diff --git a/.env.example b/.env.example
index b88b7020..d28c3748 100644
--- a/.env.example
+++ b/.env.example
@@ -59,3 +59,5 @@ status = ""
 ADMIN_ROLE=""
 gender=""
 
+STRIPE_SECRET_KEY=""
+STRIPE_WEBHOOK_SECRET=""
\ No newline at end of file
diff --git a/package.json b/package.json
index 80420789..f6bbde56 100644
--- a/package.json
+++ b/package.json
@@ -16,7 +16,6 @@
     "migrate": "npx sequelize-cli db:migrate",
     "migrate:undo": "npx sequelize-cli db:migrate:undo",
     "migrate:undo:all": "npx sequelize-cli db:migrate:undo:all",
-    "migrate:undo:all": "npx sequelize-cli db:migrate:undo:all",
     "seed": "npx sequelize-cli db:seed:all",
     "seed:undo": "npx sequelize-cli db:seed:undo",
     "seed:undo:all": "npx sequelize-cli db:seed:undo:all"
@@ -50,6 +49,7 @@
     "randomstring": "^1.3.0",
     "sequelize": "^6.37.3",
     "socket.io": "^4.7.5",
+    "stripe": "^15.7.0",
     "swagger-ui-express": "^5.0.0",
     "uuid": "^9.0.1",
     "winston": "^3.13.0",
diff --git a/public/cancel.html b/public/cancel.html
new file mode 100644
index 00000000..5dcb1b97
--- /dev/null
+++ b/public/cancel.html
@@ -0,0 +1,11 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Document</title>
+  </head>
+  <body>
+    <h1>Cancel</h1>
+  </body>
+</html>
diff --git a/public/index.html b/public/index.html
index 8c607338..d5deb612 100644
--- a/public/index.html
+++ b/public/index.html
@@ -1,456 +1,453 @@
 <!doctype html>
 <html>
-
-<head>
+  <head>
     <meta name="viewport" content="width=device-width,initial-scale=1.0" />
     <title>Socket.IO chat</title>
     <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css" />
     <style>
-        body {
-            margin: 0;
-            padding-bottom: 3rem;
-            font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto,
-                Helvetica, Arial, sans-serif;
-            display: flex;
-
-        }
-
-        #great-container {
-            background-color: white;
-            position: relative;
-            width: 65%;
-            height: 91vh;
-            border-bottom: none;
-            padding: 0.25rem;
-            box-shadow: 0 0px 6px 0px rgba(0, 0, 0, 0.348);
-            overflow: auto;
-        }
-
-        #form {
-            background: rgba(255, 255, 255, 0.717);
-            padding: 0.25rem;
-            position: fixed;
-            bottom: 0;
-            left: 159px;
-            right: 0;
-            display: flex;
-            height: 3rem;
-            box-sizing: border-box;
-            backdrop-filter: blur(10px);
-            width: 66%;
-            margin: auto;
-        }
-
-        #input {
-            border: 1px solid rgb(113, 113, 113);
-            padding: 0 1.2rem;
-            flex-grow: 1;
-            margin: 0.25rem;
-        }
-
-        #input:focus {
-            outline: none;
-        }
-
-        #form>button {
-            background: #66f0d9c4;
-            border: none;
-            padding: 0 1rem;
-            margin: 0.25rem;
-            border-radius: 3px;
-            outline: none;
-            color: #000000;
-        }
-
-        #img {
-            width: 70px;
-            height: 70px;
-            border-radius: 50%;
-        }
-
-        #typingStatus {
-            color: rgb(54, 54, 253);
-        }
-
-        .user {
-            width: 300px;
-        }
-
-        #profile-status {
-            display: flex;
-            flex-direction: column;
-            align-items: center;
-            justify-content: start;
-            padding: 20px 0px;
-            border: 1px solid rgb(156, 156, 156);
-            position: fixed;
-            width: 270px;
-            height: 100%;
-            box-shadow: 0 0px 6px 0px rgba(0, 0, 0, 0.348);
-        }
-
-        #messages {
-            list-style-type: none;
-            margin: 0;
-            padding: 0;
-        }
-
-        #messages>li {
-            padding: 0.5rem 1rem;
-        }
-
-        .time,
-        .MyTime {
-            font-size: 13px;
-            max-width: 80%;
-            padding: 0.5rem 1rem;
-            white-space: nowrap;
-        }
-
-        .time {
-            color: blue;
-            margin-left: auto;
-        }
-
-        .MyTime {
-            color: white;
-        }
-
-        .mine {
-            background-color: rgba(76, 128, 47, 0.752);
-            color: white;
-            width: fit-content;
-            margin-bottom: 10px;
-            padding: 10px;
-            border-radius: 10px;
-            margin-left: auto;
-        }
-
-        #typingStatus {
-            display: none;
-            position: fixed;
-            top: 0;
-            left: 50%;
-            transform: translateX(-50%);
-            background-color: #377b37;
-            color: white;
-            padding: 10px 20px;
-            border-radius: 5px;
-        }
-
-        .Others {
-            background-color: rgba(205, 205, 205, 0.752);
-            color: black;
-            width: fit-content;
-            margin-bottom: 10px;
-            padding: 10px;
-            border-radius: 10px;
-            margin-right: auto;
-        }
-
-        #welmsg {
-            text-align: center;
-            background-color: rgba(128, 128, 128, 0.218);
-            margin: 0;
-            padding: 0;
-        }
-
-        #loginForm {
-            margin: 0 auto;
-            width: 50%;
-            border: 1px solid rgb(105, 105, 105);
-            display: flex;
-            flex-direction: column;
-            align-items: center;
-        }
-
-        #loginForm input {
-            width: 300px;
-            height: 40px;
-            margin-bottom: 10px;
-            background-color: rgb(232, 232, 232);
-            padding-left: 10px;
-            border: solid 1px rgb(132, 132, 132);
-            border-radius: 10px;
-        }
-
-        #loginForm button {
-            width: 300px;
-            background-color: rgb(0, 170, 179);
-            color: white;
-            padding: 10px 10px;
-            border-radius: 10px;
-            cursor: pointer;
-            border: none;
-            font-size: 19px;
-        }
+      body {
+        margin: 0;
+        padding-bottom: 3rem;
+        font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif;
+        display: flex;
+      }
+
+      #great-container {
+        background-color: white;
+        position: relative;
+        width: 65%;
+        height: 91vh;
+        border-bottom: none;
+        padding: 0.25rem;
+        box-shadow: 0 0px 6px 0px rgba(0, 0, 0, 0.348);
+        overflow: auto;
+      }
+
+      #form {
+        background: rgba(255, 255, 255, 0.717);
+        padding: 0.25rem;
+        position: fixed;
+        bottom: 0;
+        left: 159px;
+        right: 0;
+        display: flex;
+        height: 3rem;
+        box-sizing: border-box;
+        backdrop-filter: blur(10px);
+        width: 66%;
+        margin: auto;
+      }
+
+      #input {
+        border: 1px solid rgb(113, 113, 113);
+        padding: 0 1.2rem;
+        flex-grow: 1;
+        margin: 0.25rem;
+      }
+
+      #input:focus {
+        outline: none;
+      }
+
+      #form > button {
+        background: #66f0d9c4;
+        border: none;
+        padding: 0 1rem;
+        margin: 0.25rem;
+        border-radius: 3px;
+        outline: none;
