diff --git a/.travis.yml b/.travis.yml
index 0ed81c30b..9ec5271d7 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -1,7 +1,7 @@
 sudo: false
 language: python
 python:
-- '3.4'
+- '3.5'
 env:
   secure: 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
 before_install:
diff --git a/app/__init__.py b/app/__init__.py
index 77cd41c86..48d1a1df3 100644
--- a/app/__init__.py
+++ b/app/__init__.py
@@ -18,6 +18,7 @@ from app.notify_client.user_api_client import UserApiClient
 from app.notify_client.job_api_client import JobApiClient
 from app.notify_client.status_api_client import StatusApiClient
 from app.notify_client.permission_api_client import PermissionApiClient
+from app.notify_client.invite_api_client import InviteApiClient
 from app.its_dangerous_session import ItsdangerousSessionInterface
 from app.asset_fingerprinter import AssetFingerprinter
 from app.utils import validate_phone_number, InvalidPhoneError
@@ -33,6 +34,7 @@ user_api_client = UserApiClient()
 api_key_api_client = ApiKeyApiClient()
 job_api_client = JobApiClient()
 status_api_client = StatusApiClient()
+invite_api_client = InviteApiClient()
 asset_fingerprinter = AssetFingerprinter()
 permission_api_client = PermissionApiClient()
 
@@ -52,6 +54,7 @@ def create_app(config_name, config_overrides=None):
     job_api_client.init_app(application)
     status_api_client.init_app(application)
     permission_api_client.init_app(application)
+    invite_api_client.init_app(application)
 
     login_manager.init_app(application)
     login_manager.login_view = 'main.sign_in'
diff --git a/app/assets/stylesheets/_grids.scss b/app/assets/stylesheets/_grids.scss
index 7f8eb724f..5e8643173 100644
--- a/app/assets/stylesheets/_grids.scss
+++ b/app/assets/stylesheets/_grids.scss
@@ -15,3 +15,7 @@
   margin-bottom: $gutter;
   clear: both;
 }
+
+.bottom-gutter-2-3 {
+  margin-bottom: $gutter * 2/3;
+}
diff --git a/app/assets/stylesheets/components/banner.scss b/app/assets/stylesheets/components/banner.scss
index c62bfe2c6..77b706779 100644
--- a/app/assets/stylesheets/components/banner.scss
+++ b/app/assets/stylesheets/components/banner.scss
@@ -71,7 +71,7 @@
   color: $text-colour;
   background-image: file-url('icon-important-2x.png');
   background-size: 34px 34px;
-  background-position: 0 0px;
+  background-position: 0 0;
   background-repeat: no-repeat;
   padding: 7px 0 5px 50px;
 }
diff --git a/app/assets/stylesheets/components/email-message.scss b/app/assets/stylesheets/components/email-message.scss
index b4771841a..860b3d99e 100644
--- a/app/assets/stylesheets/components/email-message.scss
+++ b/app/assets/stylesheets/components/email-message.scss
@@ -7,9 +7,26 @@
     margin: 20px 0 10px 0;
   }
 
-  &-subject,
-  &-from {
-    margin: 10px 0;
+  &-meta {
+
+    @include core-19;
+    margin: 0;
+
+    td,
+    th {
+      @include core-19;
+      border-bottom: 0;
+      border-top: 1px solid $border-colour;
+    }
+
+    th {
+      color: $secondary-text-colour;
+    }
+
+    td {
+      width: 99%;
+    }
+
   }
 
   &-from {
diff --git a/app/assets/stylesheets/components/sms-message.scss b/app/assets/stylesheets/components/sms-message.scss
index 898d04c24..cb26b296f 100644
--- a/app/assets/stylesheets/components/sms-message.scss
+++ b/app/assets/stylesheets/components/sms-message.scss
@@ -40,7 +40,7 @@
 .sms-message-use-links {
 
   @include copy-19;
-  margin-top: 55px;
+  margin-top: 52px;
 
   a {
 
diff --git a/app/main/__init__.py b/app/main/__init__.py
index fbfd2562a..ec9691d24 100644
--- a/app/main/__init__.py
+++ b/app/main/__init__.py
@@ -3,7 +3,7 @@ from flask import Blueprint
 main = Blueprint('main', __name__)
 
 from app.main.views import (
-    index, sign_in, sign_out, register, two_factor, verify, sms, add_service,
+    index, sign_in, sign_out, register, two_factor, verify, send, add_service,
     code_not_received, jobs, dashboard, templates, service_settings, forgot_password,
     new_password, styleguide, user_profile, choose_service, api_keys, manage_users
 )
diff --git a/app/main/dao/templates_dao.py b/app/main/dao/templates_dao.py
index d34f2b187..7d07b7d0e 100644
--- a/app/main/dao/templates_dao.py
+++ b/app/main/dao/templates_dao.py
@@ -4,14 +4,14 @@ from app.utils import BrowsableItem
 from notifications_python_client.errors import HTTPError
 
 
-def insert_service_template(name, content, service_id):
+def insert_service_template(name, type_, content, service_id, subject=None):
     return notifications_api_client.create_service_template(
-        name, 'sms', content, service_id)
+        name, type_, content, service_id, subject)
 
 
-def update_service_template(id_, name, content, service_id):
+def update_service_template(id_, name, type_, content, service_id, subject=None):
     return notifications_api_client.update_service_template(
-        id_, name, 'sms', content, service_id)
+        id_, name, type_, content, service_id)
 
 
 def get_service_templates(service_id):
diff --git a/app/main/forms.py b/app/main/forms.py
index 20b007514..7bb000cc7 100644
--- a/app/main/forms.py
+++ b/app/main/forms.py
@@ -7,7 +7,8 @@ from wtforms import (
     ValidationError,
     TextAreaField,
     FileField,
-    RadioField
+    RadioField,
+    BooleanField
 )
 from wtforms.fields.html5 import EmailField, TelField
 from wtforms.validators import DataRequired, Email, Length, Regexp
@@ -110,6 +111,7 @@ class TwoFactorForm(Form):
         super(TwoFactorForm, self).__init__(*args, **kwargs)
 
     sms_code = sms_code()
+    remember_me = BooleanField("Remember me")
 
     def validate_sms_code(self, field):
         is_valid, reason = self.validate_code_func(field.data)
@@ -162,13 +164,13 @@ class AddServiceForm(Form):
     name = StringField(
         'Service name',
         validators=[
-            DataRequired(message='Service name can not be empty')
+            DataRequired(message='Service name can’t be empty')
         ]
     )
 
     def validate_name(self, a):
         if a.data in self._names_func():
-            raise ValidationError('Service name already exists')
+            raise ValidationError('This service name is already in use')
 
 
 class ServiceNameForm(Form):
@@ -188,7 +190,7 @@ class ConfirmPasswordForm(Form):
             raise ValidationError('Invalid password')
 
 
-class TemplateForm(Form):
+class SMSTemplateForm(Form):
     name = StringField(
         u'Template name',
         validators=[DataRequired(message="Template name cannot be empty")])
@@ -198,6 +200,13 @@ class TemplateForm(Form):
         validators=[DataRequired(message="Template content cannot be empty")])
 
 
+class EmailTemplateForm(SMSTemplateForm):
+
+    subject = StringField(
+        u'Subject',
+        validators=[DataRequired(message="Subject cannot be empty")])
+
+
 class ForgotPasswordForm(Form):
     email_address = email_address()
 
diff --git a/app/main/views/add_service.py b/app/main/views/add_service.py
index ad5d8f715..9cee69b8a 100644
--- a/app/main/views/add_service.py
+++ b/app/main/views/add_service.py
@@ -11,39 +11,15 @@ from app.main.forms import AddServiceForm
 @login_required
 def add_service():
     form = AddServiceForm(services_dao.find_all_service_names)
-    services = services_dao.get_services(current_user.id)
-    if len(services['data']) == 0:
-        heading = 'Which service do you want to set up notifications for?'
-    else:
-        heading = 'Add a new service'
+    heading = 'Which service do you want to set up notifications for?'
     if form.validate_on_submit():
         session['service_name'] = form.name.data
-        return redirect(url_for('main.add_from_address'))
+        user = users_dao.get_user_by_id(session['user_id'])
+        service_id = services_dao.insert_new_service(session['service_name'], user.id)
+        return redirect(url_for('main.service_dashboard', service_id=service_id))
     else:
         return render_template(
             'views/add-service.html',
             form=form,
             heading=heading
         )
-
-
-@main.route("/confirm-add-service", methods=['GET', 'POST'])
-@login_required
-def add_from_address():
-    if request.method == 'POST':
-        user = users_dao.get_user_by_id(session['user_id'])
-        service_id = services_dao.insert_new_service(session['service_name'], user.id)
-        return redirect(url_for('main.service_dashboard', service_id=service_id))
-    else:
-        return render_template(
-            'views/add-from-address.html',
-            service_name=session['service_name'],
-            from_address="{}@notifications.service.gov.uk".format(_email_safe(session['service_name']))
-        )
-
-
-def _email_safe(string):
-    return "".join([
-        character.lower() if character.isalnum() or character == "." else ""
-        for character in re.sub("\s+", ".", string.strip())
-    ])
diff --git a/app/main/views/email.py b/app/main/views/email.py
new file mode 100644
index 000000000..e69de29bb
diff --git a/app/main/views/index.py b/app/main/views/index.py
index 1200cf65b..8335284cd 100644
--- a/app/main/views/index.py
+++ b/app/main/views/index.py
@@ -22,15 +22,3 @@ def register_from_invite():
 @login_required
 def verify_mobile():
     return render_template('views/verify-mobile.html')
-
-
-@main.route("/services/<service_id>/send-email")
-@login_required
-def send_email(service_id):
-    return render_template('views/send-email.html', service_id=service_id)
-
-
-@main.route("/services/<service_id>/check-email")
-@login_required
-def check_email(service_id):
-    return render_template('views/check-email.html')
diff --git a/app/main/views/jobs.py b/app/main/views/jobs.py
index dd5e45e04..9469fa810 100644
--- a/app/main/views/jobs.py
+++ b/app/main/views/jobs.py
@@ -13,6 +13,7 @@ from utils.template import Template
 from app import job_api_client
 from app.main import main
 from app.main.dao import templates_dao
+from app.main.dao import services_dao
 
 now = time.strftime('%H:%M')
 
@@ -37,6 +38,7 @@ def view_jobs(service_id):
 @main.route("/services/<service_id>/jobs/<job_id>")
 @login_required
 def view_job(service_id, job_id):
+    service = services_dao.get_service_by_id_or_404(service_id)
     try:
         job = job_api_client.get_job(service_id, job_id)['data']
         messages = []
@@ -56,9 +58,11 @@ def view_job(service_id, job_id):
             uploaded_file_name=job['original_file_name'],
             uploaded_file_time=job['created_at'],
             template=Template(
-                templates_dao.get_service_template_or_404(service_id, job['template'])['data']
+                templates_dao.get_service_template_or_404(service_id, job['template'])['data'],
+                prefix=service['name']
             ),
-            service_id=service_id
+            service_id=service_id,
+            service=service
         )
     except HTTPError as e:
         if e.status_code == 404:
diff --git a/app/main/views/manage_users.py b/app/main/views/manage_users.py
index df609ee8f..0b5f0e7f0 100644
--- a/app/main/views/manage_users.py
+++ b/app/main/views/manage_users.py
@@ -7,13 +7,18 @@ from flask import (
     flash
 )
 
