diff --git a/examples/docker-compose.yml b/examples/docker-compose.yml
index 9ff3970..9cdccc5 100644
--- a/examples/docker-compose.yml
+++ b/examples/docker-compose.yml
@@ -6,4 +6,17 @@ services:
     environment:
       POSTGRES_PASSWORD: example
       POSTGRES_USER: go-urlsh
-      POSTGRES_DB: go-urlsh
\ No newline at end of file
+      POSTGRES_DB: go-urlsh
+    volumes:
+      - ./postgres-data:/var/lib/postgresql/data
+  go-urlsh:
+    image: codeberg.org/lauralani/go-urlsh:0.1
+    restart: always
+    ports:
+      - 127.0.0.1:3000:3000
+    depends_on:
+      - db
+    environment:
+      # format: postgresql://<username>:<password>@<database_ip>/<database>
+      DATABASE_URL: postgres://
+
diff --git a/examples/settings.env b/examples/settings.env
index 384b7df..f66fa0b 100644
--- a/examples/settings.env
+++ b/examples/settings.env
@@ -3,12 +3,12 @@
 BINDADDR=127.0.0.1
 
 # Port to bind to
-# default: 2345
-PORT=2345
+# default: 3000
+PORT=3000
 
 # List of trusted proxy IPs separated by colons
 # default: 127.0.0.1,::1
-TRUSTEDPROXIES=127.0.0.1,::1
+# TRUSTEDPROXIES=127.0.0.1,::1
 
 # Postgresql connection string
 # format: postgresql://<username>:<password>@<database_ip>/todos?sslmode=verify-ca
diff --git a/internal/api/links.go b/internal/api/links.go
index e264eb1..1e36a66 100644
--- a/internal/api/links.go
+++ b/internal/api/links.go
@@ -13,6 +13,10 @@ import (
 )
 
 func HandleLinkGetAll(c *fiber.Ctx) error {
+	if !db.IsCookieValid(c.Cookies(misc.CookieName, "")) && !db.IsApiKeyValid(c.GetRespHeader("x-api-key", "")) {
+		return fiber.NewError(fiber.StatusUnauthorized, "401 Unauthorized")
+	}
+
 	var links []models.Link
 
 	err := models.DB.NewSelect().Model(&links).Scan(context.Background())
@@ -23,7 +27,10 @@ func HandleLinkGetAll(c *fiber.Ctx) error {
 	for _, link := range links {
 		log.Printf("id: %v, url: %v", link.ID, link.URL)
 	}
-	c.JSON(links)
+	err = c.JSON(links)
+	if err != nil {
+		log.Println(err)
+	}
 	return nil
 }
 
@@ -32,11 +39,10 @@ func HandleLinkGet(c *fiber.Ctx) error {
 }
 
 func HandleLinkPost(c *fiber.Ctx) error {
-	if !db.IsCookieValid(c.Cookies(misc.CookieName, "")) {
+	if !db.IsCookieValid(c.Cookies(misc.CookieName, "")) && !db.IsApiKeyValid(c.GetRespHeader("x-api-key", "")) {
 		return fiber.NewError(fiber.StatusUnauthorized, "401 Unauthorized")
 	}
 
-	// TODO: Add API-Key Auth
 	var newlink models.Link
 
 	err := json.Unmarshal(c.Body(), &newlink)
@@ -61,7 +67,11 @@ func HandleLinkPost(c *fiber.Ctx) error {
 
 	c.Append("Location", c.BaseURL()+"/api/v1/links/"+newlink.ID)
 	c.Status(fiber.StatusCreated)
-	c.JSON(newlink)
+
+	err = c.JSON(newlink)
+	if err != nil {
+		log.Println(err)
+	}
 
 	return nil
 }
@@ -92,5 +102,12 @@ func HandleLinkDelete(c *fiber.Ctx) error {
 		log.Println(err.Error())
 		return fiber.NewError(fiber.StatusInternalServerError, "500 Internal Server Error")
 	}
+
+	c.Status(fiber.StatusNoContent)
+	err = c.SendString("204 No Content")
+	if err != nil {
+		log.Println(err)
+	}
+
 	return nil
 }
diff --git a/internal/api/users.go b/internal/api/users.go
index a02484d..4e754f9 100644
--- a/internal/api/users.go
+++ b/internal/api/users.go
@@ -7,7 +7,6 @@ import (
 	"crypto/sha256"
 	"encoding/hex"
 	"encoding/json"
-	"fmt"
 	"github.com/gofiber/fiber/v2"
 	"log"
 	"time"
@@ -34,7 +33,6 @@ func HandleUserPost(c *fiber.Ctx) error {
 		salt := misc.RandomString(15)
 		created := time.Now()
 		hashbytes := sha256.Sum256([]byte(salt + newuser.Password))
-		fmt.Printf("%x\n", hashbytes)
 