+        color: #000000;
+      }
+
+      #img {
+        width: 70px;
+        height: 70px;
+        border-radius: 50%;
+      }
+
+      #typingStatus {
+        color: rgb(54, 54, 253);
+      }
+
+      .user {
+        width: 300px;
+      }
+
+      #profile-status {
+        display: flex;
+        flex-direction: column;
+        align-items: center;
+        justify-content: start;
+        padding: 20px 0px;
+        border: 1px solid rgb(156, 156, 156);
+        position: fixed;
+        width: 270px;
+        height: 100%;
+        box-shadow: 0 0px 6px 0px rgba(0, 0, 0, 0.348);
+      }
+
+      #messages {
+        list-style-type: none;
+        margin: 0;
+        padding: 0;
+      }
+
+      #messages > li {
+        padding: 0.5rem 1rem;
+      }
+
+      .time,
+      .MyTime {
+        font-size: 13px;
+        max-width: 80%;
+        padding: 0.5rem 1rem;
+        white-space: nowrap;
+      }
+
+      .time {
+        color: blue;
+        margin-left: auto;
+      }
+
+      .MyTime {
+        color: white;
+      }
+
+      .mine {
+        background-color: rgba(76, 128, 47, 0.752);
+        color: white;
+        width: fit-content;
+        margin-bottom: 10px;
+        padding: 10px;
+        border-radius: 10px;
+        margin-left: auto;
+      }
+
+      #typingStatus {
+        display: none;
+        position: fixed;
+        top: 0;
+        left: 50%;
+        transform: translateX(-50%);
+        background-color: #377b37;
+        color: white;
+        padding: 10px 20px;
+        border-radius: 5px;
+      }
+
+      .Others {
+        background-color: rgba(205, 205, 205, 0.752);
+        color: black;
+        width: fit-content;
+        margin-bottom: 10px;
+        padding: 10px;
+        border-radius: 10px;
+        margin-right: auto;
+      }
+
+      #welmsg {
+        text-align: center;
+        background-color: rgba(128, 128, 128, 0.218);
+        margin: 0;
+        padding: 0;
+      }
+
+      #loginForm {
+        margin: 0 auto;
+        width: 50%;
+        border: 1px solid rgb(105, 105, 105);
+        display: flex;
+        flex-direction: column;
+        align-items: center;
+      }
+
+      #loginForm input {
+        width: 300px;
+        height: 40px;
+        margin-bottom: 10px;
+        background-color: rgb(232, 232, 232);
+        padding-left: 10px;
+        border: solid 1px rgb(132, 132, 132);
+        border-radius: 10px;
+      }
+
+      #loginForm button {
+        width: 300px;
+        background-color: rgb(0, 170, 179);
+        color: white;
+        padding: 10px 10px;
+        border-radius: 10px;
+        cursor: pointer;
+        border: none;
+        font-size: 19px;
+      }
     </style>
-</head>
+  </head>
 
-<body>
+  <body>
     <section class="user">
-        <div id="profile-status">
-            <img src="https://cdn0.iconfinder.com/data/icons/communication-line-10/24/account_profile_user_contact_person_avatar_placeholder-512.png"
-                alt="" id="img" />
-            <div>
-                <h1 id="name"></h1>
-            </div>
+      <div id="profile-status">
+        <img
+          src="https://cdn0.iconfinder.com/data/icons/communication-line-10/24/account_profile_user_contact_person_avatar_placeholder-512.png"
+          alt=""
+          id="img"
+        />
+        <div>
+          <h1 id="name"></h1>
         </div>
+      </div>
     </section>
     <section id="great-container">
-        <div class="main-container" id="chatApp">
-
-            <ul id="messages"></ul>
-            <div id="typingStatus"></div>
-            <form id="form" action="">
-                <input id="input" placeholder="Enter a message" /><button type="submit" id="send">Send</button>
-            </form>
-            <div id="userStatus"></div>
-        </div>
-        <div>
-            <form action="" id="loginForm">
-                <input type="text" name="email" placeholder="email" id="email" />
-                <br />
-                <input type="password" name="password" placeholder="Password" id="password" />
-                <br />
-                <button type="submit" id="login">Login</button>
-            </form>
-        </div>
+      <div class="main-container" id="chatApp">
+        <ul id="messages"></ul>
+        <div id="typingStatus"></div>
+        <form id="form" action="">
+          <input id="input" placeholder="Enter a message" /><button type="submit" id="send">Send</button>
+        </form>
+        <div id="userStatus"></div>
+      </div>
+      <div>
+        <form action="" id="loginForm">
+          <input type="text" name="email" placeholder="email" id="email" />
+          <br />
+          <input type="password" name="password" placeholder="Password" id="password" />
+          <br />
+          <button type="submit" id="login">Login</button>
+        </form>
+      </div>
     </section>
     <script src="https://cdn.socket.io/4.7.5/socket.io.min.js"></script>
     <script>
-        /**
-        * Function for logging in to the UI and establishing a connection on the socket.
-        * This function initializes the login process, fetches the authentication token, establishes
-        * a socket connection, and switches the display from the login form to the chat interface.
-        */
-        const loginToAccount = () => {
-            document.addEventListener('DOMContentLoaded', e => {
-                e.preventDefault;
-                const email = document.querySelector('#email');
-                const password = document.getElementById('password');
-                const loginButton = document.getElementById('login');
-                const chatElement = document.getElementById('chatApp');
-                const loginForm = document.getElementById('loginForm');
-
-                loginButton.addEventListener('click', async e => {
-                    e.preventDefault();
-
-                    const response = await fetch(
-                        'http://localhost:8080/api/auth/login',
-                        {
-                            method: 'POST',
-                            headers: { 'Content-Type': 'application/json' },
-                            body: JSON.stringify({
-                                email: email.value,
-                                password: password.value,
-                            }),
-                        }
-                    );
-                    const result = await response.json();
-                    // If authentication is successful, store the token, establish socket connection,
-                    // and switch the display from login form to chat interface
-                    if (result.token) {
-                        const storeToken = localStorage.setItem('Token', result.token);
-                        establishSocketConnection(); // Establish socket connection
-                        loginForm.style.display = 'none';
-                        chatElement.style.display = 'block';
-                    }
-                });
+      /**
+       * Function for logging in to the UI and establishing a connection on the socket.
+       * This function initializes the login process, fetches the authentication token, establishes
+       * a socket connection, and switches the display from the login form to the chat interface.
