From 8cf6ceb63f10781e80464d31d12a99d45b82e0e6 Mon Sep 17 00:00:00 2001
From: Arwa Sharif <starskycloud0@gmail.com>
Date: Sun, 8 Feb 2026 19:18:25 -0500
Subject: [PATCH 1/8]  feat(api): add history retrieval endpoints and link data
 to user_id

---
 server/main.py | 137 +++++++++++++++++++++++++++++++++----------------
 1 file changed, 94 insertions(+), 43 deletions(-)

diff --git a/server/main.py b/server/main.py
index e26a74d..321bc00 100644
--- a/server/main.py
+++ b/server/main.py
@@ -2,15 +2,22 @@
 import os
 from contextlib import asynccontextmanager
 from dotenv import load_dotenv
+from typing import List
 
 from utils import log_time_decorator
+from models import (
+    ChatRequest,
+    ChatResponse,
+    ResumeTailorResponse,
+    ChatSessionResponse,
+    ResumeSessionResponse,
+)
 
 from fastapi import FastAPI, HTTPException, Form
 from fastapi.middleware.cors import CORSMiddleware
 import firebase_admin
 from firebase_admin import credentials, firestore
 from google import genai
-from pydantic import BaseModel
 
 
 # --- Define db as None at the top level ---
@@ -77,25 +84,8 @@ async def lifespan(app: FastAPI):
 )
 
 
-# --- Pydantic Models ---
-class ChatRequest(BaseModel):
-    message: str
-
-
-class ChatResponse(BaseModel):
-    response: str
-
-
-class ResumeTailorRequest(BaseModel):
-    base_resume: str
-    job_description: str
-
-
-class ResumeTailorResponse(BaseModel):
-    tailored_resume: str
-
-
 # --- API Endpoints ---
+# --- Post Chat Endpoint ---
 @app.post(
     "/chat", response_model=ChatResponse, summary="Handles Chat with Gemini AI Agent"
 )
@@ -115,6 +105,7 @@ async def chat_with_agent(request: ChatRequest):
 
     try:
         user_message = request.message
+        uid = request.user_id if request.user_id else None
 
         # Create a single client object
         client = genai.Client()
@@ -127,25 +118,20 @@ async def chat_with_agent(request: ChatRequest):
         # Extract the AI's reply from the response
         ai_reply = response.text
 
-        # Use a temporary, hardcoded user ID
-        temp_user_id = "user_abc_123"  # In a real app, use actual user IDs
-
-        # Save the conversation to Firestore
-        chat_data = {
-            "userId": temp_user_id,
-            "messages": [
-                {"role": "user", "content": user_message},
-                {"role": "ai", "content": ai_reply},
-            ],
-            "timestamp": firestore.SERVER_TIMESTAMP,
-        }
-
-        # Use the db client to add the data to a 'chats' collection.
-        # Firestore will automatically create the collection if it doesn't exist.
-        doc_ref = db.collection("chats").add(chat_data)
-
-        # This will print the ID of the new document to your terminal for confirmation.
-        print(f"Saved chat with ID: {doc_ref[1].id}")
+        # Only save to DB if we have a real user
+        if uid and db:
+            chat_data = {
+                "user_id": uid,
+                "messages": [
+                    {"role": "user", "content": user_message},
+                    {"role": "ai", "content": ai_reply},
+                ],
+                "timestamp": firestore.SERVER_TIMESTAMP,
+            }
+            # Capture the return value
+            doc_ref = db.collection("chats").add(chat_data)
+
+            print(f"Saved chat with ID: {doc_ref[1].id}")
 
         # 4. Return the model's response
         return ChatResponse(response=response.text)
@@ -153,18 +139,20 @@ async def chat_with_agent(request: ChatRequest):
     except Exception as e:
         print(f"An error occured: {e}")
         raise HTTPException(
-            status_code=500, detail="Failed to get reponst from AI model"
+            status_code=500, detail="Failed to get response from AI model"
         )
 
 
-# --- Resumes Endpoint ---
+# --- Post Resumes Endpoint ---
 @app.post(
     "/resumes",
     response_model=ResumeTailorResponse,
     summary="Generates a tailored resume",
 )
 @log_time_decorator
-async def generate_resume(base_resume: str = Form(), job_description: str = Form()):
+async def generate_resume(
+    base_resume: str = Form(), job_description: str = Form(), user_id: str = Form()
+):
     """
     Endpoint to tailor a resume for a specific job description using Gemini AI.
     This endpoint accepts form data, making it easy to paste multi-line text.
@@ -209,12 +197,12 @@ async def generate_resume(base_resume: str = Form(), job_description: str = Form
         tailored_resume_obj = ResumeTailorResponse(tailored_resume=response.text)
 
         resume_record = {
-            "userId": "demo_user_123",
+            "user_id": user_id,
             "originalResume": base_resume,
             "jobDescription": job_description,
             "tailoredResume": tailored_resume_obj.tailored_resume,
             "createdAt": datetime.datetime.now(datetime.timezone.utc),
-            "meta": {"modelUsed": "gemini-1.5-flash", "processingTimeMs": 1200},
+            "meta": {"modelUsed": "gemini-2.5-flash", "processingTimeMs": 1200},
         }
 
