diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
new file mode 100644
index 0000000000..6d716e315b
--- /dev/null
+++ b/.github/workflows/ci.yml
@@ -0,0 +1,22 @@
+name: ci
+
+on:
+  pull_request:
+    branches: [main]
+
+jobs:
+  tests:
+    name: Tests
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Check out code
+        uses: actions/checkout@v4
+
+      - name: Set up Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: "1.25.1"
+
+      - name: Run some tests
+        run: go test ./... -cover
\ No newline at end of file
diff --git a/README.md b/README.md
index c2bec0368b..0fe0bf68de 100644
--- a/README.md
+++ b/README.md
@@ -1,3 +1,5 @@
+![CI](https://github.com/thgzr/learn-cicd-starter/actions/workflows/ci.yml/badge.svg)
+
 # learn-cicd-starter (Notely)
 
 This repo contains the starter code for the "Notely" application for the "Learn CICD" course on [Boot.dev](https://boot.dev).
@@ -21,3 +23,5 @@ go build -o notely && ./notely
 *This starts the server in non-database mode.* It will serve a simple webpage at `http://localhost:8080`.
 
 You do *not* need to set up a database or any interactivity on the webpage yet. Instructions for that will come later in the course!
+
+ Igor's version of Boot.dev's Notely app.
diff --git a/internal/auth/auth_test.go b/internal/auth/auth_test.go
new file mode 100644
index 0000000000..63a9236245
--- /dev/null
+++ b/internal/auth/auth_test.go
@@ -0,0 +1,35 @@
+package auth
+
+import (
+	"net/http"
+	"reflect"
+	"testing"
+)
+
+// GetAPIKey -
+func TestGetAPIKey(t *testing.T) {
+	req, _ := http.NewRequest("GET", "/", nil)
+	req.Header.Set("Authorization", "ApiKey sometoken")
+	got, err := GetAPIKey(req.Header)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	want := "sometoken"
+	if !reflect.DeepEqual(want, got) {
+		t.Fatalf("expected: %v, got: %v", want, got)
+	}
+
+	req, _ = http.NewRequest("GET", "/", nil)
+	// req.Header.Del("Authorization")
+
+	got, err = GetAPIKey(req.Header)
+	if err == nil {
+		t.Fatalf("expected error, got nil")
+	}
+	if got != "" {
+		t.Fatalf("expected empty token, got %q", got)
+	}
+	if err.Error() != "no authorization header included" {
+		t.Fatalf("unexpected error: %v", err)
+	}
+}