+       */
+      const loginToAccount = () => {
+        document.addEventListener('DOMContentLoaded', e => {
+          e.preventDefault;
+          const email = document.querySelector('#email');
+          const password = document.getElementById('password');
+          const loginButton = document.getElementById('login');
+          const chatElement = document.getElementById('chatApp');
+          const loginForm = document.getElementById('loginForm');
+
+          loginButton.addEventListener('click', async e => {
+            e.preventDefault();
+
+            const response = await fetch('http://localhost:8080/api/auth/login', {
+              method: 'POST',
+              headers: { 'Content-Type': 'application/json' },
+              body: JSON.stringify({
+                email: email.value,
+                password: password.value,
+              }),
+            });
+            const result = await response.json();
+            // If authentication is successful, store the token, establish socket connection,
+            // and switch the display from login form to chat interface
+            if (result.token) {
+              const storeToken = localStorage.setItem('Token', result.token);
+              establishSocketConnection(); // Establish socket connection
+              loginForm.style.display = 'none';
+              chatElement.style.display = 'block';
+            }
+          });
+        });
+      };
+      loginToAccount();
+
+      /**
+       * Function to establish a socket connection to the server.
+       * This function retrieves the authentication token from localStorage,
+       * initializes a socket connection with the token, handles various socket events,
+       * and sends/receives messages between client and server.
+       */
+      const establishSocketConnection = () => {
+        const tokenValue = localStorage.getItem('Token');
+
+        if (tokenValue) {
+          // Establishing socket connection with authentication token
+          const socket = io('http://localhost:8080', {
+            auth: {
+              token: tokenValue,
+            },
+          });
+          // Event listener to capture the user ID sent from the server
+          socket.on('sendUserId', getId => {
+            localStorage.setItem('userId', getId);
+          });
+
+          // Event listener to handle the 'welcome' message from the server
+          const defaultImageUrl =
+            'https://cdn0.iconfinder.com/data/icons/communication-line-10/24/account_profile_user_contact_person_avatar_placeholder-512.png';
+          // Function to set user image
+          const userImage = document.getElementById('img');
+          const setUserImage = imageUrl => {
+            userImage.src = imageUrl;
+          };
+          const name = document.getElementById('name');
+          socket.on('welcome', data => {
+            setInterval(() => {
+              name.textContent = data.firstName;
+              // Check if the image URL exists in the data
+              if (data.imageUrl) {
+                setUserImage(data.imageUrl);
+              } else {
+                // If no image URL is provided, set a default image
+                setUserImage(defaultImageUrl);
+              }
+            }, 1000);
+          });
+
+          // Function to scroll message container to the bottom
+          const scrollToBottom = () => {
+            const messageContainer = document.getElementById('great-container');
+            messageContainer.scrollTop = messageContainer.scrollHeight;
+          };
+
+          // Function to retrieve messages from the server and display them
+          const getMessage = async () => {
+            const displayMessage = document.getElementById('messages');
+            const messages = await fetch('http://localhost:8080/api/chats', {
+              method: 'GET',
+              headers: {
+                'Content-Type': 'application/json',
+                'Accept': 'application/json',
+                'Authorization': localStorage.getItem('Token'),
+              },
             });
-        };
-        loginToAccount();
-
-        /**
-        * Function to establish a socket connection to the server.
-        * This function retrieves the authentication token from localStorage,
-        * initializes a socket connection with the token, handles various socket events,
-        * and sends/receives messages between client and server.
-        */
-        const establishSocketConnection = () => {
-            const tokenValue = localStorage.getItem("Token")
-
-            if (tokenValue) {
-                // Establishing socket connection with authentication token
-                const socket = io("http://localhost:8080", {
-                    auth: {
-                        token: tokenValue
-                    }
-                })
-                // Event listener to capture the user ID sent from the server
-                socket.on("sendUserId", getId => {
-                    localStorage.setItem("userId", getId)
-                })
-
-                // Event listener to handle the 'welcome' message from the server
-                const defaultImageUrl = 'https://cdn0.iconfinder.com/data/icons/communication-line-10/24/account_profile_user_contact_person_avatar_placeholder-512.png';
-                // Function to set user image
-                const userImage = document.getElementById('img')
-                const setUserImage = (imageUrl) => {
-                    userImage.src = imageUrl;
-                };
-                const name = document.getElementById("name")
-                socket.on("welcome", data => {
-                    setInterval(() => {
-                        name.textContent = data.firstName;
-                        // Check if the image URL exists in the data
-                        if (data.imageUrl) {
-                            setUserImage(data.imageUrl);
-                        } else {
-                            // If no image URL is provided, set a default image
-                            setUserImage(defaultImageUrl);
-                        }
-                    }, 1000);
-                });
-
-                // Function to scroll message container to the bottom
-                const scrollToBottom = () => {
-                    const messageContainer = document.getElementById('great-container');
-                    messageContainer.scrollTop = messageContainer.scrollHeight;
-                };
-
-                // Function to retrieve messages from the server and display them
-                const getMessage = async () => {
-                    const displayMessage = document.getElementById("messages")
-                    const messages = await fetch("http://localhost:8080/api/chats", {
-                        method: 'GET',
-                        headers: {
-                            'Content-Type': "application/json",
-                            Accept: "application/json",
-                            Authorization: localStorage.getItem("Token")
-                        }
-                    })
-                    const results = await messages.json()
-                    const data = results.chat
-
-                    for (let i = 0; i < data.length; i++) {
-                        const userId = localStorage.getItem('userId');
-                        const newMessage = document.createElement('p');
-                        const span = document.createElement('span');
-                        const realTime = data[i].updatedAt;
-                        const findTime = findRealTime(realTime);
-
-                        if (data[i].senderId === userId) {
-                            newMessage.innerHTML = `<strong>Me:</strong> ` + data[i].content;
-                            span.textContent = findTime;
-                            span.classList.add('MyTime');
-                            newMessage.className = 'mine';
-                            newMessage.style.textAlign = 'right';
-                        } else {
-                            newMessage.innerHTML = `<strong>${data[i].User.firstName}</strong>: ${data[i].content}`;
