsheets(refreshToken, 20);
+		const spreadsheets = await getRecentSpreadsheets(refreshToken, 20);
 
 		return json(spreadsheets);
 	} catch (error) {
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
index 3e87601..b130cf8 100644
--- a/src/routes/private/events/event/new/+page.svelte
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
 	import { onMount } from 'svelte';
-	import { sheets, isTokenValid, refreshAccessToken, getUserInfo, revokeToken } from '$lib/google/index.js';
-	import type { GoogleSheet } from '$lib/google/sheets/index.js';
+	import { isTokenValid, refreshAccessToken, getUserInfo, revokeToken } from '$lib/google/client.js';
+	import type { GoogleSheet } from '$lib/google/client/types.js';
 	import { goto } from '$app/navigation';
 	
 	// Import Components
diff --git a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
index fe62561..58a1a9c 100644
--- a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
+++ b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-	import type { GoogleSheet } from '$lib/google/sheets/index.js';
+	import type { GoogleSheet } from '$lib/google/client/types.js';
 	
 	// Props
 	let { sheetsData, errors, loadRecentSheets, selectSheet, toggleSheetList } = $props<{
-- 
2.49.1


From 476bb20fa4e54ada58c19a93c6c1747637692063 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Thu, 3 Jul 2025 00:04:58 +0200
Subject: [PATCH 08/20] Remove leftovers

---
 src/routes/api/auth/refresh/+server.ts        | 30 -------------------
 .../api/sheets/[sheetId]/data/+server.ts      | 22 --------------
 src/routes/api/sheets/recent/+server.ts       | 20 -------------
 3 files changed, 72 deletions(-)
 delete mode 100644 src/routes/api/auth/refresh/+server.ts
 delete mode 100644 src/routes/api/sheets/[sheetId]/data/+server.ts
 delete mode 100644 src/routes/api/sheets/recent/+server.ts

diff --git a/src/routes/api/auth/refresh/+server.ts b/src/routes/api/auth/refresh/+server.ts
deleted file mode 100644
index 83eecbb..0000000
--- a/src/routes/api/auth/refresh/+server.ts
+++ /dev/null
@@ -1,30 +0,0 @@
-import { json } from '@sveltejs/kit';
-import type { RequestHandler } from './$types';
-import { authServer } from '$lib/google/index.js';
-
-export const POST: RequestHandler = async ({ request }) => {
-	try {
-		const { refreshToken } = await request.json();
-		
-		if (!refreshToken) {
-			return json({ error: 'Refresh token is required' }, { status: 400 });
-		}
-
-		const oauth = authServer.getOAuthClient();
-		oauth.setCredentials({ refresh_token: refreshToken });
-
-		const { credentials } = await oauth.refreshAccessToken();
-		
-		if (!credentials.access_token) {
-			return json({ error: 'Failed to refresh token' }, { status: 500 });
-		}
-
-		return json({ 
-			accessToken: credentials.access_token,
-			expiresIn: credentials.expiry_date 
-		});
-	} catch (error) {
-		console.error('Error refreshing access token:', error);
-		return json({ error: 'Failed to refresh access token' }, { status: 500 });
-	}
-};
diff --git a/src/routes/api/sheets/[sheetId]/data/+server.ts b/src/routes/api/sheets/[sheetId]/data/+server.ts
deleted file mode 100644
index e87c1ff..0000000
--- a/src/routes/api/sheets/[sheetId]/data/+server.ts
+++ /dev/null
@@ -1,22 +0,0 @@
-import { json } from '@sveltejs/kit';
-import type { RequestHandler } from './$types';
-import { sheets } from '$lib/google/index.js';
-
-export const GET: RequestHandler = async ({ params, request }) => {
-	try {
-		const { sheetId } = params;
-		const authHeader = request.headers.get('authorization');
-		
-		if (!authHeader?.startsWith('Bearer ')) {
-			return json({ error: 'Missing or invalid authorization header' }, { status: 401 });
-		}
-
-		const refreshToken = authHeader.slice(7);
-		const sheetData = await sheets.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
-
-		return json(sheetData);
-	} catch (error) {
-		console.error('Error fetching spreadsheet data:', error);
-		return json({ error: 'Failed to fetch spreadsheet data' }, { status: 500 });
-	}
-};
diff --git a/src/routes/api/sheets/recent/+server.ts b/src/routes/api/sheets/recent/+server.ts
deleted file mode 100644
index ed01813..0000000
--- a/src/routes/api/sheets/recent/+server.ts
+++ /dev/null
@@ -1,20 +0,0 @@
-import { json } from '@sveltejs/kit';
-import type { RequestHandler } from './$types';
-import { sheets } from '$lib/google/index.js';
-
-export const GET: RequestHandler = async ({ request }) => {
-	try {
-		const authHeader = request.headers.get('authorization');
-		if (!authHeader?.startsWith('Bearer ')) {
-			return json({ error: 'Missing or invalid authorization header' }, { status: 401 });
-		}
-
-		const refreshToken = authHeader.slice(7);
-		const spreadsheets = await sheets.getRecentSpreadsheets(refreshToken, 20);
-
-		return json(spreadsheets);
-	} catch (error) {
-		console.error('Error fetching recent spreadsheets:', error);
-		return json({ error: 'Failed to fetch spreadsheets' }, { status: 500 });
-	}
-};
-- 
2.49.1


From 635f507e23e441d70de663210dde5e4d371b4514 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Thu, 3 Jul 2025 00:17:54 +0200
Subject: [PATCH 09/20] Move fetching of events to browser

---
 src/routes/api/auth/refresh/+server.ts        | 30 +++++++
 src/routes/api/events/+server.ts              | 21 +++++
 .../api/sheets/[sheetId]/data/+server.ts      | 22 +++++
 src/routes/api/sheets/recent/+server.ts       | 20 +++++
 src/routes/private/events/+page.server.ts     |  7 --
 src/routes/private/events/+page.svelte        | 83 ++++++++++++++++---
 .../private/events/event/view/+page.svelte    |  0
 7 files changed, 165 insertions(+), 18 deletions(-)
 create mode 100644 src/routes/api/auth/refresh/+server.ts
 create mode 100644 src/routes/api/events/+server.ts
 create mode 100644 src/routes/api/sheets/[sheetId]/data/+server.ts
 create mode 100644 src/routes/api/sheets/recent/+server.ts
 delete mode 100644 src/routes/private/events/+page.server.ts
 create mode 100644 src/routes/private/events/event/view/+page.svelte

diff --git a/src/routes/api/auth/refresh/+server.ts b/src/routes/api/auth/refresh/+server.ts
new file mode 100644
index 0000000..83eecbb
--- /dev/null
+++ b/src/routes/api/auth/refresh/+server.ts
@@ -0,0 +1,30 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { authServer } from '$lib/google/index.js';
+
+export const POST: RequestHandler = async ({ request }) => {
+	try {
+		const { refreshToken } = await request.json();
+		
+		if (!refreshToken) {
+			return json({ error: 'Refresh token is required' }, { status: 400 });
+		}
+
+		const oauth = authServer.getOAuthClient();
+		oauth.setCredentials({ refresh_token: refreshToken });
+
+		const { credentials } = await oauth.refreshAccessToken();
+		
+		if (!credentials.access_token) {
+			return json({ error: 'Failed to refresh token' }, { status: 500 });
+		}
+
+		return json({ 
+			accessToken: credentials.access_token,
+			expiresIn: credentials.expiry_date 
+		});
+	} catch (error) {
+		console.error('Error refreshing access token:', error);
+		return json({ error: 'Failed to refresh access token' }, { status: 500 });
+	}
+};
diff --git a/src/routes/api/events/+server.ts b/src/routes/api/events/+server.ts
new file mode 100644
index 0000000..a352d1f
--- /dev/null
+++ b/src/routes/api/events/+server.ts
@@ -0,0 +1,21 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+
+export const GET: RequestHandler = async ({ locals }) => {
+    try {
+        const { data: events, error } = await locals.supabase
+            .from('events')
+            .select('*')
+            .order('date', { ascending: false });
+            
+        if (error) {
+            console.error('Error fetching events:', error);
+            return json({ error: error.message }, { status: 500 });
+        }
+        
+        return json({ events });
+    } catch (err) {
+        console.error('Error in events API:', err);
+        return json({ error: 'Internal server error' }, { status: 500 });
+    }
+};
diff --git a/src/routes/api/sheets/[sheetId]/data/+server.ts b/src/routes/api/sheets/[sheetId]/data/+server.ts
new file mode 100644
index 0000000..e87c1ff
--- /dev/null
+++ b/src/routes/api/sheets/[sheetId]/data/+server.ts
@@ -0,0 +1,22 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { sheets } from '$lib/google/index.js';
+
+export const GET: RequestHandler = async ({ params, request }) => {
+	try {
+		const { sheetId } = params;
+		const authHeader = request.headers.get('authorization');
+		
+		if (!authHeader?.startsWith('Bearer ')) {
+			return json({ error: 'Missing or invalid authorization header' }, { status: 401 });
+		}
+
+		const refreshToken = authHeader.slice(7);
+		const sheetData = await sheets.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
+
+		return json(sheetData);
+	} catch (error) {
+		console.error('Error fetching spreadsheet data:', error);
+		return json({ error: 'Failed to fetch spreadsheet data' }, { status: 500 });
+	}
+};
diff --git a/src/routes/api/sheets/recent/+server.ts b/src/routes/api/sheets/recent/+server.ts
new file mode 100644
index 0000000..ed01813
--- /dev/null
+++ b/src/routes/api/sheets/recent/+server.ts
@@ -0,0 +1,20 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { sheets } from '$lib/google/index.js';
+
+export const GET: RequestHandler = async ({ request }) => {
+	try {
+		const authHeader = request.headers.get('authorization');
+		if (!authHeader?.startsWith('Bearer ')) {
+			return json({ error: 'Missing or invalid authorization header' }, { status: 401 });
+		}
+
+		const refreshToken = authHeader.slice(7);
+		const spreadsheets = await sheets.getRecentSpreadsheets(refreshToken, 20);
+
+		return json(spreadsheets);
+	} catch (error) {
+		console.error('Error fetching recent spreadsheets:', error);
+		return json({ error: 'Failed to fetch spreadsheets' }, { status: 500 });
+	}
+};
diff --git a/src/routes/private/events/+page.server.ts b/src/routes/private/events/+page.server.ts
deleted file mode 100644
index be0d7a9..0000000
--- a/src/routes/private/events/+page.server.ts
+++ /dev/null
@@ -1,7 +0,0 @@
-export async function load({ locals }) {
-    const { data: events, error } = await locals.supabase
-        .from('events')
-        .select('*')
-        .order('date', { ascending: false });
-    return { events };
-}
\ No newline at end of file
diff --git a/src/routes/private/events/+page.svelte b/src/routes/private/events/+page.svelte
index 01b0edc..ad261e2 100644
--- a/src/routes/private/events/+page.svelte
+++ b/src/routes/private/events/+page.svelte
@@ -1,20 +1,81 @@
 <script lang="ts">
-    export let data;
+    // Get the supabase client
+    let { data } = $props();
+    
+    // Create reactive states for events and loading
+    let events = $state([]);
+    let loading = $state(true);
+    let error = $state(null);
+
+    // Load events when component mounts
+    $effect(() => {
+        loadEvents();
+    });
+    
+    async function loadEvents() {
+        loading = true;
+        error = null;
+        
+        try {
+            const { data: eventsData, error: supabaseError } = await data.supabase
+                .from('events')
+                .select('*')
+                .order('date', { ascending: false });
+                
+            if (supabaseError) throw supabaseError;
+            
+            events = eventsData || [];
+        } catch (err) {
+            console.error('Error fetching events:', err);
+            error = 'Failed to load events';
+        } finally {
+            loading = false;
+        }
+    }
 </script>
 
 <h1 class="text-2xl font-bold mb-4 mt-2 text-center">All Events</h1>
 <div class="grid grid-cols-1 md:grid-cols-2 gap-4 max-w-2xl mx-auto">
-  {#each data.events as event}
-    <a
-      href={`/private/events/event?id=${event.id}`}
-      class="block border border-gray-300 rounded bg-white p-4 shadow-none transition cursor-pointer hover:border-blue-500 group"
-    >
-      <div class="flex flex-col gap-1">
-        <span class="font-semibold text-lg text-black-700 group-hover:underline">{event.name}</span>
-        <span class="text-gray-500 text-sm">{event.date}</span>
+  {#if loading}
+    <!-- Loading placeholders -->
+    {#each Array(4) as _}
+      <div class="border border-gray-300 rounded bg-white p-4 animate-pulse">
+        <div class="flex flex-col gap-1">
+          <div class="h-5 bg-gray-200 rounded w-3/4 mb-2"></div>
+          <div class="h-4 bg-gray-100 rounded w-1/2"></div>
+        </div>
       </div>
-    </a>
-  {/each}
+    {/each}
+  {:else if error}
+    <!-- Error state -->
+    <div class="col-span-full text-center p-4 text-red-600">
+      {error}
+      <button 
+        onclick={loadEvents}
+        class="ml-2 text-blue-600 underline"
+      >
+        Try again
+      </button>
+    </div>
+  {:else if events.length === 0}
+    <!-- Empty state -->
+    <div class="col-span-full text-center p-4 text-gray-500">
+      No events found
+    </div>
+  {:else}
+    <!-- Events list -->
+    {#each events as event}
+      <a
+        href={`/private/events/event?id=${event.id}`}
+        class="block border border-gray-300 rounded bg-white p-4 shadow-none transition cursor-pointer hover:border-blue-500 group"
+      >
+        <div class="flex flex-col gap-1">
+          <span class="font-semibold text-lg text-black-700 group-hover:underline">{event.name}</span>
+          <span class="text-gray-500 text-sm">{event.date}</span>
+        </div>
+      </a>
+    {/each}
+  {/if}
 </div>
 
 <a
diff --git a/src/routes/private/events/event/view/+page.svelte b/src/routes/private/events/event/view/+page.svelte
new file mode 100644
index 0000000..e69de29
-- 
2.49.1


From ed317feae7475995fef320807e200897eb7ea365 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 12:07:43 +0200
Subject: [PATCH 10/20] Restructure progress

---
 .github/copilot-instructions.md               |  5 +
 src/lib/gmail.ts                              | 80 ----------------
 src/lib/google-server.ts                      | 38 --------
 src/lib/google.ts                             | 95 -------------------
 src/lib/google/auth/server.ts                 |  1 +
 src/lib/google/client.ts                      | 13 ++-
 src/lib/google/client/index.ts                |  5 -
 src/lib/google/client/types.ts                | 14 ---
 src/lib/google/gmail/index.ts                 | 90 ------------------
 src/lib/google/gmail/server.ts                | 88 +++++++++++++++++
 src/lib/google/index.ts                       |  9 --
 src/lib/google/server.ts                      | 17 ++--
 src/lib/google/sheets/client.ts               | 23 +++++
 src/lib/google/sheets/index.ts                | 77 ---------------
 src/lib/google/sheets/server.ts               | 89 +++++++++++++++++
 src/lib/index.ts                              |  1 -
 src/lib/sheets.ts                             | 58 -----------
 src/lib/{ => types}/types.ts                  |  0
 src/routes/api/auth/refresh/+server.ts        |  4 +-
 src/routes/api/events/+server.ts              | 21 ----
 src/routes/auth/google/+server.ts             |  4 +-
 src/routes/auth/google/callback/+server.ts    |  4 +-
 .../api/google/auth/refresh/+server.ts        |  4 +-
 .../api/google/auth/userinfo/+server.ts       |  4 +-
 .../google/sheets/[sheetId]/data/+server.ts   |  4 +-
 .../api/google/sheets/recent/+server.ts       |  4 +-
 src/routes/private/events/+page.server.ts     |  0
 src/routes/private/events/+page.svelte        | 85 +++--------------
 .../private/events/event/new/+page.svelte     |  4 +-
 .../new/components/GoogleSheetsStep.svelte    |  2 +-
 src/routes/private/scanner/+page.svelte       |  4 +-
 .../private/scanner/TicketDisplay.svelte      |  4 +-
 32 files changed, 257 insertions(+), 594 deletions(-)
 delete mode 100644 src/lib/gmail.ts
 delete mode 100644 src/lib/google-server.ts
 delete mode 100644 src/lib/google.ts
 delete mode 100644 src/lib/google/client/index.ts
 delete mode 100644 src/lib/google/client/types.ts
 delete mode 100644 src/lib/google/gmail/index.ts
 create mode 100644 src/lib/google/gmail/server.ts
 delete mode 100644 src/lib/google/index.ts
 create mode 100644 src/lib/google/sheets/client.ts
 delete mode 100644 src/lib/google/sheets/index.ts
 create mode 100644 src/lib/google/sheets/server.ts
 delete mode 100644 src/lib/index.ts
 delete mode 100644 src/lib/sheets.ts
 rename src/lib/{ => types}/types.ts (100%)
 create mode 100644 src/routes/private/events/+page.server.ts

diff --git a/.github/copilot-instructions.md b/.github/copilot-instructions.md
index a67c7e3..303229d 100644
--- a/.github/copilot-instructions.md
+++ b/.github/copilot-instructions.md
@@ -92,6 +92,11 @@ onsubmit|preventDefault={handleSubmit} is depracated, do not use it!
 Loading session using page.server.ts is not needed as the session is already available in the locals object.
 
 
+IMPORTANT: Always make sure that the client-side module are not importing secrets
+or are running any sensritive code that could expose secrets to the client.
+If any requests are needed to check sensitive infomration, create an api route and
+fetch data from there instead of directly in the client-side module.
+
 The database schema in supabase is as follows:
 -- WARNING: This schema is for context only and is not meant to be run.
 -- Table order and constraints may not be valid for execution.
diff --git a/src/lib/gmail.ts b/src/lib/gmail.ts
deleted file mode 100644
index c46488d..0000000
--- a/src/lib/gmail.ts
+++ /dev/null
@@ -1,80 +0,0 @@
-import { google } from 'googleapis';
-import quotedPrintable from 'quoted-printable';
-import { getAuthenticatedClient } from './google-server.js';
-
-export function createEmailTemplate(text: string): string {
-	return `<!DOCTYPE html>
-<html lang="en">
-  <head>
-    <style>
-      @import url('https://fonts.googleapis.com/css2?family=Lato&display=swap');
-    </style>
-  </head>
-  <body style="font-family: 'Lato', sans-serif; background-color: #f9f9f9; padding: 20px; margin: 0;">
-    <div style="max-width: 600px; margin: auto; background: white; padding: 20px; border-radius: 8px; box-shadow: 0 2px 4px rgba(0,0,0,0.05);">
-      <p style="white-space: pre-line;font-size: 16px; line-height: 1.5; color: #333;">${text}</p>
-      <img src="cid:qrCode1" alt="QR Code" style="display: block; margin: 20px auto; max-width: 50%; min-width: 200px; height: auto;" />
-      <div style="width: 100%; display: flex; flex-direction: row; justify-content: space-between">
-        <div style="height: 4px; width: 20%; background: #00aeef;"></div>
-        <div style="height: 4px; width: 20%; background: #ec008c;"></div>
-        <div style="height: 4px; width: 20%; background: #7ac143;"></div>
-        <div style="height: 4px; width: 20%; background: #f47b20;"></div>
-        <div style="height: 4px; width: 20%; background: #2e3192;"></div>
-      </div>
-      <div style="font-size: 12px; color: #999; padding-top: 0px; margin-top: 10px; line-height: 1.5; ">
-        <p>This email has been generated with the help of ScanWave</p>
-      </div>
-    </div>
-  </body>
-</html>`;
-}
-
-export async function sendGmail(
-	refreshToken: string,
-	{ to, subject, text, qr_code }: { to: string; subject: string; text: string; qr_code: string }
-) {
-	const oauth = getAuthenticatedClient(refreshToken);
-	const gmail = google.gmail({ version: 'v1', auth: oauth });
-
-	const message_html = createEmailTemplate(text);
-	const boundary = 'BOUNDARY';
-	const nl = '\r\n';
-
-	// Convert HTML to a Buffer, then to latin1 string for quotedPrintable.encode
-	const htmlBuffer = Buffer.from(message_html, 'utf8');
-	const htmlLatin1 = htmlBuffer.toString('latin1');
-	const htmlQP = quotedPrintable.encode(htmlLatin1);
-	const qrLines = qr_code.replace(/.{1,76}/g, '$&' + nl);
-
-	const rawParts = [
-		'MIME-Version: 1.0',
-		`To: ${to}`,
-		`Subject: ${subject}`,
-		`Content-Type: multipart/related; boundary="${boundary}"`,
-		'',
-		`--${boundary}`,
-		'Content-Type: text/html; charset="UTF-8"',
-		'Content-Transfer-Encoding: quoted-printable',
-		'',
-		htmlQP,
-		'',
-		`--${boundary}`,
-		'Content-Type: image/png',
-		'Content-Transfer-Encoding: base64',
-		'Content-ID: <qrCode1>',
-		'Content-Disposition: inline; filename="qr.png"',
-		'',
-		qrLines,
-		'',
-		`--${boundary}--`,
-		''
-	];
-
-	const rawMessage = rawParts.join(nl);
-	const raw = Buffer.from(rawMessage).toString('base64url');
-
-	await gmail.users.messages.send({
-		userId: 'me',
-		requestBody: { raw }
-	});
-}
diff --git a/src/lib/google-server.ts b/src/lib/google-server.ts
deleted file mode 100644
index 7d98157..0000000
--- a/src/lib/google-server.ts
+++ /dev/null
@@ -1,38 +0,0 @@
-import { google } from 'googleapis';
-import { env } from '$env/dynamic/private';
-
-export const scopes = [
-	'https://www.googleapis.com/auth/gmail.send',
-	'https://www.googleapis.com/auth/userinfo.email',
-	'https://www.googleapis.com/auth/drive.readonly',
-	'https://www.googleapis.com/auth/spreadsheets.readonly'
-];
-
-export function getOAuthClient() {
-	return new google.auth.OAuth2(
-		env.GOOGLE_CLIENT_ID,
-		env.GOOGLE_CLIENT_SECRET,
-		env.GOOGLE_REDIRECT_URI
-	);
-}
-
-export function createAuthUrl() {
-	return getOAuthClient().generateAuthUrl({
-		access_type: 'offline',
-		prompt: 'consent',
-		scope: scopes,
-		redirect_uri: env.GOOGLE_REDIRECT_URI
-	});
-}
-
-export async function exchangeCodeForTokens(code: string) {
-	const { tokens } = await getOAuthClient().getToken(code);
-	if (!tokens.refresh_token) throw new Error('No refresh_token returned');
-	return tokens.refresh_token;
-}
-
-export function getAuthenticatedClient(refreshToken: string) {
-	const oauth = getOAuthClient();
-	oauth.setCredentials({ refresh_token: refreshToken });
-	return oauth;
-}
diff --git a/src/lib/google.ts b/src/lib/google.ts
deleted file mode 100644
index 4977884..0000000
--- a/src/lib/google.ts
+++ /dev/null
@@ -1,95 +0,0 @@
-import { browser } from '$app/environment';
-
-// Client-side only functions
-export const scopes = [
-	'https://www.googleapis.com/auth/gmail.send',
-	'https://www.googleapis.com/auth/userinfo.email',
-	'https://www.googleapis.com/auth/drive.readonly',
-	'https://www.googleapis.com/auth/spreadsheets.readonly'
-];
-
-// Client-side functions for browser environment
-export async function initGoogleAuth(): Promise<void> {
-	if (!browser) return;
-	// Google Auth initialization is handled by the OAuth flow
-	// No initialization needed for our server-side approach
-}
-
-export function getAuthUrl(): string {
-	if (!browser) return '';
-	// This should be obtained from the server
-	return '/auth/google';
-}
-
-export async function isTokenValid(accessToken: string): Promise<boolean> {
-	if (!browser) return false;
-	
-	try {
-		const response = await fetch(`https://www.googleapis.com/oauth2/v1/tokeninfo?access_token=${accessToken}`);
-		const data = await response.json();
-		
-		if (response.ok && data.expires_in && data.expires_in > 0) {
-			return true;
-		}
-		return false;
-	} catch (error) {
-		console.error('Error validating token:', error);
-		return false;
-	}
-}
-
-export async function refreshAccessToken(refreshToken: string): Promise<string | null> {
-	try {
-		const response = await fetch('/private/api/google/auth/refresh', {
-			method: 'POST',
-			headers: {
-				'Content-Type': 'application/json'
-			},
-			body: JSON.stringify({ refreshToken })
-		});
-		
-		if (response.ok) {
-			const data = await response.json();
-			return data.accessToken;
-		}
-		return null;
-	} catch (error) {
-		console.error('Error refreshing token:', error);
-		return null;
-	}
-}
-
-export async function getUserInfo(accessToken: string): Promise<{ email: string; name: string; picture: string } | null> {
-	try {
-		const response = await fetch('/private/api/google/auth/userinfo', {
-			headers: {
-				'Authorization': `Bearer ${accessToken}`
-			}
-		});
-		
-		if (response.ok) {
-			return await response.json();
-		}
-		return null;
-	} catch (error) {
-		console.error('Error fetching user info:', error);
-		return null;
-	}
-}
-
-export async function revokeToken(accessToken: string): Promise<boolean> {
-	try {
-		const response = await fetch('/private/api/google/auth/revoke', {
-			method: 'POST',
-			headers: {
-				'Content-Type': 'application/json'
-			},
-			body: JSON.stringify({ accessToken })
-		});
-		
-		return response.ok;
-	} catch (error) {
-		console.error('Error revoking token:', error);
-		return false;
-	}
-}
diff --git a/src/lib/google/auth/server.ts b/src/lib/google/auth/server.ts
index 6e937ae..5b4e373 100644
--- a/src/lib/google/auth/server.ts
+++ b/src/lib/google/auth/server.ts
@@ -26,6 +26,7 @@ export function getOAuthClient() {
  * @returns Auth URL for Google OAuth
  */
 export function createAuthUrl() {
+	console.warn("CREATE AUTH URL");
 	return getOAuthClient().generateAuthUrl({
 		access_type: 'offline',
 		prompt: 'consent',
diff --git a/src/lib/google/client.ts b/src/lib/google/client.ts
index dcce5f2..74da0a6 100644
--- a/src/lib/google/client.ts
+++ b/src/lib/google/client.ts
@@ -1,8 +1,13 @@
 /**
- * Client-side Google API integration module
+ * Google API integration module
  * 
- * This module provides utilities for interacting with Google APIs from the client-side.
+ * This module provides utilities for interacting with Google APIs:
+ * - Authentication (server and client-side)
+ * - Sheets API
  */
 
