From be00f021ba1484d8bde0395614b65dfbc5cbf992 Mon Sep 17 00:00:00 2001
From: c-d-p <cam.junk@depaoli.id.au>
Date: Wed, 23 Apr 2025 00:51:14 +0200
Subject: [PATCH] Added full suite of tests & added testing to CI/CD

---
 .github/workflows/deploy.yml                  |  60 ++-
 .vscode/settings.json                         |   7 +
 .../__pycache__/celery_app.cpython-312.pyc    | Bin 467 -> 436 bytes
 .../core/__pycache__/config.cpython-312.pyc   | Bin 1889 -> 1353 bytes
 backend/core/config.py                        |   8 +-
 .../admin/__pycache__/api.cpython-312.pyc     | Bin 1691 -> 1762 bytes
 .../calendar/__pycache__/api.cpython-312.pyc  | Bin 2999 -> 3080 bytes
 .../__pycache__/models.cpython-312.pyc        | Bin 1087 -> 1165 bytes
 .../__pycache__/schemas.cpython-312.pyc       | Bin 2777 -> 2880 bytes
 backend/modules/calendar/api.py               |   4 +-
 backend/modules/calendar/models.py            |   3 +-
 backend/modules/calendar/schemas.py           |   2 +
 backend/requirements-dev.txt                  |   4 +
 .../test_admin.cpython-312-pytest-8.3.5.pyc   | Bin 5649 -> 11514 bytes
 .../test_auth.cpython-312-pytest-8.3.5.pyc    | Bin 23885 -> 28710 bytes
 ...test_calendar.cpython-312-pytest-8.3.5.pyc | Bin 4905 -> 52694 bytes
 .../test_main.cpython-312-pytest-8.3.5.pyc    | Bin 0 -> 2160 bytes
 .../test_nlp.cpython-312-pytest-8.3.5.pyc     | Bin 0 -> 27018 bytes
 .../test_todo.cpython-312-pytest-8.3.5.pyc    | Bin 0 -> 26725 bytes
 .../__pycache__/generators.cpython-312.pyc    | Bin 2270 -> 2352 bytes
 backend/tests/helpers/generators.py           |   5 +-
 backend/tests/test_admin.py                   |  79 ++++
 backend/tests/test_auth.py                    |  62 ++-
 backend/tests/test_calendar.py                | 411 ++++++++++++++++--
 backend/tests/test_main.py                    |  10 +
 backend/tests/test_nlp.py                     | 218 ++++++++++
 backend/tests/test_todo.py                    | 210 +++++++++
 27 files changed, 1035 insertions(+), 48 deletions(-)
 create mode 100644 .vscode/settings.json
 create mode 100644 backend/requirements-dev.txt
 create mode 100644 backend/tests/__pycache__/test_main.cpython-312-pytest-8.3.5.pyc
 create mode 100644 backend/tests/__pycache__/test_nlp.cpython-312-pytest-8.3.5.pyc
 create mode 100644 backend/tests/__pycache__/test_todo.cpython-312-pytest-8.3.5.pyc
 create mode 100644 backend/tests/test_admin.py
 create mode 100644 backend/tests/test_main.py
 create mode 100644 backend/tests/test_nlp.py
 create mode 100644 backend/tests/test_todo.py

diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
index 6381504..6777f4f 100644
--- a/.github/workflows/deploy.yml
+++ b/.github/workflows/deploy.yml
@@ -19,8 +19,66 @@ on:
     - cron: '0 3 * * 0'
 
 jobs:
-  build-and-deploy:
+  # ========================================================================
+  # Job to run unit tests.
+  # ========================================================================
+  test:
+    name: Run Linters and Tests
     runs-on: ubuntu-latest
+    steps:
+      # Checks out the repo under $GITHUB_WORKSPACE
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      # Sets up Python 3.12 environment
+      - name: Set up Python
+        uses: actions/setup-python@v4
+        with:
+          python-version: '3.12'
+          
+      # Cache pip dependencies for faster reruns
+      - name: Cache pip dependencies
+        uses: actions/cache@v3
+        with:
+          path: ~/.cache/pip
+          key: ${{ runner.os }}-pip-${{ hashFiles('**/requirements*.txt') }}
+          restore-keys: |
+            ${{ runner.os }}-pip-
+
+      - name: Install dependencies
+        working-directory: ./backend
+        run: |
+          python -m pip install --upgrade pip
+          pip install -r requirements.txt
+          pip install -r requirements-dev.txt
+
+      - name: Lint with Ruff
+        working-directory: ./backend
+        run: |
+          ruff check .
+
+      - name: Check formatting with Black
+        working-directory: ./backend
+        run: |
+          black --check .
+
+      - name: Run Pytest
+        working-directory: ./backend
+        run: |
+          pytest
+
+  # ========================================================================
+  # Job to build and deploy the Docker image to mara.
+  # ========================================================================
+  build-and-deploy:
+    name: Build and Deploy
+    runs-on: ubuntu-latest
+    needs: test # Ensure tests pass before deploying
+
+    # Only run this job if triggered by a push to main or manual dispatch/schedule
+    # This prevents it running for PRs (eventually)
+    if: github.event_name == 'push' || github.event_name == 'workflow_dispatch' || github.event_name == 'schedule'
+
     steps:
       # Checks out the repo under $GITHUB_WORKSPACE
       - name: Checkout code
diff --git a/.vscode/settings.json b/.vscode/settings.json
new file mode 100644
index 0000000..7581cbf
--- /dev/null
+++ b/.vscode/settings.json
@@ -0,0 +1,7 @@
+{
+    "python.testing.pytestArgs": [
+        "backend"
+    ],
+    "python.testing.unittestEnabled": false,
+    "python.testing.pytestEnabled": true
+}
\ No newline at end of file
diff --git a/backend/core/__pycache__/celery_app.cpython-312.pyc b/backend/core/__pycache__/celery_app.cpython-312.pyc
index 8919cbeb61af57c6425b61dea27c34e6371d3c48..ed5aaec278d08baf8d04574d19403d6de1c68ed8 100644
GIT binary patch
delta 93
zcmcc2yoH(XG%qg~0}w<$X3u!TIFT=ukz-<tG9&B6jyy)TiQg5tID=eWJcHvygM21C
wF#0hHOzvk?Qj)#MEqjAU<T{VsMIN~uyowi;EiUj_e&J-}V`}6o;scro0KRY;SO5S3

delta 124
zcmdnOe3_Z=G%qg~0}zBBWy@e-n#dQ*$TcxVnUQT`M;;^l#P154g3hi!u0fIUPC@?O
zu0ipkK|Z%cp+Z5f!J$4O@lKA;-mZQwlNA~L7zHO6Fe)jjUgTE2!6R~=N9!Vw)(u|8
W3(6K3cr3qgvhguBaux9dtpfl<MIs6S

diff --git a/backend/core/__pycache__/config.cpython-312.pyc b/backend/core/__pycache__/config.cpython-312.pyc
index 3a175ae9012a56c935aa12167410a412897010bc..1ae3b10615b3cacb804329dd24c8c18d41833dd5 100644
GIT binary patch
literal 1353
zcmZ`&&u<$=6rS~t*X!R&nv%F_+9E`eBk)#9+mxtE>)M;dO=4TN19Ulz7VpH_u-<id
zH;6<Wj3`n9hxXR?RF0rr5Pt$!E|Gk(rb3E@IOJAHC8V5~8QZBM!ASe&`{sS~cHVn4
zzs2JbK*z61c_RS<_=Azb2=>A8FBCil1~3E*GzCo%7!Fv0rl^S=ix$)%hMPRrV0&-g
zjGyI<{f{#FA4+*&=&c%XKhQ&3H~<!b5qty;2@CsTe>D;SII`alp+&dFbm)k&v_N9_
zbPrdt@0)hRqdd4^V#_G*gfbZ=gY7Ts{at*bRp8_JJ32iD7-)h4w7?q8UK26IK_hUR
zdJIvMID?!8wGd|#XCY0-VXBll3u_V1B8+iW^c2OoBCbXGdV(>YU6N)ubeeH&dpJEp
z<UtBMQ!U5y8!q-9T62oh)J=VknY)%#*R2ieo4av+W|}*Ql)s18Dl0qVE;dY$%HN1?
z&dh$OTqEI%nlDtDhy<6a(>HFC`2CM-D7&&)suXHVt4EjUsmMe&ms6`%R4Xm3MWlXG
zE>u*sS}3m7)ap@)DN+@6p`uoo&Pwvx2UQ}K)pA*_kOT`{RdW@!hL+U_1dzmHskFGF
zqHMXqR?f7d-+FL7PQ$-x1r{|(n?W0)Nwm%IBsnNdCg<4eW@9I~<*$Emi%4d}c3fOc
zhlq@jtv4}3B!W=WF}5s*V+cLm(yhKHnlIJV;zy{Qtt}Cm-V3yDT9^zE5W;rdG3Xs4
zLHwof>OX;FdM<D>rEEA&tkjK`Lj71-%@(rCXL|i}Y#VgNr7nJ~OlzA+y%V~lbYqHs
z-Uv01z~Q+|yK?v9I|p*AJ2bu*bXm#WE7TOzarZ4o#+YG+aCxys&v!`@A>FneU-wPN
z_7HMq=4Y?ajZs5H)Arp2qwF_4o;%494}X~<X<*n^?^9~N1&1T^?S<W32hP8ez<H%z
z*!4OvL-B>T+pAAzI`B&Oz4QUR{KL5pOn2YCdH^S%QN`76EcwlHcXX@+$EbK>vR!;a
zgIxRv!eHueKuzzz?3d{n8E$PGy6u~F<n^DX%ic1P2kS0-iX`B81h#a4gTPJ4v`NS?
zUDhzxQq~`uH7g`fgvh6%&Zc=H-|jVi-hH2n*~Rkm)VvY}LHH9){SGd?1mVNP(BsBl
z<FU18J)3?p`+WAro#%Icyw#bw{<GOh+-*l+!}CIF_p8@{PJdkkvC;46zLt4X{{n`b
BOc4M8

literal 1889
zcmb7_&rcgi6vt=1>mL{!WAmfn6eqMzsNKqrfY5|SP-8aW0Jghp3TzQ0*Rusvdzb7w
zl|WTQrBsU43!I2g#wVxZ(qsOFO1-SKJ)o&7QMEmwURse;PMukd<w(7F4&Qk*@6G4E
z8Lwx4_IllbG~p-5)(sATKj`49*&D{iXT&%H2q2~iN{qxX)V39El8y9iku7l&#{e6U
zxs%2cI+_EBdkT<UW=`14X~|Av>{l_8W7igToKshr!Je6%E{k%xTu?Uk6q)EOsyPIa
zT9%cs^9`)kkut4z@u!WJB?E~;K(Z|Znca3Zd@bE}XUm{rA_mz`$ZFaohwPMHh`CSf
zHV7=@nuHFEz_v-SBS(|qmODue_BIJl<Z2Q;Rt?TJ2^}p2uSMu+li)_3%^JEag1b$E
z2YH(WpLGtNHVIwG*CcdXgswIT-N@f0_^n-Zw@C=J5CRq<&?cd$h0tRWdMIJHH{6F^
zSN{y`n4N*k!s1?JN7c)lnyf!6PR3%TTp>3}<&&bC&lR_bZ}QIg*r?^eZh@aoif}$H
zW^qR|;A%RP7P5uE2LQnS1i#1&Yj8$LFYtnuW<ZlsK_?lS%O)qrKDrmXjr$tG0xvEv
zX5macvB0NhvG?Ih7RDFn(n2yjzl81c;^>_Td@Y_x@S+H_1e}8WY9=Z0a4DHu&hp}U
zi0l#%3j70tntwB7HohjFJE`B1;WHUtzyNpA3?iQp_$*xD*KpTdIz6|@!+0i1$Ek2H
zc0s7*N-~7l4Pi+|kBijyK=|l!uGsL{R2@6X-BQq01+$xSS+nx6dRfCh2y=>}mUHET
zs^}1E^j^{EO^MlpQr75|qIsxzsrab)sq|3kqtZ|02XH|YypF`S)RG*_qn%h@MRIH@
zo{Y!7$mPG16+~t<;!>3_3!BlMUClukQ=uvK_ZR@a1E+!BqsU?8D0&z@9xy&wF$1gn
z51u7VZuP8x;As1B`$#!dj@N(u*zBL)e|W%}-1O-ij&Za9?xo}I+0gZ>RFSG1l?~&=
zX(Rr*IkawYeFwV9t)C9RTMyQP^-wKj+@3R%d2<*U+~D&ulS5~N*Q&uvuo|j_Uie<V
zWe&#omkx*{emWAa@74C|Pijw$3DH<yF-KMn?)q^LE$`+?U8+g-joOAWo;E%e%$uUY
z4Lv8x#Ix2-y%;qE(aSwWPlIn)Bb7)sT8SFrdoM@L;M9KVfb4ea?EgK#a8ugw)v<-0
z*uS%ja!R?7hkD~Z(dYxD1&LtC<%^=xSHwDJ>}p2cpmP@K9b&z9-M{>FrnFmRNPY>R
uzfa^JmSLE`K;&1@@f!&J4mzKDUvYkB`q?+H0O|g{1w6gqPk!sNNdE!XkCPDq

diff --git a/backend/core/config.py b/backend/core/config.py
index 80c6211..05f3642 100644
--- a/backend/core/config.py
+++ b/backend/core/config.py
@@ -3,12 +3,14 @@ from pydantic_settings import BaseSettings
 from pydantic import Field # Import Field for potential default values if needed
 import os
 
+DOTENV_PATH = os.path.join(os.path.dirname(__file__), "../.env")
+
 class Settings(BaseSettings):
     # Database settings - reads DB_URL from environment or .env
-    DB_URL: str
+    DB_URL: str = "postgresql://maia:maia@localhost:5432/maia"
 
     # Redis settings - reads REDIS_URL from environment or .env, also used for Celery.
-    REDIS_URL: str
+    REDIS_URL: str ="redis://localhost:6379/0"
 
     # JWT settings - reads from environment or .env
     JWT_ALGORITHM: str = "HS256"
@@ -22,7 +24,7 @@ class Settings(BaseSettings):
 
     class Config:
         # Tell pydantic-settings to load variables from a .env file
-        env_file = '.env'
+        env_file = DOTENV_PATH
         env_file_encoding = 'utf-8'
         extra = 'ignore'
 
diff --git a/backend/modules/admin/__pycache__/api.cpython-312.pyc b/backend/modules/admin/__pycache__/api.cpython-312.pyc
index e2753a4cfd558da600bb4db2ef4f6bdc140627b9..06c11ba87d20ed80a98f7601c0d931d902716b28 100644
GIT binary patch
delta 201
zcmbQu`-qqKG%qg~0}wbqVb6%%$UA|V(QooRW_O+x#u}y+ra4T(44TZ7UovkttWtK)
zNlh%u%u82DNi0cBN-R!Q$jnnH$w*a5N=(j9FUl{?OVMO1QUn@SBnBiV&t-AdPysR;
z7(VbZ@Cf(YblNny++pEv_igl@pmK#p{D!#Afs~8f-WOQBC;w;p#W;8JFV<os4n`lw
r33(qFK=caD4emR`4}|TGzhL5XQOoxeSoAY91C!)OCXj+6S)c^~@9{mc

delta 110
zcmaFFJDZpHG%qg~0}!|zW6R*($UA|V(QWcPW_OlKMop&4ADK5Z`c1yd;>svFS(;Un
z`6`R}WGB{Nj58<OvK8yGGfGUz`@jICR%mW;-x+=&Y<K(x6Q7G(zMnvXpP3n$BtJ3%
JSw*ry3joHTA7B6g

diff --git a/backend/modules/calendar/__pycache__/api.cpython-312.pyc b/backend/modules/calendar/__pycache__/api.cpython-312.pyc
index 146503687c8a58135743181648e3ced8bc0d04b2..b276969e77abdebf82c1c1d1c4f6eae723cafb07 100644
GIT binary patch
delta 1573
zcmb7EOKclO7~Wa$uGf$CBlaeKwQ&-f#8u@|BqXGUN`X|6ii)V@G!n8lo^j%6$2PNT
zL{8?wfh*brH#no@fK(x_NL-MBL&c%e9uPOwTd#1a`2Sre+O(=v=J4<LKj!-%Gdn*n
zeOa@9wXCcH>!4*G{q>bqpZ%mN%GU~07;zOrC=n`EMT({f+EiB)I@Kebat&cnBf^@S
z7A7@ChGrsNce5f#a}hS&ys)Sh;j~*2MOuuo>6S#9mLr^T7es|tM3v5}!lrg)%({zW
zi7ts6t%*9Viw13oCT$W$RXAZemOmtC)+v;Wi?(>{_;!qwk`=hkQ^#9LTa3?&r>PhL
zpUQKm1htuh^eVSvRZ#{iEAa{|^D<lD`oLh7FZ9!RpF)=*>GoVnd?2aG?K)V_s^<kJ
zlRTe;*~}hjQH~iTVT(M&4cyL_&e6bRwM62Tmn5!p`_)oHTMfRNXsa2sL;o<$HK5-`
zba}D=OJCyEixehnB^tN}8SY<ZM~%(u?8@2IR~gz19V{p4H%{zM`w233QekF$Z}-7?
z>T?;Ucld;lm=_wJ@Ay-%L&Ee&-1COx5kQkU51*-TldEc2kldS$M;`BqG2?ESi{pEJ
z(1H&%XR!?2p*m!plxzZ&EfiORpS2IkYEaQPwGNT>;4S^*cb2gVRaP*djaZupqv16a
z*Fbn0h&C*_0wByDa=*tv<s;vd8^L3Jova1V^vSI`*#d5Bg8;Hk#Bq8=SWSW~_|~w=
z_236%6Bzz9_IBnBRg7(eIA=(7ahU<MFh89z$LDcH@<t%j>!metJoyb7h-|<o_&$CA
z&Yax_J!VfmSD%MJ-9?*um@U8Hy&2p#SKdS3&Ssb%I56|cP~rxO(~&xeu;6{-I&S}n
zi<9nH3TdDxjUK~4nG8pV(nL!p_{LnG;oBBk{jua-sNXqoJT7x+D@Hc{S)WgQIDAj$
z(OQASp1R!YI#d6s8=br-E%emRJ$=W83*^YIhb1_kEPz`UQIuW?47M`X3~!2z4y=MG
z8a&P?G-P}!waM7?!_xcv`+L1NUcc3Q_rcxm{kuDI6@yZ65#&aMh9h5IN2E_2zkeie
zL?rP9<xNn&QzQ;Ax<UV%TXD&aI})ELeBHc%Kt4?oLjG2|kCblkduH4EW&QCz=g~dq
W^X4DqAgE;DRQu%NZuXdH$n_s=Tt0#T

delta 1430
zcmb7EJ8u&~5WYR%%NM_5JFy*;7g0={!W9%qBq&i3iVy-(Zh>XI>%`Hmec3xBA|y;f
zL5sFP@B<Ji=~7Ve6QDtKSJ0veAps>7J7>qb1dzx|H~MCF=lgbMR`;~{wvc?EOxlWE
z?_Q|ehtHCw{wq~co-0Hl$Wa)=h^bgb;HyrIX;=$!%+Z;S^$=^0!Axv23tOSDJ8@=X
zJH&=F#u7LYV$(^o6i$WMa?&h=Ga-&U<1CA_EQfO}kNf#BXgd>Z5>K)MF0djlvJx(_
zDLjP~RiTKCk;E1{Nbbw4!op=*-nl%$QA<)Ze~>;tB{NlO@1wzq&`TV9EtO<wmW<O(
zpJb`lGDz-;zCYx`(~^EAN<6@l-lX}GbpB6-<Vn7zfe2`j32IRtvdQEzYFVUThzQUA
zL%4W`x=M8JSW=cX6=9#3?AK10)tC1<D}9FMMiLe&M<f=c#O7%UP$1_HrvEya8!%y&
zMkjN!f|&^Y;$FTwdj$MdHHfd>-n`T8`IHCd26btN9HwHo&^QWGoO*7z<Iy_n66%PD
zT4ORJlLEC(sxb~T;8S4A;-_{C&53n=N$l!)eL7_3S=gHatPRgW;5?WGX*^AuIl1_(
z1cALp{W`r*JHE#kMbfCCd2!KjuMf$_A#F%j0X$F!1Q$6)mL8GS@9ovwgfEG&#*#KK
zPl`wS1+i*YHipDGpokJj>iUy7(Q`?|r-O^~W%1gq6oK{VgEUnXjCp>;?|Jp6?3nm$
z-dr83<VPwoe)9TWOm2<3kdTe0BmSCbTl4F{U#$dYt0BqVHirZb%?ncAuG4Uu+m!9q
zx}0$xb`01t{5`kb+2STdEb-BrMRD=N$`#<R6{MS8PHXf*le&IePMD90a=e5R;%>Z<
z1-gdElaQGLla}F`K1`m6QwZl8whgKZ3_f^0n%nh!J_n(gY(HNNQM=>wB|y5{@SEFw
z8L%;^lGmj3M&VFk_y~SkSL9RcIdqj@l`$kg@0+yWV@OBni&7C2_L}~<{0XgyrhN&m
L9=^19P&n4#7FiMl

diff --git a/backend/modules/calendar/__pycache__/models.cpython-312.pyc b/backend/modules/calendar/__pycache__/models.cpython-312.pyc
index 31f3ae1d95e3f6ec046d47c62362bcd005b773e9..f86f1e9a9937c8609d2ecc42d83013904566f3d6 100644
GIT binary patch
delta 451
zcmdnb(aXtqnwOW00SGu`IWnA>C-O-!hD}sgw$EjcVrOJXVMt-h;mGBT;smpqbGUN3
zqqrFvm>Ap{Qdn9TQdm>DS2KgOGcZK)RI+KZzXUNg*(bJ|a^7Nh%FoY9P0X9POONr{
z#Fxz(DJ*N)Rx^QA0G0DIF{HAj3an;?@&&<sb~s-M%x49X!YOc3pb4yS3q^o(qA46H
zjB7aIrixW^X>w0Kz-Y^@$#{!BB{eOvG^b?pUq%&1@ySX|WxSj~+itNZ=H$euBvwwI
z&ZNl5HF+nKCqFMxya+_F0daBrWI<+cZa$F-;R{l)@aZ(TPmX3b<xzpD@zdm;Jcn7U
zz6fj@UvXhhVoq{KYHp=oeo<}_C^&ENCg&HW>ZK%>Bqk*mrxtO;v=%9YSYVS>fvjH~
zHo5sJr8%i~MVde^C@hMVfW!x8Mn=Zx48hkKf-f=z-(^t0%OLlKg`d%hae~WN1`rK2
H0~nG3v-e?i

delta 370
zcmeC>+|R*xnwOW00SHQGGG%;Wn#d=?7&K8`*_x3dg&~D0hdq}giUZ7M&f(1EisE8q
zU}A7*NMUJVNMTLoTFng7%D@oCUCE}&{u0F0WSiJ&I`Oz3<E4q;nnPAIg2aFd_?Z||
zSyI{Id;u_@6-WxEu)#!ASk|z@jT8dP38%29Fs|WP%>*??q>@vUYw|-z+sT?tDvY9&
z{g}!oUt&^V<edDO$&;T4sHzA=umN##^<-~m@5zgpO?VVx;(nSulOHi_Ro>z&F3d^H
zNzO>kt<=je$}Qpqs<_3QoL`ixmy%eLn3PzYS_BFeuxUjKAQspVB_Qh;hfQvNN@-52
uU6C4)3-VyGJdpUn%*e?2oWbilgV$XK^}7smUs(7Uofs#$d}RR9U;_YrMowh_

diff --git a/backend/modules/calendar/__pycache__/schemas.cpython-312.pyc b/backend/modules/calendar/__pycache__/schemas.cpython-312.pyc
index 829083ae22476d9f1ca5b8822070dcdfd6cd1b38..cbfbd31f72c4da78ac15d63c7464665526dad489 100644
GIT binary patch
delta 928
zcmZ`%O>fgc5cN8aV<&OlBv8@Hb<z-Mohr0^L={rtK&7HykU$(z1XL;B(jcdn*6tzV
zKo6B@PkhV;@dLP&BR`;s0}@;+xDX!-KLBwG7Y>LWI}K_mEBWp2yqWdPo9P_i9nn5&
zT2kO^*HBi!J=1=Z50EAgZ;o;km29QPcU!D$RHj2ThSnaVA|nb^w^cj&I<+J6D_?Zj
zPHzf3(WSrFGi}k*;5}JT5)H>$vKwtki(g3wzKati3q!Fx3xTxkx(>_mP$nb9IRvSD
zPQ&wB)L(UNHjd^K2zdkpK|O#3KX{MfRcui+iyK$BZauZP?|znw@FP~0Lw^<al~K4N
zP0tlDXab>#F!1CQ+7Pf*57XEbzDNqo!-IrL_TioMB+^Ij=|k!|mFO^y_w|wO1AQ_B
z`ecvPC)XxipXc#;k>%i1eAXDj9KyW9Bv9Q#A*y&BO!?gGBs!P~Setc>74ZDGCTuE0
zP1s3<5^TtmwNrRJtS~!`wxg6SBY}XV_Yykt?f)rT1~>606+WEBs2rS8X0rdL53X{Z
zT!6QVLGrvAHy#zxyPtHRuQ0c@)bM@QTweF7H_(|to_E()n)lgx9(IX;9u~-(GiGk<
z(M(ji;hL2iP$P&n*L+suTr^stB)qX@Au9hYG8j7WLsmf>!VGlO#b}HwFqNFM!XXJI
z3VjZb&@ZLda_x18US=0zD``}9l6j$a1-^Algs6LC(_Mk@T?GlNN9ZKKXH<T2uY6d{
EA16+%b^rhX

delta 821
zcmZuvOG_J36rP)z%qtxy5qu<_#>Ds<L(q;bQW_*66td|L5FaQrYQPw{iHods;YJWd
z4ua7B1G{$JeW7*PPD}d}>>_TuC_U#U4LIb&{mz~Hojd1z-@PA4zl~U*EX$N|z>2!h
zFRj1q7Jh4Km}WbbKu#k;Gf;fJj4>t!maqH92lFO|pE!acKXEGEbU*rW&2GosC-9xU
zf%(`^mIOo2BNpWi0C~LNU^*Wo$PzpyF#dyvi)I@>%T;)<y<k~bQ>x_&Vsiv}g2>q!
z+9Mdp*^DEcN?#Sd`}Z06rKBN&<@NYUC5ZPmseMg$L{oC0rc|4urXTTDm{Lp52-OsQ
zh@xaiF4vXfKwb3~rzznX0f}^nc|-%b&PgnvBq+cab=Fg9Ndov3!62jNh#(-cc@Cbo
z-ZLsxvT(1xOC%{HMKBCk`oh@2F2f91Mg|^qk9ja>IB4`1`m|}hI)2<}Xz%hyeQUeb
z;<cTlR?v*NAF8X3!`<2*e~uMjQ%@ucFCddWv%6QYgd1<&M8ttmt{t{`0XZ&Y3mZ`T
zd{6uWF?2LikQZr>pad1Os){#MgbQ=o6%RoeByt`<lRtX7-tdnOf)&0D_onl5h^4NL
fj)b8z$(V7MDRv}`9i0fbN7!uQ&M7@e7=@UBwDFMD

diff --git a/backend/modules/calendar/api.py b/backend/modules/calendar/api.py
index bdd0700..81ecc15 100644
--- a/backend/modules/calendar/api.py
+++ b/backend/modules/calendar/api.py
@@ -1,5 +1,5 @@
 # modules/calendar/api.py
-from fastapi import APIRouter, Depends
+from fastapi import APIRouter, Depends, status
 from sqlalchemy.orm import Session
 from datetime import datetime
 from typing import List, Optional
@@ -12,7 +12,7 @@ from modules.calendar.service import create_calendar_event, get_calendar_event_b
 
 router = APIRouter(prefix="/calendar", tags=["calendar"])
 