-                            formatTyping(data[i].User.firstName);
-                            span.textContent = findTime;
-                            span.classList.add('time');
-                            newMessage.className = 'Others';
-                            newMessage.style.textAlign = 'left';
-                        }
-                        const displayMessage = document.getElementById('messages');
-                        newMessage.appendChild(span);
-                        displayMessage.appendChild(newMessage);
-                    }
-                    // Scroll to bottom after messages are fetched
-                    scrollToBottom();
-                }
-                getMessage()
-
-                // Function to format and display real-time timestamps
-                const findRealTime = time => {
-                    // Parse the timestamp into a Date object
-                    const timestampParts = time.split(/[^\d]+/);
-                    const date = new Date(Date.UTC(
-                        parseInt(timestampParts[0]), // Year
-                        parseInt(timestampParts[1]) - 1, // Month (months are 0-indexed in Date object)
-                        parseInt(timestampParts[2]), // Day
-                        parseInt(timestampParts[3]), // Hours
-                        parseInt(timestampParts[4]), // Minutes
-                        parseInt(timestampParts[5]), // Seconds
-                        parseInt(timestampParts[6]) || 0 // Milliseconds
-                    ));
-
-                    // Calculate AM/PM and formatted hours
-                    const formattedHours = date.getHours() % 12 || 12;
-                    const amPm = date.getHours() < 12 ? 'AM' : 'PM';
-
-                    // Format the time
-                    const formattedTime = `${formattedHours}:${date.getMinutes() < 10 ? '0' : ''}${date.getMinutes()} ${amPm}`;
-                    return formattedTime;
-                };
-
-                // Event listener to handle incoming messages from the server
-                socket.on("returnMessage", data => {
-                    const newMessage = document.createElement('li');
-                    const senderName = data.senderName;
-                    const span = document.createElement('span');
-                    const findTime = findRealTime(data.date);
-
-                    if (data !== "") {
-                        if (data.socketId === socket.id) {
-                            newMessage.textContent = 'Me: ' + data.content;
-                            span.textContent = findTime;
-                            span.classList.add('MyTime');
-                            newMessage.className = 'mine';
-                            newMessage.style.textAlign = 'right';
-                        } else {
-                            newMessage.textContent = `${data.senderName}: ${data.content}`;
-                            newMessage.className = 'Others';
-                            span.textContent = findTime;
-                            span.classList.add('time');
-                            newMessage.style.textAlign = 'left';
-                        }
-                        const displayMessage = document.getElementById('messages');
-                        newMessage.appendChild(span);
-                        displayMessage.appendChild(newMessage);
-                    } else {
-                        console.error('Message content is empty');
-                    }
-                })
-
-                // Function to manage typing status and display typing indicators
-                const formatTyping = name => {
-                    const inputField = document.getElementById('input');
-                    let typingTimer;
-                    const typingTimeout = 1000;
-
-                    inputField.addEventListener('input', () => {
-                        clearTimeout(typingTimer);
-                        socket.emit('typing', true);
-                        typingTimer = setTimeout(() => {
-                            socket.emit('typing', false);
-                        }, typingTimeout);
-                    });
-
-                    // Update typing status UI
-                    const typingStatus = document.getElementById('typingStatus');
-                    socket.on('typing', isTyping => {
-                        if (isTyping) {
-                            typingStatus.style.display = 'block';
-                            typingStatus.textContent = ` ${name} is typing...`;
-                        } else {
-                            typingStatus.style.display = 'none';
-                            typingStatus.textContent = '';
-                        }
-                    });
-                };
-
-                // Event listener for submitting messages
-                document.getElementById("form").addEventListener("submit", e => {
-                    e.preventDefault()
-                    const message = document.getElementById("input")
-                    if (message.value === "") return alert("F**k no message please")
-                    socket.emit('sentMessage', {
-                        content: message.value,
-                        socketId: socket.id,
-                    });
-                    message.value = '';
-                    // Scroll to bottom after sending a message
-                    scrollToBottom();
-                })
+            const results = await messages.json();
+            const data = results.chat;
+
+            for (let i = 0; i < data.length; i++) {
+              const userId = localStorage.getItem('userId');
+              const newMessage = document.createElement('p');
+              const span = document.createElement('span');
+              const realTime = data[i].updatedAt;
+              const findTime = findRealTime(realTime);
+
+              if (data[i].senderId === userId) {
+                newMessage.innerHTML = `<strong>Me:</strong> ` + data[i].content;
+                span.textContent = findTime;
+                span.classList.add('MyTime');
+                newMessage.className = 'mine';
+                newMessage.style.textAlign = 'right';
+              } else {
+                newMessage.innerHTML = `<strong>${data[i].User.firstName}</strong>: ${data[i].content}`;
+                formatTyping(data[i].User.firstName);
+                span.textContent = findTime;
+                span.classList.add('time');
+                newMessage.className = 'Others';
+                newMessage.style.textAlign = 'left';
+              }
+              const displayMessage = document.getElementById('messages');
+              newMessage.appendChild(span);
+              displayMessage.appendChild(newMessage);
+            }
+            // Scroll to bottom after messages are fetched
+            scrollToBottom();
+          };
+          getMessage();
+
+          // Function to format and display real-time timestamps
+          const findRealTime = time => {
+            // Parse the timestamp into a Date object
+            const timestampParts = time.split(/[^\d]+/);
+            const date = new Date(
+              Date.UTC(
+                parseInt(timestampParts[0]), // Year
+                parseInt(timestampParts[1]) - 1, // Month (months are 0-indexed in Date object)
+                parseInt(timestampParts[2]), // Day
+                parseInt(timestampParts[3]), // Hours
+                parseInt(timestampParts[4]), // Minutes
+                parseInt(timestampParts[5]), // Seconds
+                parseInt(timestampParts[6]) || 0 // Milliseconds
+              )
+            );
+
+            // Calculate AM/PM and formatted hours
+            const formattedHours = date.getHours() % 12 || 12;
+            const amPm = date.getHours() < 12 ? 'AM' : 'PM';
+
+            // Format the time
+            const formattedTime = `${formattedHours}:${date.getMinutes() < 10 ? '0' : ''}${date.getMinutes()} ${amPm}`;
+            return formattedTime;
+          };
+
