diff --git a/MtdrSpring/backend/MyTodoList.iml b/MtdrSpring/backend/MyTodoList.iml
new file mode 100644
index 0000000..c040de8
--- /dev/null
+++ b/MtdrSpring/backend/MyTodoList.iml
@@ -0,0 +1,130 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<module org.jetbrains.idea.maven.project.MavenProjectsManager.isMavenModule="true" type="JAVA_MODULE" version="4">
+  <component name="NewModuleRootManager" LANGUAGE_LEVEL="JDK_11">
+    <output url="file://$MODULE_DIR$/target/classes" />
+    <output-test url="file://$MODULE_DIR$/target/test-classes" />
+    <content url="file://$MODULE_DIR$">
+      <sourceFolder url="file://$MODULE_DIR$/src/main/java" isTestSource="false" />
+      <sourceFolder url="file://$MODULE_DIR$/src/main/resources" type="java-resource" />
+      <sourceFolder url="file://$MODULE_DIR$/src/test/java" isTestSource="true" />
+      <excludeFolder url="file://$MODULE_DIR$/target" />
+    </content>
+    <orderEntry type="inheritedJdk" />
+    <orderEntry type="sourceFolder" forTests="false" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-data-jpa:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-aop:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: org.aspectj:aspectjweaver:1.9.7" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-jdbc:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: com.zaxxer:HikariCP:4.0.3" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-jdbc:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: jakarta.transaction:jakarta.transaction-api:1.3.3" level="project" />
+    <orderEntry type="library" name="Maven: jakarta.persistence:jakarta.persistence-api:2.2.3" level="project" />
+    <orderEntry type="library" name="Maven: org.hibernate:hibernate-core:5.6.5.Final" level="project" />
+    <orderEntry type="library" name="Maven: org.jboss.logging:jboss-logging:3.4.3.Final" level="project" />
+    <orderEntry type="library" name="Maven: net.bytebuddy:byte-buddy:1.11.22" level="project" />
+    <orderEntry type="library" name="Maven: antlr:antlr:2.7.7" level="project" />
+    <orderEntry type="library" name="Maven: org.jboss:jandex:2.4.2.Final" level="project" />
+    <orderEntry type="library" name="Maven: org.hibernate.common:hibernate-commons-annotations:5.1.2.Final" level="project" />
+    <orderEntry type="library" name="Maven: org.glassfish.jaxb:jaxb-runtime:2.3.6" level="project" />
+    <orderEntry type="library" name="Maven: org.glassfish.jaxb:txw2:2.3.6" level="project" />
+    <orderEntry type="library" name="Maven: com.sun.istack:istack-commons-runtime:3.0.12" level="project" />
+    <orderEntry type="library" scope="RUNTIME" name="Maven: com.sun.activation:jakarta.activation:1.2.2" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.data:spring-data-jpa:2.6.2" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.data:spring-data-commons:2.6.2" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-orm:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-context:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-tx:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-beans:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-aspects:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-web:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-autoconfigure:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-logging:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: ch.qos.logback:logback-classic:1.2.10" level="project" />
+    <orderEntry type="library" name="Maven: ch.qos.logback:logback-core:1.2.10" level="project" />
+    <orderEntry type="library" name="Maven: org.apache.logging.log4j:log4j-to-slf4j:2.17.1" level="project" />
+    <orderEntry type="library" name="Maven: org.apache.logging.log4j:log4j-api:2.17.1" level="project" />
+    <orderEntry type="library" name="Maven: org.slf4j:jul-to-slf4j:1.7.36" level="project" />