-@router.post("/events", response_model=CalendarEventResponse)
+@router.post("/events", response_model=CalendarEventResponse, status_code=status.HTTP_201_CREATED)
 def create_event(
     event: CalendarEventCreate,
     user: User = Depends(get_current_user),
diff --git a/backend/modules/calendar/models.py b/backend/modules/calendar/models.py
index 9167a15..17cde49 100644
--- a/backend/modules/calendar/models.py
+++ b/backend/modules/calendar/models.py
@@ -1,5 +1,5 @@
 # modules/calendar/models.py
-from sqlalchemy import Column, Integer, String, DateTime, ForeignKey, JSON # Add JSON
+from sqlalchemy import Column, Integer, String, DateTime, ForeignKey, JSON, Boolean # Add Boolean
 from sqlalchemy.orm import relationship
 from core.database import Base
 
@@ -12,6 +12,7 @@ class CalendarEvent(Base):
     start = Column(DateTime, nullable=False)
     end = Column(DateTime)
     location = Column(String)
+    all_day = Column(Boolean, default=False) # Add all_day column
     tags = Column(JSON)
     color = Column(String) # hex code for color
     user_id = Column(Integer, ForeignKey("users.id"), nullable=False)  # <-- Relationship
diff --git a/backend/modules/calendar/schemas.py b/backend/modules/calendar/schemas.py
index ed04949..760da49 100644
--- a/backend/modules/calendar/schemas.py
+++ b/backend/modules/calendar/schemas.py
@@ -11,6 +11,7 @@ class CalendarEventBase(BaseModel):
     end: Optional[datetime] = None
     location: Optional[str] = None
     color: Optional[str] = None # Assuming color exists
+    all_day: Optional[bool] = None # Add all_day field
     tags: Optional[List[str]] = None # Add optional tags
 
     @field_validator('tags', mode='before')
@@ -32,6 +33,7 @@ class CalendarEventUpdate(BaseModel):
     end: Optional[datetime] = None
     location: Optional[str] = None
     color: Optional[str] = None
+    all_day: Optional[bool] = None # Add all_day field
     tags: Optional[List[str]] = None # Add optional tags for update
 
     @field_validator('tags', mode='before')
diff --git a/backend/requirements-dev.txt b/backend/requirements-dev.txt
new file mode 100644
index 0000000..f991949
--- /dev/null
+++ b/backend/requirements-dev.txt
@@ -0,0 +1,4 @@
+pytest
+pytest-cov # For checking test coverage (optional)
+ruff # Or flake8, pylint etc. for linting
+black # For code formatting checks
\ No newline at end of file
diff --git a/backend/tests/__pycache__/test_admin.cpython-312-pytest-8.3.5.pyc b/backend/tests/__pycache__/test_admin.cpython-312-pytest-8.3.5.pyc
index d8ac97943509e0f4fc6251e51318de2e5d4ffcea..c7f94ca53d2ba330b678e525307df408e8cddefa 100644
GIT binary patch
literal 11514
zcmeHNOKcm*8QvvV<Z}5CC0TygW-U7r^Pp_UvgJgI?D!Eo4>@&Y1W{rwR-Cm&hp*1A
z>PT4vYMX<N9+F!E^Z^$rP^r$rN24eA7N8e0k}6|SqXF6;+LICoMWJ5$|Fciij7TR=
z5Cd6||NJxi&tqq1|Nr~{*+0kQ5(n2GJH)B~#X0Wpm~pPK&D=@w9QOf7IKt<-F`lJ?
zLNFWPxq>j(##?tnV<ET`$cGE!n8?b4`A9(;lNc}LqlMU5jPY&xcp)(cje>kA-(E<L
zB^e*icN99uI)N8ei9`s0K_Jq*!dMrHsxh}LL}F03p{^_rW!(WzO_0Pj7%g6P67BB_
z*Q^`d*v54wlRn8!b**$jKbvRxbmzaYt&ucuhBRH#r#0ZDQB~8A<#TFLhg|qoRnu~%
zBCu^`MbA#5#H3nOsiK!C%8TbTm7Xo-RWp=jwagGz^=Vqn+E2iSi>nZX{~Z#*RWP`V
z{<};Bo|Si=y22a$MUbq&Dgj+^$}WZ+&PyvnBVYvI>gBkKU<lfO^oVosBHJNO&PqwZ
z5H9e9)wvM3X17cP9rloQT}(Kfmpb$R6He>)wV(7P9L{i`hx#Quo%>$uNfvqN-y3x!
z*?==kq^;$VZt=C*V5HuxI&D*bjRvE*w+4*7&DTqVI!4fGorHcR%)<Ir+DMp)Mq7?&
zxscxN%!#k1jZT@D8X>18C;b^uB5(7R0Q`kYa3+$LX7}SxPAS<eZsFo&N+E?@F-1$$
zx|+I_)2Dz*DbxBC?DSk#(P5Wo)}nn%IoHP|`xf}Mz|c^dpB>-RTb|jU)}(iACN-2o
zZf{!4SnrLTEfH0!q=u{;2OU{pY}o@Kdunv_75Tv4ee$`Hqvu9XojH4Y?8I@YVv1DN
z%B3Q_NBD{?2xbu4MzSBt0VD_45{d=_I_r2KtzqH7NIGT)Cso~y`i8+8F}oXfW=coO
zGdfI*tWdK<&MNu5Ow}^YmI`Hss%8vs%M;VNyq+s+W+-0*3C-LrYcN@P!bIiCd}%_-
z%SEN2nh{x3E~waonK;VE2eWvB(h@bh<O?NQP;^;+yPQ{wY<|;Wid&nu12Lo6m-SHl
z{F#1#<|!*<HFe0JIjo^hNm<ugU*A-zp!Q`+xeu43@8zSXkM>O{*|*dp>B9%s7?s(|
zX38_>b~X!CRftt4PZx17lxS{NB@`407lXg{2Ox9Yr|sSE&0d-P@X5vY-nmn^qFpP|
zowexBsxbV!gDXA5wVq*Mt55)Zba+L;-?CF;WnEemhA$6TxkZm%V$!aV#aQjL)<6`x
zVl0aG*q!(*K=~aQEoTPEMAol6UETXR)4jT@c^he11GMl*fopdCHzBPADnVZzSN~#P
z)@5);ppiC)_Z>GhT&Rsna0_y6pxIsh#%?k~1ky%AM%ypBUk7shM`33Km5>o?q`NC&
z9T$jQjkI({G{T0+EJ4JGfF<Z~r5k7_&_NNf1QD#`vjmc-k1jUQLU&mLul>zVPhRTj
zE3gEf<W^6@;XFyur&1Hyu%rD*wB?a*@wM4tq~5GLZG$CPcf|MBfRRVnuVaW#>m+7d
z0*S;)!jNoB5Y>O+%!se09Zs2-8d0YuCk0E;4ptxx|42ogX-_9-`_{1pik4DR#ZvJ}
z%REejlFgi409=#PEX`oXEE6K@CD0}mcbyqOYU>K7*4Dz$sh~Y+3aW*tK&7Zuqlh6E
z_}MoetnGM8K6&QsbEl6VKQSUzm>y;7o}x{sXgn$I(~)$N;#+S<v!LO0RmP_>+w!H!
zT+tLUgW8*JLV4T+mdWU}O@^-ziaV5UL$VzSE(*m}pgWPIko*wHLX19!Jigebz<LwQ
zpxZB%C@~|fUzuuUnn5Ad{&W|T9wfVw>_PGf5Dn+o*6J*wk3xaDrCwcwMVQDD0t+$-
z_i=-2p97iW{?Wa2rTg((_v7==-RNHG9{%ab-0{o3e@$*(Nv3Ma)YZ<bqrX4@+w<2?
zEhdNNPT%U<{^5A7>xsFSTpfSC@8)YCzxnY<_1GKLeQ#c#U2H#pm(CwVoj+LX8LSF}
zOy>{QqJt{}{+68*E9=slFo-%IMHW4FiAlRc76Xl<qPImI7DapPPW%<1oTlNi8|(X<
zpsPRNe7f7#>QKSGzSsBP>w9Z6IQsM9*7txGQtsw<nMydo8DYm>S0W@yI&yp^W<-n_
z!w8}wYJc)sn#LGG1dPy$bsok&<9oVBxFh1Me-pWwBS*Sy%N-{hNVgHUEq9`2%k9QE
zoEH6-8?3ijiGlUrIQv8s>s_=xJ7&5^=@YQ(mZ3pYLi>>HMY0cxZI(wLq*>m-cdvZr
z#r5p587_bms!Xc0(W9Oh3h>|<jstu{%e4f?b{D_I+q|fiic+OF?YWwV(%OPR(f(1~
zv$P8c`i6(@au^R=4&&i;2g3#Q0E+e_If$eV2t*kWu%4<_1Yim{wsgA>2S^N2G3-H~
z#%`WL(i{T#{l9~Lmv6xGPc3I~-(C%YgdZvZZ=r=v^=LtxW>En8BGkamuNmM30an<y
zXJy;I+O~byciqsJwjHkto9AA5U-W~8v6VdowLJqjdKZ(&z7kyMN4U^m>*=ow{R}Sj
z*P{I^0{)hr5-aP{n$VAM0Yw%)c8N*5LKXv!B1W)99Tr7<>`wd@pfzw_-y6CzR22rU
z4E+M!)`1Ua=AW$Y7y$0_Fr>98^o+k{yTHo1v<Aht#G=P80Xt;Le1i2{7Fu+xy3AjM
z0ft&;cNR)yI<IOO%Poh{OD3BKC`~3ZM9nKRS=)Vt72`P9js15ku!g_KjSW@=9~6Q%
z>Mw&gf(_kR!F6NXj5gbi4S~!1<!)@qa$_;L1<q{5tsgeR4V_uhbD|nLvk?OvRA#6o
zLu%^Gf(#g{DAw^As#wb|qTfYr;39${wL=I^omp2BT*6or!{WJw@s>yGcTF3N)SFdz
z#Qqu$%;3E>VC3;8BX><FN!TVaO4>=%h}tGG*0M=-jjJ<WFo_*#3gItRAUx3!+=u{f
zL>Jshq?3qXoCB4(AsKNu1kw!NNGt@h0qZ=ByQaw+NzRNmk&8QWq}yK01ldS783}tW
z+go1CcBdsL^{*uhPQ>9D1YO{|i@0wB&&_nCH_xUS0Mbeq^b}K%7|e#Sb&4puGNEW{
z3S$@uD>6Rxv)1VgW!qZS14E`T1#0%>LV)gv-swps2#x5oNSKF?y0<>Au-0=7^)n8@
z?Hpq2I2a7JPC{_KNTAVStUH3_2$G{njv+Y?WTCSW2r-3nNz=V>1U-TB_=>g=e_#(_
zZnC1uEUc{(xm3)mG6wn=l4fV2lzmIKr$J`M#X~CedF<tWAPPN&HBKXW0f>g-mpUY3
zLy=AfMOeo&nUHZ2>1!ap8>{_>p^z^^-1bMl4i0(e$~(8j?YBBoSD&AMY5v*juBWTX
zXKp1nysuuCSHoO#+Z|3whUQMKN?dG%6T1Gc;u6`yC35w#Gu79}YdhqsAR{u7Yf*Vc
zz~8c6VC7s|gJJ+1D6#0VOTYp$!O~B#p36du7VoFf^etiIijb)ZnfYnJXI6CO;fEnS
zz!33Uh9MCKL!>$w(t4!&n}H$s5t;su!H{ME%7Y<s7ltHA`vZa@$@_*O9R#8!_YFhf
zv<ARyR~-y_Xm(8#cya$QWP=Msy2-`|1Vh}lTo;D8UoQX*Nv1d1Fa&YKeZUa<G8j4!
zcUYj{43@P3H|Q%U_#-4oklc+U=vgc~2c&iTi=(HnLlumGeB<_)TpoYu?C-c`f5(~q
zJzv`~UKPgC{*Kq8<0}IGmhA#7=h7M!gZ)K`MUPzq7VIyUeuDK}7Fx7;KZT|}`>QVt
z2i7^=_%EDhJRGMR5C*v0{(d`W+Lk7j>dv$uoF;X@!D$)>a3xzf8FoVk5HN7R25NHp
z?sw|HxiCO8`|G-G#Ie5;LHqk)&a_cyJ7?O-bccPW%^Zt{{@^`l+P=W}`a1b3RI6X=
z0@_E*^&#X}v66e1Ob=nURp)I0b#dc!Un`R9x=-Gz?;B7Dok<P8-{ijDsqa^EpT3Ky
z!09cf=zP4z&g;!Bvh}%F#`28u6E~_}qB$Kt-Exb}uwBL$%nVso%<u&TzA7u{?2iNN
zTn7DF>qAc}!2FvD?Z<f~pPf<*Ga2~ci?(55e7cy^Q8I&mH^nbC%{b<@%#@lh<M$El
z`-Cnx01V$#fGjxX8WlmBeSyV}_F2rHxy;ONQ(X83j@bnk>|YZHtwx@uQ*aA*1E+lo
zWHre1{NFh4UGC@c+uYXMT>3V*>o&LZpWN=-T<@wF<d5+4TUR+uZwPl-x+;bFp{tLs
za*$kqnk6@P-@)8!r^p|^8eZifxem1;xe1jZ`D_Ch2v@_si+p-D5a$ohUs~lLxhb*a
yWBqf?-3fAm$Jp)9cHAZ2Z;AI?;{BF*zboFqx+4lBf_@>vej&Lje1Qp@f&T+FvU05e

literal 5649
zcmdrQU2hx5@s3=69zP`0l0TvkI*n8@bwpVojgv-pT_;6bw0bBSw2>PTXYR>5hU5`@
zN5^9C05u3u1t|~*d9Z=HfFCW$dFVfI-wgDH6sgEK)F^_Y59w1;_el>$XYOwAXjg{v
z;37c}$JyE0+1cHho1Gc{DV<IV@O*#k-&Y<ILHH|n_!IV!M?VGRhCl@>R)uBJX+yPe
zIV1`-vK$d{Bvg&oV#_fH4_D*0#BxFuLV^-g65FCHXE{m9`@*tBBLGwDVj=nk4lET!
zJNYw3H!fCHrEWkkEH@fuca95V(BNhs{TAR2!SKf_e2YFsfKBoREx{BjaHuCAOQazy
zWQu0!ohd=E!e&_i)W9{IrxNE_&{E)86)C|vtD$XACXE;p=c%MP7PQ+QdR5Se`s8N<
z4vv`u-!tpy9N^<Y8*tV|SU=eHLA<^u4&e*&)oJurxD^GR5E`R#lc=K8ix@e+gFZ<|
zIW1_-2$#g$_uzB6CR!r=!k}}ZG8}Mo%o0O_DROODVVa;xRkWgJ*o-<BikUI}k9{j2
zY@rxfNWwY)hZYKRefDYLAd5#iA5GmNuI*@=X3U6Z$@rJHWSmRlZNDYKnlUT7E)=p$
z`>~=-YihlyehhxTCGLk77q`UL+{9F4eYT({f8`<h#XMp&1$|mKWTUB<${JOYR({bP
zSSaXroGE%ktLw^E*bW0Pf>{I$`x#l+6=paxUItbmzHCRSV#sQ>HMpc1dAVt<!Tq6@
zWkaE`gNwM_Jl_Ez-VUC!sfw=Elh#xr*bywVMHu=uO9Q|q=NT&fvCX{VZswIj%8r(u
z8_W)0Q4Cw^JEficZe!hmE3PCnd$3fNtJM-y8mz3<8ZuMt6bzRxH`S`4)^$5t)qq2{
zkC*f{ty!fGYw1c=yDV2rb-AY4iIOg_Dk#CuTyXTFYV|i5)0mwrt!k_$8ztphqbk>B
z14e9uhbtr)UiG$wi@Dl7)8Coz@65R!SJt=tJ7@dZyb)L0f_n~k&Y2lK0juTtvtKN(
zX*H!-ri~&RzW9?1KfF-9ESKL=>a>Wu(H&TFKBno$x}A3whTm3+X-z{ZHS3Srn4N|N
z;Ib0*Bz$=r!k@E4AGJPc-7IvoFKqnaft1^m#yiq@n@rxG1JIVnZ_jn4$vuMau19ct
zKJ1Xm&9iQ=8=yUh*(L9wIG^7~fE!l)Xz_!^HUaSAd1!84YZqQ?k0E9AJhUBYagX4;
z>k-_Z4?94H#gU^Mpglmnc{@1IWdIZ;`cr-6GqU&yR3enUpo_TR$Irh527w&nUsb5V
ztqkE>q~R(Aa|?nw-olgs3{n3cr_sByZ7<3~q!cP>)h8a)znw&kxPD9w*!bP<jH5F>
z@$^eD{P<WIe1Z+SG)@VP(8R6K-Q;%29k+-{Do6gC*NRXHqDZ7KihODealV5h5lxvG
zMbbE@FN$Q06aK7|91B{0Iw#Ht@<##=j+untrV!@?&M`h7v;il?`OG1_zO@eF3!+2T
zi}P_hKnKmZ7abDDDZYa~NzZdy(3*Zy$Is(Mhlm>)=n*RkHhCeK!7(ce-&d4t%#zHc
zDP0w;l$nAEA86!&EP>|C6xik{&IoMNH|HQNCi(tAhhJ|S`nEabM3R4^Auqxw=rBEI
zCOjLazqAe0ToP|R8z#YqDfmUfI;1keEf=)hdh`gY)XMaE>^B20j?v@v1U+eHekc4s
zq>6W+^Sw4}W}o7<BhSQZN1vI+vs^=mdach1UORe-CBJrF3-&n3V<X_P5pHuUM#tzl
zWap9@GbJZGA20_F_1%;?0KS{YIf3tjhMtvA`g;FLEEMD4#~~IEeD~D<$akIl7kqcX
zk{~;Oeu-g-gp!)P3E4BW=`~qjD>Wctdsk!Bj$@A1gdrD0x=pZO2-|UNopdvclN1_E
zBTTC*Evbm<Sh1>IQR{^en}?O`I2Vm;QrVEdxDRB82?)c?!Ol4BkkYz|K9g`HivTlg
zJ0+LPimsOo4e~;e5dzU(Dt`ttc(u+80JpAy6y3|}p?q*jfOw=iC^dqtzCbX6KZ9V7
zVT$1_$S~wEj5Z82NjrT3j-)ZQ<s{Cn*!L93&siRJ5?fPbsxV#s1TrfplV+Hnv}WJZ
znt7__>rjHM$yb$pLt!;l*CFrD8yfa7A<i3Xs-Bn2n2t{~%vBhc)P<vVuBOpuRnezW
znbXiwsyZv;UWOhU(Uo$Osm3~+!LhJRDbyQUt)?1wj47+2&^2}phe$)y4Tg@zFjryE
zA;4UOjUvD($;J`n5n#Y)7~$D*0EIz2NiUalFad1T*@m+on?sIQ5qtvyUK0!>1DiyE
zw|;+FFvH+~mB%Qv>_ue!4g#z~SOI{J3giWX-?DE3)gFCH_K&tvDEkrc;HRU%2Os!`
z@HaB`kj#B9WpAGR!`t^>?Jg{}-@Me5e!21b1Csg8(yy1U&-ci2!1u^dhYa<|F$W*+
zkm2h_kBs~)Dh!X@xb*R*+oShhY%kN!f^z**cW8BE>49`&PnzgR6K!((P7Xj@nz)ne
zNT>G*zPld5?fI}nPH&!bd))x-Im|A32gUjPJ_6jZVw=p~T-h6)>5R?*3a~pm3&`fV
zHnh_09>I6lBe=aT_FUA5t{8_IhC!l(_Q-5|bjHPZ5clNy(*Ob44|1pWa+96hWH&c;
zXRMPuyYXYt(!j7=V%^d19lJkrKhr+{^Y%->*lcyPZ+)dD*NR(mtzgOZc6)54O;)hv
zTIon|YJ7J+g4^?92gp!zAxAerdw@c1h14CK=c6Fe#rxrBWQDy1-(n$c$9WO&IGlZ=
z<d*%@Zh`FhzVa@3F_iE=3EkJBIqqs7S(V|RgN8bd4&eTwz_9+ZNljMki~#ERxl{c*
zey}At%R7FvAAilgHO?{o(-w<B9i8<bVNn$SA_(sbyF%fiaP;#;?)t?K$2X$?Bw_K~
MqhwAjiH?;20L!Im<^TWy