+          // Event listener to handle incoming messages from the server
+          socket.on('returnMessage', data => {
+            const newMessage = document.createElement('li');
+            const senderName = data.senderName;
+            const span = document.createElement('span');
+            const findTime = findRealTime(data.date);
+
+            if (data !== '') {
+              if (data.socketId === socket.id) {
+                newMessage.textContent = 'Me: ' + data.content;
+                span.textContent = findTime;
+                span.classList.add('MyTime');
+                newMessage.className = 'mine';
+                newMessage.style.textAlign = 'right';
+              } else {
+                newMessage.textContent = `${data.senderName}: ${data.content}`;
+                newMessage.className = 'Others';
+                span.textContent = findTime;
+                span.classList.add('time');
+                newMessage.style.textAlign = 'left';
+              }
+              const displayMessage = document.getElementById('messages');
+              newMessage.appendChild(span);
+              displayMessage.appendChild(newMessage);
             } else {
-                alert("Login please")
+              console.error('Message content is empty');
             }
-        }
+          });
+
+          // Function to manage typing status and display typing indicators
+          const formatTyping = name => {
+            const inputField = document.getElementById('input');
+            let typingTimer;
+            const typingTimeout = 1000;
+
+            inputField.addEventListener('input', () => {
+              clearTimeout(typingTimer);
+              socket.emit('typing', true);
+              typingTimer = setTimeout(() => {
+                socket.emit('typing', false);
+              }, typingTimeout);
+            });
 
+            // Update typing status UI
+            const typingStatus = document.getElementById('typingStatus');
+            socket.on('typing', isTyping => {
+              if (isTyping) {
+                typingStatus.style.display = 'block';
+                typingStatus.textContent = ` ${name} is typing...`;
+              } else {
+                typingStatus.style.display = 'none';
+                typingStatus.textContent = '';
+              }
+            });
+          };
+
+          // Event listener for submitting messages
+          document.getElementById('form').addEventListener('submit', e => {
+            e.preventDefault();
+            const message = document.getElementById('input');
+            if (message.value === '') return alert('F**k no message please');
+            socket.emit('sentMessage', {
+              content: message.value,
+              socketId: socket.id,
+            });
+            message.value = '';
+            // Scroll to bottom after sending a message
+            scrollToBottom();
+          });
+        } else {
+          alert('Login please');
+        }
+      };
     </script>
-</body>
-
-</html>
\ No newline at end of file
+  </body>
+</html>
diff --git a/public/order.html b/public/order.html
new file mode 100644
index 00000000..0e83a419
--- /dev/null
+++ b/public/order.html
@@ -0,0 +1,353 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Order Status</title>
+    <style>
+      body {
+        font-family: Arial, sans-serif;
+        background-color: #f4f4f4;
+        display: flex;
+        justify-content: center;
+        align-items: center;
+        height: 100vh;
+        margin: 0;
+        flex-direction: column;
+      }
+
+      #orderStatusContainer {
+        background-color: #fff;
+        padding: 2rem;
+        border-radius: 0.5rem;
+        box-shadow: 0 4px 6px rgba(0, 0, 0, 0.1);
+        text-align: center;
+        display: none;
+      }
+
+      #loginForm {
+        background-color: #fff;
+        padding: 2rem;
+        border-radius: 0.5rem;
+        box-shadow: 0 4px 6px rgba(0, 0, 0, 0.1);
+        text-align: center;
+      }
+
+      input[type='email'],
+      input[type='password'] {
+        width: 100%;
+        padding: 0.5rem;
+        margin-bottom: 1rem;
+        border: 1px solid #ccc;
+        border-radius: 0.25rem;
+      }
+
+      button {
+        background-color: #007bff;
+        color: white;
+        padding: 0.5rem 1rem;
+        border: none;
+        border-radius: 0.25rem;
+        cursor: pointer;
+      }
+
+      button:hover {
+        background-color: #0056b3;
+      }
+
+      .orderContainer {
+        border: 1px solid red;
+        width: 100vw;
+      }
+
+      table {
+        width: 100%;
+        border-collapse: collapse;
+      }
+
+      th,
+      td {
+        padding: 0.5rem;
+        text-align: left;
+        border-bottom: 1px solid #ddd;
+      }
+
+      th {
+        background-color: #f2f2f2;
+      }
+
+      tr:hover {
+        background-color: #f9f9f9;
+      }
+
+      .dialog {
+        position: fixed;
+        top: 50%;
+        left: 50%;
+        transform: translate(-50%, -50%);
+        background-color: #f9f9f9;
+        padding: 20px;
+        border-radius: 5px;
+        box-shadow: 0px 0px 10px rgba(0, 0, 0, 0.3);
+        z-index: 999;
+        display: none;
+      }
+
+      .confirm-button,
+      .cancel-button,
+      .close-button {
+        background-color: #007bff;
+        color: white;
+        padding: 0.5rem 1rem;
+        border: none;
+        border-radius: 0.25rem;
+        cursor: pointer;
+        margin-right: 10px;
+      }
+
+      .confirm-button:hover {
+        background-color: #0056b3;
+      }
+
+      .cancel-button,
+      .close-button {
+        background-color: #ccc;
+      }
+
+      .cancel-button:hover,
+      .close-button:hover {
+        background-color: #999;
+      }
+    </style>
+  </head>
+  <body>
+    <div id="loginForm">
+      <h1>Login</h1>
+      <input type="email" id="email" placeholder="Email" required />
+      <input type="password" id="password" placeholder="Password" required />
+      <button id="login">Login</button>
+    </div>
+
+    <div id="orderStatusContainer" class="orderContainer">
+      <h1>Order Status</h1>
+      <table id="ordersTable">
+        <thead>
+          <tr>
+            <th>Select</th>
+            <th>Order ID</th>
+            <th>Status</th>
+            <th>Actions</th>
+          </tr>
+        </thead>
+        <tbody id="ordersTableBody"></tbody>
+      </table>
+    </div>
+
+    <div id="confirmCancelDialog" class="dialog">
+      <p id="confirmCancelMessage"></p>
+      <button id="confirmCancelButton" class="confirm-button">Cancel Order</button>
+      <button id="cancelCancelButton" class="cancel-button">Cancel</button>
+    </div>
+
+    <div id="cancelResultDialog" class="dialog">
+      <p id="cancelResultMessage"></p>
+      <button id="closeCancelResultButton" class="close-button">Close</button>
+    </div>
+    <script src="https://cdn.socket.io/4.7.5/socket.io.min.js"></script>
+    <script>
+      const checkStatus = async orderId => {
+        const token = localStorage.getItem('Token');
+        const response = await fetch(`http://localhost:8080/api/orders/${orderId}/check-status`, {
+          method: 'GET',
+          headers: {
+            'Content-Type': 'application/json',
+            'Authorization': token,
+          },
+        });
+        return await response.json();
+      };
+
+      const cancelOrder = async orderId => {
+        const token = localStorage.getItem('Token');
+        const confirmCancelDialog = document.getElementById('confirmCancelDialog');
+        const confirmCancelMessage = document.getElementById('confirmCancelMessage');
+        const confirmCancelButton = document.getElementById('confirmCancelButton');
+        const cancelCancelButton = document.getElementById('cancelCancelButton');
+        const cancelResultDialog = document.getElementById('cancelResultDialog');
+        const cancelResultMessage = document.getElementById('cancelResultMessage');
+        const closeCancelResultButton = document.getElementById('closeCancelResultButton');
+
+        confirmCancelMessage.textContent = `Are you sure you want to cancel order ${orderId}?`;