         # Save to Firestore
@@ -229,3 +217,66 @@ async def generate_resume(base_resume: str = Form(), job_description: str = Form
     except Exception as e:
         print(f"An error occurred: {e}")
         raise HTTPException(status_code=500, detail="Failed to generate resume.")
+
+
+# --- Read Chats Endpoint ---
+@app.get("/chats/{user_id}", response_model=List[ChatSessionResponse])
+async def read_chats(user_id: str):
+    try:
+        # Query the collection for docs belonging to this user
+        # Ew also order them by timestamp so the newest (or oldest) show up correctly
+        query = (
+            db.collection("chats")
+            .where("user_id", "==", user_id)
+            .order_by("timestamp", direction=firestore.Query.DESCENDING)
+        )
+        docs = query.stream()
+
+        history = []
+
+        for doc in docs:
+            data = doc.to_dict()
+            history.append(
+                {
+                    "id": doc.id,
+                    "messages": data.get("messages", []),
+                    # Handle potential missing timestamps gracefully
+                    "timestamp": data.get("timestamp") or datetime.datetime.now(),
+                }
+            )
+
+        return history
+
+    except Exception as e:
+        print(f"Error fetching history: {e}")
+        raise HTTPException(status_code=500, detail=str(e))
+
+
+# --- Read Resume Endpoint ---
+@app.get("/resumes/{user_id}", response_model=List[ResumeSessionResponse])
+async def read_resumes(user_id: str):
+    try:
+        query = (
+            db.collection("tailored_resumes")
+            .where("user_id", "==", user_id)
+            .order_by("createdAt", direction=firestore.Query.DESCENDING)
+        )
+        docs = query.stream()
+        history = []
+
+        for doc in docs:
+            data = doc.to_dict()
+            history.append(
+                {
+                    "id": doc.id,
+                    "originalResume": data.get("originalResume", []),
+                    "tailoredResume": data.get("tailoredResume", []),
+                    "createdAt": data.get("createdAt") or datetime.datetime.now(),
+                }
+            )
+
+        return history
+
+    except Exception as e:
+        print(f"Error fetching history: {e}")
+        raise HTTPException(status_code=500, detail=str(e))

From 0fec68006d6888e2f4c7599b8ba1b7587e480d95 Mon Sep 17 00:00:00 2001
From: Arwa Sharif <starskycloud0@gmail.com>
Date: Sun, 8 Feb 2026 19:19:03 -0500
Subject: [PATCH 2/8] refactor(api): move pydantic models to dedicated
 models.py

---
 server/models.py | 34 ++++++++++++++++++++++++++++++++++
 1 file changed, 34 insertions(+)
 create mode 100644 server/models.py

diff --git a/server/models.py b/server/models.py
new file mode 100644
index 0000000..74bdfd2
--- /dev/null
+++ b/server/models.py
@@ -0,0 +1,34 @@
+from pydantic import BaseModel
+from typing import List
+import datetime
+
+
+class ChatRequest(BaseModel):
+    message: str
+    user_id: str
+
+
+class ChatResponse(BaseModel):
+    response: str
+
+
+class ResumeTailorResponse(BaseModel):
+    tailored_resume: str
+
+
+class MessageModel(BaseModel):
+    role: str
+    content: str
+
+
+class ChatSessionResponse(BaseModel):
+    id: str
+    messages: List[MessageModel]
+    timestamp: datetime.datetime
+
+
+class ResumeSessionResponse(BaseModel):
+    id: str
+    originalResume: str
+    tailoredResume: str
+    createdAt: datetime.datetime

From 2023ea65983fa8bb210751811cc00a4fd1188855 Mon Sep 17 00:00:00 2001
From: Arwa Sharif <starskycloud0@gmail.com>
Date: Sun, 8 Feb 2026 19:23:42 -0500
Subject: [PATCH 3/8] feat(fe): align API keys to user_id and implement
 unauthenticated UI guard

---
 client/components/Chat.tsx          | 60 ++++++++++++++++--------
 client/components/ResumeBuilder.tsx | 71 +++++++++++++++++++----------
 2 files changed, 87 insertions(+), 44 deletions(-)

diff --git a/client/components/Chat.tsx b/client/components/Chat.tsx
index 66a90d8..d85558e 100644
--- a/client/components/Chat.tsx
+++ b/client/components/Chat.tsx
@@ -1,15 +1,17 @@
 "use client";
 import { useState } from "react";
 import ReactMarkdown from "react-markdown";
+import { useAuth } from "@/context/AuthContext";
 
 interface Message {
   role: "user" | "ai";
   content: string;
 }
 
-export default function Chat(){
+export default function Chat() {
+  const { user } = useAuth();
   const [input, setInput] = useState("");
-  const [messages, setMessages] = useState<Message[]>([])
+  const [messages, setMessages] = useState<Message[]>([]);
   const [isLoading, setIsLoading] = useState(false);
 