diff --git a/backend/tests/__pycache__/test_auth.cpython-312-pytest-8.3.5.pyc b/backend/tests/__pycache__/test_auth.cpython-312-pytest-8.3.5.pyc
index 9470be8ce9974a937a29d79747ca1e579ad8d863..9d0b1dcd1a8449e97a495a19aae50634774fd852 100644
GIT binary patch
delta 3660
zcmd^>YfK#170353%f4oJXJA?O!2%1$hP91(#MqJ@2u>gdOu!_z0|tR1cX)ZTOJ<kY
z;Mstyv?_5Lj8B@n4Qa6|C8l;I+)e$V4~c&1mo_S>mW<p;O{G?C)wD&zQY(K*d(Q0I
zJYvgDzILR0?%aFNy>n*H@BZh0^b_{}C(Q9HyWOh8>swjo!4C^&93B?FQTzm}<u=*I
zEwYtcIqNs_?AHw^^S1Q4u`hp1p9lK_V=U-RbhE(>eYqKC>YswsFI2%l^0VQ2XI++>
z{;uvlJvVaGte)#t;}E-UhO5qqXi=^Gj9XQ+YU$TsGr&?-1q`<a;6DKyywjQozbUrC
zfGYsC4vU`K;81H2e)e2Hv%#u2AH+hd-9Bp=H|lh8fjhVe-*sIvNveoTX23=FewK+d
z8sQt;Y>?~ODQ0r#tX}h$couho&E3kfq03$Rh32%_R6Ec1;^&JyxEmHcWr9U}q(^nA
zR<L7;qR#?;Z&3869+$~|JV(uh&Xz`a&s!t-HUC`nPfz*3Y2O-Ji(yO`%!7Nr(!=*m
zPs_cEtOV{!y(1%`p_h7NLy>UVa5NI0*Wa-p8jTG`l%a90cii?&Bpj2&vC?B>BQg$~
z2IXEZD^Vo_%G!4%Ud?G^)-DWwAC~AFu<Y;l7wx**e6?n&@W4`Y_p;Qp;>f)mU$U33
znsidmrRTp76Lmu3-?@`a|Dk0=X3K4<tfq70tRCi^E~pOlfji3srjio)ec%Lqvm}){
z0ZtW6GXXMcw5-95%LBJd4#U~PAG<}>jQNsOyXqhWFf6<<f6|MTxqU1nIm>6YXQn=<
z$elb3?roDr7tiK~WEhB)8^T2q(X1imd4SYs#TEZsFgJI&MeqIP_{O&iz`I3Hf7ykb
zm=6krrR+F<{}PA>J1ojEe8YLBoPed^X}epYy{OcYX@}OG-!^pOEwuWBtOpLY?ePdP
zIU4H;MFt|HF=ZIXj$n!IOoLxYKKRsMTKtLVnm#vmZpG|dc}yx3q1|2VG5O9){H65o
zMyZ$Lp+J>3GJQl32vr{l?bLLT8HAr#)v^$LRt45qvEwwB=%=tK<s@$I>of@35}D-r
z68v+o-x;(igVf3+lSXC;eqFU2&KxXHKa0)r#Px&wOv09jmMI}}eVNR&WWr=3WJbtn
zp}azO3YjPzZOixCwQn{c$9hJivZ9>BkqIo(e^GRBbKj1{PoHt6d&g<UhUZa}0-lGz
zHk|RyOB+)|W2x6Z+qjti6>PtisBZdOx@*fS5_u-G9XeXa+Tq60KEvzS34dtZ1_#;>
zTfc^l?_i0Z*FM(!ZDU4h%Odo>+t?{M-|oW|X4@MiPRp9e$YciKZhJMGLPDHS-?7Vj
z0XyfhL@%UXF)xwmILRREg=|&}7wfkhIlHdEriUv}dSR*FW#nmE^Uw7ywzyF>a)Tym
zCXmY9Y3Zr~GOE2fDA=lrq?-i$njV+OD{fZJ!&Z33>|_@B-n033tBNvyx`b3%72vf%
zf!m@Anyiz&ukUF=+tVoJU@j;iNjHQUe;^7d>Le02ZM&a(%HrYowcSSAuG)r}rrmZZ
zFASnGSfJ4%Oh{*0+=4}jTgRke#`u9_xLE?2_}EZ*AkZ6*#0F6~34-EiU_^=Z4~67F
zNpvtW8sdRIInW<b`i3}{!@)gwoa9!~L)1Lz#%)STPmWb?9#g7xxtNKqnL~FCA|+1L
z*R&|FVb8onsh|OY7E9M2bjLB$8;zccC|rZILYX9o^W<Q`-98lVQKBQrOp$>ifbv~g
z6Yfn|uSco8jUG3#M2nbCH>vxhf5&Zq<+8tWp>nDA_$~j5WrKIJ{_8a#i{9Jf_GNMV
zT;I|Y4Y$O`^9|Ttao4EJ$hj>AmZiX4=G^fQy03IEbpKYWn`~Th`Y(4cJ9keuuNrj{
z{w*&x{fUJif>Tx!Ckz3vE+i#xh^NC3j})gFV+@-0epowFD8&({6li9Z4cno@?5sxE
zhPC5Ja`Jt9|HPo0lK^tFc5bj-Bjvy=Zc#164#F_a8k3;yfZu`qSye$J(WctqMstDN
zs@jl5t$zcFbdqSq^MeJTwSa0OF?py!^7P#P;G|*KP8xdzAv<-@uyc`qRw)=AaLSYX
z-#=#;CNdC2D;8T^7|RG|jvv%u93A2KYyQGCW+!RXX3HB={T9Ca9c{3(XY*jO97ZHR
zPh?V%Xh0KV4a>@wVCDvOGt;Q%w=VBrrM`8oo<ObMwKFKLbF9pe$0ah8WC&e_giZl8
zL@p|mcfzMZn+la)YQxK1M#o=biSGYAx9zw59S`I7$Stus$?eCYb9!uQ?83RphDRgp
z+{|$Hv^u52J5718)>Z%?HT~fKNgb0waycY_c_6jfj{<V@VBsTx>?20jSuAM@KKxJn
z2Kj9!aJS_m;qpKclW?UTy9KUU^jsnDhlt|i;d(St8-OySDrQf|r{YLdA^fhxg+#rr
z52B`Y*0Bya*7@d(blBF8Z3>-{6guc==MjZY5DFay6#92-60XpGP$=$sol;Ksd(hl7
zKlyTmkA~zL<tjFDr|6;~DCr92=dxOM@$jmS>baB2dZBJjYp>Qa_)*tP`<hN*fmNS_
zRnM7LbyzL<v})0?My=I=gd_V`QQfN-nzU+h?;5pMi)apx&>S4WYH{yfs<hDl3n!@m
AvH$=8

delta 1556
zcmb_cT}&KR6y7`R|1i6=|3B=~fe>N33{VYJZCNa!l+rA_M1+NupLP~lfn9ocNdukQ
z8WU3t<)_D(($=(zRUzd;yYZo#VB?F4M#cDGLrmmFeZW`}P1Kqg@11TUVti32Ip4kK
z-gD3S=6rYNjZO5)yU6k}$C)+cdEKKKx#wN9c+taemp_8EQ%H2@E~60}Q)Pr}y=5TO
zN1;t{!<?hpF6$ND70s(m63L9BPoh-=eCtTV?}8UxkqW5x3h=el1Zz$SUW<g7tPf(P
zfs0xW8X_`mIR)5GvLJ~b_|El;!Kzq?kj%rUp8W;32cfXp9)df4Ca`!Ut4+3FWv2BS
z%^6;H$WA!oX-6)Ix}|?{GE%5;vdc%__l!k$!w=qS)~J^EC>F&GbL}FW<4n-w6FG0b
zs9pBSepv9$7>d-$00{ou+-^z{?UY6g!lOk}<py_XGCPvS$?3stGM&0_XiN;^1Qu49
z4Z}!cP)^{?hT%jyJ(^5p;AB%-?u()*GWQZrb;L3=AO-u}HsN~9^3mn+dg<fq{DHf~
zmDc$hh*tR^QaOL|NjBG6d=4=;OgprxvCFz$y69nENLvkxnRM8w7!}hHb5jeO;e8M;
zc?M232(WO>1Rs`%fZsO+hbyQuW{$n8Rr}4#g)#?^i5>7|={p{aVkB9t3a40T7Q&T0
zM7LP7Rn=;^q=b&z6cux^W)JP8MYiSJXqD}<1MWAr!HqJ%%_(dD<hts*$-trzf{F6R
zJXiOB;OZ*(u%7(A^!|^TJCP6OMF~ELmcch-oLxcqY0`leG~EY>bVuRxUau43PO>C=
zF#V=*GledAfA13Nfq1AA^}&0wDleN&WU~EZ>EZNb7AHwe8?lV90IGs5C7V{){OOs~
zca453`aj%(T%>Xf73MF+wobzr!RD9~u1T}-)xqMNqq<4Y576Q<3LO*%A=UH{%+|ii
zc2U<tVHje81_qD9**ah+$;z|DGT$RYqzL$)An<L*+_C+&T6Tbj+bJA}iQ0feEX2dq
zE2dCDVFU&OmGH}f8r>=4PUWP7bq4mY<;$x^Y2+A%rznh5NKr^rP&rM|*+~i*K8o$}
zb854O6WRXBOakL+vhy6V%+EVnvblz4yDl(AkL{>QT}oO+)4i%hw_7W`BEM4{8j|nD
zudR1<XNi9yw{~RfZ^?L?hfx*BHdu>}p)Lr;j-%&cE;g=vf$T2b>R8hAyE%~13i!NR
zME&qvx1Stx#}D%-XjuaVnZgjH;`Qi7SdE8u=gGoy?q2*7V#H#2X}lSA!)N2OW%U1`
zUKUJ+!nDb1Gccu$X?=Vi=2Cw1%Vdg(WrA=kHC7xzPoRaCZ4Di-_dFQiYW`96x5H4M
PUNrxtVUd7q$eBL?Uc9b!