+    <orderEntry type="library" name="Maven: jakarta.annotation:jakarta.annotation-api:1.3.5" level="project" />
+    <orderEntry type="library" name="Maven: org.yaml:snakeyaml:1.29" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-json:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: com.fasterxml.jackson.core:jackson-databind:2.13.1" level="project" />
+    <orderEntry type="library" name="Maven: com.fasterxml.jackson.core:jackson-core:2.13.1" level="project" />
+    <orderEntry type="library" name="Maven: com.fasterxml.jackson.datatype:jackson-datatype-jdk8:2.13.1" level="project" />
+    <orderEntry type="library" name="Maven: com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.13.1" level="project" />
+    <orderEntry type="library" name="Maven: com.fasterxml.jackson.module:jackson-module-parameter-names:2.13.1" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-tomcat:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: org.apache.tomcat.embed:tomcat-embed-core:9.0.58" level="project" />
+    <orderEntry type="library" name="Maven: org.apache.tomcat.embed:tomcat-embed-el:9.0.58" level="project" />
+    <orderEntry type="library" name="Maven: org.apache.tomcat.embed:tomcat-embed-websocket:9.0.58" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-web:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-webmvc:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-expression:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: io.springfox:springfox-swagger2:2.6.1" level="project" />
+    <orderEntry type="library" name="Maven: io.swagger:swagger-annotations:1.5.10" level="project" />
+    <orderEntry type="library" name="Maven: io.swagger:swagger-models:1.5.10" level="project" />
+    <orderEntry type="library" name="Maven: com.fasterxml.jackson.core:jackson-annotations:2.13.1" level="project" />
+    <orderEntry type="library" name="Maven: io.springfox:springfox-spi:2.6.1" level="project" />
+    <orderEntry type="library" name="Maven: io.springfox:springfox-core:2.6.1" level="project" />
+    <orderEntry type="library" name="Maven: io.springfox:springfox-schema:2.6.1" level="project" />
+    <orderEntry type="library" name="Maven: io.springfox:springfox-swagger-common:2.6.1" level="project" />
+    <orderEntry type="library" name="Maven: io.springfox:springfox-spring-web:2.6.1" level="project" />
+    <orderEntry type="library" name="Maven: com.google.guava:guava:18.0" level="project" />
+    <orderEntry type="library" name="Maven: com.fasterxml:classmate:1.5.1" level="project" />
+    <orderEntry type="library" name="Maven: org.slf4j:slf4j-api:1.7.36" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.plugin:spring-plugin-core:1.2.0.RELEASE" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.plugin:spring-plugin-metadata:1.2.0.RELEASE" level="project" />
+    <orderEntry type="library" name="Maven: org.mapstruct:mapstruct:1.0.0.Final" level="project" />
+    <orderEntry type="library" name="Maven: io.springfox:springfox-swagger-ui:2.6.1" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.apache.httpcomponents:httpclient:4.5.13" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.apache.httpcomponents:httpcore:4.4.15" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: commons-codec:commons-codec:1.15" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.jdbc:ojdbc11:21.3.0.0" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.jdbc:ucp11:21.3.0.0" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.jdbc:rsi:21.3.0.0" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.security:oraclepki:21.3.0.0" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.security:osdt_core:21.3.0.0" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.security:osdt_cert:21.3.0.0" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.ha:ons:21.3.0.0" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.nls:orai18n:21.3.0.0" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.xml:xdb:21.3.0.0" level="project" />