-// Re-export auth utilities
-export * from './auth/client.js';
+// Google service modules
+export * as googleAuthClient from './auth/client.ts';
+
+export * as googleSheetsClient from './sheets/client.ts';
+
diff --git a/src/lib/google/client/index.ts b/src/lib/google/client/index.ts
deleted file mode 100644
index 589398b..0000000
--- a/src/lib/google/client/index.ts
+++ /dev/null
@@ -1,5 +0,0 @@
-// Re-export client-side auth utilities
-export * from '../auth/client.js';
-
-// Re-export types
-export * from './types.js';
diff --git a/src/lib/google/client/types.ts b/src/lib/google/client/types.ts
deleted file mode 100644
index d6f5986..0000000
--- a/src/lib/google/client/types.ts
+++ /dev/null
@@ -1,14 +0,0 @@
-/**
- * Client-side type definitions for Google API integration
- */
-
-export interface GoogleSheet {
-	id: string;
-	name: string;
-	modifiedTime: string;
-	webViewLink: string;
-}
-
-export interface SheetData {
-	values: string[][];
-}
diff --git a/src/lib/google/gmail/index.ts b/src/lib/google/gmail/index.ts
deleted file mode 100644
index d281afc..0000000
--- a/src/lib/google/gmail/index.ts
+++ /dev/null
@@ -1,90 +0,0 @@
-import { google } from 'googleapis';
-import quotedPrintable from 'quoted-printable';
-import { getAuthenticatedClient } from '../auth/server.js';
-
-/**
- * Create an HTML email template
- * @param text - Email body text
- * @returns HTML email template
- */
-export function createEmailTemplate(text: string): string {
-	return `<!DOCTYPE html>
-<html lang="en">
-  <head>
-    <style>
-      @import url('https://fonts.googleapis.com/css2?family=Lato&display=swap');
-    </style>
-  </head>
-  <body style="font-family: 'Lato', sans-serif; background-color: #f9f9f9; padding: 20px; margin: 0;">
-    <div style="max-width: 600px; margin: auto; background: white; padding: 20px; border-radius: 8px; box-shadow: 0 2px 4px rgba(0,0,0,0.05);">
-      <p style="white-space: pre-line;font-size: 16px; line-height: 1.5; color: #333;">${text}</p>
-      <img src="cid:qrCode1" alt="QR Code" style="display: block; margin: 20px auto; max-width: 50%; min-width: 200px; height: auto;" />
-      <div style="width: 100%; display: flex; flex-direction: row; justify-content: space-between">
-        <div style="height: 4px; width: 20%; background: #00aeef;"></div>
-        <div style="height: 4px; width: 20%; background: #ec008c;"></div>
-        <div style="height: 4px; width: 20%; background: #7ac143;"></div>
-        <div style="height: 4px; width: 20%; background: #f47b20;"></div>
-        <div style="height: 4px; width: 20%; background: #2e3192;"></div>
-      </div>
-      <div style="font-size: 12px; color: #999; padding-top: 0px; margin-top: 10px; line-height: 1.5; ">
-        <p>This email has been generated with the help of ScanWave</p>
-      </div>
-    </div>
-  </body>
-</html>`;
-}
-
-/**
- * Send an email through Gmail
- * @param refreshToken - Google refresh token
- * @param params - Email parameters (to, subject, text, qr_code)
- */
-export async function sendGmail(
-	refreshToken: string,
-	{ to, subject, text, qr_code }: { to: string; subject: string; text: string; qr_code: string }
-) {
-	const oauth = getAuthenticatedClient(refreshToken);
-	const gmail = google.gmail({ version: 'v1', auth: oauth });
-
-	const message_html = createEmailTemplate(text);
-	const boundary = 'BOUNDARY';
-	const nl = '\r\n';
-
-	// Convert HTML to a Buffer, then to latin1 string for quotedPrintable.encode
-	const htmlBuffer = Buffer.from(message_html, 'utf8');
-	const htmlLatin1 = htmlBuffer.toString('latin1');
-	const htmlQP = quotedPrintable.encode(htmlLatin1);
-	const qrLines = qr_code.replace(/.{1,76}/g, '$&' + nl);
-
-	const rawParts = [
-		'MIME-Version: 1.0',
-		`To: ${to}`,
-		`Subject: ${subject}`,
-		`Content-Type: multipart/related; boundary="${boundary}"`,
-		'',
-		`--${boundary}`,
-		'Content-Type: text/html; charset="UTF-8"',
-		'Content-Transfer-Encoding: quoted-printable',
-		'',
-		htmlQP,
-		'',
-		`--${boundary}`,
-		'Content-Type: image/png',
-		'Content-Transfer-Encoding: base64',
-		'Content-ID: <qrCode1>',
-		'Content-Disposition: inline; filename="qr.png"',
-		'',
-		qrLines,
-		'',
-		`--${boundary}--`,
-		''
-	];
-
-	const rawMessage = rawParts.join(nl);
-	const raw = Buffer.from(rawMessage).toString('base64url');
-
-	await gmail.users.messages.send({
-		userId: 'me',
-		requestBody: { raw }
-	});
-}
diff --git a/src/lib/google/gmail/server.ts b/src/lib/google/gmail/server.ts
new file mode 100644
index 0000000..c6838ca
--- /dev/null
+++ b/src/lib/google/gmail/server.ts
@@ -0,0 +1,88 @@
+import { google } from 'googleapis';
+import quotedPrintable from 'quoted-printable';
+import { getAuthenticatedClient } from '../auth/server.js';
+
+/**
+ * Create an HTML email template
+ * @param text - Email body text
+ * @returns HTML email template
+ */
+export function createEmailTemplate(text: string): string {
+  return `<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <style>
+      @import url('https://fonts.googleapis.com/css2?family=Lato&display=swap');
+    </style>
+  </head>
+  <body style="font-family: 'Lato', sans-serif; background-color: #f9f9f9; padding: 20px; margin: 0;">
+    <div style="max-width: 600px; margin: auto; background: white; padding: 20px; border-radius: 8px;">
+      <p style="white-space: pre-line; font-size: 16px; color: #333;">${text}</p>
+      <img src="cid:qrCode1" alt="QR Code" style="display: block; margin: 20px auto; max-width: 50%; height: auto;" />
+    </div>
+  </body>
+</html>`;
+}
+
+/**
+ * Send an email through Gmail
+ * @param refreshToken - Google refresh token
+ * @param params - Email parameters (to, subject, text, qr_code)
+ */
+export async function sendGmail(
+  refreshToken: string,
+  {
+    to,
+    subject,
+    text,
+    qr_code
+  }: {
+    to: string;
+    subject: string;
+    text: string;
+    qr_code: string;
+  }
+) {
+  const oauth = getAuthenticatedClient(refreshToken);
+  const gmail = google.gmail({ version: 'v1', auth: oauth });
+  
+  const message_html = createEmailTemplate(text);
+  const boundary = 'BOUNDARY';
+  const nl = '\r\n';
+
+  const htmlBuffer = Buffer.from(message_html, 'utf8');
+  const htmlLatin1 = htmlBuffer.toString('latin1');
+  const htmlQP = quotedPrintable.encode(htmlLatin1);
+  const qrLines = qr_code.replace(/.{1,76}/g, '$&' + nl);
+
+  const rawParts = [
+    'MIME-Version: 1.0',
+    `To: ${to}`,
+    `Subject: ${subject}`,
+    `Content-Type: multipart/related; boundary="${boundary}"`,
+    '--' + boundary,
+    'Content-Type: text/html; charset="UTF-8"',
+    'Content-Transfer-Encoding: quoted-printable',
+    '',
+    htmlQP,
+    '',
+    '--' + boundary,
+    'Content-Type: image/png',
+    'Content-Transfer-Encoding: base64',
+    'Content-ID: <qrCode1>',
+    'Content-Disposition: inline; filename="qr.png"',
+    '',
+    qrLines,
+    '',
+    '--' + boundary + '--',
+    ''
+  ];
+  
+  const rawMessage = rawParts.join(nl);
+  const raw = Buffer.from(rawMessage).toString('base64url');
+
+  await gmail.users.messages.send({
+    userId: 'me',
+    requestBody: { raw }
+  });
+}
diff --git a/src/lib/google/index.ts b/src/lib/google/index.ts
deleted file mode 100644
index eb972b5..0000000
--- a/src/lib/google/index.ts
+++ /dev/null
@@ -1,9 +0,0 @@
-/**
- * Google API integration module
- * 
- * This module provides utilities for interacting with Google APIs.
- * NOTE: This is a client-side module. For server-side code, import from '$lib/google/server.js'
- */
-
-// Re-export client-side auth utilities
-export * from './auth/client.js';
diff --git a/src/lib/google/server.ts b/src/lib/google/server.ts
index 2ed029e..55e1b66 100644
--- a/src/lib/google/server.ts
+++ b/src/lib/google/server.ts
@@ -1,14 +1,15 @@
 /**
- * Server-side Google API integration module
+ * Google API integration module
  * 
- * This module provides utilities for interacting with Google APIs from the server-side.
+ * This module provides utilities for interacting with Google APIs:
+ * - Authentication (server and client-side)
+ * - Sheets API
+ * - Gmail API
  */
 
-// Re-export server-side auth utilities
-export * from './auth/server.js';
+// Google service modules
+export * as googleAuthServer from './auth/server.ts';
 
-// Re-export sheets utilities
-export * from './sheets/index.js';
+export * as googleSheetsServer from './sheets/server.ts';
 
-// Re-export Gmail utilities
-export * from './gmail/index.js';
+export * as googleGmailServer from './gmail/server.ts';
diff --git a/src/lib/google/sheets/client.ts b/src/lib/google/sheets/client.ts
new file mode 100644
index 0000000..21c74b5
--- /dev/null
+++ b/src/lib/google/sheets/client.ts
@@ -0,0 +1,23 @@
+// Client-side Sheets functions (use fetch to call protected API endpoints)
+
+/**
+ * Fetch recent spreadsheets via protected endpoint
+ */
+export async function getRecentSpreadsheetsClient(refreshToken: string, limit: number = 10) {
+    const response = await fetch(`/private/api/google/sheets/recent?limit=${limit}`, {
+        headers: { Authorization: `Bearer ${refreshToken}` }
+    });
+    if (!response.ok) throw new Error('Failed to fetch recent sheets');
+    return await response.json();
+}
+
+/**
+ * Fetch spreadsheet data via protected endpoint
+ */
+export async function getSpreadsheetDataClient(refreshToken: string, sheetId: string, range: string = 'A1:Z10') {
+    const response = await fetch(`/private/api/google/sheets/${sheetId}/data?range=${encodeURIComponent(range)}`, {
+        headers: { Authorization: `Bearer ${refreshToken}` }
+    });
+    if (!response.ok) throw new Error('Failed to fetch spreadsheet data');
+    return await response.json();
+}
diff --git a/src/lib/google/sheets/index.ts b/src/lib/google/sheets/index.ts
deleted file mode 100644
index 8eaf173..0000000
--- a/src/lib/google/sheets/index.ts
+++ /dev/null
@@ -1,77 +0,0 @@
-import { google } from 'googleapis';
-import { getAuthenticatedClient } from '../auth/server.js';
-
-export interface GoogleSheet {
-	id: string;
-	name: string;
-	modifiedTime: string;
-	webViewLink: string;
-}
-
-export interface SheetData {
-	values: string[][];
-}
-
-/**
- * Get a list of recent Google Sheets
- * @param refreshToken - Google refresh token
- * @param limit - Maximum number of sheets to return
- * @returns List of Google Sheets
- */
-export async function getRecentSpreadsheets(refreshToken: string, limit: number = 10): Promise<GoogleSheet[]> {
-	const oauth = getAuthenticatedClient(refreshToken);
-	const drive = google.drive({ version: 'v3', auth: oauth });
-
-	const response = await drive.files.list({
-		q: "mimeType='application/vnd.google-apps.spreadsheet'",
-		orderBy: 'modifiedTime desc',
-		pageSize: limit,
-		fields: 'files(id,name,modifiedTime,webViewLink)'
-	});
-
-	return response.data.files?.map(file => ({
-		id: file.id!,
-		name: file.name!,
-		modifiedTime: file.modifiedTime!,
-		webViewLink: file.webViewLink!
-	})) || [];
-}
-
-/**
- * Get data from a Google Sheet
- * @param refreshToken - Google refresh token
- * @param spreadsheetId - ID of the spreadsheet
- * @param range - Cell range to retrieve (default: A1:Z10)
- * @returns Sheet data as a 2D array
- */
-export async function getSpreadsheetData(refreshToken: string, spreadsheetId: string, range: string = 'A1:Z10'): Promise<SheetData> {
-	const oauth = getAuthenticatedClient(refreshToken);
-	const sheets = google.sheets({ version: 'v4', auth: oauth });
-
-	const response = await sheets.spreadsheets.values.get({
-		spreadsheetId,
-		range
-	});
-
-	return {
-		values: response.data.values || []
-	};
-}
-
-/**
- * Get metadata about a Google Sheet
- * @param refreshToken - Google refresh token
- * @param spreadsheetId - ID of the spreadsheet
- * @returns Spreadsheet metadata
- */
-export async function getSpreadsheetInfo(refreshToken: string, spreadsheetId: string) {
-	const oauth = getAuthenticatedClient(refreshToken);
-	const sheets = google.sheets({ version: 'v4', auth: oauth });
-
-	const response = await sheets.spreadsheets.get({
-		spreadsheetId,
-		fields: 'properties.title,sheets.properties(title,sheetId)'
-	});
-
-	return response.data;
-}
diff --git a/src/lib/google/sheets/server.ts b/src/lib/google/sheets/server.ts
new file mode 100644
index 0000000..57a7268
--- /dev/null
+++ b/src/lib/google/sheets/server.ts
@@ -0,0 +1,89 @@
+import { google } from 'googleapis';
+import { getAuthenticatedClient } from '../auth/server.js';
+
+export interface GoogleSheet {
+  id: string;
+  name: string;
+  modifiedTime: string;
+  webViewLink: string;
+}
+
+export interface SheetData {
+  values: string[][];
+}
+
+/**
+ * Get a list of recent Google Sheets
+ * @param refreshToken - Google refresh token
+ * @param limit - Maximum number of sheets to return
+ * @returns List of Google Sheets
+ */
+export async function getRecentSpreadsheets(
+  refreshToken: string,
+  limit: number = 10
+): Promise<GoogleSheet[]> {
+  const oauth = getAuthenticatedClient(refreshToken);
+  const drive = google.drive({ version: 'v3', auth: oauth });
+
+  const response = await drive.files.list({
+    q: "mimeType='application/vnd.google-apps.spreadsheet'",
+    orderBy: 'modifiedTime desc',
+    pageSize: limit,
+    fields: 'files(id,name,modifiedTime,webViewLink)'
+  });
+
+  return (
+    response.data.files?.map(file => ({
+      id: file.id!, // eslint-disable-line @typescript-eslint/no-non-null-assertion
+      name: file.name!,
+      modifiedTime: file.modifiedTime!,
+      webViewLink: file.webViewLink!
+    })) || []
+  );
+}
+
+/**
+ * Get data from a Google Sheet
+ * @param refreshToken - Google refresh token
+ * @param spreadsheetId - ID of the spreadsheet
+ * @param range - Cell range to retrieve (default: A1:Z10)
+ * @returns Sheet data as a 2D array
+ */
+export async function getSpreadsheetData(
+  refreshToken: string,
+  spreadsheetId: string,
+  range: string = 'A1:Z10'
+): Promise<SheetData> {
+  const oauth = getAuthenticatedClient(refreshToken);
+  const sheets = google.sheets({ version: 'v4', auth: oauth });
+
+  const response = await sheets.spreadsheets.values.get({
+    spreadsheetId,
+    range
+  });
+
+  return {
+    values: response.data.values || []
+  };
+}
+
+/**
+ * Get metadata about a Google Sheet
+ * @param refreshToken - Google refresh token
+ * @param spreadsheetId - ID of the spreadsheet
+ * @returns Spreadsheet metadata
+ */
+export async function getSpreadsheetInfo(
+  refreshToken: string,
+  spreadsheetId: string
+) {
+  const oauth = getAuthenticatedClient(refreshToken);
+  const sheets = google.sheets({ version: 'v4', auth: oauth });
+
+  const response = await sheets.spreadsheets.get({
+    spreadsheetId,
+    fields: 'properties.title,sheets.properties(title,sheetId)'
+  });
+
+  return response.data;
+}
diff --git a/src/lib/index.ts b/src/lib/index.ts
deleted file mode 100644
index 856f2b6..0000000
--- a/src/lib/index.ts
+++ /dev/null
@@ -1 +0,0 @@
-// place files you want to import through the `$lib` alias in this folder.
diff --git a/src/lib/sheets.ts b/src/lib/sheets.ts
deleted file mode 100644
index b8dcc4c..0000000
--- a/src/lib/sheets.ts
+++ /dev/null
@@ -1,58 +0,0 @@
-import { google } from 'googleapis';
-import { getAuthenticatedClient } from './google-server.js';
-
-export interface GoogleSheet {
-	id: string;
-	name: string;
-	modifiedTime: string;
-	webViewLink: string;
-}
-
-export interface SheetData {
-	values: string[][];
-}
-
-export async function getRecentSpreadsheets(refreshToken: string, limit: number = 10): Promise<GoogleSheet[]> {
-	const oauth = getAuthenticatedClient(refreshToken);
-	const drive = google.drive({ version: 'v3', auth: oauth });
-
-	const response = await drive.files.list({
-		q: "mimeType='application/vnd.google-apps.spreadsheet'",
-		orderBy: 'modifiedTime desc',
-		pageSize: limit,
-		fields: 'files(id,name,modifiedTime,webViewLink)'
-	});
-
-	return response.data.files?.map(file => ({
-		id: file.id!,
-		name: file.name!,
-		modifiedTime: file.modifiedTime!,
-		webViewLink: file.webViewLink!
-	})) || [];
-}
-
-export async function getSpreadsheetData(refreshToken: string, spreadsheetId: string, range: string = 'A1:Z10'): Promise<SheetData> {
-	const oauth = getAuthenticatedClient(refreshToken);
-	const sheets = google.sheets({ version: 'v4', auth: oauth });
-
-	const response = await sheets.spreadsheets.values.get({
-		spreadsheetId,
-		range
-	});
-
-	return {
-		values: response.data.values || []
-	};
-}
-
-export async function getSpreadsheetInfo(refreshToken: string, spreadsheetId: string) {
-	const oauth = getAuthenticatedClient(refreshToken);
-	const sheets = google.sheets({ version: 'v4', auth: oauth });
-
-	const response = await sheets.spreadsheets.get({
-		spreadsheetId,
-		fields: 'properties.title,sheets.properties(title,sheetId)'
-	});
-
-	return response.data;
-}
diff --git a/src/lib/types.ts b/src/lib/types/types.ts
similarity index 100%
rename from src/lib/types.ts
rename to src/lib/types/types.ts
diff --git a/src/routes/api/auth/refresh/+server.ts b/src/routes/api/auth/refresh/+server.ts
index 83eecbb..cfbd733 100644
--- a/src/routes/api/auth/refresh/+server.ts
+++ b/src/routes/api/auth/refresh/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { authServer } from '$lib/google/index.js';
+import { getOAuthClient } from '$lib/google/auth/server.js';
 
 export const POST: RequestHandler = async ({ request }) => {
 	try {
@@ -10,7 +10,7 @@ export const POST: RequestHandler = async ({ request }) => {
 			return json({ error: 'Refresh token is required' }, { status: 400 });
 		}
 
-		const oauth = authServer.getOAuthClient();
+	const oauth = getOAuthClient();
 		oauth.setCredentials({ refresh_token: refreshToken });
 
 		const { credentials } = await oauth.refreshAccessToken();
diff --git a/src/routes/api/events/+server.ts b/src/routes/api/events/+server.ts
index a352d1f..e69de29 100644
--- a/src/routes/api/events/+server.ts
+++ b/src/routes/api/events/+server.ts
@@ -1,21 +0,0 @@
-import { json } from '@sveltejs/kit';
-import type { RequestHandler } from './$types';
-
-export const GET: RequestHandler = async ({ locals }) => {
-    try {
-        const { data: events, error } = await locals.supabase
-            .from('events')
-            .select('*')
-            .order('date', { ascending: false });
-            
-        if (error) {
-            console.error('Error fetching events:', error);
-            return json({ error: error.message }, { status: 500 });
-        }
-        
-        return json({ events });
-    } catch (err) {
-        console.error('Error in events API:', err);
-        return json({ error: 'Internal server error' }, { status: 500 });
-    }
-};
diff --git a/src/routes/auth/google/+server.ts b/src/routes/auth/google/+server.ts
index 49205f7..71ea732 100644
--- a/src/routes/auth/google/+server.ts
+++ b/src/routes/auth/google/+server.ts
@@ -1,8 +1,8 @@
 import { redirect } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { authServer } from '$lib/google/index.js';
+import { createAuthUrl } from '$lib/google/auth/server.js';
 
 export const GET: RequestHandler = () => {
-	const authUrl = authServer.createAuthUrl();
+    const authUrl = createAuthUrl();
     throw redirect(302, authUrl);
 };
diff --git a/src/routes/auth/google/callback/+server.ts b/src/routes/auth/google/callback/+server.ts
index d369a58..584aa48 100644
--- a/src/routes/auth/google/callback/+server.ts
+++ b/src/routes/auth/google/callback/+server.ts
@@ -1,6 +1,6 @@
 import { redirect } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { authServer } from '$lib/google/index.js';
+import { googleAuthServer } from '$lib/google/server.ts';
 
 export const GET: RequestHandler = async ({ url }) => {
 	try {
@@ -17,7 +17,7 @@ export const GET: RequestHandler = async ({ url }) => {
 		}
 
 		// Exchange code for tokens
-		const oauth = authServer.getOAuthClient();
+		const oauth = googleAuthServer.getOAuthClient();
 		const { tokens } = await oauth.getToken(code);
 
 		if (!tokens.refresh_token || !tokens.access_token) {
diff --git a/src/routes/private/api/google/auth/refresh/+server.ts b/src/routes/private/api/google/auth/refresh/+server.ts
index 5190a36..ca057c8 100644
--- a/src/routes/private/api/google/auth/refresh/+server.ts
+++ b/src/routes/private/api/google/auth/refresh/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getOAuthClient } from '$lib/google/server.js';
+import { googleAuthServer } from '$lib/google/server.ts';
 
 export const POST: RequestHandler = async ({ request }) => {
 	try {
@@ -10,7 +10,7 @@ export const POST: RequestHandler = async ({ request }) => {
 			return json({ error: 'Refresh token is required' }, { status: 400 });
 		}
 