 		hash := hex.EncodeToString(hashbytes[:])
 
diff --git a/internal/db/apikey.go b/internal/db/apikey.go
new file mode 100644
index 0000000..197370b
--- /dev/null
+++ b/internal/db/apikey.go
@@ -0,0 +1,27 @@
+package db
+
+import (
+	"codeberg.org/lauralani/go-urlsh/models"
+	"context"
+	"log"
+)
+
+// IsApiKeyValid checks the database if ApiKey val is valid.
+//
+// Returns true if it's valid, false if not.
+func IsApiKeyValid(val string) bool {
+	if val == "" {
+		return false
+	}
+
+	count, err := models.DB.NewSelect().Model((*models.ApiKey)(nil)).Where("key = ?", val).Count(context.Background())
+	if err != nil {
+		log.Printf("Error checking apikey validity for key %v\n", val)
+		return false
+	}
+	if count < 1 {
+		return false
+	} else {
+		return true
+	}
+}
diff --git a/internal/web/link.go b/internal/web/links.go
similarity index 92%
rename from internal/web/link.go
rename to internal/web/links.go
index 0a4178b..4a88e81 100644
--- a/internal/web/link.go
+++ b/internal/web/links.go
@@ -12,6 +12,12 @@ import (
 )
 
 func HandleAdminLinkNewGet(c *fiber.Ctx) error {
+	if !db.IsCookieValid(c.Cookies(misc.CookieName, "")) {
+		c.Location("/admin/")
+		c.Status(fiber.StatusSeeOther)
+		return nil
+	}
+
 	return c.Render("add_link", nil)
 }
 
diff --git a/models/apikey.go b/models/apikey.go
index 3328682..464e6a3 100644
--- a/models/apikey.go
+++ b/models/apikey.go
@@ -8,6 +8,7 @@ import (
 type ApiKey struct {
 	bun.BaseModel `bun:"table:apikeys"`
 	Key           string    `bun:"key,pk,type:uuid,default:gen_random_uuid()" json:"key,omitempty"`
-	UserName      string    `bun:"username,notnull" json:"username"`
-	Created       time.Time `bun:"created,default:now()" json:"created"`
+	UserName      string    `bun:"username,notnull" json:"username,omitempty"`
+	Created       time.Time `bun:"created,default:now()" json:"created,omitempty"`
+	Description   string    `bun:"description,notnull" json:"description"`
 }
diff --git a/views/add_link.tmpl b/views/add_link.tmpl
index 62cc100..c954e24 100644
--- a/views/add_link.tmpl
+++ b/views/add_link.tmpl
@@ -36,7 +36,7 @@
     </ul>
   </nav>
   <main class="container" style="padding: 0">
-    <form action="javascript:HandleSubmit();" style="margin: 0">
+    <form action="javascript:HandleLinkAddSubmit();" style="margin: 0">
       <fieldset id="form_fields">
         <hgroup>
           <h1>Add new shortlink</h1>
@@ -46,7 +46,7 @@
         <input type="text" name="linkname" id="linkname" placeholder="shortlink">
 
         <label for="link">Link <i style="color: red;">*</i></label>
-        <input type="text" name="link" id="link" placeholder="https://" onchange="HandleChange()">
+        <input type="text" name="link" id="link" placeholder="https://" onchange="HandleLinkFieldChange()">
 
         <label for="description">Description</label>
         <input type="text" name="description" id="description" placeholder="">
diff --git a/views/edit_link.tmpl b/views/edit_link.tmpl
index 93bb8e5..dd56808 100644
--- a/views/edit_link.tmpl
+++ b/views/edit_link.tmpl
@@ -8,8 +8,7 @@
   <meta name='viewport' content='width=device-width, initial-scale=1'>
   <link rel="stylesheet" href="/admin/pico.min.css">
   <link rel="stylesheet" href="/admin/custom.css">
-  <script src="/admin/link_add.js" defer></script>
-  <script src="/admin/misc.js" defer></script>
+  <script src="/admin/main.js" defer></script>
 
