Crafted for performance, built for scale
Lorvic is a modern, type-safe frontend application for multi-vendor e-commerce platforms. Built with Next.js 16 App Router, React Server Components, and cutting-edge web technologies, it delivers a seamless shopping experience with role-based dashboards, secure authentication, and optimized performance.
|
|
graph TB
subgraph "Client Layer"
A[Browser/Mobile]
B[Next.js App Router]
end
subgraph "Presentation Layer"
C[Server Components]
D[Client Components]
E[Server Actions]
end
subgraph "Layout Structure"
F[Common Layout]
G[Dashboard Layout]
H[Middleware Guard]
end
subgraph "Feature Modules"
I[Auth Module]
J[Shop Module]
K[Vendor Module]
L[Admin Module]
M[Customer Module]
end
subgraph "Backend Integration"
N[Lorvic API]
O[Stripe Gateway]
P[Cloudinary CDN]
end
A --> B
B --> H
H --> F & G
F --> I & J
G --> K & L & M
C & D & E --> N
I & J & K & L & M --> C & D & E
E --> N & O
D --> P
| Design Principle | Description |
|---|---|
| 🎯 Component-Driven | Reusable UI components with consistent design system |
| 📈 Scalable Architecture | Modular structure supporting feature growth |
| 🔒 Security-First | Edge-level protection with middleware guards |
| ⚡ Performance Optimized | Server components, code splitting, and image optimization |
| 📊 Type-Safe | End-to-end TypeScript with Zod validation |
|
Next.js 16 |
React 19 |
TypeScript |
Tailwind 4 |
Vercel |
| Category | Technologies | Purpose |
|---|---|---|
| 🎨 UI Primitives | Radix UI Shadcn/UI |
Accessible component primitives |
| 🎭 Styling | Tailwind CSS 4 CSS Variables |
Utility-first styling system |
| 🔔 Notifications | Sonner |
Toast notifications |
| 🎠 Carousel | Embla Carousel |
Touch-enabled sliders |
| ✅ Validation | Zod React Hook Form |
Form validation & management |
| 🎨 Theming | next-themes |
Dark/light mode support |
# 1. Clone the repository
git clone https://github.com/zahid-official/milestone-18-lorvicClient.git
cd milestone-18-lorvicClient
# 2. Install dependencies (pnpm recommended)
pnpm install
# 3. Set up environment variables
cp .env.example .env.local
# Edit .env.local with your configuration
# 4. Start development server
pnpm dev
# 5. Access the application
# http://localhost:3000- Node.js 18+ - Required for Next.js 16
- pnpm (recommended) or npm/yarn
- Running Backend API - Lorvic API must be accessible
- Modern Browser - Chrome, Firefox, Safari, or Edge
Click to view essential .env.local variables
# ================================
# API Configuration
# ================================
NEXT_PUBLIC_BACKEND_URL=http://localhost:5000/api/v1
# ================================
# JWT Configuration (must match backend)
# ================================
JWT_ACCESS_TOKEN_SECRET=your-super-secret-access-key-min-32-chars
JWT_ACCESS_TOKEN_EXPIRESIN=1h
# ================================
# Environment
# ================================
NODE_ENV=development
# ================================
# Optional: Analytics & Monitoring
# ================================
# NEXT_PUBLIC_GA_ID=G-XXXXXXXXXX
# SENTRY_DSN=https://xxxxx@sentry.io/xxxxxImportant Notes:
NEXT_PUBLIC_BACKEND_URLmust point to your running Lorvic APIJWT_ACCESS_TOKEN_SECRETmust match the backend's access token secret- Environment variables prefixed with
NEXT_PUBLIC_are exposed to the browser - Never commit
.env.localto version control
Click to view project folder structure
lorvic-frontend/
├── 📁 src/
│ ├── 📁 app/
│ │ ├── 📁 (commonLayout)/ # Public pages
│ │ │ ├── 📁 auth/ # Login, Register
│ │ │ ├── 📁 shop/ # Product listing
│ │ │ ├── 📁 product/ # Product details
│ │ │ ├── 📁 about/ # About page
│ │ │ ├── 📁 contact/ # Contact page
│ │ │ └── page.tsx # Home page
│ │ │
│ │ ├── 📁 (dashboardLayout)/ # Protected dashboards
│ │ │ ├── 📁 admin/ # Admin dashboard
│ │ │ ├── 📁 vendor/ # Vendor dashboard
│ │ │ ├── 📁 dashboard/ # Customer dashboard
│ │ │ └── layout.tsx # Dashboard shell
│ │ │