diff --git a/backend/tests/__pycache__/test_calendar.cpython-312-pytest-8.3.5.pyc b/backend/tests/__pycache__/test_calendar.cpython-312-pytest-8.3.5.pyc
index c04a8ee0a98c1cbd19f43ec9214f34f9f85a9818..c5e604174324fda528fd25c3dc08263944b1feda 100644
GIT binary patch
literal 52694
zcmeHweQX>@mfsB791drO^UY6D<cQSQNHRt0!?N{F$zJ(uWoK9R+S;|b6ni9-rbuqj
zXl=?px7^!JB4q=tjr&7#&Wq*doLI_g6J4@NjKd*Of<v%C{+ZU07-FEsU64xv1BVL_
zIxGSsf8_V7x~hAI&6$xz+tQkinW|USud1u7s_Rv~_v+PuZ*KOvaGhB1ee?efxm^E~
z0^;(Rz}?$!m+Oj4b*b(N*J(HN>(1AY*128hmD3Gwe#dj#gFAH-jpx0my)3SNqUpTv
zw2#5cg#Uctbb!GP6V2zFPdA?ro({6GXCibyd^*hF#)-)J=;<hfy%VwX@zZg@-D=a1
z-KSerU&^QYRrgs%4g6R+-KsXH0y55{1`*dL!-^V0xV;P~jJS@nxCr7p%i^MlTUQnr
zLtIx`TpV%h%i>xP*IgFZinyM#xHiNk%HrA)x1lVq1981&ah-_kD~nr)xQ%6TU5MLM
z7PlU8n`hj~o=>TPPbS?(PdYP_xsV3rJC#ajj!%rGCNl^%elwL$k4;S`>xy1=B$LXF
zolg~;$W>DlnGwQ2mzqpzBbh0UQa2wTnMh5lBihs7=NTwxN8U<})`=bkpE^}N{&x?v
zPL+YnuW>t;8TU)m&or2TOLyIH|I$oz5s}%td(OdKmP37}QRF`E6_DktbvNq86K$C6
zv$3!U5~bDa#+ys;l-#Yabl3KT;L3TZ%7+c#bR`>3UUwH2bz~;}DOD*Nz&m+n`0Xi8
zO(z?Q4VkgbM5^dlQ|VD{Y&wH>EH<E_wM?-djZ|zLnV1+x;-pujMk#tOWJV{a-qxr#
zG<v<FH;q<IO^&9DN+$JArr0!=o;o|Fogc{*8_!HlO{7L9lS(nd@*JKzdp4cQP=@JZ
z2>F*p_&5&hKVG^?P+Gx561YCwwe!uX^QoPq>h#XhDK)k8>qE~D?L0Fw`W8@kX3!(k
z%pD#zyI248Off#HrO+jZQ`FUlr$=Tcrbbk)2U!O2Pfx*_b=`?{T<LkgCm-qk=(XIQ
zr{_0)&4_$$_PINuwx9ms@(=Q%#79rw+&SNO%m^KuedeztEmzjRzy6wgKC<mj+qx?=
z@6Y_vyNi)^g~%o&vMC?gvKVSBgf<wV4f#;tomktIgYO^wqr-pa_XIpkE>DB!E*^<$
z9A#fm(W9j@7qrPy*}-v>s+M(r9i9D(%j&wK>tx-!Yn(93F4e8OZ`A$L{6w;K=weiP
zWmmR7BgSl(Q&-L^dcCf^wH2RDgWiz-UB)jm7^gZbyVQEU;jCL_Y0lRD(tMuUkO>LI
z@vwj_U%bipUFjBE{!t4<Kzg0{tTa1jT->*O3v<$q=Ub(A!j&JZ>Z!S;9kx6jN@~@r
zEU`U>Ln)T0K*>F}r#Ph16_LBz_@QzUEt&PGUbRX0jJa8;G1DgM#FkULh_igXQRF22
zKXj|Ucih=}{2Q{$j4$cG*iR#Uf_+3|ljjm6lL_`ECEgy(yg79tlNh;>c@tmO*ysq2
z9Q~igcaBVt?G#_&PKKPO@n<|eHF@3rS>2&S*WDN2*tB(eW>+%pd)EXKhY|!0B-8zz
z$PCjL?#m_)@f(i|TmUBS9^gK6>eNfadj<xFUp_hX@~LND{Km7VpMJ`hEqb+7dU|Ry
zozmzlxvmuJkvBQJ$k{{A<DUgb(m=?t2S1TaQ{)pTlg(^!C@Rxa=}ggYD-6r3*y8xe
zqVMSR42?j;BU&*+1JJ~<mYUW^r_N80XsKcVw};PM7@Nq9O{R;Ui78;Di|xZ{)Zv86
zP>0V=Or05-7@iy<;yIiiIh&#!ioqdPN>uLCnl_~sW5axG9ZtP7Jux!LsvTqV2E1pn
zQH*cfDCDPy@^>7x2lm<nyLo`;xz8SWGEHQT241?fZpyNoy<^FcdSQ~fz?3$2F{Nt9
zfz*M2`ai;%b^Ud)Hy_+Mdtx!v^3!)Oznfb(_(|iXck`j6v(GI0V+DVY;qS>QM?QMI
z(09b>I|49=2*Ca$1%-YKB8CU0YbZx9J;6hH3!G=z5{Uymf0i3i@hAooYM=QKdjiC3
z36#B9r=BU9kjOFl*BH(0W3tnPM0bfV>N^;VvvnA8<@oM2BI_=U)N)M5<IPL2|D`#~
zV@y_5H&t!6A=4!8i%~S|(cR;6yc2g_m}jf?7?~UX*!8ozF}Loy(IE3{)Ek{f^Q<=`
zClpTOcD70P>P?I`_;ep=Lrgqv++nOzJ-QFHp^?(qXoJ@pp~fA?CGl2_Hdy(0iYHmV
zHG+XQSeRWFhJY+gjIiD+xL(nEYE#W6?XczPP*ST_Mc$e{g+qy#r$EV@Y)^4Wqc@4%
zRi8;4{8$MEbiYX(0vVe5u*;TH!i=(cdO+kPe9(qw&;>94KJ<dd@je^635u4>HtWr5
zkoDG}jujV!e0os#v7QssL+J_I^PPK62t6l6X{?@OOXKwRK~dH!cs_xrhCi%hG&8J5
z)TkadYsp`8E%`-G!Z&Lvh*}C|eW-<)tOX8zHESU*Yk@;w&01)YwZNgTW-YYJTHw%E
zuol#|Y!D+`^Y>j@8Vf(LjaN=%VY^OaVF#tS_pwmzteJ+{X{ZAY)0@R8SC!gIOwg=O
zb)7lNM$|5Ky&f?~*=Wt9Y*ai~_+per?KP|2W`C+1-?*G2Wn-wdn4~(ts#4P)R?|I{
z=00jVv1&DKU-MR;*GNp%bi(#_PV_M*>QCM9VLhXJQMFg?)1zjK#A|MmxX4NPqD2_p
zi-9|_WqDg<z)|3rNHxA)#8|$C<<y>N?>1_0YEhZXV^(Sb$(cxt+KgV(qK7VE?xK6E
zerp?bFTS-+l)~x(>gH8z*%ndis^5^rM9Xfj(y}3utGeZL`qsQui{t&Gek~uh>ip%E
zt`z>(_6AO49A7DHEn6u(?DcM~6dv|(|BG80w2Ti}y+c6gC1M>ALmTrEnO2b1M`T(-
zCMnG$^gYUcVe9pkN91jv(}>L1Yq6Q;<o1g@%6NGR!KO2Ldg%+JqmbmBy)ZE`(_ajX
zu+VU33jB4AXlt=~$Yk{}uG43Y$5LQ!X^HD~#l|;NBWg-ZYny?m(cpjGeet!`<nrwT
zm+$yDo*p_y3_gt*T#O;75ed<#$7zFbPHMz##<QdJ>_K7{at0!}g(xOie1jSdVkOK!
z@D#P3ltY9Z;_PZfbTt~MigjZuBqnuZlSx~qW0Q<)xEowU2v#y9*Xy*CgpB-mmt?({
z^A-0N8!v#@I6S7JXxqw)1{}@@1z_?vk#YZ+3Pz?v$*$M4+_h6ws8`^WJYpYz#6B=r
zJ!9#_<WvUFXf?U12_7R$>*sQivB_ce3<|x2a-?jL<V1zmG7DdoA4_FMR*zN4iiw-7
zjPTBQJys4P<Lvd49U8G7i++>QNKY>|OiY~{n=E=MKs-{$rqy;)n%(3OqpTQa+*w;!
z(e~24$I018&J*N3NzQ(94v=$@9M*4N0#t1H-i4GlqY;y>=s63PEj|3~n3m3H-y%%v
zV98ePDT0aXs=WrM=$!_qm1JtgCRWg4Ej_J$jcy+zhxOOP1RWvgC^<vq93$r&aO_Ok
z0efJVohfVbZaKSlkNwW$_B17Tp3uIF{L`&)7%O*~!+E<M%Xz!zfS_GKQeqsXH$cJ)
zwr)#Lp=G<#vi;hze9O)so}7K^($+iS&O$h0gcEboxl<p%{)^XdK9dh0ntgUL)^+s_
zBerAqg*zrQ_^&uKc+uOv7)i{Xxc0)e!@1u5x$uF-=J-;hE4=QmO9^{spIP#`0&&43
z-cLN@{YKyZoU)(si1!=*{RM@73nGRGrE4hriAPK*c?+Cp*b<2Y$dnkvCaM4lwa<Kr
zJppn9_xh)YE+6{Ik=dsf{h{|7FCWS&JFcFXJ7IL~0Cee4u4{+k-%(KLw_rx_P@X~@
zyshj29*6BNP$<`C!{41#o|xNm?J=YG2|zi7d!I1;cq{rXh!`Hsvml3W1MW4^c#OpP
ztIw^x4VMq(l&x2{%x(IhAHbypSNjeB)`CL61s>*sJOwy-8wvV3Xm^1@HPCb!GJ%1s
z=jO(Y?g2oTj^w%r4F5nuq2GcT!9#fpaqzY>06Y%cU7#S>oYHn_&wG0=9V{qq_$}}t
z59BGpLFoejJu?os1t@O=K(s9FrmO1D&wX$%r);`(<mx%Yzp0?mZ-Iw-AWs1fN*4*P
zs`9n~=Mj5O;z$4)EO}h9mMdG|-}>R9d^A~z4j9paU#~9=4jF?(w@&?L<9|7A48E9;
zzEp_5VnkobM_-+NezChZr}Uy()SSP!pwMrDhj~D{2F3DF-U8>9UMiNEQUX9;^tTrL
z-K@7J=Qe)4<riCWN)nxQZj0eh78Lp|m=QcAT|-IIlL#Ykf%6PmB5?p&&TW*a0tD*Z
zmNHBPkr^vgm*MY1znN>i)@UTC2jvh>lyo5;WA7$_4Rj`yi~11tD-)b&>3KBuv4le(
z1CEx!Q0XktSD8Q`%VQ}H0;+kbQey?;eYcZX30f?Qz;+TBW$X1iy`C{UATEM%Mhc3?
zNl~NhQtNaDQ)`ySHnmnVQY&R#ih``9VqwjMGgkgY6w5AMz7LkV7N&#X+``0CSE+(4
z86FVv*ILpJTb>RjwQ5x?qamEBSmNa=P;#4KZrtfDZ7K(*aHc_RRK0q`7#G}oGA*JC
zZBHk%U3TdnQBL85{n7;1OCA17wtl85>ASd{P4>^FG7veR;}iV!N>Y0^yJxd@Es1BX
zJiAT?iuK6SnsI4+2*1WjR<e;#m?}<&(j;j$rzm`4(#0kwcq~`qNe`EZoZkUDO{~(?
zGiO~iySRAyVy<%_9~yk<#mvqk=0*R*BVr~IvQ#KqNzAOM4G{HOV&+C6W_G)*o=i$A
zGN;BB1lFZFHQuo2B*#prv9V0#?#(t;6}fwz#!!e*g~%Q32~*_mx4i{aOXXVxD!zr^
z6uSrPZ-EqY)Ix_fFSX>oZv^BMAV_r@g|oqo9LJo-8ZhgEdWcbiupR~_kR!{u!+4@L
z>tRp=5=q#Zo}mnJTG=)3APy*@1Xlh|Yz`?7041<6Nu#9fvP29RPeWC3rMOoO*Id#L
zTb>RjwQ5z2te^xHOT0V<N*=D9Mz`3t5t9-?{H(@oq7hnHvdflJuZXjJ-AObO2NfUz
zbeO~=<C`pO0g0B&#xjykuS?-THm(x0H*WTy7QLm0{?mf~(?V%%Gl|w!YZY3Yv#aJ-
zS(XB=(yF%ATq1ivb?7HnZB^~jvR+YwHd|{t^?oT<se)(qpZ3qG|4<)lK`)4@bu<X5
z9pq+P!NlcISZ~$CY<!99aVT?G--z@05=Z~&q%>Clu%&UTi&oLrRq(<BPl_4an3%E6
zoK;0KwSG$xk(2N-tD<^n#Xp`6qb}-8>Z0*0T^GDxaN%n!L_kuw$G=o^vn^=x7THUF
zWoyZmdr1$ax%XZI;pb{mE4jj``fW>0eA@}z+d1`TDbAC^*LEg+Z8!UAN6r1TL-bGK
zm-N#X*-zKnhIPe<scmNB$&IEMMy$-BDqJRqNhiSGO^hUn)7{T`$Y2||KBf6DU#XoS
z=oxaJr5kitqqX{{#2)yRcEMbCYtK=vDTz5%fgx{Gakkj<mGrH54Gavw_<SWH3`76}
z^hAg;xMTx>rQyAmZb3AYEO}h99(#fqC;Ym?<pCs7;W7^<oS_M?_5wLyC+9_S*bT;&
zf0cr-k#m}yZ<F&KILQ_!OVCmjah9BO<PbNT3lH8V$dVxVO$h?MVy)|1E<E@lW%Lr9
zWM`RhK%1aj=gA?70Lcp2Hk3gL?JD}FphvF_Gf_v7!&0IU;$bOQC`NgNT|ifC7K!){
zmx^m_R?XTJ6(~*4BstUMXyjzzq-n;#Oi~~t_{zMkd}S^K20uaK<CIH1dgT2I4F2BZ
z3U8bnn)_Zpl*CG2@%`iHfB1YZy!mF&trNd_;WvkK$4=)4zMVTWKKuN<^46VDU(LA4
zxpzll!#-ofzEA4%8x9ys_v~};1@E*b3ay)s*3EO;wf%+dhmGxrZw2$MFV4QW*s=9m
zx6uJ6eCwU~)@zY#L-~0B?AJ@nlzZWg-1Eb^W8cjUjO5<DK&ARV*tFqRVn{3(cPury
z!ku?r^-R{`waGg6lB{E|(YH6J>}9f!y@r2pL80G*h~Yu$8p>Xhbr4G40_PdFMB)H4
zB>{(tDnLT*Gaq74fZS}djywL~rOZ#B%qbmL-Eb~FdDVUSa6#$7Z-EDSK)Qy~@lSX2
zP~HON?b}F{k+%gnPg(I;AY64zbO|6YVz|36?|W~b;a^8Gf_K2-?cp5Wb-A804ll(>
zZf?%M&SK$;cpf8hzL?yfH2mu!D4C0Y-1dt$06G8qxi-7Vghfc12|{)m31F63-k*ze
za2{DgvSCVIBw)%^sM5aJ2ctZkB~EloT#W#T(Q@~1K)4>3{S*%ovrDp{RXfAUTan=;
z7;s)Y!>KkV`8cUQlwFcd&{SI<madB$xFK0S7m;hl+<kZ_xqP&WP|6b1o4||<epq)S
zB-wL*-S5QA$_6rWPl*%T3VRa*dNW&;fZ+w!#(MG0affNU8rFkYx<)9CwJ1@e)?|I$
zfh{9yjtNPu{5OgxS-viJ5MZ%kVM_Le6DB6K(JHud_l6p)xuhMoJRM4E)v8!_fHhXJ
z#LH8l<gv<WEC!$&H(47YwMA{!L*_CmoFNGXyKFhpY^UtfC1XI87t5qJEae0E2hj`s
z<BydkK~S_@Hj<&aCA)OV7|2G|cBG7&{U@f!YUn>P^q&q&W9vVitJW(0qLkt-tG3Fr
z6lfLbXxCgKdp~vPCsu7$?a{JcQG#{0)^zIqlF?ZOPmVik*XPuKqUb*{^n!@V8e7j;
zV{x#?I1~gMG|0x6s2&At%=$*0$CoJjM>nOh`iCuzQ(ahWLMv}4Jc~izV`>Grs0nq0
z-eP`Bp_;!X$#4|C%>0&!Jr>1YhKR`;6Lrz})vb$rrj@<-Kr35op_S0+Zyj^5QA(F<
zjZ$*zU>i@qI7(T+Mk#IezD6lsCQXRz-mflom}vt8c(6n@hpQN;)Y`bf8m*_CxWHN#
zH$L@{<0HpU4z04a0Gwo<rPmJlIYbpbFikOXKF#%hen6NsI5=z7ze{&!$zg0xQdrjh
zkerpcvY(O$H+yEXy$T1G%B;}}P@{z#H!M`jmDPSkH};bAI63>sd4ilL$=Od%nJPCG
zGuc*|5v%=}68=Ltk`cSR7~nRDOvP^>Ss~(Z4LaOTELCCnh-Wf90b@kzHat?YQcD5O
zSZyz7tcp&eT|rV6|MdS+9!Ab8abb^LtILPBSLfJ*3mfmca^(FZ`Pjxntlx<B=VJrV
z6OVRY+4=s?e6;VQv77&3e)B#fx~~v9W<-wVBTvmfXDWCt=cg`qY`QjXgq|cFa`07`
z>yWSURe#U<s_0Oiy+7~ypeNt4?Z#`L49!1w*yuQ1Xn)pde>UI#d`@X0Lo|-e_{DHr
zu47v+w0*7jbUd6~d8t_K$VL7Jc*ze77g_R<R#KO&Y?a4BJy7JRdKj;PxWFOMfU=A1
z?2yW#Sfj&AOOvAwA74hQCp%f~$@+Dl?q?i~fF1yci^vtboUHXgfjIyU2KckO-{N4X
zzRWtA%0Yojyb<G&TKPM0NGzK+;3rv_36Z<yTbNk)`KsVrHemcUm$bu{r$b4tS`{q-
zUR=czFHeDz`zxohIL2zg<Zv~su(qQ&n_Qh>rccy~Ehne-hvW~5@`9@q0!N2zzy-4Y
znNTu(ac{|7btI9VPK}P89UHA|299ej&@;6Y<ValwCLsT;#mPwA&YBd^V^t=T#0S&f
zCP&Kj?@34fdZ@~r@euMZhRmIb!pvOJYwoL5E6)<s^x2k9_)N=c8%k$<!)Io&S+rEs
z{bxw~9{%aA&;+?(p}N?Gx7gZs<*oPM!Y;8}M{=*co_k|F_xfA8Qxmyk=X05N-+L?H
zszdA@>Mn%(j8I=bv}sN?Xi_Ki>$?VTZoS!=>pYkb9ePC7>?g50TB8}9X4vh--SA5F
z^Dl;iG%*SSb^8(uQv0}Urwb0_vPBo}iGoxchb;;cc*rP7z&7qDFkqBjHVV=#DM%2u
z)>emtge?k!`A3D>4AhH5=8OiL6m&0}aYXb8Y_wQZQ_6C!m%v;j!ep{YW6d~hX%ZH$
zfGlYsWT&e&Gm%yvs`e|1NgQc4W=dnCY8*=Q!un3EX1Xm^%58L;YCW8dphme>tuW+K
z915Ur1F~)>Z1uEq-L_Ghd#_tt-cD^`Nu}G(8i=bMPz#TnGneL?Yd}i*%4-0%5XlBm
z3+vcSISj>Q2gw)|lf$NBGWEA#*~-0gope!}d#@99{i^jhIkT_Y-y|mb+j`sEIkk$V
znA~mJAc?6xYC?~ht<qX^t4Ni7$5v^X2`4v{ZA)A>pEMN+xe1cWvq<d&eB9a}kh6uH
z${ft=HtQXxNf0QdY9CU{Z<6yeIj@kj5=)bte|VKpUL)r;Io~FSDVoObV`h3!e9f2e
zsH!YYnx1NZOb&ZB#?d`Y!6W1xC1;47W8^S4?j%7>7xa4sF%8gZg3{zLT~Hd1%Vw=2
z=(t7GoV^Nd&^aWh(xj)bcK?zmu8Y2&Iq%hrIq$YI>l2TlIwol;DwkmrW5cEWSKAH$
zhJr%B1s>*sJOwx?T_m{LE^iA^-UfhFl=<gl*MeDf_(JR?z<h$1K*w|5X8V898^7H7
zzgovEH%nbV6xF=2E#E`D9MXal8*6WP<h-1$H<Og7?1J@X685mmaocFAO}5`<q}HF)
zCQ|T|$o3Yj=9O4)ZnAB3aoEOF!r8I%cc815O=i$D3$s(af#qA6pl3~0aOGSJJRqr8
z=%guVD`|%<Plu9PwJInZI6D<fygUU;?yH=}TBoRfb6yVH&Dfl4S#Mr1>cp0l(~3vV
zv_yHq*`Y0=ruF8TU@~;Ew~VthIW_rM>YcGPj`GNG?hfC4^6Ah2k=w<It;NfcWEXVx
z+pD>`WY55!;gc_(8vfdgFQ2Sv=qnj^q_?H4pJLQB*Kf<TRypGJ=E|I)VhA+`EBw61
zz^$pm`k|GOpqk9*q?4P}m(~qT(g`bGu=9UmQq?|2vVVhr+VcQhpT*X7vo8wC87N=~
z3h_DbV67zZAniyvX!IS-DF@k(goB13=5y$`AYyn>x`uL)b|er=-U8<twnX9pGNo+@
zCaM4lwa<KrJptk?jOlkCR1RR5E|?!%nP~w97WmN={JKwT{vNE(xHbPq%d~(Pk6<gY
zk~RNE)2x8kX3d}YG!<6b<|^A)wcLuMNd)WE0O(ws<tEby&N2ueqg!<DK!BIj#!n)1
z1~k1cyI{_svP7cXoIy4I0GTr&yVCaU=&Q$1lB>_E>oAFl(Z3o$Npj=WM~$B(wL?|G
zPl~9-PqHjM*D8^aTD~^AMVt-OoB>vlk#f3)krEr{*k;KsX*=C=RFa`JRQba3Pbh9h
z)tBV`NE|+*ENj$P!2_Nm^bK%|4YUDpuox73|Ja7WK_0!UEE<~z<(9y~VzYfW;2^g;
zDA$2D%w46JyQ)yF7)n(_wRoTs?ZWQWGh?cX-JE}l#D9)|TIaN@YjdG%m(jKB=B|9#
z<JcQE`}C#5cbp<2$&YpwA{&gzhPmFk)W?&*n7lcek32p5++w`@>K_=i`EEr?##_19
zCvvCG=Z;P0F6bo5$T~_gYI%l@WZD;vU%z%F*LxrrKDgqd@zJ4}Z#*c)RM5a>*Ozpj
zO?3+BC4*aIZb-(RsTbBqM6>j!8$P+#f?UFpX8EhoES$Px@?Amos!GxQ*dOAilUnS2
zSG9T7c!yG2QI%#%Owg?6D!fCvdr1w}TvEGC++pov)vBNY_a#LSRw=n$A*msAtrb*p
z3XC2!xt^h#xt@~xiSlBtMSDd2_%~+*Gtp$sJVouoG;9Uea*A3N#wX37K5KrNa)a9F
zDLTKA(=@X6vuaZGV#D-EX7tVbl%r#LCaD@{mzHjVFDFnzRyiqoLSse7WtwWBoGRH#
zl9?G7%9ogn`wvJtkAM2{2Ut$6NP21%qA#|tzxsn*%g))8L}2vGdair-&1Y`z&vhNX
z^~NPVA3F7jiqy|yy71+))Et&m_os#>8ENP&=CyV>n#-kI?6tMS(c}>%81idA9L+oq
ztyv9WbFoK_kf1W)QllT%V<Vm0$zB^Q!!^rAwb<kxv@QQ3NUwUBpOYB0oE=P)eResi
z1)7KXVf#i2JJ_y#;lMf-OpO{2^OJ-WQxvNtU7}2uZ`seo6r~#OT7Pv_J<Kmu@i0Fq
zXPA8!!g6!#Gi`0Hc5IbLr>(86l*T4DuiUb7OE7HZRb=wqL%)(tn5z9sVxnKQsX|F1
z#*`F<IQ+p6Ns44~)S#)LfC;Aw`A|>%ctpN!*s7<v)$;{}Z;|S@i_+YC-B$U!<N`ol
zFSiYMt37ht@Pi+Z7{SyyisKQ(YJ#b0P%Uuit62+-20(cy$f*Hp=BwBjHkf_EqjKo0
zSqr^pEjU|Lq|vlh8W*U3coK~geU#?jM+tS~s*S)>9jWRFEHN<xZ>%y-Np&N2lc~5A
zS2wF$q&it!&BxibiKV;n&G{T3r&?jJf4dlYEkCnEz#`T7P7!1I7M7EROioQ@`avt5
zfCQb(w&NhXsNSweYdpvfN2#Ihla#`0dv)8YwQ0L3b=5YNm}t{&RoYYv0MzX!?OAQ=
z>!n&8-zDnT@*#E;w73;>T>h2Seni<0O7jTSw44`LX%Xuyd+c-i%D7TOD_Uib)fxg~
zt-|L9_tPr<Ypr5y--M`D%hy*L`>a->E!SliYZX3gxt~_qxz;KV)+#v8Z{XrarogkD
zsa&HDEmN9(9u3RYMIi=qEjvt)iA(<-?p%xucC(sFk7{GnnX#$Kes)4$vYu<ql0FoR
z;Jj!{9rx#SgK49Flb{+DZCO^N5l~s>R(qXLhROLZIV0qZlB2>&x-agopqXTQ56ccM
zPNPGzofVS7T<@?tGE<tQ%TX1nhe|?(#>PT_lY%u0hPheUUsH-7k;58ej381N)W*qq
ziyY#H^Ro+Ssfg3_YURAIs2I#z>)%thj1T_}f~xBYvsOsc{I#4nFT<Qk&ySibVbTj-
z;ZKnIf8d|q2(u7hjIOZ1v*6!s_&4X2p&OeE+lGv7LjZG#0PG(sDD+zpF+3<;Lm8s8
zya*+4f%6PoB5{D{FHrF)1`_Hv^C9*G$jxE<9qh?QH!QY2w%FEvb;f8*=3>deYgAf2
zvnQ7VWN8+%gcUWM7n|47?)I)n%QnInqvX8%>d9;SjIP}|Wj7t(x7+Z;Y%Tp3%m^OJ
zQ;37NmEFMOu-yd;6`3F2cVw>r=6a(Sr`R1~hxZ*Z{OBz7TM#ikm}fx_-v-=kqVX7s
zLpd|`>3vrxuf1k;@5?Fs=ukXZ!QEF-=(k`-@KByY9K5aU10IL%E>M0SRK2SmiTA28
z`1O4BWFdOWh@Q$vU-`U`!{aB<?VAf;d)r7*GqH2#O4^CX*xLfIffmDYbJS4OcqTZ{
z((`C)$izwwiG%oh4L{ELJ3cpg^L1nMaX>ijFSq%);Xhtb=(iwZcu=~Aa-1GVD0vH<
zXV^UYHsH->E;1QMw;cg^0DZp0fO?E_fc5zUh9B9|Z$ZTHpmYu806m$0c?+Cp*gX0+
z;9e6&CIbK*Edgrbtl(ewrK`4(f<JAog~|z?c;%$%-(V{Gd!TMFWIK&enWXs`F3hyO
zj;j7mmWsKfs=tp+<}ywZls2J$LUSs1IjZ_MVe2iaOd^eK4ePI2f!?mb?;r)Tq=w)Y
zSS4{%^_S~Xa0~oZaIHhl12vb_uDI_|Qma-af5V=_p~TBmpyYunCAWC&LS-_*R3-za
z`bo28I?k4pgSw1mFjtfpyem?fr1Jp%SszoG>?>O-;E-r%U4QMLql@tQB+dHEwf>)_
zIJR#16M|OOnRM38XH(hTl#)8P_7OQX&V`e~DwEoONtszQ)|F<q=^*grY?J|fO1h5O
zUnrT9S~~cDhD4-(pN>6%(g@SRU#9s%vo&XJ{7TccM@PNze?RCLyrz(k&R2Trjtcpv
zYGd<?s*TGO^Yvz%4grjzJE}Q`EQLHLtpJ>h6*5l(qpj4{j0Hia13KfUG&VX@yTZF&
z+rViwluGoVGnV`~QCfc#(j_Jvtt;b7&4hbU$oyi|9IGj4N+aknp08ZQk{Tw=N$+HJ
zj1G`|gbW5nvf-IXGJ3I`&fJG?KJhXxMg+6z%uM2CD8wgraY|GR>8VLw|3N5G+(wD6
zqqN$;B8TKO+6{7kMb5t_r))1a?c&mIl2ZenB2G>zo#LStsg<R5Pa5|vM6Lb_r&dl1
z_7AnzJ&0tkXIHLex73d;=V?d<{NE2Exn{i%MorhO*Wq)e3j}G+dL8P)M!+|+iYaj{
z0&ZLQlv}UsXA2)SHIZ5kz55SPfYnp4_poB6Y{G#(lz)v2BJH06d1Z5Qd{;4l0zWpr
z)Rx?TM(UkJBfe}~a@ot-T+g1HuiktvxBf^zbo3EbeE+xpHN|(vY$An;-`RwlG><8}
zOhsah_a%zNUfcKXz?h*47F{(c5;uwwp{i<%#Kf5EwUydQ=~yzRV1dF~E>tdQhb>Ph
z))8?d*d<GBPvKCC%(4_Hd6Vra4ry$5C4ADZ1T0I~>`IWRl3li(5@wXmtEx!cSV@ss
zD856TiZ&{hT^XsMF6v@DS%!k3g*8sxr?RU|o$9f&+X#wYlnp|iitQ?|QJpHp)TwY9
zSjnF9NX<RLuBPtL6D(?0wa?lYt`S>%IkmjCaE+SkRADuy#`UntW{lLVA}1BIMeB$y
z52!`Alj0jJ+b!F)aHCc3s)Ukr)h!DH%i9k-H!*75<4Dt1Hqx}OTB}KQwW_TqG4Z{&
zS827ik*4~Vg@<blVPcx98zMT`7}B{mhB%HPBp4{Ws*E8xf3NBoLUZb}>%PX2b!B5n
z*Q$*n(wb-0F+^fw4Cz`MLogeNiKZP-2*~oQ%~qg9x878uTfRbEZ6!J<RkfE<R&H{V
ztt|flL1>?Sr-Js`eVo-!mam47zj*T0(<e`vXSOHZ#kw(4bc@oX25>g}SUN!<S;QpC
zUNJ!SsDyFz<hsvMy={!@poyGua$X|mEpq-7oMOy8jotnd+`2mn50iFQ>}!;0#XaUL
z$pg7w;&&<S6gl4`M<a&`H~%Z3bY)g7*JUeNX$xJpzd-5(w8;K7gkWpBY~`lpq01I)
zxw7^BtsfrBN0Wu<fDs+|_4>l#kTE!P>kHJ^p*{FuLzMHFU$}NS*SkL#K0roZ);k^4
zeu&JX9Wwe3<&;CrEZQN%5A87eEr=K%l&+y1BC}|OlDEKlhAojefK162nu#hvLhUmj
zVo!kF?zKKUyK_qSr2|(tLQSWj&~Jf<c|f`b#qv<z0_T<Ps~aVb1b~ck#5=F-e}8|a
z8jW|OM&q8@7nZ!PKzqU8XZZVa%F&O$U)XZg*m4wL4iSL;M+*x57DNmWO4m@1UV@o8
zLdjd;Jj0eq9N_s2R6L4-gu2Cih&=(~wFJIkXWgPT<DoXa6jIeLyVi_{iV9h-AM|@*
zJd{g%t!YygjUqO`Ie{ACC&AE6=K=JHXlh_%o6}UFX14ji0CJiPMU@Cw?NZeeQf}!0
z{WqlfHWBkxvBPQ78)wa*5`yD%1>yyNkKym(b}}CgJDj&0ACMouruKvWR(d(B{j8ww
z1KZ8gWXPHwPP<`;H9MT>RyOX%#?oF!AzgASZJZjL9ZqoYNfoE;%4`)8B9-H|X^Ay1
zH&BaocrsI2mgyZfR7(ziObut_dQ6XlgAe7ks;9=lyaH6uqLjj>dKRnMZk=7BtlKKF
zfON^70UyVb4<*EX%eOGW$B9+Jjf=Wa<I)&M3yi9?m>m2EKb<2;wK(p?YY*b|6o)qA
zauddbhiRDf-`d{5K^lhBddM1YTN&5$VXt>7WdXN-wayEY#to|W5Q)j81(kb~CF2pQ
z<e#7Q-40X5&zkt%hl-zMcGWTkbll@<G0x85v(iWl54#?{1gFS3OU^lRtUZ_{USv$A
z`<*$i$f^1kaxOWSh01duT7it?v?8PGyOe1ukE;4P(p;;(WJYW03H}B-j?;|x15CES
zo_gf;1Xp0(NaessVjd0a_+Xek6pS$2Ca!IBn?Bz9i>*0j8<<0LTMhrVf<nIqGlGYt
zYbe`@MMM~R3!G=j5{U!Ia&D7E6(CUOww7Tch-k)x!IAZ}AkZ$tNp2~6&s-RrfJRrE
zodjR(7@nS??Hm0gX($Wxo$0B!wXsa9*d(KhjT(<*OU0sxCn+|b9RX8)dW>yJDMrmu
zKV>&MF@~csGzHHr2Gif07?~J-Gj)EZe@Z*AHBf0h<Y1xWDmD{-y8q48#B@qavyrIS
zc795|Fp*04kB&^>6!{UY9}%gEG~;#`gFMCP)Z|%$G#}-~MyullT_EQja(+V26>@$?
z&Kx-(lk=zKkU3NB6LS8HoIfXrbi1^_Acxkh8hz&1U91|}GWRp@L0+=M+5&E20C1)M
z2JTY5+wJ~Km+Qx_A2t8h)%jaj^0%(uzjST=U#^Y6bq)U3)pOU=<n}CeD(<81Yx|d6
z<bSden~C8s1=hI-=e8`l;N8SMc(-s1-qPWE!tY#ik^hMTt{>t1y4}gS#w8cLo45z>
z7H+{?I_BPjtlE}b@NRBn-mUmu3N5|r_EBDV4EdknIpqHa4<di5J>uRx_pK!tyqn|9
zyLIX=g_bt^-G}DhUUI?v#K*i_nY$EP>WuR{@aPUax&v=%z>hq6B0P(wI_l=h@T|^0
z_d$AJc=W#T=zZZWJ?CylmM4~6@NS-F-mRzZQfR5WmEVC!ci_<-cuRZe1?XYy#qcol
z>0$iE*1Lz?^fdD6apcqU$X`0@4)AQ@QMT|XTX;*|o$l>a6nJz8-mRzpo;=nY{y(#|
ByQTmD

literal 4905
zcmds5&2JmW72hS7UrX^zpSIM>l;x^oTk}JdEX9p%t4ZLtPJCzs6c7p!YtBj}z5M9x
zDzW6<S}g+9LJByyD5#6-Xu&PeWB!B!y^xk&3EKn>&{J+Kl#@<<Z<fnl(L}66ffijX
z-@Nzc&70Zx=HoZ~Ya}9a@D#?l(yX83{)vM9fXtrb3KSo6gd@Ddt@5n&RJ}zH&sBw0
zACEO2#a|7q1{m*Eg4NJ!i1C6VR>P}d;C*s{_~j4@5Pr>1f*%O013kJB=pvhZO8gSL
zy`ADs@m*Qf-cZVNO#><LQ(0BZ^%_>J%QcxwTAiw<zsL+s54mIdsjO|#TG7J>Zjk^K
zUickrKtJX*-ma^-tvX7bf7+@4In){+!|Spa?3PZc^SY;E2g*@%y7wve36CM@0^!di
z=L62eIKR$SLah1}AzmU7AMro-K$wEM?|0nqJ!PJFbbp!uW9Vt8e<Pp=DlBcM8goXF
zh(<^c>Y=-{(3_}>>YucTZBvQboKuppF0S!p0Nbp2Z2u&pC2X6@pv^hu(+>L{r;fP%
z4?7k%rw8n4Qn%%(UGJ2RWsQgaol*C*4ccB`VHdLPNc6FH3$kQ{NsPqxaG7V)fQHFn
zkIU1zt#e9!!1iR9zlLRSk2iww!<Yvu-*l{P&W;mFu$)JT06B^1BFj!xkE)8R*Z$dw
zLUsnRjguW$n|`s0*du&}ooL&Up~oH;jTjjwBYLb8oA{Yy6SqCtWhXWfh)vWGH@Vd4
zZF4{>7Gd=kwEA7SW=5#IMrE~Ri6_GusZq`pB}J|giDu;YV7;p+Z1E@GLg8e1E;~1W
zIh(&cmwh+4a5bBScXi)m`n0m9$fl@j64eS?xhk8Hl?|;_r{yh4gT3M;@B>+*GEMG#
zO`)RJYi6J%OGJi!BT%f@@0Mlt%fCRv_W2Xf^71~vmH*akV{<O0iuXHAayf}yHl?Pa
z7i~i=6zfD5jpVXbv5->DAbd=tUQ=c0#S6Ab=8!C$L?u;~sm6RPf+;8$X&ib?@mquF
zIG0jwSMw<~<w1)alKCxn+bdSvE2$XuL2ENyq_U*Rg$?j-`jq;5xn>4Ys7Vk6p;1>g
zGwd3$Dc)#oYOtLaBx)uK5NxGD<pwR*s|^T{IRMp#I~!$1E7xF8Rq9}&n&%2?slK5Q
zW?EQR>USiiz<LN3RB25{4`y_QeIi8rElTUu94f5UX;sn+^1X&4)mR?r2!3*c;#Ns<
zM>YjE^2A21B&j8t6dDky_v@6HUaB@IZf`V<<Qr%l#?e`k%(;bmw~)64tMe;vVaaWl
zbqjNDvjw-XsNyD=?0rt=GNpP|&J;-_gA*b1&dQHgGIyjR%xjXt0IQ5*gxPdXH#W@#
z3w$SIY<klh;2eXY-h%UHoBM2X_Hc5(H97z1pBzjswS<Z7H=E+bXX5aoINlP+cjtDs
zKNz1F&GhvH@y7NWM?<3@{jxPQv;Fqb@YrswH9Wih&KI$fNB4K`Hz#smj7%MkXaD8%
zM#XlJ8=Ts^`Q+^<*P0ivHsjwvN+kC#H{;oMgo{rcbAh;j`-kl~H!yq{zR(I^XbLlX
zc_7X3g}r<$JaZ`E`=X<;q%Lg<GY^+6>A+#1Gh<8r4Bd6@y9`(#g@+z3?<{|KeRr`H
zo^A^HJsn6hJiVv4!q5cY7afHq9Wcq_pP{|Qy6JNve+)6@PM!aF&a(4A4GZW0;r!=0
zKo7V!dLBRzFQW#ri$f4K4D>Vs5l}<;CDahJ?JBrc^*n$V5H&=4P(xH3vJESJuz-CU
zGSuMs?{|i|QG;W7&i3w<r%*#w`+8dkHGI9DgBoI8)DR~L7iyTWN8suax2c}z45(qU
zrwNEg#KY+kJ6c9ao3d^6?#PTN88l*gRFB<#6I#Ue_(!}t=^9PHtPSaL$l5Tra?k`B
zIdj&|yZrabnwGT3Y2yIuZqX-uFSh{fH$wi`=aGZ3&Nz=;aqANWJ!;466?QS(j*LF`
zGsKo4W8|Ek=peR1?X2^1(Dr1PF2oi>)CRw}5d-9Q{<iBR#?6BwGN%YuDSkc0>jA}e
zPjShoJQQaJ9YccON)h=|92YysDWYVG6PjK`f)_Bj&GFX&3`q!v03lhx3m6A@&0-bc
zEUOBbPF3Dk0n<?dno1+g6OGxFXuzAi#-LXY@SEv{6FKFlxajCK5JXvdnnV$Y1E^^;
zm)(lF5L*tAAXCo)c0t@lXOMgw3EZ(bngU{a*JX`<2gUCq`5uzXNYY3$NU}(BNam0r
z8ltdtxzvyYiD(|R^GFtuoW?-(3hEY-EFpOf$yFq;194-T4)n1;<2859k_GcDgp|vj
zlJY91u@~-uOs}K=7=tkIp#=+`)7zlMJga~IPXU;=pYw%(bL&^Pn(>)4LKt8CD=y&k
zw+FfS=%cNjt>$<Z0Zu=><KyDv$DEhpo#1}~@5II)89PQ(nBFlyd;rC7^A8^!AmEzb
zn*xG>YYLFip@8q-Itokb(iS$eqyvZTRzDM_AKvR$+w61D8kQCf9&}mgvdiyHS!@r5
zfzcI6aw=*D?aKk1+UEI!b)86C(+t3Wn#%9fvL>6MuF4E_bZlXmgKHApNE+od&L!(#
z8;Z!xjH<s-B&ArAtD9-KI#B$h!;CO6oi52r1Fmb<>bn6IZ07BAY+P(^o&;a7*2#t<
zU!y;RdYF!!dJ{<7%k%s{IPL@P1(*7qyZAYGsqK&P^ShNc2gQ?hR(yKt7^U{b5&qKd
TkJ}s+Pj0f}Q{gL=SV#W`hll-J