-		const oauth = getOAuthClient();
+		const oauth = googleAuthServer.getOAuthClient();
 		oauth.setCredentials({ refresh_token: refreshToken });
 
 		const { credentials } = await oauth.refreshAccessToken();
diff --git a/src/routes/private/api/google/auth/userinfo/+server.ts b/src/routes/private/api/google/auth/userinfo/+server.ts
index 3c978d7..2e44e75 100644
--- a/src/routes/private/api/google/auth/userinfo/+server.ts
+++ b/src/routes/private/api/google/auth/userinfo/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getOAuthClient } from '$lib/google/server.js';
+import { googleAuthServer } from '$lib/google/server.ts';
 import { google } from 'googleapis';
 
 export const GET: RequestHandler = async ({ request }) => {
@@ -14,7 +14,7 @@ export const GET: RequestHandler = async ({ request }) => {
 		const accessToken = authHeader.slice(7);
 		
 		// Create OAuth client with the token
-		const oauth = getOAuthClient();
+		const oauth = googleAuthServer.getOAuthClient();
 		oauth.setCredentials({ access_token: accessToken });
 		
 		// Call the userinfo endpoint to get user details
diff --git a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
index 3126261..e87c1ff 100644
--- a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
+++ b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getSpreadsheetData } from '$lib/google/server.js';
+import { sheets } from '$lib/google/index.js';
 
 export const GET: RequestHandler = async ({ params, request }) => {
 	try {
@@ -12,7 +12,7 @@ export const GET: RequestHandler = async ({ params, request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const sheetData = await getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
+		const sheetData = await sheets.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
 
 		return json(sheetData);
 	} catch (error) {
diff --git a/src/routes/private/api/google/sheets/recent/+server.ts b/src/routes/private/api/google/sheets/recent/+server.ts
index d39f4e8..ed01813 100644
--- a/src/routes/private/api/google/sheets/recent/+server.ts
+++ b/src/routes/private/api/google/sheets/recent/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { getRecentSpreadsheets } from '$lib/google/server.js';
+import { sheets } from '$lib/google/index.js';
 
 export const GET: RequestHandler = async ({ request }) => {
 	try {
@@ -10,7 +10,7 @@ export const GET: RequestHandler = async ({ request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const spreadsheets = await getRecentSpreadsheets(refreshToken, 20);
+		const spreadsheets = await sheets.getRecentSpreadsheets(refreshToken, 20);
 
 		return json(spreadsheets);
 	} catch (error) {
diff --git a/src/routes/private/events/+page.server.ts b/src/routes/private/events/+page.server.ts
new file mode 100644
index 0000000..e69de29
diff --git a/src/routes/private/events/+page.svelte b/src/routes/private/events/+page.svelte
index ad261e2..1664850 100644
--- a/src/routes/private/events/+page.svelte
+++ b/src/routes/private/events/+page.svelte
@@ -1,85 +1,24 @@
 <script lang="ts">
-    // Get the supabase client
-    let { data } = $props();
-    
-    // Create reactive states for events and loading
-    let events = $state([]);
-    let loading = $state(true);
-    let error = $state(null);
-
-    // Load events when component mounts
-    $effect(() => {
-        loadEvents();
-    });
-    
-    async function loadEvents() {
-        loading = true;
-        error = null;
-        
-        try {
-            const { data: eventsData, error: supabaseError } = await data.supabase
-                .from('events')
-                .select('*')
-                .order('date', { ascending: false });
-                
-            if (supabaseError) throw supabaseError;
-            
-            events = eventsData || [];
-        } catch (err) {
-            console.error('Error fetching events:', err);
-            error = 'Failed to load events';
-        } finally {
-            loading = false;
-        }
-    }
+    export let data;
 </script>
 
 <h1 class="text-2xl font-bold mb-4 mt-2 text-center">All Events</h1>
 <div class="grid grid-cols-1 md:grid-cols-2 gap-4 max-w-2xl mx-auto">
-  {#if loading}
-    <!-- Loading placeholders -->
-    {#each Array(4) as _}
-      <div class="border border-gray-300 rounded bg-white p-4 animate-pulse">
-        <div class="flex flex-col gap-1">
-          <div class="h-5 bg-gray-200 rounded w-3/4 mb-2"></div>
-          <div class="h-4 bg-gray-100 rounded w-1/2"></div>
-        </div>
+  {#each data.events as event}
+    <a
+      href={`/private/events/event?id=${event.id}`}
+      class="block border border-gray-300 rounded bg-white p-4 shadow-none transition cursor-pointer hover:border-blue-500 group"
+    >
+      <div class="flex flex-col gap-1">
+        <span class="font-semibold text-lg text-black-700 group-hover:underline">{event.name}</span>
+        <span class="text-gray-500 text-sm">{event.date}</span>
       </div>
-    {/each}
-  {:else if error}
-    <!-- Error state -->
-    <div class="col-span-full text-center p-4 text-red-600">
-      {error}
-      <button 
-        onclick={loadEvents}
-        class="ml-2 text-blue-600 underline"
-      >
-        Try again
-      </button>
-    </div>
-  {:else if events.length === 0}
-    <!-- Empty state -->
-    <div class="col-span-full text-center p-4 text-gray-500">
-      No events found
-    </div>
-  {:else}
-    <!-- Events list -->
-    {#each events as event}
-      <a
-        href={`/private/events/event?id=${event.id}`}
-        class="block border border-gray-300 rounded bg-white p-4 shadow-none transition cursor-pointer hover:border-blue-500 group"
-      >
-        <div class="flex flex-col gap-1">
-          <span class="font-semibold text-lg text-black-700 group-hover:underline">{event.name}</span>
-          <span class="text-gray-500 text-sm">{event.date}</span>
-        </div>
-      </a>
-    {/each}
-  {/if}
+    </a>
+  {/each}
 </div>
 
 <a
-  href="/private/events/event/new"
+  href="/private/creator"
   class="fixed bottom-6 left-1/2 -translate-x-1/2 z-50 bg-blue-600 hover:bg-blue-700 text-white font-bold py-3 px-8 rounded-full shadow-none border border-gray-300"
 >
   New Event
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
index b130cf8..e2177ff 100644
--- a/src/routes/private/events/event/new/+page.svelte
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
 	import { onMount } from 'svelte';
-	import { isTokenValid, refreshAccessToken, getUserInfo, revokeToken } from '$lib/google/client.js';
-	import type { GoogleSheet } from '$lib/google/client/types.js';
+	import { isTokenValid, getUserInfo, revokeToken } from '$lib/google/auth/client.js';
+	import type { GoogleSheet } from '$lib/google/sheets/client.js';
 	import { goto } from '$app/navigation';
 	
 	// Import Components
diff --git a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
index 58a1a9c..0389757 100644
--- a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
+++ b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-	import type { GoogleSheet } from '$lib/google/client/types.js';
+	import type { GoogleSheet } from '$lib/google/sheets';
 	
 	// Props
 	let { sheetsData, errors, loadRecentSheets, selectSheet, toggleSheetList } = $props<{
diff --git a/src/routes/private/scanner/+page.svelte b/src/routes/private/scanner/+page.svelte
index 10b236d..0a098ca 100644
--- a/src/routes/private/scanner/+page.svelte
+++ b/src/routes/private/scanner/+page.svelte
@@ -2,8 +2,8 @@
 	import QRScanner from './QRScanner.svelte';
 	import TicketDisplay from './TicketDisplay.svelte';
 
-	import type { TicketData } from '$lib/types';
-	import { ScanState, defaultTicketData } from '$lib/types';
+	import type { TicketData } from '$lib/types/types';
+	import { ScanState, defaultTicketData } from '$lib/types/types';
 
 	let { data } = $props();
 	let scanned_id = $state<string>("");
diff --git a/src/routes/private/scanner/TicketDisplay.svelte b/src/routes/private/scanner/TicketDisplay.svelte
index eddcb9c..44c45dd 100644
--- a/src/routes/private/scanner/TicketDisplay.svelte
+++ b/src/routes/private/scanner/TicketDisplay.svelte
@@ -1,6 +1,6 @@
 <script lang="ts">
-	import type { TicketData } from '$lib/types';
-	import { ScanState } from '$lib/types';
+	import type { TicketData } from '$lib/types/types';
+	import { ScanState } from '$lib/types/types';
 
 	let { ticket_data, scan_state }: { ticket_data: TicketData; scan_state: ScanState } = $props();
 
-- 
2.49.1


From c248e4e074ec3d273419511b1a98eba1bad05fcc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 12:37:45 +0200
Subject: [PATCH 11/20] Fixed google login

---
 src/lib/google/auth/server.ts                 |  1 -
 src/routes/auth/google/callback/+server.ts    | 45 ++++++-------
 .../private/events/event/new/+page.svelte     | 66 +++++++++++--------
 src/service-worker.ts                         |  6 ++
 4 files changed, 66 insertions(+), 52 deletions(-)

diff --git a/src/lib/google/auth/server.ts b/src/lib/google/auth/server.ts
index 5b4e373..6e937ae 100644
--- a/src/lib/google/auth/server.ts
+++ b/src/lib/google/auth/server.ts
@@ -26,7 +26,6 @@ export function getOAuthClient() {
  * @returns Auth URL for Google OAuth
  */
 export function createAuthUrl() {
-	console.warn("CREATE AUTH URL");
 	return getOAuthClient().generateAuthUrl({
 		access_type: 'offline',
 		prompt: 'consent',
diff --git a/src/routes/auth/google/callback/+server.ts b/src/routes/auth/google/callback/+server.ts
index 584aa48..a6f339b 100644
--- a/src/routes/auth/google/callback/+server.ts
+++ b/src/routes/auth/google/callback/+server.ts
@@ -64,34 +64,29 @@ export const GET: RequestHandler = async ({ url }) => {
 	<script>
 		(function() {
 			try {
-				// Store tokens in the parent window's localStorage
-				if (window.opener && !window.opener.closed) {
-					window.opener.localStorage.setItem('google_access_token', '${tokens.access_token}');
-					window.opener.localStorage.setItem('google_refresh_token', '${tokens.refresh_token}');
-					
-					// Send success message to parent
-					window.opener.postMessage({ 
-						type: 'GOOGLE_AUTH_SUCCESS',
-						tokens: {
-							accessToken: '${tokens.access_token}',
-							refreshToken: '${tokens.refresh_token}'
-						}
-					}, '*');
-					
-					// Close the popup after a short delay to ensure message is received
-					setTimeout(() => {
+				// Store tokens in localStorage (same origin)
+				localStorage.setItem('google_access_token', '${tokens.access_token}');
+				localStorage.setItem('google_refresh_token', '${tokens.refresh_token}');
+				// Set timestamp that the main application will detect
+				localStorage.setItem('google_auth_timestamp', Date.now().toString());
+				
+				// Update UI to show success
+				document.querySelector('.loading').textContent = 'Authentication complete! This window will close automatically.';
+				
+				// Close window after a short delay
+				setTimeout(() => {
+					try {
 						window.close();
-					}, 500);
-				} else {
-					// If no opener, close immediately
-					window.close();
-				}
+					} catch (e) {
+						// If we can't close automatically, update message
+						document.querySelector('.loading').textContent = 'Authentication complete! You can close this window now.';
+					}
+				}, 1500);
 			} catch (error) {
 				console.error('Error in auth callback:', error);
-				// Try to close the window anyway
-				setTimeout(() => {
-					window.close();
-				}, 1000);
+				// Update UI to show error
+				document.querySelector('.success').textContent = '✗ Authentication error';
+				document.querySelector('.loading').textContent = 'Please close this window and try again.';
 			}
 		})();
 	</script>
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
index e2177ff..e0eb92d 100644
--- a/src/routes/private/events/event/new/+page.svelte
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
 	import { onMount } from 'svelte';
 	import { isTokenValid, getUserInfo, revokeToken } from '$lib/google/auth/client.js';
-	import type { GoogleSheet } from '$lib/google/sheets/client.js';
+	import type { GoogleSheet } from '$lib/google/sheets/types.ts';
 	import { goto } from '$app/navigation';
 	
 	// Import Components
@@ -124,35 +124,49 @@
 			let popupTimer: number | null = null;
 			let cancelTimeout: number | null = null;
 
-			// Listen for messages from the popup
-			const messageHandler = (event: MessageEvent) => {
-				if (event.data?.type === 'GOOGLE_AUTH_SUCCESS') {
-					authCompleted = true;
-					authData.connecting = false;
-					authData.showCancelOption = false;
-					window.removeEventListener('message', messageHandler);
+			// Store current timestamp to detect changes in localStorage
+			const startTimestamp = localStorage.getItem('google_auth_timestamp') || '0';
+			
+			// Poll localStorage for auth completion
+			const pollInterval = setInterval(() => {
+				try {
+					const currentTimestamp = localStorage.getItem('google_auth_timestamp');
 					
-					// Clean up timers
-					if (popupTimer) clearTimeout(popupTimer);
-					if (cancelTimeout) clearTimeout(cancelTimeout);
-					
-					// Check auth status again after success
-					setTimeout(checkGoogleAuth, 100);
+					// If timestamp has changed, auth is complete
+					if (currentTimestamp && currentTimestamp !== startTimestamp) {
+						handleAuthSuccess();
+					}
+				} catch (e) {
+					console.error('Error checking auth timestamp:', e);
 				}
-			};
-
+			}, 500); // Poll every 500ms
+			
+			// Common handler for authentication success
+			function handleAuthSuccess() {
+				if (authCompleted) return; // Prevent duplicate handling
+				
+				authCompleted = true;
+				authData.connecting = false;
+				authData.showCancelOption = false;
+				
+				// Clean up timers
+				clearInterval(pollInterval);
+				if (popupTimer) clearTimeout(popupTimer);
+				if (cancelTimeout) clearTimeout(cancelTimeout);
+				
+				// Update auth state
+				setTimeout(checkGoogleAuth, 100);
+			}
+			
 			// Clean up function to handle all cleanup in one place
 			const cleanUp = () => {
-				window.removeEventListener('message', messageHandler);
+				clearInterval(pollInterval);
 				if (popupTimer) clearTimeout(popupTimer);
 				if (cancelTimeout) clearTimeout(cancelTimeout);
 				authData.connecting = false;
 			};
 
-			window.addEventListener('message', messageHandler);
-
-			// Set a timeout to check auth status regardless of popup state
-			// This is a workaround for Cross-Origin-Opener-Policy restrictions
+			// Set a timeout for initial auth check
 			popupTimer = setTimeout(() => {
 				// Only check if auth isn't already completed
 				if (!authCompleted) {
@@ -160,21 +174,21 @@
 					// Check if tokens were stored by the popup before it was closed
 					setTimeout(checkGoogleAuth, 100);
 				}
-			}, 60 * 1000) as unknown as number;
+			}, 30 * 1000) as unknown as number; // Reduced from 60s to 30s
 
-			// After 20 seconds with no response, show cancel option
+			// Show cancel option sooner
 			cancelTimeout = setTimeout(() => {
 				if (!authCompleted) {
 					authData.showCancelOption = true;
 				}
-			}, 20 * 1000) as unknown as number;
+			}, 10 * 1000) as unknown as number; // Reduced from 20s to 10s
 
-			// Set a final timeout to clean up everything if nothing else worked
+			// Final cleanup timeout
 			setTimeout(() => {
 				if (!authCompleted) {
 					cleanUp();
 				}
-			}, 3 * 60 * 1000); // 3 minute max timeout
+			}, 60 * 1000); // Reduced from 3min to 1min
 
 		} catch (error) {
 			console.error('Error connecting to Google:', error);
diff --git a/src/service-worker.ts b/src/service-worker.ts
index 935445d..acd0f71 100644
--- a/src/service-worker.ts
+++ b/src/service-worker.ts
@@ -36,6 +36,12 @@ self.addEventListener('fetch', (event) => {
 
 	async function respond() {
 		const url = new URL(event.request.url);
+		
+		// Skip caching for auth routes
+		if (url.pathname.startsWith('/auth/')) {
+			return fetch(event.request);
+		}
+
 		const cache = await caches.open(CACHE);
 
 		// `build`/`files` can always be served from the cache
-- 
2.49.1


From bd7e3f9720bade58faa414fa60f637388ded6966 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 12:54:38 +0200
Subject: [PATCH 12/20] Fixed basic usability of sheets

---
 src/lib/google/sheets/server.ts                      | 12 +-----------
 src/lib/google/sheets/types.ts                       | 10 ++++++++++
 src/routes/api/sheets/[sheetId]/data/+server.ts      |  4 ++--
 src/routes/api/sheets/recent/+server.ts              |  4 ++--
 .../api/google/sheets/[sheetId]/data/+server.ts      |  4 ++--
 .../private/api/google/sheets/recent/+server.ts      |  4 ++--
 .../event/new/components/GoogleSheetsStep.svelte     |  2 +-
 7 files changed, 20 insertions(+), 20 deletions(-)
 create mode 100644 src/lib/google/sheets/types.ts

diff --git a/src/lib/google/sheets/server.ts b/src/lib/google/sheets/server.ts
index 57a7268..eaba378 100644
--- a/src/lib/google/sheets/server.ts
+++ b/src/lib/google/sheets/server.ts
@@ -1,16 +1,6 @@
 import { google } from 'googleapis';
 import { getAuthenticatedClient } from '../auth/server.js';
-
-export interface GoogleSheet {
-  id: string;
-  name: string;
-  modifiedTime: string;
-  webViewLink: string;
-}
-
-export interface SheetData {
-  values: string[][];
-}
+import { GoogleSheet } from './types.ts'
 
 /**
  * Get a list of recent Google Sheets
diff --git a/src/lib/google/sheets/types.ts b/src/lib/google/sheets/types.ts
new file mode 100644
index 0000000..d88de8a
--- /dev/null
+++ b/src/lib/google/sheets/types.ts
@@ -0,0 +1,10 @@
+export interface GoogleSheet {
+  id: string;
+  name: string;
+  modifiedTime: string;
+  webViewLink: string;
+}
+
+export interface SheetData {
+  values: string[][];
+}
diff --git a/src/routes/api/sheets/[sheetId]/data/+server.ts b/src/routes/api/sheets/[sheetId]/data/+server.ts
index e87c1ff..9e9b4b0 100644
--- a/src/routes/api/sheets/[sheetId]/data/+server.ts
+++ b/src/routes/api/sheets/[sheetId]/data/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { sheets } from '$lib/google/index.js';
+import { googleSheetsServer } from '$lib/google/sheets/server';
 
 export const GET: RequestHandler = async ({ params, request }) => {
 	try {
@@ -12,7 +12,7 @@ export const GET: RequestHandler = async ({ params, request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const sheetData = await sheets.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
+		const sheetData = await googleSheetsServer.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
 
 		return json(sheetData);
 	} catch (error) {
diff --git a/src/routes/api/sheets/recent/+server.ts b/src/routes/api/sheets/recent/+server.ts
index ed01813..d3eba61 100644
--- a/src/routes/api/sheets/recent/+server.ts
+++ b/src/routes/api/sheets/recent/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { sheets } from '$lib/google/index.js';
+import { googleSheetsServer } from '$lib/google/sheets/server';
 
 export const GET: RequestHandler = async ({ request }) => {
 	try {
@@ -10,7 +10,7 @@ export const GET: RequestHandler = async ({ request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const spreadsheets = await sheets.getRecentSpreadsheets(refreshToken, 20);
+		const spreadsheets = await googleSheetsServer.getRecentSpreadsheets(refreshToken, 20);
 
 		return json(spreadsheets);
 	} catch (error) {
diff --git a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
index e87c1ff..e35f495 100644
--- a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
+++ b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { sheets } from '$lib/google/index.js';
+import { googleSheetsServer } from '$lib/google/server.ts';
 
 export const GET: RequestHandler = async ({ params, request }) => {
 	try {
@@ -12,7 +12,7 @@ export const GET: RequestHandler = async ({ params, request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const sheetData = await sheets.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
+		const sheetData = await googleSheetsServer.getSpreadsheetData(refreshToken, sheetId, 'A1:Z10');
 
 		return json(sheetData);
 	} catch (error) {
diff --git a/src/routes/private/api/google/sheets/recent/+server.ts b/src/routes/private/api/google/sheets/recent/+server.ts
index ed01813..78d9129 100644
--- a/src/routes/private/api/google/sheets/recent/+server.ts
+++ b/src/routes/private/api/google/sheets/recent/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { sheets } from '$lib/google/index.js';
+import { googleSheetsServer } from '$lib/google/server.ts';
 
 export const GET: RequestHandler = async ({ request }) => {
 	try {
@@ -10,7 +10,7 @@ export const GET: RequestHandler = async ({ request }) => {
 		}
 
 		const refreshToken = authHeader.slice(7);
-		const spreadsheets = await sheets.getRecentSpreadsheets(refreshToken, 20);
+		const spreadsheets = await googleSheetsServer.getRecentSpreadsheets(refreshToken, 20);
 
 		return json(spreadsheets);
 	} catch (error) {
diff --git a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
index 0389757..5831568 100644
--- a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
+++ b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-	import type { GoogleSheet } from '$lib/google/sheets';
+	import type { GoogleSheet } from '$lib/google/google/types.tsient/types.js';
 	
 	// Props
 	let { sheetsData, errors, loadRecentSheets, selectSheet, toggleSheetList } = $props<{
-- 
2.49.1


From 4d71bf54101b322108e72be5a5b3e8b35f2be0b3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 13:07:24 +0200
Subject: [PATCH 13/20] Added search to sheets

---
 src/lib/google/sheets/server.ts               |  50 ++++-
 .../google/sheets/[sheetId]/data/+server.ts   |   2 +-
 .../api/google/sheets/recent/+server.ts       |   2 +-
 .../api/google/sheets/search/+server.ts       |  30 +++
 .../new/components/GoogleSheetsStep.svelte    | 201 ++++++++++++++++--
 5 files changed, 266 insertions(+), 19 deletions(-)
 create mode 100644 src/routes/private/api/google/sheets/search/+server.ts

diff --git a/src/lib/google/sheets/server.ts b/src/lib/google/sheets/server.ts
index eaba378..5a2b0df 100644
--- a/src/lib/google/sheets/server.ts
+++ b/src/lib/google/sheets/server.ts
@@ -1,6 +1,19 @@
 import { google } from 'googleapis';
 import { getAuthenticatedClient } from '../auth/server.js';
-import { GoogleSheet } from './types.ts'
+import { GoogleSheet } from './types.ts';
+
+// Type for sheet data
+export interface SheetData {
+  values: string[][];
+}
+
+// Server-side Google Sheets API handler
+export const googleSheetsServer = {
+  getRecentSpreadsheets,
+  getSpreadsheetData,
+  getSpreadsheetInfo,
+  searchSheets
+};
 
