diff --git a/tdrs-backend/docs/api/set_profile.md b/tdrs-backend/docs/api/set_profile.md
index bf720dd06..e16c6dc5f 100644
--- a/tdrs-backend/docs/api/set_profile.md
+++ b/tdrs-backend/docs/api/set_profile.md
@@ -1,12 +1,12 @@
 
 # Set Profile
-Accepts a POST request from [authenticated](api/authentication.md) users to update the first name and last name on their profile. 
+Accepts a PATCH request from [authenticated](api/authentication.md) users to update the first name and last name on their profile. 
 
  
 ----
 **Request**:
 
-`Post` `v1/set_profile/`
+`PATCH` `v1/set_profile/`
 
 Parameters:
 
@@ -15,14 +15,24 @@ Parameters:
 - JSON request body with the following **required** fields :
   ```
   {
-   "first_name":"John",
-   "last_name":"Jones"
+   "first_name": "John",
+   "last_name": "Jones",
+   "stt": {
+     "id": 1
+   }
   }
   ```
 
-*Note:*
+*Notes:*
 
-- Authorization Protected 
+### Fields
+* first_name: string (first name of user)
+* last_name: string (last name of user)
+* stt: object
+  * id: integer (id of the State, Tribe or Terrritory)
+
+
+Authorization Protected 
 
 **Response**:
 
@@ -31,12 +41,27 @@ Content-Type application/json
 200 Ok
 
   {
-   "first_name":"John",
-   "last_name":"Jones"
+   "first_name": "John",
+   "last_name": "Jones",
+   "stt": {
+        "id": 1,
+        "type": "state",
+        "code": "AL",
+        "name": "Alabama"
+    }
   }
 ```
 
-This will return a JSON response with the authenticated users first name and last name as defined in their request JSON.
+This will return a JSON response with the authenticated user's data as defined in their request JSON.
+
+### Fields
+* first_name: string (first name of user)
+* last_name: string (last name of user)
+* stt: object
+  * id: integer (id of the State, Tribe or Terrritory)
+  * type: string (identifies it as a State, Tribe or Territory)
+  * code: string (abbreviation)
+  * string (name of State, Tribe or Territory)
 
 ----
 **Failure to Authenticate Response:**
@@ -63,4 +88,4 @@ Content-Type application/json
   "first_name":["This field is required."],
   "last_name":["This field is required."]
 }
-```
\ No newline at end of file
+```
diff --git a/tdrs-backend/tdpservice/conftest.py b/tdrs-backend/tdpservice/conftest.py
index cd2ede2d5..ff44896fe 100644
--- a/tdrs-backend/tdpservice/conftest.py
+++ b/tdrs-backend/tdpservice/conftest.py
@@ -3,6 +3,7 @@
 from rest_framework.test import APIClient
 
 from tdpservice.users.test.factories import UserFactory
+from tdpservice.stts.test.factories import STTFactory, RegionFactory
 
 
 @pytest.fixture(scope="function")
@@ -15,3 +16,15 @@ def api_client():
 def user():
     """Return a basic, non-admin user."""
     return UserFactory.create()
+
+
+@pytest.fixture
+def stt():
+    """Return an STT."""
+    return STTFactory.create()
+
+
+@pytest.fixture
+def region():
+    """Return a region."""
+    return RegionFactory.create()
diff --git a/tdrs-backend/tdpservice/stts/serializers.py b/tdrs-backend/tdpservice/stts/serializers.py
index 05541b084..cbd311b1b 100644
--- a/tdrs-backend/tdpservice/stts/serializers.py
+++ b/tdrs-backend/tdpservice/stts/serializers.py
@@ -23,6 +23,21 @@ def get_code(self, obj):
         return obj.code
 
 
+class STTUpdateSerializer(serializers.ModelSerializer):
+    """STT serializer."""
+
+    class Meta:
+        """Metadata."""
+
+        model = STT
+        fields = ["id"]
+        extra_kwargs = {"id": {"read_only": False}}
+
+    def to_representation(self, instance):
+        """Allow update with only the ID field."""
+        return STTSerializer(instance).data
+
+
 class RegionSerializer(serializers.ModelSerializer):
     """Region serializer."""
 
diff --git a/tdrs-backend/tdpservice/stts/test/factories.py b/tdrs-backend/tdpservice/stts/test/factories.py
new file mode 100644
index 000000000..18f3fced6
--- /dev/null
+++ b/tdrs-backend/tdpservice/stts/test/factories.py
@@ -0,0 +1,38 @@
+"""Generate test data for stts."""
+
+import factory
+from ..models import STT, Region
+
+
+class RegionFactory(factory.django.DjangoModelFactory):
+    """Generate test data for regions."""
+
+    class Meta:
+        """Metadata for regions."""
+
+        model = "stts.Region"
+
+    id = factory.Sequence(int)
+
+    @classmethod
+    def _create(cls, model_class, *args, **kwargs):
+        return Region.objects.create(*args, **kwargs)
+
+
+class STTFactory(factory.django.DjangoModelFactory):
+    """Generate test data for stts."""
+
+    class Meta:
+        """Hardcoded metata data for stts."""
+
+        model = "stts.STT"
+
+    id = factory.Sequence(int)
+    name = factory.Sequence(lambda n: "teststt%d" % n)
+    code = "TT"
+    type = "STATE"
+    region = factory.SubFactory(RegionFactory)
+
+    @classmethod
+    def _create(cls, model_class, *args, **kwargs):
+        return STT.objects.create(*args, **kwargs)
diff --git a/tdrs-backend/tdpservice/urls.py b/tdrs-backend/tdpservice/urls.py
index 3e61d83c8..2629207d9 100755
--- a/tdrs-backend/tdpservice/urls.py
+++ b/tdrs-backend/tdpservice/urls.py
@@ -5,18 +5,11 @@
 from django.contrib import admin
 from django.urls import include, path, re_path, reverse_lazy
 from django.views.generic.base import RedirectView
-
-from rest_framework.routers import DefaultRouter
-
 from .users.api.authorization_check import AuthorizationCheck
 from .users.api.login import TokenAuthorizationOIDC
 from .users.api.login_redirect_oidc import LoginRedirectOIDC
 from .users.api.logout import LogoutUser
 from .users.api.logout_redirect_oidc import LogoutRedirectOIDC
-from .users import views
-
-router = DefaultRouter()
-router.register("users", views.UserViewSet)
 
 urlpatterns = [
     path("admin/", admin.site.urls),
@@ -25,13 +18,12 @@
     path("logout", LogoutUser.as_view(), name="logout"),
     path("logout/oidc", LogoutRedirectOIDC.as_view(), name="oidc-logout"),
     path("auth_check", AuthorizationCheck.as_view(), name="authorization-check"),
+    path("users/", include("tdpservice.users.urls")),
     path("stts/", include("tdpservice.stts.urls")),
     # the 'api-root' from django rest-frameworks default router
     # http://www.django-rest-framework.org/api-guide/routers/#defaultrouter
     re_path(r"^$", RedirectView.as_view(url=reverse_lazy("api-root"), permanent=False)),
 ] + static(settings.MEDIA_URL, document_root=settings.MEDIA_ROOT)
 
-urlpatterns += router.urls
-
 # Add 'prefix' to all urlpatterns to make it easier to version/group endpoints
 urlpatterns = [path("v1/", include(urlpatterns))]
diff --git a/tdrs-backend/tdpservice/users/api/authorization_check.py b/tdrs-backend/tdpservice/users/api/authorization_check.py
index ce3ce3839..05172ee75 100644
--- a/tdrs-backend/tdpservice/users/api/authorization_check.py
+++ b/tdrs-backend/tdpservice/users/api/authorization_check.py
@@ -3,7 +3,10 @@
 
 from rest_framework.response import Response
 from rest_framework.views import APIView
+from rest_framework.permissions import AllowAny
+from django.middleware import csrf
 from django.utils import timezone
+from ..serializers import UserProfileSerializer
 
 logger = logging.getLogger()
 logger.setLevel(logging.INFO)
@@ -14,23 +17,24 @@ class AuthorizationCheck(APIView):
 
     query_string = False
     pattern_name = "authorization-check"
+    permission_classes = [AllowAny]
 
     def get(self, request, *args, **kwargs):
         """Handle get request and authenticate user."""
         user = request.user
+        serializer = UserProfileSerializer(user)
         if user.is_authenticated:
             auth_params = {
                 "authenticated": True,
-                "user": {
-                    "email": user.username,
-                    "first_name": user.first_name,
-                    "last_name": user.last_name,
-                },
+                "user": serializer.data,
+                "csrf": csrf.get_token(request),
             }
             logger.info(
                 "Auth check PASS for user: %s on %s", user.username, timezone.now()
             )
-            return Response(auth_params)
+            res = Response(auth_params)
+            res['Access-Control-Allow-Headers'] = "X-CSRFToken"
+            return res
         else:
             logger.info("Auth check FAIL for user on %s", timezone.now())
             return Response({"authenticated": False})
diff --git a/tdrs-backend/tdpservice/users/serializers.py b/tdrs-backend/tdpservice/users/serializers.py
index 546aa7a8e..3168e1a02 100644
--- a/tdrs-backend/tdpservice/users/serializers.py
+++ b/tdrs-backend/tdpservice/users/serializers.py
@@ -1,8 +1,14 @@
 """Serialize user data."""
 
+import logging
 from rest_framework import serializers
 
 from .models import User
+from tdpservice.stts.serializers import STTUpdateSerializer
+
+logger = logging.getLogger()
+logger.setLevel(logging.INFO)
+logger.addHandler(logging.StreamHandler())
 
 
 class UserSerializer(serializers.ModelSerializer):
@@ -48,17 +54,29 @@ class Meta:
         extra_kwargs = {"password": {"write_only": True}}
 
 
-class SetUserProfileSerializer(serializers.ModelSerializer):
+class UserProfileSerializer(serializers.ModelSerializer):
     """Serializer used for setting a user's profile."""
 
+    stt = STTUpdateSerializer(required=True)
+    email = serializers.SerializerMethodField("get_email")
+
     class Meta:
         """Metadata."""
