dashdoc
diff --git a/‎CLAUDE.md‎
Lines changed: 1 addition & 0 deletions b/‎CLAUDE.md‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎backend/API_DOC.md‎
Lines changed: 24 additions & 2 deletions b/‎backend/API_DOC.md‎
Lines changed: 24 additions & 2 deletions
diff --git a/‎backend/accounts/tests.py‎
Lines changed: 48 additions & 0 deletions b/‎backend/accounts/tests.py‎
Lines changed: 48 additions & 0 deletions
diff --git a/‎backend/accounts/views.py‎
Lines changed: 26 additions & 0 deletions b/‎backend/accounts/views.py‎
Lines changed: 26 additions & 0 deletions
diff --git a/‎frontend/.env‎
Lines changed: 5 additions & 0 deletions b/‎frontend/.env‎
Lines changed: 5 additions & 0 deletions
@@ -7,4 +7,5 @@ Read backend/API_DOC.md to understand the backend API.
 
 Use `uv` for dependencies management.
 Always update backend/API_DOC.md whenever you change the API.
+Always add or update backend tests when you work on the API.
 DO NOT INSTALL django-rest-framework, keep it simple base Django only.
@@ -47,10 +47,32 @@ Response:
 }
 ```
 
-### Update User Profile
+### User Profile
+**GET** `/api/auth/profile/` - Get current user profile information
+**PUT** `/api/auth/profile/` - Update user profile information
+
+Both endpoints require authentication token.
+
+#### Get User Profile
+**GET** `/api/auth/profile/`
+
+Response:
+```json
+{
+  "id": 1,
+  "username": "current_user",
+  "email": "user@example.com",
+  "first_name": "Current",
+  "last_name": "User",
+  "company_id": 1,
+  "company_name": "ACME Logistics"
+}
+```
+
+#### Update User Profile
 **PUT** `/api/auth/profile/`
 
-Updates the current user's profile information. Requires authentication token.
+Updates the current user's profile information.
 
 Request:
 ```json
 
@@ -371,3 +371,51 @@ def test_register_password_hashing(self):
         user = User.objects.get(username='newuser')
         self.assertNotEqual(user.password, 'newpass123')  # Should be hashed
         self.assertTrue(user.check_password('newpass123'))  # But should validate
+
+class UserProfileViewTestCase(TestCase):
+    def setUp(self):
+        self.company = Company.objects.create(
+            name='Test Company',
+            address='123 Test St',
+            phone='555-1234',
+            email='test@company.com'
+        )
+
+        self.user = User.objects.create_user(
+            username='testuser',
+            password='testpass123',
+            email='test@user.com',
+            first_name='Test',
+            last_name='User'
+        )
+
+        self.profile = UserProfile.objects.create(
+            user=self.user,
+            company=self.company
+        )
+
+        self.token = AuthToken.objects.create(user=self.user)
+
+    def test_get_profile(self):
+        """Test GET /api/auth/profile/ returns user profile data"""
+        response = self.client.get('/api/auth/profile/',
+            headers={'Authorization': f'Token {self.token.key}'}
+        )
+
+        self.assertEqual(response.status_code, 200)
+        data = response.json()
+
+        self.assertEqual(data['id'], self.user.id)
+        self.assertEqual(data['username'], 'testuser')
+        self.assertEqual(data['email'], 'test@user.com')
+        self.assertEqual(data['first_name'], 'Test')
+        self.assertEqual(data['last_name'], 'User')
+        self.assertEqual(data['company_id'], self.company.id)
+        self.assertEqual(data['company_name'], 'Test Company')
+
+    def test_get_profile_no_auth(self):
+        """Test GET /api/auth/profile/ without authentication returns 401"""
+        response = self.client.get('/api/auth/profile/')
+        self.assertEqual(response.status_code, 401)
+        data = response.json()
+        self.assertEqual(data['error'], 'Authentication required')
@@ -144,6 +144,32 @@ def get_user_from_token(request):
 
 @method_decorator(csrf_exempt, name='dispatch')
 class UserProfileUpdateView(View):
+    def get(self, request):
+        user = get_user_from_token(request)
+        if not user:
+            return JsonResponse({'error': 'Authentication required'}, status=401)
+
+        # Return current user data
+        response_data = {
+            'id': user.id,
+            'username': user.username,
+            'email': user.email,
+            'first_name': user.first_name,
+            'last_name': user.last_name
+        }
+
+        # Add company info if user has profile
+        try:
+            profile = user.profile
+            response_data.update({
+                'company_id': profile.company.id,
+                'company_name': profile.company.name
+            })
+        except:
+            pass
+
+        return JsonResponse(response_data)
+
     def put(self, request):
         user = get_user_from_token(request)
         if not user:
 
@@ -0,0 +1,5 @@
+# Mapbox Configuration
+VITE_MAPBOX_ACCESS_TOKEN=pk.eyJ1IjoiY29yZW50aW5zbWl0aCIsImEiOiJjang0YnYyamswN2Q0NDhudGRkbTYyczY5In0.VTGpl803vYym7mQNAk9QdQ
+
+# Backend API Configuration
+VITE_API_BASE_URL=http://localhost:8000/api