Talk-To-My-Lawyer

AI-Powered Legal Letter Generation Platform with Professional Attorney Review

A production-ready SaaS platform that generates professional legal letters with AI assistance and mandatory human oversight. The platform enables users to create legally sound letters through an AI-powered workflow with professional attorney review.

🎯 Overview

Talk-To-My-Lawyer is a three-tier platform designed for:

Subscribers: Generate professional legal letters with AI assistance
Employees: Earn commissions through referral coupons
Admins: Review, edit, and approve all letters before delivery

Core Workflow

Subscriber → AI Draft Generation → Admin Review & Editing → Approval → Subscriber Dashboard

🏗️ Tech Stack

Frontend

Framework: Next.js 15 with App Router (React 19)
Language: TypeScript (strict mode)
Styling: Tailwind CSS v4.1+ with custom design system
UI Components: shadcn/ui (Radix UI primitives)
Icons: Lucide React
Animations: Motion (Framer Motion)

Backend

Database: PostgreSQL via Supabase
Authentication: Supabase Auth with role-based access control
API: Next.js API Routes (App Router)
AI Integration: OpenAI GPT-4 Turbo via Vercel AI SDK
PDF Generation: jsPDF
Payments: Stripe (checkout + webhooks)

Infrastructure

Hosting: Vercel
Database: Supabase (PostgreSQL with RLS)
Package Manager: pnpm
Node.js: 18+

🚀 Quick Start

Prerequisites

Node.js 18 or higher
pnpm (recommended) or npm
Supabase account
OpenAI API key
Stripe account (optional for development)

Installation

# 1. Clone the repository
git clone <repository-url>
cd main-main--final

# 2. Install dependencies
pnpm install

# 3. Set up environment variables
cp .env.example .env.local
# Edit .env.local with your credentials

# 4. Run database migrations
# Use Supabase dashboard SQL editor to run scripts in order:
# scripts/001_setup_schema.sql
# scripts/002_setup_rls.sql
# ... (see CLAUDE.md for complete migration order)

# 5. Start development server
pnpm dev

Visit http://localhost:3000 to see the application.

💼 Business Model

Pricing Plans

Free Trial: First letter free for new subscribers
Single Letter: $299 one-time purchase
Monthly Plan: $299/month (4 letters included)
Yearly Plan: $599/year (8 letters included)

Employee Program

Discount: 20% off for subscribers using employee coupons
Commission: Employees earn 5% commission on successful subscriptions

🔐 User Roles & Access

Subscriber

Generate legal letters (AI-powered)
View letter status and history
Download approved letters as PDF
Manage subscription and billing
Access: /dashboard/letters, /dashboard/subscription

Employee

View personal referral coupon codes
Track commission earnings (5% of subscription amount)
Monitor coupon usage statistics
Employees are salespeople, NOT lawyers - they sell the service
CANNOT access letter content (security requirement enforced via RLS)
Access: /dashboard/coupons, /dashboard/commissions

Admin (Single Licensed Attorney)

There is exactly ONE admin who is the licensed attorney
Review all pending letters in the Review Center
Edit letters manually or improve with AI assistance
Approve or reject letters (attorney review)
View analytics and user management
PDF shows "reviewed by a licensed attorney" when admin approves
Access: /secure-admin-gateway/*

📝 Letter Workflow

1. Generation (Subscriber)

Subscriber creates letter → AI generates draft → Status: "pending_review"

2. Review (Admin)

Admin opens letter → Reviews/edits content → Can use AI to improve → Approves or Rejects

3. Delivery (Subscriber)

Letter approved → Visible in subscriber dashboard → Can download PDF or send via email

Letter Statuses

draft - Initial state, not submitted
generating - AI is creating the letter
pending_review - Waiting for admin review
under_review - Admin is reviewing
approved - Admin approved, ready for user
completed - Final delivered state
rejected - Admin rejected, needs revision
failed - Error occurred during generation