-from flask_login import login_required, current_user
+from flask_login import (
+    login_required,
+    current_user
+)
+
+from notifications_python_client.errors import HTTPError
 
 from app.main import main
-from app.main.dao import users_dao
 from app.main.forms import InviteUserForm
 from app.main.dao.services_dao import get_service_by_id_or_404
 from app import user_api_client
+from app import invite_api_client
 
 fake_users = [
     {
@@ -29,13 +34,19 @@ fake_users = [
 @main.route("/services/<service_id>/users")
 @login_required
 def manage_users(service_id):
-    return render_template(
-        'views/manage-users.html',
-        service_id=service_id,
-        users=fake_users,
-        current_user=current_user,
-        invited_users=[]
-    )
+    try:
+        users = user_api_client.get_users_for_service(service_id=service_id)
+        invited_users = invite_api_client.get_invites_for_service(service_id=service_id)
+        return render_template('views/manage-users.html',
+                               service_id=service_id,
+                               users=users,
+                               current_user=current_user,
+                               invited_users=invited_users)
+    except HTTPError as e:
+        if e.status_code == 404:
+            abort(404)
+        else:
+            raise e
 
 
 @main.route("/services/<service_id>/users/invite", methods=['GET', 'POST'])
@@ -43,10 +54,19 @@ def manage_users(service_id):
 def invite_user(service_id):
 
     form = InviteUserForm()
-
     if form.validate_on_submit():
-        flash('Invite sent to {}'.format(form.email_address.data), 'default_with_tick')
-        return redirect(url_for('.manage_users', service_id=service_id))
+        email_address = form.email_address.data
+        permissions = _get_permissions(request.form)
+        try:
+            resp = invite_api_client.create_invite(current_user.id, service_id, email_address, permissions)
+            flash('Invite sent to {}'.format(resp['email_address']), 'default_with_tick')
+            return redirect(url_for('.manage_users', service_id=service_id))
+
+        except HTTPError as e:
+            if e.status_code == 404:
+                abort(404)
+            else:
+                raise e
 
     return render_template(
         'views/invite-user.html',
@@ -94,3 +114,14 @@ def delete_user(service_id, user_id):
         service=get_service_by_id_or_404(service_id),
         service_id=service_id
     )
+
+
+def _get_permissions(form):
+    permissions = []
+    if form.get('send_messages') and form['send_messages'] == 'yes':
+        permissions.append('send_messages')
+    if form.get('manage_service') and form['manage_service'] == 'yes':
+        permissions.append('manage_service')
+    if form.get('manage_api_keys') and form['manage_api_keys'] == 'yes':
+        permissions.append('manage_api_keys')
+    return ','.join(permissions)
diff --git a/app/main/views/sms.py b/app/main/views/send.py
similarity index 53%
rename from app/main/views/sms.py
rename to app/main/views/send.py
index 2e3f69091..856403105 100644
--- a/app/main/views/sms.py
+++ b/app/main/views/send.py
@@ -1,9 +1,6 @@
 import csv
 import io
 import uuid
-import botocore
-
-from datetime import date
 
 from flask import (
     request,
@@ -17,7 +14,6 @@ from flask import (
 )
 
 from flask_login import login_required, current_user
-from werkzeug import secure_filename
 from notifications_python_client.errors import HTTPError
 from utils.template import Template, NeededByTemplateError, NoPlaceholderForDataError
 
@@ -28,15 +24,30 @@ from app.main.uploader import (
     s3download
 )
 from app.main.dao import templates_dao
+from app.main.dao import services_dao
 from app import job_api_client
-from app.utils import (
-    validate_phone_number,
-    InvalidPhoneError
-)
+from app.utils import validate_recipient, InvalidPhoneError, InvalidEmailError
+
+page_headings = {
+    'email': 'Send emails',
+    'sms': 'Send text messages'
+}
 
 
-@main.route("/services/<service_id>/sms/send", methods=['GET'])
-def choose_sms_template(service_id):
+@main.route("/services/<service_id>/send/letters", methods=['GET'])
+def letters_stub(service_id):
+    return render_template(
+        'views/letters.html', service_id=service_id
+    )
+
+
+@main.route("/services/<service_id>/send/<template_type>", methods=['GET'])
+def choose_template(service_id, template_type):
+
+    service = services_dao.get_service_by_id_or_404(service_id)
+
+    if template_type not in ['email', 'sms']:
+        abort(404)
     try:
         jobs = job_api_client.get_job(service_id)['data']
     except HTTPError as e:
@@ -45,69 +56,83 @@ def choose_sms_template(service_id):
         else:
             raise e
     return render_template(
-        'views/choose-sms-template.html',
+        'views/choose-template.html',
         templates=[
-            Template(template) for template in templates_dao.get_service_templates(service_id)['data']
+            Template(
+                template,
+                prefix=service['name']
+            ) for template in templates_dao.get_service_templates(service_id)['data']
+            if template['template_type'] == template_type
         ],
+        template_type=template_type,
+        page_heading=page_headings[template_type],
+        service=service,
         has_jobs=len(jobs),
         service_id=service_id
     )
 
 
-@main.route("/services/<service_id>/sms/send/<template_id>", methods=['GET', 'POST'])
+@main.route("/services/<service_id>/send/<int:template_id>", methods=['GET', 'POST'])
 @login_required
-def send_sms(service_id, template_id):
+def send_messages(service_id, template_id):
 
     form = CsvUploadForm()
     if form.validate_on_submit():
         try:
-            csv_file = form.file.data
+            csv_file = form.file
             filedata = _get_filedata(csv_file)
             upload_id = str(uuid.uuid4())
             s3upload(upload_id, service_id, filedata, current_app.config['AWS_REGION'])
             session['upload_data'] = {"template_id": template_id, "original_file_name": filedata['file_name']}
-            return redirect(url_for('.check_sms',
+            return redirect(url_for('.check_messages',
                                     service_id=service_id,
                                     upload_id=upload_id))
         except ValueError as e:
-            flash('There was a problem uploading: {}'.format(csv_file.filename))
+            flash('There was a problem uploading: {}'.format(csv_file.data.filename))
             flash(str(e))
-            return redirect(url_for('.send_sms', service_id=service_id, template_id=template_id))
+            return redirect(url_for('.send_messages', service_id=service_id, template_id=template_id))
 
+    service = services_dao.get_service_by_id_or_404(service_id)
     template = Template(
-        templates_dao.get_service_template_or_404(service_id, template_id)['data']
+        templates_dao.get_service_template_or_404(service_id, template_id)['data'],
+        prefix=service['name']
     )
 
     return render_template(
-        'views/send-sms.html',
+        'views/send.html',
         template=template,
-        column_headers=['phone'] + template.placeholders_as_markup,
+        column_headers=['to'] + template.placeholders_as_markup,
         form=form,
+        service=service,
         service_id=service_id
     )
 
 
-@main.route("/services/<service_id>/sms/send/<template_id>.csv", methods=['GET'])
+@main.route("/services/<service_id>/send/<template_id>.csv", methods=['GET'])
 @login_required
 def get_example_csv(service_id, template_id):
     template = templates_dao.get_service_template_or_404(service_id, template_id)['data']
     placeholders = list(Template(template).placeholders)
     output = io.StringIO()
     writer = csv.writer(output)
-    writer.writerow(['phone'] + placeholders)
-    writer.writerow([current_user.mobile_number] + ["test {}".format(header) for header in placeholders])
-
-    return(output.getvalue(), 200, {'Content-Type': 'text/csv; charset=utf-8'})
+    writer.writerow(['to'] + placeholders)
+    writer.writerow([
+        {
+            'email': current_user.email_address,
+            'sms': current_user.mobile_number
+        }[template['template_type']]
+    ] + ["test {}".format(header) for header in placeholders])
+    return output.getvalue(), 200, {'Content-Type': 'text/csv; charset=utf-8'}
 
 
-@main.route("/services/<service_id>/sms/send/<template_id>/to-self", methods=['GET'])
+@main.route("/services/<service_id>/send/<template_id>/to-self", methods=['GET'])
 @login_required
-def send_sms_to_self(service_id, template_id):
+def send_message_to_self(service_id, template_id):
     template = templates_dao.get_service_template_or_404(service_id, template_id)['data']
     placeholders = list(Template(template).placeholders)
     output = io.StringIO()
     writer = csv.writer(output)
-    writer.writerow(['phone'] + placeholders)
+    writer.writerow(['to'] + placeholders)
     writer.writerow([current_user.mobile_number] + ["test {}".format(header) for header in placeholders])
     filedata = {
         'file_name': 'Test run',
@@ -117,45 +142,46 @@ def send_sms_to_self(service_id, template_id):
     s3upload(upload_id, service_id, filedata, current_app.config['AWS_REGION'])
     session['upload_data'] = {"template_id": template_id, "original_file_name": filedata['file_name']}
 
-    return redirect(url_for('.check_sms',
+    return redirect(url_for('.check_messages',
                             service_id=service_id,
                             upload_id=upload_id))
 
 
-@main.route("/services/<service_id>/sms/check/<upload_id>",
+@main.route("/services/<service_id>/check/<upload_id>",
             methods=['GET', 'POST'])
 @login_required
-def check_sms(service_id, upload_id):
+def check_messages(service_id, upload_id):
+
+    upload_data = session['upload_data']
+    template_id = upload_data.get('template_id')
+    service = services_dao.get_service_by_id_or_404(service_id)
 
     if request.method == 'GET':
         contents = s3download(service_id, upload_id)
         if not contents:
             flash('There was a problem reading your upload file')
-        upload_data = session['upload_data']
-        template_id = upload_data.get('template_id')
         raw_template = templates_dao.get_service_template_or_404(service_id, template_id)['data']
         upload_result = _get_rows(contents, raw_template)
         session['upload_data']['notification_count'] = len(upload_result['rows'])
         template = Template(
             raw_template,
             values=upload_result['rows'][0] if upload_result['valid'] else {},
-            drop_values={'phone'}
+            drop_values={'to'},
+            prefix=service['name']
         )
         return render_template(
-            'views/check-sms.html',
+            'views/check.html',
             upload_result=upload_result,
             template=template,
-            column_headers=['phone number'] + list(
-                template.placeholders if upload_result['valid'] else template.placeholders_as_markup
-            ),
+            page_heading=page_headings[template.template_type],
+            column_headers=['to'] + list(template.placeholders_as_markup),
             original_file_name=upload_data.get('original_file_name'),
             service_id=service_id,
+            service=service,
             form=CsvUploadForm()
         )
     elif request.method == 'POST':
-        upload_data = session['upload_data']
         original_file_name = upload_data.get('original_file_name')
-        template_id = upload_data.get('template_id')
         notification_count = upload_data.get('notification_count')
         session.pop('upload_data')
         try:
@@ -167,23 +193,40 @@ def check_sms(service_id, upload_id):
                 raise e
 
         flash('We’ve started sending your messages', 'default_with_tick')
-        return redirect(url_for('main.view_job',
-                        service_id=service_id,
-                        job_id=upload_id))
+        return redirect(
+            url_for('main.view_job', service_id=service_id, job_id=upload_id)
+        )
 
 
 def _get_filedata(file):
-    lines = file.read().decode('utf-8').splitlines()
-    if len(lines) < 2:  # must be at least header and one line
-        message = 'The file {} contained no data'.format(file.filename)
+    import itertools
+    reader = csv.reader(
+        file.data.getvalue().decode('utf-8').splitlines(),
+        quoting=csv.QUOTE_NONE,
+        skipinitialspace=True
+    )
+    lines = []
+    for row in reader:
+        non_empties = itertools.dropwhile(lambda x: x.strip() == '', row)
+        has_content = []
+        for item in non_empties:
+            has_content.append(item)
+        if has_content:
+            lines.append(row)
+
+    if len(lines) < 2:  # must be header row and at least one data row
+        message = 'The file {} contained no data'.format(file.data.filename)
         raise ValueError(message)
-    return {'file_name': file.filename, 'data': lines}
+
+    content_lines = []
+    for row in lines:
+        content_lines.append(','.join(row).rstrip(','))
+    return {'file_name': file.data.filename, 'data': content_lines}
 
 
 def _get_rows(contents, raw_template):
     reader = csv.DictReader(
         contents.split('\n'),
-        lineterminator='\n',
         quoting=csv.QUOTE_NONE,
         skipinitialspace=True
     )
@@ -192,8 +235,11 @@ def _get_rows(contents, raw_template):
     for row in reader:
         rows.append(row)
         try:
-            validate_phone_number(row['phone'])
-            Template(raw_template, values=row, drop_values={'phone'}).replaced
-        except (InvalidPhoneError, NeededByTemplateError, NoPlaceholderForDataError):
+            validate_recipient(
+                row.get('to', ''),
+                template_type=raw_template['template_type']
+            )
+            Template(raw_template, values=row, drop_values={'to'}).replaced
+        except (InvalidEmailError, InvalidPhoneError, NeededByTemplateError, NoPlaceholderForDataError):
             valid = False
     return {"valid": valid, "rows": rows}
diff --git a/app/main/views/sign_in.py b/app/main/views/sign_in.py
index fc27a366e..c2931b1cd 100644
--- a/app/main/views/sign_in.py
+++ b/app/main/views/sign_in.py
@@ -7,10 +7,10 @@ from flask import (
     flash
 )
 