+    <orderEntry type="library" name="Maven: com.oracle.database.xml:xmlparserv2:21.3.0.0" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.springframework.boot:spring-boot-starter-test:2.6.4" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.springframework.boot:spring-boot-test:2.6.4" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.springframework.boot:spring-boot-test-autoconfigure:2.6.4" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: com.jayway.jsonpath:json-path:2.6.0" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: net.minidev:json-smart:2.4.8" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: net.minidev:accessors-smart:2.4.8" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.ow2.asm:asm:9.1" level="project" />
+    <orderEntry type="library" name="Maven: jakarta.xml.bind:jakarta.xml.bind-api:2.3.3" level="project" />
+    <orderEntry type="library" name="Maven: jakarta.activation:jakarta.activation-api:1.2.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.assertj:assertj-core:3.21.0" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.hamcrest:hamcrest:2.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.junit.jupiter:junit-jupiter:5.8.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.junit.jupiter:junit-jupiter-api:5.8.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.opentest4j:opentest4j:1.2.0" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.junit.platform:junit-platform-commons:1.8.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.apiguardian:apiguardian-api:1.1.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.junit.jupiter:junit-jupiter-params:5.8.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.junit.jupiter:junit-jupiter-engine:5.8.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.junit.platform:junit-platform-engine:1.8.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.mockito:mockito-core:4.0.0" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: net.bytebuddy:byte-buddy-agent:1.11.22" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.objenesis:objenesis:3.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.mockito:mockito-junit-jupiter:4.0.0" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.skyscreamer:jsonassert:1.5.0" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: com.vaadin.external.google:android-json:0.0.20131108.vaadin1" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-core:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-jcl:5.3.16" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.springframework:spring-test:5.3.16" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.xmlunit:xmlunit-core:2.8.4" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.boot:spring-boot-starter-security:2.6.4" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework:spring-aop:5.3.16" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.security:spring-security-config:5.6.2" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.security:spring-security-web:5.6.2" level="project" />
+    <orderEntry type="library" scope="TEST" name="Maven: org.springframework.security:spring-security-test:5.6.2" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.security:spring-security-core:5.6.2" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.security:spring-security-crypto:5.6.2" level="project" />
+  </component>
+</module>
\ No newline at end of file
diff --git a/MtdrSpring/backend/build.sh b/MtdrSpring/backend/build.sh
index 52ab827..b7019a3 100755
--- a/MtdrSpring/backend/build.sh
+++ b/MtdrSpring/backend/build.sh
@@ -13,8 +13,6 @@ if [ -z "$DOCKER_REGISTRY" ]; then
     echo "Error: DOCKER_REGISTRY env variable needs to be set!"
     exit 1
 fi
-
-
 export IMAGE=${DOCKER_REGISTRY}/${IMAGE_NAME}:${IMAGE_VERSION}
 
 mvn clean package spring-boot:repackage