diff --git a/backend/tests/__pycache__/test_main.cpython-312-pytest-8.3.5.pyc b/backend/tests/__pycache__/test_main.cpython-312-pytest-8.3.5.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..57e4dd2c4727316ddae87e21e1b71ec8ec51dbad
GIT binary patch
literal 2160
zcmds2&2QX96!+M(Uhg^|q-i7&64?Wd;sf5cNoXpuEm4I82YTX^i{<QiyWV)$){Fz$
z#g;0_p%I53n?n!f28#G2xFK;#nwFrE5J;SQs}xQ-^^M2gb*1oeW@Nw5-@G^T-i-b8
z^mJW;@$Hn+T}O)Yr%;Na=EB)65FRN+At+EbQO4E2)>e_y$D0)-J^H2&9yO@;jZFh=
znrC!Wg7@%dZHTPO3lZ$Dg?RllkHvQa-y6hSZ)dy>na86Fk_PYD9?(ZhqV&q%97fP#
zZcR~wdc{h|K@=rbiJEGOnrPe0py33wAL2>@=;?(t;Y3St2N5jhbksvEJ){!X3QRAn
zRiR0Kn5&;FY@rl?>UEURlJS~p89DP$$N_@<lT}}YRf|ge3r;I=M1QP}VE<`_REd#P
ze3WT=JXfrw6zNi7oA5+0A{G2AL~6SzRpG@@bJV*$K^Ic0s!F03)k-m`6Vpd&HNi<W
z>yVKc?8j2(i#udMho;1w|6zx4QO{BpF6wx-z>(?4SoV(0kl94fJ6ZeBovam+3SRCc
zbkj(y!<zNRXi?nRM%?upUC#~TZlm4x+S?6pK%&qe#P-N+x{=?M&KEyH&n<MWwptb%
ztz21-hSx1t|1uXEt%i`UTFhp#8}Bfu9TKmeHd@lLW-)G1k452td6vdCzzT9*khRf_
z%a}*wEXEChg7L;(uFFtd4YwiZ9g$$Q$O%H8^KX{XW8t8lE?bi|Kwt|~aqp?P@*>G9
z6<7MT^fzVto0iG7dtS`V(tddT!)O>o)f|`dIj8LgfkVBBw!?npQjbr8+u7RjgV-N1
zt_L9?7=P1Y-Eb!$8PvHKgj;Ul4BWoQYYuZeo`}F_HnIx%;ou`mL(1o!PDuN1?0CCT
z;11jvJRFNnS#>JDV$=|OFhxdLylZ7;wXCd2MFxDotgM$|xkpA@lbexqu3crKVvX@Q
zx0~It?={;bYKlfTKi&9bqq*g_x8d|OMTJ;KoxbZ2>}bg6vZ~3W<YecJUV(_>bHHlw
z(Z8?!F}v_^v_Cp{?__rQ{>Q(X^QY$GvAKAJm!7NuIWiZYtQ?z5r&v7CbA!~z^cXKa
zSeM$#M0}QkrTM7{H^z?zKtsldt^L*!w)b1#+y-{A``zWEcWjUz+y;JZ+NW4N&vS#+
z#`GA>kXs;5CgL*?ThjVe%o~dkQOafd3%1XoB8pY#MsbYj0vPyPjy!m_><%0Tn|fbR
zKZZjzHt}k1qw`{pE~oHI9T(1U<lCYL^50Cwzc}l__X=GS^1DFJjSu=E*$KQ`)CN`j
hi`m;iUTO%T-xXy~`Fi>{#d>LA)I8|@r2xw&zXF@L-ZcOK

literal 0
HcmV?d00001

diff --git a/backend/tests/__pycache__/test_nlp.cpython-312-pytest-8.3.5.pyc b/backend/tests/__pycache__/test_nlp.cpython-312-pytest-8.3.5.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..454d395395e4482b0f6a52a672697362a028cb34
GIT binary patch
literal 27018
zcmeHQeQ+Dcb-x1+#5V|l06!%XA|;E^2Srk%WHFK{$)qgV5@lP;sA6ry5Dy|j;e);d
zB@+fx#_=R_nkMeJQ>%&7QQA%-*UF5WW~Q3Xv}0RRnoc`Yz@$RXjXc&&KPK*9bmU1o
zn*P!E_P&<D5rAshjgy{;cW>XleY>}}d$+&0ANnV^+rhwb%VnFq(akXbiUIZD6z0x8
zmSJ9Fc!p;a%ot0~rlfh?#4<^4%)-i7>c;BeiYZ}D+Qw`|W=`0Xjxh(}xr8(68gmie
zl5i(IW1eLFSUm~XCA>-Rn3wR@gfHnI^Ap~dXh;Ue0?FW5kc91t#$?l2Q?hxinPp5&
ztZu4b&8mLp9ao%hLVoe!T`w_j$}BV1%DZDO-V<}2;rRNOxUn|mQ3hczgx64EAB5LZ
zVLyc1sc-{?JE(8~!XYXggz!2HpE2=`z<18F;ieBUC!=9jsuMHO%!~+}<3vo%Je-Kf
zQW*$YkH<tYo=$~Ll4UxY8K0EwN23$*@uTVSvvAqQM>DZZJQ>4?6R}iGh-T7)2-?BN
zh4eVYeK?&=MpOKgvFB#MuGCm67N^rGF$NLbM?pI}5j!4B@i9SiK0F!CD54XXk?2e&
zJtM}(m9itJ7NA}5yVGxGn8z3vYD7jUXDDe_E%N~;Ps>e|oTc>5l-xwgIZAG(<Q7WK
zQSv%UZlUB>N?u3FZIs+f$?cTfM#&wN+)l~0ItKUapyVz}-<e}_Y|fN3=eV3DSC_Nq
zY&m<*k#q9y*Ijv6&h^Lc*H}`sp#{BZk_-Fu7oLS`(Z`7Fd3Yb3f_lL+-#Goe`4n@W
zEt8*FMLxBPJhh5kSVewr6?t|Q`IlCazqpG0tE<SrZY-Z=Wcd%x=h?7lG~1C(^D~K<
z*po_3_e7`TJ=1c#jR<m!%{G=QM8&g_Xgs^FR4zu(#UkU-Y9mRxC1*pWDig7ctT7oE
z;XN^%-B7AAF2vxC5*d#s;585xBC&Ju9?Eu=su4pgbi{I7Gt>BXDz#OXBp*w}%GJ6{
zlgy;~bVQ5^=i=kB9wnP7%RW$16LX4cVz#nHC9}k0Wlbf&s2O%i^(D_ss*|6O<STm~
zlDD+{rJ!MXOAQ9)D+LY9QwkcEpX8*9NV03CAUUZUm7MgwutFWYZo+QKm4uH=M7b}?
zMnZ5?lAUmPTauTsXjQ36l8;D~L`kiY>NO=278M;O1G0`BP05BVl5Nx3_h^R5lT=ct
zZ$yqm-Hl|yIHKr=TME&~-L2au)5+MjaejK+c$$xGJG%ey{%xnD<7c75Z_B_pQY18j
z?Qwcm$uk7hx+e;oz@`U&;`{Ke`#JMpbIiZlJ%#$-d3)b7(`pI4_0%m4Z=APxFPkB}
zv}Feo^v~P3FIzxxd)Gc9=$p6qFIz#dT*vHsge9__^Y&fKc9hweJx68Pj(PjQvJ+(v
zX7Dhj=SG=J(<5=~QRdNPyXWnL%RZEOnW1BH++Fkb2bUXA=4bXkCd-Ik5M=>PkI0%(
z)`+s(9h;XL+n3gDS_<_pZP>Zg)sGbZ+BPq>Y((0&`J)!M&vC)ByoRX{eBJr00f_u7
zER+8w`3U3QC6P(dezxp?iy?TzFS-skvEOtZbeg~I8X2;D-!-z``XkrKM*H8pM%tY3
zI9wz3?spnpBj);dI$guNeDCzQhBr67Gw2%b2)<kA8g6KM*B=<Rw!Hg*4f!4$%6Hm8
z=iP^Fpnt8-263->Y+&bFqYZ3cYqx><YY*5UrE5JlNc7rH8>D~jAv<K{y45o5U3=YS
z1#8zEEW>Nst~Xo3=JgKCaCgh~^;WQaeY0hFN7MCQE7-rj%QC_QukW!!DmToQ5m&<v
zn-$W!QEwS(_T30rA;lYQmXY=KH$qlO_r^xcNU!_G7AvHFW4mQ!kMqWZR>;GRA<IFV
z{U@9ia`F?W<zT@26R#EWBboTqQr$S|v5qS}7HAy|V}T#^3z<7#2SWD@r)Vv>hDVN3
zdr42h)x0TB_4KAx)FG=X`Z?1SzOYJ;ocT>m6OKFw{Va}Wv6BjC6Q0kQk27KOsN{-{
zW9JyY4AAT)w-7rc#KcKC80G{!sA_Le==2JbC6S(prz9H&Qc>t{TZGM^By2%Vj;PqC
zqoQ~|E%1_^C`SZwTEsFSuOA^yY)0fu7(v(xlCAI)M}W*Rw}Ksu!Og|s=F11>gWJA5
zIyZcw`<AzL(HkmyLzn!QPW<5M?>+t2p?UA#xx-7&`d3;mK2-E=x_tPpbaBhUg7aX3
zJ9q~SG2_bpBhNVDN1nk2+sbDEy-=-x`4nj6&3P_w;n{p0Z{p3lx;V>oyybOs&cxSY
z$wl;jy%l7nG<8{ynZi3QId~gy=N&ojJIr@YV9%Me0Cl15EABUyXPUR>tVYi<Z_7ZA
z<ztHAQ8gr=^LFexp9OrHcjO%6FEjY2C&v`Nn@bMflXIM5`Ff0V#-ygrdow;&amuf9
z`dP(^=NK_a*$?O%Dwor+g+OaIs@L_iu9;#XeLdGkx*9U!eKqH_g|caoQ@vEx_9oCV
z402H(19I-8QZa~=)36iof1S%hJIy=!20oB;##s__Ww26_gR<1B%Jg$iLr-dcUj%Q%
z^K9M*KL^wT>(m-uTjlaL6O*&4&oA$Qx@?^=<=vSMRU_xV5>zebJvq-*NWG$;^Yvh*
zUbEr_oaQAp&YrWs!ioo}oEz6UJJh*GjP-e}bJX1#Jz)(6^G)}yZnmpsuRfWob+ar6
z)Xk<UId`kptLS-Z)T^&i&#UV3&9B=?EAa6xd~439v<ZLBZNjfwQqOdofOcVrpBsK2
z_|@mV@V;)t=9X{BHB5D?Wvrj`0e%g%q=5214d#O4991^Pbvp=kdo9M%>oyg~sKzv?
zxvioXs8LUU$F#q0{#4#E4N!go_ywVKlro&!pqHD<!MD^r^?(}E&l&hS$;T98hLR&!
zccnx960yuDw2%Fel7r_yW&73=`=n1WwXGx@5QIAosn3*UW|{E1(QNxk@Kl82Vkk2i
z3yp*0BNI)8(q}>kg=lI#HYDJOS+c55kk%uyOehJ8ld<u$5Cx*1NeiLb^i0niW~nZo
z%7B|fs+*1q(WHp|IoYil$;6(|2wpIi?KokS4rbu-s1O%>?ly0OOl$+7w@pF5TgPSB
zspQ^2lbK8l@oY2$p4hwA1F@(O6G8&sspP<}TqK^Fp2<K?tdp@Qcuz&iI-X9SjmJcZ
zn-bHhH`u$Ty?ftavnMumPtW#;MaK&Y6WSX>t~V_9$R6Mbf>K95v{$~cQ`H4V(cJ;M
zhfbV$JksCW8#(rvBQM$1`xUUO_Xa1K!6K4=Bs-Aoyz7D9X-vqF<Q@!*D17h@R<f&c
zMabS|%nR6;vj>cl<SIGFTXW>Q!+Li6w8+RQvHP^>$f-iOWjUEX;1nU;WVe=|y_gxu
zDVXm87f&n^;b)T5a(aRjZ`39{1}EVNlA}mQkvtAW;-+W&dI{|(bjRI#>i+v6AtK%>
zV7Ko>QfzFtA5+|}<_j1#uTbLP5lg_cnMq~zy9F!o%%LFrkZdQ(V<nKQ1P@Mq*_X~?
zH4L-DZb&QKO#1zjONeD=gjD2QG%*u{yrjW7@1&{#d6bfqdeD+%-}EdxC?Zio@}XNT
z0Zzhc0jep~`<Uc{%aPMF@kAz`5~aFC8Z<<yIU-J`XA(S7jZ7rcr=y7oA{faY5u;~f
zXhHJqCv^jA_lO{*1*stdtt$zh#MtxGiD-({djU}jDR;@CKMu*E7mTD7aU`0WCE1fq
zab9qd$MMDEBTq`E{fDI{`7w~|F+P%p#vVBz&rF6J36_#k6}~Nn?MQl%U_%r3BRLF2
za^j83X8P#B03Fya2ju(MMF)1%YRVPa+HScF71MnyLfhq#Y_D%%MQDYQUfO&=9oQk_
zSCMu`>AVaN+sNZpJ&MZv2W}M|zQRioc?bN&|A6WWaIt&)TL-Sz&36wKxeb67w_J2D
z`TFJ_z3p#ZYFKk|s^AYVwG4b@<#yK<xL~1iW0C7#;0C~j)cXVrl2;~+T*m^p<#v7W
zTQ9u)!ji3X$rrlx$mJuKA1ZVX7QA1;;MRh-cgfRw@zH{N<FcLcw%uVY-nzL%;9znE
z7M&eMXGeh>_=}y3T?56g0bmOt0Ny#U$l>2jRU!v9TI2>UJSd0ebr!M*@iirxk?j*}
zpbAM57FD~HMCb^hvgB;|*4~%*E`tN&nCa!czds~%g?&#Ip7}lC_p$p;vS^`whZ6pn
zVLA>dQV;?EE1*YB9}y~R%RE5rj$?}E1vCvIxZ*m7F(5&i{*v(Ob^1y<53wQMg$L;?
zkV=^h@`$p%wB9e2bZA*QFXtcbmcAq>Q6iMn0DUYZT3b#CZ<iE}cB8ud=qmbZk<ivw
z<K;ZvcCIO`?JYX{3f%sJvv1M4r|8@R{M%4%L9pj-w&>iy$l>2jMIeXfWqoqxJ#s~s
z1OGNFvowXsOV~2PMQ+m~H(2BbulB#4`G@oGoL@M}FP@ASPsR(=*#bAXz`amOaiVx~
z0!k*$K4t=CEW#tEn)Dx6^`Ag}(jXVPT}5u!+l~Ua>n8V@unXF|u|H?WJ^6EpF9$q1
zyp?!#Y%4uF8O?X2VO=W^$U1`GMRH`&BSsG1!8_rfi+A(xHx>UIXlfS9G(9Dnn$Iq0
zoq&;015Z-DnwEa%>v=El(>zIj;z?>Co}_@<htAt_wkfY3N9FSN41VOvF%?ib{S5vi
z7=b0Y-kEcPC#gxjHr1?h`k4>roCMWF93A-p=4?}SjQkO5xe`y3ZeK&MYFy|mYd#<F
zB<Y$VT|?z`O@etV>*`pkx#pa<Q0W`wR4-MvZx3j_VlK*KK+c;h$I0n_h8D$><l<ZT
zwwy~r&F)N>S|XIC^{Pxi=QP}}=2t<@h?bps#{|Q#`7^-GP>T$(T;2}8AiMe;^Ue(V
zbIFnOTv@AH%-84Yjj&$c3$eXgY+ufq^Qpc|@Fa;;&W-CFdN12C*5|R#QFj+o3XMAD
zw0RSJ$9=1t8uC`3Ox3zs76a;L2Op|AM|5j7Xe~L-n^d)3YnqUQP?fUNeNPoz9@IU>
ze_zF(Pu1hsDLyJc-^q97{7P$UsJXRi-X7H=-P)kVIp9|hKX2X#UxD?+KNZLYrVKn8
z`5?am-qJzkE!~)F1pkzNzs4=55n9Xx7)Nh0R2-vvsQaCC+eUht-?)lB{mr#e@lW0F
zHy80uK^Zne=_p@PBmax~-XXr1?$K-u@x1_M3?*kn^4NR`M%JUVLqZT5W;W2@+rMLL
zZy)@f=<OXOe`718{o4lzcEjHo&PxN-Dr6)xVBNcI$IeD)w}j5bV5V9;HGvKqK}n%U
z7zEq0Gsbly7EOkZ#$f7NY9jt~D?o6po*&{kkAQ=NA3BkH2+0tVeMoc|cmRV3ksLyT
zsF2`g;Zfv{A$c4~*eqOtQ#No2U~UNS7oAP=4G(6+TSIg<Lf!gZhx+iYLt8_AeQ*v7
zPk<G0k9_|VyGJzVLLcQ_=u<roeZVO$hux|Sm{px4yDB(GBtKyH*mwpow&qbWc9@{=
zVi%I##3j;4==PQVk^#kEG9dd)aO_U_T_jHdQCu3rI11odGLj_|&m>}k4Fz9C@--wp
zk{A-~R|;p4Ody#=5=SzH<Sdc|k|dH863zJ_q%k-RMDoi(opvRJn`-bPp#K6UxR81v
z*PU}{^E{I0k<22=BKZR#G=zU}g-@V&MW}y;PhiK2&`#mYXzoQMUjZWG8%9U}D>&H|
zu+GpGK+g*j{uFGW$4k5gO=cB`z!r1}Y+PE?U--fkMgNmaEj!CR0w22=f7`2VbB``H
zZJ2v>feYMf>bS&RieC0zKJXU%R^NQnfGiHKy~tnMf9bi)otL9;`R0S$=N^4&bZPG+
zSC0?}!{#ElWr5rM8|P2>g^6ng7fK^|PFw->EEKp1x)tCA=(#ZT#6tU%z!%z|Tx@^3
z*#0!|K<C>dz+4zAv`320$RdY-KT`y9NTWp%gEIs*=5=-f*uAp!J&dQR%Z!}5%tI{5
zNr?hPg1l)88V`0ct0XzpX@8pHm5i2{f($Nw#+V!{(;^41tsy|^6=3jx!uy7vT2gsh
z1JA((1PfnBK(Mt25X{jan72U)Uw!0&sk<iLzS0IvgTN10$w45qO9QWN0$x1?yw<M(
zujnc*IRLzRRFNULEd{R)nzjMd<-G*F`VjEy-6Gykbz}@WQ)>5tfLGnV(O^9dUUf}_
z0s0l-)t{-XtAp2unseGh*)+(hUaD&M6aYfST$IOv?s-GyI23pdXy7#nQv!7Gs!d3s
zEQQo(sGqBWSE$uZFu?)AYo{Jd<;uY82K5Sn*JiZ@2zWJuzSY31UT(&94#8_n33&b7
z)H&+87}aAPytdxAy18C`I_i_DS~tsLK-~l<NzFM5Qg><4T2_Ep{b?JO2Mu1^D62-g
zI(V&YQwOh=^>pyMMgy;F!EK_0*IHZKy@A&b4ZL=%PfkArcny_-SN%SWTMUBNbtT|c
zk7HDpI(V(Dr-RqZdOCRR)WGZgeRHh@ujETQwOKDWl~cby1iW^QW}Ei&eCYJdY$zE|
zz*K-VV%P*MXOL`Bo+nfNB`yO)W?7r6l=VOqM5FOcD3v}>0a4*)NJYR;-Y3SI*$zk~
z#)nQE8$LD|+Nh?zG1Pr{crer#?jayj_y(qheFOq6gl{7EDw01!f_`dY42ce|8p(LE
z4z7gn;dKECkL3OVD&aM-R~v$omjd8y{2Bn1@F$qhZzK5*lGl-Z7s<VXqP2#gNPX_Y
zpMy<Ai{g(~2Sl3?5Up8iXt_98@ISEB5;np^zSdWrFv&L9F?SdcPD21rN0xR#$3OT=
zvdFDp;QD^!P|i~8roxt^g_co3I?4ztK#c##IiKp-BdJaDkl#&icLkW^2Ukk1Feh*2
z%{+(jB4;(8!M)0CZ7a^#)?kW*z!WEeDXtYTr4E`{$pJ70ojv3*oUL67Q}lVy8oW{C
z!^%-NfhnF6m{MQ!JX3lOw!sHh2Om{uYioc8I#l&l<}K<lrS^H{^xSKMoa&`Ybp`dZ
zGni#r9s_b-ZJxRQvG-{(#m_fTFa>)!<e<vHsH0eAj1Az4LFc6up5VxE-b2mR_FU1r
zHw2`Fl*~}4DkE&w=4!ji`T!W)T`|J;xv6o~Q!%I$)CgN+&26Y!&D6%YYOa}OF`#BP
zR>`>rC#vY_P@-b%pvJ)}>*-LUNrMv20Ah70QEQ8+1xk>4+S*uHs|F{GpnQ;TD}xjI
zy%@hu5l*ZrffIThqZ*^Nw<_hX!->lF^f$~}4NlzOH_S>nLCWyH&ed*Lzky_~_9wA#
zFv6L$URi0MK+39Pd7;s)cbF`n)<?Fo+fGi#$0y}st`MKbF*uky9Zd~|9#6!gVk`vn
z3(v)Qc`)qoaE}xiPrwxDGx2dU&oh#W#Q?~V$*TI0-6zIJGW<CXZ)_R<oIvh(keot-
z$mc`owNuDPh+q&0N>&Uo-EYwI9Hv6x6uMsp5lIG!<Wq*1QfXK;50h<Ud~Mjszp^;V
z6m&8|x#}p>3z%jONgm0Uko+E!IVATAk~$4R(uzz8Z-8OMzT)EQNT~}(gjya2IB?tF
zt<NakT!xom0kXI8H*yMTfs4ujC|cO}WMSwygvp4{@rCviz!%z2EW+px4)jEU&bLQ_
z!4aQm(HULj@b71eKn`iN2x1uVL5+ExT>utFd{Fux#*<l%%Bjmih($(xP#2;>-eft%
z!(6F0VDO3JQMvpNOnq)AT<%vVP#!Sd#+jU3i(Jnlx39?UyU87>0H<)q!M(t#I0I0M
zBcnzZ{5V%#_zDv(VYEnH_-ZFm%0Zx%Q~ivP>588|lyVU$<t~9zo|?OXpAMArROwde
zP^$JWc(o3z22gA6u$INB0R-wD9j^wZe7yhH2uf)k(oYFWxd@bkrM@em)aRzgRjHZ!
zcu%nAHdL)<mH{Ie@2S|G&XmP~nn|}*qb~jbJ(OzHpi~pz{Fy+hmMT!H^&X*=D~C|3
z?bifKt<j*={e8o%gi@po?<<sAt9}Csl=>w0jiD4}9~PUok7j+3#801&!7|Uukh-EY
zbUZBxFjetzh>!EBjhWC4ZhHq)8B;Ll7S@;cNEX<l19S$l501+UJ_`sWd><3i27d?y
z0@Se+rDS^DXN7)hgE|gUMDi-z&l2JoPmYr_Bd-M(eh5W|<3Zw&S4TMO0pa*y7Taxq
z%aT8^)YA1^g>6pB*yhyRj;px>cM9;t)!afm%;h^(Xg{*pezMqp5_q8V?Wcf2U~{VI
zJhjN--_I0*9MWhJ!~kqiV_s($fCXTK()Tc)%xY9lTn<7k0&GwhqFv3&Vu*&BQcV=v
zPf|SUmj8jJ&m*oWq@IUGWH-6la`<A0>THJJoz9v@gEFW~4j%U>;M9<Q&S>ysO6%(C
zS9wzg2dc?2g}#xJLmimEVt&&iU!qdvs-|e<skGc{iZJD=4tCL0_bAft0!FyB=?!|e
z5tNmVaKX;7N;#38hz!PHU?(E2J7u&YtZXNuHZ?_~u@2b(2&Y52OLiinMmwfLYJB~y
zmNl7zr`tF159|92!Pu6rxn8%Wa=IpT9z9ibwQ(>Q1=A+cRLN-zWz!(1dZ|)?tYVJK
zV-P@AF%Gp8kqXG1Ja(7#orpH7B|_!5Tb1eO8g?SutZS>B`s85mp{=S+pUju{@Ep`1
z80jRd!C>_mtUuK6$6%}s>Q6n?p9YLWP2mjOx2K|YscL>IWijBX1OSfIT2JVDYEVz~
z(yCgcwb4fchxBqZs{J|~s;sBGA{rGyf4}RGyi1Qg=jNLbuJFwSw0L<FfD_nriqs6)
zp-N0ttr;Gu87&w`uNhPvqf*eP)>SSA-L293x=Go)s13%H)V+(GnOa+s2B6jYrK}6{
z!uXd5?$|Bw*r%0(<+rjFlrNgm2oTwA$lz<vuZ1xr<y%H3%XN&B`E8QrP%M#1!;Xby
zl;c^bVnP(jX&{mvcMk{Hlbj~lBWpht$FU?Kwobq==v}Y2EsnC&YsrGFut|6rjSV9?
zh~y9wf(9@%rAxBdZ0{<&tiU!f-FOKWK~X!(;7%=O*o>Ik)CYDIj>0C5kD>LakvxNB
z6p0B5-dC8-`W0j9RywdD4P=%?I0_nBdP5vYg&6p-ALE*YXW;~UKE{*rj5_#)4w=$%
zBJ6KSW|&h*MvMqTlgzM2=MzoJ`w=EI10?LPyqHPZs8@Y1l>yjaqtzFYd<6*(D#;6*
z<Q+{0L_bJYtV1FJc`=fg3@K6D{R)2z+J6T>@h_ps4c8uhY-8+!SDw4H{s$YsxADhY
z7yE~c{lh=qweZZD#b>69&rHoflUT4NZ`m4Xodd=G13ztBcy@B}*+lW##Qd|V1zURA
zVh+^J9f1vT2M^-TC56WBA{SoZcH$(w?916DTPyBWVz70|vX$|+-eEYhWr^$8cgvF7
zfi<rk{llZL9-BLQ%jvn0pLeb;aGjTYKnl*amwZKM=OTxHHx+>#(rA(E{Kj@UG_SMT
z<@dPG3wiCb$}SLFvKTZj`80iv0b@(f=8KSi+r@)LXIFvixpW>#!P#}`e9;MGE%<j+
z5y+u=5|a7%P+w+g3MwUL`!Bsv;QG<*3q@!DB8PuB6@eU@Cn1@Cj{|*~r75V8Z8xxX
zz&;;E*!83Hr~JQ6{NqI7X&9q}%|f1)K@|%XS3O`PNCs6rROHuS8`>%Qs-mU;R|a`D
z#~N*4n>S^&SF+)Drm&G}&P+b#T#kcI9)dY?7)_VsVdGl(l#@96r<~^~udo4pQoEW2
zB<S|hcU5xawEvm`x>UL*z5+@PT@$)gToqmIKX%|PHRrU2vT2Z0y;Rli0{F%&=D0it
z<lIs@4s05%Jat$bCT~}2AtQLOVJ+$G)MapCG&v|s8Z1<=;Z}F5CH1UyZ%oj=;qqqi
zN7_e)zk&$lV+o(BXYezn?U1H#kOrT_d*2dnM{i%`i=+F$c;e8pCl8N}3_J3xe~Def
z-(WVh`QuWMY&KSEqSht4VXOSLI*dloAvup^<$_ufo15~Lkv}c+ly2(N5}8TCe>Fn(
z+k;ss_>H*<KM^bU9J3_9@e8e6=Igi49fFC<>Lye}xCzxzu?v=E4v|f$hKf#bG~wS(
zRU!v93X2QTS%oU|I=eu$H6@t=qqy^wqN=i}+NC5yM*ul_(S*AsScD*N$VS#TODz$3
z3%4G5ZV7C-)+5Bu3-JtW$EJyJ+e0EFMGw0gl3m{<>zOF@)28F{&TxJu)PtX9dGl=n
z-$0T_d@d19z($G5*&f)$O+ep_<eo{zGpGqW>5ZQy8~u}&+GL5g<i;yv&txny4K8qb
z_v;4we^n6CTvQau`g|uE^wXEgc5ouu=}o|H5@a?0JnU{4BU|Om-s_h@PF5_FS^8uG
z3h~jBo&<T!Z!o0LNVT|Y+ao9NknqnC5gVuYA&_M=%d#IZ%uCEy-0w53?=#`|na&TG
zP46>n|D9R?0dw>NW;gT`Oy0T1ueE=<{UW!(uKmc=#s=<~8B_Z*a?5+n>?7<ek1R8I
zzBG1+oR>Y#>=E{|W0}G8RqGvcUf$8p9$+s|Ei-t&I&p`bm-n$P?BL~1%M6^ZZoGr1
z<(<v!!|dfO#($W-dLH9H%r5U}WV0kbo-sb2Q5t10jx9qd%3eN+(kQ#!Yhw4Ymp6UP
J;F%P~{{UxAZ_oe$