 
         model = User
-        fields = ["first_name", "last_name"]
+        fields = ["first_name", "last_name", "stt", "email"]
 
         """Enforce first and last name to be in API call and not empty"""
         extra_kwargs = {
             "first_name": {"allow_blank": False, "required": True},
             "last_name": {"allow_blank": False, "required": True},
         }
+
+    def update(self, instance, validated_data):
+        """Update the user with the STT."""
+        instance.stt_id = validated_data.pop("stt")["id"]
+        return super().update(instance, validated_data)
+
+    def get_email(self, obj):
+        """Return the user's email address."""
+        return obj.username
diff --git a/tdrs-backend/tdpservice/users/test/conftest.py b/tdrs-backend/tdpservice/users/test/conftest.py
index e3aa49f1f..b2a153bdb 100644
--- a/tdrs-backend/tdpservice/users/test/conftest.py
+++ b/tdrs-backend/tdpservice/users/test/conftest.py
@@ -14,4 +14,5 @@ def user_data():
         "last_name": "Smith",
         "password": "correcthorsebatterystaple",
         "auth_token": "xxx",
+        "stt": "Michigan",
     }
diff --git a/tdrs-backend/tdpservice/users/test/factories.py b/tdrs-backend/tdpservice/users/test/factories.py
index 5dcdb0d06..f4b797905 100644
--- a/tdrs-backend/tdpservice/users/test/factories.py
+++ b/tdrs-backend/tdpservice/users/test/factories.py
@@ -2,6 +2,8 @@
 
 import factory
 
+from tdpservice.stts.test.factories import STTFactory
+
 
 class UserFactory(factory.django.DjangoModelFactory):
     """Generate test data for users."""
@@ -13,13 +15,14 @@ class Meta:
         django_get_or_create = ("username",)
 
     id = factory.Faker("uuid4")
-    username = factory.Sequence(lambda n: f"testuser{n}")
+    username = factory.Sequence(lambda n: "testuser%d" % n)
     password = "test_password"  # Static password so we can login.
     email = factory.Faker("email")
     first_name = factory.Faker("first_name")
     last_name = factory.Faker("last_name")
     is_active = True
     is_staff = False
+    stt = factory.SubFactory(STTFactory)
 
     @classmethod
     def _create(cls, model_class, *args, **kwargs):
diff --git a/tdrs-backend/tdpservice/users/test/test_api.py b/tdrs-backend/tdpservice/users/test/test_api.py
index a5f848c3f..e0fbb1657 100644
--- a/tdrs-backend/tdpservice/users/test/test_api.py
+++ b/tdrs-backend/tdpservice/users/test/test_api.py
@@ -2,6 +2,7 @@
 from django.contrib.auth import get_user_model
 import pytest
 from rest_framework import status
+from ...stts.models import STT
 
 User = get_user_model()
 
@@ -43,52 +44,95 @@ def test_create_user(api_client, user_data):
 def test_set_profile_data(api_client, user):
     """Test profile data can be set."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    stt = STT.objects.first()
+    response = api_client.patch(
         "/v1/users/set_profile/",
-        {"first_name": "Joe", "last_name": "Bloggs"},
+        {"first_name": "Joe", "last_name": "Bloggs", "stt": {"id": stt.id}},
+        format="json",
     )
     assert response.status_code == status.HTTP_200_OK
-    assert response.data == {"first_name": "Joe", "last_name": "Bloggs"}
+    assert response.data == {
+        "email": user.username,
+        "first_name": "Joe",
+        "last_name": "Bloggs",
+        "stt": {
+            "id": stt.id,
+            "type": stt.type,
+            "code": stt.code,
+            "name": stt.name,
+        },
+    }
     user.refresh_from_db()
     assert user.first_name == "Joe"
     assert user.last_name == "Bloggs"
+    assert user.stt.name == stt.name
 
 
 @pytest.mark.django_db
 def test_set_profile_data_last_name_apostrophe(api_client, user):
     """Test profile data last name  can be set with an apostrophe."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    stt = STT.objects.first()
+    response = api_client.patch(
         "/v1/users/set_profile/",
-        {"first_name": "Mike", "last_name": "O'Hare"},
+        {"first_name": "Mike", "last_name": "O'Hare", "stt": {"id": stt.id}},
+        format="json",
     )
     assert response.status_code == status.HTTP_200_OK
-    assert response.data == {"first_name": "Mike", "last_name": "O'Hare"}
+    assert response.data == {
+        "email": user.username,
+        "first_name": "Mike",
+        "last_name": "O'Hare",
+        "stt": {
+            "id": stt.id,
+            "type": stt.type,
+            "code": stt.code,
+            "name": stt.name,
+        },
+    }
     user.refresh_from_db()
     assert user.first_name == "Mike"
     assert user.last_name == "O'Hare"
+    assert user.stt.name == stt.name
 
 
 @pytest.mark.django_db
 def test_set_profile_data_first_name_apostrophe(api_client, user):
     """Test profile data first name can be set with an apostrophe."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    stt = STT.objects.first()
+    response = api_client.patch(
         "/v1/users/set_profile/",
-        {"first_name": "Pat'Jack", "last_name": "Smith"},
+        {
+            "first_name": "Pat'Jack",
+            "last_name": "Smith",
+            "stt": {"id": stt.id},
+        },
+        format="json",
     )
     assert response.status_code == status.HTTP_200_OK
-    assert response.data == {"first_name": "Pat'Jack", "last_name": "Smith"}
+    assert response.data == {
+        "email": user.username,
+        "first_name": "Pat'Jack",
+        "last_name": "Smith",
+        "stt": {
+            "id": stt.id,
+            "type": stt.type,
+            "code": stt.code,
+            "name": stt.name,
+        },
+    }
     user.refresh_from_db()
     assert user.first_name == "Pat'Jack"
     assert user.last_name == "Smith"
+    assert user.stt.name == stt.name
 
 
 @pytest.mark.django_db
 def test_set_profile_data_empty_first_name(api_client, user):
     """Test profile data cannot be be set if first name is blank."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    response = api_client.patch(
         "/v1/users/set_profile/",
         {"first_name": "", "last_name": "Jones"},
     )
@@ -99,7 +143,7 @@ def test_set_profile_data_empty_first_name(api_client, user):
 def test_set_profile_data_empty_last_name(api_client, user):
     """Test profile data cannot be set last name is blank."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    response = api_client.patch(
         "/v1/users/set_profile/",
         {"first_name": "John", "last_name": ""},
     )
@@ -110,7 +154,7 @@ def test_set_profile_data_empty_last_name(api_client, user):
 def test_set_profile_data_empty_first_name_and_last_name(api_client, user):
     """Test profile data cannot be set if first and last name are blank."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    response = api_client.patch(
         "/v1/users/set_profile/",
         {"first_name": "", "last_name": ""},
     )
@@ -121,90 +165,192 @@ def test_set_profile_data_empty_first_name_and_last_name(api_client, user):
 def test_set_profile_data_special_last_name(api_client, user):
     """Test profile data can be set if last name has multipe special characters."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    stt = STT.objects.first()
+    response = api_client.patch(
         "/v1/users/set_profile/",
-        {"first_name": "John", "last_name": "Smith-O'Hare"},
+        {
+            "first_name": "John",
+            "last_name": "Smith-O'Hare",
+            "stt": {"id": stt.id},
+        },
+        format="json",
     )
     assert response.status_code == status.HTTP_200_OK
-    assert response.data == {"first_name": "John", "last_name": "Smith-O'Hare"}
+    assert response.data == {
+        "email": user.username,
+        "first_name": "John",
+        "last_name": "Smith-O'Hare",
+        "stt": {
+            "id": stt.id,
+            "type": stt.type,
+            "code": stt.code,
+            "name": stt.name,
+        },
+    }
     user.refresh_from_db()
     assert user.first_name == "John"
     assert user.last_name == "Smith-O'Hare"
+    assert user.stt.name == stt.name
 
 
 @pytest.mark.django_db
 def test_set_profile_data_special_first_name(api_client, user):
     """Test profile data can be set if first name has multiple special characters."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    stt = STT.objects.first()
+    response = api_client.patch(
         "/v1/users/set_profile/",
-        {"first_name": "John-Tom'", "last_name": "Jacobs"},
+        {
+            "first_name": "John-Tom'",
+            "last_name": "Jacobs",
+            "stt": {"id": stt.id},
+        },
+        format="json",
     )
     assert response.status_code == status.HTTP_200_OK
-    assert response.data == {"first_name": "John-Tom'", "last_name": "Jacobs"}
+    assert response.data == {
+        "email": user.username,
+        "first_name": "John-Tom'",
+        "last_name": "Jacobs",
+        "stt": {
+            "id": stt.id,
+            "type": stt.type,
+            "code": stt.code,
+            "name": stt.name,
+        },
+    }
     user.refresh_from_db()
     assert user.first_name == "John-Tom'"
     assert user.last_name == "Jacobs"
+    assert user.stt.name == stt.name
 
 
 @pytest.mark.django_db
 def test_set_profile_data_spaced_last_name(api_client, user):
     """Test profile data can be set if last name has a space."""