diff --git a/MtdrSpring/backend/deploy.sh b/MtdrSpring/backend/deploy.sh
index 29894c3..74dd5c7 100755
--- a/MtdrSpring/backend/deploy.sh
+++ b/MtdrSpring/backend/deploy.sh
@@ -16,6 +16,17 @@ if [ -z "$OCI_REGION" ]; then
     echo "Error: OCI_REGION env variable needs to be set!"
     exit 1
 fi
+
+if [ -z "$UI_USERNAME" ]; then
+    echo "UI_USERNAME not set. Will get it with state_get"
+  export UI_USERNAME=$(state_get UI_USERNAME)
+fi
+
+if [ -z "$UI_USERNAME" ]; then
+    echo "Error: UI_USERNAME env variable needs to be set!"
+    exit 1
+fi
+
 echo "Creating springboot deplyoment and service"
 export CURRENTTIME=$( date '+%F_%H:%M:%S' )
 echo CURRENTTIME is $CURRENTTIME  ...this will be appended to generated deployment yaml
@@ -29,7 +40,8 @@ sed -e "s|%TODO_PDB_NAME%|${TODO_PDB_NAME}|g" todolistapp-springboot-${CURRENTTI
 mv -- /tmp/todolistapp-springboot-$CURRENTTIME.yaml todolistapp-springboot-$CURRENTTIME.yaml
 sed -e "s|%OCI_REGION%|${OCI_REGION}|g" todolistapp-springboot-${CURRENTTIME}.yaml > /tmp/todolistapp-springboot-$CURRENTTIME.yaml
 mv -- /tmp/todolistapp-springboot-$CURRENTTIME.yaml todolistapp-springboot-$CURRENTTIME.yaml
-
+sed -e "s|%UI_USERNAME%|${UI_USERNAME}|g" todolistapp-springboot-${CURRENTTIME}.yaml > /tmp/todolistapp-springboot-$CURRENTTIME.yaml
+mv -- /tmp/todolistapp-springboot-$CURRENTTIME.yaml todolistapp-springboot-$CURRENTTIME.yaml
 if [ -z "$1" ]; then
     kubectl apply -f $SCRIPT_DIR/todolistapp-springboot-$CURRENTTIME.yaml -n mtdrworkshop
 else
diff --git a/MtdrSpring/backend/pom.xml b/MtdrSpring/backend/pom.xml
index 2c5ef5f..52c75bd 100644
--- a/MtdrSpring/backend/pom.xml
+++ b/MtdrSpring/backend/pom.xml
@@ -16,6 +16,9 @@
 	<properties>
 		<java.version>11</java.version>
 		<version.lib.ojdbc>21.1.0.0</version.lib.ojdbc>
+		<frontend-src-dir>${project.basedir}/src/main/frontend</frontend-src-dir>
+		<node.version>v16.13.2</node.version>
+		<npm.version>8.1.2</npm.version>
 	</properties>
 	<dependencies>
 		<dependency>
@@ -58,6 +61,15 @@
 			<artifactId>spring-boot-starter-test</artifactId>
 			<scope>test</scope>
 		</dependency>
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-security</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.springframework.security</groupId>
+			<artifactId>spring-security-test</artifactId>
+			<scope>test</scope>
+		</dependency>
 	</dependencies>
 	<build>
 		<plugins>
@@ -65,26 +77,55 @@
 			<plugin>
 				<groupId>com.github.eirslett</groupId>
 				<artifactId>frontend-maven-plugin</artifactId>
-				<!-- Use the latest released version:
-                https://repo1.maven.org/maven2/com/github/eirslett/frontend-maven-plugin/ -->
 				<version>1.9.1</version>
+				<configuration>
+					<nodeVersion>${node.version}</nodeVersion>
+					<npmVersion>${npm.version}</npmVersion>
+					<workingDirectory>${frontend-src-dir}</workingDirectory>
+					<installDirectory>${project.build.directory}</installDirectory>
+					<downloadRoot></downloadRoot>
+				</configuration>
+				<executions>
+					<execution>
+						<id>install-frontend-tools</id>
+						<goals>
+							<goal>install-node-and-npm</goal>
+						</goals>
+					</execution>
+					<execution>
+						<id>npm install</id>
+						<goals>
+							<goal>npm</goal>
+						</goals>
+					</execution>
+					<execution>
+						<id>npm run build</id>
+						<goals>
+							<goal>npm</goal>
+						</goals>
+						<configuration>
+							<arguments>run build</arguments>
+						</configuration>
+					</execution>
+				</executions>
 			</plugin>
 			<plugin>
 				<groupId>org.apache.maven.plugins</groupId>
 				<artifactId>maven-resources-plugin</artifactId>
+				<version>3.2.0</version>
 				<executions>
 					<execution>
-						<id>copy-resources</id>
-						<phase>process-resources</phase>
+						<id>position-react-build</id>
 						<goals>
 							<goal>copy-resources</goal>
 						</goals>
+						<phase>prepare-package</phase>