-from flask.ext.login import current_user
+from flask.ext.login import (current_user, login_fresh, confirm_login)
 
 from app.main import main
-from app.main.dao import users_dao
+from app.main.dao import (users_dao, services_dao)
 from app.main.forms import LoginForm
 
 
@@ -18,11 +18,24 @@ from app.main.forms import LoginForm
 def sign_in():
     if current_user and current_user.is_authenticated():
         return redirect(url_for('main.choose_service'))
+
     form = LoginForm()
     if form.validate_on_submit():
         user = users_dao.get_user_by_email(form.email_address.data)
         user = _get_and_verify_user(user, form.password.data)
         if user:
+            # Remember me login
+            if not login_fresh() and \
+               not current_user.is_anonymous() and \
+               current_user.id == user.id and \
+               user.is_active():
+                confirm_login()
+                services = services_dao.get_services(user.id).get('data', [])
+                if (len(services) == 1):
+                    return redirect(url_for('main.service_dashboard', service_id=services[0]['id']))
+                else:
+                    return redirect(url_for('main.choose_service'))
+
             session['user_details'] = {"email": user.email_address, "id": user.id}
             if user.state == 'pending':
                 return redirect(url_for('.verify'))
diff --git a/app/main/views/sign_out.py b/app/main/views/sign_out.py
index de0ca58e1..cbe2738e3 100644
--- a/app/main/views/sign_out.py
+++ b/app/main/views/sign_out.py
@@ -6,8 +6,7 @@ from app.main import main
 
 
 @main.route('/sign-out', methods=(['GET']))
-@login_required
 def sign_out():
     session.clear()
     logout_user()
-    return redirect(url_for('main.index'))
+    return redirect(url_for('main.sign_in'))
diff --git a/app/main/views/templates.py b/app/main/views/templates.py
index be1001113..15f72b113 100644
--- a/app/main/views/templates.py
+++ b/app/main/views/templates.py
@@ -5,45 +5,48 @@ from notifications_python_client.errors import HTTPError
 from utils.template import Template
 
 from app.main import main
-from app.main.forms import TemplateForm
+from app.main.forms import SMSTemplateForm, EmailTemplateForm
 from app import job_api_client
-from app.main.dao.services_dao import get_service_by_id
+from app.main.dao.services_dao import get_service_by_id_or_404
 from app.main.dao import templates_dao as tdao
 from app.main.dao import services_dao as sdao
 
 
-@main.route("/services/<service_id>/templates")
+form_objects = {
+    'email': EmailTemplateForm,
+    'sms': SMSTemplateForm
+}
+
+
+@main.route("/services/<service_id>/templates/add-<template_type>", methods=['GET', 'POST'])
 @login_required
-def manage_service_templates(service_id):
-    return redirect(url_for(
-        '.choose_sms_template',
-        service_id=service_id
-    ))
+def add_service_template(service_id, template_type):
 
+    service = sdao.get_service_by_id_or_404(service_id)
 
-@main.route("/services/<service_id>/templates/add", methods=['GET', 'POST'])
-@login_required
-def add_service_template(service_id):
-    try:
-        service = sdao.get_service_by_id(service_id)['data']
-    except HTTPError as e:
-        if e.status_code == 404:
-            abort(404)
-        else:
-            raise e
+    if template_type not in ['sms', 'email']:
+        abort(404)
 
-    form = TemplateForm()
+    form = form_objects[template_type]()
 
     if form.validate_on_submit():
         tdao.insert_service_template(
-            form.name.data, form.template_content.data, service_id)
-        return redirect(url_for(
-            '.choose_sms_template', service_id=service_id))
+            form.name.data,
+            template_type,
+            form.template_content.data,
+            service_id,
+            form.subject.data if hasattr(form, 'subject') else None
+        )
+        return redirect(
+            url_for('.choose_template', service_id=service_id, template_type=template_type)
+        )
+
     return render_template(
-        'views/edit-template.html',
-        h1='Add a text message template',
+        'views/edit-{}-template.html'.format(template_type),
         form=form,
-        service_id=service_id)
+        template_type=template_type,
+        service_id=service_id
+    )
 
 
 @main.route("/services/<service_id>/templates/<int:template_id>", methods=['GET', 'POST'])
@@ -51,20 +54,26 @@ def add_service_template(service_id):
 def edit_service_template(service_id, template_id):
     template = tdao.get_service_template_or_404(service_id, template_id)['data']
     template['template_content'] = template['content']
-    form = TemplateForm(**template)
+    form = form_objects[template['template_type']](**template)
 
     if form.validate_on_submit():
         tdao.update_service_template(
-            template_id, form.name.data,
-            form.template_content.data, service_id)
-        return redirect(url_for('.choose_sms_template', service_id=service_id))
+            template_id, form.name.data, template['template_type'],
+            form.template_content.data, service_id
+        )
+        return redirect(url_for(
+            '.choose_template',
+            service_id=service_id,
+            template_type=template['template_type']
+        ))
 
     return render_template(
-        'views/edit-template.html',
-        h1='Edit template',
+        'views/edit-{}-template.html'.format(template['template_type']),
         form=form,
         service_id=service_id,
-        template_id=template_id)
+        template_id=template_id,
+        template_type=template['template_type']
+    )
 
 
 @main.route("/services/<service_id>/templates/<int:template_id>/delete", methods=['GET', 'POST'])
@@ -74,13 +83,17 @@ def delete_service_template(service_id, template_id):
 
     if request.method == 'POST':
         tdao.delete_service_template(service_id, template_id)
-        return redirect(url_for('.manage_service_templates', service_id=service_id))
+        return redirect(url_for(
+            '.choose_template',
+            service_id=service_id,
+            template_type=template['template_type']
+        ))
 
     template['template_content'] = template['content']
-    form = TemplateForm(**template)
+    form = form_objects[template['template_type']](**template)
     flash('Are you sure you want to delete ‘{}’?'.format(form.name.data), 'delete')
     return render_template(
-        'views/edit-template.html',
+        'views/edit-{}-template.html'.format(template['template_type']),
         h1='Edit template',
         form=form,
         service_id=service_id,
diff --git a/app/main/views/two_factor.py b/app/main/views/two_factor.py
index 5a7af0112..325225ae2 100644
--- a/app/main/views/two_factor.py
+++ b/app/main/views/two_factor.py
@@ -12,7 +12,10 @@ from app.main.forms import TwoFactorForm
 @main.route('/two-factor', methods=['GET', 'POST'])
 def two_factor():
     # TODO handle user_email not in session
-    user_id = session['user_details']['id']
+    try:
+        user_id = session['user_details']['id']
+    except KeyError:
+        return redirect('main.sign_in')
 
     def _check_code(code):
         return users_dao.check_verify_code(user_id, code, "sms")
@@ -27,7 +30,7 @@ def two_factor():
             if 'password' in session['user_details']:
                 user.set_password(session['user_details']['password'])
                 users_dao.update_user(user)
-            login_user(user)
+            login_user(user, remember=form.remember_me.data if form.remember_me.data else False)
         finally:
             del session['user_details']
         if (len(services) == 1):
diff --git a/app/notify_client/api_client.py b/app/notify_client/api_client.py
index f5f72298a..6d2a2016a 100644
--- a/app/notify_client/api_client.py
+++ b/app/notify_client/api_client.py
@@ -70,7 +70,7 @@ class NotificationsAdminAPIClient(NotificationsAPIClient):
         endpoint = "/service/{0}".format(service_id)
         return self.put(endpoint, data)
 
-    def create_service_template(self, name, type_, content, service_id):
+    def create_service_template(self, name, type_, content, service_id, subject=None):
         """
         Create a service template.
         """
@@ -80,10 +80,14 @@ class NotificationsAdminAPIClient(NotificationsAPIClient):
             "content": content,
             "service": service_id
         }
+        if subject:
+            data.update({
+                'subject': subject
+            })
         endpoint = "/service/{0}/template".format(service_id)
         return self.post(endpoint, data)
 
-    def update_service_template(self, id_, name, type_, content, service_id):
+    def update_service_template(self, id_, name, type_, content, service_id, subject=None):
         """
         Update a service template.
         """
@@ -94,8 +98,12 @@ class NotificationsAdminAPIClient(NotificationsAPIClient):
             'content': content,
             'service': service_id
         }
+        if subject:
+            data.update({
+                'subject': subject
+            })
         endpoint = "/service/{0}/template/{1}".format(service_id, id_)
-        return self.put(endpoint, data)
+        return self.post(endpoint, data)
 
     def get_service_template(self, service_id, template_id, *params):
         """
diff --git a/app/notify_client/invite_api_client.py b/app/notify_client/invite_api_client.py
new file mode 100644
index 000000000..515422780
--- /dev/null
+++ b/app/notify_client/invite_api_client.py
@@ -0,0 +1,29 @@
+
+from notifications_python_client.base import BaseAPIClient
+
+
+class InviteApiClient(BaseAPIClient):
+    def __init__(self, base_url=None, client_id=None, secret=None):
+        super(self.__class__, self).__init__(base_url=base_url or 'base_url',
+                                             client_id=client_id or 'client_id',
+                                             secret=secret or 'secret')
+
+    def init_app(self, app):
+        self.base_url = app.config['API_HOST_NAME']
+        self.client_id = app.config['ADMIN_CLIENT_USER_NAME']
+        self.secret = app.config['ADMIN_CLIENT_SECRET']
+
+    def create_invite(self, invite_from_id, service_id, email_address, permissions):
+        data = {
+            'service': str(service_id),
+            'email_address': email_address,
+            'from_user': invite_from_id,
+            'permissions': permissions
+        }
+        resp = self.post(url='/service/{}/invite'.format(service_id), data=data)
+        return resp['data']
+
+    def get_invites_for_service(self, service_id):
+        endpoint = '/service/{}/invite'.format(service_id)
+        resp = self.get(endpoint)
+        return resp['data']
diff --git a/app/notify_client/job_api_client.py b/app/notify_client/job_api_client.py
index e39b19a23..b24643c8c 100644
--- a/app/notify_client/job_api_client.py
+++ b/app/notify_client/job_api_client.py
@@ -1,4 +1,3 @@
-import uuid
 
 from notifications_python_client.base import BaseAPIClient
 
@@ -23,7 +22,6 @@ class JobApiClient(BaseAPIClient):
     def create_job(self, job_id, service_id, template_id, original_file_name, notification_count):
         data = {
             "id": job_id,
-            "service": service_id,
             "template": template_id,
             "original_file_name": original_file_name,
             "bucket_name": "service-{}-notify".format(service_id),
diff --git a/app/notify_client/user_api_client.py b/app/notify_client/user_api_client.py
index dafd4f66b..e0d1057d1 100644
--- a/app/notify_client/user_api_client.py
+++ b/app/notify_client/user_api_client.py
@@ -1,7 +1,7 @@
 from notifications_python_client.notifications import BaseAPIClient
 from notifications_python_client.errors import HTTPError
 
