Bump eslint from 9.39.4 to 10.2.0 in /frontend

.github/dependabot.yml

@@ -0,0 +1,21 @@
+version: 2
+updates:
+  - package-ecosystem: npm
+    directory: /backend
+    schedule:
+      interval: weekly
+
+  - package-ecosystem: npm
+    directory: /frontend
+    schedule:
+      interval: weekly
+
+  - package-ecosystem: npm
+    directory: /mobile
+    schedule:
+      interval: weekly
+
+  - package-ecosystem: github-actions
+    directory: /
+    schedule:
+      interval: weekly

.github/workflows/ci.yml

@@ -7,29 +7,50 @@ on:
     branches: [main]
 
 jobs:
-  build:
+  backend:
     runs-on: ubuntu-latest
-
     defaults:
       run:
         working-directory: backend
 
     steps:
-      - name: Checkout code
-        uses: actions/checkout@v3
+      - uses: actions/checkout@v3
 
-      - name: Setup Node.js
-        uses: actions/setup-node@v3
+      - uses: actions/setup-node@v3
         with:
           node-version: 18
-          cache: 'npm'
+          cache: npm
           cache-dependency-path: backend/package-lock.json
 
       - name: Install dependencies
         run: npm ci
 
-      - name: Syntax Check
-        run: node --check server.js
+      - name: Lint
+        run: npm run lint
+
+      - name: Run tests
+        run: npm test
 
       - name: Build Docker image
-        run: docker build -t zappify-backend .
+        run: docker build -t zappify-backend .
+
+  frontend:
+    runs-on: ubuntu-latest
+    defaults:
+      run:
+        working-directory: frontend
+
+    steps:
+      - uses: actions/checkout@v3
+
+      - uses: actions/setup-node@v3
+        with:
+          node-version: 18
+          cache: npm
+          cache-dependency-path: frontend/package-lock.json
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Lint
+        run: npm run lint

README.md

@@ -7,7 +7,7 @@ Built with a modern MERN stack on the backend and React + React Native on the fr
 ## Live Demo
 
 - **Website:** [zappify-sepia.vercel.app](https://zappify-sepia.vercel.app)
-- **Phone Preview:** [zappify-sepia.vercel.app/preview](https://zappify-sepia.vercel.app/preview)
+- **Download APK:** https://expo.dev/accounts/devendra.mi/projects/zappify/builds/24237286-1ff7-4219-ac7a-6c103ff28d00
 
 ---
 
@@ -37,6 +37,7 @@ Built with a modern MERN stack on the backend and React + React Native on the fr
 ![Bcrypt](https://img.shields.io/badge/Bcrypt.js-003A70?style=for-the-badge&logo=letsencrypt&logoColor=white)
 ![Helmet](https://img.shields.io/badge/Helmet-FF6B35?style=for-the-badge&logo=helmet&logoColor=white)
 ![Morgan](https://img.shields.io/badge/Morgan-000000?style=for-the-badge&logo=npm&logoColor=white)
+![Razorpay](https://img.shields.io/badge/Razorpay-02042B?style=for-the-badge&logo=razorpay&logoColor=3395FF)
 
 ### Infrastructure
 ![Vercel](https://img.shields.io/badge/Vercel-000000?style=for-the-badge&logo=vercel&logoColor=white)
@@ -50,12 +51,12 @@ Built with a modern MERN stack on the backend and React + React Native on the fr
 ```
 +-------------------------------------------------------------------+
 |                                                                   |
-|  +-------------+      +-------------+      +-------------+       |
-|  |  Front-end  |      |  Back-end   |      |  Database   |       |
-|  |   ReactJS   |<---->|   NodeJS    |<---->|  MongoDB    |       |
-|  |UI Components|      |  ExpressJS  |      | Collections |       |
-|  | API calls   |      |API endpoints|      |  Documents  |       |
-|  +-------------+      +-------------+      +-------------+       |
+|  +-------------+      +-------------+      +-------------+        |
+|  |  Front-end  |      |  Back-end   |      |  Database   |        |
+|  |   ReactJS   |<---->|   NodeJS    |<---->|  MongoDB    |        |
+|  |UI Components|      |  ExpressJS  |      | Collections |        |
+|  | API calls   |      |API endpoints|      |  Documents  |        |
+|  +-------------+      +-------------+      +-------------+        |
 |                                                                   |
 +-------------------------------------------------------------------+
 ```
@@ -101,6 +102,17 @@ Orders {
 
 ---
 
+## Payment Testing
+
+Razorpay is integrated in test mode. Use these credentials to test payments:
+
+| Method | Details |
+|---|---|
+| Card | 5267 3181 8797 5449 / Expiry: 08/26 / CVV: 123 / OTP: 1234 |
+| UPI | success@razorpay |
+
+---
+
 ## What This Project Does
 