+    stt = STT.objects.first()
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    response = api_client.patch(
         "/v1/users/set_profile/",
-        {"first_name": "Joan", "last_name": "Mary Ann"},
+        {
+            "first_name": "Joan",
+            "last_name": "Mary Ann",
+            "stt": {"id": stt.id},
+        },
+        format="json",
     )
     assert response.status_code == status.HTTP_200_OK
-    assert response.data == {"first_name": "Joan", "last_name": "Mary Ann"}
+    assert response.data == {
+        "email": user.username,
+        "first_name": "Joan",
+        "last_name": "Mary Ann",
+        "stt": {
+            "id": stt.id,
+            "type": stt.type,
+            "code": stt.code,
+            "name": stt.name,
+        },
+    }
     user.refresh_from_db()
     assert user.first_name == "Joan"
     assert user.last_name == "Mary Ann"
+    assert user.stt.name == stt.name
 
 
 @pytest.mark.django_db
 def test_set_profile_data_spaced_first_name(api_client, user):
     """Test profile data can be set if first name has a space."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    stt = STT.objects.first()
+    response = api_client.patch(
         "/v1/users/set_profile/",
-        {"first_name": "John Jim", "last_name": "Smith"},
+        {
+            "first_name": "John Jim",
+            "last_name": "Smith",
+            "stt": {"id": stt.id},
+        },
+        format="json",
     )
     assert response.status_code == status.HTTP_200_OK
-    assert response.data == {"first_name": "John Jim", "last_name": "Smith"}
+    assert response.data == {
+        "email": user.username,
+        "first_name": "John Jim",
+        "last_name": "Smith",
+        "stt": {
+            "id": stt.id,
+            "type": stt.type,
+            "code": stt.code,
+            "name": stt.name,
+        },
+    }
     user.refresh_from_db()
     assert user.first_name == "John Jim"
     assert user.last_name == "Smith"
+    assert user.stt.name == stt.name
 
 
 @pytest.mark.django_db
 def test_set_profile_data_last_name_with_tilde_over_char(api_client, user):
     """Test profile data can be set if last name includes a tilde character."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    stt = STT.objects.first()
+    response = api_client.patch(
         "/v1/users/set_profile/",
-        {"first_name": "Max", "last_name": "Grecheñ"},
+        {
+            "first_name": "Max",
+            "last_name": "Grecheñ",
+            "stt": {"id": stt.id},
+        },
+        format="json",
     )
     assert response.status_code == status.HTTP_200_OK
-    assert response.data == {"first_name": "Max", "last_name": "Grecheñ"}
+    assert response.data == {
+        "email": user.username,
+        "first_name": "Max",
+        "last_name": "Grecheñ",
+        "stt": {
+            "id": stt.id,
+            "type": stt.type,
+            "code": stt.code,
+            "name": stt.name,
+        },
+    }
     user.refresh_from_db()
     assert user.first_name == "Max"
     assert user.last_name == "Grecheñ"
+    assert user.stt.name == stt.name
 
 
 @pytest.mark.django_db
 def test_set_profile_data_last_name_with_tilde(api_client, user):
     """Test profile data can be set if last name includes alternate tilde character."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post(
+    stt = STT.objects.first()
+    response = api_client.patch(
         "/v1/users/set_profile/",
-        {"first_name": "Max", "last_name": "Glen~"},
+        {
+            "first_name": "Max",
+            "last_name": "Glen~",
+            "stt": {"id": stt.id},
+        },
+        format="json",
     )
     assert response.status_code == status.HTTP_200_OK
-    assert response.data == {"first_name": "Max", "last_name": "Glen~"}
+    assert response.data == {
+        "email": user.username,
+        "first_name": "Max",
+        "last_name": "Glen~",
+        "stt": {
+            "id": stt.id,
+            "type": stt.type,
+            "code": stt.code,
+            "name": stt.name,
+        },
+    }
     user.refresh_from_db()
     assert user.first_name == "Max"
     assert user.last_name == "Glen~"
+    assert user.stt.name == stt.name
 
 
 @pytest.mark.django_db
@@ -213,20 +359,34 @@ def test_set_profile_data_extra_field_include_required(api_client, user):
     with pytest.raises(AttributeError):
         """This test will fail if it does not trigger an AttributeError exception"""
         api_client.login(username=user.username, password="test_password")
-        response = api_client.post(
+        stt = STT.objects.first()
+        response = api_client.patch(
             "/v1/users/set_profile/",
             {
                 "first_name": "Heather",
                 "last_name": "Class",
                 "middle_initial": "Unknown",
+                "stt": {"id": stt.id},
             },
+            format="json",
         )
         assert response.status_code == status.HTTP_200_OK
         """Test to ensure response data does not include unknown field"""
-        assert response.data == {"first_name": "Heather", "last_name": "Class"}
+        assert response.data == {
+            "email": user.username,
+            "first_name": "Heather",
+            "last_name": "Class",
+            "stt": {
+                "id": stt.id,
+                "type": stt.type,
+                "code": stt.code,
+                "name": stt.name,
+            },
+        }
         user.refresh_from_db()
         assert user.first_name == "Heather"
         assert user.last_name == "Class"
+        assert user.stt.name == stt.name
         """Test fails if AttributeError exception isn't thrown"""
         assert user.middle_name == "Unknown"
 
@@ -235,7 +395,12 @@ def test_set_profile_data_extra_field_include_required(api_client, user):
 def test_set_profile_data_missing_last_name_field(api_client, user):
     """Test profile data cannot be set if last name field is missing."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post("/v1/users/set_profile/", {"first_name": "Heather"})
+    response = api_client.patch(
+        "/v1/users/set_profile/",
+        {
+            "first_name": "Heather",
+        },
+    )
     assert response.status_code == status.HTTP_400_BAD_REQUEST
 
 
@@ -243,5 +408,10 @@ def test_set_profile_data_missing_last_name_field(api_client, user):
 def test_set_profile_data_missing_first_name_field(api_client, user):
     """Test profile data cannot be set if first name field is missing."""
     api_client.login(username=user.username, password="test_password")
-    response = api_client.post("/v1/users/set_profile/", {"last_name": "Heather"})
+    response = api_client.patch(
+        "/v1/users/set_profile/",
+        {
+            "last_name": "Heather",
+        },
+    )
     assert response.status_code == status.HTTP_400_BAD_REQUEST
diff --git a/tdrs-backend/tdpservice/users/test/test_auth_check.py b/tdrs-backend/tdpservice/users/test/test_auth_check.py
index 9fde7a388..cdc4fef18 100644
--- a/tdrs-backend/tdpservice/users/test/test_auth_check.py
+++ b/tdrs-backend/tdpservice/users/test/test_auth_check.py
@@ -3,13 +3,15 @@
 import pytest
 from django.urls import reverse
 from rest_framework import status
+from ..serializers import UserProfileSerializer
 
 
 @pytest.mark.django_db
-def test_auth_check_endpoint_with_no_user(api_client, user):
-    """If there is no user auth_check should return FORBIDDEN."""
+def test_auth_check_endpoint_with_no_user(api_client):
+    """If there is no user auth_check should return 200 with unauthorized message."""
     response = api_client.get(reverse("authorization-check"))
-    assert response.status_code == status.HTTP_403_FORBIDDEN
+    assert response.status_code == status.HTTP_200_OK
+    assert response.data["authenticated"] is False
 
 
 @pytest.mark.django_db
@@ -18,6 +20,8 @@ def test_auth_check_endpoint_with_authenticated_user(api_client, user):
     api_client.login(username=user.username, password="test_password")
     response = api_client.get(reverse("authorization-check"))
     assert response.status_code == status.HTTP_200_OK
+    assert user.is_authenticated is True
+    assert response.data["authenticated"] is True
 
 
 @pytest.mark.django_db
@@ -25,7 +29,8 @@ def test_auth_check_endpoint_with_bad_user(api_client):
     """If the user doesn't exist, auth_check should not authenticate."""
     api_client.login(username="nonexistent", password="test_password")
     response = api_client.get(reverse("authorization-check"))
-    assert response.status_code == status.HTTP_403_FORBIDDEN
+    assert response.status_code == status.HTTP_200_OK
+    assert response.data["authenticated"] is False
 
 
 @pytest.mark.django_db
@@ -33,7 +38,8 @@ def test_auth_check_endpoint_with_unauthorized_email(api_client):
     """If the user has an email address not in the system it should not authenticate."""
     api_client.login(username="bademail@example.com", password="test_password")
     response = api_client.get(reverse("authorization-check"))
-    assert response.status_code == status.HTTP_403_FORBIDDEN
+    assert response.status_code == status.HTTP_200_OK
+    assert response.data["authenticated"] is False
 
 
 @pytest.mark.django_db
@@ -51,3 +57,12 @@ def test_auth_check_returns_user_email(api_client, user):
     api_client.login(username=user.username, password="test_password")
     response = api_client.get(reverse("authorization-check"))
     assert response.data["user"]["email"] == user.username
+
+
+@pytest.mark.django_db
+def test_auth_check_returns_user_stt(api_client, user):
+    """If user is authenticated auth_check should return user data."""
+    api_client.login(username=user.username, password="test_password")
+    serializer = UserProfileSerializer(user)
+    response = api_client.get(reverse("authorization-check"))
+    assert response.data["user"]["stt"] == serializer.data["stt"]
diff --git a/tdrs-backend/tdpservice/users/urls.py b/tdrs-backend/tdpservice/users/urls.py
new file mode 100644
index 000000000..61273758e
--- /dev/null
+++ b/tdrs-backend/tdpservice/users/urls.py
@@ -0,0 +1,12 @@
+"""Routing for Users."""
+
+from rest_framework.routers import DefaultRouter
+from . import views
+
+router = DefaultRouter()
+
+router.register("", views.UserViewSet)
+
+urlpatterns = []
+
+urlpatterns += router.urls
diff --git a/tdrs-backend/tdpservice/users/views.py b/tdrs-backend/tdpservice/users/views.py
index 29a8036b9..faaf52318 100644
--- a/tdrs-backend/tdpservice/users/views.py
+++ b/tdrs-backend/tdpservice/users/views.py
@@ -11,7 +11,7 @@
 from django.utils import timezone
 from .serializers import (
     CreateUserSerializer,
-    SetUserProfileSerializer,
+    UserProfileSerializer,
     UserSerializer,
 )
 
@@ -26,7 +26,7 @@ class UserViewSet(
 ):
     """User accounts viewset."""
 
-    queryset = User.objects.all()
+    queryset = User.objects.select_related("stt")
 
     def get_permissions(self):
         """Get permissions for the viewset."""