 </head>
 
diff --git a/views/links.tmpl b/views/links.tmpl
index cd0c92f..6457ed3 100644
--- a/views/links.tmpl
+++ b/views/links.tmpl
@@ -8,8 +8,7 @@
   <meta name='viewport' content='width=device-width, initial-scale=1'>
   <link rel="stylesheet" href="/admin/pico.min.css">
   <link rel="stylesheet" href="/admin/custom.css">
-  <script src="/admin/links.js" defer></script>
-  <script src="/admin/misc.js" defer></script>
+  <script src="/admin/main.js" defer></script>
 
   <style>
     td {
@@ -20,58 +19,58 @@
 </head>
 
 <body>
-  <nav class="container-fluid">
-    <ul>
-      <li>
-        <a href="/admin/" class="contrast"><strong>go-urlsh</strong></a>
-      </li>
-    </ul>
-    <ul>
-      <li>
-        <a href="/admin/links/new" style="color: greenyellow;">Add new Shortlink</a>
-      </li>
-      <li>
-        <a href="/admin/apikeys/">API Keys</a>
-      </li>
-      <li>
-        <a href="javascript: void(0)" >Users (coming soon)</a>
-      </li>
-      <li>
-        <a href="javascript: Logout()" style="color: red;">Logout</a>
-      </li>
-    </ul>
-  </nav>
-  <main class="container">
-    <table class="n-table">
-      <thead>
-        <tr>
-          <th>Shortlink</th>
-          <th>URL</th>
-          <th> </th>
-          <th> </th>
-        </tr>
-      </thead>
-      <tbody>
-        {{range .}}
-        <tr>
-          <td><a href="javascript: HandleCopy('{{.ID}}');" data-tooltip="click to copy">{{.ID}}</a></td>
-          <td><a href="{{.URL}}" target="_blank" {{if .Description}}data-tooltip="{{.Description}}"{{end}}>{{.URL}}</a></td>
-          <td style="text-align: right;">
-            <a href="/admin/links/edit/{{.ID}}">
-              Edit
-            </a>
-          </td>
-          <td style="text-align: right;">
-            <a href="javascript: HandleDelete('{{.ID}}');">
-              Delete
-            </a>
-          </td>
-        </tr>
-        {{end}}
-      </tbody>
-    </table>
-  </main>
-  {{template "partials/footer" .}}
+<nav class="container-fluid">
+  <ul>
+    <li>
+      <a href="/admin/" class="contrast"><strong>go-urlsh</strong></a>
+    </li>
+  </ul>
+  <ul>
+    <li>
+      <a href="/admin/links/new" style="color: greenyellow;">Add new Shortlink</a>
+    </li>
+    <li>
+      <a href="/admin/apikeys/">API Keys</a>
+    </li>
+    <li>
+      <a href="javascript: void(0)" >Users (coming soon)</a>
+    </li>
+    <li>
+      <a href="javascript: Logout()" style="color: red;">Logout</a>
+    </li>
+  </ul>
+</nav>
+<main class="container">
+  <table class="n-table">
+    <thead>
+    <tr>
+      <th>Shortlink</th>
+      <th>URL</th>
+      <th> </th>
+      <th> </th>
+    </tr>
+    </thead>
+    <tbody>
+    {{range .}}
+    <tr>
+      <td><a href="javascript: HandleLinkIndexCopy('{{.ID}}');" data-tooltip="click to copy">{{.ID}}</a></td>
+      <td><a href="{{.URL}}" target="_blank" {{if .Description}}data-tooltip="{{.Description}}"{{end}}>{{.URL}}</a></td>
+      <td style="text-align: right;">
+        <a href="/admin/links/edit/{{.ID}}">
+          Edit
+        </a>
+      </td>
+      <td style="text-align: right;">
+        <a href="javascript: HandleLinkIndexDelete('{{.ID}}');">
+          Delete
+        </a>
+      </td>
+    </tr>
+    {{end}}
+    </tbody>
+  </table>
+</main>
+{{template "partials/footer" .}}
 </body>
 