🗄️ Database Schema

Core Tables

profiles - User accounts with role-based access (subscriber/employee/admin)
letters - Legal letters with AI drafts and admin-approved content
subscriptions - User subscription plans and letter allowances
employee_coupons - Employee referral discount codes (20% off)
commissions - Employee commission tracking (5% rate)
letter_audit_trail - Complete audit log of all letter actions

Row Level Security (RLS)

All tables have RLS policies enforced:

Subscribers can only access their own data
Employees cannot access letter content (business requirement)
Admins have full access to all data

🛡️ Security Features

✅ Row Level Security on all database tables
✅ Role-based access control
✅ Admin portal with separate authentication
✅ Complete audit trail for all letter changes
✅ Server-side AI API key protection
✅ Input validation and sanitization
✅ Secure session management
✅ Employee isolation from letter content

📚 Documentation

Essential Reading

CLAUDE.md - Comprehensive AI assistant guide and development workflows
PLATFORM_ARCHITECTURE.md - Detailed system architecture and workflows
DATABASE_FUNCTIONS.md - Database function reference
START_APP.md - Quick start guide for development

Additional Guides

SETUP.md - Initial setup instructions
SUPABASE_DEPLOYMENT.md - Supabase deployment guide
SECURITY_CHECKLIST.md - Security guidelines
MANUAL_QA_SCRIPT.md - Quality assurance testing
PRODUCTION_CHECKLIST.md - Production deployment checklist
FREE_TRIAL_IMPLEMENTATION.md - Free trial system details

🧪 Development

Available Commands

# Development
pnpm dev              # Start development server
pnpm build            # Build for production
pnpm start            # Start production server
pnpm lint             # Run ESLint

# Database
supabase start        # Start local Supabase
supabase db push      # Push migrations
supabase db reset     # Reset database

Environment Variables

See .env.example for all required environment variables.

Required for development:

NEXT_PUBLIC_SUPABASE_URL
NEXT_PUBLIC_SUPABASE_ANON_KEY
SUPABASE_SERVICE_ROLE_KEY
OPENAI_API_KEY
ADMIN_EMAIL / ADMIN_PASSWORD / ADMIN_PORTAL_KEY

Optional:

Stripe keys (for payment testing)
Redis/Upstash (for rate limiting)

🚀 Deployment

Vercel (Recommended)

Connect repository to Vercel
Add all environment variables
Deploy

Environment Setup

# Production environment variables
NEXT_PUBLIC_APP_URL=https://www.talk-to-my-lawyer.com
NEXT_PUBLIC_SUPABASE_URL=<your-project>.supabase.co
NEXT_PUBLIC_SUPABASE_ANON_KEY=<your-anon-key>
SUPABASE_SERVICE_ROLE_KEY=<your-service-key>
OPENAI_API_KEY=sk-...
STRIPE_SECRET_KEY=sk_live_...
# ... see PRODUCTION_CHECKLIST.md for complete list

🧩 Key Features

For Subscribers

✅ Free first letter (no credit card required)
✅ AI-powered letter generation (OpenAI GPT-4 Turbo)
✅ Professional attorney review and editing
✅ PDF generation and email delivery
✅ Subscription management with letter allowances
✅ Complete letter history and status tracking

For Employees

✅ Automatic coupon code generation
✅ 20% discount for referred subscribers
✅ 5% commission on successful subscriptions
✅ Real-time commission tracking dashboard
✅ Usage statistics and analytics

For Admins

✅ Dedicated admin portal (/secure-admin-gateway)
✅ Review queue with FIFO ordering
✅ AI-powered letter improvement tool
✅ Manual editing with rich text editor
✅ Approve/reject workflow with notes
✅ Complete audit trail visibility
✅ User and subscription management

🔒 Data Privacy & Compliance

All user data protected with RLS policies
Employees cannot access subscriber letter content
Complete audit trail for all letter modifications
Secure admin authentication with dual-factor verification
GDPR-compliant data handling

🛠️ Project Structure

/
├── app/                     # Next.js App Router
│   ├── api/                 # API routes
│   ├── auth/                # Authentication pages
│   ├── dashboard/           # User dashboards
│   ├── secure-admin-gateway/# Admin portal
│   └── ...
├── components/              # React components
│   ├── admin/               # Admin-specific
│   └── ui/                  # shadcn/ui components
├── lib/                     # Utilities and helpers
│   ├── auth/                # Authentication utilities
│   └── supabase/            # Supabase configuration
├── scripts/                 # Database migration scripts
├── public/                  # Static assets
└── ...

