EComcave is an enterprise-grade digital marketplace platform built for speed, security, and scalability. Below is a detailed breakdown of the core features currently implemented in the system.
- JWT & HttpOnly Cookies: Secure session management that prevents XSS-based token theft.
- Argon2 Hashing: Industry-standard password hashing for maximum database security.
- Email Verification: Mandatory email verification flow for new users to ensure valid accounts.
- Password Recovery: Secure token-based password reset system with expiry.
- AES-256-GCM Encryption: All sensitive digital assets (license keys) are encrypted at rest using a 32-byte master key.
- Secure Reveal Pipeline: Keys are only decrypted in memory at the moment an authorized user requests to view them.
- Audit Logging: Every sensitive action (login, payment, key delivery, key reveal) is logged with actor details for security auditing.
- Dynamic Categories: Hierarchical categorization of products (e.g., Operating Systems, Productivity).
- SEO Optimized: Slug-based routing and automated meta-tag generation for search engine visibility.
- Stock Management: Real-time stock status tracking (In Stock, Low Stock, Out of Stock).
- Featured Products: Admin-controlled highlighting of key products on the homepage.
- Persistent Cart: Local and server-synchronized shopping cart that survives session refreshes.
- Advanced Search: Keyword-based product search with popularity tracking.
- Wishlist: Allow users to save products for later consideration.
- Coupons & Discounts: Flexible coupon system supporting both percentage-based and fixed-amount discounts.
- Secure Checkout: Seamless integration with Razorpay's overlay for a smooth payment experience.
- Webhook Protection: Cryptographic signature verification for all payment callbacks to prevent fraud.
- Automated Order Creation: Intelligent order state transitions (Pending → Paid → Delivered).
- Admin Review: Admins review paid orders before delivering keys, adding a human layer of fraud protection.
- One-Click Delivery: Secure admin interface to input and deliver license keys to customers.
- Key Delivery Emails: Automated, beautifully designed HTML emails sent upon successful fulfillment.
- Premium Design: Carefully selected color palettes, typography (Inter), and layout structures for a high-end feel.
- Glassmorphism: Subtle use of backdrop blurs and overlays for depth.
- Responsive Layout: Fluid experience across mobile, tablet, and ultra-wide desktop monitors.
- Svelte 5 Runes: Cutting-edge reactivity for ultra-fast UI updates.
- Optimized Assets: Lazy loading of images and code-splitting for minimal initial load times.
- Micro-interactions: Smooth transitions and hover effects using CSS and Svelte animations.
- Order Tracking: Comprehensive view of all system orders with filtering by status.
- User Management: Ability to manage user roles (Admin/User) and account statuses.
- Email Logs: Monitor the status of all system-sent emails (Pending, Sent, Failed).
- Audit Trails: Full visibility into system changes and administrative actions.
EComcave is continuously evolving. For upcoming features, check the ROADMAP.md.