diff --git a/README.md b/README.md
index 9cca27a..66c25b1 100644
--- a/README.md
+++ b/README.md
@@ -1,3 +1,21 @@
# HectaMail-website
-A frontend and registration service for the maddy mail server
\ No newline at end of file
+A frontend and registration service for the maddy mail server
+
+## Setup
+
+Use your web server to host everything in public, and run app.py with python.
+
+Reverse-proxy app.py to /register.
+
+## Dependencies
+
+System
+
+Any HTTP web server
+Python3
+
+PIP
+
+Flask
+Waitress
diff --git a/app.py b/app.py
new file mode 100644
index 0000000..316149e
--- /dev/null
+++ b/app.py
@@ -0,0 +1,55 @@
+from flask import Flask, render_template, request, redirect, url_for
+import subprocess
+import re
+from waitress import serve
+
+allowed_pattern = r'^[a-zA-Z0-9.]+$'
+
+def is_valid_input(input_string):
+ return re.match(allowed_pattern, input_string) is not None
+
+app = Flask(__name__)
+
+def create_email_account(username, password):
+ if is_valid_input(password) and is_valid_input(username):
+ try:
+ # Use echo to securely pass the password to the command
+ cmd = ["echo", password, "|", "doas", "-u", "maddy", "maddy", "creds", "create", f"{username}@hectabit.org"]
+ result = subprocess.run(" ".join(cmd), shell=True, check=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+
+ if result.returncode == 0:
+ # Command executed successfully
+ return True
+ else:
+ # Handle errors, log them, and return False
+ error_message = result.stderr.decode("utf-8")
+ print(f"Error creating email account: {error_message}")
+ return False
+ except Exception as e:
+ # Handle exceptions and return False
+ print(f"Error creating email account: {str(e)}")
+ return False
+ else:
+ print(f"Injection Bypass! Very bad!")
+ return False
+
+@app.route('/')
+def index():
+ return render_template('index.html')
+
+@app.route('/api', methods=['POST'])
+def register():
+ username = request.form.get('username')
+ password = request.form.get('password')
+
+ if not is_valid_input(password) or not is_valid_input(username):
+ return render_template('num.html'), 400
+
+ if create_email_account(username, password):
+ return render_template('ok.html')
+ else:
+ return render_template('err.html'), 500
+
+
+if __name__ == '__main__':
+ serve(app, host='0.0.0.0', port=8050)
diff --git a/public/cta/index.html b/public/cta/index.html
new file mode 100644
index 0000000..3e731dc
--- /dev/null
+++ b/public/cta/index.html
@@ -0,0 +1,21 @@
+
+
+Email Account Registration
+
+
You found an egg!
+
Goverment: You have to hand over this user's IP because we want it.
+
+
Me:
+
+
+
+
Email Account Registration
+
+
Welcome to HectaMail!
+
HectaMail is a Free, Open Source, and privacy respecting email service.
+
You can have our absolute assurance that noone will spy on your data.
+
HectaMail supports IMAP and SMTP, on all SSL standards, on all standard ports.
+ We have no filesize limit, but if you start spamming, you can (will) be banned.
+ Thank you for respecting this community service!
+ Email Setup
+ Hostname: mail.hectabit.org
+ SMTP: Port 465 (SSL/TLS), 587 (StartTLS) or 25 (PlainText, not recommended)
+ IMAP: Port 993 (SSL/TLS) or 143 (StartTLS)
+ Login: Normal Password
+ Great! How much is it?
+ HectaMail isn't just Free as in Freedom, it's also Free as in Beer. Enjoy HectaMail as much as you want!
+ Email Account Registration
+
+
Error!
+
Something went wrong on our end - the mail server could be down. Please try again later.
+
+ Go Back
+
+
Email Account Registration
+
+
Register an Email Account
+
+
Email Account Registration
+
+
Error!
+
You can only have Alphanumerical characters and periods in your username / password.
+
+ Go Back
+
+
Email Account Registration
+
+
Done!
+
Success! Add this to your favourite email program with the infomation noted on the main page!
+
+ Go to home
+
+