 /**
  * Get a list of recent Google Sheets
@@ -77,3 +90,38 @@ export async function getSpreadsheetInfo(
 
   return response.data;
 }
+
+/**
+ * Search for Google Sheets by name
+ * @param refreshToken - Google refresh token
+ * @param query - Search query
+ * @param limit - Maximum number of sheets to return
+ * @returns List of Google Sheets matching the query
+ */
+export async function searchSheets(
+  refreshToken: string,
+  query: string,
+  limit: number = 20
+): Promise<GoogleSheet[]> {
+  const oauth = getAuthenticatedClient(refreshToken);
+  const drive = google.drive({ version: 'v3', auth: oauth });
+
+  // Create a query to search for spreadsheets with names containing the search term
+  const q = `mimeType='application/vnd.google-apps.spreadsheet' and name contains '${query}'`;
+
+  const response = await drive.files.list({
+    q,
+    orderBy: 'modifiedTime desc',
+    pageSize: limit,
+    fields: 'files(id,name,modifiedTime,webViewLink)'
+  });
+
+  return (
+    response.data.files?.map(file => ({
+      id: file.id!, // eslint-disable-line @typescript-eslint/no-non-null-assertion
+      name: file.name!,
+      modifiedTime: file.modifiedTime!,
+      webViewLink: file.webViewLink!
+    })) || []
+  );
+}
diff --git a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
index e35f495..e0ca677 100644
--- a/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
+++ b/src/routes/private/api/google/sheets/[sheetId]/data/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { googleSheetsServer } from '$lib/google/server.ts';
+import { googleSheetsServer } from '$lib/google/sheets/server.js';
 
 export const GET: RequestHandler = async ({ params, request }) => {
 	try {
diff --git a/src/routes/private/api/google/sheets/recent/+server.ts b/src/routes/private/api/google/sheets/recent/+server.ts
index 78d9129..304c575 100644
--- a/src/routes/private/api/google/sheets/recent/+server.ts
+++ b/src/routes/private/api/google/sheets/recent/+server.ts
@@ -1,6 +1,6 @@
 import { json } from '@sveltejs/kit';
 import type { RequestHandler } from './$types';
-import { googleSheetsServer } from '$lib/google/server.ts';
+import { googleSheetsServer } from '$lib/google/sheets/server.js';
 
 export const GET: RequestHandler = async ({ request }) => {
 	try {
diff --git a/src/routes/private/api/google/sheets/search/+server.ts b/src/routes/private/api/google/sheets/search/+server.ts
new file mode 100644
index 0000000..2c79e6c
--- /dev/null
+++ b/src/routes/private/api/google/sheets/search/+server.ts
@@ -0,0 +1,30 @@
+import { error, json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { googleSheetsServer } from '$lib/google/sheets/server.js';
+
+export const GET: RequestHandler = async ({ url, request }) => {
+	try {
+		// Get search query from URL
+		const query = url.searchParams.get('query');
+		
+		if (!query) {
+			throw error(400, 'Search query is required');
+		}
+		
+		// Get authorization token from request headers
+		const authHeader = request.headers.get('Authorization');
+		if (!authHeader || !authHeader.startsWith('Bearer ')) {
+			throw error(401, 'Missing or invalid Authorization header');
+		}
+		const refreshToken = authHeader.substring(7); // Remove "Bearer " prefix
+		
+		// Search for sheets using the query
+		const sheets = await googleSheetsServer.searchSheets(refreshToken, query);
+		
+		// Return the search results
+		return json(sheets);
+	} catch (err) {
+		console.error('Error searching Google Sheets:', err);
+		throw error(500, 'Failed to search Google Sheets');
+	}
+};
diff --git a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
index 5831568..672ec41 100644
--- a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
+++ b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-	import type { GoogleSheet } from '$lib/google/google/types.tsient/types.js';
+	import type { GoogleSheet } from '$lib/google/sheets/types.ts';
 	
 	// Props
 	let { sheetsData, errors, loadRecentSheets, selectSheet, toggleSheetList } = $props<{
@@ -21,6 +21,72 @@
 		selectSheet: (sheet: GoogleSheet) => Promise<void>;
 		toggleSheetList: () => void;
 	}>();
+	
+	// Search functionality
+	let searchQuery = $state('');
+	let isSearching = $state(false);
+	let searchResults = $state<GoogleSheet[]>([]);
+	let searchError = $state('');
+	
+	// Debounce function for search
+	function debounce(func: (...args: any[]) => void, wait: number) {
+		let timeout: ReturnType<typeof setTimeout> | null = null;
+		return function(...args: any[]) {
+			const later = () => {
+				timeout = null;
+				func(...args);
+			};
+			if (timeout) clearTimeout(timeout);
+			timeout = setTimeout(later, wait);
+		};
+	}
+	
+	// Search for sheets
+	const searchSheets = debounce(async () => {
+		if (!searchQuery.trim()) {
+			searchResults = [];
+			return;
+		}
+		
+		isSearching = true;
+		searchError = '';
+		
+		try {
+			const response = await fetch(`/private/api/google/sheets/search?query=${encodeURIComponent(searchQuery)}`, {
+				method: 'GET',
+				headers: {
+					Authorization: `Bearer ${localStorage.getItem('google_refresh_token')}`
+				}
+			});
+			
+			if (response.ok) {
+				searchResults = await response.json();
+			} else {
+				searchError = 'Failed to search for sheets';
+				console.error('Search error:', await response.text());
+			}
+		} catch (error) {
+			searchError = 'Error searching for sheets';
+			console.error('Search error:', error);
+		} finally {
+			isSearching = false;
+		}
+	}, 500);
+	
+	// Clear search
+	function clearSearch() {
+		searchQuery = '';
+		searchResults = [];
+		searchError = '';
+	}
+	
+	$effect(() => {
+		if (searchQuery) {
+			searchSheets();
+		} else {
+			searchResults = [];
+		}
+	});
 </script>
 
 <div class="space-y-6">
@@ -69,9 +135,9 @@
 						</button>
 					</div>
 				{:else}
-					<!-- All sheets (expanded view) -->
+					<!-- All sheets and search (expanded view) -->
 					<div class="flex justify-between items-center mb-2">
-						<h4 class="text-sm font-medium text-gray-700">Available Sheets</h4>
+						<h4 class="text-sm font-medium text-gray-700">Google Sheets</h4>
 						{#if sheetsData.selectedSheet}
 							<button
 								onclick={toggleSheetList}
@@ -82,21 +148,111 @@
 							</button>
 						{/if}
 					</div>
-					<div class="grid gap-3">
-						{#each sheetsData.availableSheets as sheet}
+					
+					<!-- Search bar -->
+					<div class="relative mb-4">
+						<input
+							type="text"
+							bind:value={searchQuery}
+							placeholder="Search all your Google Sheets..."
+							class="w-full px-4 py-2 pl-10 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+						/>
+						<div class="absolute inset-y-0 left-0 pl-3 flex items-center pointer-events-none">
+							<svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5 text-gray-400" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+								<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M21 21l-6-6m2-5a7 7 0 11-14 0 7 7 0 0114 0z" />
+							</svg>
+						</div>
+						{#if searchQuery}
 							<button
-								onclick={() => selectSheet(sheet)}
-								class="p-4 text-left border border-gray-200 rounded hover:border-blue-500 transition {
-									sheetsData.selectedSheet?.id === sheet.id ? 'border-blue-500 bg-blue-50' : ''
-								}"
+								onclick={clearSearch}
+								class="absolute inset-y-0 right-0 pr-3 flex items-center"
+								aria-label="Clear search"
 							>
-								<div class="font-medium text-gray-900">{sheet.name}</div>
-								<div class="text-sm text-gray-500">
-									Modified: {new Date(sheet.modifiedTime).toLocaleDateString()}
-								</div>
+								<svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5 text-gray-400 hover:text-gray-600" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+									<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M6 18L18 6M6 6l12 12" />
+								</svg>
 							</button>
-						{/each}
+						{/if}
 					</div>
+					
+					{#if isSearching}
+						<!-- Loading state -->
+						<div class="space-y-3">
+							{#each Array(3) as _}
+								<div class="p-4 border border-gray-200 rounded animate-pulse">
+									<div class="h-4 bg-gray-200 rounded w-3/4 mb-2"></div>
+									<div class="h-3 bg-gray-100 rounded w-1/2"></div>
+								</div>
+							{/each}
+						</div>
+					{:else if searchQuery && searchResults.length === 0 && !searchError}
+						<!-- No search results -->
+						<div class="text-center py-6 border border-gray-200 rounded">
+							<p class="text-gray-500">No sheets found matching "{searchQuery}"</p>
+						</div>
+					{:else if searchError}
+						<!-- Search error -->
+						<div class="text-center py-6 border border-red-200 bg-red-50 rounded">
+							<p class="text-red-600">{searchError}</p>
+							<button
+								onclick={searchSheets}
+								class="mt-2 px-3 py-1 bg-red-600 text-white text-sm rounded hover:bg-red-700 transition"
+							>
+								Retry
+							</button>
+						</div>
+					{:else if searchQuery && searchResults.length > 0}
+						<!-- Search results -->
+						<div class="grid gap-3">
+							{#each searchResults as sheet}
+								<button
+									onclick={() => selectSheet(sheet)}
+									class="p-4 text-left border border-gray-200 rounded hover:border-blue-500 transition {
+										sheetsData.selectedSheet?.id === sheet.id ? 'border-blue-500 bg-blue-50' : ''
+									}"
+								>
+									<div class="font-medium text-gray-900">
+										{#if searchQuery}
+											{#each sheet.name.split(new RegExp(`(${searchQuery})`, 'i')) as part}
+												{#if part.toLowerCase() === searchQuery.toLowerCase()}
+													<span class="bg-yellow-200">{part}</span>
+												{:else}
+													{part}
+												{/if}
+											{/each}
+										{:else}
+											{sheet.name}
+										{/if}
+									</div>
+									<div class="text-sm text-gray-500">
+										Modified: {new Date(sheet.modifiedTime).toLocaleDateString('en-GB', {day: '2-digit', month: '2-digit', year: 'numeric'})}
+									</div>
+								</button>
+							{/each}
+						</div>
+					{:else}
+						<!-- Recent sheets (when not searching) -->
+						<div class="grid gap-3">
+							{#each sheetsData.availableSheets as sheet}
+								<button
+									onclick={() => selectSheet(sheet)}
+									class="p-4 text-left border border-gray-200 rounded hover:border-blue-500 transition {
+										sheetsData.selectedSheet?.id === sheet.id ? 'border-blue-500 bg-blue-50' : ''
+									}"
+								>
+									<div class="font-medium text-gray-900">{sheet.name}</div>
+									<div class="text-sm text-gray-500">
+										Modified: {new Date(sheet.modifiedTime).toLocaleDateString('en-GB', {day: '2-digit', month: '2-digit', year: 'numeric'})}
+									</div>
+								</button>
+							{/each}
+						</div>
+						{#if sheetsData.availableSheets.length === 0 && !sheetsData.loading}
+							<div class="text-center py-6 border border-gray-200 rounded">
+								<p class="text-gray-500">No recent sheets found. Try searching above.</p>
+							</div>
+						{/if}
+					{/if}
 				{/if}
 			</div>
 		{/if}
@@ -134,7 +290,7 @@
 											aria-label={`Select data type for column ${index + 1}`}
 											onclick={(e) => e.stopPropagation()}
 											onchange={(e) => {
-												const value = e.target.value;
+												const value = (e.target as HTMLSelectElement).value;
 												if (value === "none") return;
 												
 												// Reset previous selection if this column was already mapped
@@ -187,6 +343,7 @@
 												sheetsData.columnMapping.confirmation === cellIndex + 1 ? 'font-medium text-amber-700' : 
 												'text-gray-700'
 											}
+											title={cell || ''}
 										>
 											{cell || ''}
 										</span>
@@ -197,7 +354,17 @@
 					</tbody>
 				</table>
 			</div>
-			<p class="mt-2 text-sm text-gray-500">Showing first 10 rows</p>
+			<div class="flex justify-between mt-2">
+				<p class="text-sm text-gray-500">Showing first 10 rows</p>
+				{#if sheetsData.sheetData[0] && sheetsData.sheetData[0].length > 3}
+					<p class="text-sm text-gray-500">
+						<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 inline mr-1" viewBox="0 0 20 20" fill="currentColor">
+							<path fill-rule="evenodd" d="M7.293 14.707a1 1 0 010-1.414L10.586 10 7.293 6.707a1 1 0 011.414-1.414l4 4a1 1 0 010 1.414l-4 4a1 1 0 01-1.414 0z" clip-rule="evenodd" />
+						</svg>
+						Scroll horizontally to see all {sheetsData.sheetData[0].length} columns
+					</p>
+				{/if}
+			</div>
 		</div>
 	{/if}
 
@@ -211,3 +378,5 @@
 		<p class="text-sm text-red-600">{errors.sheetData}</p>
 	{/if}
 </div>
+
+
-- 
2.49.1


From 39bd1727986ef147bf7f13df6cf0e4a40e4d0b9a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 13:24:17 +0200
Subject: [PATCH 14/20] Fixed warnings from svelte about mutability

---
 src/routes/private/events/+page.svelte                    | 2 +-
 src/routes/private/events/event/new/+page.svelte          | 8 ++++----
 .../events/event/new/components/EmailSettingsStep.svelte  | 2 +-
 .../events/event/new/components/EventDetailsStep.svelte   | 2 +-
 .../events/event/new/components/GoogleSheetsStep.svelte   | 2 +-
 5 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/src/routes/private/events/+page.svelte b/src/routes/private/events/+page.svelte
index 1664850..01b0edc 100644
--- a/src/routes/private/events/+page.svelte
+++ b/src/routes/private/events/+page.svelte
@@ -18,7 +18,7 @@
 </div>
 
 <a
-  href="/private/creator"
+  href="/private/events/event/new"
   class="fixed bottom-6 left-1/2 -translate-x-1/2 z-50 bg-blue-600 hover:bg-blue-700 text-white font-bold py-3 px-8 rounded-full shadow-none border border-gray-300"
 >
   New Event
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
index e0eb92d..5785dc6 100644
--- a/src/routes/private/events/event/new/+page.svelte
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -417,13 +417,13 @@
 	<!-- Step Content -->
 	<div class="rounded-lg border border-gray-300 bg-white p-6 mb-6">
 		{#if currentStep === 0}
-			<GoogleAuthStep {authData} {errors} {connectToGoogle} {cancelGoogleAuth} {disconnectGoogle} />
+			<GoogleAuthStep bind:authData bind:errors {connectToGoogle} {cancelGoogleAuth} {disconnectGoogle} />
 		{:else if currentStep === 1}
-			<EventDetailsStep {eventData} {errors} />
+			<EventDetailsStep bind:eventData bind:errors />
 		{:else if currentStep === 2}
-			<GoogleSheetsStep {sheetsData} {errors} {loadRecentSheets} {selectSheet} {toggleSheetList} />
+			<GoogleSheetsStep bind:sheetsData bind:errors {loadRecentSheets} {selectSheet} {toggleSheetList} />
 		{:else if currentStep === 3}
-			<EmailSettingsStep {emailData} {errors} />
+			<EmailSettingsStep bind:emailData bind:errors />
 		{/if}
 
 		{#if errors.submit}
diff --git a/src/routes/private/events/event/new/components/EmailSettingsStep.svelte b/src/routes/private/events/event/new/components/EmailSettingsStep.svelte
index 560d9a5..3daf494 100644
--- a/src/routes/private/events/event/new/components/EmailSettingsStep.svelte
+++ b/src/routes/private/events/event/new/components/EmailSettingsStep.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-	let { emailData, errors } = $props<{
+	let { emailData = $bindable(), errors = $bindable() } = $props<{
 		emailData: {
 			subject: string;
 			body: string;
diff --git a/src/routes/private/events/event/new/components/EventDetailsStep.svelte b/src/routes/private/events/event/new/components/EventDetailsStep.svelte
index 3868340..f88218b 100644
--- a/src/routes/private/events/event/new/components/EventDetailsStep.svelte
+++ b/src/routes/private/events/event/new/components/EventDetailsStep.svelte
@@ -1,5 +1,5 @@
 <script lang="ts">
-	let { eventData, errors } = $props<{
+	let { eventData = $bindable(), errors = $bindable() } = $props<{
 		eventData: {
 			name: string;
 			date: string;
diff --git a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
index 672ec41..799fc0a 100644
--- a/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
+++ b/src/routes/private/events/event/new/components/GoogleSheetsStep.svelte
@@ -2,7 +2,7 @@
 	import type { GoogleSheet } from '$lib/google/sheets/types.ts';
 	
 	// Props
-	let { sheetsData, errors, loadRecentSheets, selectSheet, toggleSheetList } = $props<{
+	let { sheetsData = $bindable(), errors = $bindable(), loadRecentSheets, selectSheet, toggleSheetList } = $props<{
 		sheetsData: {
 			availableSheets: GoogleSheet[];
 			selectedSheet: GoogleSheet | null;
-- 
2.49.1


From 5bd642b947d2bedbc340faa57dc1dc74ad8066b5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 15:30:37 +0200
Subject: [PATCH 15/20] Implemented sync functionality with sheets and email
 sending

---
 .github/copilot-instructions.md               |   9 +-
 src/lib/google/auth/client.ts                 | 116 ++++
 src/lib/google/auth/manager.ts                | 120 ++++
 src/lib/google/gmail/server.ts                | 122 ++--
 src/routes/auth/google/callback/+server.ts    |  14 +
 src/routes/private/api/gmail/+server.ts       | 161 +++++
 .../private/events/event/new/+page.svelte     |   2 +-
 .../new/components/GoogleAuthStep.svelte      |   2 +-
 .../private/events/event/view/+page.svelte    | 610 ++++++++++++++++++
 .../view/components/GoogleAuthButton.svelte   | 117 ++++
 10 files changed, 1208 insertions(+), 65 deletions(-)
 create mode 100644 src/lib/google/auth/manager.ts
 create mode 100644 src/routes/private/api/gmail/+server.ts
 create mode 100644 src/routes/private/events/event/view/components/GoogleAuthButton.svelte

diff --git a/.github/copilot-instructions.md b/.github/copilot-instructions.md
index 303229d..084af10 100644
--- a/.github/copilot-instructions.md
+++ b/.github/copilot-instructions.md
@@ -91,6 +91,7 @@ onsubmit|preventDefault={handleSubmit} is depracated, do not use it!
 
 Loading session using page.server.ts is not needed as the session is already available in the locals object.
 
+Do not use import { page } from '$app/stores'; as it is deprecated! Use instead: import { page } from '$app/state'; 
 
 IMPORTANT: Always make sure that the client-side module are not importing secrets
 or are running any sensritive code that could expose secrets to the client.
@@ -100,6 +101,8 @@ fetch data from there instead of directly in the client-side module.
 The database schema in supabase is as follows:
 -- WARNING: This schema is for context only and is not meant to be run.
 -- Table order and constraints may not be valid for execution.
+-- WARNING: This schema is for context only and is not meant to be run.
+-- Table order and constraints may not be valid for execution.
 
 CREATE TABLE public.events (
   id uuid NOT NULL DEFAULT gen_random_uuid(),
@@ -142,6 +145,7 @@ CREATE TABLE public.participants (
   scanned_at timestamp with time zone,
   scanned_by uuid,
   section_id uuid,
+  email_sent boolean DEFAULT false,
   CONSTRAINT participants_pkey PRIMARY KEY (id),
   CONSTRAINT participants_created_by_fkey FOREIGN KEY (created_by) REFERENCES auth.users(id),
   CONSTRAINT participants_event_fkey FOREIGN KEY (event) REFERENCES public.events(id),
@@ -167,8 +171,3 @@ CREATE TABLE public.sections (
   CONSTRAINT sections_pkey PRIMARY KEY (id)
 );
 
-An event is created by calling RPC databse function create_event
-by passing the following parameters: 
-- name, date, email_subject, email_body, sheet_id, name_column, surname_column, email_column, confirmation_column
-
-
diff --git a/src/lib/google/auth/client.ts b/src/lib/google/auth/client.ts
index 6c9e654..1a5c535 100644
--- a/src/lib/google/auth/client.ts
+++ b/src/lib/google/auth/client.ts
@@ -98,6 +98,122 @@ export async function getUserInfo(accessToken: string): Promise<{ email: string;
 	}
 }
 
+/**
+ * Authenticate with Google using OAuth popup flow
+ * @returns Authentication result with success status and tokens
+ */
+export async function authenticateWithGoogle(): Promise<{
+	success: boolean;
+	refreshToken?: string;
+	userEmail?: string;
+	error?: string;
+}> {
+	if (!browser) {
+		return { success: false, error: 'Not in browser environment' };
+	}
+
+	return new Promise((resolve) => {
+		try {
+			// Open popup window for OAuth
+			const popup = window.open(
+				'/auth/google',
+				'google-auth',
+				'width=500,height=600,scrollbars=yes,resizable=yes,left=' + 
+				Math.round(window.screen.width / 2 - 250) + ',top=' + 
+				Math.round(window.screen.height / 2 - 300)
+			);
+
+			if (!popup) {
+				resolve({ success: false, error: 'Failed to open popup window. Please allow popups for this site.' });
+				return;
+			}
+
+			let authCompleted = false;
+			let popupTimer: number | null = null;
+			
+			// Store current timestamp to detect changes in localStorage
+			const startTimestamp = localStorage.getItem('google_auth_timestamp') ?? '0';
+			
+			// Poll localStorage for auth completion
+			const pollInterval = setInterval(() => {
+				try {
+					const currentTimestamp = localStorage.getItem('google_auth_timestamp');
+					
+					// If timestamp has changed, auth is complete
+					if (currentTimestamp && currentTimestamp !== startTimestamp) {
+						handleAuthSuccess();
+					}
+				} catch (e) {
+					console.error('Error checking auth timestamp:', e);
+				}
+			}, 500); // Poll every 500ms
+			
+			// Common handler for authentication success
+			function handleAuthSuccess() {
+				if (authCompleted) return; // Prevent duplicate handling
+				
+				authCompleted = true;
+				
+				// Clean up timers
+				clearInterval(pollInterval);
+				if (popupTimer) clearTimeout(popupTimer);
+				
+				// Get tokens from localStorage
+				const refreshToken = localStorage.getItem('google_refresh_token');
+				const userEmail = localStorage.getItem('google_user_email');
+				
+				if (refreshToken) {
+					resolve({
+						success: true,
+						refreshToken,
+						userEmail: userEmail ?? undefined
+					});
+				} else {
+					resolve({ success: false, error: 'No refresh token found after authentication' });
+				}
+			}
+			
+			// Clean up function to handle all cleanup in one place
+			const cleanUp = () => {
+				clearInterval(pollInterval);
+				if (popupTimer) clearTimeout(popupTimer);
+			};
+
+			// Set a timeout for initial auth check
+			popupTimer = setTimeout(() => {
+				if (!authCompleted) {
+					cleanUp();
+					// Check if tokens were stored by the popup before it was closed
+					const refreshToken = localStorage.getItem('google_refresh_token');
+					const userEmail = localStorage.getItem('google_user_email');
+					
+					if (refreshToken) {
+						resolve({
+							success: true,
+							refreshToken,
+							userEmail: userEmail ?? undefined
+						});
+					} else {
+						resolve({ success: false, error: 'Authentication timeout or cancelled' });
+					}
+				}
+			}, 30 * 1000) as unknown as number;
+
+			// Final cleanup timeout
+			setTimeout(() => {
+				if (!authCompleted) {
+					cleanUp();
+					resolve({ success: false, error: 'Authentication timeout' });
+				}
+			}, 60 * 1000);
+
+		} catch (error) {
+			console.error('Error connecting to Google:', error);
+			resolve({ success: false, error: error instanceof Error ? error.message : 'Unknown error' });
+		}
+	});
+}
+
 /**
  * Revoke a Google access token
  * @param accessToken - Google access token to revoke
diff --git a/src/lib/google/auth/manager.ts b/src/lib/google/auth/manager.ts
new file mode 100644
index 0000000..f87901e
--- /dev/null
+++ b/src/lib/google/auth/manager.ts
@@ -0,0 +1,120 @@
+import { authenticateWithGoogle } from '$lib/google/auth/client.js';
+
+export interface GoogleAuthState {
+	isConnected: boolean;
+	checking: boolean;
+	connecting: boolean;
+	showCancelOption: boolean;
+	token: string | null;
+	error: string | null;
+	userEmail: string | null;
+}
+
+export function createGoogleAuthState(): GoogleAuthState {
+	return {
+		isConnected: false,
+		checking: false,
+		connecting: false,
+		showCancelOption: false,
+		token: null,
+		error: null,
+		userEmail: null
+	};
+}
+
+export class GoogleAuthManager {
+	private readonly state: GoogleAuthState;
+	private cancelTimeout: ReturnType<typeof setTimeout> | null = null;
+
+	constructor(state: GoogleAuthState) {
+		this.state = state;
+	}
+
+	checkConnection(): void {
+		this.state.checking = true;
+		this.state.error = null;
+
+		try {
+			const token = localStorage.getItem('google_refresh_token');
+			const email = localStorage.getItem('google_user_email');
+
+			this.state.isConnected = !!token;
+			this.state.token = token;
+			this.state.userEmail = email;
+		} catch (error) {
+			console.error('Error checking connection:', error);
+			this.state.error = 'Failed to check connection status';
+		} finally {
+			this.state.checking = false;
+		}
+	}
+
+	async connectToGoogle(): Promise<void> {
+		if (this.state.connecting) return;
+
+		this.state.connecting = true;
+		this.state.error = null;
+		this.state.showCancelOption = false;
+
+		// Show cancel option after 5 seconds
+		this.cancelTimeout = setTimeout(() => {
+			this.state.showCancelOption = true;
+		}, 5000);
+
+		try {
+			const result = await authenticateWithGoogle();
+
+			if (result.success && result.refreshToken) {
+				// Store tokens
+				localStorage.setItem('google_refresh_token', result.refreshToken);
+				if (result.userEmail) {
+					localStorage.setItem('google_user_email', result.userEmail);
+				}
+
+				// Update state
+				this.state.isConnected = true;
+				this.state.token = result.refreshToken;
+				this.state.userEmail = result.userEmail;
+			} else {
+				throw new Error(result.error ?? 'Authentication failed');
+			}
+		} catch (error) {
+			this.state.error = error instanceof Error ? error.message : 'Failed to connect to Google';
+		} finally {
+			this.state.connecting = false;
+			this.state.showCancelOption = false;
+			if (this.cancelTimeout) {
+				clearTimeout(this.cancelTimeout);
+				this.cancelTimeout = null;
+			}
+		}
+	}
+
+	cancelGoogleAuth(): void {
+		this.state.connecting = false;
+		this.state.showCancelOption = false;
+		this.state.error = null;
+
+		if (this.cancelTimeout) {
+			clearTimeout(this.cancelTimeout);
+			this.cancelTimeout = null;
+		}
+	}
+
+	async disconnectGoogle(): Promise<void> {
+		try {
+			// Clear local storage
+			localStorage.removeItem('google_refresh_token');
+			localStorage.removeItem('google_user_email');
+
+			// Reset state
+			this.state.isConnected = false;
+			this.state.token = null;
+			this.state.userEmail = null;
+			this.state.error = null;
+		} catch (error) {
+			console.error('Error disconnecting:', error);
+			this.state.error = 'Failed to disconnect';
+		}
+	}
+}
diff --git a/src/lib/google/gmail/server.ts b/src/lib/google/gmail/server.ts
index c6838ca..9130843 100644
--- a/src/lib/google/gmail/server.ts
+++ b/src/lib/google/gmail/server.ts
@@ -1,14 +1,14 @@
 import { google } from 'googleapis';
 import quotedPrintable from 'quoted-printable';
-import { getAuthenticatedClient } from '../auth/server.js';
+import { getOAuthClient } from '../auth/server.js';
 