@@ -40,10 +40,10 @@ def get_serializer_class(self):
         """Return the serializer class."""
         return {
             "create": CreateUserSerializer,
-            "set_profile": SetUserProfileSerializer,
+            "set_profile": UserProfileSerializer,
         }.get(self.action, UserSerializer)
 
-    @action(methods=["POST"], detail=False)
+    @action(methods=["PATCH"], detail=False)
     def set_profile(self, request, pk=None):
         """Set a user's profile data."""
         serializer = self.get_serializer(self.request.user, request.data)
diff --git a/tdrs-frontend/package.json b/tdrs-frontend/package.json
index 9fb3a5d73..7cf87738d 100755
--- a/tdrs-frontend/package.json
+++ b/tdrs-frontend/package.json
@@ -7,6 +7,7 @@
     "@fortawesome/free-solid-svg-icons": "^5.14.0",
     "@fortawesome/react-fontawesome": "^0.1.11",
     "axios": "^0.20.0",
+    "axios-cookiejar-support": "^1.0.1",
     "babel-eslint": "10",
     "classnames": "^2.2.6",
     "concurrently": "^5.3.0",
@@ -28,6 +29,7 @@
     "redux-oidc": "^4.0.0-beta1",
     "redux-thunk": "^2.3.0",
     "seamless-immutable": "^7.1.3",
+    "tough-cookie": "^4.0.0",
     "typescript": "^3.9.7",
     "uswds": "^2.9.0"
   },
diff --git a/tdrs-frontend/src/App.js b/tdrs-frontend/src/App.js
index adca6fad3..214d9cf03 100644
--- a/tdrs-frontend/src/App.js
+++ b/tdrs-frontend/src/App.js
@@ -17,7 +17,15 @@ import Footer from './components/Footer'
 function App() {
   return (
     <>
-      <a className="usa-skipnav" href="#main-content">
+      <a
+        className="usa-skipnav"
+        href="#main-content"
+        onKeyPress={(e) => {
+          if (e.charCode === 32) {
+            window.location.href = '#main-content'
+          }
+        }}
+      >
         Skip to main content
       </a>
       <GovBanner />
diff --git a/tdrs-frontend/src/App.test.js b/tdrs-frontend/src/App.test.js
index ea83b7d13..df45dac16 100644
--- a/tdrs-frontend/src/App.test.js
+++ b/tdrs-frontend/src/App.test.js
@@ -2,12 +2,68 @@ import React from 'react'
 import { shallow } from 'enzyme'
 
 import GovBanner from './components/GovBanner'
+import Header from './components/Header'
+import { Alert } from './components/Alert'
 
 import App from './App'
 
 describe('App.js', () => {
+  afterEach(() => {
+    window.location.href = ''
+  })
+
   it('renders the Gov Banner', () => {
     const wrapper = shallow(<App />)
     expect(wrapper.find(GovBanner)).toExist()
   })
+
+  it('renders the Header', () => {
+    const wrapper = shallow(<App />)
+    expect(wrapper.find(Header)).toExist()
+  })
+
+  it('renders the Alert', () => {
+    const wrapper = shallow(<App />)
+    expect(wrapper.find(Alert)).toExist()
+  })
+
+  it('should redirect to #main-content when space bar is pressed on "skip links" element', () => {
+    const url = '#main-content'
+
+    global.window = Object.create(window)
+    Object.defineProperty(window, 'location', {
+      value: {
+        href: url,
+      },
+    })
+
+    const wrapper = shallow(<App />)
+
+    const skipLink = wrapper.find('.usa-skipnav')
+    skipLink.simulate('keyPress', {
+      charCode: 32,
+    })
+
+    expect(window.location.href).toEqual(url)
+  })
+
+  it('should do nothing if any key besides space bar is pressed', () => {
+    const url = ''
+
+    global.window = Object.create(window)
+    Object.defineProperty(window, 'location', {
+      value: {
+        href: url,
+      },
+    })
+
+    const wrapper = shallow(<App />)
+
+    const skipLink = wrapper.find('.usa-skipnav')
+    skipLink.simulate('keyPress', {
+      charCode: 25,
+    })
+
+    expect(window.location.href).toEqual(url)
+  })
 })
diff --git a/tdrs-frontend/src/__mocks__/axios.js b/tdrs-frontend/src/__mocks__/axios.js
index 6ce7201e2..5ab0ebdc6 100644
--- a/tdrs-frontend/src/__mocks__/axios.js
+++ b/tdrs-frontend/src/__mocks__/axios.js
@@ -1,10 +1,13 @@
 /**
  * Mocks axios GET requests.
  */
-export default {
-  get: jest.fn(() =>
-    Promise.resolve({
-      data: {},
-    })
-  ),
-}
+
+const mockAxios = jest.genMockFromModule('axios')
+mockAxios.create = jest.fn(() => mockAxios)
+mockAxios.get = jest.fn(() =>
+  Promise.resolve({
+    data: {},
+  })
+)
+
+export default mockAxios
diff --git a/tdrs-frontend/src/actions/auth.js b/tdrs-frontend/src/actions/auth.js
index 677581992..c9dbfdd01 100644
--- a/tdrs-frontend/src/actions/auth.js
+++ b/tdrs-frontend/src/actions/auth.js
@@ -1,4 +1,4 @@
-import axios from 'axios'
+import utils from '../utils'
 
 export const FETCH_AUTH = 'FETCH_AUTH'
 export const SET_AUTH = 'SET_AUTH'
@@ -35,15 +35,20 @@ export const CLEAR_AUTH = 'CLEAR_AUTH'
  * the authentication data in the Redux store is cleared, and the user
  * is considered 'logged out', and can no longer access private routes.
  */
+
 export const fetchAuth = () => async (dispatch) => {
   dispatch({ type: FETCH_AUTH })
   try {
     const URL = `${process.env.REACT_APP_BACKEND_URL}/auth_check`
+    const instance = utils.axiosInstance
     const {
-      data: { user },
-    } = await axios.get(URL, {
+      data: { user, csrf },
+    } = await instance.get(URL, {
       withCredentials: true,
     })
+
+    instance.defaults.headers['X-CSRFToken'] = csrf
+
     if (user) {
       dispatch({ type: SET_AUTH, payload: { user } })
     } else {
diff --git a/tdrs-frontend/src/actions/requestAccess.js b/tdrs-frontend/src/actions/requestAccess.js
new file mode 100644
index 000000000..648b6afb7
--- /dev/null
+++ b/tdrs-frontend/src/actions/requestAccess.js
@@ -0,0 +1,33 @@
+// import axios from 'axios'
+import { SET_AUTH } from './auth'
+import utils from '../utils'
+
+export const PATCH_REQUEST_ACCESS = 'PATCH_REQUEST_ACCESS'
+export const SET_REQUEST_ACCESS = 'SET_REQUEST_ACCESS'
+export const SET_REQUEST_ACCESS_ERROR = 'SET_REQUEST_ACCESS_ERROR'
+export const CLEAR_REQUEST_ACCESS = 'CLEAR_REQUEST_ACCESS'
+
+export const requestAccess = ({ firstName, lastName, stt: { id } }) => async (
+  dispatch
+) => {
+  dispatch({ type: PATCH_REQUEST_ACCESS })
+  try {
+    const URL = `${process.env.REACT_APP_BACKEND_URL}/users/set_profile/`
+    const user = { first_name: firstName, last_name: lastName, stt: { id } }
+    const { data } = await (await utils.axiosInstance).patch(URL, user, {
+      withCredentials: true,
+    })
+
+    if (data) {
+      dispatch({ type: SET_REQUEST_ACCESS })
+      dispatch({
+        type: SET_AUTH,
+        payload: { user: data },
+      })
+    } else {
+      dispatch({ type: CLEAR_REQUEST_ACCESS })
+    }
+  } catch (error) {
+    dispatch({ type: SET_REQUEST_ACCESS_ERROR, payload: { error } })
+  }
+}
diff --git a/tdrs-frontend/src/actions/requestAccess.test.js b/tdrs-frontend/src/actions/requestAccess.test.js
new file mode 100644
index 000000000..215e8211d
--- /dev/null
+++ b/tdrs-frontend/src/actions/requestAccess.test.js
@@ -0,0 +1,77 @@
+import axios from 'axios'
+import thunk from 'redux-thunk'
+import configureStore from 'redux-mock-store'
+
+import {
+  requestAccess,
+  PATCH_REQUEST_ACCESS,
+  SET_REQUEST_ACCESS,
+  SET_REQUEST_ACCESS_ERROR,
+  CLEAR_REQUEST_ACCESS,
+} from './requestAccess'
+
+describe('actions/requestAccess.js', () => {
+  const mockStore = configureStore([thunk])
+
+  it('sends a PATCH request when requestAccess is called', async () => {
+    axios.patch = jest.fn().mockResolvedValue({
+      data: {
+        first_name: 'harry',
+        last_name: 'potter',
+        stt: {
+          code: 'AK',
+          id: 2,
+          name: 'Alaska',
+          type: 'state',
+        },
+      },
+    })
+    const profileInfo = {
+      firstName: 'harry',
+      lastName: 'potter',
+      stt: { id: 1 },
+    }
+
+    const store = mockStore()
+
+    await store.dispatch(requestAccess(profileInfo))
+
+    const actions = store.getActions()
+    expect(actions[0].type).toBe(PATCH_REQUEST_ACCESS)
+    expect(actions[1].type).toBe(SET_REQUEST_ACCESS)
+  })
+
+  it('clears the request access state if there is no data returned from the API', async () => {
+    axios.patch = jest.fn().mockResolvedValue({})
+    const profileInfo = {
+      firstName: 'harry',
+      lastName: 'potter',
+      stt: { id: 1 },
+    }
+
+    const store = mockStore()
+
+    await store.dispatch(requestAccess(profileInfo))
+
+    const actions = store.getActions()
+    expect(actions[0].type).toBe(PATCH_REQUEST_ACCESS)
+    expect(actions[1].type).toBe(CLEAR_REQUEST_ACCESS)
+  })
+
+  it('dispatches an error to the store if the API errors', async () => {
+    axios.patch = jest.fn().mockRejectedValue(new Error('threw an error'))
+    const profileInfo = {
+      firstName: 'harry',
+      lastName: 'potter',
+      stt: { id: 1 },
+    }
+
+    const store = mockStore()
+
+    await store.dispatch(requestAccess(profileInfo))
+
+    const actions = store.getActions()
+    expect(actions[0].type).toBe(PATCH_REQUEST_ACCESS)
+    expect(actions[1].type).toBe(SET_REQUEST_ACCESS_ERROR)
+  })
+})
diff --git a/tdrs-frontend/src/actions/stts.js b/tdrs-frontend/src/actions/sttList.js
similarity index 87%
rename from tdrs-frontend/src/actions/stts.js
rename to tdrs-frontend/src/actions/sttList.js
index d1181bb45..6c162cf1a 100644
--- a/tdrs-frontend/src/actions/stts.js
+++ b/tdrs-frontend/src/actions/sttList.js
@@ -29,7 +29,7 @@ export const CLEAR_STTS = 'CLEAR_STTS'
  * If an API error occurs, SET_STTS_ERROR is dispatched
  * and the error is set in the Redux store.
