diff --git a/app/Http/Controllers/SecurityController.php b/app/Http/Controllers/SecurityController.php
index c2f5731..db9ff96 100755
--- a/app/Http/Controllers/SecurityController.php
+++ b/app/Http/Controllers/SecurityController.php
@@ -25,6 +25,24 @@ class SecurityController extends Controller
         }
     }
 
+    public function viewForgotPassword(Request $request)
+    {
+        if (!$request->session()->has('user')) {
+            return view('forgot');
+        } else {
+            return redirect('home');
+        }
+    }
+
+    public function viewRegister(Request $request)
+    {
+        if (!$request->session()->has('user')) {
+            return view('register');
+        } else {
+            return redirect('home');
+        }
+    }
+
     public function formLogin(Request $request)
     {
         $request->validate([
@@ -54,6 +72,42 @@ class SecurityController extends Controller
         }
     }
 
+    public function formRegister(Request $request)
+    {
+        $request->validate([
+            "name" => "required",
+            "email" => "required",
+            "password" => "required",
+            "password_confirm" => "required",
+        ]);
+        $user = \App\User::where("email", $request->input("email"))->first();
+        if ($user != null) {
+            return response()->json([
+                "message" => "User with email " . $user->email . " is exist",
+            ], 400);
+        } else {
+            if ($request->input('password') != $request->input('password_confirm')) {
+                return response()->json([
+                    "message" => "Confirm password is different with provided password",
+                ], 400);
+            } else {
+                $user = new \App\User();
+                $user->name = $request->input("name");
+                $user->email = $request->input("email");
+                $user->password = Hash::make($request->input("password"));
+                if ($user->save()) {
+                    return response()->json([
+                        "message" => "Register success, now you can login...",
+                    ], 200);
+                } else {
+                    return response()->json([
+                        "message" => "Failed to register new user",
+                    ], 400);
+                }
+            }
+        }
+    }
+
     public function formLogout(Request $request)
     {
         $request->session()->flush();
diff --git a/resources/views/forgot.blade.php b/resources/views/forgot.blade.php
new file mode 100755
index 0000000..4ef2a0a
--- /dev/null
+++ b/resources/views/forgot.blade.php
@@ -0,0 +1,103 @@
+<!DOCTYPE html>
+<html>
+<head>
+    <meta charset="utf-8">
+    <meta name="csrf_token" content="{{ csrf_token() }}"/>
+    <meta http-equiv="X-UA-Compatible" content="IE=edge">
+    <title>Todo</title>
+    <!-- Tell the browser to be responsive to screen width -->
+    <meta content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" name="viewport">
+    <!-- Bootstrap 3.3.7 -->
+    <link rel="stylesheet" href="{{asset('vendor/bootstrap/dist/css/bootstrap.min.css')}}">
+    <!-- Font Awesome -->
+    <link rel="stylesheet" href="{{asset('vendor/font-awesome/css/font-awesome.min.css')}}">
+    <!-- Ionicons -->
+    <link rel="stylesheet" href="{{asset('vendor/Ionicons/css/ionicons.min.css')}}">
+    <!-- Toastr -->
+    <link rel="stylesheet" href="{{asset('vendor/toastr/toastr.min.css')}}">
+    <!-- Theme style -->
+    <link rel="stylesheet" href="{{asset('dist/css/AdminLTE.min.css')}}">
+    <!-- iCheck -->
+    <link rel="stylesheet" href="{{asset('plugin/iCheck/square/blue.css')}}">
+
+    <!-- HTML5 Shim and Respond.js IE8 support of HTML5 elements and media queries -->