 Zappify is built as a real-world e-commerce application that covers the complete shopping journey:
@@ -112,7 +124,6 @@ Zappify is built as a real-world e-commerce application that covers the complete
 - Goes through a 3-step checkout (Bag → Address → Payment)
 - Tracks their order with a live timeline
 - Can cancel an order with a reason
-- All of this works on both web and Android mobile app
 
 ---
 
@@ -127,13 +138,15 @@ Zappify is built as a real-world e-commerce application that covers the complete
 - Add to cart with size validation
 - Wishlist toggle on product cards and detail page
 - 3-step checkout - Bag to Address to Payment (COD / UPI / Card)
+- Razorpay payment gateway integration (UPI, Card, Netbanking, Wallet)
+- Payment signature verification on backend
 - Order history with tracking timeline
 - Order cancellation with reason selection form
 - Google OAuth 2.0 login
 - Normal email/password sign up and sign in
 - User-specific order history per account
-- Persistent login via localStorage / AsyncStorage
-- Full Android mobile app via Expo + EAS Build
+- Persistent login via localStorage
+- Progressive Web App (PWA) ready
 
 ### For Admins
 - Secure JWT-protected API routes
@@ -168,6 +181,8 @@ PORT=5001
 MONGO_URI=your_mongodb_uri
 JWT_SECRET=your_secret_key
 NODE_ENV=development
+RAZORPAY_KEY_ID=your_razorpay_key_id
+RAZORPAY_KEY_SECRET=your_razorpay_key_secret
 ```
 
 ```bash
@@ -203,7 +218,6 @@ Zappify/
 │       ├── components/
 │       ├── data/products.js
 │       ├── App.jsx
-│       ├── Preview.jsx
 │       ├── main.jsx
 │       └── index.css
 ├── mobile/
@@ -234,6 +248,18 @@ Zappify/
 | GET | /api/products | Get all products | No |
 | GET | /api/products/:id | Get product by ID | No |
 | POST | /api/products | Create product | Admin |
+| POST | /api/payment/create-order | Create Razorpay order | No |
+| POST | /api/payment/verify | Verify payment signature | No |
+
+---
+
+## Frontend Environment Variables
+
+Create `frontend/.env`:
+```env
+VITE_API_URL=http://localhost:5001
+VITE_RAZORPAY_KEY_ID=your_razorpay_key_id
+```
 
 ---
 

backend/.env.example

@@ -2,3 +2,5 @@ PORT=5001
 MONGO_URI=your_mongodb_atlas_uri_here
 JWT_SECRET=your_super_secret_key_here
 NODE_ENV=development
+RAZORPAY_KEY_ID=rzp_test_xxxxxxxxxxxxxx
+RAZORPAY_KEY_SECRET=your_key_secret_here

backend/config/db.js

@@ -1,14 +1,11 @@
 const mongoose = require('mongoose');
-const dotenv = require('dotenv');
-
-dotenv.config();
 
 const connectDB = async () => {
     try {
         const conn = await mongoose.connect(process.env.MONGO_URI);
-        console.log(`Connection established with MongoDB: ${conn.connection.host}`);
+        console.log(`Connected to MongoDB: ${conn.connection.host}`);
     } catch (error) {
-        console.error(`Something went wrong: ${error.message}`);
+        console.error(`DB Error: ${error.message}`);
         process.exit(1);
     }
 };

backend/controllers/userController.js

@@ -1,5 +1,6 @@
 const jwt = require('jsonwebtoken');
 const User = require('../models/User');
+const { validateEmail } = require('../utils/validate');
 
 const generateToken = (id) => {
     return jwt.sign({ id }, process.env.JWT_SECRET, {
@@ -28,7 +29,7 @@ const authUser = async (req, res) => {
 const registerUser = async (req, res) => {
     const { name, email, password } = req.body;
 
-    if (!email.includes('@') || !email.includes('.')) {
+    if (!validateEmail(email)) {
         return res.status(400).json({ message: 'Please enter a valid email' });
     }
 

backend/eslint.config.js

@@ -0,0 +1,11 @@
+const js = require('@eslint/js');
+
+module.exports = [
+  js.configs.recommended,
+  {
+    rules: {
+      'no-unused-vars': 'warn',
+      'no-console': 'off',
+    },
+  },
+];

backend/middlewares/authMiddleware.js

@@ -12,7 +12,6 @@ const protect = async (req, res, next) => {
             req.user = await User.findById(decoded.id).select('-password');
             next();
         } catch (error) {
-            console.error(error);
             res.status(401).json({ message: 'Token failed, not authorized' });
         }
     }