diff --git a/.mise.toml b/.mise.toml
new file mode 100644
index 0000000..6f3b64a
--- /dev/null
+++ b/.mise.toml
@@ -0,0 +1,2 @@
+[tools]
+python = "3.10"
diff --git a/api/requirements-testing.txt b/api/requirements-testing.txt
index c967137..49635d1 100644
--- a/api/requirements-testing.txt
+++ b/api/requirements-testing.txt
@@ -1,2 +1,3 @@
 pytest
-moto
\ No newline at end of file
+moto
+pyjwt
\ No newline at end of file
diff --git a/api/requirements.txt b/api/requirements.txt
index 450d995..d4f52c4 100644
--- a/api/requirements.txt
+++ b/api/requirements.txt
@@ -2,4 +2,5 @@ aws-lambda-powertools
 pydantic[email]
 psycopg[binary]
 openai
-aioboto3
\ No newline at end of file
+aioboto3
+pyjwt
\ No newline at end of file
diff --git a/tests/live_integration/test_recruiter_mass_download.py b/tests/live_integration/test_recruiter_mass_download.py
new file mode 100644
index 0000000..aba3544
--- /dev/null
+++ b/tests/live_integration/test_recruiter_mass_download.py
@@ -0,0 +1,49 @@
+import requests
+
+def test_unauthenticated(api_client):
+    """Sad Path: Test that accessing the profile when not correctly authenticated returns a failure."""
+    response = api_client.get(
+        "/api/v1/student/profile", headers={"Authorization": "Bearer invalid"}
+    )
+    assert response.status_code == 403
+    assert response.json() == {
+        "Message": "User is not authorized to access this resource with an explicit deny"
+    }
+
+def test_student_noaccess(api_client, jwt_generator):
+    """Sad Path: Test that accessing the profile when authenticated as a student returns a failure."""
+    jwt = jwt_generator(role="student", env="dev", email="noone@testing.megacorp.com")
+    response = api_client.post(
+        "/api/v1/recruiter/mass_download", headers={"Authorization": f"Bearer {jwt}"}
+    )
+    assert response.status_code == 403
+    assert response.json() == {
+        "Message": "User is not authorized to access this resource"
+    }
+
+
+def test_one_profile(api_client, jwt_generator):
+    """Happy path: test that we can download one profile."""
+    jwt = jwt_generator(role="recruiter", env="dev", email="noone@testing.megacorp.com")
+    response = api_client.post(
+        "/api/v1/recruiter/mass_download", headers={"Authorization": f"Bearer {jwt}"},
+        json={"usernames": ["dsingh14@illinois.edu"]}
+    )
+    assert response.status_code == 200
+    rjson = response.json()
+    assert len(rjson) == 1
+    s3resp = requests.get(rjson[0])
+    assert s3resp.status_code == 200
+    
+def test_twenty_profiles(api_client, jwt_generator):
+    """Happy path: test that we can download one profile."""
+    jwt = jwt_generator(role="recruiter", env="dev", email="noone@testing.megacorp.com")
+    response = api_client.post(
+        "/api/v1/recruiter/mass_download", headers={"Authorization": f"Bearer {jwt}"},
+        json={"usernames": ["dsingh14@illinois.edu"] * 20}
+    )
+    assert response.status_code == 200
+    rjson = response.json()
+    assert len(rjson) == 20
+    s3resp = requests.get(rjson[0])
+    assert s3resp.status_code == 200
\ No newline at end of file