diff --git a/docker-compose.dev.yml b/docker-compose.dev.yml
index 71a206a..1aadd9e 100644
--- a/docker-compose.dev.yml
+++ b/docker-compose.dev.yml
@@ -12,16 +12,17 @@ services:
       - ./frontend/.env.development
     ports:
       - 3000:3000
-      - 5555:5555
     volumes:
       - ./frontend/pages:/app/pages
       - ./frontend/components:/app/components
       - ./frontend/styles:/app/styles
-      - ./images/uploads:/app/uploads
+      - ./uploads:/app/uploads
   db:
     image: postgres:latest
     container_name: snap-sorter-database-dev
     restart: always
+    ports:
+      - 5432:5432
     env_file:
       - ./frontend/.env.development
     volumes:
diff --git a/docker-compose.prod.yml b/docker-compose.prod.yml
index b06c7d2..5f491df 100644
--- a/docker-compose.prod.yml
+++ b/docker-compose.prod.yml
@@ -10,16 +10,19 @@ services:
     env_file:
       - ./frontend/.env.production
     ports:
-      - 80:3000
+      - 3000:3000
     volumes:
       - ./frontend/pages:/app/pages
       - ./frontend/components:/app/components
       - ./frontend/styles:/app/styles
+      - ./uploads:/app/uploads
     image: snap-sorter-frontend-prod
   db:
     image: postgres:latest
     container_name: snap-sorter-database-prod
     restart: always
+    ports:
+      - 5432:5432
     env_file:
       - ./frontend/.env.production
     volumes:
diff --git a/frontend/README.md b/frontend/README.md
index a610bb4..aa0503f 100644
--- a/frontend/README.md
+++ b/frontend/README.md
@@ -6,8 +6,8 @@
 
 #### Components
 
-- [ ] Navbar
-  - [ ] Logo which takes to `search` page when logged in else to `login`
+- [x] Navbar
+  - [x] Logo which takes to `search` page when logged in else to `login`
   - [x] Links to each page (profile, search, announcements)
   - [x] Make it dynamic when showing the pages i.e., do not display announcements route when on announcements page, show other routes only when logged in.
 - [ ] Footer
@@ -20,7 +20,7 @@
 - [x] Login page
   - [x] Login button which initiates the oauth flow
 - [x] Announcements
-  - [ ] Integrate with backend
+  - [x] Integrate with backend
   - [x] Get data from announcements endpoint and display sorted by latest
 - [x] Profile
   - [x] Dropzone from mantine to collect images
@@ -42,7 +42,7 @@
 
 #### Endpoints
 
-- [ ] Announcements
+- [x] Announcements
   - Get announcements from DB
 - [x] Store images
   - Take the images and dump them in some folder called `/temp/images` as `studentuid_imagename.extension`
@@ -52,21 +52,22 @@
   - Return images from the `Unknown schema joined with Dopy Image` table with tags
 - [x] Auth
   - Nextauth will do the needful (more deep dive on what exactly is happening might be needed)
-- [ ] Update tags for a given image id
+- [x] Update tags for a given image id
   - Endpoint will be a `PATCH` request which takes image id and the updated tags and updates them in the db.
 
 #### Database
 
 - [x] Prisma or Drizzle with postgresql
-- [ ] Announcement schema - {uuid, title, description, created at time stamp}
+- [x] Announcement schema - {uuid, title, description, created at time stamp}
 - [x] Upload Image - {uuid, fk to student uid, image path}
-- [ ] Some Unknown schema to store tagged image - {fk to student uid, image id}
-- [ ] Dopy Image - {uuid, image path, event name, tags}
+- [x] Tag - {uuid, tag value, fk to image uids}
+- [x] Event - {uuid, event name, fk to image uids}
+- [x] Dopy Image - {uuid, image path, fk to event uid, fk to tag uids, fk to tagged student uids}
 
 ### Config & Misc
 
-- [ ] Docker files
-  - [ ] Production
+- [x] Docker files
+  - [x] Production
   - [x] Development
 - [x] Config
   - [x] Prettier
@@ -78,7 +79,7 @@
 
 ### Development
 
-1. Rename `.env.example` as `.env` or `.env.development` and add your `GOOGLE_CLIENT_ID` and `GOOGLE_CLIENT_SECRET` from google cloud console.
+1. Rename `.env.example` as `.env.development` and add your `GOOGLE_CLIENT_ID` and `GOOGLE_CLIENT_SECRET` from google cloud console. Callback url on google cloud console is `http://localhost:3000/api/auth/callback/google`.
 2. Run the following command and visit http://localhost:3000
    ```bash
    docker compose -f docker-compose.dev.yml up
@@ -88,3 +89,14 @@
    pnpm install
    pnpm prisma generate
    ```
+
+### Production
+
+1. Rename `.env.example` as `.env`(for prisma's sake as of now) and `.env.production`.
+2. Add your `GOOGLE_CLIENT_ID`, `GOOGLE_CLIENT_SECRET` from google cloud console. Callback url on google cloud console is `http://localhost:3000/api/auth/callback/google`. Add a secret to `NEXTAUTH_SECRET`.
+3. Run the following command and visit http://localhost:3000
+   ```bash
+   docker compose -f docker-compose.prod.yml up
+   ```
+4. As of now locally you have to run `npx --yes prisma migrate deploy` to migrate your schema to the database.
+5. Because of how bind mounts work the `uploads` folder ownership needs to be changed. So run `chown -R 1001:1001 uploads` on the server/host.
diff --git a/frontend/components/ImageWithModal.tsx b/frontend/components/ImageWithModal.tsx
index 062b7c5..35c21cb 100644
--- a/frontend/components/ImageWithModal.tsx
+++ b/frontend/components/ImageWithModal.tsx
@@ -7,31 +7,52 @@
 import { Icon } from "@iconify/react";
 import {
 	ActionIcon,
+	Alert,
 	Badge,
 	Button,
 	Group,
 	Image,
 	Modal,
+	Stack,
 	TextInput,
 } from "@mantine/core";
 import { useDisclosure } from "@mantine/hooks";
 import { useState } from "react";
 