 						<configuration>
-							<outputDirectory>${project.build.directory}</outputDirectory>
+							<outputDirectory>${project.build.outputDirectory}/static</outputDirectory>
 							<resources>
 								<resource>
-									<directory>.</directory>
-									<filtering>true</filtering>
+									<directory>${frontend-src-dir}/build</directory>
+									<filtering>false</filtering>
 								</resource>
 							</resources>
 						</configuration>
diff --git a/MtdrSpring/frontend/package.json b/MtdrSpring/backend/src/main/frontend/package.json
similarity index 100%
rename from MtdrSpring/frontend/package.json
rename to MtdrSpring/backend/src/main/frontend/package.json
diff --git a/MtdrSpring/frontend/public/index.html b/MtdrSpring/backend/src/main/frontend/public/index.html
similarity index 100%
rename from MtdrSpring/frontend/public/index.html
rename to MtdrSpring/backend/src/main/frontend/public/index.html
diff --git a/MtdrSpring/frontend/public/manifest.json b/MtdrSpring/backend/src/main/frontend/public/manifest.json
similarity index 100%
rename from MtdrSpring/frontend/public/manifest.json
rename to MtdrSpring/backend/src/main/frontend/public/manifest.json
diff --git a/MtdrSpring/frontend/public/swagger_APIs_definition.json b/MtdrSpring/backend/src/main/frontend/public/swagger_APIs_definition.json
similarity index 100%
rename from MtdrSpring/frontend/public/swagger_APIs_definition.json
rename to MtdrSpring/backend/src/main/frontend/public/swagger_APIs_definition.json
diff --git a/MtdrSpring/frontend/public/swagger_APIs_definition.yaml b/MtdrSpring/backend/src/main/frontend/public/swagger_APIs_definition.yaml
similarity index 100%
rename from MtdrSpring/frontend/public/swagger_APIs_definition.yaml
rename to MtdrSpring/backend/src/main/frontend/public/swagger_APIs_definition.yaml
diff --git a/MtdrSpring/frontend/src/API.js b/MtdrSpring/backend/src/main/frontend/src/API.js
similarity index 100%
rename from MtdrSpring/frontend/src/API.js
rename to MtdrSpring/backend/src/main/frontend/src/API.js
diff --git a/MtdrSpring/frontend/src/App.js b/MtdrSpring/backend/src/main/frontend/src/App.js
similarity index 100%
rename from MtdrSpring/frontend/src/App.js
rename to MtdrSpring/backend/src/main/frontend/src/App.js
diff --git a/MtdrSpring/frontend/src/NewItem.js b/MtdrSpring/backend/src/main/frontend/src/NewItem.js
similarity index 100%
rename from MtdrSpring/frontend/src/NewItem.js
rename to MtdrSpring/backend/src/main/frontend/src/NewItem.js
diff --git a/MtdrSpring/frontend/src/index.css b/MtdrSpring/backend/src/main/frontend/src/index.css
similarity index 100%
rename from MtdrSpring/frontend/src/index.css
rename to MtdrSpring/backend/src/main/frontend/src/index.css
diff --git a/MtdrSpring/frontend/src/index.js b/MtdrSpring/backend/src/main/frontend/src/index.js
similarity index 100%
rename from MtdrSpring/frontend/src/index.js
rename to MtdrSpring/backend/src/main/frontend/src/index.js
diff --git a/MtdrSpring/backend/src/main/java/com/springboot/MyTodoList/security/WebSecurityConfiguration.java b/MtdrSpring/backend/src/main/java/com/springboot/MyTodoList/security/WebSecurityConfiguration.java
new file mode 100644
index 0000000..fc0a1c5
--- /dev/null
+++ b/MtdrSpring/backend/src/main/java/com/springboot/MyTodoList/security/WebSecurityConfiguration.java
@@ -0,0 +1,18 @@
+package com.springboot.MyTodoList.security;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+
+
+@Configuration
+@EnableWebSecurity
+public class WebSecurityConfiguration extends WebSecurityConfigurerAdapter {
+    @Override
+    protected void configure(HttpSecurity httpSecurity) throws Exception {
+        httpSecurity.authorizeRequests().anyRequest().authenticated().and().
+                formLogin().and().logout().permitAll();
+    }
+}
diff --git a/MtdrSpring/backend/src/main/resources/application.properties b/MtdrSpring/backend/src/main/resources/application.properties
