diff --git a/..env.swp b/..env.swp
new file mode 100644
index 0000000..61ad66a
Binary files /dev/null and b/..env.swp differ
diff --git a/.env.example b/.env.example
index a3e03b9..42df9d6 100755
--- a/.env.example
+++ b/.env.example
@@ -11,6 +11,10 @@ APP_SITEHOMEPAGE=""
 # Void if env is production.
 NONPROD_FORCE_SECURE=false
 
+# Disables certain features for security purposes while running an open authentication system
+# Enable only for demonostration purposes
+DEMO_MODE=false
+
 LOG_CHANNEL=daily
 
 DB_CONNECTION=mysql
diff --git a/app/ApiKey.php b/app/ApiKey.php
index 6a97f85..0ed33ff 100644
--- a/app/ApiKey.php
+++ b/app/ApiKey.php
@@ -20,6 +20,6 @@ class ApiKey extends Model
 
     public function user()
     {
-        return $this->belongsTo('App\User', 'id');
+        return $this->belongsTo('App\User', 'owner_user_id', 'id');
     }
 }
diff --git a/app/CustomFacades/IP.php b/app/CustomFacades/IP.php
index 230ec83..6753e29 100755
--- a/app/CustomFacades/IP.php
+++ b/app/CustomFacades/IP.php
@@ -38,13 +38,18 @@ class IP
             'ip' => $IP,
         ];
 
-        // TODO: Maybe unwrap this?  Methods are chained here
 
-        return json_decode(Cache::remember($IP, 3600, function () use ($IP) {
-            return Http::get(config('general.urls.ipapi.ipcheck'), [
-                'apiKey' => config('general.keys.ipapi.apikey'),
-                'ip' => $IP,
-            ])->body();
-        }));
+        if (!config('demo.is_enabled')) {
+            return json_decode(Cache::remember($IP, 3600, function () use ($IP) {
+                return Http::get(config('general.urls.ipapi.ipcheck'), [
+                    'apiKey' => config('general.keys.ipapi.apikey'),
+                    'ip' => $IP,
+                ])->body();
+            }));
+        }
+
+        return new class {
+            public $message = "This feature is disabled.";
+        };
     }
 }
diff --git a/app/Http/Controllers/ApplicationController.php b/app/Http/Controllers/ApplicationController.php
index e137503..fcb6dbf 100755
--- a/app/Http/Controllers/ApplicationController.php
+++ b/app/Http/Controllers/ApplicationController.php
@@ -22,6 +22,7 @@
 namespace App\Http\Controllers;
 
 use App\Application;
+use App\Exceptions\ApplicationNotFoundException;
 use App\Exceptions\IncompleteApplicationException;
 use App\Exceptions\UnavailableApplicationException;
 use App\Exceptions\VacancyNotFoundException;
@@ -74,14 +75,22 @@ class ApplicationController extends Controller
     {
         $this->authorize('viewAny', Application::class);
 
-        return view('dashboard.appmanagement.all');
+        return view('dashboard.appmanagement.all')
+            ->with('applications', Application::all());
 
     }
 
 
     public function renderApplicationForm($vacancySlug)
     {
-        return $this->applicationService->renderForm($vacancySlug);
+        try {
+            return $this->applicationService->renderForm($vacancySlug);
+        }
+        catch (ApplicationNotFoundException $ex) {
+            return redirect()
+                ->back()
+                ->with('error', $ex->getMessage());
+        }
     }
 
     public function saveApplicationAnswers(Request $request, $vacancySlug)
@@ -98,7 +107,7 @@ class ApplicationController extends Controller
         }
 
         return redirect()
-            ->back()
+            ->to(route('showUserApps'))
             ->with('success', __('Thank you! Your application has been processed and our team will get to it shortly.'));
     }
 
diff --git a/app/Http/Controllers/Auth/RegisterController.php b/app/Http/Controllers/Auth/RegisterController.php
index 41af9f2..3140223 100755
--- a/app/Http/Controllers/Auth/RegisterController.php
+++ b/app/Http/Controllers/Auth/RegisterController.php
@@ -92,7 +92,7 @@ class RegisterController extends Controller
             case 'low':
                 $password = ['required', 'string', 'min:10', 'confirmed'];
                 break;
-                
+
             case 'medium':
                 $password = ['required', 'string', 'confirmed', 'regex:/^(?=.*?[A-Z])(?=.*?[a-z])(?=.*?[#?!@$%^&*-]).{12,}$/'];
                 break;
@@ -124,11 +124,11 @@ class RegisterController extends Controller
             'name' => $data['name'],
             'email' => $data['email'],
             'password' => Hash::make($data['password']),
-            'originalIP' => request()->ip(),
+            'originalIP' => config('demo.is_enabled') ? '0.0.0.0' : request()->ip(),
         ]);
 
         // It's not the registration controller's concern to create a profile for the user,
-        // so this code has been moved to it's respective observer, following the separation of concerns pattern.
+        // so this code has been moved to its respective observer, following the separation of concerns pattern.
 
