diff --git a/backend/api/handlers.go b/backend/api/handlers.go
index 05d96e7..893f3db 100644
--- a/backend/api/handlers.go
+++ b/backend/api/handlers.go
@@ -51,4 +51,63 @@ func userAuth(c *gin.Context) {
 
 //#region Quotes
 
+func quotesGet(c *gin.Context) {
+	session := sessions.Default(c)
+	user_id, ok := session.Get("user_id").(string)
+	if !ok {
+		c.JSON(http.StatusUnauthorized, gin.H{"error": "Ты это, залогинься сначала что ли, а то чё как крыса"})
+		return
+	}
+	filter, ok := c.GetQuery("filter")
+	if !ok {
+		filter = ""
+	}
+	sort, ok := c.GetQuery("sort")
+	if !ok {
+		sort = "-datetime"
+	}
+	var limit int64
+	limitStr, ok := c.GetQuery("limit")
+	if ok {
+		var err error
+		limit, err = strconv.ParseInt(limitStr, 10, 0)
+		if err != nil {
+			c.JSON(http.StatusBadRequest, gin.H{"error": "limit param must be int"})
+			return
+		}
+	} else {
+		limit = 10
+	}
+	var offset int64
+	offsetStr, ok := c.GetQuery("offset")
+	if ok {
+		var err error
+		offset, err = strconv.ParseInt(offsetStr, 10, 0)
+		if err != nil {
+			c.JSON(http.StatusBadRequest, gin.H{"error": "offset param must be int"})
+			return
+		}
+	} else {
+		offset = 0
+	}
+	quotes, err := db.QuotesGet(c, user_id, filter, sort, int(limit), int(offset))
+	if err != nil {
+		pqErr := db.CastToPgError(err)
+		if pqErr == nil {
+			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
+			return
+		}
+		statusStr := pqErr.Message[:3]
+		msg := pqErr.Message[4:]
+		status, _err := strconv.ParseInt(statusStr, 10, 0)
+		if _err == nil {
+			c.JSON(int(status), gin.H{"error": msg})
+		} else {
+			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
+		}
+		return
+	}
+	c.JSON(http.StatusOK, quotes)
+}
+
 //#endregion Quotes
diff --git a/backend/api/routes.go b/backend/api/routes.go
index 40a3694..106b256 100644
--- a/backend/api/routes.go
+++ b/backend/api/routes.go
@@ -21,5 +21,6 @@ func RegisterRoutes(r *gin.Engine) {
 	api := r.Group("/api")
 	{
 		api.POST("/auth", userAuth)
+		api.GET("/quotes", quotesGet)
 	}
 }