index e93e221..80b15b5 100644
--- a/MtdrSpring/backend/src/main/resources/application.properties
+++ b/MtdrSpring/backend/src/main/resources/application.properties
@@ -1,9 +1,9 @@
 #spring.jpa.database-platform=org.hibernate.dialect.Oracle12cDialect
 #oracle.jdbc.fanEnabled=false
-###this is not used when deployed in kubernetes. Just for local testing
-#spring.datasource.url=jdbc:oracle:thin:@petertestdb_medium?TNS_ADMIN=/Users/psong/Downloads/Wallet_petertestDB
-#spring.datasource.username=TODOUSER
-#spring.datasource.password=PeterSong123
+##this is not used when deployed in kubernetes. Just for local testing
+#spring.datasource.url=jdbc:oracle:thin:@adbps_medium?TNS_ADMIN=/Users/psong/Downloads/Wallet_ADBPS
+#spring.datasource.username=admin
+#spring.datasource.password=WELcome__12345
 
 ##Properties of UCP
 spring.datasource.driver-class-name=oracle.jdbc.OracleDriver
@@ -18,4 +18,7 @@ spring.datasource.oracleucp.max-pool-size=30
 ##Logging properties for UCP
 logging.level.root=trace
 logging.file.name=logs.log
-logging.level.oracle.ucp=trace
\ No newline at end of file
+logging.level.oracle.ucp=trace
+
+#spring.security.user.name=psong
+#spring.security.user.password=WELcome__12345
\ No newline at end of file
diff --git a/MtdrSpring/backend/src/main/resources/application.yaml b/MtdrSpring/backend/src/main/resources/application.yaml
index db7d406..8cae7ae 100644
--- a/MtdrSpring/backend/src/main/resources/application.yaml
+++ b/MtdrSpring/backend/src/main/resources/application.yaml
@@ -10,3 +10,7 @@ spring:
     hibernate:
       ddl-auto: none
     show-sql: true
+  security:
+    user:
+      name: ${ui_username}
+      password: ${ui_password}
\ No newline at end of file
diff --git a/MtdrSpring/backend/src/main/resources/todolistapp-springboot.yaml b/MtdrSpring/backend/src/main/resources/todolistapp-springboot.yaml
index 6ced9b8..0475949 100644
--- a/MtdrSpring/backend/src/main/resources/todolistapp-springboot.yaml
+++ b/MtdrSpring/backend/src/main/resources/todolistapp-springboot.yaml
@@ -11,6 +11,19 @@ spec:
   selector:
     app: todolistapp-springboot
 ---
+#this is new stuff for hosting on the load balancer
+apiVersion: v1
+kind: Service
+metadata:
+  name: todolistapp-backend-router
+spec:
+  selector:
+    app: todolistapp-springboot
+  ports:
+    - protocol: TCP
+      port: 80
+      targetPort: http
+---
 apiVersion: apps/v1
 kind: Deployment
 metadata:
@@ -47,6 +60,14 @@ spec:
                   name: dbuser
                   key: dbpassword
                   optional: true
+            - name: ui_username
+              value: "%UI_USERNAME%"
+            - name: ui_password
+              valueFrom:
+                secretKeyRef:
+                  name: frontendadmin
+                  key: password
+                  optional: true
           volumeMounts:
             - name: creds
               mountPath: /mtdrworkshop/creds
diff --git a/MtdrSpring/backend/target/classes/application.properties b/MtdrSpring/backend/target/classes/application.properties
index e93e221..228f63a 100644
--- a/MtdrSpring/backend/target/classes/application.properties
+++ b/MtdrSpring/backend/target/classes/application.properties
@@ -1,9 +1,9 @@
-#spring.jpa.database-platform=org.hibernate.dialect.Oracle12cDialect
-#oracle.jdbc.fanEnabled=false
-###this is not used when deployed in kubernetes. Just for local testing
-#spring.datasource.url=jdbc:oracle:thin:@petertestdb_medium?TNS_ADMIN=/Users/psong/Downloads/Wallet_petertestDB
-#spring.datasource.username=TODOUSER
-#spring.datasource.password=PeterSong123
+spring.jpa.database-platform=org.hibernate.dialect.Oracle12cDialect
+oracle.jdbc.fanEnabled=false
+##this is not used when deployed in kubernetes. Just for local testing
+spring.datasource.url=jdbc:oracle:thin:@adbps_medium?TNS_ADMIN=/Users/psong/Downloads/Wallet_ADBPS
+spring.datasource.username=admin
+spring.datasource.password=WELcome__12345
 
