Glamiya
Cosmetics retail, built to run itself.

The client needed a storefront that could handle real order volume securely, and a team with no engineering background needed to be able to run it day to day without breaking anything.
Ran a full compliance and security audit: JWT and bcrypt-based admin auth, Redis caching for performance, rate limiting on public endpoints, and atomic MongoDB order updates using Mongoose sessions so partial failures couldn't corrupt an order.
A storefront the client's team operates independently, with product variants, bundles, and an admin dashboard covering the full order lifecycle.
Security first, for a public checkout
Cosmetics retail means real payment data and real customer accounts. Admin auth, rate limiting, and atomic order writes were treated as launch blockers, not later improvements.
Built for a non-technical team
The admin dashboard was designed around what a store manager actually needs to do on a Tuesday: update stock, bundle products, and see order status at a glance, without touching code.
What shipped
Full core routes (shop, cart, bundles, about, contact), variant support, and a redesigned hero section, all deployed and running in production.