-from flask.ext.login import UserMixin
+from flask.ext.login import (UserMixin, login_fresh)
 
 
 class UserApiClient(BaseAPIClient):
@@ -81,6 +81,11 @@ class UserApiClient(BaseAPIClient):
                     return False, 'Code not found'
             raise e
 
+    def get_users_for_service(self, service_id):
+        endpoint = '/service/{}/users'.format(service_id)
+        resp = self.get(endpoint)
+        return resp['data']
+
 
 class User(UserMixin):
     def __init__(self, fields, max_failed_login_count=3):
@@ -100,6 +105,12 @@ class User(UserMixin):
     def is_active(self):
         return self.state == 'active'
 
+    def is_authenticated(self):
+        # To handle remember me token renewal
+        if not login_fresh():
+            return False
+        return super(User, self).is_authenticated()
+
     @property
     def id(self):
         return self._id
diff --git a/app/templates/components/checkbox.html b/app/templates/components/checkbox.html
new file mode 100644
index 000000000..e816f8aeb
--- /dev/null
+++ b/app/templates/components/checkbox.html
@@ -0,0 +1,30 @@
+{% macro checkbox(
+  field,
+  hint=False,
+  help_link=None,
+  help_link_text=None,
+  width='2-3',
+  suffix=None
+) %}
+    <label class="form-checkbox" for="{{ field.name }}">
+        {{ field.label }}
+        {% if hint %}
+            <span class="form-hint">
+                {{ hint }}
+            </span>
+        {% endif %}
+        {% if field.errors %}
+            <span class="error-message">
+                {{ field.errors[0] }}
+            </span>
+        {% endif %}
+        {{ field(**{
+            'class': 'form-control form-control-{} textbox-highlight-textbox'.format(width) if highlight_tags else 'form-control form-control-{} {}'.format(width, 'textbox-right-aligned' if suffix else ''),
+            'data-module': 'highlight-tags' if highlight_tags else ''})}}
+        {% if help_link and help_link_text %}
+            <p class="textbox-help-link">
+                <a href='{{ help_link }}'>{{ help_link_text }}</a>
+            </p>
+        {% endif %}
+    </label>
+{% endmacro %}
\ No newline at end of file
diff --git a/app/templates/components/email-message.html b/app/templates/components/email-message.html
index b619b16fa..4b0047651 100644
--- a/app/templates/components/email-message.html
+++ b/app/templates/components/email-message.html
@@ -9,29 +9,27 @@
     </h3>
   {% endif %}
   <div class="email-message">
-    {% if from_name and from_address %}
-      <div class="email-message-from">
-        <div class="grid-row">
-          <div class="column-one-eighth">
-            <span class="form-hint">From</span>
-          </div>
-          <div class="column-seven-eighths">
-            {{ from_name }} &lt;{{ from_address }}&gt;
-          </div>
-        </div>
-      </div>
-    {% endif %}
-    {% if subject %}
-      <div class="email-message-subject">
-        <div class="grid-row">
-          <div class="column-one-eighth">
-            <span class="form-hint">Subject</span>
-          </div>
-          <div class="column-seven-eighths">
-            {{ subject }}
-          </div>
-        </div>
-      </div>
+    {% if from_name or subject %}
+      <table class="email-message-meta">
+        <tbody>
+          {% if from_name and from_address %}
+            <tr>
+              <th>From</th>
+              <td>
+                {{ from_name }} &lt;{{ from_address }}&gt;
+              </td>
+            </tr>
+          {% endif %}
+          {% if subject %}
+            <tr class="email-message-meta">
+              <th>Subject</th>
+              <td>
+                {{ subject }}
+              </td>
+            </div>
+          {% endif %}
+        </tbody>
+      </table>
     {% endif %}
     <div class="email-message-body">
       {{ body|nl2br }}
diff --git a/app/templates/components/yes-no.html b/app/templates/components/yes-no.html
index 4432d6a9f..554a8e1fc 100644
--- a/app/templates/components/yes-no.html
+++ b/app/templates/components/yes-no.html
@@ -5,11 +5,11 @@
     </legend>
     <div class='yes-no-fields inline'>
       <label class='block-label'>
-        <input type='radio' name='{{ name }}' {% if current_value == True %}checked{% endif %} />
+        <input type='radio' name='{{ name }}' value='yes' {% if current_value == True %}checked{% endif %} />
         Yes
       </label>
       <label class='block-label'>
-        <input type='radio' name='{{ name }}' {% if current_value == False %}checked{% endif %} />
+        <input type='radio' name='{{ name }}' value='no' {% if current_value == False %}checked{% endif %} />
         No
       </label>
     </div>
diff --git a/app/templates/main_nav.html b/app/templates/main_nav.html
index 2fb1c7186..216bec23c 100644
--- a/app/templates/main_nav.html
+++ b/app/templates/main_nav.html
@@ -4,8 +4,9 @@
   </h2>
   {% if current_user.has_permissions(session.get('service_id', ''), ['send_messages']) %}
   <ul>
-    <li><a href="{{ url_for('.choose_sms_template', service_id=service_id) }}">Send text messages</a></li>
-    <li><a href="{{ url_for('.send_email', service_id=service_id) }}">Send emails</a></li>
+    <li><a href="{{ url_for('.choose_template', service_id=service_id, template_type='sms') }}">Send text messages</a></li>
+    <li><a href="{{ url_for('.choose_template', service_id=service_id, template_type='email') }}">Send emails</a></li>
+    <li><a href="{{ url_for('.letters_stub', service_id=service_id) }}">Send letters</a></li>
   </ul>
   {% endif %}
   {% if current_user.has_permissions(session.get('service_id', ''), ['manage_service']) %}
diff --git a/app/templates/views/add-from-address.html b/app/templates/views/add-from-address.html
deleted file mode 100644
index a67f3c6d3..000000000
--- a/app/templates/views/add-from-address.html
+++ /dev/null
@@ -1,42 +0,0 @@
-{% extends "withoutnav_template.html" %}
-{% from "components/textbox.html" import textbox %}
-{% from "components/page-footer.html" import page_footer %}
-{% from "components/sms-message.html" import sms_message %}
-{% from "components/email-message.html" import email_message %}
-
-{% block page_title %}
-  Preview your service name – GOV.UK Notify
-{% endblock %}
-
-{% block maincolumn_content %}
-
-  <h1 class="heading-large">
-    Preview your service name
-  </h1>
-
-  <div class="grid-row">
-    <div class="column-two-thirds">
-        {{ sms_message(
-          "{}: we received your payment, thank you".format(service_name),
-          name="Text message",
-          recipient='Sent from 40604'
-        ) }}
-    </div>
-  </div>
-  <div class="grid-row">
-    <div class='column-two-thirds'>
-      {{ email_message(
-        subject="We received your payment, thank you",
-        body="Dear Alice Smith,\n\nThank you for…",
-        from_name=service_name,
-        from_address=from_address,
-        name="Email",
-      ) }}
-    </div>
-  </div>
-
-  <form method="post">
-    {{page_footer('Looks good', back_link=url_for(".add_service"))}}
-  </form>
-
-{% endblock %}
diff --git a/app/templates/views/add-service.html b/app/templates/views/add-service.html
index f0b4a5ff7..ec03a91e9 100644
--- a/app/templates/views/add-service.html
+++ b/app/templates/views/add-service.html
@@ -16,16 +16,29 @@
     </h1>
 
     <p>
-      Be specific. Remember that there might be other people in your
-      organisation using GOV.UK Notify.
+      Be specific to your service. Remember that there might be
+      other people in your organisation using GOV.UK Notify.
     </p>
 
+    <p>
+      Users will see this:
+    </p>
+
+    <ul class="list-bullet bottom-gutter">
+      <li>
+        at the start of every text message, eg ‘Vehicle tax: we received your
+        payment, thank you’
+      </li>
+      <li>
+        as your email sender name
+      </li>
+    </ul>
+
     <form autocomplete="off" method="post">
 
       {{ textbox(form.name, hint="You can change this later") }}
 
-
-      {{ page_footer('Continue') }}
+      {{ page_footer('Add service') }}
 
     </form>
 
diff --git a/app/templates/views/check-email.html b/app/templates/views/check-email.html
deleted file mode 100644
index 3ca4830bf..000000000
--- a/app/templates/views/check-email.html
+++ /dev/null
@@ -1,18 +0,0 @@
-{% extends "withnav_template.html" %}
-
-{% block page_title %}
-  Send email – GOV.UK Notify
-{% endblock %}
-
-{% block maincolumn_content %}
-
-    <h1 class="heading-large">Send email</h1>
-
-    <p>This page will be where we check the email messages we're about to send</p>
-
-    <p>
-    <a class="button" href="dashboard" role="button">Send email messages</a>
-    </p>
-
-
-{% endblock %}
diff --git a/app/templates/views/check-sms.html b/app/templates/views/check.html
similarity index 64%
rename from app/templates/views/check-sms.html
rename to app/templates/views/check.html
index 4b1354847..315bc32eb 100644
--- a/app/templates/views/check-sms.html
+++ b/app/templates/views/check.html
@@ -1,4 +1,5 @@
 {% extends "withnav_template.html" %}
+{% from "components/email-message.html" import email_message %}
 {% from "components/sms-message.html" import sms_message %}
 {% from "components/table.html" import list_table, field %}
 {% from "components/placeholder.html" import placeholder %}
@@ -6,7 +7,7 @@
 {% from "components/page-footer.html" import page_footer %}
 
 {% block page_title %}
-  Check and confirm – GOV.UK Notify
+  {{ "Check and confirm" if upload_result.valid else page_heading }} – GOV.UK Notify
 {% endblock %}
 
 {% block maincolumn_content %}
@@ -25,24 +26,31 @@
   {% endif %}
 
   <h1 class="heading-large">
-    {{ "Check and confirm" if upload_result.valid else "Send text messages" }}
+    {{ "Check and confirm" if upload_result.valid else page_heading }}
   </h1>
 
-  <div class="grid-row">
-    <div class="column-two-thirds">
-      {% if template.missing_data or template.additional_data %}
-        {{ sms_message(template.formatted_as_markup)}}
-      {% else %}
-        {{ sms_message(template.replaced)}}
-      {% endif %}
+  {% if 'email' == template.template_type %}
+    {{ email_message(
+      template.subject,
+      template.replaced if upload_result.valid else template.formatted_as_markup,
+      from_address='{}@notifications.service.gov.uk'.format(service.email_from),
+      from_name=service.name
+    )}}
+  {% elif 'sms' == template.template_type %}
+    <div class="grid-row">
+      <div class="column-two-thirds">
+        {{ sms_message(
+          template.replaced if upload_result.valid else template.formatted_as_markup
+        )}}
+      </div>
     </div>
-  </div>
+  {% endif %}
 
   {% if upload_result.valid %}
     <form method="post" enctype="multipart/form-data">
       <input type="hidden" name="csrf_token" value="{{ csrf_token() }}" />
       <input type="submit" class="button" value="{{ "Send {} text message{}".format(upload_result.rows|count, '' if upload_result.rows|count == 1 else 's') }}" />
-      <a href="{{url_for('.send_sms', service_id=service_id, template_id=template.id)}}" class="page-footer-back-link">Back</a>
+      <a href="{{url_for('.send_messages', service_id=service_id, template_id=template.id)}}" class="page-footer-back-link">Back</a>
     </form>
   {% else %}
     {{file_upload(form.file, button_text='Upload a CSV file')}}
@@ -53,13 +61,13 @@
     caption=original_file_name,
     field_headings=column_headers
   ) %}
-    {% if item.phone|valid_phone_number %}
+    {% if item.to or ''|valid_phone_number %}
       {% call field() %}
-        {{ item.phone }}
+        {{ item.to }}
       {% endcall %}
     {% else %}
       {% call field(status='missing') %}
-        {{ item.phone }}
+        {{ item.to }}
       {% endcall %}
     {% endif %}
     {% for column in template.placeholders %}
diff --git a/app/templates/views/choose-sms-template.html b/app/templates/views/choose-template.html
similarity index 56%
rename from app/templates/views/choose-sms-template.html
rename to app/templates/views/choose-template.html
index 221fa781b..7fb87b827 100644
--- a/app/templates/views/choose-sms-template.html
+++ b/app/templates/views/choose-template.html
@@ -1,15 +1,16 @@
 {% extends "withnav_template.html" %}
+{% from "components/email-message.html" import email_message %}
 {% from "components/sms-message.html" import sms_message %}
 {% from "components/page-footer.html" import page_footer %}
 {% from "components/textbox.html" import textbox %}
 