 /**
- * Create an HTML email template
+ * Create an HTML email template with ScanWave branding
  * @param text - Email body text
  * @returns HTML email template
  */
 export function createEmailTemplate(text: string): string {
-  return `<!DOCTYPE html>
+	return `<!DOCTYPE html>
 <html lang="en">
   <head>
     <style>
@@ -16,73 +16,79 @@ export function createEmailTemplate(text: string): string {
     </style>
   </head>
   <body style="font-family: 'Lato', sans-serif; background-color: #f9f9f9; padding: 20px; margin: 0;">
-    <div style="max-width: 600px; margin: auto; background: white; padding: 20px; border-radius: 8px;">
-      <p style="white-space: pre-line; font-size: 16px; color: #333;">${text}</p>
-      <img src="cid:qrCode1" alt="QR Code" style="display: block; margin: 20px auto; max-width: 50%; height: auto;" />
+    <div style="max-width: 600px; margin: auto; background: white; padding: 20px; border-radius: 8px; box-shadow: 0 2px 4px rgba(0,0,0,0.05);">
+      <p style="white-space: pre-line;font-size: 16px; line-height: 1.5; color: #333;">${text}</p>
+      <img src="cid:qrCode1" alt="QR Code" style="display: block; margin: 20px auto; max-width: 50%; min-width: 200px; height: auto;" />
+      <div style="width: 100%; display: flex; flex-direction: row; justify-content: space-between">
+        <div style="height: 4px; width: 20%; background: #00aeef;"></div>
+        <div style="height: 4px; width: 20%; background: #ec008c;"></div>
+        <div style="height: 4px; width: 20%; background: #7ac143;"></div>
+        <div style="height: 4px; width: 20%; background: #f47b20;"></div>
+        <div style="height: 4px; width: 20%; background: #2e3192;"></div>
+      </div>
+      <div style="font-size: 12px; color: #999; padding-top: 0px; margin-top: 10px; line-height: 1.5; ">
+        <p>This email has been generated with the help of ScanWave</p>
+      </div>
     </div>
   </body>
 </html>`;
 }
 
 /**
- * Send an email through Gmail
+ * Send an email through Gmail with QR code
  * @param refreshToken - Google refresh token
  * @param params - Email parameters (to, subject, text, qr_code)
  */
 export async function sendGmail(
-  refreshToken: string,
-  {
-    to,
-    subject,
-    text,
-    qr_code
-  }: {
-    to: string;
-    subject: string;
-    text: string;
-    qr_code: string;
-  }
+	refreshToken: string,
+	{ to, subject, text, qr_code }: { to: string; subject: string; text: string; qr_code: string }
 ) {
-  const oauth = getAuthenticatedClient(refreshToken);
-  const gmail = google.gmail({ version: 'v1', auth: oauth });
-  
-  const message_html = createEmailTemplate(text);
-  const boundary = 'BOUNDARY';
-  const nl = '\r\n';
+	const oauth = getOAuthClient();
+	oauth.setCredentials({ refresh_token: refreshToken });
 
-  const htmlBuffer = Buffer.from(message_html, 'utf8');
-  const htmlLatin1 = htmlBuffer.toString('latin1');
-  const htmlQP = quotedPrintable.encode(htmlLatin1);
-  const qrLines = qr_code.replace(/.{1,76}/g, '$&' + nl);
+	const gmail = google.gmail({ version: 'v1', auth: oauth });
 
-  const rawParts = [
-    'MIME-Version: 1.0',
-    `To: ${to}`,
-    `Subject: ${subject}`,
-    `Content-Type: multipart/related; boundary="${boundary}"`,
-    '--' + boundary,
-    'Content-Type: text/html; charset="UTF-8"',
-    'Content-Transfer-Encoding: quoted-printable',
-    '',
-    htmlQP,
-    '',
-    '--' + boundary,
-    'Content-Type: image/png',
-    'Content-Transfer-Encoding: base64',
-    'Content-ID: <qrCode1>',
-    'Content-Disposition: inline; filename="qr.png"',
-    '',
-    qrLines,
-    '',
-    '--' + boundary + '--',
-    ''
-  ];
-  
-  const rawMessage = rawParts.join(nl);
-  const raw = Buffer.from(rawMessage).toString('base64url');
+	const message_html = createEmailTemplate(text);
 
-  await gmail.users.messages.send({
-    userId: 'me',
-    requestBody: { raw }
-  });
+	const boundary = 'BOUNDARY';
+	const nl = '\r\n';                   // RFC-5322 line ending
+
+	// Convert HTML to a Buffer, then to latin1 string for quotedPrintable.encode
+	const htmlBuffer = Buffer.from(message_html, 'utf8');
+	const htmlLatin1 = htmlBuffer.toString('latin1');
+	const htmlQP = quotedPrintable.encode(htmlLatin1);
+	const qrLines = qr_code.replace(/.{1,76}/g, '$&' + nl);
+
+	const rawParts = [
+		'MIME-Version: 1.0',
+		`To: ${to}`,
+		`Subject: ${subject}`,
+		`Content-Type: multipart/related; boundary="${boundary}"`,
+		'',
+		`--${boundary}`,
+		'Content-Type: text/html; charset="UTF-8"',
+		'Content-Transfer-Encoding: quoted-printable',
+		'',
+		htmlQP,
+		'',
+		`--${boundary}`,
+		'Content-Type: image/png',
+		'Content-Transfer-Encoding: base64',
+		'Content-ID: <qrCode1>',
+		'Content-Disposition: inline; filename="qr.png"',
+		'',
+		qrLines,
+		'',
+		`--${boundary}--`,
+		''
+	];
+
+	const rawMessage = rawParts.join(nl);
+
+	const raw = Buffer.from(rawMessage).toString('base64url');
+
+	await gmail.users.messages.send({
+		userId: 'me',
+		requestBody: { raw }
+	});
 }
diff --git a/src/routes/auth/google/callback/+server.ts b/src/routes/auth/google/callback/+server.ts
index a6f339b..d41adc9 100644
--- a/src/routes/auth/google/callback/+server.ts
+++ b/src/routes/auth/google/callback/+server.ts
@@ -24,6 +24,19 @@ export const GET: RequestHandler = async ({ url }) => {
 			throw redirect(302, '/private/events?error=incomplete_tokens');
 		}
 
+		// Get user info to retrieve email
+		let userEmail = '';
+		try {
+			oauth.setCredentials(tokens);
+			const { google } = await import('googleapis');
+			const oauth2 = google.oauth2({ version: 'v2', auth: oauth });
+			const userInfo = await oauth2.userinfo.get();
+			userEmail = userInfo.data.email ?? '';
+		} catch (emailError) {
+			console.error('Error fetching user email:', emailError);
+			// Continue without email - it's not critical for the auth flow
+		}
+
 		// Create a success page with tokens that closes the popup and communicates with parent
 		const html = `
 <!DOCTYPE html>
@@ -67,6 +80,7 @@ export const GET: RequestHandler = async ({ url }) => {
 				// Store tokens in localStorage (same origin)
 				localStorage.setItem('google_access_token', '${tokens.access_token}');
 				localStorage.setItem('google_refresh_token', '${tokens.refresh_token}');
+				${userEmail ? `localStorage.setItem('google_user_email', '${userEmail}');` : ''}
 				// Set timestamp that the main application will detect
 				localStorage.setItem('google_auth_timestamp', Date.now().toString());
 				
diff --git a/src/routes/private/api/gmail/+server.ts b/src/routes/private/api/gmail/+server.ts
new file mode 100644
index 0000000..c34fec7
--- /dev/null
+++ b/src/routes/private/api/gmail/+server.ts
@@ -0,0 +1,161 @@
+import { json } from '@sveltejs/kit';
+import type { RequestHandler } from './$types';
+import { sendGmail } from '$lib/google/gmail/server.js';
+import QRCode from 'qrcode';
+
+interface Participant {
+	id: string;
+	name: string;
+	surname: string;
+	email: string;
+}
+
+interface EmailResult {
+	participant: Participant;
+	success: boolean;
+	error?: string;
+}
+
+async function generateQRCode(participant: Participant, eventId: string): Promise<string> {
+	const qrCodeData = JSON.stringify({
+		participantId: participant.id,
+		eventId: eventId,
+		name: participant.name,
+		surname: participant.surname
+	});
+
+	const qrCodeBase64 = await QRCode.toDataURL(qrCodeData, {
+		type: 'image/png',
+		margin: 2,
+		scale: 8
+	});
+
+	// Remove the data URL prefix to get just the base64 string
+	return qrCodeBase64.replace(/^data:image\/png;base64,/, '');
+}
+
+async function sendEmailToParticipant(
+	participant: Participant,
+	subject: string,
+	text: string,
+	eventId: string,
+	refreshToken: string,
+	supabase: any
+): Promise<EmailResult> {
+	try {
+		const qrCodeBase64Data = await generateQRCode(participant, eventId);
+
+		// Send email with QR code
+		await sendGmail(refreshToken, {
+			to: participant.email,
+			subject: subject,
+			text: text,
+			qr_code: qrCodeBase64Data
+		});
+
+
+		// Call the participant_emailed RPC function
+		try {
+			await supabase.rpc('participant_emailed', {
+				p_participant_id: participant.id
+			});
+		} catch (dbError) {
+			console.error('Failed to call participant_emailed RPC:', dbError);
+			// Don't fail the entire operation if the RPC call fails
+		}
+
+		return {
+			participant: participant,
+			success: true
+		};
+	} catch (error) {
+		console.error('Failed to send email to participant:', participant.email, error);
+		return {
+			participant: participant,
+			success: false,
+			error: error instanceof Error ? error.message : 'Unknown error'
+		};
+	}
+}
+
+function validateRequest(participants: unknown, subject: unknown, text: unknown, eventId: unknown, refreshToken: unknown) {
+	if (!participants || !Array.isArray(participants)) {
+		return { error: 'Invalid participants array', status: 400 };
+	}
+
+	if (!subject || !text) {
+		return { error: 'Subject and text are required', status: 400 };
+	}
+
+	if (!eventId) {
+		return { error: 'Event ID is required', status: 400 };
+	}
+
+	if (!refreshToken || typeof refreshToken !== 'string') {
+		return { error: 'Refresh token is required', status: 401 };
+	}
+
+	return null;
+}
+
+export const POST: RequestHandler = async ({ request, locals }) => {
+	try {
+		const { participants, subject, text, eventId, refreshToken } = await request.json();
+		
+		const validationError = validateRequest(participants, subject, text, eventId, refreshToken);
+		if (validationError) {
+			return json({ error: validationError.error }, { status: validationError.status });
+		}
+
+		const results: EmailResult[] = [];
+		let successCount = 0;
+		let errorCount = 0;
+
+		// Send emails to each participant
+		for (const participant of participants as Participant[]) {
+			const result = await sendEmailToParticipant(
+				participant,
+				subject as string,
+				text as string,
+				eventId as string,
+				refreshToken as string,
+				locals.supabase
+			);
+
+			results.push(result);
+			
+			if (result.success) {
+				successCount++;
+			} else {
+				errorCount++;
+			}
+		}
+
+		return json({
+			success: true,
+			results,
+			summary: {
+				total: participants.length,
+				success: successCount,
+				errors: errorCount
+			}
+		});
+	} catch (error) {
+		console.error('Email sending error:', error);
+		
+		// Handle specific Gmail API errors
+		if (error instanceof Error) {
+			if (error.message.includes('Invalid Credentials') || error.message.includes('unauthorized')) {
+				return json({ error: 'Invalid or expired Google credentials' }, { status: 401 });
+			}
+			if (error.message.includes('quota')) {
+				return json({ error: 'Gmail API quota exceeded' }, { status: 429 });
+			}
+			if (error.message.includes('rate')) {
+				return json({ error: 'Rate limit exceeded' }, { status: 429 });
+			}
+		}
+		
+		return json({ error: 'Failed to send emails' }, { status: 500 });
+	}
+};
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
index 5785dc6..40a9190 100644
--- a/src/routes/private/events/event/new/+page.svelte
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -415,7 +415,7 @@
 	<StepNavigator {currentStep} {totalSteps} />
 
 	<!-- Step Content -->
-	<div class="rounded-lg border border-gray-300 bg-white p-6 mb-6">
+	<div class="rounded-lg border border-gray-300 bg-white p-6 mb-4">
 		{#if currentStep === 0}
 			<GoogleAuthStep bind:authData bind:errors {connectToGoogle} {cancelGoogleAuth} {disconnectGoogle} />
 		{:else if currentStep === 1}
diff --git a/src/routes/private/events/event/new/components/GoogleAuthStep.svelte b/src/routes/private/events/event/new/components/GoogleAuthStep.svelte
index a3f469f..f09e104 100644
--- a/src/routes/private/events/event/new/components/GoogleAuthStep.svelte
+++ b/src/routes/private/events/event/new/components/GoogleAuthStep.svelte
@@ -20,7 +20,7 @@
 <div class="space-y-6">
 	<div class="text-center">
 		<h3 class="text-lg font-medium text-gray-900 mb-4">Connect Your Google Account</h3>
-		<p class="text-gray-600 mb-6">
+		<p class="text-gray-600 mb-4">
 			To create events and import participants from Google Sheets, you need to connect your Google account.
 		</p>
 