 type Props = {
+	id: string;
 	imageUrl: string;
 	tagsFromDatabase: string[];
 };
 
 export default function ImagePreviewModal({
+	id,
 	imageUrl,
 	tagsFromDatabase,
 }: Props) {
 	const [opened, { open, close }] = useDisclosure(false);
 	const [tags, setTags] = useState(tagsFromDatabase);
 	const [newTag, setNewTag] = useState("");
+	const [updateStatus, setUpdateStatus] = useState("");
 
 	async function handleUpdateTags() {
-		console.log(tags);
+		const add = tags.filter((tag) => !tagsFromDatabase.includes(tag));
+		const remove = tagsFromDatabase.filter((tag) => !tags.includes(tag));
+
+		const response = await fetch("/api/updateTags", {
+			method: "POST",
+			headers: {
+				Accept: "application/json",
+				"Content-Type": "application/json",
+			},
+			body: JSON.stringify({
+				image: id,
+				add,
+				remove,
+			}),
+		});
+
+		setUpdateStatus(response.ok ? "success" : "failure");
 	}
 
 	return (
@@ -40,23 +61,17 @@ export default function ImagePreviewModal({
 				alt={imageUrl}
 				src={imageUrl}
 				onClick={open}
-				imageProps={{ onLoad: () => URL.revokeObjectURL(imageUrl) }}
 				className="cursor-pointer"
 			/>
 
 			<Modal centered opened={opened} onClose={close} size={"auto"}>
 				<section className="px-2 py-4 sm:flex sm:gap-x-2">
-					<Image
-						alt={imageUrl}
-						src={imageUrl}
-						onClick={open}
-						imageProps={{ onLoad: () => URL.revokeObjectURL(imageUrl) }}
-					/>
+					<Image alt={imageUrl} src={imageUrl} onClick={open} />
 					<div>
 						<Group position="center" className="mt-2">
 							{tags.map((tag, badgeIndex) => (
 								<Badge
-									className="m-1 capitalize"
+									className="m-1 normal-case"
 									key={badgeIndex}
 									rightSection={
 										<ActionIcon
@@ -75,22 +90,54 @@ export default function ImagePreviewModal({
 							))}
 						</Group>
 
-						<Group position="center" className="py-2">
+						<Stack align="center" className="my-2">
 							<TextInput
+								className="mt-4"
 								value={newTag}
 								placeholder="New tag"
 								onChange={(event) => setNewTag(event.currentTarget.value)}
 							/>
-							<Button
-								type="button"
-								disabled={newTag.length === 0}
-								onClick={() => setTags([...tags, newTag])}>
-								Create tag
-							</Button>
-							<Button type="button" onClick={handleUpdateTags}>
-								Update tags
-							</Button>
-						</Group>
+							<Group position="center" className="px-5" noWrap>
+								<Button
+									type="button"
+									disabled={newTag.length === 0}
+									onClick={() => {
+										if (!tags.includes(newTag)) {
+											setTags([...tags, newTag]);
+										}
+										setNewTag("");
+									}}>
+									Add tag
+								</Button>
+								<Button type="button" onClick={handleUpdateTags}>
+									Update tags
+								</Button>
+							</Group>
+							{updateStatus === "success" && (
+								<Alert
+									className="px-5 pt-5"
+									icon={<Icon icon="mdi:check-circle-outline" />}
+									title="Updated successfully!"
+									color="green"
+									radius="md"
+									withCloseButton
+									onClose={() => setUpdateStatus("")}>
+									{}
+								</Alert>
+							)}
+							{updateStatus === "failure" && (
+								<Alert
+									className="px-5 pt-5"
+									icon={<Icon icon="mdi:alert-circle-outline" />}
+									title="Tag update failed!"
+									color="red"
+									radius="md"
+									withCloseButton
+									onClose={() => setUpdateStatus("")}>
+									{}
+								</Alert>
+							)}
+						</Stack>
 					</div>
 				</section>
 			</Modal>
diff --git a/frontend/components/Navbar.tsx b/frontend/components/Navbar.tsx
index 8000077..add3907 100644
--- a/frontend/components/Navbar.tsx
+++ b/frontend/components/Navbar.tsx
@@ -1,49 +1,74 @@
 // Pitfalls:
 // Since tailwind preflight is disabled some of these styles overwrite the default styles or make use of the default styles
 // For example here 'px-0` is needed to remove the default unordered list padding
-import { Anchor, Button } from "@mantine/core";
+import { Button } from "@mantine/core";
 import { signOut, useSession } from "next-auth/react";
 import Link from "next/link";
+import { useRouter } from "next/router";
 