 {% block page_title %}
-  Send text messages – GOV.UK Notify
+  {{ page_heading }} – GOV.UK Notify
 {% endblock %}
 
 {% block maincolumn_content %}
 
-  <h1 class="heading-large">Send text messages</h1>
+  <h1 class="heading-large">{{ page_heading }}</h1>
 
   <form method="POST" enctype="multipart/form-data">
 
@@ -26,12 +27,20 @@
       <div class="grid-row">
         {% for template in templates %}
           <div class="column-two-thirds">
-            {{ sms_message(template.formatted_as_markup, name=template.name) }}
+            {% if 'email' == template_type %}
+              {{ email_message(
+                template.subject,
+                template.formatted_as_markup,
+                name=template.name
+              ) }}
+            {% elif 'sms' == template_type %}
+              {{ sms_message(template.formatted_as_markup, name=template.name) }}
+            {% endif %}
           </div>
           <div class="column-one-third">
             <div class="sms-message-use-links">
-              <a href="{{ url_for(".send_sms", service_id=service_id, template_id=template.id) }}">Add recipients</a>
-              <a href="{{ url_for(".send_sms_to_self", service_id=service_id, template_id=template.id) }}">Send yourself a test</a>
+              <a href="{{ url_for(".send_messages", service_id=service_id, template_id=template.id) }}">Add recipients</a>
+              <a href="{{ url_for(".send_message_to_self", service_id=service_id, template_id=template.id) }}">Send yourself a test</a>
               <a href="{{ url_for(".edit_service_template", service_id=service_id, template_id=template.id) }}">Edit template</a>
             </div>
           </div>
@@ -40,7 +49,7 @@
     {% endif %}
 
     <p>
-      <a href="{{ url_for('.add_service_template', service_id=service_id) }}" class="button">Add a new template</a>
+      <a href="{{ url_for('.add_service_template', service_id=service_id, template_type=template_type) }}" class="button">Add a new template</a>
     </p>
 
   </form>
diff --git a/app/templates/views/documentation.html b/app/templates/views/documentation.html
index bc9723c39..3512ae423 100644
--- a/app/templates/views/documentation.html
+++ b/app/templates/views/documentation.html
@@ -161,7 +161,7 @@
         <h2 class="heading-medium">API endpoint</h2>
 
         <p>
-            https://www.notify.works/api/endpoint
+            https://api.notify.works
         </p>
 
         <p>
diff --git a/app/templates/views/edit-email-template.html b/app/templates/views/edit-email-template.html
new file mode 100644
index 000000000..3f9ec239f
--- /dev/null
+++ b/app/templates/views/edit-email-template.html
@@ -0,0 +1,39 @@
+{% extends "withnav_template.html" %}
+{% from "components/textbox.html" import textbox %}
+{% from "components/page-footer.html" import page_footer %}
+
+{% block page_title %}
+  {{ h1 }} – GOV.UK Notify
+{% endblock %}
+
+{% block maincolumn_content %}
+
+    <h1 class="heading-large">Edit email template</h1>
+
+    <form method="post">
+      <div class="grid-row">
+        <div class="column-two-thirds">
+          {{ textbox(form.name, width='1-1') }}
+          {{ textbox(form.subject, width='1-1') }}
+        </div>
+        <div class="column-two-thirds">
+          {{ textbox(form.template_content, highlight_tags=True, width='1-1') }}
+        </div>
+        <div class="column-one-third">
+          <label for='template_content' class='edit-template-placeholder-hint'>
+            Add placeholders using double brackets, eg Your thing
+            is due on ((date))
+          </label>
+        </div>
+      </div>
+      {{ page_footer(
+        'Save',
+        delete_link=url_for('.delete_service_template', service_id=service_id, template_id=template_id) if template_id or None,
+        delete_link_text='Delete this template',
+        back_link=url_for('.choose_template', template_type=template_type, service_id=service_id),
+        back_link_text='Cancel'
+      ) }}
+    </form>
+
+
+{% endblock %}
diff --git a/app/templates/views/edit-template.html b/app/templates/views/edit-sms-template.html
similarity index 87%
rename from app/templates/views/edit-template.html
rename to app/templates/views/edit-sms-template.html
index 4720a2a61..b8b44a927 100644
--- a/app/templates/views/edit-template.html
+++ b/app/templates/views/edit-sms-template.html
@@ -8,15 +8,13 @@
 
 {% block maincolumn_content %}
 
-    <h1 class="heading-large">{{ h1 }}</h1>
+    <h1 class="heading-large">Edit text message template</h1>
 
     <form method="post">
       <div class="grid-row">
         <div class="column-two-thirds">
           {{ textbox(form.name, width='1-1') }}
         </div>
-      </div>
-      <div class="grid-row">
         <div class="column-two-thirds">
           {{ textbox(form.template_content, highlight_tags=True, width='1-1') }}
         </div>
@@ -31,7 +29,7 @@
         'Save',
         delete_link=url_for('.delete_service_template', service_id=service_id, template_id=template_id) if template_id or None,
         delete_link_text='Delete this template',
-        back_link=url_for('.choose_sms_template', service_id=service_id),
+        back_link=url_for('.choose_template', service_id=service_id, template_type=template_type),
         back_link_text='Cancel'
       ) }}
     </form>
diff --git a/app/templates/views/invite-user.html b/app/templates/views/invite-user.html
index d1e6e5c7b..da40d42ff 100644
--- a/app/templates/views/invite-user.html
+++ b/app/templates/views/invite-user.html
@@ -28,6 +28,7 @@ Manage users – GOV.UK Notify
         <legend class='heading-small'>
           Permissions
         </legend>
+        <span class="form-hint">All team members can see message history</span>
         {{ yes_no('send_messages', 'Send messages', user.permission_send_messages) }}
         {{ yes_no('manage_service', 'Manage service', user.permission_manage_service) }}
         {{ yes_no('manage_api_keys', 'Manage API keys', user.permission_manage_api_keys) }}
diff --git a/app/templates/views/job.html b/app/templates/views/job.html
index 0c038141c..ae60fed13 100644
--- a/app/templates/views/job.html
+++ b/app/templates/views/job.html
@@ -14,13 +14,22 @@
       {{ uploaded_file_name }}
     </h1>
 
-    <div class="grid-row">
-      <div class="column-two-thirds">
-        {{ sms_message(
-          template.formatted_as_markup,
-        )}}
+    {% if 'sms' == template.template_type %}
+      <div class="grid-row">
+        <div class="column-two-thirds">
+          {{ sms_message(
+            template,
+          )}}
+        </div>
       </div>
-    </div>
+    {% elif 'email' == template.template_type %}
+      {{ email_message(
+        template.subject,
+        template,
+        from_address='{}@notifications.service.gov.uk'.format(service.email_from),
+        from_name=service.name
+      )}}
+    {% endif %}
 
     <p class='heading-small'>
       Started {{ uploaded_file_time|format_datetime }}
diff --git a/app/templates/views/letters.html b/app/templates/views/letters.html
new file mode 100644
index 000000000..1086f1d50
--- /dev/null
+++ b/app/templates/views/letters.html
@@ -0,0 +1,17 @@
+{% extends "withnav_template.html" %}
+
+{% block page_title %}
+  Send letters – GOV.UK Notify
+{% endblock %}
+
+{% block maincolumn_content %}
+
+  <h1 class="heading-large">
+    Send letters
+  </h1>
+
+  <p>
+    This page is where you would go to send letters.
+  </p>
+
+{% endblock %}
diff --git a/app/templates/views/manage-users.html b/app/templates/views/manage-users.html
index c12fb8ddc..9fd509b65 100644
--- a/app/templates/views/manage-users.html
+++ b/app/templates/views/manage-users.html
@@ -26,13 +26,13 @@ Manage users – GOV.UK Notify
     users, caption='Active', **table_options
   ) %}
     {% call field() %}
-      {{ current_user.name }}
+      {{ item.name }}
     {% endcall %}
     {{ boolean_field(item.permission_send_messages) }}
     {{ boolean_field(item.permission_manage_service) }}
     {{ boolean_field(item.permission_manage_api_keys) }}
     {% call field(align='right') %}
-      <a href="{{ url_for('.edit_user', service_id=service_id, user_id=0)}}">Change</a>
+      <a href="{{ url_for('.edit_user', service_id=service_id, user_id=item.id)}}">Change</a>
     {% endcall %}
   {% endcall %}
 