   const handleSend = async () => {
@@ -19,49 +21,69 @@ export default function Chat(){
     setMessages((prev) => [...prev, userMessage]);
     setInput("");
     setIsLoading(true);
-
+    let res;
     try {
-      const res = await fetch(`${process.env.NEXT_PUBLIC_API_URL}/chat`, {
-        method: "POST",
-        headers: { "Content-Type": "application/json" },
-        body: JSON.stringify({ message: userMessage.content }),
-      });
+      if (!user) {
+        res = await fetch(`${process.env.NEXT_PUBLIC_API_URL}/chat`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({
+            message: userMessage.content,
+            userId: "None",
+          }),
+        });
+      } else {
+        res = await fetch(`${process.env.NEXT_PUBLIC_API_URL}/chat`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({
+            message: userMessage.content,
+            userId: user?.uid,
+          }),
+        });
+      }
 
       if (!res.ok) throw new Error("Failed to fetch response");
 
       const data = await res.json();
-      const aiMessage: Message = { role: "ai", content: data.reply || data.response };
+      const aiMessage: Message = {
+        role: "ai",
+        content: data.reply || data.response,
+      };
       setMessages((prev) => [...prev, aiMessage]);
     } catch (error) {
       console.error(error);
       setMessages((prev) => [
         ...prev,
-        { role: "ai", content: "Sorry, I encountered an error. Please try again." },
+        {
+          role: "ai",
+          content: "Sorry, I encountered an error. Please try again.",
+        },
       ]);
     } finally {
       setIsLoading(false);
     }
   };
 
-  
-  return(
- <div className="flex flex-col h-[600px] w-full max-w-2xl border border-brand-gray/30 bg-surface rounded-xl overflow-hidden shadow-2xl shadow-primary/10">
-      
+  return (
+    <div className="flex flex-col h-[600px] w-full max-w-2xl border border-brand-gray/30 bg-surface rounded-xl overflow-hidden shadow-2xl shadow-primary/10">
       {/* Messages Area */}
       <div className="flex-1 overflow-y-auto p-4 flex flex-col gap-4">
         {messages.length === 0 && (
           <div className="text-center text-brand-gray mt-20">
             <p className="text-xl font-semibold text-white">Hi! I'm ApplyAI.</p>
-            <p className="text-sm">Ask me how to improve your resume or prepare for an interview.</p>
+            <p className="text-sm">
+              Ask me how to improve your resume or prepare for an interview.
+            </p>
           </div>
         )}
-        
+
         {messages.map((msg, idx) => (
           <div
             key={idx}
             className={`p-3 rounded-lg max-w-[80%] ${
               msg.role === "user"
-                ? "bg-primary text-white self-end ml-auto shadow-md" 
+                ? "bg-primary text-white self-end ml-auto shadow-md"
                 : "bg-surface border border-brand-gray/30 text-brand-gray self-start"
             }`}
           >
@@ -74,7 +96,7 @@ export default function Chat(){
             )}
           </div>
         ))}
-        
+
         {isLoading && (
           <div className="self-start bg-surface border border-brand-gray/20 p-3 rounded-lg text-brand-gray text-sm animate-pulse">
             Thinking...
@@ -102,4 +124,4 @@ export default function Chat(){
       </div>
     </div>
   );
-}
\ No newline at end of file
+}
diff --git a/client/components/ResumeBuilder.tsx b/client/components/ResumeBuilder.tsx
index d3503de..675e605 100644
--- a/client/components/ResumeBuilder.tsx
+++ b/client/components/ResumeBuilder.tsx
@@ -1,13 +1,15 @@
 "use client";
 import { useState } from "react";
 import type { MouseEvent } from "react";
-import ResumeDisplay from "./ResumeDisplay"
+import { useAuth } from "@/context/AuthContext";
+import ResumeDisplay from "./ResumeDisplay";
 
 // The URL for the deployed backend.
 const API_URL = process.env.NEXT_PUBLIC_API_URL;
 
 export default function ResumeBuilder() {
   // State for the user's input
+  const { user } = useAuth();
   const [resume, setResume] = useState("");
   const [jobDescription, setJobDescription] = useState("");
 
@@ -16,9 +18,8 @@ export default function ResumeBuilder() {
   const [isLoading, setIsLoading] = useState(false);
   const [error, setError] = useState<string | null>(null);
 
-
-
-  const handleSubmit = async (e : MouseEvent<HTMLButtonElement>) => {
+  const handleSubmit = async (e: MouseEvent<HTMLButtonElement>) => {
+    if (!user) return;
     e.preventDefault();
     setIsLoading(true);
     setError(null);
@@ -28,8 +29,9 @@ export default function ResumeBuilder() {
     const formData = new FormData();
     formData.append("base_resume", resume);
     formData.append("job_description", jobDescription);
+    formData.append("userId", user.uid);
 