+    <!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
+    <!--[if lt IE 9]>
+    <script src="https://oss.maxcdn.com/html5shiv/3.7.3/html5shiv.min.js"></script>
+    <script src="https://oss.maxcdn.com/respond/1.4.2/respond.min.js"></script>
+    <![endif]-->
+
+    <!-- Google Font -->
+    <link rel="stylesheet"
+          href="https://fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,600,700,300italic,400italic,600italic">
+</head>
+<body class="hold-transition login-page">
+<div class="login-box">
+    <div class="login-logo">
+        <a href="/"><b>Todo</b>&nbsp;App</a>
+    </div>
+    <!-- /.login-logo -->
+    <div class="login-box-body">
+        <p class="login-box-msg">Forgot Password</p>
+
+        <form action="/" method="post" id="login-form">
+            <div class="form-group has-feedback">
+                <input type="email" class="form-control" placeholder="Email" id="email">
+                <span class="glyphicon glyphicon-envelope form-control-feedback"></span>
+            </div>
+            <div class="row">
+                <div class="col-xs-8">
+                    <a href="/" class="btn btn-default btn-block btn-flat">Back</a>
+                </div>
+                <!-- /.col -->
+                <div class="col-xs-4">
+                    <button type="submit" class="btn btn-primary btn-block btn-flat">Send</button>
+                </div>
+                <!-- /.col -->
+            </div>
+        </form>
+    </div>
+    <!-- /.login-box-body -->
+</div>
+<!-- /.login-box -->
+
+<!-- jQuery 3 -->
+<script src="{{asset('vendor/jquery/dist/jquery.min.js')}}"></script>
+<!-- Bootstrap 3.3.7 -->
+<script src="{{asset('vendor/bootstrap/dist/js/bootstrap.min.js')}}"></script>
+<!-- Toastr -->
+<script src="{{asset('vendor/toastr/toastr.min.js')}}"></script>
+<!-- iCheck -->
+<script src="{{asset('plugin/iCheck/icheck.min.js')}}"></script>
+<script>
+    $(document).ready(function () {
+        $("#login-form").on("submit", function (e) {
+            e.preventDefault();
+            $.ajax({
+                type: "POST",
+                url: "/web/login",
+                headers: {
+                    'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content'),
+                },
+                data: JSON.stringify({
+                    "email": $("#email").val(),
+                    "password": $("#password").val()
+                }),
+                contentType: "application/json",
+                dataType: "json",
+                async: true,
+                success: function (result) {
+                    toastr.success(result.message);
+                    window.setTimeout(function () {
+                        location.reload();
+                    }, 500);
+                },
+                error: function (result) {
+                    toastr.error(result.responseJSON.message);
+                }
+            });
+        });
+    });
+</script>
+</body>
+</html>
diff --git a/resources/views/login.blade.php b/resources/views/login.blade.php
index 751911d..cf5f4a8 100755
--- a/resources/views/login.blade.php
+++ b/resources/views/login.blade.php
@@ -50,7 +50,9 @@
                 <span class="glyphicon glyphicon-lock form-control-feedback"></span>
             </div>
             <div class="row">
-                <div class="col-xs-8"></div>
+                <div class="col-xs-8">
+                    Version 1.0.0
+                </div>
                 <!-- /.col -->
                 <div class="col-xs-4">
                     <button type="submit" class="btn btn-primary btn-block btn-flat">Sign In</button>
@@ -64,8 +66,8 @@
         </div>
         <!-- /.social-auth-links -->
 