 </html>
diff --git a/web/add_link.html b/web/add_link.html
index 62cc100..c954e24 100644
--- a/web/add_link.html
+++ b/web/add_link.html
@@ -36,7 +36,7 @@
     </ul>
   </nav>
   <main class="container" style="padding: 0">
-    <form action="javascript:HandleSubmit();" style="margin: 0">
+    <form action="javascript:HandleLinkAddSubmit();" style="margin: 0">
       <fieldset id="form_fields">
         <hgroup>
           <h1>Add new shortlink</h1>
@@ -46,7 +46,7 @@
         <input type="text" name="linkname" id="linkname" placeholder="shortlink">
 
         <label for="link">Link <i style="color: red;">*</i></label>
-        <input type="text" name="link" id="link" placeholder="https://" onchange="HandleChange()">
+        <input type="text" name="link" id="link" placeholder="https://" onchange="HandleLinkFieldChange()">
 
         <label for="description">Description</label>
         <input type="text" name="description" id="description" placeholder="">
diff --git a/web/link_add.js b/web/link_add.js
deleted file mode 100644
index 0d61df0..0000000
--- a/web/link_add.js
+++ /dev/null
@@ -1,37 +0,0 @@
-async function HandleSubmit() {
-    document.getElementById("submit").active = false
-    let slug = document.getElementById("linkname").value
-    let url = document.getElementById("link").value
-    let description = document.getElementById("description").value
-    let body = {
-        "id" : slug,
-        "url" : url,
-        "description" : description
-    }
-
-    let response = await fetch("/api/v1/links", {
-        credentials: "include",
-        body: JSON.stringify(body),
-        mode: "same-origin",
-        method: "POST"
-    });
-
-    if (!response.ok) {
-        document.getElementById("dialog-heading").textContent = "Error"
-        document.getElementById("dialog-text").textContent = "The following error occured during the request: " + response.statusText
-        document.getElementById('dialog-info').showModal()
-
-        document.getElementById("submit").active = true
-    }
-    document.location = "/admin/"
-}
-
-async function HandleChange() {
-    console.log("HandleChange")
-    let buttonactive = true
-    if (document.getElementById("link").value === "")
-    {
-        buttonactive = false
-    }
-    document.getElementById("submit").active = buttonactive
-}
\ No newline at end of file
diff --git a/web/link_edit.html b/web/link_edit.html
index 93bb8e5..dd56808 100644
--- a/web/link_edit.html
+++ b/web/link_edit.html
@@ -8,8 +8,7 @@
   <meta name='viewport' content='width=device-width, initial-scale=1'>
   <link rel="stylesheet" href="/admin/pico.min.css">
   <link rel="stylesheet" href="/admin/custom.css">
-  <script src="/admin/link_add.js" defer></script>
-  <script src="/admin/misc.js" defer></script>
+  <script src="/admin/main.js" defer></script>
 
 </head>
 
diff --git a/web/links.html b/web/links.html
index df6a558..6457ed3 100644
--- a/web/links.html
+++ b/web/links.html
@@ -8,8 +8,7 @@
   <meta name='viewport' content='width=device-width, initial-scale=1'>
   <link rel="stylesheet" href="/admin/pico.min.css">
   <link rel="stylesheet" href="/admin/custom.css">
-  <script src="/admin/links.js" defer></script>
-  <script src="/admin/misc.js" defer></script>
+  <script src="/admin/main.js" defer></script>
 