🤝 Contributing

This is a production application. For development:

Read CLAUDE.md for development guidelines
Follow TypeScript strict mode requirements
Ensure all tests pass before committing
Follow security best practices
Update documentation for any changes

📞 Support

For questions or issues:

Check documentation in CLAUDE.md and PLATFORM_ARCHITECTURE.md
Review the appropriate specialized guide
Consult database function reference in DATABASE_FUNCTIONS.md

📄 License

See LICENSE file for details.

✅ Production Status

Current Status: Production-ready MVP

Completed:

✅ Three-tier user system (subscriber/employee/admin)
✅ AI letter generation (OpenAI GPT-4 Turbo)
✅ Admin review and approval workflow
✅ Free trial system
✅ Subscription and payment integration
✅ Employee coupon and commission system
✅ Complete audit trail
✅ Row Level Security
✅ PDF generation
✅ Email delivery

Next Phase:

Advanced analytics dashboard
Real-time notifications
Letter templates library
Multi-language support

Last Updated: December 2025 Version: 1.0.0 Production Domain: www.talk-to-my-lawyer.com

Name		Name	Last commit message	Last commit date
Latest commit History 270 Commits
.devcontainer		.devcontainer
.github		.github
app		app
components		components
docs		docs
hooks		hooks
lib		lib
public		public
scripts		scripts
styles		styles
supabase		supabase
types		types
.copilot-codeGeneration-instructions.md		.copilot-codeGeneration-instructions.md
.copilot-codeGeneration-instructions.md.backup		.copilot-codeGeneration-instructions.md.backup
.cursorrules		.cursorrules
.dockerignore		.dockerignore
.env.example		.env.example
.gitignore		.gitignore
AI_AGENTS_GUIDE.md		AI_AGENTS_GUIDE.md
AI_DOCUMENTATION_INDEX.md		AI_DOCUMENTATION_INDEX.md
ANIMATION_GUIDE.md		ANIMATION_GUIDE.md
AUTO_COMMIT_GUIDE.md		AUTO_COMMIT_GUIDE.md
Agents.md		Agents.md
CLAUDE.md		CLAUDE.md
CNAME		CNAME
CODE_DOCUMENTATION_ALIGNMENT_REPORT.md		CODE_DOCUMENTATION_ALIGNMENT_REPORT.md
COMPLETE_MIGRATION.sql		COMPLETE_MIGRATION.sql
CONTAINER_SETUP.md		CONTAINER_SETUP.md
DATABASE_ALIGNMENT_REPORT.md		DATABASE_ALIGNMENT_REPORT.md
DATABASE_DEPLOYMENT_STATUS.md		DATABASE_DEPLOYMENT_STATUS.md
DATABASE_FUNCTIONS.md		DATABASE_FUNCTIONS.md
DEPLOYMENT.md		DEPLOYMENT.md
DEPLOYMENT_GUIDE.md		DEPLOYMENT_GUIDE.md
DEPLOYMENT_OLD.md		DEPLOYMENT_OLD.md
DOCUMENTATION_ALIGNMENT_REPORT.md		DOCUMENTATION_ALIGNMENT_REPORT.md
DOCUMENTATION_AUDIT_SUMMARY.md		DOCUMENTATION_AUDIT_SUMMARY.md
DOCUMENTATION_STATUS.md		DOCUMENTATION_STATUS.md
Dockerfile		Dockerfile
FREE_TRIAL_IMPLEMENTATION.md		FREE_TRIAL_IMPLEMENTATION.md
GEMINI_INTEGRATION.md		GEMINI_INTEGRATION.md
IMPLEMENTATION_SUMMARY.md		IMPLEMENTATION_SUMMARY.md
LICENSE		LICENSE
MANUAL_QA_SCRIPT.md		MANUAL_QA_SCRIPT.md