 export default function Navbar() {
 	const { data: session } = useSession();
+	const router = useRouter();
+
+	const protectedRoutes = [
+		{
+			name: "profile",
+			path: "/app/profile",
+		},
+		{
+			name: "search",
+			path: "/app/search",
+		},
+	];
+
+	const unprotectedRoutes = [
+		{
+			name: "announcements",
+			path: "/announcements",
+		},
+	];
+
 	return (
-		<nav className="flex items-center justify-between px-10">
+		<nav className="flex items-center justify-center px-10 sm:justify-end">
 			{/* TODO: Add crux logo here for home route */}
-			<Anchor component={Link} href={"/"}>
-				Logo
-			</Anchor>
 			<ul className="flex list-none px-0">
-				<li className="mx-2">
-					<Button
-						component={Link}
-						href={"/announcements"}
-						className="capitalize">
-						announcements
+				{router.pathname !== "/login" && session?.user === undefined && (
+					<Button component={Link} href={"/"} className="mx-2 capitalize">
+						login
 					</Button>
-				</li>
+				)}
+				{unprotectedRoutes.map(
+					(route, index) =>
+						router.pathname !== route.path && (
+							<li key={index} className="mx-2">
+								<Button
+									component={Link}
+									href={route.path}
+									className="capitalize">
+									{route.name}
+								</Button>
+							</li>
+						)
+				)}
 				{session?.user && (
 					<>
-						<li className="mx-2">
-							<Button
-								component={Link}
-								href={"/app/profile"}
-								className=" capitalize">
-								profile
-							</Button>
-						</li>
-						<li className="mx-2">
-							<Button
-								component={Link}
-								href={"/app/search"}
-								className=" capitalize">
-								search
-							</Button>
-						</li>
+						{protectedRoutes.map(
+							(route, index) =>
+								router.pathname !== route.path && (
+									<li key={index} className="mx-2">
+										<Button
+											component={Link}
+											href={route.path}
+											className="capitalize">
+											{route.name}
+										</Button>
+									</li>
+								)
+						)}
 						<li className="mx-2">
 							<Button
 								onClick={() => signOut({ callbackUrl: "/login" })}
-								className=" capitalize">
+								className="capitalize">
 								logout
 							</Button>
 						</li>
diff --git a/frontend/pages/api/auth/[...nextauth].ts b/frontend/pages/api/auth/[...nextauth].ts
index 66e5a84..934a414 100644
--- a/frontend/pages/api/auth/[...nextauth].ts
+++ b/frontend/pages/api/auth/[...nextauth].ts
@@ -10,7 +10,10 @@ export const authOptions: NextAuthOptions = {
 	adapter: PrismaAdapter(prisma),
 	callbacks: {
 		session: ({ session, user }) => {
-			if (session?.user) session.user.id = user.id;
+			if (session?.user) {
+				session.user.id = user.id;
+				session.user.role = user.role;
+			}
 			return session;
 		},
 	},
diff --git a/frontend/pages/api/events.ts b/frontend/pages/api/events.ts
new file mode 100644
index 0000000..b2ba731
--- /dev/null
+++ b/frontend/pages/api/events.ts
@@ -0,0 +1,42 @@
+import type { NextApiRequest, NextApiResponse } from "next";
+import { getServerSession } from "next-auth/next";
+import { authOptions, prisma } from "./auth/[...nextauth]";
+
+interface ExtendedNextApiRequest extends NextApiRequest {
+	query: {
+		eventYear: string;
+	};
+}
+
+export default async function handler(
+	req: ExtendedNextApiRequest,
+	res: NextApiResponse
+) {
+	const session = await getServerSession(req, res, authOptions);
+
+	if (req.method !== "GET") {
+		return res.status(405).send(`Method ${req.method} Not Allowed`);
+	}
+
+	if (!session || !session.user.id) {
+		return res.status(401).send("Unauthorized");
+	}
+
+	try {
+		// TODO: Handle req body
+		const eventYear = new Date(req.query.eventYear).getFullYear();
+		const availableEvents = await prisma.event.findMany({
+			where: { year: eventYear },
+		});
+
+		// change the keys for the mantine multiselect format
+		const formattedAvailableEvents = availableEvents.map((event) => ({
+			value: event.id,
+			label: event.name,
+		}));
+		res.status(200).json(formattedAvailableEvents);
+	} catch (e) {
+		console.error(e);
+		res.status(500).send("Internal Server Error");
+	}
+}
diff --git a/frontend/pages/api/getImage.ts b/frontend/pages/api/getImage.ts
new file mode 100644
index 0000000..47605e7
--- /dev/null
+++ b/frontend/pages/api/getImage.ts
@@ -0,0 +1,28 @@
+import type { NextApiRequest, NextApiResponse } from "next";
+import { getServerSession } from "next-auth/next";
+import { authOptions, prisma } from "./auth/[...nextauth]";
+import { readFileSync } from "fs";
+
+export default async function handler(
+	req: NextApiRequest,
+	res: NextApiResponse
+) {
+	const session = await getServerSession(req, res, authOptions);
+	if (req.method !== "POST") {
+		return res.status(405).send(`Method ${req.method} Not Allowed`);
+	}
+	if (!session || !session.user.id) {
+		return res.status(401).send("Unauthorized");
+	}
+
+	const filePath = "./dopy/" + req.body.filePath;
+
+	try {
+		const imageBuffer = readFileSync(filePath);
+		res.setHeader("Content-Type", "image/jpg");
+		res.status(200).send(imageBuffer);
+	} catch (e) {
+		console.error(e);
+		res.status(500).send("Internal Server Error");
+	}
+}
diff --git a/frontend/pages/api/searchImages.ts b/frontend/pages/api/searchImages.ts
new file mode 100644
index 0000000..55f28fa
--- /dev/null
+++ b/frontend/pages/api/searchImages.ts
@@ -0,0 +1,55 @@
+import type { NextApiRequest, NextApiResponse } from "next";
+import { getServerSession } from "next-auth/next";
+import { authOptions, prisma } from "./auth/[...nextauth]";
+import { DopyImage } from "@prisma/client";
+
+interface ExtendedNextApiRequest extends NextApiRequest {
+	query: {
+		uid: string;
+		events: string;
+	};
+}
+
+export default async function handler(
+	req: ExtendedNextApiRequest,
+	res: NextApiResponse
+) {
+	const session = await getServerSession(req, res, authOptions);
+
+	if (req.method !== "GET") {
+		return res.status(405).send(`Method ${req.method} Not Allowed`);
+	}
+
+	if (!session) {
+		return res.status(401).send("Unauthorized");
+	}
+
+	// TODO: Handle req params here
+	const { uid } = req.query;
+	const events: string[] = JSON.parse(req.query.events);
+
+	try {
+		const userImages: DopyImage[][] = [];
+		for (const event of events) {
+			const images = await prisma.dopyImage.findMany({
+				where: {
+					eventId: event,
+					taggedUsers: {
+						some: {
+							email: `${uid}@hyderabad.bits-pilani.ac.in`,
+						},
+					},
+				},
+				include: {
+					tags: true,
+				},
+			});
+			userImages.push(images);
+		}
+
+		res.status(200).json({ userImages });
+	} catch (e) {
+		console.error(e);
+		res.status(500).send("Internal Server Error");
+	}
+}
diff --git a/frontend/pages/api/tagImages.ts b/frontend/pages/api/tagImages.ts