         $user->assignRole('user');
 
diff --git a/app/Http/Controllers/BanController.php b/app/Http/Controllers/BanController.php
index 3818388..97075d3 100755
--- a/app/Http/Controllers/BanController.php
+++ b/app/Http/Controllers/BanController.php
@@ -42,6 +42,12 @@ class BanController extends Controller
 
     public function insert(BanUserRequest $request, User $user)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $this->authorize('create', [Ban::class, $user]);
 
 
@@ -60,6 +66,12 @@ class BanController extends Controller
 
     public function delete(Request $request, User $user)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $this->authorize('delete', $user->bans);
 
         if ($this->suspensionService->isSuspended($user)) {
diff --git a/app/Http/Controllers/DashboardController.php b/app/Http/Controllers/DashboardController.php
index df46bd2..cb946e1 100755
--- a/app/Http/Controllers/DashboardController.php
+++ b/app/Http/Controllers/DashboardController.php
@@ -24,6 +24,7 @@ namespace App\Http\Controllers;
 use App\Application;
 use App\User;
 use App\Vacancy;
+use Illuminate\Support\Facades\Auth;
 
 class DashboardController extends Controller
 {
@@ -34,14 +35,27 @@ class DashboardController extends Controller
         $totalPeerReview = Application::where('applicationStatus', 'STAGE_PEERAPPROVAL')->get()->count();
         $totalNewApplications = Application::where('applicationStatus', 'STAGE_SUBMITTED')->get()->count();
         $totalDenied = Application::where('applicationStatus', 'DENIED')->get()->count();
+        $vacancies = Vacancy::where('vacancyStatus', '<>', 'CLOSED')->get();
+
+        $totalDeniedSingle = Application::where([
+            ['applicationStatus', '=', 'DENIED'],
+            ['applicantUserID', '=', Auth::user()->id]
+        ])->get();
+
+        $totalNewSingle = Application::where([
+            ['applicationStatus', '=', 'STAGE_SUBMITTED'],
+            ['applicantUserID', '=', Auth::user()->id]
+        ])->get();
 
         return view('dashboard.dashboard')
             ->with([
-                'vacancies' => Vacancy::all(),
+                'vacancies' => $vacancies,
                 'totalUserCount' => User::all()->count(),
                 'totalDenied' => $totalDenied,
                 'totalPeerReview' => $totalPeerReview,
                 'totalNewApplications' => $totalNewApplications,
+                'totalNewSingle' => $totalNewSingle->count(),
+                'totalDeniedSingle' => $totalDeniedSingle->count()
             ]);
     }
 }
diff --git a/app/Http/Controllers/FormController.php b/app/Http/Controllers/FormController.php
index 82848fe..366475f 100755
--- a/app/Http/Controllers/FormController.php
+++ b/app/Http/Controllers/FormController.php
@@ -21,6 +21,7 @@
 
 namespace App\Http\Controllers;
 
+use App\Exceptions\EmptyFormException;
 use App\Exceptions\FormHasConstraintsException;
 use App\Form;
 use App\Services\FormManagementService;
@@ -53,7 +54,15 @@ class FormController extends Controller
 
     public function saveForm(Request $request)
     {
-        $form = $this->formService->addForm($request->all());
+        try {
+            $form = $this->formService->addForm($request->all());
+        }
+        catch (EmptyFormException $ex)
+        {
+            return redirect()
+                ->back()
+                ->with('exception', $ex->getMessage());
+        }
 
         // Form is boolean or array
         if ($form)
diff --git a/app/Http/Controllers/TeamFileController.php b/app/Http/Controllers/TeamFileController.php
index b6fbdc6..30c5994 100755
--- a/app/Http/Controllers/TeamFileController.php
+++ b/app/Http/Controllers/TeamFileController.php
@@ -62,6 +62,13 @@ class TeamFileController extends Controller
     {
         $this->authorize('store', TeamFile::class);
 
+        if (config('demo.is_enabled'))
+        {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         try {
             $caption = $request->caption;
             $description = $request->description;
@@ -110,6 +117,13 @@ class TeamFileController extends Controller
     {
         $this->authorize('delete', $teamFile);
 
+        if (config('demo.is_enabled'))
+        {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         try
         {
             Storage::delete($teamFile->fs_location);
diff --git a/app/Http/Controllers/UserController.php b/app/Http/Controllers/UserController.php
index 0bba54a..2f0d2f4 100755
--- a/app/Http/Controllers/UserController.php
+++ b/app/Http/Controllers/UserController.php
@@ -32,6 +32,7 @@ use App\Http\Requests\SearchPlayerRequest;
 use App\Http\Requests\UpdateUserRequest;
 use App\Notifications\ChangedPassword;
 use App\Notifications\EmailChanged;
+use App\Traits\DisablesFeatures;
 use App\Traits\ReceivesAccountTokens;
 use App\User;
 use Google2FA;
@@ -168,6 +169,11 @@ class UserController extends Controller
 
     public function changePassword(ChangePasswordRequest $request)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
         $user = User::find(Auth::user()->id);
 
         if (! is_null($user)) {
@@ -191,6 +197,12 @@ class UserController extends Controller
 
     public function changeEmail(ChangeEmailRequest $request)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $user = User::find(Auth::user()->id);
 
         if (! is_null($user)) {
@@ -214,6 +226,12 @@ class UserController extends Controller
 
     public function delete(DeleteUserRequest $request, User $user)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $this->authorize('delete', $user);
 
         if ($request->confirmPrompt == 'DELETE ACCOUNT') {
@@ -228,6 +246,11 @@ class UserController extends Controller
 
     public function update(UpdateUserRequest $request, User $user)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
         $this->authorize('adminEdit', $user);
 
         // Mass update would not be possible here without extra code, making route model binding useless
@@ -262,6 +285,12 @@ class UserController extends Controller
 
     public function add2FASecret(Add2FASecretRequest $request)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $currentSecret = $request->session()->get('current2FA');
         $isValid = Google2FA::verifyKey($currentSecret, $request->otp);
 
@@ -314,6 +343,11 @@ class UserController extends Controller
     public function terminate(Request $request, User $user)
     {
         $this->authorize('terminate', User::class);
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
 
         // TODO: move logic to policy
         if (! $user->isStaffMember() || $user->is(Auth::user())) {
diff --git a/app/Providers/AppServiceProvider.php b/app/Providers/AppServiceProvider.php
index 4b35693..2deea95 100755
--- a/app/Providers/AppServiceProvider.php
+++ b/app/Providers/AppServiceProvider.php
@@ -27,6 +27,7 @@ use App\Observers\UserObserver;
 use App\User;
 use Illuminate\Pagination\Paginator;
 use Illuminate\Support\Facades\Schema;
+use Illuminate\Support\Facades\View;
 use Illuminate\Support\ServiceProvider;
 use Sentry;
 