@@ -41,7 +41,7 @@ Manage users – GOV.UK Notify
       invited_users, caption='Invited', **table_options
     ) %}
       {% call field() %}
-        {{ item.email_localpart }}
+        {{ item.email_address }}
       {% endcall %}
       {{ boolean_field(item.permission_send_messages) }}
       {{ boolean_field(item.permission_manage_service) }}
diff --git a/app/templates/views/send-email.html b/app/templates/views/send-email.html
deleted file mode 100644
index 3fe253f32..000000000
--- a/app/templates/views/send-email.html
+++ /dev/null
@@ -1,17 +0,0 @@
-{% extends "withnav_template.html" %}
-
-{% block page_title %}
-Send email – GOV.UK Notify
-{% endblock %}
-
-{% block maincolumn_content %}
-
-    <h1 class="heading-large">Send email</h1>
-
-    <p>This page will be where we construct email messages</p>
-
-    <p>
-    <a class="button" href="check-email" role="button">Continue</a>
-    </p>
-
-{% endblock %}
diff --git a/app/templates/views/send-sms.html b/app/templates/views/send-sms.html
deleted file mode 100644
index c8a91388d..000000000
--- a/app/templates/views/send-sms.html
+++ /dev/null
@@ -1,34 +0,0 @@
-{% extends "withnav_template.html" %}
-{% from "components/sms-message.html" import sms_message %}
-{% from "components/page-footer.html" import page_footer %}
-{% from "components/file-upload.html" import file_upload %}
-{% from "components/table.html" import list_table, field %}
-
-{% block page_title %}
-  Send text messages – GOV.UK Notify
-{% endblock %}
-
-{% block maincolumn_content %}
-
-  <h1 class="heading-large">Add recipients</h1>
-
-  <div class="grid-row">
-    <div class="column-two-thirds">
-
-      {{ sms_message(template.formatted_as_markup) }}
-
-      {{ banner(
-        'You can upload real data, but we’ll only send to your mobile number until you <a href="{}">request to go live</a>'|safe,
-        'info'
-      )}}
-
-    </div>
-  </div>
-
-  {{file_upload(form.file, button_text='Upload a CSV file')}}
-
-  <p>
-    <a href="{{ url_for('.get_example_csv', service_id=service_id, template_id=template.id) }}">Download an example CSV file</a>
-  </p>
-
-{% endblock %}
diff --git a/app/templates/views/send.html b/app/templates/views/send.html
new file mode 100644
index 000000000..7b0dcf027
--- /dev/null
+++ b/app/templates/views/send.html
@@ -0,0 +1,54 @@
+{% extends "withnav_template.html" %}
+{% from "components/sms-message.html" import sms_message %}
+{% from "components/email-message.html" import email_message %}
+{% from "components/page-footer.html" import page_footer %}
+{% from "components/file-upload.html" import file_upload %}
+{% from "components/table.html" import list_table, field %}
+
+{% block page_title %}
+  Send text messages – GOV.UK Notify
+{% endblock %}
+
+{% block maincolumn_content %}
+
+  <h1 class="heading-large">Add recipients</h1>
+
+  {% if 'sms' == template.template_type %}
+    <div class="grid-row">
+      <div class="column-two-thirds">
+        {{ sms_message(template.formatted_as_markup) }}
+      </div>
+    </div>
+  {% elif 'email' == template.template_type %}
+    {{ email_message(
+      template.subject,
+      template.formatted_as_markup,
+      from_address='{}@notifications.service.gov.uk'.format(service.email_from),
+      from_name=service.name
+    ) }}
+  {% endif %}
+
+  <div class="grid-row">
+    <div class="column-two-thirds">
+      <p>
+        Add recipients by uploading a .csv file with
+        {{ template.placeholders|length + 1 }}
+        {% if template.placeholders %}
+          columns:
+        {% else %}
+          column:
+        {% endif %}
+      </p>
+      <p class="bottom-gutter-2-3">
+        <span class='placeholder'>to</span>
+        {{ template.placeholders_as_markup|join(" ") }}
+      </p>
+      <p>
+        <a href="{{ url_for('.get_example_csv', service_id=service_id, template_id=template.id) }}">Download an example</a>
+      </p>
+    </div>
+  </div>
+
+  {{file_upload(form.file, button_text='Upload your CSV file')}}
+
+{% endblock %}
diff --git a/app/templates/views/service_dashboard.html b/app/templates/views/service_dashboard.html
index 045a90695..bc70de076 100644
--- a/app/templates/views/service_dashboard.html
+++ b/app/templates/views/service_dashboard.html
@@ -35,8 +35,8 @@
             </li>
           </ol>
         """.format(
-          url_for(".add_service_template", service_id=service_id),
-          url_for(".choose_sms_template", service_id=service_id)
+          url_for(".add_service_template", service_id=service_id, template_type="sms"),
+          url_for(".choose_template", service_id=service_id, template_type="sms")
         )|safe,
         subhead='Get started',
         type="tip"
@@ -46,7 +46,7 @@
         """
           <a href='{}'>Send yourself a text message</a>
         """.format(
-          url_for(".choose_sms_template", service_id=service_id)
+          url_for(".choose_template", service_id=service_id, template_type="sms")
         )|safe,
         subhead='Next step',
         type="tip"
diff --git a/app/templates/views/two-factor.html b/app/templates/views/two-factor.html
index bbc121bc9..19126706e 100644
--- a/app/templates/views/two-factor.html
+++ b/app/templates/views/two-factor.html
@@ -1,5 +1,6 @@
 {% extends "withoutnav_template.html" %}
 {% from "components/textbox.html" import textbox %}
+{% from "components/checkbox.html" import checkbox %}
 {% from "components/page-footer.html" import page_footer %}
 
 {% block page_title %}
@@ -22,6 +23,7 @@
         help_link=url_for('.verification_code_not_received'),
         help_link_text='I haven’t received a text message'
       ) }}
+      {{ checkbox(form.remember_me) }}
       {{ page_footer(
         "Continue"
       ) }}
diff --git a/app/utils.py b/app/utils.py
index ad89aea60..176ff26cb 100644
--- a/app/utils.py
+++ b/app/utils.py
@@ -1,3 +1,5 @@
+import re
+
 from functools import wraps
 from flask import (abort, session)
 
@@ -28,6 +30,11 @@ class BrowsableItem(object):
         pass
 
 
+class InvalidEmailError(Exception):
+    def __init__(self, message):
+        self.message = message
+
+
 class InvalidPhoneError(Exception):
     def __init__(self, message):
         self.message = message
@@ -74,6 +81,19 @@ def format_phone_number(number):
     return '+447{}{}{}'.format(*re.findall('...', number))
 
 
+def validate_email_address(email_address):
+    if re.match(r"(^[a-zA-Z0-9_.+-]+@[a-zA-Z0-9-]+\.[a-zA-Z0-9-.]+$)", email_address):
+        return
+    raise InvalidEmailError('Not a valid email address')
+
+
+def validate_recipient(recipient, template_type):
+    return {
+        'email': validate_email_address,
+        'sms': validate_phone_number
+    }[template_type](recipient)
+
+
 def user_has_permissions(*permissions):
     def wrap(func):
         @wraps(func)
diff --git a/config.py b/config.py
index 999949b7b..af641a7b7 100644
--- a/config.py
+++ b/config.py
@@ -1,4 +1,5 @@
 import os
+from datetime import timedelta
 
 
 class Config(object):
@@ -21,9 +22,14 @@ class Config(object):
     SESSION_COOKIE_NAME = 'notify_admin_session'
     SESSION_COOKIE_PATH = '/admin'
     SESSION_COOKIE_HTTPONLY = True
-    SESSION_COOKIE_SECURE = False
+    SESSION_COOKIE_SECURE = True
     PERMANENT_SESSION_LIFETIME = 3600  # seconds
     SESSION_REFRESH_EACH_REQUEST = True
+    REMEMBER_COOKIE_NAME = 'notify_admin_remember_me'
+    REMEMBER_COOKIE_PATH = '/admin'
+    REMEMBER_COOKIE_DURATION = timedelta(days=1)
+    REMEMBER_COOKIE_HTTPONLY = True
+    REMEMBER_COOKIE_SECURE = True
 
     API_HOST_NAME = os.getenv('API_HOST_NAME')
     NOTIFY_API_SECRET = os.getenv('NOTIFY_API_SECRET', "dev-secret")
@@ -54,6 +60,8 @@ class Development(Config):
     ADMIN_CLIENT_USER_NAME = 'dev-notify-admin'
     ADMIN_CLIENT_SECRET = 'dev-notify-secret-key'
     WTF_CSRF_ENABLED = False
+    REMEMBER_COOKIE_SECURE = False
+    SESSION_COOKIE_SECURE = False
 
 
 class Test(Development):
@@ -64,7 +72,6 @@ class Test(Development):
 class Preview(Config):
     DEBUG = False
     HTTP_PROTOCOL = 'https'
-    SESSION_COOKIE_SECURE = True
     HEADER_COLOUR = '#F47738'  # $orange
 
 
diff --git a/package.json b/package.json
index 267f7d7a7..6ed466634 100644
--- a/package.json
+++ b/package.json
@@ -29,9 +29,8 @@
     "gulp-base64": "0.1.3",
     "gulp-concat": "2.6.0",
     "gulp-include": "2.1.0",
-    "gulp-jquery": "1.1.1",
     "gulp-load-plugins": "1.1.0",
-    "gulp-sass": "2.1.1",
+    "gulp-sass": "2.2.0",
     "gulp-uglify": "1.5.1",
     "jquery": "1.11.2",
     "query-command-supported": "1.0.0"
diff --git a/requirements.txt b/requirements.txt
index 49dceaccf..2c746a497 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -12,6 +12,6 @@ credstash==1.8.0
 boto3==1.2.3
 Pygments==2.0.2
 
-git+https://github.com/alphagov/notifications-python-client.git@0.2.5#egg=notifications-python-client==0.2.7
+git+https://github.com/alphagov/notifications-python-client.git@0.2.8#egg=notifications-python-client==0.2.8
 
-git+https://github.com/alphagov/notifications-utils.git@0.1.0#egg=notifications-utils==0.1.0
+git+https://github.com/alphagov/notifications-utils.git@0.1.2#egg=notifications-utils==0.1.2
diff --git a/tests/__init__.py b/tests/__init__.py
index 6170a7817..4792e8c7e 100644
--- a/tests/__init__.py
+++ b/tests/__init__.py
@@ -47,6 +47,15 @@ def api_key_json(id_, name, expiry_date=None):
             'expiry_date': expiry_date
             }
 
+
+def invite_json(id, from_user, service_id, email_address):
+    return {'id': id,
+            'from_user': from_user,
+            'service': service_id,
+            'email_address': email_address,
+            'status': 'pending'}
+
+
 TEST_USER_EMAIL = 'test@user.gov.uk'
 
 
diff --git a/tests/app/main/notify_client/test_job_client.py b/tests/app/main/notify_client/test_job_client.py
index e59b2927a..1eb2be38d 100644
--- a/tests/app/main/notify_client/test_job_client.py
+++ b/tests/app/main/notify_client/test_job_client.py
@@ -11,7 +11,6 @@ def test_client_creates_job_data_correctly(mocker):
 
     expected_data = {
         "id": job_id,
-        "service": service_id,
         "template": template_id,
         "original_file_name": original_file_name,
         "bucket_name": "service-{}-notify".format(service_id),
diff --git a/tests/app/main/test_add_service_form.py b/tests/app/main/test_add_service_form.py
index a89170c1e..ca021b741 100644
--- a/tests/app/main/test_add_service_form.py
+++ b/tests/app/main/test_add_service_form.py
@@ -9,4 +9,4 @@ def test_form_should_have_errors_when_duplicate_service_is_added(app_):
         form = AddServiceForm(_get_form_names,
                               formdata=MultiDict([('name', 'some service')]))
         form.validate()
-        assert {'name': ['Service name already exists']} == form.errors
+        assert {'name': ['This service name is already in use']} == form.errors
diff --git a/tests/app/main/views/test_add_service.py b/tests/app/main/views/test_add_service.py
index d8b344ea5..c5a4fc9e7 100644
--- a/tests/app/main/views/test_add_service.py
+++ b/tests/app/main/views/test_add_service.py
@@ -14,7 +14,7 @@ def test_get_should_render_add_service_template(app_,
             client.login(api_user_active)
             response = client.get(url_for('main.add_service'))
             assert response.status_code == 200
-            assert 'Add a new service' in response.get_data(as_text=True)
+            assert 'Which service do you want to set up notifications for?' in response.get_data(as_text=True)
 
 
 def test_should_add_service_and_redirect_to_next_page(app_,
@@ -31,48 +31,8 @@ def test_should_add_service_and_redirect_to_next_page(app_,
                 url_for('main.add_service'),
                 data={'name': 'testing the post'})
             assert response.status_code == 302
-            assert response.location == url_for('main.add_from_address', _external=True)
-
-
-def test_should_confirm_add_service(
-    app_,
-    mock_login,
-    mock_get_services,
-    api_user_active,
-    mock_get_user,
-    mock_get_user_by_email
-):
-    with app_.test_request_context():
-        with app_.test_client() as client:
-            client.login(api_user_active)
-            with client.session_transaction() as session:
-                session['service_name'] = 'Renew Your Pet Passport'
-            response = client.get(url_for('main.add_from_address'))
-            assert response.status_code == 200
-            assert 'Preview your service name' in response.get_data(as_text=True)
-            assert 'Renew Your Pet Passport' in response.get_data(as_text=True)
-            assert 'renew.your.pet.passport@notifications.service.gov.uk' in response.get_data(as_text=True)
-
-
-def test_should_add_service_after_confirmation(
-    app_,
-    mock_login,
-    mock_create_service,
-    mock_get_services,
-    api_user_active,
-    mock_get_user,
-    mock_get_user_by_email
-):
-    with app_.test_request_context():
-        with app_.test_client() as client:
-            client.login(api_user_active)
-            with client.session_transaction() as session:
-                session['service_name'] = 'Renew Your Pet Passport'
-            response = client.post(url_for('main.add_from_address'))
-            assert response.status_code == 302
             assert response.location == url_for('main.service_dashboard', service_id=101, _external=True)
             assert mock_create_service.called
-            assert mock_get_services.called
 
 
 def test_should_return_form_errors_when_service_name_is_empty(app_,
@@ -87,7 +47,7 @@ def test_should_return_form_errors_when_service_name_is_empty(app_,
             client.login(api_user_active)
             response = client.post(url_for('main.add_service'), data={})
             assert response.status_code == 200
-            assert 'Service name can not be empty' in response.get_data(as_text=True)
+            assert 'Service name can’t be empty' in response.get_data(as_text=True)
 
 
 def test_should_return_form_errors_with_duplicate_service_name(app_,
@@ -102,5 +62,5 @@ def test_should_return_form_errors_with_duplicate_service_name(app_,
             response = client.post(
                 url_for('main.add_service'), data={'name': 'service_one'})
             assert response.status_code == 200
-            assert 'Service name already exists' in response.get_data(as_text=True)
+            assert 'This service name is already in use' in response.get_data(as_text=True)
             assert mock_get_services.called
diff --git a/tests/app/main/views/test_jobs.py b/tests/app/main/views/test_jobs.py
index 98f99e514..c3147555f 100644
--- a/tests/app/main/views/test_jobs.py
+++ b/tests/app/main/views/test_jobs.py
@@ -27,6 +27,7 @@ def test_should_show_page_for_one_job(app_,
                                       mock_login,
                                       mock_get_user,
                                       mock_get_user_by_email,
+                                      mock_get_service,
                                       mock_get_service_template,
                                       job_data,
                                       mock_get_job):
diff --git a/tests/app/main/views/test_manage_users.py b/tests/app/main/views/test_manage_users.py
index 62ee8d642..438e3060e 100644
--- a/tests/app/main/views/test_manage_users.py
+++ b/tests/app/main/views/test_manage_users.py
@@ -1,12 +1,15 @@
-import json
 from flask import url_for
 