new file mode 100644
index 0000000..3d1bf4b
--- /dev/null
+++ b/frontend/pages/api/tagImages.ts
@@ -0,0 +1,58 @@
+// Adds image tags in the database
+// Pitfalls:
+// The custom interface only keeps TS happy, it does not handle runtime errors that should return a 400
+import type { NextApiRequest, NextApiResponse } from "next";
+import { getServerSession } from "next-auth/next";
+import { authOptions, prisma } from "./auth/[...nextauth]";
+
+interface ExtendedNextApiRequest extends NextApiRequest {
+	body: {
+		tags: { image: string; users: string[] }[];
+	};
+}
+
+export default async function handler(
+	req: ExtendedNextApiRequest,
+	res: NextApiResponse
+) {
+	const session = await getServerSession(req, res, authOptions);
+	if (req.method !== "POST") {
+		return res.status(405).send(`Method ${req.method} Not Allowed`);
+	}
+	if (!session) {
+		return res.status(401).send("Unauthorized");
+	}
+	if (session.user.role !== "admin") {
+		return res.status(403).send("Forbidden");
+	}
+
+	// TODO: Add (actual) type guard for request body
+
+	try {
+		for (const { image, users } of req.body.tags) {
+			const imageRecord = await prisma.dopyImage.findUnique({
+				where: { filePath: image },
+			});
+			if (!imageRecord) {
+				return res.status(404).send(`Image ${image} not found`);
+			}
+
+			for (const user of users) {
+				const userRecord = await prisma.user.findUnique({
+					where: { id: user },
+				});
+				if (!userRecord) {
+					return res.status(404).send(`User ${user} not found`);
+				}
+				await prisma.dopyImage.update({
+					where: { filePath: image },
+					data: { taggedUsers: { connect: { id: user } } },
+				});
+			}
+		}
+		res.status(200).send("OK");
+	} catch (e) {
+		console.error(e);
+		res.status(500).send("Internal Server Error");
+	}
+}
diff --git a/frontend/pages/api/test.ts b/frontend/pages/api/test.ts
new file mode 100644
index 0000000..4e44640
--- /dev/null
+++ b/frontend/pages/api/test.ts
@@ -0,0 +1,100 @@
+// Reset and populate DB with test data
+// Pitfalls:
+// It does not handle the user auth tables
+// Start from a fresh docker volume (or run `pnpm prisma migrate reset`)
+// Then, login to the app once to create the user auth tables
+// You can then call the endpoint (any number of times) to reset and repopulate the DB
+import type { NextApiRequest, NextApiResponse } from "next";
+import { promises } from "fs";
+import { prisma } from "./auth/[...nextauth]";
+
+export default async function handler(
+	req: NextApiRequest,
+	res: NextApiResponse
+) {
+	try {
+		// Delete all records
+		const tablenames = await prisma.$queryRaw<
+			Array<{ tablename: string }>
+		>`SELECT tablename FROM pg_tables WHERE schemaname='public'`;
+
+		const keep = [
+			"_prisma_migrations",
+			"accounts",
+			"sessions",
+			"users",
+			"verificationtokens",
+		];
+		const tables = tablenames
+			.map(({ tablename }) => tablename)
+			.filter((name) => !keep.includes(name))
+			.map((name) => `"public"."${name}"`)
+			.join(", ");
+
+		await prisma.$executeRawUnsafe(`TRUNCATE TABLE ${tables} CASCADE;`);
+
+		// Create test data
+		await prisma.event.create({
+			data: {
+				name: "atmos",
+				eventYear: {
+					create: {
+						year: 2023,
+					},
+				},
+			},
+		});
+
+		await prisma.event.create({
+			data: { name: "atmos", eventYear: { create: { year: 2022 } } },
+		});
+
+		await prisma.event.create({
+			data: {
+				name: "pearl",
+				eventYear: {
+					connectOrCreate: { create: { year: 2023 }, where: { year: 2023 } },
+				},
+			},
+		});
+
+		const atmosRecord = await prisma.event.findFirst({
+			where: { name: "atmos" },
+		});
+		const files = await promises.readdir("./dopy/");
+
+		// Don't think about these
+		const tags = ["potato", "forest", "paste", "mint", "obsidian btw"];
+
+		for (const file of files) {
+			const randomTag = tags[Math.floor(Math.random() * tags.length)];
+			await prisma.dopyImage.create({
+				data: {
+					filePath: file,
+					event: {
+						connect: {
+							id: atmosRecord?.id,
+						},
+					},
+					tags: {
+						connectOrCreate: {
+							create: { value: randomTag },
+							where: { value: randomTag },
+						},
+					},
+					taggedUsers: {
+						connect: [
+							{
+								email: "f20210264@hyderabad.bits-pilani.ac.in",
+							},
+						],
+					},
+				},
+			});
+		}
+		res.status(200).send("OK");
+	} catch (e) {
+		console.error(e);
+		res.status(500).send("Internal Server Error");
+	}
+}
diff --git a/frontend/pages/api/updateTags.ts b/frontend/pages/api/updateTags.ts
new file mode 100644
index 0000000..494b7cc
--- /dev/null
+++ b/frontend/pages/api/updateTags.ts
@@ -0,0 +1,71 @@
+// Updates tags for a DopyImage
+// Note:
+// - Invalid tags in remove[] are silently ignored
+// - Tags in add[] are created if not found
+import type { NextApiRequest, NextApiResponse } from "next";
+import { getServerSession } from "next-auth/next";
+import { authOptions, prisma } from "./auth/[...nextauth]";
+
+interface ExtendedNextApiRequest extends NextApiRequest {
+	body: {
+		image: string;
+		add: string[];
+		remove: string[];
+	};
+}
+
+export default async function handler(
+	req: ExtendedNextApiRequest,
+	res: NextApiResponse
+) {
+	const session = await getServerSession(req, res, authOptions);
+	if (req.method !== "POST") {
+		return res.status(405).send(`Method ${req.method} Not Allowed`);
+	}
+	if (!session) {
+		return res.status(401).send("Unauthorized");
+	}
+	// TODO: Restrict tag updates to certain users only
+
+	try {
+		const imageRecord = await prisma.dopyImage.findUnique({
+			where: { filePath: req.body.image },
+		});
+		if (!imageRecord) {
+			return res.status(404).send(`Image ${req.body.image} not found`);
+		}
+
+		const addIds = [];
+		const removeIds = [];
+
+		for (const tag of req.body.remove) {
+			const tagRecord = await prisma.tag.findUnique({ where: { value: tag } });
+			if (tagRecord) {
+				removeIds.push(tagRecord.id);
+			}
+		}
+
+		for (const tag of req.body.add) {
+			const tagRecord = await prisma.tag.upsert({
+				where: { value: tag },
+				update: {},
+				create: { value: tag },
+			});
+			addIds.push(tagRecord.id);
+		}
+
+		await prisma.dopyImage.update({
+			where: { filePath: req.body.image },
+			data: {
+				tags: {
+					disconnect: removeIds.map((id) => ({ id })),
+					connect: addIds.map((id) => ({ id })),
+				},
+			},
+		});
+		res.status(200).send("OK");
+	} catch (e) {
+		console.error(e);
+		res.status(500).send("Internal Server Error");
+	}
+}
diff --git a/frontend/pages/app/profile.tsx b/frontend/pages/app/profile.tsx
index 05334eb..8043f78 100644
--- a/frontend/pages/app/profile.tsx
+++ b/frontend/pages/app/profile.tsx
@@ -23,10 +23,6 @@ export default function Profile() {
 	const [uploadStatus, setUploadStatus] = useState("");
 