  */
-export const fetchStts = () => async (dispatch) => {
+export const fetchSttList = () => async (dispatch) => {
   dispatch({ type: FETCH_STTS })
   try {
     const URL = `${process.env.REACT_APP_BACKEND_URL}/stts/alpha`
@@ -38,6 +38,12 @@ export const fetchStts = () => async (dispatch) => {
     })
 
     if (data) {
+      data.forEach((item, i) => {
+        if (item.name === 'Federal Government') {
+          data.splice(i, 1)
+          data.unshift(item)
+        }
+      })
       dispatch({ type: SET_STTS, payload: { data } })
     } else {
       dispatch({ type: CLEAR_STTS })
diff --git a/tdrs-frontend/src/actions/stts.test.js b/tdrs-frontend/src/actions/sttList.test.js
similarity index 57%
rename from tdrs-frontend/src/actions/stts.test.js
rename to tdrs-frontend/src/actions/sttList.test.js
index 25ff23af8..c7db739f0 100644
--- a/tdrs-frontend/src/actions/stts.test.js
+++ b/tdrs-frontend/src/actions/sttList.test.js
@@ -3,12 +3,12 @@ import thunk from 'redux-thunk'
 import configureStore from 'redux-mock-store'
 
 import {
-  fetchStts,
+  fetchSttList,
   FETCH_STTS,
   SET_STTS,
   SET_STTS_ERROR,
   CLEAR_STTS,
-} from './stts'
+} from './sttList'
 
 describe('actions/stts.js', () => {
   const mockStore = configureStore([thunk])
@@ -21,7 +21,7 @@ describe('actions/stts.js', () => {
     )
     const store = mockStore()
 
-    await store.dispatch(fetchStts())
+    await store.dispatch(fetchSttList())
 
     const actions = store.getActions()
     expect(actions[0].type).toBe(FETCH_STTS)
@@ -31,11 +31,43 @@ describe('actions/stts.js', () => {
     ])
   })
 
+  it('fetches a list of stts and puts "Federal Government" as the first option if it exists, when the user is authenticated', async () => {
+    axios.get.mockImplementationOnce(() =>
+      Promise.resolve({
+        data: [
+          { id: 1, type: 'state', code: 'AL', name: 'Alabama' },
+          {
+            id: 57,
+            type: 'territory',
+            code: 'US',
+            name: 'Federal Government',
+          },
+        ],
+      })
+    )
+    const store = mockStore()
+
+    await store.dispatch(fetchSttList())
+
+    const actions = store.getActions()
+    expect(actions[0].type).toBe(FETCH_STTS)
+    expect(actions[1].type).toBe(SET_STTS)
+    expect(actions[1].payload.data).toStrictEqual([
+      {
+        id: 57,
+        type: 'territory',
+        code: 'US',
+        name: 'Federal Government',
+      },
+      { id: 1, type: 'state', code: 'AL', name: 'Alabama' },
+    ])
+  })
+
   it('clears the stt state, if user is not authenticated', async () => {
     axios.get.mockImplementationOnce(() => Promise.resolve({ test: {} }))
     const store = mockStore()
 
-    await store.dispatch(fetchStts())
+    await store.dispatch(fetchSttList())
 
     const actions = store.getActions()
     expect(actions[0].type).toBe(FETCH_STTS)
@@ -48,7 +80,7 @@ describe('actions/stts.js', () => {
     )
     const store = mockStore()
 
-    await store.dispatch(fetchStts())
+    await store.dispatch(fetchSttList())
 
     const actions = store.getActions()
     expect(actions[0].type).toBe(FETCH_STTS)
diff --git a/tdrs-frontend/src/components/EditProfile/EditProfile.jsx b/tdrs-frontend/src/components/EditProfile/EditProfile.jsx
index da5627245..4b7229321 100644
--- a/tdrs-frontend/src/components/EditProfile/EditProfile.jsx
+++ b/tdrs-frontend/src/components/EditProfile/EditProfile.jsx
@@ -1,7 +1,14 @@
 import React, { useState, useEffect, useRef } from 'react'
 import { useDispatch, useSelector } from 'react-redux'
-import { fetchStts } from '../../actions/stts'
+import { Redirect } from 'react-router-dom'
+
+import { fetchSttList } from '../../actions/sttList'
+import { requestAccess } from '../../actions/requestAccess'
+import { setAlert } from '../../actions/alert'
+import { ALERT_ERROR } from '../Alert'
+
 import Button from '../Button'
+import FormGroup from '../FormGroup'
 import ComboBox from '../ComboBox'
 
 /**
@@ -44,7 +51,13 @@ export const validation = (fieldName, fieldValue) => {
  */
 function EditProfile() {
   const errorRef = useRef(null)
-  const stts = useSelector((state) => state.stts.stts)
+  const sttList = useSelector((state) => state.stts.sttList)
+  const requestedAccess = useSelector(
+    (state) => state.requestAccess.requestAccess
+  )
+  const requestAccessError = useSelector((state) => state.requestAccess.error)
+  const sttAssigned = useSelector((state) => state.auth.user.stt)
+
   const dispatch = useDispatch()
 
   const [profileInfo, setProfileInfo] = useState({
@@ -58,15 +71,24 @@ function EditProfile() {
   const [touched, setTouched] = useState({})
 
   useEffect(() => {
-    dispatch(fetchStts())
-  }, [dispatch])
+    if (requestAccessError) {
+      dispatch(
+        setAlert({ heading: requestAccessError.message, type: ALERT_ERROR })
+      )
+    }
+    dispatch(fetchSttList())
+  }, [dispatch, requestAccessError])
 
   const setStt = (sttName) => {
-    let selectedStt = stts.find((stt) => sttName === stt.name.toLowerCase())
+    let selectedStt = sttList.find((stt) => sttName === stt.name.toLowerCase())
     if (!selectedStt) selectedStt = ''
     setProfileInfo({ ...profileInfo, stt: selectedStt })
   }
 
+  const handleChange = ({ name, value }) => {
+    setProfileInfo({ ...profileInfo, [name]: value })
+  }
+
   const handleBlur = (evt) => {
     const { name, value } = evt.target
 
@@ -79,7 +101,6 @@ function EditProfile() {
       ...(error && { [name]: touched[name] && error }),
     })
   }
-
   const handleSubmit = (evt) => {
     evt.preventDefault()
 
@@ -106,13 +127,23 @@ function EditProfile() {
     )
     setErrors(formValidation.errors)
     setTouched(formValidation.touched)
-    setTimeout(() => errorRef.current.focus(), 0)
+
+    if (!Object.values(formValidation.errors).length) {
+      return dispatch(requestAccess(profileInfo))
+    }
+    return setTimeout(() => errorRef.current.focus(), 0)
+  }
+
+  if (requestedAccess && sttAssigned) {
+    return <Redirect to="/request" />
   }
 
   return (
     <div className="grid-container">
-      <h1 className="request-access-header font-serif-2xl">Request Access</h1>
-      <p className="request-access-secondary">
+      <h1 className="font-serif-2xl margin-bottom-0 text-normal">
+        Request Access
+      </h1>
+      <p className="margin-top-1 margin-bottom-4">
         Please enter your information to request access from an OFA
         administrator
       </p>
@@ -129,70 +160,22 @@ function EditProfile() {
         >
           There are {Object.keys(errors).length} errors in this form
         </div>
-        <div
-          className={`usa-form-group ${
-            errors.firstName ? 'usa-form-group--error' : ''
-          }`}
-        >
-          <label
-            className={`usa-label ${
-              errors.firstName ? 'usa-label--error' : ''
-            }`}
-            htmlFor="firstName"
-          >
-            First Name (required)
-            {errors.firstName && (
-              <span className="usa-error-message" id="first-name-error-message">
-                {errors.firstName}
-              </span>
-            )}
-            <input
-              className={`usa-input ${
-                errors.firstName ? 'usa-input--error' : ''
-              }`}
-              id="firstName"
-              name="firstName"
-              type="text"
-              aria-required="true"
-              value={profileInfo.firstName}
-              onChange={({ target: { value } }) => {
-                setProfileInfo({ ...profileInfo, firstName: value })
-              }}
-              onBlur={handleBlur}
-            />
-          </label>
-        </div>
-        <div
-          className={`usa-form-group ${
-            errors.lastName ? 'usa-form-group--error' : ''
-          }`}
-        >
-          <label
-            className={`usa-label ${errors.lastName ? 'usa-label--error' : ''}`}
-            htmlFor="lastName"
-          >
-            Last Name (required)
-            {errors.lastName && (
-              <span className="usa-error-message" id="last-name-error-message">
-                {errors.lastName}
-              </span>
-            )}
-            <input
-              className={`usa-input ${
-                errors.lastName ? 'usa-input--error' : ''
-              }`}
-              id="lastName"
-              name="lastName"
-              type="text"
-              aria-required="true"
-              value={profileInfo.lastName}
-              onChange={({ target: { value } }) => {
-                setProfileInfo({ ...profileInfo, lastName: value })
-              }}
-              onBlur={handleBlur}
-            />
-          </label>
-        </div>
+        <FormGroup
+          error={errors.firstName}
+          name="firstName"
+          label="First Name"
+          inputValue={profileInfo.firstName}
+          handleChange={handleChange}
+          handleBlur={handleBlur}
+        />
+        <FormGroup
+          error={errors.lastName}
+          name="lastName"
+          label="Last Name"
+          inputValue={profileInfo.lastName}
+          handleChange={handleChange}
+          handleBlur={handleBlur}
+        />
         <div
           className={`usa-form-group ${
             errors.stt ? 'usa-form-group--error' : ''
@@ -211,7 +194,7 @@ function EditProfile() {
             placeholder="- Select or Search -"
           >
             <option value="">Select an STT</option>
-            {stts.map((stt) => (
+            {sttList.map((stt) => (
               <option
                 className="sttOption"
                 key={stt.id}
diff --git a/tdrs-frontend/src/components/EditProfile/EditProfile.test.js b/tdrs-frontend/src/components/EditProfile/EditProfile.test.js