+from bs4 import BeautifulSoup
+
 
 def test_should_show_overview_page(
     app_,
     api_user_active,
     mock_login,
-    mock_get_service
+    mock_get_service,
+    mock_get_users_by_service,
+    mock_get_invites_for_service
 ):
     with app_.test_request_context():
         with app_.test_client() as client:
@@ -15,6 +18,7 @@ def test_should_show_overview_page(
 
         assert 'Manage team' in response.get_data(as_text=True)
         assert response.status_code == 200
+        mock_get_users_by_service.assert_called_once_with(service_id='55555')
 
 
 def test_should_show_page_for_one_user(
@@ -35,7 +39,9 @@ def test_redirect_after_saving_user(
     app_,
     api_user_active,
     mock_login,
-    mock_get_service
+    mock_get_service,
+    mock_get_users_by_service,
+    mock_get_invites_for_service
 ):
     with app_.test_request_context():
         with app_.test_client() as client:
@@ -67,18 +73,34 @@ def test_should_show_page_for_inviting_user(
 
 def test_invite_user(
     app_,
+    service_one,
     api_user_active,
     mock_login,
-    mock_get_service
+    mock_get_users_by_service,
+    mock_create_invite,
+    mock_get_invites_for_service
 ):
+    from_user = api_user_active.id
+    service_id = service_one['id']
+    email_address = 'test@example.gov.uk'
+    permissions = 'send_messages,manage_service,manage_api_keys'
+
     with app_.test_request_context():
         with app_.test_client() as client:
             client.login(api_user_active)
             response = client.post(
-                url_for('main.invite_user', service_id=55555),
-                data={'email_address': 'test@example.gov.uk'},
+                url_for('main.invite_user', service_id=service_id),
+                data={'email_address': email_address,
+                      'send_messages': 'yes',
+                      'manage_service': 'yes',
+                      'manage_api_keys': 'yes'},
                 follow_redirects=True
             )
 
         assert response.status_code == 200
-        assert 'Invite sent to test@example.gov.uk' in response.get_data(as_text=True)
+        mock_create_invite.assert_called_with(from_user, service_id, email_address, permissions)
+        mock_get_invites_for_service.assert_called_with(service_id=service_id)
+        page = BeautifulSoup(response.data.decode('utf-8'), 'html.parser')
+        assert page.h1.string.strip() == 'Manage team'
+        flash_banner = page.find('div', class_='banner-default-with-tick').string.strip()
+        assert flash_banner == 'Invite sent to test@example.gov.uk'
diff --git a/tests/app/main/views/test_sms.py b/tests/app/main/views/test_send.py
similarity index 50%
rename from tests/app/main/views/test_sms.py
rename to tests/app/main/views/test_send.py
index 6f9656e25..e638a5481 100644
--- a/tests/app/main/views/test_sms.py
+++ b/tests/app/main/views/test_send.py
@@ -1,67 +1,85 @@
+import pytest
+
 from io import BytesIO
 from flask import url_for
+from unittest.mock import ANY
 
-import moto
+template_types = ['email', 'sms']
 
 
-def test_choose_sms_template(app_,
-                             api_user_active,
-                             mock_login,
-                             mock_get_user,
-                             mock_check_verify_code,
-                             mock_get_service_templates,
-                             mock_get_jobs):
+@pytest.mark.parametrize("template_type", template_types)
+def test_choose_template(
+    template_type,
+    app_,
+    api_user_active,
+    mock_login,
+    mock_get_user,
+    mock_get_service,
+    mock_check_verify_code,
+    mock_get_service_templates,
+    mock_get_jobs
+):
     with app_.test_request_context():
         with app_.test_client() as client:
             client.login(api_user_active)
-            response = client.get(url_for('main.choose_sms_template', service_id=12345))
+            response = client.get(url_for('main.choose_template', template_type=template_type, service_id=12345))
 
         assert response.status_code == 200
         content = response.get_data(as_text=True)
-        assert 'template_one' in content
-        assert 'template one content' in content
-        assert 'template_two' in content
-        assert 'template two content' in content
+        assert '{}_template_one'.format(template_type) in content
+        assert '{} template one content'.format(template_type) in content
+        assert '{}_template_two'.format(template_type) in content
+        assert '{} template two content'.format(template_type) in content
 
 
-def test_upload_empty_csvfile_returns_to_upload_page(app_,
-                                                     api_user_active,
-                                                     mock_login,
-                                                     mock_get_user,
-                                                     mock_get_service_templates,
-                                                     mock_check_verify_code,
-                                                     mock_get_service_template):
+def test_upload_empty_csvfile_returns_to_upload_page(
+    app_,
+    api_user_active,
+    mock_login,
+    mock_get_user,
+    mock_get_service,
+    mock_get_service_templates,
+    mock_check_verify_code,
+    mock_get_service_template
+):
     with app_.test_request_context():
         with app_.test_client() as client:
             client.login(api_user_active)
             upload_data = {'file': (BytesIO(''.encode('utf-8')), 'emtpy.csv')}
-            response = client.post(url_for('main.send_sms', service_id=12345, template_id=54321),
-                                   data=upload_data, follow_redirects=True)
+            response = client.post(
+                url_for('main.send_messages', service_id=12345, template_id=54321),
+                data=upload_data,
+                follow_redirects=True
+            )
 
         assert response.status_code == 200
         content = response.get_data(as_text=True)
         assert 'The file emtpy.csv contained no data' in content
 
 
-@moto.mock_s3
-def test_upload_csvfile_with_invalid_phone_shows_check_page_with_errors(app_,
-                                                                        mocker,
-                                                                        api_user_active,
-                                                                        mock_login,
-                                                                        mock_get_user,
-                                                                        mock_get_user_by_email,
-                                                                        mock_get_service_template):
+def test_upload_csvfile_with_invalid_phone_shows_check_page_with_errors(
+    app_,
+    api_user_active,
+    mocker,
+    mock_login,
+    mock_get_service,
+    mock_get_service_template,
+    mock_s3_upload
+):
 
-    contents = 'phone\n+44 123\n+44 456'
+    contents = 'to,name\n+44 123,test1\n+44 456,test2'
     file_data = (BytesIO(contents.encode('utf-8')), 'invalid.csv')
+    mocker.patch('app.main.views.send.s3download', return_value=contents)
 
     with app_.test_request_context():
         with app_.test_client() as client:
             client.login(api_user_active)
             upload_data = {'file': file_data}
-            response = client.post(url_for('main.send_sms', service_id=12345, template_id=54321),
-                                   data=upload_data,
-                                   follow_redirects=True)
+            response = client.post(
+                url_for('main.send_messages', service_id=12345, template_id=54321),
+                data=upload_data,
+                follow_redirects=True
+            )
         assert response.status_code == 200
         content = response.get_data(as_text=True)
         assert 'Your CSV file contained missing or invalid data' in content
@@ -70,38 +88,68 @@ def test_upload_csvfile_with_invalid_phone_shows_check_page_with_errors(app_,
         assert 'Upload a CSV file' in content
 
 
-@moto.mock_s3
+def test_upload_csvfile_removes_empty_lines_and_trailing_commas(
+    app_,
+    api_user_active,
+    mocker,
+    mock_login,
+    mock_get_service,
+    mock_get_service_template,
+    mock_s3_upload
+):
+
+    contents = 'to,name,,,\n++44 7700 900981,test1,,,\n+44 7700 900981,test2,,,\n ,,, \n ,,, \t \t \n'
+    file_data = (BytesIO(contents.encode('utf-8')), 'invalid.csv')
+
+    expected_data = {'data': ['to,name', '++44 7700 900981,test1', '+44 7700 900981,test2'],
+                     'file_name': 'invalid.csv'}
+
+    mocker.patch('app.main.views.send.s3download',
+                 return_value='to,name\n++44 7700 900981,test1\n+44 7700 900981,test2')
+
+    with app_.test_request_context():
+        with app_.test_client() as client:
+            client.login(api_user_active)
+            upload_data = {'file': file_data}
+            response = client.post(
+                url_for('main.send_messages', service_id=12345, template_id=54321),
+                data=upload_data,
+                follow_redirects=True
+            )
+        assert response.status_code == 200
+        mock_s3_upload.assert_called_with(ANY, '12345', expected_data, 'eu-west-1')
+
+
 def test_send_test_message_to_self(
     app_,
     mocker,
     api_user_active,
     mock_login,
-    mock_get_user,
-    mock_get_user_by_email,
-    mock_get_service_template
+    mock_get_service,
+    mock_get_service_template,
+    mock_s3_upload
 ):
 
+    expected_data = {'data': ['to', '+4412341234'], 'file_name': 'Test run'}
+    mocker.patch('app.main.views.send.s3download', return_value='to\r\n+4412341234')
+
     with app_.test_request_context():
         with app_.test_client() as client:
             client.login(api_user_active)
             response = client.get(
-                url_for('main.send_sms_to_self', service_id=12345, template_id=54321),
+                url_for('main.send_message_to_self', service_id=12345, template_id=54321),
                 follow_redirects=True
             )
         assert response.status_code == 200
-        content = response.get_data(as_text=True)
-        assert 'Test run' in content
-        assert '+4412341234' in content
+        mock_s3_upload.assert_called_with(ANY, '12345', expected_data, 'eu-west-1')
 
 
-@moto.mock_s3
 def test_download_example_csv(
     app_,
     mocker,
     api_user_active,
     mock_login,
-    mock_get_user,
-    mock_get_user_by_email,
+    mock_get_service,
     mock_get_service_template
 ):
 
@@ -113,28 +161,29 @@ def test_download_example_csv(
                 follow_redirects=True
             )
         assert response.status_code == 200
-        assert response.get_data(as_text=True) == 'phone\r\n+4412341234\r\n'
+        assert response.get_data(as_text=True) == 'to\r\n+4412341234\r\n'
         assert 'text/csv' in response.headers['Content-Type']
 
 
-@moto.mock_s3
-def test_upload_csvfile_with_valid_phone_shows_all_numbers(app_,
-                                                           mocker,
-                                                           api_user_active,
-                                                           mock_login,
-                                                           mock_get_user,
-                                                           mock_get_user_by_email,
-                                                           mock_get_service_template):
-
-    contents = 'phone\n+44 7700 900981\n+44 7700 900982\n+44 7700 900983\n+44 7700 900984\n+44 7700 900985\n+44 7700 900986'  # noqa
+def test_upload_csvfile_with_valid_phone_shows_all_numbers(
+    app_,
+    mocker,
+    api_user_active,
+    mock_login,
+    mock_get_service,
+    mock_get_service_template,
+    mock_s3_upload
+):
 