 	const { data: session } = useSession();
-	const userData = {
-		email: session?.user?.email,
-		name: session?.user?.name,
-	};
 
 	const handleImageUpload = async function () {
 		const fd = new FormData();
@@ -72,10 +68,10 @@ export default function Profile() {
 					<section>
 						<h1 className="my-2 text-3xl">Profile</h1>
 						<p className="m-1">
-							<b>Name:</b> {userData.name}
+							<b>Name:</b> {session?.user.name}
 						</p>
 						<p className="m-1">
-							<b>Email:</b> {userData.email}
+							<b>Email:</b> {session?.user.email}
 						</p>
 					</section>
 
diff --git a/frontend/pages/app/search.tsx b/frontend/pages/app/search.tsx
index 13ca570..fada599 100644
--- a/frontend/pages/app/search.tsx
+++ b/frontend/pages/app/search.tsx
@@ -5,40 +5,83 @@ import { Button, Group, MultiSelect, TextInput } from "@mantine/core";
 import { useState } from "react";
 import { YearPickerInput } from "@mantine/dates";
 import ImageWithModal from "@/components/ImageWithModal";
+import { prisma } from "../api/auth/[...nextauth]";
+import { InferGetServerSidePropsType } from "next";
 
-// TODO: Make the UI better for larger screens
-export default function Search() {
+type Event = {
+	value: string;
+	label: string;
+};
+
+export const getServerSideProps = async () => {
+	const events = await prisma.event.findMany({
+		where: { year: new Date().getFullYear() },
+	});
+
+	return {
+		props: {
+			initialLoadEvents: events.map((event) => ({
+				value: event.id,
+				label: event.name,
+			})),
+		},
+	};
+};
+
+export default function Search({
+	initialLoadEvents,
+}: InferGetServerSidePropsType<typeof getServerSideProps>) {
 	const [uid, setUid] = useState("");
-	const [events, setEvents] = useState<string[]>([]);
+	const [selectedEvents, setSelectedEvents] = useState<string[]>([]);
 	const [eventYear, setEventYear] = useState<Date | null>(new Date());
-	const [images, setImages] = useState<{ imageUrl: string; tags: string[] }[]>(
-		[]
-	);
+	const [events, setEvents] = useState<Event[]>(initialLoadEvents);
+	const [images, setImages] = useState<
+		{ id: string; imageUrl: string; tags: string[] }[]
+	>([]);
 
-	const eventsFromDatabase = [
-		{ value: "1", label: "Atmos" },
-		{ value: "2", label: "Pearl" },
-	];
+	async function fetchEvents(eventYear: Date | null) {
+		const response = await fetch(`/api/events?eventYear=${eventYear}`);
+		// TODO: Handle errors
+		const availableEvents: Event[] = await response.json();
+		setSelectedEvents([]);
+		setEvents(availableEvents);
+	}
 
-	// TODO: Finish handleSearch
 	async function handleSearch() {
-		console.log(uid);
-		console.log(events);
-		// TODO: Handle events being empty
-		console.log(eventYear);
+		const userImagesResponse = await fetch(
+			`/api/searchImages?uid=${uid}&events=${JSON.stringify(selectedEvents)}`
+		);
+		const { userImages } = await userImagesResponse.json();
 
-		setImages([
-			{
-				imageUrl:
-					"https://images.unsplash.com/photo-1538991383142-36c4edeaffde?ixlib=rb-4.0.3&ixid=M3wxMjA3fDB8MHxwaG90by1wYWdlfHx8fGVufDB8fHx8fA%3D%3D&auto=format&fit=crop&w=1771&q=80",
-				tags: ["CSA", "A7"],
-			},
-		]);
+		const arr = [];
+		for (const image of userImages.flat()) {
+			const imageResponse = await fetch("/api/getImage", {
+				method: "POST",
+				headers: {
+					"Content-Type": "application/json",
+				},
+				body: JSON.stringify({
+					filePath: image.filePath,
+				}),
+			});
+			const imageUrl = URL.createObjectURL(await imageResponse.blob());
+			arr.push({
+				id: image.filePath,
+				imageUrl,
+				tags: image.tags.map((tag: { id: string; value: string }) => tag.value),
+			});
+		}
+		setImages(arr);
 	}
 