MASTER_PLAN_ARCHITECTURE.md		MASTER_PLAN_ARCHITECTURE.md
MCP_SETUP.md		MCP_SETUP.md
PLATFORM_ARCHITECTURE.md		PLATFORM_ARCHITECTURE.md
PRODUCTION_CHECKLIST.md		PRODUCTION_CHECKLIST.md
README.md		README.md
SEARCH_PATH_FIX_SUMMARY.md		SEARCH_PATH_FIX_SUMMARY.md
SEARCH_PATH_SECURITY_REPORT.md		SEARCH_PATH_SECURITY_REPORT.md
SECURITY_CHECKLIST.md		SECURITY_CHECKLIST.md
SECURITY_HARDENING.md		SECURITY_HARDENING.md
SECURITY_TASKS_SUMMARY.md		SECURITY_TASKS_SUMMARY.md
SETUP.md		SETUP.md
START_APP.md		START_APP.md
STRIPE_CLI_SETUP.md		STRIPE_CLI_SETUP.md
SUPABASE_DEPLOYMENT.md		SUPABASE_DEPLOYMENT.md
TTML_BULLETPROOF_ACTION_PLAN (1).md		TTML_BULLETPROOF_ACTION_PLAN (1).md
TTML_BULLETPROOF_MIGRATIONS.sql		TTML_BULLETPROOF_MIGRATIONS.sql
apply_all_fixes.js		apply_all_fixes.js
apply_final_fixes.js		apply_final_fixes.js
apply_fix.js		apply_fix.js
apply_migration.js		apply_migration.js
apply_migration_api.sh		apply_migration_api.sh
apply_single_statement.js		apply_single_statement.js
apply_with_management_api.js		apply_with_management_api.js
auto-commit.sh		auto-commit.sh
check-admin-user.sql		check-admin-user.sql
check_all_secdef_functions.js		check_all_secdef_functions.js
check_create_employee_coupon.js		check_create_employee_coupon.js
complete-database-setup.sql		complete-database-setup.sql
components.json		components.json
create-admin-user-production.sql		create-admin-user-production.sql
create-admin.sql		create-admin.sql
create-test-data.sql		create-test-data.sql
direct_exec.js		direct_exec.js
docker-compose.yml		docker-compose.yml
docker-simulation.sh		docker-simulation.sh
enable_leaked_password_protection.js		enable_leaked_password_protection.js
eslint.config.mjs		eslint.config.mjs
execute_migration.js		execute_migration.js
execute_sql_direct.js		execute_sql_direct.js
extension.md		extension.md
final changes.md		final changes.md
fix_all_remaining_functions.js		fix_all_remaining_functions.js
fix_check_allowance.sql		fix_check_allowance.sql
fix_create_employee_coupon_final.js		fix_create_employee_coupon_final.js
fix_employee_coupon_direct.sql		fix_employee_coupon_direct.sql
fix_functions_directly.js		fix_functions_directly.js
fix_handle_new_user.js		fix_handle_new_user.js
fix_handle_new_user_v2.js		fix_handle_new_user_v2.js
fix_permissions.sql		fix_permissions.sql
fix_sanitize_input.js		fix_sanitize_input.js
instrumentation.ts		instrumentation.ts
issues.md		issues.md
manual_fix_instructions.md		manual_fix_instructions.md
next.config.mjs		next.config.mjs
package-lock.json		package-lock.json
package.json		package.json
pnpm-lock.yaml		pnpm-lock.yaml

License

jamilahmedansari/main-main--final

Folders and files

Latest commit

History

Repository files navigation