│ │ ├── 📄 globals.css # Global styles & theme
│ │ └── 📄 layout.tsx # Root layout
│ │
│ ├── 📁 components/
│ │ ├── 📁 modules/ # Feature components
│ │ │ ├── 📁 auth/ # Auth forms & flows
│ │ │ ├── 📁 home/ # Home sections
│ │ │ ├── 📁 shop/ # Shop components
│ │ │ ├── 📁 vendor/ # Vendor features
│ │ │ ├── 📁 admin/ # Admin features
│ │ │ └── 📁 dashboard/ # Dashboard widgets
│ │ │
│ │ └── 📁 ui/ # Reusable UI components
│ │ ├── 📄 button.tsx # Button variants
│ │ ├── 📄 dialog.tsx # Modal dialogs
│ │ ├── 📄 input.tsx # Form inputs
│ │ ├── 📄 select.tsx # Select dropdowns
│ │ ├── 📄 sidebar.tsx # Navigation sidebar
│ │ ├── 📄 table.tsx # Data tables
│ │ └── 📄 ... # More components
│ │
│ ├── 📁 services/ # Server actions
│ │ ├── 📄 auth.service.ts # Auth operations
│ │ ├── 📄 product.service.ts # Product CRUD
│ │ └── 📄 user.service.ts # User operations
│ │
│ ├── 📁 schemas/ # Zod validation
│ │ ├── 📄 auth.schema.ts # Auth validation
│ │ ├── 📄 product.schema.ts # Product validation
│ │ └── 📄 user.schema.ts # User validation
│ │
│ ├── 📁 routes/ # Route configuration
│ │ └── 📄 index.ts # Route guards & roles
│ │
│ ├── 📁 utils/ # Utilities
│ │ ├── 📄 serverFetchApi.ts # API client
│ │ ├── 📄 validators.ts # Helper validators
│ │ └── 📄 debounce.ts # Utility functions
│ │
│ ├── 📁 types/ # TypeScript types
│ │ ├── 📄 user.types.ts # User interfaces
│ │ ├── 📄 product.types.ts # Product interfaces
│ │ └── 📄 common.types.ts # Shared types
│ │
│ ├── 📁 constants/ # App constants
│ │ └── 📄 roles.ts # User roles enum
│ │
│ ├── 📁 config/ # Configuration
│ │ └── 📄 env.ts # Environment loader
│ │
│ └── 📄 proxy.ts # Middleware guard
│
├── 📁 public/ # Static assets
│ ├── 📁 images/ # Images
│ └── 📁 fonts/ # Custom fonts
│
├── 📄 .env.example # Environment template
├── 📄 .gitignore # Git ignore rules
├── 📄 next.config.js # Next.js config
├── 📄 tailwind.config.ts # Tailwind config
├── 📄 tsconfig.json # TypeScript config
├── 📄 package.json # Dependencies
└── 📄 README.md # This file
graph LR
A[Login] --> B{Role Check}
B -->|Admin| C[Admin Dashboard]
B -->|Vendor| D[Vendor Dashboard]
B -->|Customer| E[Customer Dashboard]
C --> F[User Management]
C --> G[Vendor Oversight]
C --> H[Platform Analytics]
D --> I[Product Management]
D --> J[Order Processing]
D --> K[Sales Analytics]
E --> L[Browse Products]
E --> M[Order History]
E --> N[Profile Settings]
View Administrator Features
Dashboard Access: /admin
Capabilities:
- User Management: View, create, and manage all user accounts
- Vendor Oversight: Review and approve vendor applications
- Customer Support: Access customer data and order history
- Platform Analytics: View sales, revenue, and user metrics
- System Configuration: Manage platform settings and features
UI Components:
- User management tables with search and filters
- Vendor approval workflows
- Analytics dashboards with charts
- System settings forms
View Vendor Features
Dashboard Access: /vendor
Capabilities:
- Product Catalog: Create, edit, and delete products
- Image Management: Upload product images (max 4.5MB)
- Inventory Tracking: Monitor stock levels
- Order Processing: View and update order statuses
- Sales Analytics: Track revenue and product performance
UI Components:
- Product creation forms with image upload
- Data tables with pagination and sorting
- Order management interface
- Sales charts and statistics
View Customer Features
Dashboard Access: /dashboard
Public Pages:
- Home: Featured products, categories, testimonials
- Shop: Product listing with filters and search
- Product Details: Images, descriptions, reviews
- About: Company information
- Contact: Contact form and support
Authenticated Features:
- Shopping Cart: Add, remove, update quantities
- Checkout: Secure payment via Stripe
- Order History: Track order statuses
- Profile Management: Update account details
- Wishlist: Save favorite products
UI Components:
- Product cards with hover effects