diff --git a/src/routes/private/events/event/view/+page.svelte b/src/routes/private/events/event/view/+page.svelte
index e69de29..4a96ac9 100644
--- a/src/routes/private/events/event/view/+page.svelte
+++ b/src/routes/private/events/event/view/+page.svelte
@@ -0,0 +1,610 @@
+<script lang="ts">
+	import { onMount } from 'svelte';
+	import { page } from '$app/stores';
+	import GoogleAuthButton from './components/GoogleAuthButton.svelte';
+
+	let { data } = $props();
+
+	// Types
+	interface Event {
+		id: string;
+		created_at: string;
+		created_by: string;
+		name: string;
+		date: string;
+		section_id: string;
+		email_subject: string;
+		email_body: string;
+		sheet_id: string;
+		name_column: number;
+		surname_column: number;
+		email_column: number;
+		confirmation_column: number;
+	}
+
+	interface Participant {
+		id: string;
+		name: string;
+		surname: string;
+		email: string;
+		scanned: boolean;
+		email_sent: boolean;
+	}
+
+	// State
+	let event = $state<Event | null>(null);
+	let participants = $state<Participant[]>([]);
+	let loading = $state(true);
+	let participantsLoading = $state(true);
+	let syncingParticipants = $state(false);
+	let sendingEmails = $state(false);
+	let emailProgress = $state({ sent: 0, total: 0 });
+	let emailResults = $state<{success: boolean, results: any[], summary: any} | null>(null);
+	let error = $state('');
+
+	// Get event ID from URL params
+	let eventId = $derived($page.url.searchParams.get('id'));
+
+	onMount(async () => {
+		if (eventId) {
+			await loadEvent();
+			await loadParticipants();
+		}
+	});
+
+	async function loadEvent() {
+		loading = true;
+		try {
+			const { data: eventData, error: eventError } = await data.supabase
+				.from('events')
+				.select('*')
+				.eq('id', eventId)
+				.single();
+
+			if (eventError) throw eventError;
+			event = eventData;
+		} catch (err) {
+			console.error('Error loading event:', err);
+			error = 'Failed to load event';
+		} finally {
+			loading = false;
+		}
+	}
+
+	async function loadParticipants() {
+		participantsLoading = true;
+		try {
+			const { data: participantsData, error: participantsError } = await data.supabase
+				.from('participants')
+				.select('id, name, surname, email, scanned, email_sent')
+				.eq('event', eventId)
+				.order('scanned', { ascending: true })
+				.order('email_sent', { ascending: true })
+				.order('name', { ascending: true });
+
+			if (participantsError) throw participantsError;
+			participants = participantsData || [];
+		} catch (err) {
+			console.error('Error loading participants:', err);
+			error = 'Failed to load participants';
+		} finally {
+			participantsLoading = false;
+		}
+	}
+
+	async function syncParticipants() {
+		if (!event || !event.sheet_id) return;
+
+		// Check if user has Google authentication
+		const refreshToken = localStorage.getItem('google_refresh_token');
+		if (!refreshToken) {
+			error = 'Please connect your Google account first to sync participants';
+			return;
+		}
+
+		syncingParticipants = true;
+		error = '';
+		try {
+			// Fetch sheet data
+			const response = await fetch(`/private/api/google/sheets/${event.sheet_id}/data`, {
+				method: 'GET',
+				headers: {
+					Authorization: `Bearer ${refreshToken}`
+				}
+			});
+
+			if (!response.ok) {
+				if (response.status === 401) {
+					throw new Error('Google authentication expired. Please reconnect your Google account.');
+				}
+				throw new Error('Failed to fetch sheet data');
+			}
+
+			const sheetData = await response.json();
+			const rows = sheetData.values || [];
+
+			if (rows.length === 0) throw new Error('No data found in sheet');
+
+			// Extract participant data based on column mapping
+			const names: string[] = [];
+			const surnames: string[] = [];
+			const emails: string[] = [];
+
+			// Skip header row (start from index 1)
+			for (let i = 1; i < rows.length; i++) {
+				const row = rows[i];
+				if (row.length > 0) {
+					const name = row[event.name_column - 1] || '';
+					const surname = row[event.surname_column - 1] || '';
+					const email = row[event.email_column - 1] || '';
+					const confirmation = row[event.confirmation_column - 1] || '';
+
+					// Only add if the row has meaningful data (not all empty) AND confirmation is TRUE
+					const isConfirmed =
+						confirmation.toString().toLowerCase() === 'true' ||
+						confirmation.toString().toLowerCase() === 'yes' ||
+						confirmation === '1' ||
+						confirmation === 'x';
+
+					if ((name.trim() || surname.trim() || email.trim()) && isConfirmed) {
+						names.push(name.trim());
+						surnames.push(surname.trim());
+						emails.push(email.trim());
+					}
+				}
+			}
+
+			// Call database function to add participants
+			const { error: syncError } = await data.supabase.rpc('participants_add_bulk', {
+				p_event: eventId,
+				p_names: names,
+				p_surnames: surnames,
+				p_emails: emails
+			});
+
+			console.log(syncError);
+
+			if (syncError) throw syncError;
+
+			// Reload participants
+			await loadParticipants();
+		} catch (err) {
+			console.error('Error syncing participants:', err);
+			error = 'Failed to sync participants';
+		} finally {
+			syncingParticipants = false;
+		}
+	}
+
+	async function sendEmailsToUncontacted() {
+		if (!event) return;
+
+		// Check if user has Google authentication
+		const refreshToken = localStorage.getItem('google_refresh_token');
+		if (!refreshToken) {
+			error = 'Please connect your Google account first to send emails';
+			return;
+		}
+
+		const uncontactedParticipants = participants.filter(p => !p.email_sent);
+		if (uncontactedParticipants.length === 0) {
+			error = 'No uncontacted participants found';
+			return;
+		}
+
+		sendingEmails = true;
+		emailProgress = { sent: 0, total: uncontactedParticipants.length };
+		emailResults = null;
+		error = '';
+
+		try {
+			// Send all emails in batch
+			const response = await fetch('/private/api/gmail', {
+				method: 'POST',
+				headers: {
+					'Content-Type': 'application/json'
+				},
+				body: JSON.stringify({
+					participants: uncontactedParticipants,
+					subject: event.email_subject,
+					text: event.email_body,
+					eventId: event.id,
+					refreshToken: refreshToken
+				})
+			});			if (response.ok) {
+				const result = await response.json();
+				emailProgress.sent = result.summary.success;
+				emailResults = result;
+				
+				// Update participants state to reflect email_sent status
+				participants = participants.map(p => {
+					const emailedParticipant = result.results.find((r: any) => r.participant.id === p.id);
+					if (emailedParticipant && emailedParticipant.success) {
+						return { ...p, email_sent: true };
+					}
+					return p;
+				});
+			} else {
+				const errorData = await response.json();
+				error = errorData.error || 'Failed to send emails';
+				console.error('Email sending failed:', errorData);
+			}
+		} catch (err) {
+			console.error('Error sending emails:', err);
+			error = 'Failed to send emails to participants';
+		} finally {
+			sendingEmails = false;
+		}
+	}
+
+	function formatDate(dateString: string) {
+		return new Date(dateString).toLocaleDateString('en-GB', {
+			day: '2-digit',
+			month: '2-digit',
+			year: 'numeric'
+		});
+	}
+</script>
+
+<!-- Header -->
+<div class="mt-2 mb-4">
+	<h1 class="text-center text-2xl font-bold">Event Overview</h1>
+</div>
+
+<!-- Event Information -->
+<div class="mb-4 rounded-lg border border-gray-300 bg-white p-6">
+	{#if loading}
+		<!-- Loading placeholder -->
+		<div class="space-y-4">
+			<div class="h-8 w-1/2 animate-pulse rounded bg-gray-200"></div>
+			<div class="h-4 w-1/4 animate-pulse rounded bg-gray-200"></div>
+			<div class="h-4 w-1/3 animate-pulse rounded bg-gray-200"></div>
+			<div class="h-4 w-1/2 animate-pulse rounded bg-gray-200"></div>
+		</div>
+	{:else if event}
+		<div class="grid grid-cols-1 gap-6 md:grid-cols-2">
+			<div>
+				<h2 class="mb-4 text-2xl font-semibold text-gray-900">{event.name}</h2>
+				<div class="space-y-3">
+					<div class="flex items-center">
+						<span class="w-20 text-sm font-medium text-gray-500">Date:</span>
+						<span class="text-sm text-gray-900">{formatDate(event.date)}</span>
+					</div>
+					<div class="flex items-center">
+						<span class="w-20 text-sm font-medium text-gray-500">Created:</span>
+						<span class="text-sm text-gray-900">{formatDate(event.created_at)}</span>
+					</div>
+					<div class="flex items-center">
+						<span class="w-20 text-sm font-medium text-gray-500">Sheet ID:</span>
+						<a
+							href={`https://docs.google.com/spreadsheets/d/${event.sheet_id}`}
+							target="_blank"
+							rel="noopener noreferrer"
+							class="inline-flex items-center rounded bg-green-100 px-2 py-1 text-xs font-medium text-green-800 transition hover:bg-green-200"
+						>
+							<svg
+								xmlns="http://www.w3.org/2000/svg"
+								class="mr-1 h-3 w-3"
+								fill="none"
+								viewBox="0 0 24 24"
+								stroke="currentColor"
+							>
+								<path
+									stroke-linecap="round"
+									stroke-linejoin="round"
+									stroke-width="2"
+									d="M10 6H6a2 2 0 00-2 2v10a2 2 0 002 2h10a2 2 0 002-2v-4M14 4h6m0 0v6m0-6L10 14"
+								/>
+							</svg>
+							Open in Google Sheets
+						</a>
+					</div>
+				</div>
+			</div>
+			<div>
+				<h3 class="mb-3 text-lg font-medium text-gray-900">Email Details</h3>
+				<div class="space-y-2">
+					<div>
+						<span class="text-sm font-medium text-gray-500">Subject:</span>
+						<p class="text-sm text-gray-900">{event.email_subject}</p>
+					</div>
+					<div>
+						<span class="text-sm font-medium text-gray-500">Body:</span>
+						<p class="text-sm whitespace-pre-wrap text-gray-900">{event.email_body}</p>
+					</div>
+				</div>
+			</div>
+		</div>
+	{:else if error}
+		<div class="py-8 text-center">
+			<p class="text-red-600">{error}</p>
+		</div>
+	{/if}
+</div>
+
+<!-- Google Authentication Section -->
+<div class="rounded-lg border border-gray-300 bg-white p-6 mb-4">
+	<div class="mb-4 flex items-center justify-between">
+		<h2 class="text-xl font-semibold text-gray-900">Google Account</h2>
+		<p class="text-sm text-gray-500">Required for syncing participants and sending emails</p>
+	</div>
+	<GoogleAuthButton 
+		size="small" 
+		variant="secondary"
+		onSuccess={() => {
+			// Refresh the page or update UI state as needed
+			error = '';
+		}}
+		onError={(errorMsg) => {
+			error = errorMsg;
+		}}
+	/>
+</div>
+
+<!-- Participants Section -->
+<div class="rounded-lg border border-gray-300 bg-white p-6 mb-4">
+	<div class="mb-4 flex items-center justify-between">
+		<h2 class="text-xl font-semibold text-gray-900">Participants</h2>
+		<button
+			onclick={syncParticipants}
+			disabled={syncingParticipants || !event}
+			class="rounded bg-blue-600 px-4 py-2 text-white transition hover:bg-blue-700 disabled:cursor-not-allowed disabled:opacity-50"
+		>
+			{#if syncingParticipants}
+				Syncing...
+			{:else}
+				Sync Participants
+			{/if}
+		</button>
+	</div>
+
+	{#if participantsLoading}
+		<!-- Loading placeholder for participants -->
+		<div class="space-y-3">
+			{#each Array(5) as _}
+				<div class="grid grid-cols-5 gap-4 border-b border-gray-200 py-3">
+					<div class="h-4 animate-pulse rounded bg-gray-200"></div>
+					<div class="h-4 animate-pulse rounded bg-gray-200"></div>
+					<div class="h-4 animate-pulse rounded bg-gray-200"></div>
+					<div class="h-4 animate-pulse rounded bg-gray-200"></div>
+					<div class="h-4 animate-pulse rounded bg-gray-200"></div>
+				</div>
+			{/each}
+		</div>
+	{:else if participants.length > 0}
+		<div class="overflow-x-auto">
+			<table class="w-full">
+				<thead class="bg-gray-50">
+					<tr>
+						<th class="px-4 py-3 text-left text-sm font-medium text-gray-700">Name</th>
+						<th class="px-4 py-3 text-left text-sm font-medium text-gray-700">Surname</th>
+						<th class="px-4 py-3 text-left text-sm font-medium text-gray-700">Email</th>
+						<th class="px-4 py-3 text-left text-sm font-medium text-gray-700">Scanned</th>
+						<th class="px-4 py-3 text-left text-sm font-medium text-gray-700">Email Sent</th>
+					</tr>
+				</thead>
+				<tbody>
+					{#each participants as participant}
+						<tr class="border-b border-gray-200 hover:bg-gray-50">
+							<td class="px-4 py-3 text-sm text-gray-900">{participant.name}</td>
+							<td class="px-4 py-3 text-sm text-gray-900">{participant.surname}</td>
+							<td class="px-4 py-3 text-sm text-gray-900">{participant.email}</td>
+							<td class="px-4 py-3 text-sm">
+								{#if participant.scanned}
+									<div class="flex items-center text-green-600">
+										<svg
+											xmlns="http://www.w3.org/2000/svg"
+											class="h-5 w-5"
+											viewBox="0 0 20 20"
+											fill="currentColor"
+										>
+											<path
+												fill-rule="evenodd"
+												d="M16.707 5.293a1 1 0 010 1.414l-8 8a1 1 0 01-1.414 0l-4-4a1 1 0 011.414-1.414L8 12.586l7.293-7.293a1 1 0 011.414 0z"
+												clip-rule="evenodd"
+											/>
+										</svg>
+									</div>
+								{:else}
+									<div class="flex items-center text-gray-400">
+										<svg
+											xmlns="http://www.w3.org/2000/svg"
+											class="h-5 w-5"
+											fill="none"
+											viewBox="0 0 24 24"
+											stroke="currentColor"
+										>
+											<path
+												stroke-linecap="round"
+												stroke-linejoin="round"
+												stroke-width="2"
+												d="M6 18L18 6M6 6l12 12"
+											/>
+										</svg>
+									</div>
+								{/if}
+							</td>
+							<td class="px-4 py-3 text-sm">
+								{#if participant.email_sent}
+									<div class="flex items-center text-blue-600">
+										<svg
+											xmlns="http://www.w3.org/2000/svg"
+											class="h-5 w-5"
+											viewBox="0 0 20 20"
+											fill="currentColor"
+										>
+											<path
+												fill-rule="evenodd"
+												d="M16.707 5.293a1 1 0 010 1.414l-8 8a1 1 0 01-1.414 0l-4-4a1 1 0 011.414-1.414L8 12.586l7.293-7.293a1 1 0 011.414 0z"
+												clip-rule="evenodd"
+											/>
+										</svg>
+									</div>
+								{:else}
+									<div class="flex items-center text-gray-400">
+										<svg
+											xmlns="http://www.w3.org/2000/svg"
+											class="h-5 w-5"
+											fill="none"
+											viewBox="0 0 24 24"
+											stroke="currentColor"
+										>
+											<path
+												stroke-linecap="round"
+												stroke-linejoin="round"
+												stroke-width="2"
+												d="M6 18L18 6M6 6l12 12"
+											/>
+										</svg>
+									</div>
+								{/if}
+							</td>
+						</tr>
+					{/each}
+				</tbody>
+			</table>
+		</div>
+	{:else}
+		<div class="py-8 text-center">
+			<p class="text-gray-500">
+				No participants found. Click "Sync Participants" to load from Google Sheets.
+			</p>
+		</div>
+	{/if}
+</div>
+
+<!-- Email Sending Section -->
+<div class="rounded-lg border border-gray-300 bg-white p-6 mb-4">
+	<div class="mb-4 flex items-center justify-between">
+		<h2 class="text-xl font-semibold text-gray-900">Send Emails</h2>
+		<div class="text-sm text-gray-500">
+			{participants.filter(p => !p.email_sent).length} uncontacted participants
+		</div>
+	</div>
+
+	{#if sendingEmails}
+		<div class="rounded-lg bg-blue-50 p-4 border border-blue-200">
+			<div class="flex items-center justify-center">
+				<svg class="animate-spin -ml-1 mr-3 h-5 w-5 text-blue-600" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24">
+					<circle class="opacity-25" cx="12" cy="12" r="10" stroke="currentColor" stroke-width="4"></circle>
+					<path class="opacity-75" fill="currentColor" d="M4 12a8 8 0 018-8V0C5.373 0 0 5.373 0 12h4zm2 5.291A7.962 7.962 0 014 12H0c0 3.042 1.135 5.824 3 7.938l3-2.647z"></path>
+				</svg>
+				<span class="text-blue-800 font-medium">Sending {emailProgress.total} emails... Please wait.</span>
+			</div>
+		</div>
+	{:else}
+		<div class="space-y-4">
+			{#if participants.filter(p => !p.email_sent).length > 0}
+				<div class="rounded-lg bg-yellow-50 p-4 border border-yellow-200">
+					<div class="flex items-center">
+						<svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5 text-yellow-600 mr-2" viewBox="0 0 20 20" fill="currentColor">
+							<path fill-rule="evenodd" d="M8.257 3.099c.765-1.36 2.722-1.36 3.486 0l5.58 9.92c.75 1.334-.213 2.98-1.742 2.98H4.42c-1.53 0-2.493-1.646-1.743-2.98l5.58-9.92zM11 13a1 1 0 11-2 0 1 1 0 012 0zm-1-8a1 1 0 00-1 1v3a1 1 0 002 0V6a1 1 0 00-1-1z" clip-rule="evenodd" />
+						</svg>
+						<span class="text-yellow-800 text-sm">
+							<strong>Warning:</strong> Do not close this window while emails are being sent. The process may take several minutes.
+						</span>
+					</div>
+				</div>
+				
+				<div class="flex items-center justify-end">
+					<button
+						onclick={sendEmailsToUncontacted}
+						disabled={!event || participants.filter(p => !p.email_sent).length === 0}
+						class="rounded bg-green-600 px-4 py-2 text-white transition hover:bg-green-700 disabled:cursor-not-allowed disabled:opacity-50"
+					>
+						Send Emails
+					</button>
+				</div>
+			{:else}
+				<div class="text-center py-4">
+					<div class="flex items-center justify-center text-green-600 mb-2">
+						<svg xmlns="http://www.w3.org/2000/svg" class="h-8 w-8" viewBox="0 0 20 20" fill="currentColor">
+							<path fill-rule="evenodd" d="M16.707 5.293a1 1 0 010 1.414l-8 8a1 1 0 01-1.414 0l-4-4a1 1 0 011.414-1.414L8 12.586l7.293-7.293a1 1 0 011.414 0z" clip-rule="evenodd" />
+						</svg>
+					</div>
+					<p class="text-green-700 font-medium">All participants have been contacted!</p>
+					<p class="text-sm text-green-600">No pending emails to send.</p>
+				</div>
+			{/if}
+		</div>
+	{/if}
+</div>
+
+<!-- Email Results Section -->
+{#if emailResults}
+	<div class="rounded-lg border border-gray-300 bg-white p-6 mb-4">
+		<div class="mb-4 flex items-center justify-between">
+			<h2 class="text-xl font-semibold text-gray-900">Email Results</h2>
+			<div class="text-sm text-gray-500">
+				{emailResults.summary.success} successful, {emailResults.summary.errors} failed
+			</div>
+		</div>
+
+		<div class="mb-4">
+			<div class="flex items-center gap-4 p-3 rounded-lg bg-gray-50">
+				<div class="flex items-center gap-2">
+					<div class="w-3 h-3 rounded-full bg-green-500"></div>
+					<span class="text-sm font-medium">Sent: {emailResults.summary.success}</span>
+				</div>
+				<div class="flex items-center gap-2">
+					<div class="w-3 h-3 rounded-full bg-red-500"></div>
+					<span class="text-sm font-medium">Failed: {emailResults.summary.errors}</span>
+				</div>
+				<div class="flex items-center gap-2">
+					<div class="w-3 h-3 rounded-full bg-blue-500"></div>
+					<span class="text-sm font-medium">Total: {emailResults.summary.total}</span>
+				</div>
+			</div>
+		</div>
+
+		{#if emailResults.results.length > 0}
+			<div class="overflow-x-auto">
+				<table class="w-full">
+					<thead class="bg-gray-50">
+						<tr>
+							<th class="px-4 py-3 text-left text-sm font-medium text-gray-700">Name</th>
+							<th class="px-4 py-3 text-left text-sm font-medium text-gray-700">Email</th>
+							<th class="px-4 py-3 text-left text-sm font-medium text-gray-700">Status</th>
+						</tr>
+					</thead>
+					<tbody>
+						{#each emailResults.results as result}
+							<tr class="border-b border-gray-200 hover:bg-gray-50">
+								<td class="px-4 py-3 text-sm text-gray-900">
+									{result.participant.name} {result.participant.surname}
+								</td>
+								<td class="px-4 py-3 text-sm text-gray-900">{result.participant.email}</td>
+								<td class="px-4 py-3 text-sm">
+									{#if result.success}
+										<div class="flex items-center text-green-600">
+											<svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5 mr-1" viewBox="0 0 20 20" fill="currentColor">
+												<path fill-rule="evenodd" d="M16.707 5.293a1 1 0 010 1.414l-8 8a1 1 0 01-1.414 0l-4-4a1 1 0 011.414-1.414L8 12.586l7.293-7.293a1 1 0 011.414 0z" clip-rule="evenodd" />
+											</svg>
+											<span class="text-sm font-medium">Sent</span>
+										</div>
+									{:else}
+										<div class="flex items-center text-red-600">
+											<svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5 mr-1" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+												<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M6 18L18 6M6 6l12 12" />
+											</svg>
+											<span class="text-sm font-medium">Failed</span>
+											{#if result.error}
+												<span class="text-xs text-red-500 ml-2">({result.error})</span>
+											{/if}
+										</div>
+									{/if}
+								</td>
+							</tr>
+						{/each}
+					</tbody>
+				</table>
+			</div>
+		{/if}
+	</div>
+{/if}
+
+{#if error}
+	<div class="mt-4 rounded border border-red-200 bg-red-50 p-3">
+		<p class="text-sm text-red-600">{error}</p>
+	</div>
+{/if}
diff --git a/src/routes/private/events/event/view/components/GoogleAuthButton.svelte b/src/routes/private/events/event/view/components/GoogleAuthButton.svelte
new file mode 100644
index 0000000..633a46c
--- /dev/null
+++ b/src/routes/private/events/event/view/components/GoogleAuthButton.svelte
@@ -0,0 +1,117 @@
+<script lang="ts">
+	import { onMount } from 'svelte';
+	import { GoogleAuthManager, createGoogleAuthState } from '$lib/google/auth/manager.js';
+
+	// Props
+	let { 
+		onSuccess, 
+		onError, 
+		disabled = false,
+		size = 'default',
+		variant = 'primary'
+	} = $props<{
+		onSuccess?: (token: string) => void;
+		onError?: (error: string) => void;
+		disabled?: boolean;
+		size?: 'small' | 'default' | 'large';
+		variant?: 'primary' | 'secondary';
+	}>();
+
+	// State
+	let authState = $state(createGoogleAuthState());
+	let authManager = new GoogleAuthManager(authState);
+
+	onMount(() => {
+		authManager.checkConnection();
+	});
+
+	async function handleConnect() {
+		if (authState.connecting || disabled) return;
+
+		try {
+			await authManager.connectToGoogle();
+			if (authState.isConnected && authState.token) {
+				onSuccess?.(authState.token);
+			}
+		} catch (error) {
+			const errorMessage = error instanceof Error ? error.message : 'Failed to connect to Google';
+			onError?.(errorMessage);
+		}
+	}
+
+	async function handleDisconnect() {
+		await authManager.disconnectGoogle();
+	}
+
+	// Size classes
+	const sizeClasses = {
+		small: 'px-3 py-1.5 text-sm',
+		default: 'px-4 py-2 text-base',
+		large: 'px-6 py-3 text-lg'
+	};
+
+	// Variant classes
+	const variantClasses = {
+		primary: 'bg-blue-600 hover:bg-blue-700 text-white border-transparent',
+		secondary: 'bg-white hover:bg-gray-50 text-gray-900 border-gray-300'
+	};
+</script>
+
+{#if authState.isConnected}
+	<div class="flex items-center gap-3">
+		<div class="flex items-center gap-2 rounded-full bg-green-100 px-3 py-1 border border-green-300">
+			<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 text-green-600" viewBox="0 0 20 20" fill="currentColor">
+				<path fill-rule="evenodd" d="M16.707 5.293a1 1 0 010 1.414l-8 8a1 1 0 01-1.414 0l-4-4a1 1 0 011.414-1.414L8 12.586l7.293-7.293a1 1 0 011.414 0z" clip-rule="evenodd" />
+			</svg>
+			<span class="text-sm font-medium text-green-800">Connected</span>
+		</div>
+		
+		{#if authState.userEmail}
+			<div class="flex items-center gap-2 rounded-full bg-blue-100 px-3 py-1 border border-blue-300">
+				<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 text-blue-600" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M16 12a4 4 0 10-8 0 4 4 0 008 0zm0 0v1.5a2.5 2.5 0 005 0V12a9 9 0 10-9 9m4.5-1.206a8.959 8.959 0 01-4.5 1.207" />
+				</svg>
+				<span class="text-sm font-medium text-blue-800">{authState.userEmail}</span>
+			</div>
+		{/if}
+		
+		<button
+			onclick={handleDisconnect}
+			class="text-sm text-red-600 hover:text-red-800 flex items-center gap-1"
+			aria-label="Disconnect from Google"
+		>
+			<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+				<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 16l4-4m0 0l-4-4m4 4H7m6 4v1a3 3 0 01-3 3H6a3 3 0 01-3-3V7a3 3 0 013-3h4a3 3 0 013 3v1" />
+			</svg>
+			Disconnect
+		</button>
+	</div>
+{:else}
+	<div class="flex flex-col gap-2">
+		<button
+			onclick={handleConnect}
+			disabled={authState.connecting || disabled}
+			class="inline-flex items-center border font-medium rounded-md transition disabled:opacity-50 disabled:cursor-not-allowed focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 {sizeClasses[size as keyof typeof sizeClasses]} {variantClasses[variant as keyof typeof variantClasses]}"
+			aria-label="Connect to Google"
+		>
+			{#if authState.connecting}
+				<div class="w-4 h-4 mr-2 animate-spin rounded-full border-2 border-current border-t-transparent"></div>
+				Connecting...
+			{:else}
+				<svg class="w-4 h-4 mr-2" viewBox="0 0 24 24">
+					<path fill="currentColor" d="M22.56 12.25c0-.78-.07-1.53-.2-2.25H12v4.26h5.92c-.26 1.37-1.04 2.53-2.21 3.31v2.77h3.57c2.08-1.92 3.28-4.74 3.28-8.09z"/>
+					<path fill="currentColor" d="M12 23c2.97 0 5.46-.98 7.28-2.66l-3.57-2.77c-.98.66-2.23 1.06-3.71 1.06-2.86 0-5.29-1.93-6.16-4.53H2.18v2.84C3.99 20.53 7.7 23 12 23z"/>
+					<path fill="currentColor" d="M5.84 14.09c-.22-.66-.35-1.36-.35-2.09s.13-1.43.35-2.09V7.07H2.18C1.43 8.55 1 10.22 1 12s.43 3.45 1.18 4.93l2.85-2.22.81-.62z"/>
+					<path fill="currentColor" d="M12 5.38c1.62 0 3.06.56 4.21 1.64l3.15-3.15C17.45 2.09 14.97 1 12 1 7.7 1 3.99 3.47 2.18 7.07l3.66 2.84c.87-2.6 3.3-4.53 6.16-4.53z"/>
+				</svg>
+				Connect to Google
+			{/if}
+		</button>
+		
+		{#if authState.error}
+			<div class="text-sm text-red-600 mt-1">
+				{authState.error}
+			</div>
+		{/if}
+	</div>
+{/if}
-- 
2.49.1


From 6f563bbf7e078b1a12eb6d1bacd6fa8c32d2428b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 15:56:01 +0200
Subject: [PATCH 16/20] All event overview improvements

---
 src/routes/private/events/+page.svelte        | 237 ++++++++++++++++--
 src/routes/private/events/SingleEvent.svelte  |   2 +-
 .../private/events/archived/+page.svelte      |  77 ------
 .../events/event/archived/+page.svelte        |  88 +++++++
 4 files changed, 308 insertions(+), 96 deletions(-)
 delete mode 100644 src/routes/private/events/archived/+page.svelte
 create mode 100644 src/routes/private/events/event/archived/+page.svelte

diff --git a/src/routes/private/events/+page.svelte b/src/routes/private/events/+page.svelte
index 01b0edc..a4002fa 100644
--- a/src/routes/private/events/+page.svelte
+++ b/src/routes/private/events/+page.svelte
@@ -1,25 +1,226 @@
 <script lang="ts">
-    export let data;
+	import { onMount } from 'svelte';
+	import SingleEvent from './SingleEvent.svelte';
+
+	let { data } = $props();
+
+	// Types
+	interface Event {
+		id: string;
+		name: string;
+		date: string;
+		archived: boolean; // Whether the event is from events_archived table
+	}
+
+	// State
+	let allEvents = $state<Event[]>([]); // All events from both tables
+	let displayEvents = $state<Event[]>([]); // Events to display (filtered by search)
+	let loading = $state(true);
+	let error = $state('');
+	let searchTerm = $state('');
+	let isSearching = $state(false);
+	let searchTimeout: ReturnType<typeof setTimeout> | null = null;
+
+	onMount(async () => {
+		await loadEvents();
+	});
+
+	async function loadEvents() {
+		loading = true;
+		error = '';
+		try {
+			// Fetch regular events
+			const { data: eventsData, error: eventsError } = await data.supabase
+				.from('events')
+				.select('id, name, date')
+				.order('date', { ascending: false });
+
+			if (eventsError) throw eventsError;
+
+			// Fetch archived events (limited to 20)
+			const { data: archivedEventsData, error: archivedError } = await data.supabase
+				.from('events_archived')
+				.select('id, name, date')
+				.order('date', { ascending: false })
+				.limit(20);
+
+			if (archivedError) throw archivedError;
+
+			// Merge both arrays, marking archived events
+			const regularEvents = (eventsData || []).map(event => ({ ...event, archived: false }));
+			const archivedEvents = (archivedEventsData || []).map(event => ({ ...event, archived: true }));
+			
+			// Sort all events by date (newest first)
+			const combined = [...regularEvents, ...archivedEvents];
+			
+			allEvents = combined;
+			displayEvents = allEvents;
+
+		} catch (err) {
+			console.error('Error loading events:', err);
+			error = 'Failed to load events';
+		} finally {
+			loading = false;
+		}
+	}
+
+	function formatDate(dateString: string) {
+		return new Date(dateString).toLocaleDateString('en-GB', {
+			day: '2-digit',
+			month: '2-digit',
+			year: 'numeric'
+		});
+	}
+
+	async function searchEvents(term: string) {
+		if (!term.trim()) {
+			displayEvents = allEvents;
+			return;
+		}
+
+		isSearching = true;
+		error = '';
+		
+		try {
+			// Search regular events
+			const { data: regularResults, error: regularError } = await data.supabase
+				.from('events')
+				.select('id, name, date')
+				.ilike('name', `%${term}%`)
+				.order('date', { ascending: false });
+
+			if (regularError) {
+				console.error('Regular events search error:', regularError);
+				throw regularError;
+			}
+
+			// Search archived events
+			const { data: archivedResults, error: archivedError } = await data.supabase
+				.from('events_archived')
+				.select('id, name, date')
+				.ilike('name', `%${term}%`)
+				.order('date', { ascending: false })
+				.limit(50);
+
+			if (archivedError) {
+				console.error('Archived events search error:', archivedError);
+				throw archivedError;
+			}
+
+			// Merge search results
+			const regularEvents = (regularResults || []).map(event => ({ ...event, archived: false }));
+			const archivedEvents = (archivedResults || []).map(event => ({ ...event, archived: true }));
+			
+			// Sort merged results by date (newest first)
+			const combined = [...regularEvents, ...archivedEvents];
+			combined.sort((a, b) => new Date(b.date).getTime() - new Date(a.date).getTime());
+			
+			displayEvents = combined;
+
+		} catch (err) {
+			console.error('Error searching events:', err);
+		} finally {
+			isSearching = false;
+		}
+	}
+
+	// Handle search term changes
+	function handleSearchInput() {
+		if (searchTimeout) {
+			clearTimeout(searchTimeout);
+		}
+		
+		searchTimeout = setTimeout(() => {
+			searchEvents(searchTerm);
+		}, 300);
+	}
+
+	function clearSearch() {
+		searchTerm = '';
+		displayEvents = allEvents;
+	}
 </script>
 
 <h1 class="text-2xl font-bold mb-4 mt-2 text-center">All Events</h1>
+
 <div class="grid grid-cols-1 md:grid-cols-2 gap-4 max-w-2xl mx-auto">
-  {#each data.events as event}
-    <a
-      href={`/private/events/event?id=${event.id}`}
-      class="block border border-gray-300 rounded bg-white p-4 shadow-none transition cursor-pointer hover:border-blue-500 group"
-    >
-      <div class="flex flex-col gap-1">
-        <span class="font-semibold text-lg text-black-700 group-hover:underline">{event.name}</span>
-        <span class="text-gray-500 text-sm">{event.date}</span>
-      </div>
-    </a>
-  {/each}
+	{#if loading}
+		<!-- Loading placeholders -->
+		{#each Array(4) as _}
+			<div class="block border border-gray-300 rounded bg-white p-4 min-h-[72px]">
+				<div class="flex flex-col gap-1">
+					<div class="h-6 w-3/4 bg-gray-200 rounded animate-pulse"></div>
+					<div class="h-4 w-1/2 bg-gray-100 rounded animate-pulse"></div>
+				</div>
+			</div>
+		{/each}
+	{:else if error}
+		<div class="col-span-full text-center py-8">
+			<p class="text-red-600">{error}</p>
+			<button
+				onclick={loadEvents}
+				class="mt-2 px-4 py-2 bg-blue-600 text-white rounded hover:bg-blue-700"
+			>
+				Try Again
+			</button>
+		</div>
+	{:else if displayEvents.length === 0}
+		<div class="col-span-full text-center py-8">
+			<p class="text-gray-500">No events found. Create your first event!</p>
+		</div>
+	{:else}
+		{#each displayEvents as event}
+			<SingleEvent
+				id={event.id}
+				name={event.name}
+				date={formatDate(event.date)}
+				archived={event.archived}
+			/>
+		{/each}
+	{/if}
 </div>
 