@@ -67,5 +68,7 @@ class AppServiceProvider extends ServiceProvider
             $https = true;
 
         $this->app['request']->server->set('HTTPS', $https);
+
+        View::share('demoActive', config('demo.is_enabled'));
     }
 }
diff --git a/app/Services/ApplicationService.php b/app/Services/ApplicationService.php
index f7defa6..a98da16 100644
--- a/app/Services/ApplicationService.php
+++ b/app/Services/ApplicationService.php
@@ -47,7 +47,7 @@ class ApplicationService
      * @throws VacancyNotFoundException Thrown when the associated vacancy is not found
      * @throws IncompleteApplicationException Thrown when there are missing fields
      */
-    public function fillForm(Authenticatable $applicant, array $formData, $vacancySlug): bool
+    public function fillForm(User $applicant, array $formData, $vacancySlug): bool
     {
         $vacancy = Vacancy::with('forms')->where('vacancySlug', $vacancySlug)->get();
 
diff --git a/app/Services/AppointmentService.php b/app/Services/AppointmentService.php
index 35f6de3..c00c666 100644
--- a/app/Services/AppointmentService.php
+++ b/app/Services/AppointmentService.php
@@ -56,12 +56,7 @@ class AppointmentService
      */
     public function updateAppointment(Application $application, $status, $updateApplication = true)
     {
-        $validStatuses = [
-            'SCHEDULED',
-            'CONCLUDED',
-        ];
-
-        if ($status == 'SCHEDULED' || $status == 'CONCLUDED')
+        if ($status == 'SCHEDULED' || $status == 'concluded')
         {
             $application->appointment->appointmentStatus = strtoupper($status);
             $application->appointment->save();
diff --git a/app/Services/DemoService.php b/app/Services/DemoService.php
new file mode 100644
index 0000000..969de1d
--- /dev/null
+++ b/app/Services/DemoService.php
@@ -0,0 +1,11 @@
+<?php
+namespace App\Services;
+
+class DemoService {
+
+    public function isDemoEnabled(): bool {
+
+        return config('demo.is_enabled');
+
+    }
+}
diff --git a/app/Services/SecuritySettingsService.php b/app/Services/SecuritySettingsService.php
index 43329b4..1f84477 100644
--- a/app/Services/SecuritySettingsService.php
+++ b/app/Services/SecuritySettingsService.php
@@ -43,7 +43,7 @@ class SecuritySettingsService
         }
 
         Options::changeOption('graceperiod', $options['graceperiod']);
-        Options::changeOption('password_expiry', $options['pwexpiry']);
+        Options::changeOption('password_expiry', $options['pwExpiry']);
         Options::changeOption('force2fa', $options['enforce2fa']);
         Options::changeOption('requireGameLicense', $options['requirePMC']);
 
diff --git a/app/Traits/ReceivesAccountTokens.php b/app/Traits/ReceivesAccountTokens.php
index f6ff113..6599fa9 100755
--- a/app/Traits/ReceivesAccountTokens.php
+++ b/app/Traits/ReceivesAccountTokens.php
@@ -33,6 +33,13 @@ trait ReceivesAccountTokens
 {
     public function userDelete(UserDeleteRequest $request)
     {
+        if (config('demo.is_enabled'))
+        {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         // a little verbose
         $user = User::find(Auth::user()->id);
         $tokens = $user->generateAccountTokens();
@@ -49,6 +56,13 @@ trait ReceivesAccountTokens
 
     public function processDeleteConfirmation(Request $request, $ID, $action, $token)
     {
+        if (config('demo.is_enabled'))
+        {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         // We can't rely on Laravel's route model injection, because it'll ignore soft-deleted models,
         // so we have to use a special scope to find them ourselves.
         $user = User::withTrashed()->findOrFail($ID);
diff --git a/config/demo.php b/config/demo.php
new file mode 100644
index 0000000..a9824c3
--- /dev/null
+++ b/config/demo.php
@@ -0,0 +1,7 @@
+<?php
+
+return [
+
+    'is_enabled' => env('DEMO_MODE', false)
+
+];
diff --git a/database/seeders/UserSeeder.php b/database/seeders/UserSeeder.php
index 4c2ed3a..05963d1 100755
--- a/database/seeders/UserSeeder.php
+++ b/database/seeders/UserSeeder.php
@@ -35,32 +35,34 @@ class UserSeeder extends Seeder
      */
     public function run()
     {
-       
+
         /**
          * Rationale:
          *  A ghost account is an account used by deleted users.
          *  Essentially, when users are deleted, their content is re-assigned to the
          *  ghost account.
-         *  Also used by one-off apps. 
-         * 
+         *  Also used by one-off apps.
+         *
          *  The ghost account was inspired by Github's ghost account.
          */
         $ghostAccount = User::create([
-            'uuid' => '069a79f444e94726a5befca90e38aaf5', // Notch
+            'uuid' => 'b741345057274a519144881927be0290', // Ghost
             'name' => 'Ghost (deleted account)',
-            'email' => 'blackhole@spacejewel-hosting.com',
+            'email' => 'blackhole@example.com',
+            'email_verified_at' => now(),
             'username' => 'ghost',
             'originalIP' => '0.0.0.0',
-            'password' => 'locked' 
+            'password' => 'locked'
         ])->assignRole('user'); // There can't be role-less users
 
 
         $admin = User::create([
-            'uuid' => '6102256abd284dd7b68e4c96ef313734',
+            'uuid' => '069a79f444e94726a5befca90e38aaf5', // Notch
             'name' => 'Admin',
             'email' => 'admin@example.com',
+            'email_verified_at' => now(),
             'username' => 'admin',
-            'originalIP' => '217.1.189.34',
+            'originalIP' => '0.0.0.0',
             'password' => Hash::make('password'),
 