-    try{
+    try {
       // Make the API call to /resumes endpoint
       const response = await fetch(`${API_URL}/resumes`, {
         method: "POST",
@@ -45,7 +47,7 @@ export default function ResumeBuilder() {
 
       // Update state with the AI's response
       setTailoredResume(data.tailored_resume);
-    } catch (err){
+    } catch (err) {
       console.error("Fetch error:", err);
       if (err instanceof Error) {
         setError(err.message);
@@ -55,17 +57,18 @@ export default function ResumeBuilder() {
     } finally {
       // Whether it worked or failed, we're done loading
       setIsLoading(false);
-    };
-
+    }
   };
 
   return (
     <form className="flex w-full max-w-4xl flex-col gap-8 animate-in">
-      
       <div className="grid grid-cols-1 md:grid-cols-2 gap-6">
         {/* Resume Text Area */}
         <div className="flex flex-col gap-2">
-          <label htmlFor="resume" className="text-lg font-semibold text-primary">
+          <label
+            htmlFor="resume"
+            className="text-lg font-semibold text-primary"
+          >
             1. Your Base Resume
           </label>
           <textarea
@@ -80,7 +83,10 @@ export default function ResumeBuilder() {
 
         {/* Job Description Text Area */}
         <div className="flex flex-col gap-2">
-          <label htmlFor="job-description" className="text-lg font-semibold text-primary">
+          <label
+            htmlFor="job-description"
+            className="text-lg font-semibold text-primary"
+          >
             2. The Job Description
           </label>
           <textarea
@@ -95,20 +101,35 @@ export default function ResumeBuilder() {
       </div>
 
       {/* Submit Button */}
-      <button
-        type="submit"
-        className="self-center w-full md:w-1/2 rounded-full bg-primary px-6 py-4 text-lg font-bold text-white shadow-lg shadow-primary/20 hover:bg-orange-600 hover:scale-[1.02] transition-all focus:outline-none focus:ring-4 focus:ring-primary/30 disabled:opacity-50 disabled:cursor-not-allowed"
-        onClick={handleSubmit}
-        disabled={isLoading}
-      >
-        {isLoading ? (
-          <span className="flex items-center justify-center gap-2">
-            <span className="animate-spin">⏳</span> Tailoring...
-          </span>
-        ) : (
-          "✨ Generate Tailored Resume"
-        )}
-      </button>
+      {!user ? (
+        <div className="flex flex-col items-center gap-4">
+          <p className="text-secondary font-medium bg-secondary/10 px-4 py-2 rounded-lg border border-secondary/20">
+            🔒 Please <strong>Sign In</strong> to generate a tailored resume
+          </p>
+          <button
+            type="button"
+            disabled
+            className="self-center w-full md:w-1/2 rounded-full bg-brand-gray/50 px-6 py-4 text-lg font-bold text-white cursor-not-allowed"
+          >
+            ✨ Generate Tailored Resume
+          </button>
+        </div>
+      ) : (
+        <button
+          type="submit"
+          className="self-center w-full md:w-1/2 rounded-full bg-primary px-6 py-4 text-lg font-bold text-white shadow-lg shadow-primary/20 hover:bg-orange-600 hover:scale-[1.02] transition-all focus:outline-none focus:ring-4 focus:ring-primary/30 disabled:opacity-50 disabled:cursor-not-allowed"
+          onClick={handleSubmit}
+          disabled={isLoading}
+        >
+          {isLoading ? (
+            <span className="flex items-center justify-center gap-2">
+              <span className="animate-spin">⏳</span> Tailoring...
+            </span>
+          ) : (
+            "✨ Generate Tailored Resume"
+          )}
+        </button>
+      )}
 
       {/* Error Message */}
       {error && (

From 8f1f713e35f2c6d58f0c33423047e91f3cddbcfd Mon Sep 17 00:00:00 2001
From: Arwa Sharif <starskycloud0@gmail.com>
Date: Sun, 8 Feb 2026 21:45:29 -0500
Subject: [PATCH 4/8] feat(api): complete history endpoints and fix pydantic
 typing

---
 server/main.py   | 5 +++--
 server/models.py | 1 +
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/server/main.py b/server/main.py
index 321bc00..4bd2658 100644
--- a/server/main.py
+++ b/server/main.py
@@ -269,8 +269,9 @@ async def read_resumes(user_id: str):
             history.append(
                 {
                     "id": doc.id,
-                    "originalResume": data.get("originalResume", []),
-                    "tailoredResume": data.get("tailoredResume", []),
+                    "jobDescription": data.get("jobDescription", ""),
+                    "originalResume": data.get("originalResume", ""),
+                    "tailoredResume": data.get("tailoredResume", ""),
                     "createdAt": data.get("createdAt") or datetime.datetime.now(),
                 }
             )
diff --git a/server/models.py b/server/models.py
index 74bdfd2..d9f90f1 100644
--- a/server/models.py
+++ b/server/models.py
@@ -29,6 +29,7 @@ class ChatSessionResponse(BaseModel):
 
 class ResumeSessionResponse(BaseModel):
     id: str
+    jobDescription: str
     originalResume: str
     tailoredResume: str
     createdAt: datetime.datetime