literal 0
HcmV?d00001

diff --git a/backend/tests/__pycache__/test_todo.cpython-312-pytest-8.3.5.pyc b/backend/tests/__pycache__/test_todo.cpython-312-pytest-8.3.5.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..c7a6b6e9cc8fcd9c2e908792d162cb55d4a315cc
GIT binary patch
literal 26725
zcmeG_U2Gf2nM-QLzvaIu$&zJ@u^ii!T}e*-AIp~i?YfbhL{1ttEyHMOi!>#wyHp(8
z%Y)jqSGz4x7xxeaO;I0E+{u>|FmNw<xQE=+J={HzrUeN^a#!GRz!mqRgNr`+>Ar7f
zXLdxbNIG?b<dOyT%{Q~({Os(^H{Z|9>R$r^p9EJX=9&DbxFr22M%X2r$ir<8NqR?8
zCDoCW#vLSdPPI%p9nzFM-s+%tT;ndd<IK6IJmVgc){^s1`Nn+&mvhRLf80;-)?8pJ
zI36UpD;JsykB15F&PAr8<59ppX}{`C`!30<@5l0Z8{(J-aRuTrA?}BGyATgRyhDfw
zA>Jv(LlEB}#KREp65<hvcMI_-#5W4@Hi-9N{E}0R0lvw^+X3Hv&5`K%BX-(o!cleU
zg;Zfy2h2B?)(a<cne=o4V(ypHx}M2T11hVjLK+D!r>E0es*u-^+^tVcrl(SR)v3Nw
zbxn|b6HfM0AZ&%d7WjMkGXU>M1$aC3%8FEGnjyV!-hU157M;Zwfu6l#Rse*CWH_@f
zA%T_C@;=rHS5Y>chO9ce0Ef_t;iZ<Bq(sYT)t{P}fX7P~@>kN+)qs}1q^0#q8coQW
z8%V3lgqDWqPR{CSt=gK)U(QTdJs6ozO{Ej9niq&P9F<j>ka%WNx_&jUsZ}o_PHOs$
zj(rfv>(RjAWPU0=IHArAPUO|};Pc1M9UFWjH31D!2Mf^iI)TszH9s(Ot*RtxDOk4F
z4#g<&r=J2aCw<)ByVSn3+`e<+c%^;thof^RZ|?Xw+`SZzm&5Tp(K};*|GmHc-o3Mx
z@bKKZWhHdGYyL<%(!X%-UcS8RbV)f~l21Q`f}~Zi3m=-iE(sn=d|ieEUXJ<7UIPkz
zIYqf(cC#d9ZC=m&SUg<CR@Gs&X0hy=i&6X<CgX3MYKtnr*HUyDQWpEQ=2BZ#m+CfJ
zel7jRnQ^EdL(Vu1*9YGB&6<mD!<{7zVs*x%r{HHP*&xHLu;?{BhWE-2Xs6Hc>3=Rn
z*u89&VOFRD%_WDbV4h1(R=4Ue;M*Zrwu50-$e!~}NpBa*-(XQN%y6?Qpox^-?7kIR
zl+zBV-)glTt%sGW2AXbZmr$lnORZjIWou#%n^vsN0WA**wb<k_ysUIJ_?~<nCVNp)
zLu%MiG7b{+7dEjz5lY(3(yY+%vyxc&BUm2ZauhxA=Yvt;&OT*PGmO2tV!#Nf5o905
zpy4txpAj^CWaNa5ke(Cjw;wqn7&%eQV~rdkkKNM;Sz8;>`52wr_MVgUOIVGm?MB$_
zC8g<JQdmhWG<zusy%d5O5>PvMFHr2O*$bV#7by1C?1c@q7t}5o88EJArD8KPq1(Wj
zu<^@16Vx8y1VJP4CVl32g&Ar$`!|ti-i$dOfA*`rO>=E=)v)2(Mu5%hhU*Kb1TNjH
z#!bEwQJ+$`7!i}NM4RR-QC2St8DD`B6Hxoi+2qV_VVu_ri*3+rZJf{kzClm>NKbFY
zJfEVcpMGLJ?PO2du%|gC^z_rh)7h;EZLCyv+j}j9(?`|q>JB4nzL8kdZzRS_Vj+7Y
zgwwZOlM;#1>t56c;$s(1UI27x=n(mhC0eR-A*El@Q24I8wDeSFT79Gpre-pOD7)%|
z)xfdY!em~{Tu&81fq3LTo=$0LEv^M1$K95ydorC;)0$p&PvrAgGHJakXZ8H_UB@Hm
z@NmL${ne*;%v^gWq5E!_NPIYs*ib?rpvp=TC1_tUK1^@yW3+&nw0nT|?AX}1lg|w8
zPM&!2)UmNsCw;}L2gLlD{4|KvD81g5t1VD0f@cuyL9p*p5ajr@Rv>jANa&b&K*RZT
z*Ks|H4cU#=(5j)HyH2Fot!)R2Re7N`8i<w>=_w6IdDSzKpPI>~3+dCKKshs@Mp-3h
zbW$Uf2zOL+ACxcQ{xrG&EZj$hEOpnZeFMvc%AZ|T?_S#Gy;V>CD(Gv;j0z3!uW2|C
z(f$R*>@z5NAfx(<8p@M*TS)2JUVMQ409IA8pH{Iy5hbb#9Sg1S`cv1c-i)5Vl-H(G
zg{nN0*9%oecxj~HtKr&LQ}vC^Ttg)&nbN9}<U}f$OKRyE4Z91*PSp>$lW)vsa)r#a
zUUlX2K%rMRB=yPsY)&Pl$;-L?8>w6pwX>=>si!Wbv4m>y7<rp85Kn1ZUaPhxY2%XV
zw`OvwX);8$I6mcW0Eu>@(oy9O`$0nmf{fg%k33%zmEo!vhdQDutq%yQ3O10Ao84k$
zuNZljMri%}#mGVJ*_u*@#Ej2~v}TdCls)2|ePW(fcMj;NqYy>37HBc7IZQg=)OhjP
zwC_MNE@t{LOchW$cRYLV_=m2_j-zGyY0x)!%?Cb?w7=8+tM0$)nfvC7ON#U?w{2Q#
z+g@(lUTI5|qWuerQh3jDwBvu>a>O-vZpAN!JAQfN){SLP`*I|H=gh*l7LJs*94dvM
z!{|3k;i2U~$BI`9Z+s}VhFx=KSAvp1wxslymEMwk=y&^;`VN)*4gp$%1i+O;OEUfz
zSqhDESe6gnJV0X=3w=PSIT1x@`J^-;g{laOq<v;3Vg?{tR@#0!d~5jUN9RtWg6+C>
zxFqkIKX~Wm^2S|&-8@{{xT~z}T9Wa%XeQ8D1!EMwFYf|6ii;3PKD$yqw~mzLq4`(u
zyj9*b1lY|ZrA<R+WoSvp-=dj7V-<{1^u9a<bQBjMkYHPVWo2VY-a0=EprmYsP}#a9
z<8RSSps@;xQT#sAQ&faN0wtE@&YOE~@4>F>gx?~K(ntj(6y*@;Z<}dwo1y$RAdqae
zblZI4w^!f2T9UV6Yp<4-ZA&u#7R>}2tB@GQIfOj(1%98Q4<Pj_r{M@BYiJd)H??f`
zG-GN3qX;*)KvCwUI#e*5aHEKfMiDfWWE>y3nQ_7acCyFF>sg(*fYvK=*;?8hOn4v`
zyVjyhpoizGy}*prYG<S|T-;&@W*pT^#6b^WGQqrcpTJ|9gk-}@p5C|m2_P>D9W|F-
z&wZfqR)Cqu)>xzz!mOaIjhJ8b8;ap4qAC~+z?f9mETsBD82}Rq=CMRoHCVuhCRf%*
z1Y{-&Vob8i?_qhY(BNhP5J4?UJL3qa1Q9gYfR>vG)KJqc?GnngX{pt#Y&?N6scwtc
z=75%m>gTacKx)`DCI!_9nq)H6m=r2-6Od4njY?vKSUXv03eO4%&jA<(zU<T1dtexQ
zbH#801x0chVOByhqP9WKh&g_uMzo3X6NT{;!#u+HX@6pGWgBZHYh%N=vL*+-m3FnG
z=@yCO)MlJmz146;^L~XEbO>+LZuCdk^EII3CPcOKGa5e;7(Y=M1!0w#R@7F)|Jqa+
z7$Dn>0O2eVBLc=oYj)TeoPo1MU}SV*9&2O>dF*<DtCkJuxM4u;HjM%?b)(v2#LQU~
zY<d=P^Cs(ma~8EhFGS#p!|En{e%=e7uVOENBEET4!-YWGhybSrQAUV9dfhb!l6ri%
zhGuXx@(fW}9)&IxCPC%C2#RbRi9lJz*RJ&<Kt=~D;h3pjKOsGPD0$&LD37QP5iL*K
zidX_cKY%}?2PxsWK7_S`s!3}F#M16}m^x}=m1<vY$)%@>egvL5<g9{XO4MsCSlfwU
z7lHu<c;k=gP)x+AhI$lJ(G8`cA4m%!z~#K!ayeblMlgypR#h=oQ+yijI3}M!a1sGJ
z-?Y;R&LB98;2eTDg6{*Ut3KxOl~8wLkmB597@~3RH>^f!!YVgq8%<l~tfbxjEv)}}
z1fvKpAow-{)GD<X5xk7x1q3evXrvB?h&l-VPnGy1b?q`_!rs-lKrh*9gMW~HKRy4$
z^S1*Fp%3?eboirz(!m!>+g~hwFISqrQF_f-k)%`3^G*n!cV5Kcr1NFx-1$F&pZFE$
z@?VnqPcCW8uBE5;m!I1Ip|kSTb7gt++&6CrKkkSxb!;nlY`dc^99r6Wq`dRUN5M+R
zg}DpMT{{*wm%9#><c{U;#KK^?8??&KRc$DpxL7*=a_QhJrS0D-O=!^ES;tvy^@QUb
z1}`{Y!QfSA7K3j)ub7XLbAl=idhYdG*Vor`SKLy#`=KNgCD$(~xqDH`-COS4Taxz@
zC3kOG*}Ej;Z;_?YD2HWvFDki6QnAnngqjmk1PVpX)+A*plJ=REh#8<XLCO7C3EnLH
z{9sA$ns)%Wd2rrw3lzgH_$|^Xjc{0&yMFO3ja4j^-@Xr-K!?KoaGRkIuqc`e1oI9~
z&JiF+9nNuU|LuLZj-n<u3E<|@`AJcO!#G#aZXTuReI(|38Am|Hd%`8wSNS}^gc^I-
z>nc6W4{odS6<a~g;))wgS@U87sOlkN1$x?%9oAgnt#_eHwN|wRZ#yzbxQMsiM!^Gb
zJNLn7(QH<8t?{-a6DC(S%rGll*W2F4XtHRzs=3%x5(UXB-$qQbeCQxfT9kHv6YiG>
zanj#_R`j+v+tMzfOq-Tky~;!-5XI}Zcx?`7d7yrtCcNz^f{;rn$xcw`qB3i*DcV`y
z_B!K}c-!e1MIW1s`+nXPYPBCP=vj<l9zpD_+fN1;Le*%Y*|#N*7Mr&P<_wfO;A%Lo
zI3>KD=sMo}NTJzY=ZXxgpZRo%myIeDK~N@Yz13C^t>3F1(5vFk1uKu;eBr$+yfHgE
zZg>Editb#9svAIYVg4+o>1XF=iP~o;{w&<N&`r2r5H^k3s6T7GjMnq5-zVt97QKvC
z9=m7deWLa}v604ohYd#>r-YH#)8MUeRZ!hzdKn|?X0@05ePd0(mBwDicpc>?@X}0r
zB6BG-K@=FG;}92(_FbG?sKaQlA?QPZOH+-)0UA!Nw+?-0ZsNJgsM;RPvJU~ex9k)M
z?Ev05h=90)4k7j&g2Mn3VL`KqW9sV&Mi7wZq!4RXh1d<m^|XhO>6_sW%q*5pp1r>G
zPh@_g0*qmfiwIB!pc=s|fHhJE+AU>3&rDy=rHM|U<sd66L;5%<V74m3a!1cQSAKP6
zeL;9R7`vS>1-60Lr*jK<eL7up7r;*x+PoCpQVwpZ1h?K9D+l}M&io<NPDE;7`|ZoO
zUoClh*YO~I2_<V3KIL1WfW&Ven(r(t@g*65i!@Fn6^u}nL&z`>juE7V+YIHmX)+d0
zd{h1NAT0OaJUoB2tn@F*_*<lL8mVA}qW5JWrl<&k0!yQQo-c;?WF7|IlN6;tXyqa<
z3ehqQ?wSjH94?lWwG)BehRbjhk;P+pz=o@EY8!!Abr~KISx6pBWKlf=gSJ_IR*AS)
z`8FO2qm?a(us~RpHe$0y2@8a$0WB9>RBzKQ?GnngX{pt#yv1S;n-;Il0WJ3mwb<mb
zM1Iw0+Hk$90`^ky9g*!czCtH^UqVTC%Q+WaSbI%j%LM|5r|7;W-3^RB3JIHH4#HJy
z!{ZAXELGoqlE%0_Lwk~=7sisOFI*gjZ7=ICk%<6Z!d{1`wid2xl-R&l71HcFc2`+<
z|3v-8O2_dj>`kEC5_)Zyp5%1C0J}J5r&UddTqp(T{|>-@5i*w!PggT*hEK4@97b!*
z;c_3i_74+l%;B;EJQ9D4EQLlnEX#+{8iOPi3w=PSIT1ymP&C1qqzpyUKC==r1Ekk+
zBmXtX8;u!Z{T=(pT6Zo=G32s${{oA&VSzR7Typ%Pi0)i+00V3QQkJtKRz8^dVgJ9{
zYA|=MlelwX&p)_xJ<OSnd-Uzxx$m3Bn66_5YT&ZCSc9Pu%LdlNEGTe51Zwbcw(mFm
zcD9IOpum}yoz($$g9eNs*Hr&(v5~9|^MDfssHuVj*a!-2KVZq#SsSgIJteVha5iP9
z%~-BZVEYzj-0BO4S(Ly$0}W^`*H5tNmUanc+UQ+YuQE0YmW{eCUYi429;}~7(DFkj
z+YhT@uoSQz@{t0{(c}_J+RD<b&{$8$4iG&v2=1EbsI_CP)^USlK^sSa4x3tKW(L!U
zK#%jTMwv;pQBI8}yBZIMMqC?lyzx4M5d@@&A0XDG0s=ev(0FIJ@lAUJZ%iOi5u_1Z
z0#I$I9*G*&q#B^fOwl6Gw4Rcp<HQp9zKPal|FHG#jf|>-SLiBa#^&g^!RBJi{-2a{
zpl8c(&%b+qA@EVC^wN0gyHlm{>Cy}N($Sd}I9=v2{Ti>MGvJ0Jg+a!d$KVIf<1G+O
zI#0CBpMNMxn@+ZX{d_r=Sc(mlV*{1g(7jkWwr}ov%WnWm&eZK>$@BF8-v#RqjJ3uK
z)@N@7SG}rFRo-)gN&7L);fCAVWd+Nd$8ISsdM!h&twG#pc+EpZilKnEz?Ut%MF<uQ
z1(uBf<`I^S;1e?^anp4}a}uW{%-3qQ&0;5*l|xOpR5Wkfm{_e|6_$;<tyr4_S{@Sm
z+pgtY#^*bR{A9<F-_#a_1zRY|X6d#LUa<C>+JYCB4F$v+Pd$eX9yKwYHgLekG>C_d
zu-?cZ4m(L;ytH8+YrF_8wR>j1w@HmP{kA?EgE$;v<Ht@q)J|@Gj9S8n@GN${zTUBu
zP%#WWN)6&65KJisLYbiu5f1w{CzKtA1*YbLxrlwc0rNb5-wI{hy#sE{R=dm|Xj8l4
z$W)s-?)**nz<Q3D5RAKUQGs6QA!c#x1&Vz&dx7jU0yl}hb07w9ImSoE?}fLw{>a#j
zc^-dcz+tZ^<%Z%W|AyS0Qvy%y6`sy+Y;u!6913Gcknm6#bJ?^vJvQ4JFJz&~6Y1ED
z!Fr4){+g?fd%BM+aUDiSJ%0N2%!ip@zlXl&3JR!lTkANdyccKi98moEw57{E^3y~$
zJ_hIG#$d}G&LC|NL1TB7mO(n=)!Bnsea{pr^Z?SW=bj>NvP7iDM+K+FW`*r;+GG2u
zh>n@)Twhtd!XBfl%#uE`PDyF&DS>pKT4PUD)eoEX;ItP#!>6OAV6Ey%Qp8hDW;0M7
z)&2^yyaj*yzkr5pt1vd@w7OCXY-#MY+L*XkC`S*^onLO!eYG6efCr#pZ`j%cP+#1=
zVV{o&YheDlJ8zaZ4wU2pJY6+VRtA=2{4JUZG*-bFMeoZ4Ku2*A0*U3x+Bbh=;ZV7E
zUrF8v2Z2hx`^pMfW%0MjQfRb7q7=Umc&|xDQ#g%P^5^9vgAHt8JBW3^bLdxxmYZ;p
z#x}#&!<cLCTPtAf-ms+fl$D-}vU&bZ*g;p4hZlC<yHxHU2CM|}{^7DRyd>jqk)_aR
zg+wWSAMk#YjHYm!Wu?=q;yO4VOY*6OD<Afk2TlQ2g80CxvT|xk#@`}Kq0tJ7Qv5#P
z111?wq40rxs*Yj&cTIT+>3JZq0<^AUaR8Gs`0AL^*iAk^(<&IIU53lnTj;jDRJQg3
zFpC==B3XJ3Z$ob((16b2!#tK`sVaiRW+RWTG8-$v`N(B=ereUlC5zI|kH$TKATcU}
zr_7F)Z=PGVb*_F(Mc*GcytB4TlGUqBb_BC=-4?IS0WJ5}&tq^ahZ-==#y&Nuh734k
zM!bcJWh@p-vXh#*M#tJ~%DQgQ!@NZg$Qt2M?HWAbn06hYmPdg5zJv|`#AHmwh#9;=
zjH<APtuYjvF1;IgYXkuydMs10fBn_nz!FK_>#gNFI=aPGnJ&fM#FHm1#ex%W4s!e&
z{`CI=V81A@SxVP+=hd#E;{NI{k4NvnVVl7h!9e=BX3?*A2}=@TEp^S2B5P?{;s1P$
zqF<6-!lpqK4%(UqQ81D=G>F2^S6DzJn8#W`h2_(Zbz5G~FU}6(5c$4W$XtfPO`BZ!
zvB;WbC;%pADT_zLYOXrw7V9(s97(hnZY-mFHeOROL_gJOfR37P?{zjkdm0(3xo5Yb
zxr|f7Jnw8UdIS-o>6U)Q<~ayI8|oQaPNwmDIjamU&F%nR-=soBs3MHQwFVNGN-7j&
zr^m99ybgtGC~ehqs9!;%CN}WeSwyhab)Dw)Q!ex==uX|YA<N%kwn<Qj?B%OwcIq}~
z^Z-*w@m8@JMKrwW%X9{Aeh=);Ey+7e3Vge!tn6Hp@waFu&{&1UD9$0|xpRi!XDGi7
z2xR+<H2A)<(pQp4e)s0m_L1`T5kO0j0Jt);B;#+9rO+scWqAaRB}h`S&<BK?6H$bg
z&q$#vf+Fd5vl1}_q}S2Pzuvbi=!-V`t+g8$7Nfd)twjlo(bxNSfyW8`Whc&YpMH%9
z#P{uL(@+T87yBc?g@xd8lxR&uhKnyx(1k@+SYXhCD*O}3@XwgD?tWHeu<I(ocm{%V
z)-U{iRtG#RyKr+GS}Pvrh}jNgQt_@yMU8c^Yg1<5q%JxPhutT|i_U_~iniOqT5N$2
zgtrj$8=RyC^Be#2wB2WlVArS&+Jg)8SlWZ?F7OWw*?lzVeX{{%*QQl|n6=9at^Kz!
z=`Bh-_P}@Q!lZXMpyke8U=Pi<v`Z+{rlnS|vPlHyx4JD}n}e{cx_OKiR=Vmn&2O!^
zS<7fO^&Xe?sS=@fo9#lDVUv|;n%|sYev^wWAc6W#2^3kzb@ymKj$g1$IJ7v#+2=C8
z|73UQ?@nGEJ$7;I?1dN4jpMf|*SF~T=?>2kYzt10YP-2Ve{~Vf?)1Ftrslo+Ry>@G
zCg-ADYZEcx310|I&Q7Py?|i0J?Poy$Z}6x8BY-&xJznswzxm;Nt`EJX!Q(e?R6-}_
z&cYW3*a!WN;_mvR<vuu<bd>C_hm%Qg><E90EQLlnEXzl6cRi9+Ec5}P=0p^MLUBvI
zNy<<p?K3M8Ge9~OS44ipxsh6z8?iC<IdLJ_u?}2_a4vxh$xY8~k+;~)?N7;tWMKx{
zaV(1qwKm;Sk*C<SbS+Q$R9vXFLCY;J<l<b&4gZ1Qv*1ErlM6isQ%L(M0y0N&&ev`S
z_iL|X>IedI|0ZI`5u8A962U11rxBb%a2CNi1h)X_Yi4+lb=U@d<@)Lg{tL)c!hHV#
zfKG7u$jSUSDxn=;_<5b^t$NtkV@cOkyOQ*Kvjg;-t?+f&0WE!1%iyP7c~aGFrjd@V
zx@eZF`%((NXgiak%s6Vs2C(<&e?ieu?5GCyALLRw{2wXT2H<nJS}P`caMws7GnJ;F
z%ne{BePA-3n}H7^)Bii-pUSJVxwJk&HZ0%?8@h+%JBVFIkVBv&!2R!JPlGmx*xLwD
zge2@(!&i1!BAkuz@JF7*wCp3=yKoDcoeuvTM_OrdI2`{WNk5j}4tyeYe<CG5k+ysy
zb^VvL^%E(+;%af6aoj$$B4K!E{2>Wff*Ty$=f_th2o_#>h{4JpO!_8GI%6iq9NX{o
zuSgKw+x`%Pm0fPf@B&al@F7q^uo8{XBnU7Gf|YG?$7u(ak0Dlo;mT=;*D-wO`ica>
xy{iu~Sn23;93zw%A|-|^`=DGTga8S#mJX+5#Iex-P{MG<Lt@>3A~DiO{|6^<VrBpU