         ])->assignRole([ // all privileges
@@ -68,7 +70,33 @@ class UserSeeder extends Seeder
             'reviewer',
             'admin',
             'hiringManager',
-            'developer'
+        ]);
+
+        $staffmember = User::create([
+            'uuid' => '853c80ef3c3749fdaa49938b674adae6', // Jeb__
+            'name' => 'Staff Member',
+            'email' => 'staffmember@example.com',
+            'email_verified_at' => now(),
+            'username' => 'staffmember',
+            'originalIP' => '0.0.0.0',
+            'password' => Hash::make('password'),
+
+        ])->assignRole([ // all privileges
+            'user',
+            'reviewer',
+        ]);
+
+        $user = User::create([
+            'uuid' => 'f7c77d999f154a66a87dc4a51ef30d19', // hypixel
+            'name' => 'End User',
+            'email' => 'enduser@example.com',
+            'email_verified_at' => now(),
+            'username' => 'enduser',
+            'originalIP' => '0.0.0.0',
+            'password' => Hash::make('password'),
+
+        ])->assignRole([ // all privileges
+            'user',
         ]);
 
     }
diff --git a/resources/views/auth/login.blade.php b/resources/views/auth/login.blade.php
index 2b31cf0..aa66135 100755
--- a/resources/views/auth/login.blade.php
+++ b/resources/views/auth/login.blade.php
@@ -16,6 +16,22 @@
               <p class="login-card-description">{{__('messages.signin_cta')}}</p>
               <form action="{{ route('login') }}" method="POST" id="loginForm">
                   @csrf
+                  @if ($demoActive)
+                      <div class="alert alert-warning">
+                          <p class="font-weight-bold"></i>{{__('Warning')}}</p>
+                          <p>{{ __('Do not use real credentials; The application is in demo mode.') }}</p>
+
+                          <p class="font-weight-bold">{{ __('Demo accounts:') }}</p>
+                          <ul>
+                              <li>admin@example.com</li>
+                              <li>staffmember@example.com</li>
+                              <li>enduser@example.com</li>
+                          </ul>
+                          <p>{{ __('The password is ":password" for all accounts.', ['password' => 'password']) }}</p>
+
+                      </div>
+                  @endif
+
                   <div class="form-group">
                     <label for="email" class="sr-only">{{__('messages.contactlabel_email')}}</label>
                     <input type="email" name="email" id="email" class="form-control" placeholder="Email address">
diff --git a/resources/views/auth/register.blade.php b/resources/views/auth/register.blade.php
index f04ad44..6f24f2f 100755
--- a/resources/views/auth/register.blade.php
+++ b/resources/views/auth/register.blade.php
@@ -14,7 +14,7 @@
                 <img src="{{ config('adminlte.logo_img') }}" alt="logo" class="logo">{{ config('adminlte.logo') }}
               </div> <!-- main content start -->
               <p class="login-card-description">{{__('messages.register_acc')}}</p>
-              
+
               @if(\App\Facades\Options::getOption('pw_security_policy') !== 'off')
 
                   <div class="alert alert-warning alert-dismissible">
@@ -25,7 +25,7 @@
                     <p>{{__('messages.pwsec.line3')}} </p>
                     <ul>
                       @switch(\App\Facades\Options::getOption('pw_security_policy'))
-                        
+
                         @case('low')
                           <li>A minimum of 10 characters</li>
                           @break
@@ -34,14 +34,14 @@
                           <li>A minimum of 12 characters;</li>
                           <li>At least one special character;</li>
                           <li>Lower case and upper case characters</li>
-                          @break  
+                          @break
 
                         @case('high')
                           <li>A minimum of 20 characters;</li>
                           <li>At least one special character;</li>
                           <li>Lower case and upper case characters</li>
                           <li>At least one numerical character</li>
-                          @break  
+                          @break
 
                       @endswitch
                     </ul>
@@ -49,6 +49,15 @@
 
               @endif
 
+                @if($demoActive)
+                    <div class="alert alert-warning">
+                        <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i>{{ __('Warning') }}</p>
+                        <p>{{ __('Do not use real credentials here. The application is in demo mode. Additionally, the database is wiped every six hours.') }}</p>
+
+                        <p>{{ __('Also note: If a game license is required to sign up, you may find valid MC usernames at NameMC') }}</p>
+                    </div>
+                @endif
+
               <form action="{{ route('register') }}" method="POST" id="registerForm">
                   @csrf
                   <div class="form-group">
@@ -68,7 +77,7 @@
                     <input type="password" id="passwordc" name="password_confirmation" class="form-control" placeholder="{{__('messages.sronly_confirmpassword')}}" />
                   </div>
 
-                  
+
                   @if(\App\Facades\Options::getOption('requireGameLicense') && \App\Facades\Options::getOption('currentGame') == 'MINECRAFT')
                       <div class="form-group mt-5">
                         <label for="mcusername" class="sr-only">{{__('messages.sronly_mcusername')}}</label>
diff --git a/resources/views/dashboard/administration/formbuilder.blade.php b/resources/views/dashboard/administration/formbuilder.blade.php
index e808c1a..9ea87a3 100755
--- a/resources/views/dashboard/administration/formbuilder.blade.php
+++ b/resources/views/dashboard/administration/formbuilder.blade.php
@@ -34,6 +34,12 @@
 
     @endif
 
+    @if(session()->has('exception'))
+        <script>
+            toastr.error("{{session('exception')}}")
+        </script>
+    @endif
+
 @stop
 
 @section('content')
diff --git a/resources/views/dashboard/dashboard.blade.php b/resources/views/dashboard/dashboard.blade.php
index 0087fc3..c777ca0 100755
--- a/resources/views/dashboard/dashboard.blade.php
+++ b/resources/views/dashboard/dashboard.blade.php
@@ -9,11 +9,46 @@
 @section('js')
 