   <style>
     td {
@@ -54,7 +53,7 @@
     <tbody>
     {{range .}}
     <tr>
-      <td><a href="javascript: HandleCopy('{{.ID}}');" data-tooltip="click to copy">{{.ID}}</a></td>
+      <td><a href="javascript: HandleLinkIndexCopy('{{.ID}}');" data-tooltip="click to copy">{{.ID}}</a></td>
       <td><a href="{{.URL}}" target="_blank" {{if .Description}}data-tooltip="{{.Description}}"{{end}}>{{.URL}}</a></td>
       <td style="text-align: right;">
         <a href="/admin/links/edit/{{.ID}}">
@@ -62,7 +61,7 @@
         </a>
       </td>
       <td style="text-align: right;">
-        <a href="javascript: HandleDelete('{{.ID}}');">
+        <a href="javascript: HandleLinkIndexDelete('{{.ID}}');">
           Delete
         </a>
       </td>
diff --git a/web/links.js b/web/links.js
deleted file mode 100644
index 6273d9b..0000000
--- a/web/links.js
+++ /dev/null
@@ -1,16 +0,0 @@
-async function HandleDelete(id){
-    let response = await fetch("/api/v1/links/" + id, {
-        credentials: "include",
-        mode: "same-origin",
-        method: "DELETE"
-    });
-    if (!response.ok) {
-        console.log("error deleting " + id + ": " + response.statusText)
-    }
-    document.location = "/admin/"
-}
-
-async function HandleCopy(id) {
-    let host = window.location.protocol + "//" + window.location.host;
-    await navigator.clipboard.writeText(host + "/" + id);
-}
diff --git a/web/main.js b/web/main.js
new file mode 100644
index 0000000..a4f19b7
--- /dev/null
+++ b/web/main.js
@@ -0,0 +1,99 @@
+// Link overview
+
+async function HandleLinkIndexDelete(id){
+    let response = await fetch("/api/v1/links/" + id, {
+        credentials: "include",
+        mode: "same-origin",
+        method: "DELETE"
+    });
+    if (!response.ok) {
+        console.log("error deleting " + id + ": " + response.statusText)
+    }
+    document.location = "/admin/"
+}
+
+async function HandleLinkIndexCopy(id) {
+    let host = window.location.protocol + "//" + window.location.host;
+    await navigator.clipboard.writeText(host + "/" + id);
+}
+
+
+// Link Add
+
+async function HandleLinkAddSubmit() {
+    document.getElementById("submit").active = false
+    let slug = document.getElementById("linkname").value
+    let url = document.getElementById("link").value
+    let description = document.getElementById("description").value
+    let body = {
+        "id" : slug,
+        "url" : url,
+        "description" : description
+    }
+
+    let response = await fetch("/api/v1/links", {
+        credentials: "include",
+        body: JSON.stringify(body),
+        mode: "same-origin",
+        method: "POST"
+    });
+
+    if (!response.ok) {
+        document.getElementById("dialog-heading").textContent = "Error"
+        document.getElementById("dialog-text").textContent = "The following error occured during the request: " + response.statusText
+        document.getElementById('dialog-info').showModal()
+
+        document.getElementById("submit").active = true
+    }
+    document.location = "/admin/"
+}
+
+async function HandleLinkFieldChange() {
+    console.log("HandleChange")
+    let buttonactive = true
+    if (document.getElementById("link").value === "")
+    {
+        buttonactive = false
+    }
+    document.getElementById("submit").active = buttonactive
+}
+
+// ApiKey Add
+
+async function HandleApiKeyNewSubmit() {
+    let button = document.getElementById("submit")
+    let description = document.getElementById("description")
+    button.active = false
+    button.setAttribute("aria-busy", "true")
+
+    let body = {
+        "description" : description
+    }
+
+    let response = await fetch("/api/v1/apikeys", {
+        credentials: "include",
+        body: JSON.stringify(body),
+        mode: "same-origin",
+        method: "POST"
+    });
+
+    if (response.ok) {
+        let data = await response.json()
+        document.getElementById("dialog-heading").textContent = "New API-Key"
+        document.getElementById("dialog-text").textContent = "Here is your new API Key. Copy it NOW, it won't be shown again."
+        document.getElementById("dialog-apikey").textContent = data.key
+        document.getElementById('dialog-info').showModal()
+    }
+}
+
+async function HandleApiKeyModalClose() {
+    let modal = document.getElementById('dialog-info');
+    modal.close()
+}
+
+// General
+
+function Logout() {
+    document.cookie = 'gourlsh_auth=; Max-Age=-1; path=/; domain=' + location.hostname;
+    document.location = "/admin/login"
+}
diff --git a/web/misc.js b/web/misc.js
deleted file mode 100644
index cd8f04d..0000000
--- a/web/misc.js
+++ /dev/null
@@ -1,4 +0,0 @@
-function Logout() {
-    document.cookie = 'gourlsh_auth=; Max-Age=-1; path=/; domain=' + location.hostname;
-    document.location = "/admin/login"
-}
\ No newline at end of file