From 4c2673e4807b3a0cd975739d4ede9e86905b6a79 Mon Sep 17 00:00:00 2001
From: Arwa Sharif <starskycloud0@gmail.com>
Date: Mon, 9 Feb 2026 12:56:45 -0500
Subject: [PATCH 5/8] test(api): fix missing user_id field in tests

---
 server/main.py            | 2 +-
 server/tests/test_main.py | 6 +++++-
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/server/main.py b/server/main.py
index 4bd2658..aec0994 100644
--- a/server/main.py
+++ b/server/main.py
@@ -134,7 +134,7 @@ async def chat_with_agent(request: ChatRequest):
             print(f"Saved chat with ID: {doc_ref[1].id}")
 
         # 4. Return the model's response
-        return ChatResponse(response=response.text)
+        return ChatResponse(response=ai_reply)  # type: ignore
 
     except Exception as e:
         print(f"An error occured: {e}")
diff --git a/server/tests/test_main.py b/server/tests/test_main.py
index 4b81db5..3d91612 100644
--- a/server/tests/test_main.py
+++ b/server/tests/test_main.py
@@ -88,7 +88,10 @@ class MockGeminiResponse:
     )
 
     # --- ACT ---
-    test_message = {"message": "Hello, AI!"}
+    test_message = {
+        "user_id": "test_user_1",
+        "message": "Hello, AI!",
+    }
 
     # NOW, when we call client.post(), the lifespan runs...
     # ...it calls the *mocked* firestore.client()...
@@ -130,6 +133,7 @@ class MockGeminiResponse:
     response = client.post(
         "/resumes",
         data={
+            "user_id": "test_user_1",
             "base_resume": sample_job_data["base_resume"],
             "job_description": sample_job_data["job_description"],
         },

From fd0283826a51af43039b4b1c3e58d280abf4b0f5 Mon Sep 17 00:00:00 2001
From: Arwa Sharif <starskycloud0@gmail.com>
Date: Mon, 9 Feb 2026 13:41:41 -0500
Subject: [PATCH 6/8] docs: add docs to chat and resume history endpoints

---
 server/main.py | 36 ++++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)

diff --git a/server/main.py b/server/main.py
index aec0994..a44cc2a 100644
--- a/server/main.py
+++ b/server/main.py
@@ -222,6 +222,24 @@ async def generate_resume(
 # --- Read Chats Endpoint ---
 @app.get("/chats/{user_id}", response_model=List[ChatSessionResponse])
 async def read_chats(user_id: str):
+    """
+    Retrieve all chat histories for a specific user from Firestore.
+    Queries the 'chats' collection for all documents belonging to the given user_id,
+    ordered by timestamp in descending order (newest first).
+
+    Args:
+        user_id (str): The unique identifier of the user whose chats are to be retrieved.
+
+    Returns:
+        list: A list of dictionaries, each containing:
+            - id (str): The document ID of the chat
+            - messages (list): The list of messages in the chat (empty list if not present)
+            - timestamp (datetime): The timestamp of the chat (defaults to current time if missing)
+
+    Raises:
+        HTTPException: If an error occurs while fetching from Firestore, returns a 500 status code
+            with the error message as detail.
+    """
     try:
         # Query the collection for docs belonging to this user
         # Ew also order them by timestamp so the newest (or oldest) show up correctly
@@ -255,6 +273,24 @@ async def read_chats(user_id: str):
 # --- Read Resume Endpoint ---
 @app.get("/resumes/{user_id}", response_model=List[ResumeSessionResponse])
 async def read_resumes(user_id: str):
+    """
+    Retrieve all tailored resumes for a specific user from the database.
+
+    Args:
+        user_id (str): The unique identifier of the user whose resumes to fetch.
+
+    Returns:
+        list: A list of dictionaries containing resume data, each with the following keys:
+            - id (str): The document ID of the tailored resume.
+            - jobDescription (str): The job description used to tailor the resume.
+            - originalResume (str): The original resume content before tailoring.
+            - tailoredResume (str): The tailored resume content.
+            - createdAt (datetime): The timestamp when the resume was created.
+
+    Raises:
+        HTTPException: If an error occurs while fetching data from the database,
+            returns a 500 Internal Server Error with the error details.
+    """
     try:
         query = (
             db.collection("tailored_resumes")

From 95996428c27408046c0e710149b871d5e3aa284f Mon Sep 17 00:00:00 2001
From: Arwa Sharif <starskycloud0@gmail.com>
Date: Mon, 9 Feb 2026 13:43:05 -0500
Subject: [PATCH 7/8] test(api): add history retrieval tests

---
 server/tests/test_main.py | 80 +++++++++++++++++++++++++++++++++++++++
 1 file changed, 80 insertions(+)

diff --git a/server/tests/test_main.py b/server/tests/test_main.py
index 3d91612..612f69f 100644
--- a/server/tests/test_main.py
+++ b/server/tests/test_main.py
@@ -1,3 +1,4 @@
+import datetime
 import pytest
 from fastapi.testclient import TestClient
 from main import app
@@ -143,6 +144,85 @@ class MockGeminiResponse:
     assert response.json().get("tailored_resume") == "This is a fake tailored resume."
 