-	const previews = images.map(({ imageUrl, tags }, index) => {
+	const previews = images.map(({ id, imageUrl, tags }, index) => {
 		return (
-			<ImageWithModal key={index} imageUrl={imageUrl} tagsFromDatabase={tags} />
+			<ImageWithModal
+				key={index}
+				id={id}
+				imageUrl={imageUrl}
+				tagsFromDatabase={tags}
+			/>
 		);
 	});
 
@@ -48,21 +91,34 @@ export default function Search() {
 				<section className="mx-auto max-w-md px-10 py-4">
 					<form onSubmit={(event) => event.preventDefault()}>
 						<article>
-							{/* TODO: Regex validation for BITS UIDs */}
 							<TextInput
 								value={uid}
 								label="UID"
 								placeholder="fxxxxxxxx"
+								pattern="^f\d{8}$"
 								onChange={(event) => setUid(event.currentTarget.value)}
 								required
 								withAsterisk
 							/>
+							<Group position="center" className="m-2">
+								<YearPickerInput
+									label="Event year"
+									value={eventYear}
+									onChange={(newDate) => {
+										setEventYear(newDate);
+										fetchEvents(newDate);
+									}}
+									withAsterisk
+									maxDate={new Date()}
+								/>
+							</Group>
 							<MultiSelect
-								data={eventsFromDatabase}
+								data={events}
+								disabled={events.length === 0}
 								placeholder="Pick events"
 								label="Events"
-								onChange={setEvents}
-								value={events}
+								onChange={setSelectedEvents}
+								value={selectedEvents}
 								clearButtonProps={{ "aria-label": "Clear selection" }}
 								searchable
 								clearable
@@ -72,16 +128,11 @@ export default function Search() {
 						</article>
 						<article>
 							<Group position="center" className="m-2">
-								<YearPickerInput
-									label="Event year"
-									value={eventYear}
-									onChange={setEventYear}
-									withAsterisk
-									maxDate={new Date()}
-								/>
-							</Group>
-							<Group position="center">
-								<Button type="submit" color="green" onClick={handleSearch}>
+								<Button
+									type="submit"
+									color="green"
+									onClick={handleSearch}
+									disabled={selectedEvents.length === 0}>
 									Search
 								</Button>
 							</Group>
diff --git a/frontend/pages/login/index.tsx b/frontend/pages/login.tsx
similarity index 76%
rename from frontend/pages/login/index.tsx
rename to frontend/pages/login.tsx
index b9ca269..a42e3cb 100644
--- a/frontend/pages/login/index.tsx
+++ b/frontend/pages/login.tsx
@@ -13,7 +13,13 @@ export default function Login() {
 							type="submit"
 							size="md"
 							className="my-2"
-							onClick={() => signIn("google", { callbackUrl: "/app/profile" })}>
+							onClick={() =>
+								signIn(
+									"google",
+									{ callbackUrl: "/app/profile" },
+									{ hd: "hyderabad.bits-pilani.ac.in" }
+								)
+							}>
 							Login with Google
 						</Button>
 						<p className="my-1 text-xs">Use BITS mail*</p>
diff --git a/frontend/prisma/migrations/20230805073705_add_dopy_image_and_tags/migration.sql b/frontend/prisma/migrations/20230805073705_add_dopy_image_and_tags/migration.sql
new file mode 100644
index 0000000..b687bd8
--- /dev/null
+++ b/frontend/prisma/migrations/20230805073705_add_dopy_image_and_tags/migration.sql
@@ -0,0 +1,71 @@
+-- CreateTable
+CREATE TABLE "DopyImage" (
+    "id" TEXT NOT NULL,
+    "eventId" TEXT NOT NULL,
+
+    CONSTRAINT "DopyImage_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "Tag" (
+    "id" TEXT NOT NULL,
+    "value" TEXT NOT NULL,
+
+    CONSTRAINT "Tag_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "Event" (
+    "id" TEXT NOT NULL,
+    "name" TEXT NOT NULL,
+
+    CONSTRAINT "Event_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "_DopyImageToTag" (
+    "A" TEXT NOT NULL,
+    "B" TEXT NOT NULL
+);
+
+-- CreateTable
+CREATE TABLE "_DopyImageToUser" (
+    "A" TEXT NOT NULL,
+    "B" TEXT NOT NULL
+);
+
+-- CreateIndex
+CREATE UNIQUE INDEX "DopyImage_id_key" ON "DopyImage"("id");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "Tag_id_key" ON "Tag"("id");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "Event_id_key" ON "Event"("id");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "_DopyImageToTag_AB_unique" ON "_DopyImageToTag"("A", "B");
+
+-- CreateIndex
+CREATE INDEX "_DopyImageToTag_B_index" ON "_DopyImageToTag"("B");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "_DopyImageToUser_AB_unique" ON "_DopyImageToUser"("A", "B");
+
+-- CreateIndex
+CREATE INDEX "_DopyImageToUser_B_index" ON "_DopyImageToUser"("B");
+
+-- AddForeignKey
+ALTER TABLE "DopyImage" ADD CONSTRAINT "DopyImage_eventId_fkey" FOREIGN KEY ("eventId") REFERENCES "Event"("id") ON DELETE RESTRICT ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "_DopyImageToTag" ADD CONSTRAINT "_DopyImageToTag_A_fkey" FOREIGN KEY ("A") REFERENCES "DopyImage"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "_DopyImageToTag" ADD CONSTRAINT "_DopyImageToTag_B_fkey" FOREIGN KEY ("B") REFERENCES "Tag"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "_DopyImageToUser" ADD CONSTRAINT "_DopyImageToUser_A_fkey" FOREIGN KEY ("A") REFERENCES "DopyImage"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "_DopyImageToUser" ADD CONSTRAINT "_DopyImageToUser_B_fkey" FOREIGN KEY ("B") REFERENCES "users"("id") ON DELETE CASCADE ON UPDATE CASCADE;
diff --git a/frontend/prisma/migrations/20230805102111_add_roles/migration.sql b/frontend/prisma/migrations/20230805102111_add_roles/migration.sql
new file mode 100644
index 0000000..8faee58
--- /dev/null
+++ b/frontend/prisma/migrations/20230805102111_add_roles/migration.sql
@@ -0,0 +1,2 @@
+-- AlterTable
+ALTER TABLE "users" ADD COLUMN     "role" TEXT NOT NULL DEFAULT 'student';
diff --git a/frontend/prisma/migrations/20230806175139_rename/migration.sql b/frontend/prisma/migrations/20230806175139_rename/migration.sql
new file mode 100644
index 0000000..4683a0a
--- /dev/null
+++ b/frontend/prisma/migrations/20230806175139_rename/migration.sql
@@ -0,0 +1,87 @@
+/*
+  Warnings:
+
+  - You are about to drop the `Announcement` table. If the table is not empty, all the data it contains will be lost.
+  - You are about to drop the `DopyImage` table. If the table is not empty, all the data it contains will be lost.
+  - You are about to drop the `Event` table. If the table is not empty, all the data it contains will be lost.