   <script src="js/dashboard.js"></script>
+  <x-global-errors></x-global-errors>
 
 @endsection
 
 @section('content')
 
+    @if ($demoActive)
+
+        <div class="alert alert-info">
+            <p class="font-weight-bold"><i class="fas fa-info-circle"></i> {{__('Reminder')}}</p>
+            <p>{{__('The application is in demo mode.')}}</p>
+            <p>{{ __('Demo mode disables some app features in order to preserve it\'s integrity for everyone who wants to test it. Here\'s what\'s disabled: ') }}</p>
+            <ul>
+                <li>{{ __('All user account operations such as: ') }}
+                    <ul>
+                        <li>{{ __('Password change') }}</li>
+                        <li>{{ __('Two factor authentication') }}</li>
+                        <li>{{ __('Email change') }}</li>
+                        <li>{{ __('Account deletion') }}</li>
+                    </ul>
+                </li>
+                <li>{{ __('Administrative actions such as:') }}
+                    <ul>
+                        <li>{{__('Account suspension')}}</li>
+                        <li>{{ __('Termination') }}</li>
+                        <li>{{ __('Account deletion') }}</li>
+                        <li>{{ __('Privilege editing') }}</li>
+                    </ul>
+                </li>
+                <li>{{ __('Team file uploads') }}</li>
+                <li>{{__('Developer mode')}}</li>
+                <li>{{ __('Admin logs') }}</li>
+            </ul>
+            <p>To keep everyone safe, IP addresses are censored everywhere in the app, and they're also not collected during registration. The IP address lookup feature is also disabled.</p>
+            <p>Only system administrators can disable demo mode - it cannot be disabled via app settings.</p>
+            <p class="font-weight-bold">Note! The database is wiped every six hours during demo mode.</p>
+        </div>
+
+    @endif
+
     @if (!$vacancies->isEmpty())
 
       @foreach($vacancies as $vacancy)
@@ -80,7 +115,7 @@
               <!-- small box -->
               <div class="small-box bg-info">
                 <div class="inner">
-                  <h3>{{ $openApplications ?? 0 }}</h3>
+                  <h3>{{ $totalNewSingle ?? 0 }}</h3>
 
                   <p>{{__('messages.ongoing_apps')}}</p>
                 </div>
@@ -95,7 +130,7 @@
               <!-- small box -->
               <div class="small-box bg-danger">
                 <div class="inner">
-                  <h3>{{ $deniedApplications ?? 0 }}</h3>
+                  <h3>{{ $totalDeniedSingle ?? 0 }}</h3>
 
                   <p>{{__('messages.denied_apps')}}</p>
                 </div>
@@ -190,7 +225,7 @@
     @endif
 
 
-      @if ($isEligibleForApplication && !Auth::user()->isStaffMember())
+      @if (!$vacancies->isEmpty() && $isEligibleForApplication && !Auth::user()->isStaffMember())
         <div class="row mt-5 mb-5">
 
             <div class="col text-center">
diff --git a/resources/views/dashboard/teams/team-files.blade.php b/resources/views/dashboard/teams/team-files.blade.php
index 049490e..b248922 100755
--- a/resources/views/dashboard/teams/team-files.blade.php
+++ b/resources/views/dashboard/teams/team-files.blade.php
@@ -13,43 +13,56 @@
 
 @section('content')
 
-    <x-modal id="upload-dropzone" modal-label="upload-dropzone-modal" modal-title="Upload Files" include-close-button="true">
+    @if(!$demoActive)
+        <x-modal id="upload-dropzone" modal-label="upload-dropzone-modal" modal-title="Upload Files" include-close-button="true">
 
-        <form action="{{route('uploadTeamFile')}}" enctype="multipart/form-data" method="POST" id="newFile">
-            @csrf
-            <div class="form-group">
+            <form action="{{route('uploadTeamFile')}}" enctype="multipart/form-data" method="POST" id="newFile">
+                @csrf
+                <div class="form-group">
 
-                <label for="caption">Caption</label>
-                <input id="caption" type="text" class="form-control" name="caption" required>
+                    <label for="caption">Caption</label>
+                    <input id="caption" type="text" class="form-control" name="caption" required>
 
-                <label for="description">File description (optional)</label>
-                <textarea rows="5" name="description" id="description" class="form-control"></textarea>
+                    <label for="description">File description (optional)</label>
+                    <textarea rows="5" name="description" id="description" class="form-control"></textarea>
 
-            </div>
+                </div>
 
 
-            <label class="btn btn-primary" for="file-selector">
-                <input id="file-selector" name="file" type="file" style="display:none"
-                       onchange="$('#upload-file-info').html(this.files[0].name)">
-                Choose File (max {{ini_get('post_max_size')}})
-            </label>
-            <span class='label label-info' id="upload-file-info"></span>
+                <label class="btn btn-primary" for="file-selector">
+                    <input id="file-selector" name="file" type="file" style="display:none"
+                           onchange="$('#upload-file-info').html(this.files[0].name)">
+                    Choose File (max {{ini_get('post_max_size')}})
+                </label>
+                <span class='label label-info' id="upload-file-info"></span>
 
-        </form>
+            </form>
 
-        <x-slot name="modalFooter">
-            <button onclick="$('#newFile').submit()" type="button" class="btn btn-warning" rel="buttonTxtTooltip" title="Upload chosen file" data-placement="top"><i class="fas fa-upload"></i></button>
-        </x-slot>
-    </x-modal>
+            <x-slot name="modalFooter">
+                <button onclick="$('#newFile').submit()" type="button" class="btn btn-warning" rel="buttonTxtTooltip" title="Upload chosen file" data-placement="top"><i class="fas fa-upload"></i></button>
+            </x-slot>
+        </x-modal>
+    @endif
 
     <div class="row">
 
-        <div class="col-3 offset-3">
+        <div class="col-3 offset-4">
             <img src="/img/files.svg" width="230px" height="230px" alt="Team files illustration">
         </div>
 