+    contents = 'to\n+44 7700 900981\n+44 7700 900982\n+44 7700 900983\n+44 7700 900984\n+44 7700 900985\n+44 7700 900986'  # noqa
     file_data = (BytesIO(contents.encode('utf-8')), 'valid.csv')
+    mocker.patch('app.main.views.send.s3download', return_value=contents)
 
     with app_.test_request_context():
         with app_.test_client() as client:
             client.login(api_user_active)
             upload_data = {'file': file_data}
-            response = client.post(url_for('main.send_sms', service_id=12345, template_id=54321),
+            response = client.post(url_for('main.send_messages', service_id=12345, template_id=54321),
                                    data=upload_data,
                                    follow_redirects=True)
             with client.session_transaction() as sess:
@@ -153,17 +202,17 @@ def test_upload_csvfile_with_valid_phone_shows_all_numbers(app_,
             assert '+44 7700 900986' in content
 
 
-@moto.mock_s3
-def test_create_job_should_call_api(app_,
-                                    service_one,
-                                    api_user_active,
-                                    mock_get_user,
-                                    mock_get_user_by_email,
-                                    mock_login,
-                                    job_data,
-                                    mock_create_job,
-                                    mock_get_job,
-                                    mock_get_service_template):
+def test_create_job_should_call_api(
+    app_,
+    service_one,
+    api_user_active,
+    mock_login,
+    job_data,
+    mock_create_job,
+    mock_get_job,
+    mock_get_service,
+    mock_get_service_template
+):
 
     service_id = service_one['id']
     job_id = job_data['id']
@@ -178,7 +227,7 @@ def test_create_job_should_call_api(app_,
                 session['upload_data'] = {'original_file_name': original_file_name,
                                           'template_id': template_id,
                                           'notification_count': notification_count}
-            url = url_for('main.check_sms', service_id=service_one['id'], upload_id=job_id)
+            url = url_for('main.check_messages', service_id=service_one['id'], upload_id=job_id)
             response = client.post(url, data=job_data, follow_redirects=True)
 
         assert response.status_code == 200
diff --git a/tests/app/main/views/test_sign_in.py b/tests/app/main/views/test_sign_in.py
index 1d72b6a00..ef8569338 100644
--- a/tests/app/main/views/test_sign_in.py
+++ b/tests/app/main/views/test_sign_in.py
@@ -90,3 +90,26 @@ def test_should_return_redirect_when_user_is_pending(app_,
                 'password': 'val1dPassw0rd!'})
         assert response.status_code == 302
         assert response.location == url_for('main.verify', _external=True)
+
+
+def test_not_fresh_session_login(app_,
+                                 api_user_active,
+                                 mock_login,
+                                 mock_get_user_by_email,
+                                 mock_verify_password,
+                                 mock_get_services_with_one_service):
+    with app_.test_request_context():
+        with app_.test_client() as client:
+            client.login(api_user_active)
+            with client.session_transaction() as session:
+                assert session['_fresh']
+                session['_fresh'] = False
+            # This should skip the two factor
+            response = client.post(
+                url_for('main.sign_in'), data={
+                    'email_address': api_user_active.email_address,
+                    'password': 'val1dPassw0rd!'})
+        assert response.status_code == 302
+        service_dct = mock_get_services_with_one_service(api_user_active.id)['data'][0]
+        assert response.location == url_for(
+            'main.service_dashboard', service_id=service_dct['id'], _external=True)
diff --git a/tests/app/main/views/test_sign_out.py b/tests/app/main/views/test_sign_out.py
index 1be46f423..f4d7019a8 100644
--- a/tests/app/main/views/test_sign_out.py
+++ b/tests/app/main/views/test_sign_out.py
@@ -7,7 +7,7 @@ def test_render_sign_out_redirects_to_sign_in(app_):
             url_for('main.sign_out'))
         assert response.status_code == 302
         assert response.location == url_for(
-            'main.sign_in', _external=True, next=url_for('main.sign_out'))
+            'main.sign_in', _external=True)
 
 
 def test_sign_out_user(app_,
@@ -22,9 +22,9 @@ def test_sign_out_user(app_,
         email = 'valid@example.gov.uk'
         password = 'val1dPassw0rd!'
         with app_.test_client() as client:
-            with client.session_transaction() as session:
-                print('session: {}'.format(session))
             client.login(api_user_active)
+            with client.session_transaction() as session:
+                assert session.get('user_id') is not None
             # Check we are logged in
             response = client.get(
                 url_for('main.service_dashboard', service_id="123"))
@@ -32,5 +32,6 @@ def test_sign_out_user(app_,
             response = client.get(url_for('main.sign_out'))
             assert response.status_code == 302
             assert response.location == url_for(
-                'main.index', _external=True)
-            assert session.get('ItsdangerousSession') is None
+                'main.sign_in', _external=True)
+            with client.session_transaction() as session:
+                assert session.get('user_id') is None
diff --git a/tests/app/main/views/test_templates.py b/tests/app/main/views/test_templates.py
index cecc59353..1ec43d502 100644
--- a/tests/app/main/views/test_templates.py
+++ b/tests/app/main/views/test_templates.py
@@ -4,24 +4,6 @@ import uuid
 from flask import url_for
 
 
-def test_should_return_list_of_all_templates(app_,
-                                             api_user_active,
-                                             mock_get_service_templates,
-                                             mock_get_user,
-                                             mock_get_user_by_email,
-                                             mock_login,
-                                             mock_get_jobs):
-    with app_.test_request_context():
-        with app_.test_client() as client:
-            client.login(api_user_active)
-            service_id = str(uuid.uuid4())
-            response = client.get(url_for(
-                '.manage_service_templates', service_id=service_id), follow_redirects=True)
-
-    assert response.status_code == 200
-    mock_get_service_templates.assert_called_with(service_id)
-
-
 def test_should_show_page_for_one_templates(app_,
                                             api_user_active,
                                             mock_get_service_template,
@@ -62,8 +44,9 @@ def test_should_redirect_when_saving_a_template(app_,
             data = {
                 'id': template_id,
                 'name': name,
-                "template_content": content,
-                "service": service_id
+                'template_content': content,
+                'type': 'sms',
+                'service': service_id
             }
             response = client.post(url_for(
                 '.edit_service_template',
@@ -72,7 +55,7 @@ def test_should_redirect_when_saving_a_template(app_,
 
             assert response.status_code == 302
             assert response.location == url_for(
-                '.choose_sms_template', service_id=service_id, _external=True)
+                '.choose_template', service_id=service_id, template_type='sms', _external=True)
             mock_update_service_template.assert_called_with(
                 template_id, name, 'sms', content, service_id)
 
@@ -127,12 +110,13 @@ def test_should_redirect_when_deleting_a_template(app_,
             response = client.post(url_for(
                 '.delete_service_template',
                 service_id=service_id,
-                template_id=template_id), data=data)
+                template_id=template_id
+            ), data=data)
 
             assert response.status_code == 302
             assert response.location == url_for(
-                '.manage_service_templates',
-                service_id=service_id, _external=True)
+                '.choose_template',
+                service_id=service_id, template_type=type_, _external=True)
             mock_get_service_template.assert_called_with(
                 service_id, template_id)
             mock_delete_service_template.assert_called_with(
diff --git a/tests/app/main/views/test_two_factor.py b/tests/app/main/views/test_two_factor.py
index 964842482..a89d8b03c 100644
--- a/tests/app/main/views/test_two_factor.py
+++ b/tests/app/main/views/test_two_factor.py
@@ -92,3 +92,20 @@ def test_should_login_user_when_multiple_valid_codes_exist(app_,
             response = client.post(url_for('main.two_factor'),
                                    data={'sms_code': '23456'})
             assert response.status_code == 302
+
+
+def test_remember_me_set(app_,
+                         api_user_active,
+                         mock_get_user,
+                         mock_get_user_by_email,
+                         mock_check_verify_code,
+                         mock_get_services_with_one_service):
+    with app_.test_request_context():
+        with app_.test_client() as client:
+            with client.session_transaction() as session:
+                session['user_details'] = {
+                    'id': api_user_active.id,
+                    'email': api_user_active.email_address}
+            response = client.post(url_for('main.two_factor'),
+                                   data={'sms_code': '23456', 'remember_me': True})
+            assert response.status_code == 302
diff --git a/tests/conftest.py b/tests/conftest.py
index 9d6578fc0..a8614c429 100644
--- a/tests/conftest.py
+++ b/tests/conftest.py
@@ -1,4 +1,4 @@
-import os
+import uuid
 from datetime import date
 import pytest
 
@@ -9,7 +9,8 @@ from . import (
     TestClient,
     template_json,
     api_key_json,
-    job_json
+    job_json,
+    invite_json
 )
 
 
@@ -163,11 +164,20 @@ def mock_update_service_template(mocker):
 @pytest.fixture(scope='function')
 def mock_get_service_templates(mocker):
     def _create(service_id):
-        template_one = template_json(
-            1, "template_one", "sms", "template one content", service_id)
-        template_two = template_json(
-            2, "template_two", "sms", "template two content", service_id)
-        return {'data': [template_one, template_two]}
+        return {'data': [
+            template_json(
+                1, "sms_template_one", "sms", "sms template one content", service_id
+            ),
+            template_json(
+                2, "sms_template_two", "sms", "sms template two content", service_id
+            ),
+            template_json(
+                3, "email_template_one", "email", "email template one content", service_id
+            ),
+            template_json(
+                4, "email_template_two", "email", "email template two content", service_id
+            )
+        ]}
 
     return mocker.patch(
         'app.notifications_api_client.get_service_templates',
@@ -514,3 +524,53 @@ def mock_has_permissions(mocker):
     return mocker.patch(
         'app.notify_client.user_api_client.User.has_permissions',
         side_effect=_has_permission)
+
+
+@pytest.fixture(scope='function')
+def mock_get_users_by_service(mocker):
+    def _get_users_for_service(service_id):
+        data = [{'id': 1,
+                 'logged_in_at': None,
+                 'mobile_number': '+447700900986',
+                 'permissions': [],
+                 'state': 'active',
+                 'password_changed_at': None,
+                 'name': 'Test User',
+                 'email_address': 'notify@digital.cabinet-office.gov.uk',
+                 'failed_login_count': 0}]
+        return data
+    return mocker.patch('app.user_api_client.get_users_for_service', side_effect=_get_users_for_service, autospec=True)
+
+
+@pytest.fixture(scope='function')
+def mock_s3_upload(mocker):
+    def _upload(upload_id, service_id, filedata, region):
+        pass
+    return mocker.patch('app.main.views.send.s3upload', side_effect=_upload)
+
+
+@pytest.fixture(scope='function')
+def mock_create_invite(mocker):
+    def _create_invite(from_user, service_id, email_address, permissions):
+        data = {'id': uuid.uuid4(),
+                'from_user': from_user,
+                'service': service_id,
+                'email_address': email_address,
+                'status': 'pending',
+                'permissions': permissions}
+        return data
+    return mocker.patch('app.invite_api_client.create_invite', side_effect=_create_invite)
+
+
+@pytest.fixture(scope='function')
+def mock_get_invites_for_service(mocker, service_one):
+    def _get_invites(service_id):
+        data = []
+        from_user = service_one['users'][0]
+        service_id = service_one['id']
+        for i in range(0, 5):
+            email_address = 'user_{}@testnotify.gov.uk'.format(i)
+            invite = invite_json(uuid.uuid4(), from_user, service_id, email_address)
+            data.append(invite)
+        return data
+    return mocker.patch('app.invite_api_client.get_invites_for_service', side_effect=_get_invites)