+        confirmCancelDialog.style.display = 'block';
+
+        confirmCancelButton.addEventListener('click', async () => {
+          confirmCancelDialog.style.display = 'none';
+          try {
+            const response = await fetch(`http://localhost:8080/api/orders/${orderId}/cancel`, {
+              method: 'PUT',
+              headers: {
+                'Content-Type': 'application/json',
+                'Authorization': token,
+              },
+            });
+            if (!response.ok) {
+              throw new Error(`API request failed with status ${response.status}`);
+            }
+            const data = await response.json();
+            cancelResultMessage.textContent = data.message;
+            cancelResultDialog.style.display = 'block';
+          } catch (error) {
+            console.error(error);
+            cancelResultMessage.textContent = 'An error occurred while canceling the order.';
+            cancelResultDialog.style.display = 'block';
+          }
+        });
+
+        cancelCancelButton.addEventListener('click', () => {
+          confirmCancelDialog.style.display = 'none';
+        });
+
+        closeCancelResultButton.addEventListener('click', () => {
+          cancelResultDialog.style.display = 'none';
+        });
+      };
+
+      const sellerChangeStatus = async orderId => {
+        const token = localStorage.getItem('Token');
+        const response = await fetch(`http://localhost:8080/api/orders/${orderId}/seller-change-status`, {
+          method: 'PUT',
+          headers: {
+            'Content-Type': 'application/json',
+            'Authorization': token,
+          },
+        });
+        return await response.json();
+      };
+
+      const getAllOrders = async () => {
+        const token = localStorage.getItem('Token');
+        try {
+          const response = await fetch('http://localhost:8080/api/orders', {
+            method: 'GET',
+            headers: {
+              'Content-Type': 'application/json',
+              'authorization': token,
+            },
+          });
+          const data = await response.json();
+
+          if (Array.isArray(data.data)) {
+            populateOrdersTable(data.data);
+          }
+        } catch (error) {
+          console.log(error);
+        }
+      };
+
+      const populateOrdersTable = orders => {
+        try {
+          const ordersTableBody = document.getElementById('ordersTableBody');
+          ordersTableBody.innerHTML = '';
+
+          orders.forEach(order => {
+            console.log(order);
+            const row = document.createElement('tr');
+            row.innerHTML = `
+            <td><input type="radio" name="order" value="${order.id}"></td>
+            <td>${order.id}</td>
+            <td>${order.status}</td>
+            <td>
+              <button class="checkStatusButton">Check Status</button>
+              <button class="cancelOrderButton">Cancel Order</button>
+            </td>
+          `;
+            ordersTableBody.appendChild(row);
+          });
+
+          addEventListenersToOrderButtons();
+        } catch (error) {
+          console.log(error);
+        }
+      };
+
+      const addEventListenersToOrderButtons = () => {
+        const checkStatusButtons = document.getElementsByClassName('checkStatusButton');
+        const cancelOrderButtons = document.getElementsByClassName('cancelOrderButton');
+
+        Array.from(checkStatusButtons).forEach(button => {
+          button.addEventListener('click', async () => {
+            const orderId = getSelectedOrderId();
+            const result = await checkStatus(orderId);
+            console.log(result);
+          });
+        });
+
+        Array.from(cancelOrderButtons).forEach(button => {
+          button.addEventListener('click', async () => {
+            const orderId = getSelectedOrderId();
+            await cancelOrder(orderId);
+          });
+        });
+      };
+
+      const getSelectedOrderId = () => {
+        const selectedOrderRadio = document.querySelector('input[name="order"]:checked');
+        return selectedOrderRadio ? selectedOrderRadio.value : null;
+      };
+
+      const loginToAccount = () => {
+        document.addEventListener('DOMContentLoaded', e => {
+          const email = document.querySelector('#email');
+          const password = document.getElementById('password');
+          const loginButton = document.getElementById('login');
+          const loginForm = document.getElementById('loginForm');
+          const orderStatusContainer = document.getElementById('orderStatusContainer');
+
+          loginButton.addEventListener('click', async e => {
+            e.preventDefault();
+            const response = await fetch('http://localhost:8080/api/auth/login', {
+              method: 'POST',
+              headers: { 'Content-Type': 'application/json' },
+              body: JSON.stringify({
+                email: email.value,
+                password: password.value,
+              }),
+            });
+            const result = await response.json();
+            if (result.token) {
+              localStorage.setItem('Token', result.token);
+              loginForm.style.display = 'none';
+              orderStatusContainer.style.display = 'block';
+              getAllOrders();
+              establishSocketConnection()
+            }
+          });
+        });
+      };
+      const establishSocketConnection = () => {
+        const tokenValue = localStorage.getItem('Token');
+
+        if (tokenValue) {
+          const socket = io('http://localhost:8080', {
+            auth: {
+              token: tokenValue,
+            },
+          });
+          socket.on('orderStatusChanged', (data) => {
+            if (Array.isArray(data)) {
+            populateOrdersTable(data);
+            }else
+            {
+              console.log('Error in dispaying orders');
+              console.log(data)
+            }
+          }
+
+          );
+             }}
+
+      loginToAccount();
+      establishSocketConnection();
+    </script>
+  </body>
+</html>
diff --git a/public/script.js b/public/script.js
new file mode 100644
index 00000000..20f0d77b
--- /dev/null
+++ b/public/script.js
@@ -0,0 +1,25 @@
+const checkoutButton = document.getElementById('checkout-button');
+
+checkoutButton.addEventListener('click', () => {
+  fetch('api/payments/charge', {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    body: JSON.stringify({
+      items: [
+        { id: 'f0b655c0-6ad5-47f0-8d71-60929c656508', quantity: 3 },
+        { id: 'a1a8403f-0351-401c-9c20-9cf0fdb4f8e5', quantity: 1 },
+      ],
+    }),
+  })
+    .then(res => {
+      if (res.ok) return res.json();
+    })
+    .then(({ url }) => {
+      window.location = url;
+    })
+    .catch(err => {
+      console.log(err.message);
+    });
+});
diff --git a/public/seller.html b/public/seller.html
new file mode 100644
index 00000000..fa5cae33
--- /dev/null
+++ b/public/seller.html
@@ -0,0 +1,294 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Seller Order Management</title>
+    <style>
+      body {
+        font-family: Arial, sans-serif;
+        background-color: #f4f4f4;
+        display: flex;
+        justify-content: center;
+        align-items: center;
+        height: 100vh;
+        margin: 0;
+        flex-direction: column;
+      }
+
+      #orderStatusContainer {
+        background-color: #fff;
+        padding: 2rem;
+        border-radius: 0.5rem;
+        box-shadow: 0 4px 6px rgba(0, 0, 0, 0.1);
+        text-align: center;
+        display: none;
+      }
+
+      #loginForm {
+        background-color: #fff;
+        padding: 2rem;
+        border-radius: 0.5rem;
+        box-shadow: 0 4px 6px rgba(0, 0, 0, 0.1);
+        text-align: center;
+      }
+
+      input[type='email'],
+      input[type='password'] {
+        width: 100%;
+        padding: 0.5rem;
+        margin-bottom: 1rem;
+        border: 1px solid #ccc;
+        border-radius: 0.25rem;
+      }
+
+      button {
+        background-color: #007bff;
+        color: white;