     </div>
 
+    @if($demoActive)
+        <div class="row">
+            <div class="col">
+                <div class="alert alert-warning">
+                    <p class="text-bold"><i class="fa fa-info-circle"></i> Warning</p>
+                    <p>Since many users may use the app at any given time, file uploads are disabled whilst demo mode is on.</p>
+                </div>
+            </div>
+        </div>
+    @endif
+
     <div class="row">
 
         <div class="col">
@@ -119,7 +132,7 @@
                 </div>
 
                 <div class="card-footer text-center">
-                    <button type="button" class="btn btn-warning ml-3" onclick="$('#upload-dropzone').modal('show')"><i class="fas fa-upload"></i> Upload Files</button>
+                    <button {{ ($demoActive) ? 'disabled' : ''  }} type="button" class="btn btn-warning ml-3" onclick="$('#upload-dropzone').modal('show')"><i class="fas fa-upload"></i> Upload Files</button>
                     <button type="button" class="btn btn-success ml-3" onclick="window.location.href='{{route('teams.index')}}'"><i class="fas fa-arrow-circle-left"></i> Back</button>
                     {{ $files->links() }}
                 </div>
diff --git a/resources/views/dashboard/user/profile/displayprofile.blade.php b/resources/views/dashboard/user/profile/displayprofile.blade.php
index 2d796a9..71dffed 100755
--- a/resources/views/dashboard/user/profile/displayprofile.blade.php
+++ b/resources/views/dashboard/user/profile/displayprofile.blade.php
@@ -43,6 +43,12 @@
             <form id="banAccountForm" name="banAccount" method="POST" action="{{route('banUser', ['user' => $profile->user->id])}}">
                @csrf
 
+                @if($demoActive)
+                    <div class="alert alert-danger">
+                        <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+                    </div>
+                @endif
+
                 <div class="row">
 
                     <div class="col">
@@ -69,7 +75,7 @@
             </form>
 
             <x-slot name="modalFooter">
-                <button id="banAccountButton" type="button" class="btn btn-danger"><i class="fa fa-gavel"></i> {{__('Confirm')}}</button>
+                <button id="banAccountButton" type="button" class="btn btn-danger" {{ ($demoActive) ? 'disabled' : '' }} ><i class="fa fa-gavel"></i> {{__('Confirm')}}</button>
             </x-slot>
 
         </x-modal>
@@ -77,6 +83,12 @@
         @if (!Auth::user()->is($profile->user) && $profile->user->isStaffMember())
             <x-modal id="terminateUser" modal-label="terminateUser" modal-title="{{__('messages.reusable.confirm')}}" include-close-button="true">
 
+                @if($demoActive)
+                    <div class="alert alert-danger">
+                        <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+                    </div>
+                @endif
+
               <p><i class="fa fa-exclamation-triangle"></i> <b>{{__('messages.profile.terminate_notice')}}</b></p>
               <p>
                 {{__('messages.profile.terminate_notice_warning')}}
@@ -91,7 +103,7 @@
                   <form method="POST" action="{{route('terminateStaffMember', ['user' => $profile->user->id])}}" id="terminateUserForm">
                     @csrf
                     @method('PATCH')
-                    <button type="submit" class="btn btn-warning"><i class="fas fa-exclamation-circle"></i> {{__('messages.reusable.confirm')}}</button>
+                    <button type="submit" class="btn btn-warning" {{ ($demoActive) ? 'disabled' : '' }}><i class="fas fa-exclamation-circle"></i> {{__('messages.reusable.confirm')}}</button>
 
                   </form>
 
@@ -102,6 +114,12 @@
 
         <x-modal id="deleteAccount" modal-label="deleteAccount" modal-title="{{__('messages.reusable.confirm')}}" include-close-button="true">
 
+            @if($demoActive)
+                <div class="alert alert-danger">
+                    <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+                </div>
+            @endif
+
             <p><i class="fa fa-exclamation-triangle"></i><b> {{__('messages.profile.delete_acc_warn')}}</b></p>
 
             <p>{{__('messages.profile.delete_acc_consequence')}}</p>
@@ -118,12 +136,12 @@
 
             <x-slot name="modalFooter">
 
-                <button type="button" class="btn btn-danger" onclick="document.getElementById('deleteAccountForm').submit()"><i class="fa fa-trash"></i> {{strtoupper(__('messages.reusable.confirm'))}}</button>
+                <button type="button" class="btn btn-danger" {{ ($demoActive) ? 'disabled' : '' }} onclick="document.getElementById('deleteAccountForm').submit()"><i class="fa fa-trash"></i> {{strtoupper(__('messages.reusable.confirm'))}}</button>
 
             </x-slot>
         </x-modal>
 
-        <x-modal id="ipInfo" modal-label="ipInfo" modal-title="{{__('messages.reusable.ip_info')}} {{$ipInfo->ip ?? 'Unknown'}}" include-close-button="true">
+        <x-modal id="ipInfo" modal-label="ipInfo" modal-title="{{__('IP Address Information')}}" include-close-button="true">
 
             <h4 class="text-center">{{__('messages.profile.search_result')}}</h3>
 
@@ -209,18 +227,24 @@
 
         <x-modal id="editUser" modal-label="editUser" modal-title="{{__('messages.profile.edituser')}}" include-close-button="true">
 
+            @if($demoActive)
+                <div class="alert alert-danger">
+                    <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+                </div>
+            @endif
+
           <form id="updateUserForm" method="post" action="{{ route('updateUser', ['user' => $profile->user->id]) }}">
             @csrf
             @method('PATCH')
 
             <label for="email">{{__('messages.contactlabel_email')}}</label>
-            <input id="email" type="text" name="email" class="form-control" required value="{{ $profile->user->email }}" />
+            <input {{ ($demoActive) ? 'disabled' : '' }} id="email" type="text" name="email" class="form-control" required value="{{ $profile->user->email }}" />
 