-        <a href="#">I forgot my password</a><br>
-        <a href="#" class="text-center">Register a new membership</a>
+        <a href="/forgot/password">Forgot Password</a><br>
+        <a href="/register" class="text-center">Register</a>
     </div>
     <!-- /.login-box-body -->
 </div>
diff --git a/resources/views/register.blade.php b/resources/views/register.blade.php
new file mode 100755
index 0000000..970919b
--- /dev/null
+++ b/resources/views/register.blade.php
@@ -0,0 +1,117 @@
+<!DOCTYPE html>
+<html>
+<head>
+    <meta charset="utf-8">
+    <meta name="csrf_token" content="{{ csrf_token() }}"/>
+    <meta http-equiv="X-UA-Compatible" content="IE=edge">
+    <title>Todo</title>
+    <!-- Tell the browser to be responsive to screen width -->
+    <meta content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" name="viewport">
+    <!-- Bootstrap 3.3.7 -->
+    <link rel="stylesheet" href="{{asset('vendor/bootstrap/dist/css/bootstrap.min.css')}}">
+    <!-- Font Awesome -->
+    <link rel="stylesheet" href="{{asset('vendor/font-awesome/css/font-awesome.min.css')}}">
+    <!-- Ionicons -->
+    <link rel="stylesheet" href="{{asset('vendor/Ionicons/css/ionicons.min.css')}}">
+    <!-- Toastr -->
+    <link rel="stylesheet" href="{{asset('vendor/toastr/toastr.min.css')}}">
+    <!-- Theme style -->
+    <link rel="stylesheet" href="{{asset('dist/css/AdminLTE.min.css')}}">
+    <!-- iCheck -->
+    <link rel="stylesheet" href="{{asset('plugin/iCheck/square/blue.css')}}">
+
+    <!-- HTML5 Shim and Respond.js IE8 support of HTML5 elements and media queries -->
+    <!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
+    <!--[if lt IE 9]>
+    <script src="https://oss.maxcdn.com/html5shiv/3.7.3/html5shiv.min.js"></script>
+    <script src="https://oss.maxcdn.com/respond/1.4.2/respond.min.js"></script>
+    <![endif]-->
+
+    <!-- Google Font -->
+    <link rel="stylesheet"
+          href="https://fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,600,700,300italic,400italic,600italic">
+</head>
+<body class="hold-transition login-page">
+<div class="login-box">
+    <div class="login-logo">
+        <a href="/"><b>Todo</b>&nbsp;App</a>
+    </div>
+    <!-- /.login-logo -->
+    <div class="login-box-body">
+        <p class="login-box-msg">Register</p>
+
+        <form action="/" method="post" id="login-form">
+            <div class="form-group has-feedback">
+                <input type="text" class="form-control" placeholder="Name" id="name">
+                <span class="glyphicon glyphicon-user form-control-feedback"></span>
+            </div>
+            <div class="form-group has-feedback">
+                <input type="email" class="form-control" placeholder="Email" id="email">
+                <span class="glyphicon glyphicon-envelope form-control-feedback"></span>
+            </div>
+            <div class="form-group has-feedback">
+                <input type="password" class="form-control" placeholder="Password" id="password">
+                <span class="glyphicon glyphicon-lock form-control-feedback"></span>
+            </div>
+            <div class="form-group has-feedback">
+                <input type="password" class="form-control" placeholder="Confirm Password" id="password-confirm">
+                <span class="glyphicon glyphicon-lock form-control-feedback"></span>
+            </div>
+            <div class="row">
+                <div class="col-xs-8">
+                    <a href="/" class="btn btn-default btn-block btn-flat">Back</a>
+                </div>
+                <!-- /.col -->
+                <div class="col-xs-4">
+                    <button type="submit" class="btn btn-primary btn-block btn-flat">Register</button>
+                </div>
+                <!-- /.col -->
+            </div>
+        </form>
+    </div>
+    <!-- /.login-box-body -->
+</div>
+<!-- /.login-box -->
+
+<!-- jQuery 3 -->
+<script src="{{asset('vendor/jquery/dist/jquery.min.js')}}"></script>
+<!-- Bootstrap 3.3.7 -->
+<script src="{{asset('vendor/bootstrap/dist/js/bootstrap.min.js')}}"></script>
+<!-- Toastr -->
+<script src="{{asset('vendor/toastr/toastr.min.js')}}"></script>
+<!-- iCheck -->
+<script src="{{asset('plugin/iCheck/icheck.min.js')}}"></script>
+<script>
+    $(document).ready(function () {
+        $("#login-form").on("submit", function (e) {
+            e.preventDefault();
+            $.ajax({
+                type: "POST",
+                url: "/web/register",
+                headers: {
+                    'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content'),
+                },
+                data: JSON.stringify({
+                    "email": $("#email").val(),
+                    "password": $("#password").val(),
+                    "name": $("#name").val(),
+                    "password_confirm": $("#password-confirm").val(),
+                }),
+                contentType: "application/json",
+                dataType: "json",
+                async: true,
+                success: function (result) {
+                    toastr.success(result.message);
+                    window.setTimeout(function () {
+                        location.href = "/";
+                    }, 500);
+                },
+                error: function (result) {
+                    toastr.error(result.responseJSON.message);
+                }
+            });
+        });
+    });
+</script>
+</body>
+</html>
diff --git a/routes/web.php b/routes/web.php
index dd639a5..57307ee 100755
--- a/routes/web.php
+++ b/routes/web.php
@@ -15,6 +15,8 @@ use Illuminate\Support\Facades\Route;
 
 Route::get('/', "SecurityController@initSystem");
 Route::get('/login', "SecurityController@viewLogin")->name('login');
+Route::get('/forgot/password', "SecurityController@viewForgotPassword");
+Route::get('/register', "SecurityController@viewRegister");
 
 Route::middleware('auth.web')->group(function () {
     Route::get('/home', "TodoController@viewHome");
@@ -41,4 +43,5 @@ Route::middleware('auth.web')->group(function () {
 });
 
 Route::post('/web/login', "SecurityController@formLogin");
+Route::post('/web/register', "SecurityController@formRegister");
 Route::get('/web/logout', "SecurityController@formLogout");