+  - You are about to drop the `Tag` table. If the table is not empty, all the data it contains will be lost.
+
+*/
+-- DropForeignKey
+ALTER TABLE "DopyImage" DROP CONSTRAINT "DopyImage_eventId_fkey";
+
+-- DropForeignKey
+ALTER TABLE "_DopyImageToTag" DROP CONSTRAINT "_DopyImageToTag_A_fkey";
+
+-- DropForeignKey
+ALTER TABLE "_DopyImageToTag" DROP CONSTRAINT "_DopyImageToTag_B_fkey";
+
+-- DropForeignKey
+ALTER TABLE "_DopyImageToUser" DROP CONSTRAINT "_DopyImageToUser_A_fkey";
+
+-- DropTable
+DROP TABLE "Announcement";
+
+-- DropTable
+DROP TABLE "DopyImage";
+
+-- DropTable
+DROP TABLE "Event";
+
+-- DropTable
+DROP TABLE "Tag";
+
+-- CreateTable
+CREATE TABLE "announcements" (
+    "id" SERIAL NOT NULL,
+    "title" TEXT NOT NULL,
+    "description" TEXT NOT NULL,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+
+    CONSTRAINT "announcements_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "dopy_images" (
+    "id" TEXT NOT NULL,
+    "eventId" TEXT NOT NULL,
+
+    CONSTRAINT "dopy_images_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "tags" (
+    "id" TEXT NOT NULL,
+    "value" TEXT NOT NULL,
+
+    CONSTRAINT "tags_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "events" (
+    "id" TEXT NOT NULL,
+    "name" TEXT NOT NULL,
+
+    CONSTRAINT "events_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateIndex
+CREATE UNIQUE INDEX "dopy_images_id_key" ON "dopy_images"("id");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "tags_id_key" ON "tags"("id");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "events_id_key" ON "events"("id");
+
+-- AddForeignKey
+ALTER TABLE "dopy_images" ADD CONSTRAINT "dopy_images_eventId_fkey" FOREIGN KEY ("eventId") REFERENCES "events"("id") ON DELETE RESTRICT ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "_DopyImageToTag" ADD CONSTRAINT "_DopyImageToTag_A_fkey" FOREIGN KEY ("A") REFERENCES "dopy_images"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "_DopyImageToTag" ADD CONSTRAINT "_DopyImageToTag_B_fkey" FOREIGN KEY ("B") REFERENCES "tags"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "_DopyImageToUser" ADD CONSTRAINT "_DopyImageToUser_A_fkey" FOREIGN KEY ("A") REFERENCES "dopy_images"("id") ON DELETE CASCADE ON UPDATE CASCADE;
diff --git a/frontend/prisma/migrations/20230813135101_update_tag/migration.sql b/frontend/prisma/migrations/20230813135101_update_tag/migration.sql
new file mode 100644
index 0000000..4e312f7
--- /dev/null
+++ b/frontend/prisma/migrations/20230813135101_update_tag/migration.sql
@@ -0,0 +1,11 @@
+/*
+  Warnings:
+
+  - A unique constraint covering the columns `[value]` on the table `tags` will be added. If there are existing duplicate values, this will fail.
+
+*/
+-- DropIndex
+DROP INDEX "tags_id_key";
+
+-- CreateIndex
+CREATE UNIQUE INDEX "tags_value_key" ON "tags"("value");
diff --git a/frontend/prisma/migrations/20230819085231_generate_event_id_by_default_and_add_filepath_to_dopy_image_schema/migration.sql b/frontend/prisma/migrations/20230819085231_generate_event_id_by_default_and_add_filepath_to_dopy_image_schema/migration.sql
new file mode 100644
index 0000000..0729c39
--- /dev/null
+++ b/frontend/prisma/migrations/20230819085231_generate_event_id_by_default_and_add_filepath_to_dopy_image_schema/migration.sql
@@ -0,0 +1,35 @@
+/*
+  Warnings:
+
+  - The primary key for the `dopy_images` table will be changed. If it partially fails, the table could be left without primary key constraint.
+  - You are about to drop the column `id` on the `dopy_images` table. All the data in the column will be lost.
+  - A unique constraint covering the columns `[filePath]` on the table `dopy_images` will be added. If there are existing duplicate values, this will fail.
+  - Added the required column `filePath` to the `dopy_images` table without a default value. This is not possible if the table is not empty.
+
+*/
+-- DropForeignKey
+ALTER TABLE "_DopyImageToTag" DROP CONSTRAINT "_DopyImageToTag_A_fkey";
+
+-- DropForeignKey
+ALTER TABLE "_DopyImageToUser" DROP CONSTRAINT "_DopyImageToUser_A_fkey";
+
+-- DropIndex
+DROP INDEX "dopy_images_id_key";
+
+-- DropIndex
+DROP INDEX "events_id_key";
+
+-- AlterTable
+ALTER TABLE "dopy_images" DROP CONSTRAINT "dopy_images_pkey",
+DROP COLUMN "id",
+ADD COLUMN     "filePath" TEXT NOT NULL,
+ADD CONSTRAINT "dopy_images_pkey" PRIMARY KEY ("filePath");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "dopy_images_filePath_key" ON "dopy_images"("filePath");
+
+-- AddForeignKey
+ALTER TABLE "_DopyImageToTag" ADD CONSTRAINT "_DopyImageToTag_A_fkey" FOREIGN KEY ("A") REFERENCES "dopy_images"("filePath") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "_DopyImageToUser" ADD CONSTRAINT "_DopyImageToUser_A_fkey" FOREIGN KEY ("A") REFERENCES "dopy_images"("filePath") ON DELETE CASCADE ON UPDATE CASCADE;
diff --git a/frontend/prisma/migrations/20230819103135_add_year_field_to_event/migration.sql b/frontend/prisma/migrations/20230819103135_add_year_field_to_event/migration.sql
new file mode 100644
index 0000000..3dc2b96
--- /dev/null
+++ b/frontend/prisma/migrations/20230819103135_add_year_field_to_event/migration.sql
@@ -0,0 +1,8 @@
+/*
+  Warnings:
+
+  - Added the required column `year` to the `events` table without a default value. This is not possible if the table is not empty.
+
+*/
+-- AlterTable
+ALTER TABLE "events" ADD COLUMN     "year" INTEGER NOT NULL;
diff --git a/frontend/prisma/migrations/20230820051328_create_and_relate_event_year_schema_to_event/migration.sql b/frontend/prisma/migrations/20230820051328_create_and_relate_event_year_schema_to_event/migration.sql
new file mode 100644
index 0000000..8c9e89b
--- /dev/null
+++ b/frontend/prisma/migrations/20230820051328_create_and_relate_event_year_schema_to_event/migration.sql
@@ -0,0 +1,9 @@
+-- CreateTable
+CREATE TABLE "event_years" (
+    "year" INTEGER NOT NULL,
+
+    CONSTRAINT "event_years_pkey" PRIMARY KEY ("year")
+);
+
+-- AddForeignKey
+ALTER TABLE "events" ADD CONSTRAINT "events_year_fkey" FOREIGN KEY ("year") REFERENCES "event_years"("year") ON DELETE RESTRICT ON UPDATE CASCADE;
diff --git a/frontend/prisma/schema.prisma b/frontend/prisma/schema.prisma
index f7b4692..e5e7490 100644
--- a/frontend/prisma/schema.prisma
+++ b/frontend/prisma/schema.prisma
@@ -38,14 +38,16 @@ model Session {
 }
 