             <label for="name">{{__('messages.contactlabel_name')}}</label>
-            <input id="name" type="text" name="name" class="form-control" required value="{{ $profile->user->name }}" />
+            <input {{ ($demoActive) ? 'disabled' : '' }} id="name" type="text" name="name" class="form-control" required value="{{ $profile->user->name }}" />
 
             <label for="uuid">Mojang UUID</label>
-            <input id="uuid" type="text" name="uuid" class="form-control" required value="{{ $profile->user->uuid }}" />
+            <input {{ ($demoActive) ? 'disabled' : '' }} id="uuid" type="text" name="uuid" class="form-control" required value="{{ $profile->user->uuid }}" />
             <p class="text-muted text-sm">
               <i class="fas fa-exclamation-triangle"></i> {{__('messages.profile.edituser_consequence')}}
             </p>
@@ -233,7 +257,7 @@
 
                   @foreach($roles as $roleName => $status)
                     <tr>
-                      <th><input type="checkbox" name="roles[]" value="{{ $roleName }}" {{ ($status) ? 'checked' : '' }}></th>
+                      <th><input {{ ($demoActive) ? 'disabled' : '' }} type="checkbox" name="roles[]" value="{{ $roleName }}" {{ ($status) ? 'checked' : '' }}></th>
                       <td class="col-md-2">{{ ucfirst($roleName) }}</td>
                     </tr>
 
@@ -250,7 +274,7 @@
 
           <x-slot name="modalFooter">
 
-              <button type="button" class="btn btn-warning" onclick="$('#updateUserForm').submit()"><i class="fa fa-exclamation-cicle"></i> {{__('messages.vacancy.save')}}</button>
+              <button type="button" {{ ($demoActive) ? 'disabled' : '' }} class="btn btn-warning" onclick="$('#updateUserForm').submit()"><i class="fa fa-exclamation-cicle"></i> {{__('messages.vacancy.save')}}</button>
 
           </x-slot>
 
@@ -293,7 +317,7 @@
                     <p class="text-muted">{{$profile->profileShortBio}}</p>
                     <p class="text-muted">{{__('messages.reusable.member_since', ['date' => $since])}}</p>
                     @if (Auth::user()->hasRole('admin'))
-                        <button type="button" class="btn btn-sm btn-info" onclick="$('#ipInfo').modal('show')">{{__('messages.reusable.lookup', ['ipAddress' => $profile->user->originalIP])}}</button>
+                        <button type="button" class="btn btn-sm btn-info" onclick="$('#ipInfo').modal('show')">{{__('messages.reusable.lookup', ['ipAddress' => (!$demoActive) ? $profile->user->originalIP : '0.0.0.0'])}}</button>
                     @endif
 
                     @if ($profile->user->is(Auth::user()))
diff --git a/resources/views/dashboard/user/profile/useraccount.blade.php b/resources/views/dashboard/user/profile/useraccount.blade.php
index b05dde1..bf57e06 100755
--- a/resources/views/dashboard/user/profile/useraccount.blade.php
+++ b/resources/views/dashboard/user/profile/useraccount.blade.php
@@ -22,6 +22,14 @@
 
     <x-modal id="deleteAccountModal" modal-label="deleteAccountModalLabel" modal-title="Close account" include-close-button="true">
 
+        @if ($demoActive)
+
+            <div class="alert alert-danger">
+                <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+            </div>
+
+        @endif
+
         <p>Deleting your account is an irreversible process. The following data will be deleted (including personally identifiable data):</p>
         <ul>
             <li>Last IP address</li>
@@ -66,7 +74,7 @@
 
         <x-slot name="modalFooter">
 
-            <button onclick="$('#deleteAccountForm').submit()" type="button" class="btn btn-warning"><i class="fas fa-exclamation-triangle"></i> Continue</button>
+            <button {{ ($demoActive) ? 'disabled' : '' }} onclick="$('#deleteAccountForm').submit()" type="button" class="btn btn-warning"><i class="fas fa-exclamation-triangle"></i> Continue</button>
 
         </x-slot>
 
@@ -74,10 +82,16 @@
 
     @if (!Auth::user()->has2FA())
 
-    
+
 
       <x-modal id="twoFactorAuthModal" modal-label="2faLabel" modal-title="{{__('messages.2fa_txt')}}" include-close-button="true">
 
+          @if($demoActive)
+              <div class="alert alert-danger">
+                  <p class="font-weight-bold"><i class="fa fa-exclamation-triangle"></i> This feature is disabled</p>
+              </div>
+          @endif
+
         <h3><i class="fas fa-user-shield"></i> {{__('messages.profile.2fa_welcome')}}</h3>
 
         <p><b>{{__('messages.profile.supported_apps')}}</b></p>
@@ -118,7 +132,7 @@
 
         <x-slot name="modalFooter">
 
-          <button type="button" class="btn btn-success" onclick="$('#enable2Fa').submit()"><i class="fas fa-key"></i> {{__('messages.profile.2fa_enable')}}</button>
+          <button {{ ($demoActive) ? 'disabled' : '' }} type="button" class="btn btn-success" onclick="$('#enable2Fa').submit()"><i class="fas fa-key"></i> {{__('messages.profile.2fa_enable')}}</button>
 
         </x-slot>
 
@@ -248,6 +262,12 @@
 
                 <div class="tab-content" id="myTabContent">
                     <div class="tab-pane fade show active p-3" id="accountSecurity" role="tabpanel" aria-labelledby="accountSecurityTab">
+                        @if($demoActive)
+                            <div class="alert alert-danger">
+                                <p class="font-weight-bold"><i class="fa fa-exclamation-triangle"></i> This feature is disabled</p>
+                            </div>
+                        @endif
+
                         <h5 class="card-title">{{__('messages.profile.change_password')}}</h5>
                         <p class="card-text">{{__('messages.profile.change_password_exp')}}</p>
 