index a6a874977..1326c8099 100644
--- a/tdrs-frontend/src/components/EditProfile/EditProfile.test.js
+++ b/tdrs-frontend/src/components/EditProfile/EditProfile.test.js
@@ -5,10 +5,18 @@ import { Provider } from 'react-redux'
 import configureStore from 'redux-mock-store'
 import { fireEvent, render } from '@testing-library/react'
 
+import { MemoryRouter, Redirect } from 'react-router-dom'
 import EditProfile, { validation } from './EditProfile'
 
 describe('EditProfile', () => {
-  const initialState = { stts: { stts: [], loading: false } }
+  const initialState = {
+    auth: { authenticated: true, user: { email: 'hi@bye.com' } },
+    stts: { sttList: [], loading: false },
+    requestAccess: {
+      requestAccess: false,
+      loading: false,
+    },
+  }
   const mockStore = configureStore([thunk])
 
   it('should have a card with header Request Access', () => {
@@ -101,7 +109,7 @@ describe('EditProfile', () => {
     const store = mockStore({
       ...initialState,
       stts: {
-        stts: [
+        sttList: [
           {
             id: 1,
             type: 'state',
@@ -138,7 +146,7 @@ describe('EditProfile', () => {
     const store = mockStore({
       ...initialState,
       stts: {
-        stts: [
+        sttList: [
           {
             id: 1,
             type: 'state',
@@ -186,7 +194,7 @@ describe('EditProfile', () => {
     const store = mockStore({
       ...initialState,
       stts: {
-        stts: [
+        sttList: [
           {
             id: 1,
             type: 'state',
@@ -304,7 +312,7 @@ describe('EditProfile', () => {
     const store = mockStore({
       ...initialState,
       stts: {
-        stts: [
+        sttList: [
           {
             id: 1,
             type: 'state',
@@ -375,7 +383,7 @@ describe('EditProfile', () => {
     const store = mockStore({
       ...initialState,
       stts: {
-        stts: [
+        sttList: [
           {
             id: 1,
             type: 'state',
@@ -416,7 +424,7 @@ describe('EditProfile', () => {
     const store = mockStore({
       ...initialState,
       stts: {
-        stts: [
+        sttList: [
           {
             id: 1,
             type: 'state',
@@ -457,7 +465,7 @@ describe('EditProfile', () => {
     const store = mockStore({
       ...initialState,
       stts: {
-        stts: [
+        sttList: [
           {
             id: 1,
             type: 'state',
@@ -493,4 +501,156 @@ describe('EditProfile', () => {
 
     expect(select.instance().value).toEqual('')
   })
+
+  it('routes "/edit-profile" to the Request page when user has requested access', () => {
+    const store = mockStore({
+      ...initialState,
+      auth: {
+        ...initialState.auth,
+        user: {
+          stt: {
+            id: 6,
+            type: 'state',
+            code: 'CO',
+            name: 'Colorado',
+          },
+        },
+      },
+      requestAccess: {
+        ...initialState.requestAccess,
+        requestAccess: true,
+      },
+      stts: {
+        sttList: [
+          {
+            id: 1,
+            type: 'state',
+            code: 'AL',
+            name: 'Alabama',
+          },
+          {
+            id: 2,
+            type: 'state',
+            code: 'AK',
+            name: 'Alaska',
+          },
+          {
+            id: 140,
+            type: 'tribe',
+            code: 'AK',
+            name: 'Aleutian/Pribilof Islands Association, Inc.',
+          },
+        ],
+      },
+    })
+    const wrapper = mount(
+      <Provider store={store}>
+        <MemoryRouter>
+          <EditProfile />
+        </MemoryRouter>
+      </Provider>
+    )
+
+    expect(wrapper).toContainReact(<Redirect to="/request" />)
+  })
+
+  it('should dispatch "requestAccess" when form is submitted', () => {
+    const store = mockStore({
+      ...initialState,
+      stts: {
+        sttList: [
+          {
+            id: 1,
+            type: 'state',
+            code: 'AL',
+            name: 'Alabama',
+          },
+          {
+            id: 2,
+            type: 'state',
+            code: 'AK',
+            name: 'Alaska',
+          },
+          {
+            id: 140,
+            type: 'tribe',
+            code: 'AK',
+            name: 'Aleutian/Pribilof Islands Association, Inc.',
+          },
+        ],
+      },
+    })
+    const origDispatch = store.dispatch
+    store.dispatch = jest.fn(origDispatch)
+    const wrapper = mount(
+      <Provider store={store}>
+        <EditProfile />
+      </Provider>
+    )
+
+    const firstNameInput = wrapper.find('#firstName')
+    firstNameInput.simulate('change', {
+      target: { value: 'harry', name: 'firstName' },
+    })
+
+    const lastNameInput = wrapper.find('#lastName')
+    lastNameInput.simulate('change', {
+      target: { name: 'lastName', value: 'potter' },
+    })
+
+    const select = wrapper.find('.usa-select')
+    select.simulate('change', {
+      target: { name: 'stt', value: 'alaska' },
+    })
+
+    expect(store.dispatch).toHaveBeenCalledTimes(1)
+
+    const form = wrapper.find('.usa-form').hostNodes()
+    form.simulate('submit', {
+      preventDefault: () => {},
+    })
+
+    expect(store.dispatch).toHaveBeenCalledTimes(2)
+  })
+
+  it('should dispatch "setAlert" when form is submitted and there is an error', () => {
+    const store = mockStore({
+      ...initialState,
+      requestAccess: {
+        ...initialState.requestAccess,
+        error: { message: 'This request failed' },
+      },
+      stts: {
+        sttList: [
+          {
+            id: 1,
+            type: 'state',
+            code: 'AL',
+            name: 'Alabama',
+          },
+          {
+            id: 2,
+            type: 'state',
+            code: 'AK',
+            name: 'Alaska',
+          },
+          {
+            id: 140,
+            type: 'tribe',
+            code: 'AK',
+            name: 'Aleutian/Pribilof Islands Association, Inc.',
+          },
+        ],
+      },
+    })
+    const origDispatch = store.dispatch
+    store.dispatch = jest.fn(origDispatch)
+
+    mount(
+      <Provider store={store}>
+        <EditProfile />
+      </Provider>
+    )
+    expect(store.dispatch).toHaveBeenCalledTimes(2)
+  })
 })
diff --git a/tdrs-frontend/src/components/FormGroup/FormGroup.jsx b/tdrs-frontend/src/components/FormGroup/FormGroup.jsx
new file mode 100644
index 000000000..15c1daac1
--- /dev/null
+++ b/tdrs-frontend/src/components/FormGroup/FormGroup.jsx
@@ -0,0 +1,59 @@
+import React from 'react'
+import PropTypes from 'prop-types'
+
+function FormGroup({
+  error,
+  label,
+  name,
+  inputValue,
+  handleChange,
+  handleBlur,
+}) {
+  return (
+    <div className={`usa-form-group ${error ? 'usa-form-group--error' : ''}`}>
+      <label
+        className={`usa-label ${error ? 'usa-label--error' : ''}`}
+        htmlFor={name}
+      >
+        {label} (required)
+        {error && (
+          <span
+            className="usa-error-message"
+            id={`${name}-error-message`}
+            role="alert"
+          >
+            {error}
+          </span>
+        )}
+        <input
+          className={`usa-input ${error ? 'usa-input--error' : ''}`}
+          id={name}
+          name={name}
+          type="text"
+          aria-required="true"
+          value={inputValue}
+          onChange={({ target: { value } }) => {
+            handleChange({ name, value })
+          }}
+          onBlur={handleBlur}
+        />
+      </label>
+    </div>
+  )
+}
+
+FormGroup.propTypes = {
+  error: PropTypes.string,
+  label: PropTypes.string.isRequired,
+  name: PropTypes.string.isRequired,
+  inputValue: PropTypes.string,
+  handleChange: PropTypes.func.isRequired,
+  handleBlur: PropTypes.func.isRequired,
+}
+
+FormGroup.defaultProps = {
+  error: '',
+  inputValue: '',
+}
+
+export default FormGroup
diff --git a/tdrs-frontend/src/components/FormGroup/index.js b/tdrs-frontend/src/components/FormGroup/index.js
new file mode 100644
index 000000000..aa84c0266
--- /dev/null
+++ b/tdrs-frontend/src/components/FormGroup/index.js
@@ -0,0 +1,3 @@
+import FormGroup from './FormGroup'
+
+export default FormGroup
diff --git a/tdrs-frontend/src/components/Request/Request.jsx b/tdrs-frontend/src/components/Request/Request.jsx
new file mode 100644
index 000000000..fbe0a7a89
--- /dev/null
+++ b/tdrs-frontend/src/components/Request/Request.jsx
@@ -0,0 +1,34 @@
+import React from 'react'
+import { FontAwesomeIcon } from '@fortawesome/react-fontawesome'
+import { faSignOutAlt } from '@fortawesome/free-solid-svg-icons'
+import Button from '../Button'
+
+function Request() {
+  const signOut = (e) => {
+    e.preventDefault()
+    window.location.href = `${process.env.REACT_APP_BACKEND_URL}/logout/oidc`
+  }
+
+  return (
+    <div className="grid-container margin-top-3">
+      <div className="maxw-mobile-lg">
+        <h1 className="font-serif-2xl margin-bottom-0 text-normal">
+          Request Submitted
+        </h1>
+        <p className="margin-top-1 margin-bottom-4">
+          An administrator will be in touch soon to confirm your access!
+        </p>
+        <Button
+          className="width-full request-access-button"
+          type="button"
+          onClick={signOut}
+        >
+          <FontAwesomeIcon className="margin-right-1" icon={faSignOutAlt} />
+          Sign Out
+        </Button>
+      </div>
+    </div>
+  )
+}
+
+export default Request
diff --git a/tdrs-frontend/src/components/Request/Request.test.js b/tdrs-frontend/src/components/Request/Request.test.js
new file mode 100644
index 000000000..2b4727a4e
--- /dev/null
+++ b/tdrs-frontend/src/components/Request/Request.test.js
@@ -0,0 +1,54 @@
+import React from 'react'
+import { shallow } from 'enzyme'
+
+import Request from '.'