- Image carousels and galleries
- Filter sidebars with categories
- Checkout flow with payment integration
sequenceDiagram
participant U as User
participant C as Client
participant M as Middleware
participant S as Server Action
participant A as API
U->>C: Visit /auth/login
U->>C: Submit credentials
C->>S: Server Action
S->>A: POST /auth/login
A-->>S: JWT tokens (httpOnly cookies)
S-->>C: Redirect to dashboard
C->>M: Request protected route
M->>M: Verify JWT from cookie
M-->>C: Allow/Deny access
View Route Protection Details
Middleware Guard (src/proxy.ts):
- Runs on every request at the edge
- Decodes JWT from
accessTokencookie - Enforces role-based access control
- Redirects unauthorized users
Route Categories:
| Category | Routes | Access |
|---|---|---|
| Public | /, /shop, /about, /contact |
Everyone |
| Auth Only | /auth/login, /auth/register |
Unauthenticated users |
| Admin | /admin/* |
Admin role only |
| Vendor | /vendor/* |
Vendor role only |
| Customer | /dashboard/* |
Customer role only |
| Shared | /profile, /settings |
All authenticated users |
Redirect Behavior:
- Unauthenticated users →
/auth/login?redirect={original-path} - Wrong role → Role's default dashboard
- Authenticated on auth pages → Role's dashboard
- httpOnly Cookies: Tokens not accessible via JavaScript
- Server-Side Validation: All auth checks on server
- CSRF Protection: Server actions with form tokens
- Secure Cookies:
secureandsameSiteflags in production - Token Refresh: Automatic renewal before expiration
View Available Components
Form Components:
Button- Multiple variants (default, outline, ghost, destructive)Input- Text, email, password fields with validation statesTextarea- Multi-line text inputSelect- Dropdown select with searchCheckbox- Checkboxes with labelsRadioGroup- Radio button groupsSwitch- Toggle switches
Layout Components:
Sidebar- Collapsible navigation sidebarHeader- Page headers with breadcrumbsFooter- Site footer with linksContainer- Responsive content wrapper
Feedback Components:
Toast- Sonner notificationsDialog- Modal dialogsAlert- Alert messagesLoading- Loading spinners and skeletons
Data Display:
Table- Data tables with sorting and paginationCard- Content cards with variantsBadge- Status badgesAvatar- User avatars with fallback
Navigation:
Tabs- Tabbed interfacesBreadcrumb- Navigation breadcrumbsPagination- Page navigationMenu- Dropdown menus
// CSS Variables for theming
:root {
--background: 0 0% 100%;
--foreground: 222.2 47.4% 11.2%;
--primary: 222.2 47.4% 11.2%;
--secondary: 210 40% 96.1%;
--accent: 210 40% 96.1%;
--destructive: 0 100% 50%;
--border: 214.3 31.8% 91.4%;
--radius: 0.5rem;
}
.dark {
--background: 224 71% 4%;
--foreground: 213 31% 91%;
--primary: 210 40% 98%;
--secondary: 222.2 47.4% 11.2%;
// ...more variables
}Typography:
- Headings: Playfair Display (serif)
- Body: Jost (sans-serif)
- Code: Geist Mono (monospace)
All data mutations and sensitive operations use Next.js Server Actions:
// src/services/auth.service.ts
"use server";
export async function loginAction(data: LoginSchema): Promise<ActionState> {
try {
// Validate with Zod
const validated = loginSchema.parse(data);
// Call backend API
const response = await serverFetchApi("/auth/login", {
method: "POST",
body: JSON.stringify(validated),
});
// Set cookies and redirect
return {
success: true,
message: "Login successful",
data: response.data,
};
} catch (error) {
return {
success: false,
message: "Login failed",
errors: formatZodErrors(error),
};
}
}// src/utils/serverFetchApi.ts
export async function serverFetchApi(endpoint: string, options?: RequestInit) {
const response = await fetch(
`${process.env.NEXT_PUBLIC_BACKEND_URL}${endpoint}`,
{
...options,
headers: {
"Content-Type": "application/json",
Cookie: cookies().toString(), // Attach auth cookies
...options?.headers,
},
credentials: "include",
},
);
return handleResponse(response);
}// Standardized error response