 
+def test_read_chats(client):
+    """
+    Test retrieving chats for a specific user.
+
+    This test verifies that the GET /chats endpoint correctly retrieves all chat documents for a given user_id, returning them in the expected format with proper status code.
+    The test mocks the Firestore database chain (collection -> where -> order_by -> stream) to return a sample chat document containing user_id, messages, and timestamp.
+
+    Assertions:
+    - HTTP response status code is 200 (OK)
+    - Response contains at least one chat document
+    - Chat document has the correct ID
+    - Chat messages are properly included in the response
+    """
+    import main
+
+    class MockDoc:
+        id = "chat_doc_123"
+
+        def to_dict(self):
+            return {
+                "user_id": "test_user_1",
+                "messages": [
+                    {"role": "user", "content": "hi"},
+                    {"role": "ai", "content": "hello"},
+                ],
+                "timestamp": datetime.datetime.now(),
+            }
+
+    # Chain the mocks: db.collection().where().order_by().stream()
+    main.db.collection.return_value.where.return_value.order_by.return_value.stream.return_value = [
+        MockDoc()
+    ]
+    response = client.get("/chats/test_user_1")
+
+    data = response.json()
+
+    assert response.status_code == 200
+    assert len(data) > 0
+    assert data[0]["id"] == "chat_doc_123"
+    assert data[0]["messages"][0]["content"] == "hi"
+
+
+def test_read_resumes(client):
+    """
+    Test the GET /resumes/{user_id} endpoint to retrieve user's resume documents.
+
+    Verifies that:
+    - The endpoint returns a 200 status code
+    - The response contains at least one resume document
+    - Resume documents include the correct id and tailoredResume fields
+    - Documents are properly serialized from Firestore to JSON format
+    """
+    import main
+
+    class MockDoc:
+        id = "chat_doc_123"
+
+        def to_dict(self):
+            return {
+                "user_id": "test_user_1",
+                "jobDescription": "SWE",
+                "originalResume": "Python developer",
+                "tailoredResume": "SWE Python developer",
+                "createdAt": datetime.datetime.now(),
+            }
+
+    main.db.collection.return_value.where.return_value.order_by.return_value.stream.return_value = [
+        MockDoc()
+    ]
+
+    response = client.get("/resumes/test_user_1")
+    data = response.json()
+
+    assert response.status_code == 200
+    assert len(data) > 0
+    assert data[0]["id"] == "chat_doc_123"
+    assert data[0]["tailoredResume"] == "SWE Python developer"
+
+
 def test_fixture_is_working(sample_job_data):
     """
     This is a simple test to show how to use the fixture.

From 50bdd03e01b0f209f74ec22541493f9e7de70ce1 Mon Sep 17 00:00:00 2001
From: Arwa Sharif <starskycloud0@gmail.com>
Date: Mon, 9 Feb 2026 14:31:10 -0500
Subject: [PATCH 8/8] docs: update README architecture and roadmap

---
 README.md | 221 ++++++++++++++++++++++--------------------------------
 1 file changed, 91 insertions(+), 130 deletions(-)

diff --git a/README.md b/README.md
index 7af36fa..f82342b 100644
--- a/README.md
+++ b/README.md
@@ -6,160 +6,121 @@ ApplyAI is a cloud-native, AI-powered assistant that helps streamline the job se
 
 - [Overview & Goals](#overview--goals)
 - [Architecture & Tech Stack](#architecture--tech-stack)
-- [Core features](#core-features)
-- [Data model (Firestore)](#data-model-firestore)
-- [Getting started (local development)](#getting-started-local-development)
-- [Deployment notes](#deployment-notes)
-- [Next steps](#next-steps)
+- [Core Features](#core-features)
+- [Data Model (Firestore)](#data-model-firestore)
+- [Getting Started (Local Development)](#getting-started-local-development)
+- [Testing Suite](#testing-suite)
+- [Roadmap](#roadmap)
 - [License](#license)
 
 ## Overview & Goals
 
 ApplyAI helps job seekers automate and improve their job applications. The MVP aims to:
 
-- Reduce application time by automating tailored materials.
-- Increase application throughput by making it easy to generate high-quality applications.
-- Maximize job-fit relevance by emphasizing the most relevant skills in tailored resumes.
+- **Reduce application time** by automating tailored materials.
+- **Increase application throughput** by making it easy to generate high-quality applications.
+- **Maximize job-fit relevance** by emphasizing the most relevant skills in tailored resumes using state-of-the-art LLMs.
 