+import Button from '../Button'
+
+describe('Request', () => {
+  it('should have an h1 with "Request Submitted"', () => {
+    const wrapper = shallow(<Request />)
+
+    const h1 = wrapper.find('h1')
+
+    expect(h1).toExist()
+    expect(h1.text()).toEqual('Request Submitted')
+  })
+
+  it('should have a subheading with "An administrator will be in touch soon to confirm your access!"', () => {
+    const wrapper = shallow(<Request />)
+
+    const p = wrapper.find('p')
+
+    expect(p).toExist()
+    expect(p.text()).toEqual(
+      'An administrator will be in touch soon to confirm your access!'
+    )
+  })
+
+  it('should have a sign out button', () => {
+    const wrapper = shallow(<Request />)
+
+    const button = wrapper.find(Button)
+
+    expect(button).toExist()
+  })
+
+  it('should sign out when the sign out button is clicked', () => {
+    const url = 'http://localhost:8080/v1/logout/oidc'
+    global.window = Object.create(window)
+    Object.defineProperty(window, 'location', {
+      value: {
+        href: url,
+      },
+    })
+    const wrapper = shallow(<Request />)
+
+    const button = wrapper.find(Button)
+
+    button.simulate('click', {
+      preventDefault: () => {},
+    })
+
+    expect(window.location.href).toEqual(url)
+  })
+})
diff --git a/tdrs-frontend/src/components/Request/index.js b/tdrs-frontend/src/components/Request/index.js
new file mode 100644
index 000000000..29b01605b
--- /dev/null
+++ b/tdrs-frontend/src/components/Request/index.js
@@ -0,0 +1,3 @@
+import Request from './Request'
+
+export default Request
diff --git a/tdrs-frontend/src/components/Routes/Routes.js b/tdrs-frontend/src/components/Routes/Routes.js
index a5b3fb07c..d82a41c36 100644
--- a/tdrs-frontend/src/components/Routes/Routes.js
+++ b/tdrs-frontend/src/components/Routes/Routes.js
@@ -4,6 +4,7 @@ import SplashPage from '../SplashPage/SplashPage'
 import EditProfile from '../EditProfile'
 import PrivateRoute from '../PrivateRoute'
 import LoginCallback from '../LoginCallback'
+import Request from '../Request'
 
 /**
  * This component renters the routes for the app.
@@ -22,6 +23,9 @@ const Routes = () => {
       <PrivateRoute exact path="/edit-profile">
         <EditProfile />
       </PrivateRoute>
+      <PrivateRoute exact path="/request">
+        <Request />
+      </PrivateRoute>
     </Switch>
   )
 }
diff --git a/tdrs-frontend/src/components/Routes/Routes.test.js b/tdrs-frontend/src/components/Routes/Routes.test.js
index 7caa14d0d..36a5a14a2 100644
--- a/tdrs-frontend/src/components/Routes/Routes.test.js
+++ b/tdrs-frontend/src/components/Routes/Routes.test.js
@@ -15,7 +15,12 @@ describe('Routes.js', () => {
   it('routes "/" to the SplashPage page when user not authenticated', () => {
     const store = mockStore({
       auth: { authenticated: false },
-      stts: { stts: [], loading: false },
+      stts: { sttList: [], loading: false },
+      requestAccess: {
+        requestAccess: false,
+        loading: false,
+        user: {},
+      },
     })
     const wrapper = mount(
       <Provider store={store}>
@@ -31,7 +36,12 @@ describe('Routes.js', () => {
   it('routes "/" to the Edit-Profile page when user is authenticated', () => {
     const store = mockStore({
       auth: { authenticated: true, user: { email: 'hi@bye.com' } },
-      stts: { stts: [], loading: false },
+      stts: { sttList: [], loading: false },
+      requestAccess: {
+        requestAccess: false,
+        loading: false,
+        user: {},
+      },
     })
     const wrapper = mount(
       <Provider store={store}>
diff --git a/tdrs-frontend/src/index.js b/tdrs-frontend/src/index.js
index fba2bf925..577b9c93b 100644
--- a/tdrs-frontend/src/index.js
+++ b/tdrs-frontend/src/index.js
@@ -1,5 +1,6 @@
 import React from 'react'
 import ReactDOM from 'react-dom'
+import axios from 'axios'
 
 import { ConnectedRouter as Router } from 'connected-react-router'
 import { Provider } from 'react-redux'
@@ -11,6 +12,10 @@ import App from './App'
 import 'uswds/dist/js/uswds'
 import './index.scss'
 
+axios.defaults.xsrfCookieName = 'csrftoken'
+axios.defaults.xsrfHeaderName = 'X-CSRFToken'
+axios.defaults.withCredentials = true
+
 const store = configureStore()
 store.dispatch(fetchAuth())
 
diff --git a/tdrs-frontend/src/reducers/auth.js b/tdrs-frontend/src/reducers/auth.js
index 2d016a487..4709e3aac 100644
--- a/tdrs-frontend/src/reducers/auth.js
+++ b/tdrs-frontend/src/reducers/auth.js
@@ -32,7 +32,7 @@ const auth = (state = initialState, action) => {
         ...state,
         loading: false,
         authenticated: true,
-        user,
+        user: { ...state.user, ...user },
       }
     }
     case SET_AUTH_ERROR: {
diff --git a/tdrs-frontend/src/reducers/index.js b/tdrs-frontend/src/reducers/index.js
index 5a39ddc4e..96752162c 100644
--- a/tdrs-frontend/src/reducers/index.js
+++ b/tdrs-frontend/src/reducers/index.js
@@ -2,7 +2,8 @@ import { combineReducers } from 'redux'
 import { connectRouter } from 'connected-react-router'
 import alert from './alert'
 import auth from './auth'
-import stts from './stts'
+import stts from './sttList'
+import requestAccess from './requestAccess'
 
 /**
  * Combines all store reducers
@@ -14,6 +15,7 @@ const rootReducer = (history) =>
     alert,
     auth,
     stts,
+    requestAccess,
   })
 
 export default rootReducer
diff --git a/tdrs-frontend/src/reducers/requestAccess.js b/tdrs-frontend/src/reducers/requestAccess.js
new file mode 100644
index 000000000..bd3e3e393
--- /dev/null
+++ b/tdrs-frontend/src/reducers/requestAccess.js
@@ -0,0 +1,38 @@
+import {
+  PATCH_REQUEST_ACCESS,
+  SET_REQUEST_ACCESS,
+  SET_REQUEST_ACCESS_ERROR,
+  CLEAR_REQUEST_ACCESS,
+} from '../actions/requestAccess'
+
+const initialState = {
+  requestAccess: false,
+  loading: false,
+}
+
+const requestAccess = (state = initialState, action) => {
+  const { type, payload = {} } = action
+  switch (type) {
+    case PATCH_REQUEST_ACCESS:
+      return { ...state, loading: true }
+    case SET_REQUEST_ACCESS:
+      return {
+        ...state,
+        loading: false,
+        requestAccess: true,
+      }
+    case SET_REQUEST_ACCESS_ERROR: {
+      const { error } = payload
+      return {
+        ...initialState,
+        error,
+      }
+    }
+    case CLEAR_REQUEST_ACCESS:
+      return initialState
+    default:
+      return state
+  }
+}
+
+export default requestAccess
diff --git a/tdrs-frontend/src/reducers/requestAccess.test.js b/tdrs-frontend/src/reducers/requestAccess.test.js
new file mode 100644
index 000000000..f0fae06ea
--- /dev/null
+++ b/tdrs-frontend/src/reducers/requestAccess.test.js
@@ -0,0 +1,80 @@
+import reducer from './requestAccess'
+import {
+  PATCH_REQUEST_ACCESS,
+  SET_REQUEST_ACCESS,
+  SET_REQUEST_ACCESS_ERROR,
+  CLEAR_REQUEST_ACCESS,
+} from '../actions/requestAccess'
+
+describe('reducers/requestAccess', () => {
+  it('should return the initial state', () => {
+    expect(reducer(undefined, {})).toEqual({
+      requestAccess: false,
+      loading: false,
+    })
+  })
+
+  it('should handle PATCH_REQUEST_ACCESS', () => {
+    expect(
+      reducer(undefined, {
+        type: PATCH_REQUEST_ACCESS,
+      })
+    ).toEqual({
+      loading: true,
+      requestAccess: false,
+    })
+  })
+
+  it('should handle SET_REQUEST_ACCESS', () => {
+    expect(
+      reducer(
+        {
+          requestAccess: false,
+          loading: true,
+        },
+        {
+          type: SET_REQUEST_ACCESS,
+        }
+      )
+    ).toEqual({
+      requestAccess: true,
+      loading: false,
+    })
+  })
+
+  it('should handle CLEAR_REQUEST_ACCESS', () => {
+    expect(
+      reducer(
+        {
+          loading: false,
+          requestAccess: true,
+        },
+        {
+          type: CLEAR_REQUEST_ACCESS,
+        }
+      )
+    ).toEqual({
+      loading: false,
+      requestAccess: false,
+    })
+  })
+
+  it('should handle SET_REQUEST_ACCESS_ERROR', () => {
+    expect(
+      reducer(
+        {
+          loading: false,
+          requestAccess: true,
+        },
+        {
+          type: SET_REQUEST_ACCESS_ERROR,
+          payload: { error: 'something went wrong' },
+        }
+      )
+    ).toEqual({
+      loading: false,
+      requestAccess: false,
+      error: 'something went wrong',
+    })
+  })
+})
diff --git a/tdrs-frontend/src/reducers/stts.js b/tdrs-frontend/src/reducers/sttList.js
similarity index 88%
rename from tdrs-frontend/src/reducers/stts.js
rename to tdrs-frontend/src/reducers/sttList.js
index 4e8666e4c..0a7ab2977 100644
--- a/tdrs-frontend/src/reducers/stts.js
+++ b/tdrs-frontend/src/reducers/sttList.js
@@ -3,10 +3,10 @@ import {
   SET_STTS,
   SET_STTS_ERROR,
   CLEAR_STTS,
-} from '../actions/stts'
+} from '../actions/sttList'
 
 const initialState = {
-  stts: [],
+  sttList: [],
   loading: false,
 }
 
@@ -24,7 +24,7 @@ const initialState = {
  * @param {object} action - An object with a type and a payload
  * used in the switch statement to set information on the store.