-<a
-  href="/private/events/event/new"
-  class="fixed bottom-6 left-1/2 -translate-x-1/2 z-50 bg-blue-600 hover:bg-blue-700 text-white font-bold py-3 px-8 rounded-full shadow-none border border-gray-300"
->
-  New Event
-</a>
\ No newline at end of file
+<!-- Bottom actions -->
+<div class="fixed bottom-6 left-1/2 -translate-x-1/2 z-50 flex items-center gap-4">
+	<!-- Search bar -->
+	<div class="relative mr-4">
+		<input
+			type="text"
+			bind:value={searchTerm}
+			oninput={handleSearchInput}
+			placeholder="Search events..."
+			class="w-64 pl-10 pr-4 py-3 rounded-full border border-gray-300 bg-white text-sm focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+		/>
+		<div class="absolute left-3 top-1/2 -translate-y-1/2">
+			{#if isSearching}
+				<svg class="animate-spin h-4 w-4 text-gray-400" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24">
+					<circle class="opacity-25" cx="12" cy="12" r="10" stroke="currentColor" stroke-width="4"></circle>
+					<path class="opacity-75" fill="currentColor" d="M4 12a8 8 0 018-8V0C5.373 0 0 5.373 0 12h4zm2 5.291A7.962 7.962 0 014 12H0c0 3.042 1.135 5.824 3 7.938l3-2.647z"></path>
+				</svg>
+			{:else}
+				<svg class="h-4 w-4 text-gray-400" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M21 21l-6-6m2-5a7 7 0 11-14 0 7 7 0 0114 0z" />
+				</svg>
+			{/if}
+		</div>
+		{#if searchTerm}
+			<button
+				onclick={clearSearch}
+				class="absolute right-3 top-1/2 -translate-y-1/2 text-gray-400 hover:text-gray-600"
+				aria-label="Clear search"
+			>
+				<svg class="h-4 w-4" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M6 18L18 6M6 6l12 12" />
+				</svg>
+			</button>
+		{/if}
+	</div>
+
+	<!-- New Event button -->
+	<a
+		href="/private/events/event/new"
+		class="bg-blue-600 hover:bg-blue-700 text-white font-bold py-3 px-8 rounded-full border border-gray-300 transition whitespace-nowrap"
+	>
+		New Event
+	</a>
+</div>
\ No newline at end of file
diff --git a/src/routes/private/events/SingleEvent.svelte b/src/routes/private/events/SingleEvent.svelte
index ef08e73..5887730 100644
--- a/src/routes/private/events/SingleEvent.svelte
+++ b/src/routes/private/events/SingleEvent.svelte
@@ -3,7 +3,7 @@
 </script>
 
 <a
-    href={archived ? `/private/events/archived?id=${id}` : `/private/events/event?id=${id}`}
+    href={archived ? `/private/events/event/archived?id=${id}` : `/private/events/event/view?id=${id}`}
     class="block border border-gray-300 rounded bg-white p-4 shadow-none transition cursor-pointer hover:border-blue-500 group min-h-[72px] h-full w-full"
     aria-label={archived ? `View archived event ${name}` : `View event ${name}`}
 >
diff --git a/src/routes/private/events/archived/+page.svelte b/src/routes/private/events/archived/+page.svelte
deleted file mode 100644
index 2df8b53..0000000
--- a/src/routes/private/events/archived/+page.svelte
+++ /dev/null
@@ -1,77 +0,0 @@
-<script lang="ts">
-	import { onMount } from 'svelte';
-    import { page } from '$app/state';
-
-	let { data } = $props();
-
-	let event_data = $state();
-	let loading = $state(true);
-
-	onMount(async () => {
-		const event_id = page.url.searchParams.get('id');
-        
-		if (!event_id) {
-			loading = false;
-			return;
-		}
-
-		const { data: event } = await data.supabase
-			.from('events_archived')
-			.select('*')
-			.eq('id', event_id)
-			.single();
-
-		event_data = event;
-		loading = false;
-	});
-</script>
-
-<h1 class="mt-2 mb-4 text-center text-2xl font-bold">Archived Event Overview</h1>
-
-<div class="mb-2 rounded border border-gray-300 bg-white p-4">
-	<div class="flex flex-col gap-1">
-		{#if loading}
-			<div class="h-6 w-40 bg-gray-200 rounded animate-pulse mb-2"></div>
-			<div class="h-4 w-24 bg-gray-100 rounded animate-pulse"></div>
-		{:else}
-			<span class="text-black-700 text-lg font-semibold">{event_data?.name}</span>
-			<span class="text-black-500 text-sm">{event_data?.date}</span>
-		{/if}
-	</div>
-</div>
-
-<div class="mb-2 flex items-center rounded border border-gray-300 bg-white p-4">
-    <div class="flex flex-1 items-center justify-center gap-2">
-        <svg
-            class="inline h-4 w-4 text-blue-600"
-            fill="none"
-            stroke="currentColor"
-            stroke-width="2"
-            viewBox="0 0 24 24"
-        >
-            <circle cx="12" cy="12" r="10" stroke="currentColor" stroke-width="2" fill="none" />
-        </svg>
-        {#if loading}
-            <div class="h-4 w-20 bg-gray-200 rounded animate-pulse"></div>
-        {:else}
-            <span class="text-sm text-gray-700">Total participants ({event_data?.total_participants})</span>
-        {/if}
-    </div>
-    <div class="mx-4 h-8 w-px bg-gray-300"></div>
-    <div class="flex flex-1 items-center justify-center gap-2">
-        <svg
-            class="inline h-4 w-4 text-green-600"
-            fill="none"
-            stroke="currentColor"
-            stroke-width="2"
-            viewBox="0 0 24 24"
-        >
-            <path stroke-linecap="round" stroke-linejoin="round" d="M5 13l4 4L19 7" />
-        </svg>
-        {#if loading}
-            <div class="h-4 w-28 bg-gray-200 rounded animate-pulse"></div>
-        {:else}
-            <span class="text-sm text-gray-700">Scanned participants ({event_data?.scanned_participants})</span>
-        {/if}
-    </div>
-</div>
diff --git a/src/routes/private/events/event/archived/+page.svelte b/src/routes/private/events/event/archived/+page.svelte
new file mode 100644
index 0000000..37cdb56
--- /dev/null
+++ b/src/routes/private/events/event/archived/+page.svelte
@@ -0,0 +1,88 @@
+<script lang="ts">
+	import { onMount } from 'svelte';
+    import { page } from '$app/state';
+
+	let { data } = $props();
+
+	// Types
+	interface ArchivedEvent {
+		id: string;
+		name: string;
+		date: string;
+		total_participants: number;
+		scanned_participants: number;
+	}
+
+	let event_data = $state<ArchivedEvent | null>(null);
+	let loading = $state(true);
+
+	onMount(async () => {
+		const event_id = page.url.searchParams.get('id');
+        
+		if (!event_id) {
+			loading = false;
+			return;
+		}
+
+		const { data: event } = await data.supabase
+			.from('events_archived')
+			.select('*')
+			.eq('id', event_id)
+			.single();
+
+		event_data = event;
+		loading = false;
+	});
+</script>
+
+<h1 class="mt-2 mb-4 text-center text-2xl font-bold">Archived Event Overview</h1>
+
+<div class="mb-2 rounded border border-gray-300 bg-white p-4">
+	<div class="flex flex-col gap-1">
+		{#if loading}
+			<div class="h-6 w-40 bg-gray-200 rounded animate-pulse mb-2"></div>
+			<div class="h-4 w-24 bg-gray-100 rounded animate-pulse"></div>
+		{:else}
+			<span class="text-black-700 text-lg font-semibold">{event_data?.name}</span>
+			<span class="text-black-500 text-sm">{event_data?.date}</span>
+		{/if}
+	</div>
+</div>
+
+<div class="mb-2 rounded border border-gray-300 bg-white p-4">
+    <div class="flex flex-col sm:flex-row items-center justify-center gap-4">
+        <div class="flex items-center justify-center gap-2">
+            <svg
+                class="inline h-4 w-4 text-blue-600"
+                fill="none"
+                stroke="currentColor"
+                stroke-width="2"
+                viewBox="0 0 24 24"
+            >
+                <circle cx="12" cy="12" r="10" stroke="currentColor" stroke-width="2" fill="none" />
+            </svg>
+            {#if loading}
+                <div class="h-4 w-20 bg-gray-200 rounded animate-pulse"></div>
+            {:else}
+                <span class="text-sm text-gray-700">Total participants ({event_data?.total_participants})</span>
+            {/if}
+        </div>
+        <div class="hidden sm:block h-8 w-px bg-gray-300"></div>
+        <div class="flex items-center justify-center gap-2">
+            <svg
+                class="inline h-4 w-4 text-green-600"
+                fill="none"
+                stroke="currentColor"
+                stroke-width="2"
+                viewBox="0 0 24 24"
+            >
+                <path stroke-linecap="round" stroke-linejoin="round" d="M5 13l4 4L19 7" />
+            </svg>
+            {#if loading}
+                <div class="h-4 w-28 bg-gray-200 rounded animate-pulse"></div>
+            {:else}
+                <span class="text-sm text-gray-700">Scanned participants ({event_data?.scanned_participants})</span>
+            {/if}
+        </div>
+    </div>
+</div>
-- 
2.49.1


From af22543ec84780ffca002c249ffe4212facb4d58 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 16:35:27 +0200
Subject: [PATCH 17/20] Fix QR code generation, new scanner styling and ability
 to choose events.

---
 src/lib/types/types.ts                        |   6 +-
 src/routes/private/api/gmail/+server.ts       |  13 +-
 .../private/events/event/view/+page.svelte    |   2 -
 src/routes/private/scanner/+page.svelte       | 141 ++++++++++++++++--
 src/routes/private/scanner/QRScanner.svelte   |   2 +-
 .../private/scanner/TicketDisplay.svelte      |  79 ++++++----
 6 files changed, 191 insertions(+), 52 deletions(-)

diff --git a/src/lib/types/types.ts b/src/lib/types/types.ts
index 36fb4ed..c93af06 100644
--- a/src/lib/types/types.ts
+++ b/src/lib/types/types.ts
@@ -1,7 +1,9 @@
 export enum ScanState {
     scanning,
     scan_successful,
-    scan_failed
+    already_scanned,
+    scan_failed,
+    wrong_event
 }
 
 export type TicketData = {
@@ -22,7 +24,7 @@ export const defaultTicketData: TicketData = {
   name: '',
   surname: '',
   email: '',
-  event: '',
+  event: { id: '', name: '' },
   created_at: new Date().toISOString(),
   created_by: null,
   scanned: false,
diff --git a/src/routes/private/api/gmail/+server.ts b/src/routes/private/api/gmail/+server.ts
index c34fec7..eea6c9b 100644
--- a/src/routes/private/api/gmail/+server.ts
+++ b/src/routes/private/api/gmail/+server.ts
@@ -16,15 +16,8 @@ interface EmailResult {
 	error?: string;
 }
 
-async function generateQRCode(participant: Participant, eventId: string): Promise<string> {
-	const qrCodeData = JSON.stringify({
-		participantId: participant.id,
-		eventId: eventId,
-		name: participant.name,
-		surname: participant.surname
-	});
-
-	const qrCodeBase64 = await QRCode.toDataURL(qrCodeData, {
+async function generateQRCode(participantId: string): Promise<string> {
+	const qrCodeBase64 = await QRCode.toDataURL(participantId, {
 		type: 'image/png',
 		margin: 2,
 		scale: 8
@@ -43,7 +36,7 @@ async function sendEmailToParticipant(
 	supabase: any
 ): Promise<EmailResult> {
 	try {
-		const qrCodeBase64Data = await generateQRCode(participant, eventId);
+		const qrCodeBase64Data = await generateQRCode(participant.id);
 
 		// Send email with QR code
 		await sendGmail(refreshToken, {
diff --git a/src/routes/private/events/event/view/+page.svelte b/src/routes/private/events/event/view/+page.svelte
index 4a96ac9..97ce1e3 100644
--- a/src/routes/private/events/event/view/+page.svelte
+++ b/src/routes/private/events/event/view/+page.svelte
@@ -162,8 +162,6 @@
 				p_emails: emails
 			});
 
-			console.log(syncError);
-
 			if (syncError) throw syncError;
 
 			// Reload participants
diff --git a/src/routes/private/scanner/+page.svelte b/src/routes/private/scanner/+page.svelte
index 0a098ca..8220dab 100644
--- a/src/routes/private/scanner/+page.svelte
+++ b/src/routes/private/scanner/+page.svelte
@@ -1,6 +1,7 @@
 <script lang="ts">
 	import QRScanner from './QRScanner.svelte';
 	import TicketDisplay from './TicketDisplay.svelte';
+	import { onMount } from 'svelte';
 
 	import type { TicketData } from '$lib/types/types';
 	import { ScanState, defaultTicketData } from '$lib/types/types';
@@ -9,28 +10,144 @@
 	let scanned_id = $state<string>("");
 	let ticket_data = $state<TicketData>(defaultTicketData);
 	let scan_state = $state<ScanState>(ScanState.scanning);
+	
+	// Events related state
+	interface Event {
+		id: string;
+		name: string;
+		date: string;
+	}
+	
+	let events = $state<Event[]>([]);
+	let selectedEventId = $state<string>("");
+	let isLoadingEvents = $state(true);
+	let eventsError = $state("");
 
+	onMount(async () => {
+		await loadEvents();
+	});
+
+	async function loadEvents() {
+		isLoadingEvents = true;
+		eventsError = '';
+		
+		try {
+			const { data: eventsData, error } = await data.supabase
+				.from('events')
+				.select('id, name, date')
+				.order('date', { ascending: false });
+
+			if (error) throw error;
+			events = eventsData || [];
+			
+			// If there are events, select the first one by default
+			if (events.length > 0) {
+				selectedEventId = events[0].id;
+			}
+		} catch (err) {
+			console.error('Error loading events:', err);
+			eventsError = 'Failed to load events';
+		} finally {
+			isLoadingEvents = false;
+		}
+	}
+
+	// Process a scanned QR code
 	$effect(() => {
 		if (scanned_id === "") return;
 		scan_state = ScanState.scanning;
 
+		console.log("Scanned ID:", scanned_id);
+
 		data.supabase
 			.from('participants')
 			.select(`*, event ( id, name ), scanned_by ( id, display_name )`)
 			.eq('id', scanned_id)
-			.then( response => {
-			if (response.data && response.data.length > 0) {
-				ticket_data = response.data[0];
-				scan_state = ScanState.scan_successful;
-				data.supabase.rpc('scan_ticket', { _ticket_id: scanned_id}).then();
-			} else {
-				ticket_data = defaultTicketData;
-				scan_state = ScanState.scan_failed;
-			}
-		})
+			.then(response => {
+				if (response.data && response.data.length > 0) {
+					const participant = response.data[0];
+					ticket_data = participant;
+					
+					// Check if the participant belongs to the selected event
+					if (selectedEventId && participant.event.id !== selectedEventId) {
+						scan_state = ScanState.wrong_event;
+					} else if (participant.scanned) {
+						scan_state = ScanState.already_scanned; // Already scanned
+					} else {
+						scan_state = ScanState.scan_successful;
+						data.supabase.rpc('scan_ticket', { _ticket_id: scanned_id }).then();
+					}
+				} else {
+					ticket_data = defaultTicketData;
+					scan_state = ScanState.scan_failed;
+				}
+				
+				// Reset the scanned_id after 3 seconds to allow for a new scan
+				setTimeout(() => {
+					scanned_id = "";
+				}, 3000);
+			});
 	});
 </script>
 
-<QRScanner bind:message={scanned_id} />
+<div class="mx-auto p-4">
+	<h1 class="text-2xl font-bold mb-6 text-center">Code Scanner</h1>
 
-<TicketDisplay {ticket_data} {scan_state}/>
+	<!-- Event Selector -->
+	<div class="rounded-lg border border-gray-300 p-4 mb-4">
+		<h2 class="text-lg font-semibold mb-3">Select Event</h2>
+		{#if isLoadingEvents}
+			<div class="flex items-center justify-center h-10">
+				<div class="animate-spin h-5 w-5 border-2 border-gray-500 rounded-full border-t-transparent"></div>
+			</div>
+		{:else if eventsError}
+			<div class="text-red-600 text-center py-2">
+				{eventsError}
+				<button 
+					onclick={loadEvents}
+					class="ml-2 text-blue-600 underline"
+				>
+					Try again
+				</button>
+			</div>
+		{:else if events.length === 0}
+			<p class="text-gray-500 text-center py-2">No events found</p>
+		{:else}
+			<select 
+				bind:value={selectedEventId}
+				class="w-full p-2 border border-gray-300 rounded focus:outline-none focus:ring-2 focus:ring-blue-500"
+			>
+				{#each events as event}
+					<option value={event.id}>
+						{event.name} ({new Date(event.date).toLocaleDateString('en-GB')})
+					</option>
+				{/each}
+			</select>
+		{/if}
+	</div>
+
+	<!-- Scanner Section -->
+	<div class="mb-4">
+		<QRScanner bind:message={scanned_id} />
+	</div>
+
+	<!-- Ticket Display Section -->
+	<h2 class="text-lg font-semibold mb-4">Ticket Information</h2>
+	<TicketDisplay {ticket_data} {scan_state} />
+	
+	<!-- Reset button -->
+	{#if scan_state !== ScanState.scanning}
+		<div class="flex justify-center mt-6 mb-4">
+			<button 
+				onclick={() => {
+					scanned_id = "";
+					scan_state = ScanState.scanning;
+				}}
+				class="bg-gray-200 hover:bg-gray-300 text-gray-800 font-semibold py-2 px-6 rounded-lg transition"
+				aria-label="Reset scanner"
+			>
+				Reset Scanner
+			</button>
+		</div>
+	{/if}
+</div>
diff --git a/src/routes/private/scanner/QRScanner.svelte b/src/routes/private/scanner/QRScanner.svelte
index d8a520f..fe8cd90 100644
--- a/src/routes/private/scanner/QRScanner.svelte
+++ b/src/routes/private/scanner/QRScanner.svelte
@@ -45,7 +45,7 @@
     });
 </script>
 
-<div id="qr-scanner" class="w-full h-full max-w-none overflow-hidden rounded-sm"></div>
+<div id="qr-scanner" class="w-full h-full max-w-none overflow-hidden rounded-lg border border-gray-300"></div>
 
 <style>
     /* Hide unwanted icons */
diff --git a/src/routes/private/scanner/TicketDisplay.svelte b/src/routes/private/scanner/TicketDisplay.svelte
index 44c45dd..053b66b 100644
--- a/src/routes/private/scanner/TicketDisplay.svelte
+++ b/src/routes/private/scanner/TicketDisplay.svelte
@@ -5,6 +5,7 @@
 	let { ticket_data, scan_state }: { ticket_data: TicketData; scan_state: ScanState } = $props();
 
 	function formatScannedAt(dateString: string): string {
+		if (!dateString) return '';
 		const date = new Date(dateString);
 		const day = String(date.getDate()).padStart(2, '0');
 		const month = String(date.getMonth() + 1).padStart(2, '0');
@@ -14,37 +15,65 @@
 	}
 </script>
 
-<div class="py-3">
+<div class="border border-gray-300 rounded-lg overflow-hidden">
 	{#if scan_state === ScanState.scanning}
-		<div class="rounded border-l-4 border-orange-500 bg-orange-100 p-4 text-orange-700">
-			<p>Waiting for data...</p>
+		<div class="bg-gray-50 p-4 flex items-center justify-center gap-3">
+			<div class="animate-spin h-5 w-5 border-2 border-gray-500 rounded-full border-t-transparent"></div>
+			<p class="text-gray-700">Waiting for QR code...</p>
 		</div>
 	{:else if scan_state === ScanState.scan_failed}
-		<div class="rounded border-l-4 border-red-500 bg-red-100 p-4 text-red-700">
-			<p><strong>Scan failed!</strong></p>
-			<p>This is either not a valid ticket or this ticket has been purchased from a different section.</p>
+		<div class="bg-red-50 p-4">
+			<div class="flex items-center gap-2 mb-2">
+				<svg class="h-6 w-6 text-red-600" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M6 18L18 6M6 6l12 12" />
+				</svg>
+				<h3 class="font-semibold text-red-800">Invalid Code</h3>
+			</div>
+			<p class="text-red-700">This QR code is not a valid ticket or doesn't exist in our system.</p>
+		</div>
+	{:else if scan_state === ScanState.wrong_event}
+		<div class="bg-amber-50 p-4">
+			<div class="flex items-center gap-2 mb-2">
+				<svg class="h-6 w-6 text-amber-600" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 9v2m0 4h.01m-6.938 4h13.856c1.54 0 2.502-1.667 1.732-3L13.732 4c-.77-1.333-2.694-1.333-3.464 0L3.34 16c-.77 1.333.192 3 1.732 3z" />
+				</svg>
+				<h3 class="font-semibold text-amber-800">Wrong Event</h3>
+			</div>
+			<p class="text-amber-700 mb-2">This ticket belongs to a different event:</p>
+			<div class="bg-white rounded p-3 border border-amber-200">
+				<p class="font-medium">{ticket_data.event.name}</p>
+				<p>{ticket_data.name} {ticket_data.surname}</p>
+			</div>
+		</div>
+	{:else if scan_state === ScanState.already_scanned}
+		<div class="bg-amber-50 p-4">
+			<div class="flex items-center gap-2 mb-2">
+				<svg class="h-6 w-6 text-amber-600" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 9v2m0 4h.01m-6.938 4h13.856c1.54 0 2.502-1.667 1.732-3L13.732 4c-.77-1.333-2.694-1.333-3.464 0L3.34 16c-.77 1.333.192 3 1.732 3z" />
+				</svg>
+				<h3 class="font-semibold text-amber-800">Already Scanned</h3>
+			</div>
+			<p class="text-amber-700 mb-1">
+				This ticket was already scanned by {ticket_data.scanned_by?.display_name || 'someone'} 
+				{ticket_data.scanned_at ? `on ${formatScannedAt(ticket_data.scanned_at)}` : ''}
+			</p>
+			<div class="bg-white rounded p-3 border border-amber-200 mt-2">
+				<p class="font-medium">{ticket_data.event.name}</p>
+				<p>{ticket_data.name} {ticket_data.surname}</p>
+			</div>
 		</div>
 	{:else if scan_state === ScanState.scan_successful}
-		{#if ticket_data.scanned}
-			<div class="rounded border-l-4 border-red-500 bg-red-100 p-4 text-red-700">
-				<p>Ticket already scanned!</p>
-				<p>
-					By {ticket_data.scanned_by?.display_name} on
-					{formatScannedAt(ticket_data.scanned_at)}
-				</p>
-				<hr class="my-2 border-t border-red-300" />
-				<ol>
-					<li><strong>{ticket_data.event.name}</strong></li>
-					<li>{ticket_data.name} {ticket_data.surname}</li>
-				</ol>
+		<div class="bg-green-50 p-4">
+			<div class="flex items-center gap-2 mb-2">
+				<svg class="h-6 w-6 text-green-600" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M5 13l4 4L19 7" />
+				</svg>
+				<h3 class="font-semibold text-green-800">Valid Ticket</h3>
 			</div>
-		{:else}
-			<div class="rounded border-l-4 border-green-500 bg-green-100 p-4 text-green-700">
-				<ol>
-					<li><strong>{ticket_data.event.name}</strong></li>
-					<li>{ticket_data.name} {ticket_data.surname}</li>
-				</ol>
+			<div class="bg-white rounded p-3 border border-green-200">
+				<p class="font-medium">{ticket_data.event.name}</p>
+				<p>{ticket_data.name} {ticket_data.surname}</p>
 			</div>
-		{/if}
+		</div>
 	{/if}
 </div>
-- 
2.49.1


From 608ab81b239aaf87bb7aa5adc39767d7c3185107 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 16:40:04 +0200
Subject: [PATCH 18/20] Fixes for smaller devices