 ## Architecture & Tech Stack
 
-This project is a full-stack, decoupled application.
-```
-[User Browser (localhost)] <--> [Next.js (React) Frontend] <--> [Firebase Auth]
-          |
-          v
-[FastAPI Backend (Local/Cloud)] <--> [Gemini API]
-          |
-          v
-[Firestore Database]
-```
-
-### Stack & Rationale
+This project is a full-stack, decoupled application following a modern serverless-first architecture.
 
-- **Frontend:** **React (Next.js)** + **TypeScript** + **Tailwind CSS**
-  - *Why:* A modern, production-grade React framework for fast, type-safe, and beautifully styled component-based UI.
-- **Auth:** **Firebase Authentication** (Google OAuth)
-  - *Why:* Secure, easy-to-implement identity management that integrates natively with Firestore.
-- **Backend:** **Python** + **FastAPI**
-  - *Why:* High-performance, asynchronous-first framework that's perfect for I/O-bound tasks like calling external AI APIs.
-- **AI Model:** **Google Gemini API**
-  - *Why:* High-quality generation for conversational chat and complex text-rewriting tasks.
-- **Database:** **Google Firestore (NoSQL)**
-  - *Why:* A serverless, scalable document database for storing unstructured data like chat history.
-- **DevOps:** **Docker** + **Google Cloud Run**
-  - *Why:* A containerized, serverless-first deployment that scales to zero.
-
-## Core features
+```mermaid
+graph TD;
+    User((User)) -->|Next.js/React| FE[Frontend Client];
+    FE -->|Auth| FB_Auth[Firebase Auth];
+    FE -->|JSON/REST| BE[FastAPI Backend];
+    BE -->|Query/Write| FS[(Cloud Firestore)];
+    BE -->|Prompt/Text| Gemini[Google Gemini AI];
+```
 
-1.  **Authentication (Frontend Implemented)**
-    - Secure Google Sign-In via Firebase.
-    - Global session management using React Context.
+To ensure VS Code recognizes the formatting immediately, I have placed the remaining content inside a single block. Copy everything from the box below and paste it directly after your Mermaid diagram.
 
-2.  **Resume Tailoring (Full-Stack Implemented)**
-    - `POST /resumes` endpoint that accepts a base resume and job description.
-    - Generates a tailored resume using Gemini and renders it as formatted Markdown.
-    - Saves the result to Firestore linked to the user.
+Markdown
+### Stack & Rationale
 
-3.  **AI Chat Agent (Backend Implemented)**
-    - `POST /chat` endpoint that takes a user message and returns a Gemini-powered response.
+* **Frontend:** **React (Next.js 15)** + **TypeScript** + **Tailwind CSS**
+  * Modern, type-safe UI with efficient client-side routing and global state management via React Context.
+* **Auth:** **Firebase Authentication** (Google OAuth)
+  * Secure identity management that provides unique UIDs to link data across the stack.
+* **Backend:** **Python 3.12** + **FastAPI**
+  * High-performance, asynchronous framework optimized for I/O-bound tasks like AI model inference.
+* **AI Model:** **Google Gemini 2.5 Flash**
+  * Utilized for both conversational "Career Coach" interactions and complex "Resume Tailoring" logic.
+* **Database:** **Google Firestore (NoSQL)**
+  * A serverless document database used to persist user-specific chat history and resume generation sessions.
+* **DevOps:** **GitHub Actions** + **Pytest**
+  * Automated CI/CD pipeline ensuring code quality and 100% mocked backend testing.
+
+## Core Features
+
+1.  **Authentication & Security**
+    * Secure Google Sign-In with persistent session management.
+    * Environment-driven configuration for API keys and Cloud credentials.
+2.  **Persistent AI Chat History**
+    * `POST /chat` and `GET /chats/{user_id}` endpoints.
+    * Career guidance that persists across sessions, allowing users to pick up where they left off.
+3.  **Resume Tailoring Engine**
+    * `POST /resumes` and `GET /resumes/{user_id}` endpoints.
+    * Intelligent rewriting of resumes based on job descriptions, saved to the cloud for future reference.
+
+## Data Model (Firestore)
+
+* **chats** (collection)
+  * `doc_id` (auto-generated)
+    * `user_id` (string)
+    * `messages` (array of `{ role: 'user'|'ai', content: string }`)
+    * `timestamp` (serverTimestamp)
+
+* **tailored_resumes** (collection)
+  * `doc_id` (auto-generated)
+    * `user_id` (string)
+    * `jobDescription` (string)
+    * `originalResume` (string)
+    * `tailoredResume` (string - Markdown)
+    * `createdAt` (timestamp)
+
+## Getting Started (Local Development)
 
-## Data model (Firestore)
+### Prerequisites
+* Python 3.12+ / Node.js 18+
+* Google Cloud Service Account with Firestore and Gemini API access.
 