 ##Properties of UCP
 spring.datasource.driver-class-name=oracle.jdbc.OracleDriver
@@ -18,4 +18,7 @@ spring.datasource.oracleucp.max-pool-size=30
 ##Logging properties for UCP
 logging.level.root=trace
 logging.file.name=logs.log
-logging.level.oracle.ucp=trace
\ No newline at end of file
+logging.level.oracle.ucp=trace
+
+spring.security.user.name=psomg
+spring.security.user.password=WELcome__12345
\ No newline at end of file
diff --git a/MtdrSpring/backend/target/classes/todolistapp-springboot.yaml b/MtdrSpring/backend/target/classes/todolistapp-springboot.yaml
index 6ced9b8..f4bc23f 100644
--- a/MtdrSpring/backend/target/classes/todolistapp-springboot.yaml
+++ b/MtdrSpring/backend/target/classes/todolistapp-springboot.yaml
@@ -11,6 +11,19 @@ spec:
   selector:
     app: todolistapp-springboot
 ---
+#this is new stuff for hosting on the load balancer
+apiVersion: v1
+kind: Service
+metadata:
+  name: todolistapp-backend-router
+spec:
+  selector:
+    app: todolistapp-springboot
+  ports:
+    - protocol: TCP
+      port: 80
+      targetPort: http
+---
 apiVersion: apps/v1
 kind: Deployment
 metadata:
diff --git a/MtdrSpring/terraform/apigateway.tf b/MtdrSpring/terraform/apigateway.tf
index c8999f0..db1222b 100644
--- a/MtdrSpring/terraform/apigateway.tf
+++ b/MtdrSpring/terraform/apigateway.tf
@@ -1,7 +1,9 @@
-resource "oci_apigateway_gateway" "todolist"{
-  #required
-  compartment_id = var.ociCompartmentOcid
-  endpoint_type = "PUBLIC"
-  subnet_id = oci_core_subnet.svclb_Subnet.id
-  display_name = "todolist"
-}
\ No newline at end of file
+#No longer creating API_gateway
+
+#resource "oci_apigateway_gateway" "todolist"{
+#  #required
+#  compartment_id = var.ociCompartmentOcid
+#  endpoint_type = "PUBLIC"
+#  subnet_id = oci_core_subnet.svclb_Subnet.id
+#  display_name = "todolist"
+#}
\ No newline at end of file
diff --git a/MtdrSpring/utils/main-setup.sh b/MtdrSpring/utils/main-setup.sh
index 76b8f1d..6542f42 100755
--- a/MtdrSpring/utils/main-setup.sh
+++ b/MtdrSpring/utils/main-setup.sh
@@ -232,6 +232,39 @@ if ! state_done DB_PASSWORD; then
   BASE64_DB_PASSWORD=`echo -n "$PW" | base64`
 fi
 
+# create UI username
+if ! state_done UI_USERNAME; then
+  echo
+  echo 'Create a UI Username'
+  echo
+  read -s -r -p "Enter the username to be used for accessing the UI: " USERNAME
+  state_set UI_USERNAME "$USERNAME"
+  export UI_USERNAME="$(state_get UI_USERNAME)"
+  state_set_done UI_USERNAME
+fi
+
+# Collect UI password and create secret
+if ! state_done UI_PASSWORD; then
+  echo
+  echo 'UI passwords must be 8 to 30 characters'
+  echo
+
+  while true; do
+    if test -z "$TEST_UI_PASSWORD"; then
+      read -s -r -p "Enter the password to be used for accessing the UI: " PW
+    else
+      PW="$TEST_UI_PASSWORD"
+    fi
+    if [[ ${#PW} -ge 8 && ${#PW} -le 30 ]]; then
+      echo
+      break
+    else
+      echo "Invalid Password, please retry"
+    fi
+  done
+  BASE64_UI_PASSWORD=`echo -n "$PW" | base64`
+fi
+
 # Wait for provisioning
 if ! state_done PROVISIONING; then
   echo "`date`: Waiting for terraform provisioning"
@@ -314,6 +347,29 @@ while ! state_done OKE_SETUP; do
   sleep 2
 done
 
+# Create UI password secret
+while ! state_done UI_PASSWORD; do
+  while true; do
+    if kubectl create -n mtdrworkshop -f -; then
+      state_set_done UI_PASSWORD
+      break
+    else
+      echo 'Error: Creating UI Password Secret Failed.  Retrying...'
+      sleep 10
+    fi <<!
+{
+   "apiVersion": "v1",
+   "kind": "Secret",
+   "metadata": {
+      "name": "frontendadmin"
+   },
+   "data": {
+      "password": "${BASE64_UI_PASSWORD}"
+   }
+}
+!
+  done
+done
 
 
 ps -ef | grep "$MTDRWORKSHOP_LOCATION/utils" | grep -v grep
@@ -339,4 +395,6 @@ while ! state_done SETUP_VERIFIED; do
   else
     state_set_done SETUP_VERIFIED
   fi
-done
\ No newline at end of file
+done
+
+export TEST_VAR='asdf'
\ No newline at end of file