---
 src/routes/private/events/event/view/+page.svelte  |  4 ++--
 .../event/view/components/GoogleAuthButton.svelte  | 14 +++++++-------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/src/routes/private/events/event/view/+page.svelte b/src/routes/private/events/event/view/+page.svelte
index 97ce1e3..3853cfa 100644
--- a/src/routes/private/events/event/view/+page.svelte
+++ b/src/routes/private/events/event/view/+page.svelte
@@ -495,10 +495,10 @@
 			{#if participants.filter(p => !p.email_sent).length > 0}
 				<div class="rounded-lg bg-yellow-50 p-4 border border-yellow-200">
 					<div class="flex items-center">
-						<svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5 text-yellow-600 mr-2" viewBox="0 0 20 20" fill="currentColor">
+						<svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5 sm:h-6 sm:w-6 text-yellow-600 mr-2 flex-shrink-0" viewBox="0 0 20 20" fill="currentColor">
 							<path fill-rule="evenodd" d="M8.257 3.099c.765-1.36 2.722-1.36 3.486 0l5.58 9.92c.75 1.334-.213 2.98-1.742 2.98H4.42c-1.53 0-2.493-1.646-1.743-2.98l5.58-9.92zM11 13a1 1 0 11-2 0 1 1 0 012 0zm-1-8a1 1 0 00-1 1v3a1 1 0 002 0V6a1 1 0 00-1-1z" clip-rule="evenodd" />
 						</svg>
-						<span class="text-yellow-800 text-sm">
+						<span class="text-yellow-800 text-sm sm:text-base">
 							<strong>Warning:</strong> Do not close this window while emails are being sent. The process may take several minutes.
 						</span>
 					</div>
diff --git a/src/routes/private/events/event/view/components/GoogleAuthButton.svelte b/src/routes/private/events/event/view/components/GoogleAuthButton.svelte
index 633a46c..84040da 100644
--- a/src/routes/private/events/event/view/components/GoogleAuthButton.svelte
+++ b/src/routes/private/events/event/view/components/GoogleAuthButton.svelte
@@ -58,8 +58,8 @@
 </script>
 
 {#if authState.isConnected}
-	<div class="flex items-center gap-3">
-		<div class="flex items-center gap-2 rounded-full bg-green-100 px-3 py-1 border border-green-300">
+	<div class="flex flex-wrap items-center gap-3">
+		<div class="flex items-center gap-2 rounded-full bg-green-100 px-3 py-1 border border-green-300 whitespace-nowrap">
 			<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 text-green-600" viewBox="0 0 20 20" fill="currentColor">
 				<path fill-rule="evenodd" d="M16.707 5.293a1 1 0 010 1.414l-8 8a1 1 0 01-1.414 0l-4-4a1 1 0 011.414-1.414L8 12.586l7.293-7.293a1 1 0 011.414 0z" clip-rule="evenodd" />
 			</svg>
@@ -67,20 +67,20 @@
 		</div>
 		
 		{#if authState.userEmail}
-			<div class="flex items-center gap-2 rounded-full bg-blue-100 px-3 py-1 border border-blue-300">
-				<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 text-blue-600" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+			<div class="flex items-center gap-2 rounded-full bg-blue-100 px-3 py-1 border border-blue-300 max-w-full overflow-hidden">
+				<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 shrink-0 text-blue-600" fill="none" viewBox="0 0 24 24" stroke="currentColor">
 					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M16 12a4 4 0 10-8 0 4 4 0 008 0zm0 0v1.5a2.5 2.5 0 005 0V12a9 9 0 10-9 9m4.5-1.206a8.959 8.959 0 01-4.5 1.207" />
 				</svg>
-				<span class="text-sm font-medium text-blue-800">{authState.userEmail}</span>
+				<span class="text-sm font-medium text-blue-800 truncate">{authState.userEmail}</span>
 			</div>
 		{/if}
 		
 		<button
 			onclick={handleDisconnect}
-			class="text-sm text-red-600 hover:text-red-800 flex items-center gap-1"
+			class="text-sm text-red-600 hover:text-red-800 flex items-center gap-1 whitespace-nowrap mt-1 sm:mt-0"
 			aria-label="Disconnect from Google"
 		>
-			<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+			<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 shrink-0" fill="none" viewBox="0 0 24 24" stroke="currentColor">
 				<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 16l4-4m0 0l-4-4m4 4H7m6 4v1a3 3 0 01-3 3H6a3 3 0 01-3-3V7a3 3 0 013-3h4a3 3 0 013 3v1" />
 			</svg>
 			Disconnect
-- 
2.49.1


From 88492e499263507c376b76eb48800364f8970a8b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 16:59:20 +0200
Subject: [PATCH 19/20] More styling

---
 .../components/GoogleAuthButton.svelte        |   6 +-
 src/routes/private/events/+page.server.ts     |   0
 src/routes/private/events/+page.svelte        |  93 +++++++-----
 .../private/events/event/new/+page.svelte     |  14 +-
 .../new/components/GoogleAuthStep.svelte      | 140 ++----------------
 .../private/events/event/view/+page.svelte    |   2 +-
 6 files changed, 83 insertions(+), 172 deletions(-)
 rename src/{routes/private/events/event/view => lib}/components/GoogleAuthButton.svelte (94%)
 delete mode 100644 src/routes/private/events/+page.server.ts

diff --git a/src/routes/private/events/event/view/components/GoogleAuthButton.svelte b/src/lib/components/GoogleAuthButton.svelte
similarity index 94%
rename from src/routes/private/events/event/view/components/GoogleAuthButton.svelte
rename to src/lib/components/GoogleAuthButton.svelte
index 84040da..928fcbd 100644
--- a/src/routes/private/events/event/view/components/GoogleAuthButton.svelte
+++ b/src/lib/components/GoogleAuthButton.svelte
@@ -77,13 +77,13 @@
 		
 		<button
 			onclick={handleDisconnect}
-			class="text-sm text-red-600 hover:text-red-800 flex items-center gap-1 whitespace-nowrap mt-1 sm:mt-0"
+			class="flex items-center gap-2 rounded-full bg-red-100 px-3 py-1 border border-red-300 hover:bg-red-200 transition-colors whitespace-nowrap"
 			aria-label="Disconnect from Google"
 		>
-			<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 shrink-0" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+			<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 shrink-0 text-red-600" fill="none" viewBox="0 0 24 24" stroke="currentColor">
 				<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 16l4-4m0 0l-4-4m4 4H7m6 4v1a3 3 0 01-3 3H6a3 3 0 01-3-3V7a3 3 0 013-3h4a3 3 0 013 3v1" />
 			</svg>
-			Disconnect
+			<span class="text-sm font-medium text-red-800">Disconnect</span>
 		</button>
 	</div>
 {:else}
diff --git a/src/routes/private/events/+page.server.ts b/src/routes/private/events/+page.server.ts
deleted file mode 100644
index e69de29..0000000
diff --git a/src/routes/private/events/+page.svelte b/src/routes/private/events/+page.svelte
index a4002fa..d8d3cfb 100644
--- a/src/routes/private/events/+page.svelte
+++ b/src/routes/private/events/+page.svelte
@@ -180,47 +180,58 @@
 	{/if}
 </div>
 
-<!-- Bottom actions -->
-<div class="fixed bottom-6 left-1/2 -translate-x-1/2 z-50 flex items-center gap-4">
-	<!-- Search bar -->
-	<div class="relative mr-4">
-		<input
-			type="text"
-			bind:value={searchTerm}
-			oninput={handleSearchInput}
-			placeholder="Search events..."
-			class="w-64 pl-10 pr-4 py-3 rounded-full border border-gray-300 bg-white text-sm focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
-		/>
-		<div class="absolute left-3 top-1/2 -translate-y-1/2">
-			{#if isSearching}
-				<svg class="animate-spin h-4 w-4 text-gray-400" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24">
-					<circle class="opacity-25" cx="12" cy="12" r="10" stroke="currentColor" stroke-width="4"></circle>
-					<path class="opacity-75" fill="currentColor" d="M4 12a8 8 0 018-8V0C5.373 0 0 5.373 0 12h4zm2 5.291A7.962 7.962 0 014 12H0c0 3.042 1.135 5.824 3 7.938l3-2.647z"></path>
-				</svg>
-			{:else}
-				<svg class="h-4 w-4 text-gray-400" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24" stroke="currentColor">
-					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M21 21l-6-6m2-5a7 7 0 11-14 0 7 7 0 0114 0z" />
-				</svg>
+<!-- Bottom actions - Mobile optimized -->
+<div class="fixed bottom-0 left-0 right-0 z-50 bg-white border-t border-gray-300 shadow-lg pb-safe">
+	<!-- Search bar and New Event button layout -->
+	<div class="max-w-2xl mx-auto px-4 py-3 flex flex-col sm:flex-row gap-3 sm:items-center">
+		<!-- Search bar - Full width on mobile, adaptive on desktop -->
+		<div class="relative flex-grow">
+			<input
+				type="text"
+				bind:value={searchTerm}
+				oninput={handleSearchInput}
+				placeholder="Search events..."
+				class="w-full pl-10 pr-10 py-2.5 rounded-lg border border-gray-300 text-sm focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+			/>
+			<div class="absolute left-3 top-1/2 -translate-y-1/2">
+				{#if isSearching}
+					<svg class="animate-spin h-4 w-4 text-gray-400" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24">
+						<circle class="opacity-25" cx="12" cy="12" r="10" stroke="currentColor" stroke-width="4"></circle>
+						<path class="opacity-75" fill="currentColor" d="M4 12a8 8 0 018-8V0C5.373 0 0 5.373 0 12h4zm2 5.291A7.962 7.962 0 014 12H0c0 3.042 1.135 5.824 3 7.938l3-2.647z"></path>
+					</svg>
+				{:else}
+					<svg class="h-4 w-4 text-gray-400" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+						<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M21 21l-6-6m2-5a7 7 0 11-14 0 7 7 0 0114 0z" />
+					</svg>
+				{/if}
+			</div>
+			{#if searchTerm}
+				<button
+					onclick={clearSearch}
+					class="absolute right-3 top-1/2 -translate-y-1/2 text-gray-400 hover:text-gray-600"
+					aria-label="Clear search"
+				>
+					<svg class="h-4 w-4" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+						<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M6 18L18 6M6 6l12 12" />
+					</svg>
+				</button>
 			{/if}
 		</div>
-		{#if searchTerm}
-			<button
-				onclick={clearSearch}
-				class="absolute right-3 top-1/2 -translate-y-1/2 text-gray-400 hover:text-gray-600"
-				aria-label="Clear search"
-			>
-				<svg class="h-4 w-4" xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 24 24" stroke="currentColor">
-					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M6 18L18 6M6 6l12 12" />
-				</svg>
-			</button>
-		{/if}
-	</div>
 
-	<!-- New Event button -->
-	<a
-		href="/private/events/event/new"
-		class="bg-blue-600 hover:bg-blue-700 text-white font-bold py-3 px-8 rounded-full border border-gray-300 transition whitespace-nowrap"
-	>
-		New Event
-	</a>
-</div>
\ No newline at end of file
+		<!-- New Event button - Adaptive width -->
+		<a
+			href="/private/events/event/new"
+			class="bg-blue-600 hover:bg-blue-700 text-white font-bold py-2.5 px-6 rounded-lg transition text-center whitespace-nowrap sm:flex-shrink-0"
+		>
+			<span class="flex items-center justify-center gap-2">
+				<svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+					<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 4v16m8-8H4" />
+				</svg>
+				New Event
+			</span>
+		</a>
+	</div>
+</div>
+
+<!-- Add padding to bottom of content to prevent overlap with fixed bottom bar -->
+<div class="h-24"></div>
\ No newline at end of file
diff --git a/src/routes/private/events/event/new/+page.svelte b/src/routes/private/events/event/new/+page.svelte
index 40a9190..3d9f809 100644
--- a/src/routes/private/events/event/new/+page.svelte
+++ b/src/routes/private/events/event/new/+page.svelte
@@ -417,7 +417,19 @@
 	<!-- Step Content -->
 	<div class="rounded-lg border border-gray-300 bg-white p-6 mb-4">
 		{#if currentStep === 0}
-			<GoogleAuthStep bind:authData bind:errors {connectToGoogle} {cancelGoogleAuth} {disconnectGoogle} />
+			<GoogleAuthStep 
+				bind:errors
+				onSuccess={(token) => {
+					authData.error = null;
+					authData.token = token;
+					authData.isConnected = true;
+					setTimeout(checkGoogleAuth, 100);
+				}}
+				onError={(error) => {
+					authData.error = error;
+					authData.isConnected = false;
+				}}
+			/>
 		{:else if currentStep === 1}
 			<EventDetailsStep bind:eventData bind:errors />
 		{:else if currentStep === 2}
diff --git a/src/routes/private/events/event/new/components/GoogleAuthStep.svelte b/src/routes/private/events/event/new/components/GoogleAuthStep.svelte
index f09e104..05199b8 100644
--- a/src/routes/private/events/event/new/components/GoogleAuthStep.svelte
+++ b/src/routes/private/events/event/new/components/GoogleAuthStep.svelte
@@ -1,19 +1,11 @@
 <script lang="ts">
+	import GoogleAuthButton from '$lib/components/GoogleAuthButton.svelte';
+
 	// Props
-	let { authData, errors, connectToGoogle, cancelGoogleAuth, disconnectGoogle } = $props<{
-		authData: {
-			isConnected: boolean;
-			checking: boolean;
-			connecting: boolean;
-			showCancelOption: boolean;
-			token: string | null;
-			error: string | null;
-			userEmail: string | null;
-		};
+	let { errors, onSuccess, onError } = $props<{
 		errors: Record<string, string>;
-		connectToGoogle: () => Promise<void>;
-		cancelGoogleAuth: () => void;
-		disconnectGoogle: () => Promise<void>;
+		onSuccess?: (token: string) => void;
+		onError?: (error: string) => void;
 	}>();
 </script>
 
@@ -24,121 +16,17 @@
 			To create events and import participants from Google Sheets, you need to connect your Google account.
 		</p>
 
-		{#if authData.checking}
-			<div class="flex justify-center items-center space-x-2">
-				<div class="animate-spin rounded-full h-6 w-6 border-b-2 border-blue-600"></div>
-				<span class="text-gray-600">Checking connection...</span>
-			</div>
-		{:else if authData.isConnected}
-			<div class="rounded-lg bg-green-50 border border-green-200 p-4 mb-4">
-				<div class="flex items-center justify-start">
-					<div class="justify-start flex flex-col items-start">
-						<p class="text-sm font-medium text-green-800">
-							Google account connected successfully!
-						</p>
-						{#if authData.userEmail}
-							<div class="flex items-center mt-2 bg-white rounded-full px-3 py-1 border border-green-300">
-								<p class="text-sm font-medium text-gray-700">
-									{authData.userEmail}
-								</p>
-							</div>
-						{/if}
-						<p class="text-sm text-green-700 mt-2">
-							You can now access Google Sheets and Gmail features.
-						</p>
-					</div>
-				</div>
-				
-				<div class="mt-4 flex justify-end">
-					<button
-						onclick={disconnectGoogle}
-						class="text-sm text-red-600 hover:text-red-800 flex items-center"
-						aria-label="Disconnect Google account"
-					>
-						<svg xmlns="http://www.w3.org/2000/svg" class="h-4 w-4 mr-1" fill="none" viewBox="0 0 24 24" stroke="currentColor">
-							<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 16l4-4m0 0l-4-4m4 4H7m6 4v1a3 3 0 01-3 3H6a3 3 0 01-3-3V7a3 3 0 013-3h4a3 3 0 013 3v1" />
-						</svg>
-						Disconnect
-					</button>
-				</div>
-			</div>
-		{:else}
-			<div class="rounded-lg bg-yellow-50 border border-yellow-200 p-4 mb-4">
-				<div class="flex items-center justify-start">
-					<div class="flex-shrink-0">
-						<svg class="h-5 w-5 text-yellow-400" viewBox="0 0 20 20" fill="currentColor">
-							<path fill-rule="evenodd" d="M8.257 3.099c.765-1.36 2.722-1.36 3.486 0l5.58 9.92c.75 1.334-.213 2.98-1.742 2.98H4.42c-1.53 0-2.493-1.646-1.743-2.98l5.58-9.92zM11 13a1 1 0 11-2 0 1 1 0 012 0zm-1-8a1 1 0 00-1 1v3a1 1 0 002 0V6a1 1 0 00-1-1z" clip-rule="evenodd" />
-						</svg>
-					</div>
-					<div class="ml-3 justify-start flex flex-col items-start">
-						<p class="text-sm font-medium text-yellow-800">
-							Google account not connected
-						</p>
-						<p class="text-sm text-yellow-700 mt-1">
-							Please connect your Google account to continue with event creation.
-						</p>
-					</div>
-				</div>
-			</div>
+		<GoogleAuthButton 
+				size="large"
+				variant="primary"
+				onSuccess={onSuccess}
+				onError={onError}
+			/>
 
-			<div class="flex flex-col gap-3">
-				<button
-					onclick={connectToGoogle}
-					disabled={authData.connecting}
-					class="inline-flex items-center px-6 py-3 border border-transparent text-base font-medium rounded-md text-white bg-blue-600 hover:bg-blue-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500 transition disabled:opacity-50 disabled:cursor-not-allowed"
-					aria-label="Connect to Google account"
-				>
-					{#if authData.connecting}
-						<div class="w-5 h-5 mr-2 animate-spin rounded-full border-2 border-white border-t-transparent"></div>
-						Connecting...
-					{:else}
-						<svg class="w-5 h-5 mr-2" viewBox="0 0 24 24">
-							<path fill="currentColor" d="M22.56 12.25c0-.78-.07-1.53-.2-2.25H12v4.26h5.92c-.26 1.37-1.04 2.53-2.21 3.31v2.77h3.57c2.08-1.92 3.28-4.74 3.28-8.09z"/>
-							<path fill="currentColor" d="M12 23c2.97 0 5.46-.98 7.28-2.66l-3.57-2.77c-.98.66-2.23 1.06-3.71 1.06-2.86 0-5.29-1.93-6.16-4.53H2.18v2.84C3.99 20.53 7.7 23 12 23z"/>
-							<path fill="currentColor" d="M5.84 14.09c-.22-.66-.35-1.36-.35-2.09s.13-1.43.35-2.09V7.07H2.18C1.43 8.55 1 10.22 1 12s.43 3.45 1.18 4.93l2.85-2.22.81-.62z"/>
-							<path fill="currentColor" d="M12 5.38c1.62 0 3.06.56 4.21 1.64l3.15-3.15C17.45 2.09 14.97 1 12 1 7.7 1 3.99 3.47 2.18 7.07l3.66 2.84c.87-2.6 3.3-4.53 6.16-4.53z"/>
-						</svg>
-						Connect to Google
-					{/if}
-				</button>
-				
-				{#if authData.connecting && authData.showCancelOption}
-					<button
-						onclick={cancelGoogleAuth}
-						class="text-sm text-gray-600 hover:text-gray-900"
-						aria-label="Cancel Google authentication"
-					>
-						Cancel connection
-					</button>
-					<p class="text-xs text-gray-500 mt-1">
-						Taking too long? You can cancel and try again.
-					</p>
-				{/if}
+		{#if errors.google}
+			<div class="mt-4 text-sm text-red-600">
+				{errors.google}
 			</div>
 		{/if}
-
-		{#if authData.error}
-			<div class="mt-4 rounded-lg bg-red-50 border border-red-200 p-4">
-				<div class="flex items-center">
-					<div class="flex-shrink-0">
-						<svg class="h-5 w-5 text-red-400" viewBox="0 0 20 20" fill="currentColor">
-							<path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zM8.707 7.293a1 1 0 00-1.414 1.414L8.586 10l-1.293 1.293a1 1 0 101.414 1.414L10 11.414l1.293 1.293a1 1 0 001.414-1.414L11.414 10l1.293-1.293a1 1 0 00-1.414-1.414L10 8.586 8.707 7.293z" clip-rule="evenodd" />
-						</svg>
-					</div>
-					<div class="ml-3">
-						<p class="text-sm font-medium text-red-800">
-							Connection Error
-						</p>
-						<p class="text-sm text-red-700 mt-1">
-							{authData.error}
-						</p>
-					</div>
-				</div>
-			</div>
-		{/if}
-
-		{#if errors.auth}
-			<p class="mt-2 text-sm text-red-600">{errors.auth}</p>
-		{/if}
 	</div>
 </div>
diff --git a/src/routes/private/events/event/view/+page.svelte b/src/routes/private/events/event/view/+page.svelte
index 3853cfa..51fd7f2 100644
--- a/src/routes/private/events/event/view/+page.svelte
+++ b/src/routes/private/events/event/view/+page.svelte
@@ -1,7 +1,7 @@
 <script lang="ts">
 	import { onMount } from 'svelte';
 	import { page } from '$app/stores';
-	import GoogleAuthButton from './components/GoogleAuthButton.svelte';
+	import GoogleAuthButton from '$lib/components/GoogleAuthButton.svelte';
 
 	let { data } = $props();
 
-- 
2.49.1


From f2edd1a5e4375513b3d5f39e0f6dd32b1db09b1b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roman=20Kr=C4=8Dek?= <roman.krcek@tietoevry.com>
Date: Tue, 8 Jul 2025 17:26:55 +0200
Subject: [PATCH 20/20] More supabase migrations

---
 .../20250708150826_remote_schema.sql          | 90 +++++++++++++++++++
 1 file changed, 90 insertions(+)
 create mode 100644 supabase/migrations/20250708150826_remote_schema.sql

diff --git a/supabase/migrations/20250708150826_remote_schema.sql b/supabase/migrations/20250708150826_remote_schema.sql
new file mode 100644
index 0000000..3409dd2
--- /dev/null
+++ b/supabase/migrations/20250708150826_remote_schema.sql
@@ -0,0 +1,90 @@
+drop function if exists "public"."create_event"(p_name text, p_date date, p_email_subject text, p_email_body text, p_sheet_id text, p_name_column integer, p_surname_column integer, p_email_column integer, p_confirmation_column integer);
+
+drop function if exists "public"."participant_emailed"(p_participant_id uuid, p_sent boolean);
+
+drop function if exists "public"."participants_add_bulk"(p_event uuid, p_names text[], p_surnames text[], p_emails text[]);
+
+drop index if exists "public"."participants_event_name_surname_email_uidx";
+
+alter table "public"."events" drop column "confirmation_column";
+
+alter table "public"."events" drop column "email_column";
+
+alter table "public"."events" drop column "name_column";
+
+alter table "public"."events" drop column "surname_column";
+
+alter table "public"."participants" drop column "email_sent";
+
+set check_function_bodies = off;
+
+CREATE OR REPLACE FUNCTION public.create_event(p_name text, p_date date)
+ RETURNS events
+ LANGUAGE plpgsql
+ SECURITY DEFINER
+ SET search_path TO 'public'
+AS $function$
+declare
+  v_user    uuid := auth.uid();                     -- current user
+  v_section uuid;                                   -- their section_id
+  v_evt     public.events%rowtype;                  -- the inserted event
+begin
+  -- 1) lookup the user's section
+  select section_id
+    into v_section
+    from public.profiles
+   where id = v_user;
+
+  if v_section is null then
+    raise exception 'no profile/section found for user %', v_user;
+  end if;
+
+  -- 2) insert into events, filling created_by and section_id
+  insert into public.events (
+    name,
+    date,
+    created_by,
+    section_id
+  )
+  values (
+    p_name,
+    p_date,
+    v_user,
+    v_section
+  )
+  returning * into v_evt;
+
+  -- 3) return the full row
+  return v_evt;
+end;
+$function$
+;
+
+CREATE OR REPLACE FUNCTION public.create_qrcodes_bulk(p_section_id uuid, p_event_id uuid, p_names text[], p_surnames text[], p_emails text[])
+ RETURNS SETOF participants
+ LANGUAGE plpgsql
+ SECURITY DEFINER
+ SET search_path TO 'public', 'pg_temp'
+AS $function$BEGIN
+    -----------------------------------------------------------------
+    -- 1) keep the array-length check exactly as before
+    -----------------------------------------------------------------
+    IF array_length(p_names, 1)  IS DISTINCT FROM
+       array_length(p_surnames,1) OR
+       array_length(p_names, 1)  IS DISTINCT FROM
+       array_length(p_emails,  1) THEN
+       RAISE EXCEPTION
+         'Names, surnames and emails arrays must all be the same length';
+    END IF;
+
+    RETURN QUERY
+    INSERT INTO public.participants (section_id, event, name, surname, email)
+    SELECT  p_section_id,
+            p_event_id,
+            n, s, e
+    FROM   unnest(p_names, p_surnames, p_emails) AS u(n, s, e)
+    RETURNING *;
+END;$function$
+;
+
+
-- 
2.49.1