-- `chats` (collection)
-  - `chatId` (document)
-    - `userId` (string)
-    - `messages` (array of `{ role: 'user'|'ai', content: string }`)
+### 1) Backend (`server/`)
+1. `cd server && python3 -m venv .venv && source .venv/bin/activate`
+2. `pip install -r requirements.txt`
+3. Create `.env` with `GEMINI_API_KEY` and `GOOGLE_APPLICATION_CREDENTIALS`.
+4. Run: `PYTHONPATH=. uvicorn main:app --reload --port 8000`
 
-- `tailored_resumes` (collection)
-  - `resumeId` (document)
-    - `userId` (string)
-    - `originalResume` (string)
-    - `jobDescription` (string)
-    - `tailoredResume` (string - Markdown)
-    - `createdAt` (timestamp)
+### 2) Frontend (`client/`)
+1. `cd client && npm install`
+2. Create `.env.local` with your Firebase config and `NEXT_PUBLIC_API_URL`.
+3. Run: `npm run dev`
 
-## Getting started (local development)
+## Testing Suite
 
-This repository is a monorepo containing both the `client` and `server`.
+The backend includes a robust unit testing suite using `Pytest` and `mocker`. To maintain speed and zero-cost CI, all external calls to Gemini and Firestore are fully mocked to prevent network dependency and unnecessary API costs.
 
-### Prerequisites
+**To run tests:**
+```bash
+cd server
+pytest
+```
 
-- Python 3.12+
-- Node.js 18+ and `npm`
-- A Google Cloud project with Firestore, Gemini API, and Firebase Auth enabled.
+## Deployment Notes
 
-### 1) Backend (`server/`)
+The backend is deployed to **Google Cloud Run**. The frontend is currently local but configured for deployment to Vercel or Firebase Hosting.
 
-1.  **Navigate to the server directory:**
-    ```bash
-    cd server
-    ```
-2.  **Create and activate a virtual environment:**
-    ```bash
-    python3 -m venv .venv
-    source .venv/bin/activate
-    ```
-3.  **Install dependencies:**
-    ```bash
-    pip install -r requirements.txt
-    ```
-4.  **Configure environment variables:**
-    Create a `.env` file in `server/` with:
-    ```
-    GEMINI_API_KEY="your-gemini-api-key"
-    GOOGLE_APPLICATION_CREDENTIALS="path/to/service-account.json"
-    ```
-5.  **Run the backend locally:**
-    (Run from root folder)
-    ```bash
-    PYTHONPATH=$PYTHONPATH:$(pwd)/server uvicorn server.main:app --reload --port 8000
-    ```
-    API docs: `http://127.0.0.1:8000/docs`
+* **CORS:** The FastAPI app allows requests from `http://localhost:3000`. For production, update `server/main.py` with the deployed frontend domain.
 
-### 2) Frontend (`client/`)
+## Roadmap
 
-1.  **Navigate to the client directory:**
-    ```bash
-    cd client
-    ```
-2.  **Install dependencies:**
-    ```bash
-    npm install
-    ```
-3.  **Configure environment variables:**
-    Create a `.env.local` file in `client/` with:
-    ```bash
-    # Point to your local Python backend
-    NEXT_PUBLIC_API_URL=[http://127.0.0.1:8000](http://127.0.0.1:8000)
-
-    # Firebase Configuration (Get these from Firebase Console)
-    NEXT_PUBLIC_FIREBASE_API_KEY=...
-    NEXT_PUBLIC_FIREBASE_AUTH_DOMAIN=...
-    NEXT_PUBLIC_FIREBASE_PROJECT_ID=...
-    NEXT_PUBLIC_FIREBASE_STORAGE_BUCKET=...
-    NEXT_PUBLIC_FIREBASE_MESSAGING_SENDER_ID=...
-    NEXT_PUBLIC_FIREBASE_APP_ID=...
-    NEXT_PUBLIC_FIREBASE_MEASUREMENT_ID=...
-    ```
-4.  **Run the frontend locally:**
-    ```bash
-    npm run dev
-    ```
-    App: `http://localhost:3000`
-
-## Deployment notes
-
-The backend is deployed to **Google Cloud Run**. The frontend is currently local but can be deployed to Vercel or Firebase Hosting.
-
-- **CORS:** The FastAPI app allows requests from `http://localhost:3000`. For production, update `server/main.py` with the deployed frontend domain.
-
-## Next steps
-
-- [x] Render the tailored resume as Markdown.
-- [x] Implement full user authentication (Firebase Auth).
-- [ ] Connect Frontend User ID to Backend (Save real user data).
-- [ ] Implement the frontend UI for the `/chat` endpoint.
-- [ ] Add a full CI/CD pipeline with GitHub Actions.
+- [x] **Phase 1:** Core AI Tailoring Logic & Form UI.
+- [x] **Phase 2:** Firebase Authentication & Global Context.
+- [x] **Phase 3:** Backend Persistence (Firestore) & Naming Convention Alignment.
+- [x] **Phase 4:** Mocked Test Infrastructure & History API Endpoints.
+- [ ] **Phase 5:** Frontend Hydration (Displaying historical chats/resumes in the UI).
+- [ ] **Phase 6:** Production Deployment (Cloud Run & Vercel).
 
 ## License