  */
-const stts = (state = initialState, action) => {
+const sttList = (state = initialState, action) => {
   const { type, payload = {} } = action
   switch (type) {
     case FETCH_STTS:
@@ -34,7 +34,7 @@ const stts = (state = initialState, action) => {
       return {
         ...state,
         loading: false,
-        stts: data,
+        sttList: data,
       }
     }
     case SET_STTS_ERROR: {
@@ -51,4 +51,4 @@ const stts = (state = initialState, action) => {
   }
 }
 
-export default stts
+export default sttList
diff --git a/tdrs-frontend/src/reducers/stts.test.js b/tdrs-frontend/src/reducers/sttList.test.js
similarity index 80%
rename from tdrs-frontend/src/reducers/stts.test.js
rename to tdrs-frontend/src/reducers/sttList.test.js
index 5661f5ed4..d89633fc1 100644
--- a/tdrs-frontend/src/reducers/stts.test.js
+++ b/tdrs-frontend/src/reducers/sttList.test.js
@@ -1,15 +1,15 @@
-import reducer from './stts'
+import reducer from './sttList'
 import {
   FETCH_STTS,
   SET_STTS,
   SET_STTS_ERROR,
   CLEAR_STTS,
-} from '../actions/stts'
+} from '../actions/sttList'
 
 describe('reducers/stts', () => {
   it('should return the initial state', () => {
     expect(reducer(undefined, {})).toEqual({
-      stts: [],
+      sttList: [],
       loading: false,
     })
   })
@@ -20,7 +20,7 @@ describe('reducers/stts', () => {
         type: FETCH_STTS,
       })
     ).toEqual({
-      stts: [],
+      sttList: [],
       loading: true,
     })
   })
@@ -29,7 +29,7 @@ describe('reducers/stts', () => {
     expect(
       reducer(
         {
-          stts: [],
+          sttList: [],
           loading: true,
         },
         {
@@ -40,7 +40,7 @@ describe('reducers/stts', () => {
         }
       )
     ).toEqual({
-      stts: [{ id: 1, type: 'state', code: 'AL', name: 'Alabama' }],
+      sttList: [{ id: 1, type: 'state', code: 'AL', name: 'Alabama' }],
       loading: false,
     })
   })
@@ -49,7 +49,7 @@ describe('reducers/stts', () => {
     expect(
       reducer(
         {
-          stts: [{ value: 'alabama', label: 'Alabama' }],
+          sttList: [{ value: 'alabama', label: 'Alabama' }],
           loading: false,
         },
         {
@@ -57,7 +57,7 @@ describe('reducers/stts', () => {
         }
       )
     ).toEqual({
-      stts: [],
+      sttList: [],
       loading: false,
     })
   })
@@ -69,7 +69,7 @@ describe('reducers/stts', () => {
         payload: { error: 'something went wrong' },
       })
     ).toEqual({
-      stts: [],
+      sttList: [],
       loading: false,
       error: 'something went wrong',
     })
diff --git a/tdrs-frontend/src/utils/index.js b/tdrs-frontend/src/utils/index.js
new file mode 100644
index 000000000..445de8aca
--- /dev/null
+++ b/tdrs-frontend/src/utils/index.js
@@ -0,0 +1,15 @@
+import axios from 'axios'
+
+let memo = null
+
+const exports = {
+  get axiosInstance() {
+    if (memo) return memo
+    memo = axios.create({
+      withCredentials: true,
+    })
+    return memo
+  },
+}
+
+export default exports
diff --git a/tdrs-frontend/yarn.lock b/tdrs-frontend/yarn.lock
index 4081ea374..4e2f4a1df 100644
--- a/tdrs-frontend/yarn.lock
+++ b/tdrs-frontend/yarn.lock
@@ -3043,6 +3043,14 @@ axe-core@^3.5.1, axe-core@^3.5.4:
   resolved "https://registry.yarnpkg.com/axe-core/-/axe-core-3.5.5.tgz#84315073b53fa3c0c51676c588d59da09a192227"
   integrity sha512-5P0QZ6J5xGikH780pghEdbEKijCTrruK9KxtPZCFWUpef0f6GipO+xEZ5GKCb020mmqgbiNO6TcA55CriL784Q==
 
+axios-cookiejar-support@^1.0.1:
+  version "1.0.1"
+  resolved "https://registry.yarnpkg.com/axios-cookiejar-support/-/axios-cookiejar-support-1.0.1.tgz#7b32af7d932508546c68b1fc5ba8f562884162e1"
+  integrity sha512-IZJxnAJ99XxiLqNeMOqrPbfR7fRyIfaoSLdPUf4AMQEGkH8URs0ghJK/xtqBsD+KsSr3pKl4DEQjCn834pHMig==
+  dependencies:
+    is-redirect "^1.0.0"
+    pify "^5.0.0"
+
 axios@^0.19.2:
   version "0.19.2"
   resolved "https://registry.yarnpkg.com/axios/-/axios-0.19.2.tgz#3ea36c5d8818d0d5f8a8a97a6d36b86cdc00cb27"
@@ -7802,6 +7810,11 @@ is-promise@^2.1.0:
   resolved "https://registry.yarnpkg.com/is-promise/-/is-promise-2.2.2.tgz#39ab959ccbf9a774cf079f7b40c7a26f763135f1"
   integrity sha512-+lP4/6lKUBfQjZ2pdxThZvLUAafmZb8OAxFb8XXtiQmS35INgr85hdOGoEs124ez1FCnZJt6jau/T+alh58QFQ==
 
+is-redirect@^1.0.0:
+  version "1.0.0"
+  resolved "https://registry.yarnpkg.com/is-redirect/-/is-redirect-1.0.0.tgz#1d03dded53bd8db0f30c26e4f95d36fc7c87dc24"
+  integrity sha1-HQPd7VO9jbDzDCbk+V02/HyH3CQ=
+
 is-regex@^1.0.4:
   version "1.1.1"
   resolved "https://registry.yarnpkg.com/is-regex/-/is-regex-1.1.1.tgz#c6f98aacc546f6cec5468a07b7b153ab564a57b9"
@@ -10776,6 +10789,11 @@ pify@^4.0.1:
   resolved "https://registry.yarnpkg.com/pify/-/pify-4.0.1.tgz#4b2cd25c50d598735c50292224fd8c6df41e3231"
   integrity sha512-uB80kBFb/tfd68bVleG9T5GGsGPjJrLAUpR5PZIrhBnIaRTQRjqdJSsIKkOP6OAIFbj7GOrcudc5pNjZ+geV2g==
 
+pify@^5.0.0:
+  version "5.0.0"
+  resolved "https://registry.yarnpkg.com/pify/-/pify-5.0.0.tgz#1f5eca3f5e87ebec28cc6d54a0e4aaf00acc127f"
+  integrity sha512-eW/gHNMlxdSP6dmG6uJip6FXN0EQBwm2clYYd8Wul42Cwu/DK8HEftzsapcNdYe2MfLiIwZqsDk2RDEsTE79hA==
+
 pinkie-promise@^2.0.0:
   version "2.0.1"
   resolved "https://registry.yarnpkg.com/pinkie-promise/-/pinkie-promise-2.0.1.tgz#2135d6dfa7a358c069ac9b178776288228450ffa"
@@ -11716,7 +11734,7 @@ pseudomap@^1.0.2:
   resolved "https://registry.yarnpkg.com/pseudomap/-/pseudomap-1.0.2.tgz#f052a28da70e618917ef0a8ac34c1ae5a68286b3"
   integrity sha1-8FKijacOYYkX7wqKw0wa5aaChrM=
 
-psl@^1.1.28:
+psl@^1.1.28, psl@^1.1.33:
   version "1.8.0"
   resolved "https://registry.yarnpkg.com/psl/-/psl-1.8.0.tgz#9326f8bcfb013adcc005fdff056acce020e51c24"
   integrity sha512-RIdOzyoavK+hA18OGGWDqUTsCLhtA7IcZ/6NCs4fFJaHBDab+pDDmDIByWFRQJq2Cd7r1OoQxBGKOaztq+hjIQ==
@@ -14313,6 +14331,15 @@ tough-cookie@^2.3.3, tough-cookie@^2.3.4, tough-cookie@^2.5.0, tough-cookie@~2.5
     psl "^1.1.28"
     punycode "^2.1.1"
 
+tough-cookie@^4.0.0:
+  version "4.0.0"
+  resolved "https://registry.yarnpkg.com/tough-cookie/-/tough-cookie-4.0.0.tgz#d822234eeca882f991f0f908824ad2622ddbece4"
+  integrity sha512-tHdtEpQCMrc1YLrMaqXXcj6AxhYi/xgit6mZu1+EDWUn+qhUf8wMQoFIy9NXuq23zAwtcB0t/MjACGR18pcRbg==
+  dependencies:
+    psl "^1.1.33"
+    punycode "^2.1.1"
+    universalify "^0.1.2"
+
 tr46@^1.0.1:
   version "1.0.1"
   resolved "https://registry.yarnpkg.com/tr46/-/tr46-1.0.1.tgz#a8b13fd6bfd2489519674ccde55ba3693b706d09"
@@ -14532,7 +14559,7 @@ unique-string@^2.0.0:
   dependencies:
     crypto-random-string "^2.0.0"
 
-universalify@^0.1.0:
+universalify@^0.1.0, universalify@^0.1.2:
   version "0.1.2"
   resolved "https://registry.yarnpkg.com/universalify/-/universalify-0.1.2.tgz#b646f69be3942dabcecc9d6639c80dc105efaa66"
   integrity sha512-rBJeI5CXAlmy1pV+617WB9J63U6XcazHHF2f2dbJix4XzpUF0RS3Zbj0FGIOCAva5P/d/GBOYaACQ1w+0azUkg==