literal 0
HcmV?d00001

diff --git a/backend/tests/helpers/__pycache__/generators.cpython-312.pyc b/backend/tests/helpers/__pycache__/generators.cpython-312.pyc
index 636ef09965a6447a7c5b4a984369477548a103bc..71548d4eb19350d7c8bd91a0ee159205b28adfbb 100644
GIT binary patch
delta 624
zcmYjNO=uHA6rS0g-E3;M*|hm-)JiacxX_5Gcq&R2EF!4~J=my`)S1>To82(GftIe&
zLl24vErW+rF+B;=OQ8sQ^CW_oq8AyW7d?7Vd-LSXwgn%|_rCYN-S=j`Z<(#3>POQY
z03uR{jr)Hz0KUuOAd>rJcWbrkO#+;Bhuhgk76P2X14P4zNDik+mgI}#Lu``dtbqqt
zv_>KBrbr&A#W6`<=++8qj4Uel(CYhVmu$$5Yn{;Xy_U-rJi`qqxZA>Q$KysfAk=HM
z3D+qJyVSd<9$ZJ{ggCO^jo3pt237VNo=QZ@0t~W{{eY*1Qc#wPC<60^|9;!25n`Ll
zL>X<uJpqCUMe3|_9oWj0t#KsxQcE;hRy_-c*%h^JYIINtG%dkmFVth2unCmdJN4?h
zvS6|sEDKl${gI<RbIn{&@1R^iW%bR>lj%p(k8gd+6hCEZ&u{daYt7H2H8zg!z`}M9
zbs#*!EWHjb*3|10@gBLI%DZzUouFf~u1Pp4Adm)>_JST4oNKN>=Xmst;G^uPzFw*b
zW-FJc>>@XCD<q*K-XuMvISEDfGO=+{4;MR*H%Cn&aWv!mE?0w)Qu&~G)+<2epm@h$
zW4!I-u1n6-3qq6T1@mmlC|ACMBfoVMR-R7&0wQgMaeA}xL4ErmraL!pvu&e_<g9<p
Cu#i#!

delta 543
zcmYjN&1(}u6rZo%Y|?IZ)21Jw)mR~JKfsFKY@vt>mU!`2k+5|pCX(!inN3xiWB&ld
zAc9_cm0k*Z=*fSe$9fuqMf?Yp(o0Xi*|gw;_j|v2@BQAJnf>C=pmON@1q7D(sL^o{
z`fU#v=ADz1PyI@~e3|Ek!wX`ZkBEHT<)b^!#zdC$MTw7rkBCy;<Ck{W#^gH^2K~W@
zB}4e8@tUd@@pdydt`uok#xKdm3Wzyy3VxF6Z+H<C{R`jLGh`XqI@z9~J@k6&zxH$5
zqxzVv-J*MVn82t<d!$aDp^!Wc9mC?NEsWPyLRzLD(7QO$Z)tU&NgpI~48R24xDly_
z;I&Sq)SE<d<J7E1F(~U(x?Z>e#0u25e!{L620`iLY=8DBDC;fu!Yx8YPJaEtIv7{<
zL$`{HTD#S?Y{jq$9fsMNa=|t)T37;5_TkruCd<H$(@I`7V|fSo6<yAKzBUIe#E-%$
z<MAjJX|pY){VF+OVOkGzyZ6{;lC-3~rJ*X7nfeQoR+>#c^X|73-ff9hxdJ)+UFy01
b?#-3{x<0=7{_!6KVK>df0n<*t!mRioqE33c

diff --git a/backend/tests/helpers/generators.py b/backend/tests/helpers/generators.py
index 25c9469..9ed550d 100644
--- a/backend/tests/helpers/generators.py
+++ b/backend/tests/helpers/generators.py
@@ -8,13 +8,14 @@ from modules.auth.models import User
 from modules.auth.security import authenticate_user, create_access_token, create_refresh_token, hash_password
 from modules.auth.schemas import UserRole
 from tests.conftest import fake
+from typing import Optional # Import Optional
 
 
-def create_user(db: Session, is_admin: bool = False) -> User:
+def create_user(db: Session, is_admin: bool = False, username: Optional[str] = None) -> User:
     unhashed_password = fake.password()
     _user = User(
         name=fake.name(),
-        username=fake.user_name(),
+        username=username or fake.user_name(), # Use provided username or generate one
         hashed_password=hash_password(unhashed_password),
         uuid=uuid_pkg.uuid4(),
         role=UserRole.ADMIN if is_admin else UserRole.USER,
diff --git a/backend/tests/test_admin.py b/backend/tests/test_admin.py
new file mode 100644
index 0000000..3885fd2
--- /dev/null
+++ b/backend/tests/test_admin.py
@@ -0,0 +1,79 @@
+import pytest
+from fastapi import status
+from fastapi.testclient import TestClient
+from sqlalchemy.orm import Session
+from unittest.mock import patch
+
+from tests.helpers import generators
+from modules.auth.models import UserRole
+
+# Test admin routes require admin privileges
+
+def test_read_admin_unauthorized(client: TestClient) -> None:
+    """Test accessing admin route without authentication."""
+    response = client.get("/api/admin/")
+    assert response.status_code == status.HTTP_401_UNAUTHORIZED
+
+def test_read_admin_forbidden(db: Session, client: TestClient) -> None:
+    """Test accessing admin route as a non-admin user."""
+    user, password = generators.create_user(db, is_admin=False) # Use is_admin=False
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+
+    response = client.get("/api/admin/", headers={"Authorization": f"Bearer {access_token}"})
+    assert response.status_code == status.HTTP_403_FORBIDDEN
+
+def test_read_admin_success(db: Session, client: TestClient) -> None:
+    """Test accessing admin route as an admin user."""
+    admin_user, password = generators.create_user(db, is_admin=True) # Use is_admin=True
+    login_rsp = generators.login(db, admin_user.username, password)
+    access_token = login_rsp["access_token"]
+
+    response = client.get("/api/admin/", headers={"Authorization": f"Bearer {access_token}"})
+    assert response.status_code == status.HTTP_200_OK
+    assert response.json() == {"message": "Admin route"}
+
+@patch("modules.admin.api.cleardb.delay") # Mock the celery task
+def test_clear_db_soft(mock_cleardb_delay, db: Session, client: TestClient) -> None:
+    """Test soft clearing the database as admin."""
+    admin_user, password = generators.create_user(db, is_admin=True) # Use is_admin=True
+    login_rsp = generators.login(db, admin_user.username, password)
+    access_token = login_rsp["access_token"]
+
+    response = client.post(
+        "/api/admin/cleardb",
+        headers={"Authorization": f"Bearer {access_token}"},
+        json={"hard": False}
+    )
+    assert response.status_code == status.HTTP_200_OK
+    assert response.json() == {"message": "Clearing database in the background", "hard": False}
+    mock_cleardb_delay.assert_called_once_with(False)
+
+@patch("modules.admin.api.cleardb.delay") # Mock the celery task
+def test_clear_db_hard(mock_cleardb_delay, db: Session, client: TestClient) -> None:
+    """Test hard clearing the database as admin."""
+    admin_user, password = generators.create_user(db, is_admin=True) # Use is_admin=True
+    login_rsp = generators.login(db, admin_user.username, password)
+    access_token = login_rsp["access_token"]
+
+    response = client.post(
+        "/api/admin/cleardb",
+        headers={"Authorization": f"Bearer {access_token}"},
+        json={"hard": True}
+    )
+    assert response.status_code == status.HTTP_200_OK
+    assert response.json() == {"message": "Clearing database in the background", "hard": True}
+    mock_cleardb_delay.assert_called_once_with(True)
+
+def test_clear_db_forbidden(db: Session, client: TestClient) -> None:
+    """Test clearing the database as a non-admin user."""
+    user, password = generators.create_user(db, is_admin=False) # Use is_admin=False
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+
+    response = client.post(
+        "/api/admin/cleardb",
+        headers={"Authorization": f"Bearer {access_token}"},
+        json={"hard": False}
+    )
+    assert response.status_code == status.HTTP_403_FORBIDDEN
diff --git a/backend/tests/test_auth.py b/backend/tests/test_auth.py
index 10813d2..22c0115 100644
--- a/backend/tests/test_auth.py
+++ b/backend/tests/test_auth.py
@@ -61,8 +61,8 @@ def test_refresh_token(db: Session, client: TestClient) -> None:
 
     response = client.post(
         "/api/auth/refresh",
-        headers={"Authorization": f"Bearer {access_token}"},
-        cookies={"refresh_token": refresh_token},
+        headers={"Authorization": f"Bearer {access_token}", "Content-Type": "application/json"},
+        json={"refresh_token": refresh_token},
     )
     assert response.status_code == status.HTTP_200_OK
 
@@ -80,8 +80,8 @@ def test_logout(db: Session, client: TestClient) -> None:
 
     response = client.post(
         "/api/auth/logout",
-        headers={"Authorization": f"Bearer {access_token}"},
-        cookies={"refresh_token": refresh_token},
+        headers={"Authorization": f"Bearer {access_token}", "Content-Type": "application/json"},
+        json={"refresh_token": refresh_token},
     )
     assert response.status_code == status.HTTP_200_OK
 
@@ -98,7 +98,8 @@ def test_logout(db: Session, client: TestClient) -> None:
 
     response = client.post(
         "/api/auth/refresh",
-        cookies={"refresh_token": refresh_token},
+        headers={"Authorization": f"Bearer {access_token}", "Content-Type": "application/json"},
+        json={"refresh_token": refresh_token},
     )
     assert response.status_code == status.HTTP_401_UNAUTHORIZED
 
@@ -177,4 +178,53 @@ def test_delete_user(db: Session, client: TestClient) -> None:
     # Verify that the user is deleted
     deleted_user = db.query(User).filter(User.username == user.username).first()
     assert deleted_user is None
-    
\ No newline at end of file
+
+def test_get_user_forbidden(db: Session, client: TestClient) -> None:
+    """Test getting another user's profile (should be forbidden)."""
+    user1, password_user1 = generators.create_user(db, username="user1_get_forbidden")
+    user2, _ = generators.create_user(db, username="user2_get_forbidden")
+
+    # Log in as user1
+    login_rsp = generators.login(db, user1.username, password_user1)
+    access_token = login_rsp["access_token"]
+
+    # Try to get user2's profile
+    response = client.get(
+        f"/api/user/{user2.username}",
+        headers={"Authorization": f"Bearer {access_token}"},
+    )
+    assert response.status_code == status.HTTP_403_FORBIDDEN
+
+def test_update_user_forbidden(db: Session, client: TestClient) -> None:
+    """Test updating another user's profile (should be forbidden)."""
+    user1, password_user1 = generators.create_user(db, username="user1_update_forbidden")
+    user2, _ = generators.create_user(db, username="user2_update_forbidden")
+    new_name = fake.name()
+
+    # Log in as user1
+    login_rsp = generators.login(db, user1.username, password_user1)
+    access_token = login_rsp["access_token"]
+
+    # Try to update user2's profile
+    response = client.patch(
+        f"/api/user/{user2.username}",
+        headers={"Authorization": f"Bearer {access_token}"},
+        json={"name": new_name},
+    )
+    assert response.status_code == status.HTTP_403_FORBIDDEN
+
+def test_delete_user_forbidden(db: Session, client: TestClient) -> None:
+    """Test deleting another user's profile (should be forbidden)."""
+    user1, password_user1 = generators.create_user(db, username="user1_delete_forbidden")
+    user2, _ = generators.create_user(db, username="user2_delete_forbidden")
+
+    # Log in as user1
+    login_rsp = generators.login(db, user1.username, password_user1)
+    access_token = login_rsp["access_token"]
+
+    # Try to delete user2's profile
+    response = client.delete(
+        f"/api/user/{user2.username}",
+        headers={"Authorization": f"Bearer {access_token}"},
+    )
+    assert response.status_code == status.HTTP_403_FORBIDDEN
diff --git a/backend/tests/test_calendar.py b/backend/tests/test_calendar.py
index caba7ab..da0eec6 100644
--- a/backend/tests/test_calendar.py
+++ b/backend/tests/test_calendar.py
@@ -1,44 +1,389 @@
+import pytest
+from fastapi import status
 from fastapi.testclient import TestClient
 from sqlalchemy.orm import Session
+from datetime import datetime, timedelta
+
 from tests.helpers import generators
+from modules.calendar.models import CalendarEvent # Assuming model exists
+from tests.conftest import fake
+
+# Helper function to create an event payload
+def create_event_payload(start_offset_days=0, end_offset_days=1):
+    start_time = datetime.utcnow() + timedelta(days=start_offset_days)
+    end_time = datetime.utcnow() + timedelta(days=end_offset_days)
+    return {
+        "title": fake.sentence(nb_words=3),
+        "description": fake.text(),
+        "start": start_time.isoformat(), # Rename start_time to start
+        "end": end_time.isoformat(),     # Rename end_time to end
+        "all_day": fake.boolean(),
+    }
+
+# --- Test Create Event ---
+
+def test_create_event_unauthorized(client: TestClient) -> None:
+    """Test creating an event without authentication."""
+    payload = create_event_payload()
+    response = client.post("/api/calendar/events", json=payload)
+    assert response.status_code == status.HTTP_401_UNAUTHORIZED
+
+def test_create_event_success(db: Session, client: TestClient) -> None:
+    """Test creating a calendar event successfully."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    payload = create_event_payload()
+
+    response = client.post(
+        "/api/calendar/events",
+        headers={"Authorization": f"Bearer {access_token}"},
+        json=payload
+    )
+    assert response.status_code == status.HTTP_201_CREATED # Change expected status to 201
+    data = response.json()
+    assert data["title"] == payload["title"]
+    assert data["description"] == payload["description"]
+    # Remove the '+ "Z"' as the API doesn't add it
+    assert data["start"] == payload["start"]
+    assert data["end"] == payload["end"]
+    assert data["all_day"] == payload["all_day"]
+    assert "id" in data
+    assert data["user_id"] == user.id
+
+    # Verify in DB
+    event_in_db = db.query(CalendarEvent).filter(CalendarEvent.id == data["id"]).first()
+    assert event_in_db is not None
+    assert event_in_db.user_id == user.id
+    assert event_in_db.title == payload["title"]
+
+# --- Test Get Events ---
+
+def test_get_events_unauthorized(client: TestClient) -> None:
+    """Test getting events without authentication."""
+    response = client.get("/api/calendar/events")
+    assert response.status_code == status.HTTP_401_UNAUTHORIZED
+
+def test_get_events_success(db: Session, client: TestClient) -> None:
+    """Test getting all calendar events for a user."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+
+    # Create a couple of events for the user
+    payload1 = create_event_payload(0, 1)
+    client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload1)
+    payload2 = create_event_payload(2, 3)
+    client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload2)
+
+    # Create an event for another user (should not be returned)
+    other_user, other_password = generators.create_user(db)
+    other_login_rsp = generators.login(db, other_user.username, other_password)
+    other_access_token = other_login_rsp["access_token"]
+    other_payload = create_event_payload(4, 5)
+    client.post("/api/calendar/events", headers={"Authorization": f"Bearer {other_access_token}"}, json=other_payload)
 
 
-def test_create_event(client: TestClient, db: Session) -> None:
-    user, unhashed_password = generators.create_user(db)
-    rsp = generators.login(db, user.username, unhashed_password)
-    access_token = rsp["access_token"]
-    refresh_token = rsp["refresh_token"]
-    
-    response = client.post("/api/calendar/events", 
-        json={
-            "title": "Test Event",
-            "start_time": "2024-03-20T15:00:00Z"
-        },
-        headers={"Authorization": f"Bearer {access_token}"},
-        cookies={"refresh_token": refresh_token},
+    response = client.get(
+        "/api/calendar/events",
+        headers={"Authorization": f"Bearer {access_token}"}
     )
-    assert response.status_code == 200
-    assert response.json()["title"] == "Test Event"
+    assert response.status_code == status.HTTP_200_OK
+    data = response.json()
+    assert len(data) == 2
+    assert data[0]["title"] == payload1["title"]
+    assert data[1]["title"] == payload2["title"]
+    assert data[0]["user_id"] == user.id
+    assert data[1]["user_id"] == user.id
 