+        padding: 0.5rem 1rem;
+        border: none;
+        border-radius: 0.25rem;
+        cursor: pointer;
+      }
+
+      button:hover {
+        background-color: #0056b3;
+      }
+
+      .orderContainer {
+        border: 1px solid red;
+        width: 100vw;
+      }
+
+      table {
+        width: 100%;
+        border-collapse: collapse;
+      }
+
+      th,
+      td {
+        padding: 0.5rem;
+        text-align: left;
+        border-bottom: 1px solid #ddd;
+      }
+
+      th {
+        background-color: #f2f2f2;
+      }
+
+      tr:hover {
+        background-color: #f9f9f9;
+      }
+
+      .dialog {
+        position: fixed;
+        top: 50%;
+        left: 50%;
+        transform: translate(-50%, -50%);
+        background-color: #f9f9f9;
+        padding: 20px;
+        border-radius: 5px;
+        box-shadow: 0px 0px 10px rgba(0, 0, 0, 0.3);
+        z-index: 999;
+        display: none;
+      }
+
+      .confirm-button,
+      .cancel-button,
+      .close-button {
+        background-color: #007bff;
+        color: white;
+        padding: 0.5rem 1rem;
+        border: none;
+        border-radius: 0.25rem;
+        cursor: pointer;
+        margin-right: 10px;
+      }
+
+      .confirm-button:hover {
+        background-color: #0056b3;
+      }
+
+      .cancel-button,
+      .close-button {
+        background-color: #ccc;
+      }
+
+      .cancel-button:hover,
+      .close-button:hover {
+        background-color: #999;
+      }
+    </style>
+  </head>
+  <body>
+    <div id="loginForm">
+      <h1>Login</h1>
+      <input type="email" id="email" placeholder="Email" required />
+      <input type="password" id="password" placeholder="Password" required />
+      <button id="login">Login</button>
+    </div>
+
+    <div id="orderStatusContainer" class="orderContainer">
+      <h1>Seller Order Management</h1>
+      <table id="ordersTable">
+        <thead>
+          <tr>
+            <th>Select</th>
+            <th>Product</th>
+            <th>Status</th>
+            <th>Actions</th>
+          </tr>
+        </thead>
+        <tbody id="ordersTableBody"></tbody>
+      </table>
+    </div>
+
+    <div id="statusChangeDialog" class="dialog">
+      <p id="statusChangeMessage"></p>
+      <label for="newStatus">New Status:</label>
+      <select id="newStatus">
+        <option value="pending">Pending</option>
+        <option value="shipped">Shipped</option>
+        <option value="delivered">Delivered</option>
+        <option value="cancelled">Cancelled</option>
+        <option value="returned">Paid</option>
+      </select>
+      <label for="deliveryDate">Expected Delivery Date:</label>
+      <input type="date" id="deliveryDate" />
+      <button id="confirmStatusChangeButton" class="confirm-button">Change Status</button>
+      <button id="cancelStatusChangeButton" class="cancel-button">Cancel</button>
+    </div>
+    <script src="https://cdn.socket.io/4.7.5/socket.io.min.js"></script>
+    <script>
+      const changeOrderStatus = async (orderId, newStatus, expectedDeliveryDate) => {
+        const token = localStorage.getItem('Token');
+        const response = await fetch(`http://localhost:8080/api/orders/${orderId}/seller-change-status`, {
+          method: 'PUT',
+          headers: {
+            'Content-Type': 'application/json',
+            'Authorization': token,
+          },
+          body: JSON.stringify({ status: newStatus, expectedDeliveryDate }),
+        });
+        return await response.json();
+      };
+
+      const getAllOrders = async () => {
+        try {
+          const token = localStorage.getItem('Token');  
+          const response = await fetch('http://localhost:8080/api/orders/get-orders', {
+            method: 'GET',
+            headers: {
+              'Content-Type': 'application/json',
+              'authorization': token,
+            },
+          });
+          const data = await response.json();
+          if (Array.isArray(data.data)) {
+            populateOrdersTable(data.data);
+          }
+        } catch (error) {
+          console.log(error);
+        }
+      };
+
+      const populateOrdersTable = orders => {
+        try {
+          const ordersTableBody = document.getElementById('ordersTableBody');
+          ordersTableBody.innerHTML = '';
+
+          orders.forEach(order => {
+            
+            const row = document.createElement('tr');
+            row.innerHTML = `
+              <td><input type="radio" name="order" value="${order.id}"></td>
+              <td>${order.orderItems[0].products.name}</td>
+              <td>${order.status}</td>
+              <td>
+                <button class="changeStatusButton">Change Status</button>
+              </td>
+            `;
+            ordersTableBody.appendChild(row);
+          });
+
+          addEventListenersToOrderButtons();
+        } catch (error) {
+          console.log(error);
+        }
+      };
+
+      const addEventListenersToOrderButtons = () => {
+        const changeStatusButtons = document.getElementsByClassName('changeStatusButton');
+
+        Array.from(changeStatusButtons).forEach(button => {
+          button.addEventListener('click', async () => {
+            const orderId = getSelectedOrderId();
+            if (orderId) {
+              showStatusChangeDialog(orderId);
+            }
+          });
+        });
+      };
+
+      const getSelectedOrderId = () => {
+        const selectedOrderRadio = document.querySelector('input[name="order"]:checked');
+        return selectedOrderRadio ? selectedOrderRadio.value : null;
+      };
+
+      const showStatusChangeDialog = (orderId) => {
+        const statusChangeDialog = document.getElementById('statusChangeDialog');
+        const statusChangeMessage = document.getElementById('statusChangeMessage');
+        const confirmStatusChangeButton = document.getElementById('confirmStatusChangeButton');
+        const cancelStatusChangeButton = document.getElementById('cancelStatusChangeButton');
+
+        statusChangeMessage.textContent = `Change status for order ${orderId}:`;
+        statusChangeDialog.style.display = 'block';
+
+        confirmStatusChangeButton.onclick = async () => {
+          const newStatus = document.getElementById('newStatus').value;
+          const expectedDeliveryDate = document.getElementById('deliveryDate').value;
+          await changeOrderStatus(orderId, newStatus, expectedDeliveryDate);
+          statusChangeDialog.style.display = 'none';
+          getAllOrders();
+        };
+
+        cancelStatusChangeButton.onclick = () => {
+          statusChangeDialog.style.display = 'none';
+        };
+      };
+
+      const loginToAccount = () => {
+        document.addEventListener('DOMContentLoaded', e => {
+          const email = document.querySelector('#email');
+          const password = document.getElementById('password');
+          const loginButton = document.getElementById('login');
+          const loginForm = document.getElementById('loginForm');
+          const orderStatusContainer = document.getElementById('orderStatusContainer');
+
+          loginButton.addEventListener('click', async e => {
+            e.preventDefault();
+            const response = await fetch('http://localhost:8080/api/auth/login', {
+              method: 'POST',
+              headers: { 'Content-Type': 'application/json' },
+              body: JSON.stringify({
+                email: email.value,
+                password: password.value,
+              }),
+            });
+            const result = await response.json();
+            if (result.token) {
+              localStorage.setItem('Token', result.token);
+              loginForm.style.display = 'none';
+              orderStatusContainer.style.display = 'block';
+              getAllOrders();
+            } else {
+              alert('Login failed. Please check your credentials.');
+            }
+          });
+        });
+      };
+
+      loginToAccount();
+    </script>
+  </body>
+</html>
diff --git a/public/stripe.html b/public/stripe.html
new file mode 100644
index 00000000..14277d34
--- /dev/null