@@ -271,7 +291,7 @@
 
                         </form>
 
-                        <button class="btn btn-success" type="button" onclick="document.getElementById('changePassword').submit()">{{__('messages.profile.change_password')}}</button>
+                        <button {{ ($demoActive) ? 'disabled' : '' }} class="btn btn-success" type="button" onclick="document.getElementById('changePassword').submit()">{{__('messages.profile.change_password')}}</button>
                     </div>
                     <div class="tab-pane fade p-3" id="twofa" role="tabpanel" aria-labelledby="twofaTab">
                         <h5 class="card-title">{{__('messages.profile.2fa')}}</h5>
@@ -289,10 +309,15 @@
                     <div class="tab-pane fade p-3" id="sessions" role="tabpanel" aria-labelledby="sessionsTab">
                         <h5 class="card-title">{{__('messages.profile.session_manager')}}</h5>
                         <p class="card-text">{{__('messages.profile.terminate_others')}}</p>
-                        <p>{{__('messages.profile.current_session', ['ipAddress' => $ip])}}</p>
+                        <p>{{__('messages.profile.current_session', ['ipAddress' => ($demoActive) ? '0.0.0.0 (censored)' : $ip])}}</p>
                         <button type="button" class="btn btn-warning" onclick="$('#authenticationForm').modal('show')">{{__('messages.profile.flush_session')}}</button>
                     </div>
                     <div class="tab-pane fade p-3" id="contactSettings" role="tabpanel" aria-labelledby="contactSettingsTab">
+                        @if($demoActive)
+                            <div class="alert alert-danger">
+                                <p class="font-weight-bold"><i class="fa fa-exclamation-triangle"></i> This feature is disabled</p>
+                            </div>
+                        @endif
                         <h5 class="card-title">{{__('messages.profile.contact_settings')}}</h5>
                         <p class="card-text">{{__('messages.profile.personal_data_change')}}</p>
 
@@ -320,7 +345,7 @@
                                 </div>
                             </form>
 
-                        <button class="btn btn-success" type="button" onclick="document.getElementById('changeEmail').submit()">{{__('messages.profile.change_email')}}</button>
+                        <button {{ ($demoActive) ? 'disabled' : '' }} class="btn btn-success" type="button" onclick="document.getElementById('changeEmail').submit()">{{__('messages.profile.change_email')}}</button>
                     </div>
 
 
diff --git a/resources/views/dashboard/user/viewapp.blade.php b/resources/views/dashboard/user/viewapp.blade.php
index d1205e2..f530a3a 100755
--- a/resources/views/dashboard/user/viewapp.blade.php
+++ b/resources/views/dashboard/user/viewapp.blade.php
@@ -103,7 +103,7 @@
                         <div class="mt-4 mb-3">
 
                             <h5>{{$content['title']}}</h5>
-                            
+
                             <p>{!! GrahamCampbell\Markdown\Facades\Markdown::convertToHtml($content['response']) !!}</p>
 
                         </div>
@@ -132,7 +132,7 @@
 
                             <p><b>{{__('messages.application_m.applicant_name')}} </b> <span class="badge badge-primary">{{$application->user->name}}</span></p>
                             @if (Auth::user()->hasRole('hiringManager'))
-                                <p><b>{{__('messages.view_app.appl_ip')}}</b> <span class="badge badge-primary">{{$application->user->originalIP}}</span></p>
+                                <p><b>{{__('messages.view_app.appl_ip')}}</b> <span class="badge badge-primary">{{ ($demoActive) ? '0.0.0.0 (censored)' : $application->user->originalIP }}</span></p>
                             @endif
                             <p><b>{{__('messages.application_m.application_date')}}</b> <span class="badge badge-primary">{{$application->created_at}}</span></p>
                             <p><b>{{__('messages.last_updated')}}</b><span class="badge badge-primary">{{$application->updated_at}}</span></p>
diff --git a/resources/views/home.blade.php b/resources/views/home.blade.php
index 472bf8d..8d68ead 100755
--- a/resources/views/home.blade.php
+++ b/resources/views/home.blade.php
@@ -41,6 +41,19 @@
 
 	  <div class="container-fluid">
 
+          @if ($demoActive)
+              <div class="row">
+                  <div class="col">
+                      <div class="alert alert-warning">
+                          <p class="font-weight-bold"><i class="fas fa-exclamation-circle"></i> Attention</p>
+                          <p>Demo mode is active on this instance. The database is refreshed daily and some features are disabled for security reasons.</p>
+
+                          <p>If you're seeing this message in error, please contact your system administrator.</p>
+                      </div>
+                  </div>
+              </div>
+          @endif
+
           <div class="row">
 
               <div class="col text-center">
diff --git a/routes/web.php b/routes/web.php
index eb201ce..8630f9e 100755
--- a/routes/web.php
+++ b/routes/web.php
@@ -53,7 +53,9 @@ use Mcamara\LaravelLocalization\Facades\LaravelLocalization;
 */
 Route::group(['prefix' => LaravelLocalization::setLocale(), 'middleware' => ['localeSessionRedirect', 'localizationRedirect', 'localeViewPath']], function () {
     Route::group(['prefix' => 'auth', 'middleware' => ['usernameUUID']], function () {
-        Auth::routes(['verify' => true]);
+        Auth::routes([
+            'verify' => true
+        ]);
 
         Route::post('/twofa/authenticate', [TwofaController::class, 'verify2FA'])
             ->name('verify2FA');
@@ -271,7 +273,7 @@ Route::group(['prefix' => LaravelLocalization::setLocale(), 'middleware' => ['lo
 
             Route::delete('forms/destroy/{form}', [FormController::class, 'destroy'])
                 ->name('destroyForm');
-                
+
             Route::get('forms', [FormController::class, 'index'])
                 ->name('showForms');