export interface ActionState<T = any> {
success: boolean;
message: string;
data?: T;
errors?: Record<string, string[]>;
}
// Usage in components
const [state, formAction] = useFormState(loginAction, initialState);
{
state.errors?.email && (
<p className="text-destructive">{state.errors.email[0]}</p>
);
}// Tailwind breakpoints
sm: '640px' // Small devices
md: '768px' // Medium devices
lg: '1024px' // Large devices
xl: '1280px' // Extra large devices
2xl: '1536px' // 2X large devices- Base styles apply to mobile
- Use
md:,lg:prefixes for larger screens - Touch-friendly UI elements (min 44px tap targets)
- Responsive images with Next.js Image
- Collapsible navigation on mobile
- Server Components: Default for all components
- Static Generation: Pre-render marketing pages
- Image Optimization: Automatic with next/image
- Code Splitting: Automatic route-based splitting
- Font Optimization: next/font for web fonts
// Lazy load heavy components
const HeavyChart = dynamic(() => import("@/components/HeavyChart"), {
loading: () => <Skeleton />,
ssr: false,
});
// Optimize images
<Image
src="/product.jpg"
alt="Product"
width={800}
height={600}
placeholder="blur"
loading="lazy"
/>;
// Debounce search inputs
const debouncedSearch = useMemo(
() => debounce((value: string) => setSearch(value), 300),
[]
);| Script | Description |
|---|---|
pnpm dev |
Start development server with hot reload |
pnpm build |
Create optimized production build |
pnpm start |
Run production server (requires build) |
pnpm lint |
Run ESLint on source files |
pnpm type-check |
Run TypeScript compiler check |
-
Create Feature Branch
git checkout -b feature/new-feature
-
Run Development Server
pnpm dev
-
Make Changes
- Follow existing code structure
- Use TypeScript for type safety
- Add Zod schemas for validation
- Create reusable components
-
Test Locally
- Test in multiple browsers
- Check mobile responsiveness
- Verify auth flows
- Test error scenarios
-
Commit & Push
git add . git commit -m "feat: add new feature" git push origin feature/new-feature
# Install Vercel CLI
npm i -g vercel
# Build the project
pnpm build
# Deploy
vercel
# Set environment variables
vercel env add NEXT_PUBLIC_BACKEND_URL
vercel env add JWT_ACCESS_TOKEN_SECRET
# Deploy to production
vercel --prod- Set
NODE_ENV=production - Update
NEXT_PUBLIC_BACKEND_URLto production API - Verify
JWT_ACCESS_TOKEN_SECRETmatches backend - Enable HTTPS (automatic on Vercel)
- Configure custom domain (optional)
- Set up analytics (Google Analytics, etc.)
- Configure error monitoring (Sentry, etc.)
- Test all authentication flows
- Verify role-based access control
- Check payment integration end-to-end
- Test on multiple devices and browsers
- Optimize images and assets
- Enable caching headers
- Set up monitoring and alerts
# Production API
NEXT_PUBLIC_BACKEND_URL=https://lorvic-api.vercel.app/api/v1
# JWT Secret (must match backend)
JWT_ACCESS_TOKEN_SECRET=your-production-secret-min-32-chars
JWT_ACCESS_TOKEN_EXPIRESIN=1h
# Node Environment
NODE_ENV=production
# Optional: Analytics
NEXT_PUBLIC_GA_ID=G-XXXXXXXXXX
# Optional: Error Tracking
SENTRY_DSN=https://xxxxx@sentry.io/xxxxx
Full Stack Developer | UI/UX Enthusiast
Passionate about creating delightful user experiences and scalable frontend architectures
| Resource | URL |
|---|---|
| 🌐 Live App | lorvic-official.vercel.app |
| 🔌 Live API | lorvic-api.vercel.app |
| 📱 Client Repo | GitHub - Client |
| 🗄️ Server Repo | GitHub - Server |
Contributions make the open source community amazing! Any contributions you make are greatly appreciated.
1. Fork the Project
2. Create your Feature Branch (git checkout -b feature/AmazingFeature)
3. Commit your Changes (git commit -m 'feat: add some amazing feature')
4. Push to the Branch (git push origin feature/AmazingFeature)
5. Open a Pull RequestLorvic - A e-commerce platform that redefines the shopping experience.