 model User {
-  id            String    @id @default(cuid())
+  id            String      @id @default(cuid())
   name          String?
-  email         String?   @unique
-  emailVerified DateTime? @map("email_verified")
+  email         String?     @unique
+  emailVerified DateTime?   @map("email_verified")
   image         String?
+  role          String      @default("student")
   accounts      Account[]
   sessions      Session[]
   images        Image[]
+  taggedImages  DopyImage[]
 
   @@map("users")
 }
@@ -72,4 +74,41 @@ model Announcement {
   title       String
   description String
   createdAt   DateTime @default(now())
+
+  @@map("announcements")
+}
+
+model DopyImage {
+  filePath    String @id @unique
+  event       Event  @relation(fields: [eventId], references: [id])
+  tags        Tag[]
+  taggedUsers User[]
+  eventId     String
+
+  @@map("dopy_images")
+}
+
+model Tag {
+  id     String      @id @default(uuid())
+  value  String      @unique
+  images DopyImage[]
+
+  @@map("tags")
+}
+
+model Event {
+  id        String      @id @default(uuid())
+  name      String
+  images    DopyImage[]
+  eventYear EventYear   @relation(fields: [year], references: [year])
+  year      Int
+
+  @@map("events")
+}
+
+model EventYear {
+  year  Int     @id
+  Event Event[]
+
+  @@map("event_years")
 }
diff --git a/frontend/prod.Dockerfile b/frontend/prod.Dockerfile
index 7f68e9d..549c8d5 100644
--- a/frontend/prod.Dockerfile
+++ b/frontend/prod.Dockerfile
@@ -16,7 +16,6 @@ COPY types ./types
 COPY *.config.js .
 COPY *.config.ts .
 COPY tsconfig.json .
-COPY next-env.d.ts .
 COPY .env.production .env
 COPY prisma ./prisma
 
@@ -36,5 +35,9 @@ COPY --from=build /app/public ./public
 COPY --from=build --chown=1001:1001 /app/.next/standalone ./
 COPY --from=build --chown=1001:1001 /app/.next/static ./.next/static 
 
+RUN mkdir -p /app/uploads
+RUN chown -R 1001:1001 /app/uploads
+RUN chmod -R 755 /app/uploads
+
 USER nextjs
 CMD ["node", "server.js"]
diff --git a/frontend/types/next-auth.d.ts b/frontend/types/next-auth.d.ts
index 6f8f60d..b49aa31 100644
--- a/frontend/types/next-auth.d.ts
+++ b/frontend/types/next-auth.d.ts
@@ -4,6 +4,10 @@ declare module "next-auth" {
 	interface Session {
 		user: {
 			id?: string;
+			role?: string;
 		} & DefaultSession["user"];
 	}
+	interface User {
+		role?: string;
+	}
 }