-def test_get_events(client: TestClient, db: Session) -> None:
-    user, unhashed_password = generators.create_user(db)
-    rsp = generators.login(db, user.username, unhashed_password)
-    access_token = rsp["access_token"]
-    refresh_token = rsp["refresh_token"]
-    
-    # Create an event to retrieve
-    client.post("/api/calendar/events", 
-        json={
-            "title": "Test Event",
-            "start_time": "2024-03-20T15:00:00Z"
-        },
+
+def test_get_events_filtered(db: Session, client: TestClient) -> None:
+    """Test getting filtered calendar events for a user."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+
+    # Create events
+    payload1 = create_event_payload(0, 1) # Today -> Tomorrow
+    client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload1)
+    payload2 = create_event_payload(5, 6) # In 5 days -> In 6 days
+    client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload2)
+    payload3 = create_event_payload(10, 11) # In 10 days -> In 11 days
+    client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload3)
+
+    # Filter for events starting within the next week
+    start_filter = datetime.utcnow().isoformat()
+    end_filter = (datetime.utcnow() + timedelta(days=7)).isoformat()
+
+    response = client.get(
+        "/api/calendar/events",
         headers={"Authorization": f"Bearer {access_token}"},
-        cookies={"refresh_token": refresh_token},
+        params={"start": start_filter, "end": end_filter}
     )
-    
-    response = client.get("/api/calendar/events", 
+    assert response.status_code == status.HTTP_200_OK
+    data = response.json()
+    assert len(data) == 2 # Should get event 1 and 2
+    assert data[0]["title"] == payload1["title"]
+    assert data[1]["title"] == payload2["title"]
+
+    # Filter for events starting after 8 days
+    start_filter_late = (datetime.utcnow() + timedelta(days=8)).isoformat()
+    response = client.get(
+        "/api/calendar/events",
         headers={"Authorization": f"Bearer {access_token}"},
-        cookies={"refresh_token": refresh_token},
+        params={"start": start_filter_late}
     )
-    assert response.status_code == 200
-    assert len(response.json()) > 0
\ No newline at end of file
+    assert response.status_code == status.HTTP_200_OK
+    data = response.json()
+    assert len(data) == 1 # Should get event 3
+    assert data[0]["title"] == payload3["title"]
+
+
+# --- Test Get Event By ID ---
+
+def test_get_event_by_id_unauthorized(db: Session, client: TestClient) -> None:
+    """Test getting a specific event without authentication."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    payload = create_event_payload()
+    create_response = client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload)
+    event_id = create_response.json()["id"]
+
+    response = client.get(f"/api/calendar/events/{event_id}")
+    assert response.status_code == status.HTTP_401_UNAUTHORIZED
+
+def test_get_event_by_id_success(db: Session, client: TestClient) -> None:
+    """Test getting a specific event successfully."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    payload = create_event_payload()
+    create_response = client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload)
+    event_id = create_response.json()["id"]
+
+    response = client.get(
+        f"/api/calendar/events/{event_id}",
+        headers={"Authorization": f"Bearer {access_token}"}
+    )
+    assert response.status_code == status.HTTP_200_OK
+    data = response.json()
+    assert data["id"] == event_id
+    assert data["title"] == payload["title"]
+    assert data["user_id"] == user.id
+
+def test_get_event_by_id_not_found(db: Session, client: TestClient) -> None:
+    """Test getting a non-existent event."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    non_existent_id = 99999
+
+    response = client.get(
+        f"/api/calendar/events/{non_existent_id}",
+        headers={"Authorization": f"Bearer {access_token}"}
+    )
+    assert response.status_code == status.HTTP_404_NOT_FOUND
+
+def test_get_event_by_id_forbidden(db: Session, client: TestClient) -> None:
+    """Test getting another user's event."""
+    user1, password_user1 = generators.create_user(db)
+    user2, password_user2 = generators.create_user(db)
+
+    # Log in as user1 and create an event
+    login_rsp1 = generators.login(db, user1.username, password_user1)
+    access_token1 = login_rsp1["access_token"]
+    payload = create_event_payload()
+    create_response = client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token1}"}, json=payload)
+    event_id = create_response.json()["id"]
+
+    # Log in as user2 and try to get user1's event
+    login_rsp2 = generators.login(db, user2.username, password_user2)
+    access_token2 = login_rsp2["access_token"]
+
+    response = client.get(
+        f"/api/calendar/events/{event_id}",
+        headers={"Authorization": f"Bearer {access_token2}"}
+    )
+    assert response.status_code == status.HTTP_404_NOT_FOUND # Service layer returns 404 if user_id doesn't match
+
+# --- Test Update Event ---
+
+def test_update_event_unauthorized(db: Session, client: TestClient) -> None:
+    """Test updating an event without authentication."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    payload = create_event_payload()
+    create_response = client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload)
+    event_id = create_response.json()["id"]
+    update_payload = {"title": "Updated Title"}
+
+    response = client.patch(f"/api/calendar/events/{event_id}", json=update_payload)
+    assert response.status_code == status.HTTP_401_UNAUTHORIZED
+
+def test_update_event_success(db: Session, client: TestClient) -> None:
+    """Test updating an event successfully."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    payload = create_event_payload()
+    create_response = client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload)
+    assert create_response.status_code == status.HTTP_201_CREATED # Ensure creation check uses 201
+    event_id = create_response.json()["id"]
+
+    update_payload = {
+        "title": "Updated Title",
+        "description": "Updated description.",
+        "all_day": not payload["all_day"] # Toggle all_day
+    }
+
+    response = client.patch(
+        f"/api/calendar/events/{event_id}",
+        headers={"Authorization": f"Bearer {access_token}"},
+        json=update_payload
+    )
+    assert response.status_code == status.HTTP_200_OK
+    data = response.json()
+    assert data["id"] == event_id
+    assert data["title"] == update_payload["title"]
+    assert data["description"] == update_payload["description"]
+    assert data["all_day"] == update_payload["all_day"]
+    assert data["start"] == payload["start"] # Check correct field name 'start'
+    assert data["user_id"] == user.id
+
+    # Verify in DB
+    event_in_db = db.query(CalendarEvent).filter(CalendarEvent.id == event_id).first()
+    assert event_in_db is not None
+    assert event_in_db.title == update_payload["title"]
+    assert event_in_db.description == update_payload["description"]
+    assert event_in_db.all_day == update_payload["all_day"]
+
+def test_update_event_not_found(db: Session, client: TestClient) -> None:
+    """Test updating a non-existent event."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    non_existent_id = 99999
+    update_payload = {"title": "Updated Title"}
+
+    response = client.patch(
+        f"/api/calendar/events/{non_existent_id}",
+        headers={"Authorization": f"Bearer {access_token}"},
+        json=update_payload
+    )
+    assert response.status_code == status.HTTP_404_NOT_FOUND
+
+def test_update_event_forbidden(db: Session, client: TestClient) -> None:
+    """Test updating another user's event."""
+    user1, password_user1 = generators.create_user(db)
+    user2, password_user2 = generators.create_user(db)
+
+    # Log in as user1 and create an event
+    login_rsp1 = generators.login(db, user1.username, password_user1)
+    access_token1 = login_rsp1["access_token"]
+    payload = create_event_payload()
+    create_response = client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token1}"}, json=payload)
+    event_id = create_response.json()["id"]
+
+    # Log in as user2 and try to update user1's event
+    login_rsp2 = generators.login(db, user2.username, password_user2)
+    access_token2 = login_rsp2["access_token"]
+    update_payload = {"title": "Updated by User 2"}
+
+    response = client.patch(
+        f"/api/calendar/events/{event_id}",
+        headers={"Authorization": f"Bearer {access_token2}"},
+        json=update_payload
+    )
+    assert response.status_code == status.HTTP_404_NOT_FOUND # Service layer returns 404 if user_id doesn't match
+
+# --- Test Delete Event ---
+
+def test_delete_event_unauthorized(db: Session, client: TestClient) -> None:
+    """Test deleting an event without authentication."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    payload = create_event_payload()
+    create_response = client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload)
+    event_id = create_response.json()["id"]
+
+    response = client.delete(f"/api/calendar/events/{event_id}")
+    assert response.status_code == status.HTTP_401_UNAUTHORIZED
+
+def test_delete_event_success(db: Session, client: TestClient) -> None:
+    """Test deleting an event successfully."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    payload = create_event_payload()
+    create_response = client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token}"}, json=payload)
+    assert create_response.status_code == status.HTTP_201_CREATED # Ensure creation check uses 201
+    event_id = create_response.json()["id"]
+
+    # Verify event exists before delete
+    event_in_db = db.query(CalendarEvent).filter(CalendarEvent.id == event_id).first()
+    assert event_in_db is not None
+
+    response = client.delete(
+        f"/api/calendar/events/{event_id}",
+        headers={"Authorization": f"Bearer {access_token}"}
+    )
+    assert response.status_code == status.HTTP_204_NO_CONTENT
+
+    # Verify event is deleted from DB
+    event_in_db = db.query(CalendarEvent).filter(CalendarEvent.id == event_id).first()
+    assert event_in_db is None
+
+    # Try getting the deleted event (should be 404)
+    get_response = client.get(
+        f"/api/calendar/events/{event_id}",
+        headers={"Authorization": f"Bearer {access_token}"}
+    )
+    assert get_response.status_code == status.HTTP_404_NOT_FOUND
+
+
+def test_delete_event_not_found(db: Session, client: TestClient) -> None:
+    """Test deleting a non-existent event."""
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    access_token = login_rsp["access_token"]
+    non_existent_id = 99999
+
+    response = client.delete(
+        f"/api/calendar/events/{non_existent_id}",
+        headers={"Authorization": f"Bearer {access_token}"}
+    )
+    # The service layer raises NotFound, which should result in 404
+    assert response.status_code == status.HTTP_404_NOT_FOUND
+
+
+def test_delete_event_forbidden(db: Session, client: TestClient) -> None:
+    """Test deleting another user's event."""
+    user1, password_user1 = generators.create_user(db)
+    user2, password_user2 = generators.create_user(db)
+
+    # Log in as user1 and create an event
+    login_rsp1 = generators.login(db, user1.username, password_user1)
+    access_token1 = login_rsp1["access_token"]
+    payload = create_event_payload()
+    create_response = client.post("/api/calendar/events", headers={"Authorization": f"Bearer {access_token1}"}, json=payload)
+    event_id = create_response.json()["id"]
+
+    # Log in as user2 and try to delete user1's event
+    login_rsp2 = generators.login(db, user2.username, password_user2)
+    access_token2 = login_rsp2["access_token"]
+
+    response = client.delete(
+        f"/api/calendar/events/{event_id}",
+        headers={"Authorization": f"Bearer {access_token2}"}
+    )
+    # The service layer raises NotFound if user_id doesn't match, resulting in 404
+    assert response.status_code == status.HTTP_404_NOT_FOUND
+
+    # Verify event still exists for user1
+    event_in_db = db.query(CalendarEvent).filter(CalendarEvent.id == event_id).first()
+    assert event_in_db is not None
+    assert event_in_db.user_id == user1.id
+
diff --git a/backend/tests/test_main.py b/backend/tests/test_main.py
new file mode 100644
index 0000000..2401a93
--- /dev/null
+++ b/backend/tests/test_main.py
@@ -0,0 +1,10 @@
+import pytest
+from fastapi.testclient import TestClient
+
+# No database needed for this simple test
+
+def test_health_check(client: TestClient):
+    """Test the health check endpoint."""
+    response = client.get("/api/health")
+    assert response.status_code == 200
+    assert response.json() == {"status": "ok"}
diff --git a/backend/tests/test_nlp.py b/backend/tests/test_nlp.py
new file mode 100644
index 0000000..28f39e3
--- /dev/null
+++ b/backend/tests/test_nlp.py
@@ -0,0 +1,218 @@
+import pytest
+from fastapi import status
+from fastapi.testclient import TestClient
+from sqlalchemy.orm import Session
+from unittest.mock import patch, MagicMock
+from datetime import datetime
+
+from tests.helpers import generators
+from modules.nlp.schemas import ProcessCommandRequest, ProcessCommandResponse
+from modules.nlp.models import MessageSender, ChatMessage # Import necessary models/enums
+
+# --- Mocks ---
+# Mock the external AI call and internal service functions
+@pytest.fixture(autouse=True)
+def mock_nlp_services():
+    with patch("modules.nlp.api.process_request") as mock_process, \
+         patch("modules.nlp.api.ask_ai") as mock_ask, \
+         patch("modules.nlp.api.save_chat_message") as mock_save, \
+         patch("modules.nlp.api.get_chat_history") as mock_get_history, \
+         patch("modules.nlp.api.create_calendar_event") as mock_create_event, \
+         patch("modules.nlp.api.get_calendar_events") as mock_get_events, \
+         patch("modules.nlp.api.update_calendar_event") as mock_update_event, \
+         patch("modules.nlp.api.delete_calendar_event") as mock_delete_event, \
+         patch("modules.nlp.api.todo_service.create_todo") as mock_create_todo, \
+         patch("modules.nlp.api.todo_service.get_todos") as mock_get_todos, \
+         patch("modules.nlp.api.todo_service.update_todo") as mock_update_todo, \
+         patch("modules.nlp.api.todo_service.delete_todo") as mock_delete_todo:
+        mocks = {
+            "process_request": mock_process,
+            "ask_ai": mock_ask,
+            "save_chat_message": mock_save,
+            "get_chat_history": mock_get_history,
+            "create_calendar_event": mock_create_event,
+            "get_calendar_events": mock_get_events,
+            "update_calendar_event": mock_update_event,
+            "delete_calendar_event": mock_delete_event,
+            "create_todo": mock_create_todo,
+            "get_todos": mock_get_todos,
+            "update_todo": mock_update_todo,
+            "delete_todo": mock_delete_todo,
+        }
+        yield mocks
+
+# --- Helper Function ---
+def _login_user(db: Session, client: TestClient):
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    return user, login_rsp["access_token"], login_rsp["refresh_token"]
+
+# --- Tests for /process-command ---
+
+def test_process_command_ask_ai(client: TestClient, db: Session, mock_nlp_services):
+    user, access_token, refresh_token = _login_user(db, client)
+    user_input = "What is the capital of France?"
+    mock_nlp_services["process_request"].return_value = {
+        "intent": "ask_ai",
+        "params": {"request": user_input},
+        "response_text": "Let me check that for you."
+    }
+    mock_nlp_services["ask_ai"].return_value = "The capital of France is Paris."
+
+    response = client.post(
+        "/api/nlp/process-command",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json={"user_input": user_input}
+    )
+
+    assert response.status_code == status.HTTP_200_OK
+    assert response.json() == ProcessCommandResponse(responses=["Let me check that for you.", "The capital of France is Paris."]).model_dump()
+    # Verify save calls: user message, initial AI response, final AI answer
+    assert mock_nlp_services["save_chat_message"].call_count == 3
+    mock_nlp_services["save_chat_message"].assert_any_call(db, user_id=user.id, sender=MessageSender.USER, text=user_input)
+    mock_nlp_services["save_chat_message"].assert_any_call(db, user_id=user.id, sender=MessageSender.AI, text="Let me check that for you.")
+    mock_nlp_services["save_chat_message"].assert_any_call(db, user_id=user.id, sender=MessageSender.AI, text="The capital of France is Paris.")
+    mock_nlp_services["ask_ai"].assert_called_once_with(request=user_input)
+
+def test_process_command_get_calendar(client: TestClient, db: Session, mock_nlp_services):
+    user, access_token, refresh_token = _login_user(db, client)
+    user_input = "What are my events today?"
+    mock_nlp_services["process_request"].return_value = {
+        "intent": "get_calendar_events",
+        "params": {"start": "2024-01-01T00:00:00Z", "end": "2024-01-01T23:59:59Z"}, # Example params
+        "response_text": "Okay, fetching your events."
+    }
+    # Mock the actual event model returned by the service
+    mock_event = MagicMock()
+    mock_event.title = "Team Meeting"
+    mock_event.start = datetime(2024, 1, 1, 10, 0, 0)
+    mock_event.end = datetime(2024, 1, 1, 11, 0, 0)
+    mock_nlp_services["get_calendar_events"].return_value = [mock_event]
+
+    response = client.post(
+        "/api/nlp/process-command",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json={"user_input": user_input}
+    )
+
+    assert response.status_code == status.HTTP_200_OK
+    expected_responses = [
+        "Okay, fetching your events.",
+        "Here are the events:",
+        "- Team Meeting (2024-01-01 10:00 - 11:00)"
+    ]
+    assert response.json() == ProcessCommandResponse(responses=expected_responses).model_dump()
+    assert mock_nlp_services["save_chat_message"].call_count == 4 # User, Initial AI, Header, Event
+    mock_nlp_services["get_calendar_events"].assert_called_once()
+
+def test_process_command_add_todo(client: TestClient, db: Session, mock_nlp_services):
+    user, access_token, refresh_token = _login_user(db, client)
+    user_input = "Add buy milk to my list"
+    mock_nlp_services["process_request"].return_value = {
+        "intent": "add_todo",
+        "params": {"task": "buy milk"},
+        "response_text": "Adding it now."
+    }
+    # Mock the actual Todo model returned by the service
+    mock_todo = MagicMock()
+    mock_todo.task = "buy milk"
+    mock_todo.id = 1
+    mock_nlp_services["create_todo"].return_value = mock_todo
+
+    response = client.post(
+        "/api/nlp/process-command",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json={"user_input": user_input}
+    )
+
+    assert response.status_code == status.HTTP_200_OK
+    expected_responses = ["Adding it now.", "Added TODO: 'buy milk' (ID: 1)."]
+    assert response.json() == ProcessCommandResponse(responses=expected_responses).model_dump()
+    assert mock_nlp_services["save_chat_message"].call_count == 3 # User, Initial AI, Confirmation AI
+    mock_nlp_services["create_todo"].assert_called_once()
+
+def test_process_command_clarification(client: TestClient, db: Session, mock_nlp_services):
+    user, access_token, refresh_token = _login_user(db, client)
+    user_input = "Delete the event"
+    clarification_text = "Which event do you mean? Please provide the ID."
+    mock_nlp_services["process_request"].return_value = {
+        "intent": "clarification_needed",
+        "params": {"request": user_input},
+        "response_text": clarification_text
+    }
+
+    response = client.post(
+        "/api/nlp/process-command",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json={"user_input": user_input}
+    )
+
+    assert response.status_code == status.HTTP_200_OK
+    assert response.json() == ProcessCommandResponse(responses=[clarification_text]).model_dump()
+    # Verify save calls: user message, clarification AI response
+    assert mock_nlp_services["save_chat_message"].call_count == 2
+    mock_nlp_services["save_chat_message"].assert_any_call(db, user_id=user.id, sender=MessageSender.USER, text=user_input)
+    mock_nlp_services["save_chat_message"].assert_any_call(db, user_id=user.id, sender=MessageSender.AI, text=clarification_text)
+    # Ensure no action services were called
+    mock_nlp_services["delete_calendar_event"].assert_not_called()
+
+def test_process_command_error_intent(client: TestClient, db: Session, mock_nlp_services):
+    user, access_token, refresh_token = _login_user(db, client)
+    user_input = "Gibberish request"
+    error_text = "Sorry, I didn't understand that."
+    mock_nlp_services["process_request"].return_value = {
+        "intent": "error",
+        "params": {},
+        "response_text": error_text
+    }
+
+    response = client.post(
+        "/api/nlp/process-command",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json={"user_input": user_input}
+    )
+
+    assert response.status_code == status.HTTP_200_OK
+    assert response.json() == ProcessCommandResponse(responses=[error_text]).model_dump()
+    # Verify save calls: user message, error AI response
+    assert mock_nlp_services["save_chat_message"].call_count == 2
+    mock_nlp_services["save_chat_message"].assert_any_call(db, user_id=user.id, sender=MessageSender.USER, text=user_input)
+    mock_nlp_services["save_chat_message"].assert_any_call(db, user_id=user.id, sender=MessageSender.AI, text=error_text)
+
+# --- Tests for /history ---
+
+def test_get_history(client: TestClient, db: Session, mock_nlp_services):
+    user, access_token, refresh_token = _login_user(db, client)
+
+    # Mock the history data returned by the service
+    mock_history = [
+        ChatMessage(id=1, user_id=user.id, sender=MessageSender.USER, text="Hello", timestamp=datetime.now()),
+        ChatMessage(id=2, user_id=user.id, sender=MessageSender.AI, text="Hi there!", timestamp=datetime.now())
+    ]
+    mock_nlp_services["get_chat_history"].return_value = mock_history
+
+    response = client.get(
+        "/api/nlp/history",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token}
+    )
+
+    assert response.status_code == status.HTTP_200_OK
+    # We need to compare JSON representations as datetime objects might differ slightly
+    response_data = response.json()
+    assert len(response_data) == 2
+    assert response_data[0]["text"] == "Hello"
+    assert response_data[1]["text"] == "Hi there!"
+    mock_nlp_services["get_chat_history"].assert_called_once_with(db, user_id=user.id, limit=50)
+
+def test_get_history_unauthorized(client: TestClient):
+    response = client.get("/api/nlp/history")
+    assert response.status_code == status.HTTP_401_UNAUTHORIZED
+
+# Add more tests for other intents (update/delete calendar/todo, unknown intent, etc.)
+# Add tests for error handling within the API endpoint (e.g., missing IDs for update/delete)
diff --git a/backend/tests/test_todo.py b/backend/tests/test_todo.py
new file mode 100644
index 0000000..573ea76
--- /dev/null
+++ b/backend/tests/test_todo.py
@@ -0,0 +1,210 @@
+import pytest
+from fastapi import status
+from fastapi.testclient import TestClient
+from sqlalchemy.orm import Session
+from datetime import date
+
+from tests.helpers import generators
+from modules.todo import schemas # Import schemas
+
+# Helper Function
+def _login_user(db: Session, client: TestClient):
+    user, password = generators.create_user(db)
+    login_rsp = generators.login(db, user.username, password)
+    return user, login_rsp["access_token"], login_rsp["refresh_token"]
+
+# --- Test CRUD Operations ---
+
+def test_create_todo(client: TestClient, db: Session):
+    user, access_token, refresh_token = _login_user(db, client)
+    today_date = date.today()
+    # Format the date string to match the expected response format "YYYY-MM-DDTHH:MM:SS"
+    todo_data = {
+        "task": "Test TODO",
+        "date": f"{today_date.isoformat()}T00:00:00",
+        "remind": True
+    }
+
+    response = client.post(
+        "/api/todos/",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json=todo_data
+    )
+
+    assert response.status_code == status.HTTP_201_CREATED
+    data = response.json()
+    assert data["task"] == todo_data["task"]
+    assert data["date"] == todo_data["date"]
+    assert data["remind"] == todo_data["remind"]
+    assert data["complete"] is False # Default
+    assert "id" in data
+    assert data["owner_id"] == user.id
+
+def test_read_todos(client: TestClient, db: Session):
+    user, access_token, refresh_token = _login_user(db, client)
+    # Create some todos for the user
+    client.post("/api/todos/", headers={"Authorization": f"Bearer {access_token}"}, cookies={"refresh_token": refresh_token}, json={"task": "Todo 1"})
+    client.post("/api/todos/", headers={"Authorization": f"Bearer {access_token}"}, cookies={"refresh_token": refresh_token}, json={"task": "Todo 2"})
+
+    # Create a todo for another user
+    other_user, other_password = generators.create_user(db)
+    other_login_rsp = generators.login(db, other_user.username, other_password)
+    other_access_token = other_login_rsp["access_token"]
+    other_refresh_token = other_login_rsp["refresh_token"]
+    client.post("/api/todos/", headers={"Authorization": f"Bearer {other_access_token}"}, cookies={"refresh_token": other_refresh_token}, json={"task": "Other User Todo"})
+
+
+    response = client.get(
+        "/api/todos/",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token}
+    )
+
+    assert response.status_code == status.HTTP_200_OK
+    data = response.json()
+    assert len(data) == 2 # Should only get todos for the logged-in user
+    assert data[0]["task"] == "Todo 1"
+    assert data[1]["task"] == "Todo 2"
+
+def test_read_single_todo(client: TestClient, db: Session):
+    user, access_token, refresh_token = _login_user(db, client)
+    create_response = client.post(
+        "/api/todos/",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json={"task": "Specific Todo"}
+    )
+    todo_id = create_response.json()["id"]
+
+    response = client.get(
+        f"/api/todos/{todo_id}",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token}
+    )
+
+    assert response.status_code == status.HTTP_200_OK
+    data = response.json()
+    assert data["id"] == todo_id
+    assert data["task"] == "Specific Todo"
+    assert data["owner_id"] == user.id
+
+def test_read_single_todo_not_found(client: TestClient, db: Session):
+    user, access_token, refresh_token = _login_user(db, client)
+    response = client.get(
+        "/api/todos/9999", # Non-existent ID
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token}
+    )
+    assert response.status_code == status.HTTP_404_NOT_FOUND
+
+def test_read_single_todo_forbidden(client: TestClient, db: Session):
+    user, access_token, refresh_token = _login_user(db, client)
+
+    # Create a todo for another user
+    other_user, other_password = generators.create_user(db)
+    other_login_rsp = generators.login(db, other_user.username, other_password)
+    other_access_token = other_login_rsp["access_token"]
+    other_refresh_token = other_login_rsp["refresh_token"]
+    other_create_response = client.post("/api/todos/", headers={"Authorization": f"Bearer {other_access_token}"}, cookies={"refresh_token": other_refresh_token}, json={"task": "Other User Todo"})
+    other_todo_id = other_create_response.json()["id"]
+
+    # Try to access the other user's todo
+    response = client.get(
+        f"/api/todos/{other_todo_id}",
+        headers={"Authorization": f"Bearer {access_token}"}, # Using the first user's token
+        cookies={"refresh_token": refresh_token}
+    )
+    assert response.status_code == status.HTTP_404_NOT_FOUND # Service raises 404 if not found for *this* user
+
+def test_update_todo(client: TestClient, db: Session):
+    user, access_token, refresh_token = _login_user(db, client)
+    create_response = client.post(
+        "/api/todos/",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json={"task": "Update Me"}
+    )
+    todo_id = create_response.json()["id"]
+
+    update_data = {"task": "Updated Task", "complete": True}
+    response = client.put(
+        f"/api/todos/{todo_id}",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json=update_data
+    )
+
+    assert response.status_code == status.HTTP_200_OK
+    data = response.json()
+    assert data["id"] == todo_id
+    assert data["task"] == update_data["task"]
+    assert data["complete"] == update_data["complete"]
+    assert data["owner_id"] == user.id
+
+    # Verify update by reading again
+    get_response = client.get(
+        f"/api/todos/{todo_id}",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token}
+    )
+    assert get_response.json()["task"] == update_data["task"]
+    assert get_response.json()["complete"] == update_data["complete"]
+
+
+def test_update_todo_not_found(client: TestClient, db: Session):
+    user, access_token, refresh_token = _login_user(db, client)
+    update_data = {"task": "Updated Task", "complete": True}
+    response = client.put(
+        "/api/todos/9999", # Non-existent ID
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json=update_data
+    )
+    assert response.status_code == status.HTTP_404_NOT_FOUND
+
+def test_delete_todo(client: TestClient, db: Session):
+    user, access_token, refresh_token = _login_user(db, client)
+    create_response = client.post(
+        "/api/todos/",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token},
+        json={"task": "Delete Me"}
+    )
+    todo_id = create_response.json()["id"]
+
+    response = client.delete(
+        f"/api/todos/{todo_id}",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token}
+    )
+
+    assert response.status_code == status.HTTP_200_OK # Delete returns the deleted item
+    assert response.json()["id"] == todo_id
+
+    # Verify deletion by trying to read
+    get_response = client.get(
+        f"/api/todos/{todo_id}",
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token}
+    )
+    assert get_response.status_code == status.HTTP_404_NOT_FOUND
+
+def test_delete_todo_not_found(client: TestClient, db: Session):
+    user, access_token, refresh_token = _login_user(db, client)
+    response = client.delete(
+        "/api/todos/9999", # Non-existent ID
+        headers={"Authorization": f"Bearer {access_token}"},
+        cookies={"refresh_token": refresh_token}
+    )
+    assert response.status_code == status.HTTP_404_NOT_FOUND
+
+# --- Test Authentication/Authorization ---
+
+def test_create_todo_unauthorized(client: TestClient):
+    response = client.post("/api/todos/", json={"task": "No Auth"})
+    assert response.status_code == status.HTTP_401_UNAUTHORIZED
+
+def test_read_todos_unauthorized(client: TestClient):
+    response = client.get("/api/todos/")
+    assert response.status_code == status.HTTP_401_UNAUTHORIZED