+++ b/public/stripe.html
@@ -0,0 +1,12 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Document</title>
+  </head>
+  <body>
+    <button id="checkout-button">Checkout</button>
+  </body>
+  <script src="./script.js"></script>
+</html>
diff --git a/public/success.html b/public/success.html
new file mode 100644
index 00000000..136dab91
--- /dev/null
+++ b/public/success.html
@@ -0,0 +1,11 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Document</title>
+  </head>
+  <body>
+    <h1>Success</h1>
+  </body>
+</html>
diff --git a/src/chatSetup.ts b/src/chatSetup.ts
index 9fb666d4..ed13eda7 100644
--- a/src/chatSetup.ts
+++ b/src/chatSetup.ts
@@ -66,7 +66,13 @@ const disconnected = () => {
 };
 
 export const socketSetUp = (server: HttpServer) => {
-  const io = new Server(server);
+  const io = new Server(server, {
+    cors: {
+      origin: '*',
+      methods: ['GET', 'POST', 'PUT', 'PATCH', 'DELETE'],
+      allowedHeaders: ['Content-Type', 'Authorization'],
+    },
+  });
   // eslint-disable-next-line @typescript-eslint/no-misused-promises
   io.use(async (socket: CustomSocket, next) => {
     const id = findId(socket);
@@ -78,6 +84,10 @@ export const socketSetUp = (server: HttpServer) => {
     io.emit('welcome', await getUserNames(socket.userId as string));
     socket.on('sentMessage', data => sentMessage(socket, data, io));
     socket.on('typing', isTyping => handleTyping(socket, isTyping));
+    socket.on('changeOrderStatus', async statusData => {
+      io.emit('orderStatusChanged', { order: statusData });
+    });
     socket.on('disconnect', disconnected);
   });
+  return io;
 };
diff --git a/src/controllers/handlePaymentsController.ts b/src/controllers/handlePaymentsController.ts
new file mode 100644
index 00000000..25bb0ee4
--- /dev/null
+++ b/src/controllers/handlePaymentsController.ts
@@ -0,0 +1,138 @@
+import { Request, Response } from 'express';
+import Stripe from 'stripe';
+import { config } from 'dotenv';
+import { Product } from '../database/models/Product';
+import { Size } from '../database/models/Size';
+import Order from '../database/models/order';
+import { sendInternalErrorResponse } from '../validations';
+
+config();
+const stripe = new Stripe(process.env.STRIPE_SECRET_KEY as string);
+
+type Items = {
+  id: string;
+  sizes: Size[];
+}[];
+
+const fetchProducts = async (items: Items) => {
+  const products = await Promise.all(
+    items.map(async item => {
+      return await Product.findAll({
+        where: { id: item.id },
+        include: {
+          model: Size,
+          as: 'sizes',
+          attributes: ['size', 'price', 'quantity', 'id'],
+          where: {
+            id: item.sizes.map(size => size.id),
+          },
+        },
+      });
+    })
+  );
+  return products.flat();
+};
+
+let productSize: Size;
+export const handlePayments = async (req: Request, res: Response) => {
+  try {
+    const { items } = req.body as { items: Items };
+    const { orderId } = req.params;
+
+    const products = await fetchProducts(items);
+
+    const lineItems = [];
+    for (const item of items) {
+      const product = products.find(p => p.id === item.id);
+      if (product) {
+        for (const size of item.sizes) {
+          productSize = product.sizes.find((s: { id: string }) => s.id === size.id.toString());
+          lineItems.push({
+            price_data: {
+              currency: 'usd',
+              product_data: {
+                name: `${product.name} (Size: ${productSize.size})`,
+              },
+              unit_amount: productSize.price * 100,
+            },
+            quantity: size.quantity,
+          });
+        }
+      }
+    }
+
+    const session = await stripe.checkout.sessions.create({
+      payment_method_types: ['card'],
+      mode: 'payment',
+      success_url: `${process.env.URL_HOST}/success.html`,
+      line_items: lineItems,
+      cancel_url: `${process.env.URL_HOST}/cancel.html`,
+      metadata: {
+        orderId,
+        items: JSON.stringify(items),
+      },
+    });
+
+    const url = session.url;
+    res.status(200).json({ ok: true, url });
+  } catch (err) {
+    sendInternalErrorResponse(res, err);
+  }
+};
+
+const updateStockLevels = async (items: Items) => {
+  const products = await fetchProducts(items);
+  for (const item of items) {
+    const product = products.find(p => p.id === item.id);
+    if (product) {
+      for (const size of item.sizes) {
+        const newQuantity = productSize.quantity - size.quantity;
+        await Size.update({ quantity: newQuantity, updatedAt: new Date() }, { where: { id: productSize.id } });
+        if (newQuantity <= 0) {
+          await Size.update({ available: false }, { where: { id: productSize.id } });
+        }
+      }
+    }
+  }
+};
+
+declare module 'express-serve-static-core' {
+  interface Request {
+    rawBody?: Buffer | string;
+  }
+}
+
+export const handleWebHooks = async (req: Request, res: Response) => {
+  const sig = req.headers['stripe-signature'] as string;
+  let event;
+
+  try {
+    event = stripe.webhooks.constructEvent(req.rawBody!, sig, process.env.STRIPE_WEBHOOK_SECRET!);
+  } catch (err) {
+    return res.status(400).send(`Webhook Error: ${err}`);
+  }
+
+  if (event.type === 'checkout.session.completed') {
+    const session = event.data.object as Stripe.Checkout.Session;
+    const orderId = session.metadata?.orderId;
+    const items = session.metadata?.items;
+
+    if (!orderId) {
+      return res.status(400).send('No order ID found in session metadata');
+    }
+    try {
+      // update status of order
+      const updatedOrder = await Order.update({ status: 'paid' }, { where: { id: orderId } });
+      if (updatedOrder[0] === 0) {
+        return res.status(404).send('Order not found or not updated');
+      }
+      // update stock levels
+      await updateStockLevels(JSON.parse(items!));
+      res.json({ received: true });
+    } catch (err) {
+      return sendInternalErrorResponse(res, err);
+    }
+  } else {
+    res.json({ received: true });
+  }
+};
diff --git a/src/controllers/orderController.ts b/src/controllers/orderController.ts
index 74026b57..7ad5a691 100644
--- a/src/controllers/orderController.ts
+++ b/src/controllers/orderController.ts
@@ -1,14 +1,15 @@
+/* eslint-disable @typescript-eslint/no-unnecessary-condition */
 import logger from '../logs/config';
 import { Request, Response } from 'express';
 import Order from '../database/models/order';
 import { sendInternalErrorResponse, validateFields } from '../validations';
 import sequelize from '../database/models/index';
-import { Transaction } from 'sequelize';
 import User from '../database/models/user';
 import { Product } from '../database/models/Product';
 import { Size } from '../database/models/Size';
 import Cart from '../database/models/cart';
 import OrderItems from '../database/models/orderItems';
+import { sendErrorResponse } from '../helpers/helper';
 
 export const createOrder = async (req: Request, res: Response): Promise<void> => {
   const { id: userId } = req.user as User;
@@ -39,7 +40,7 @@ export const createOrder = async (req: Request, res: Response): Promise<void> =>
     }
 
     const [orderItems]: any = await sequelize.query(
-      'SELECT "productId", quantity FROM "CartsProducts" WHERE "cartId" = ?',
+      'SELECT "productId", "sizeId", quantity FROM "CartsProducts" WHERE "cartId" = ?',
       {
         replacements: [cart.id],
       }
@@ -47,27 +48,32 @@ export const createOrder = async (req: Request, res: Response): Promise<void> =>
 
     const sizes = await Promise.all(
       orderItems.map(async (item: any) => {
-        const product = await Product.findOne({
-          where: { id: item.productId },
-          include: {
-            model: Size,
-            as: 'sizes',
-            attributes: ['price'],
-          },
+        const productSize = await Size.findOne({
+          where: { id: item.sizeId },
+          attributes: ['id', 'price', 'discount'],
         });
 
-        if (!product) {
-          throw new Error(`Product with id ${item.productId} not found`);
+        if (!productSize) {
+          throw new Error(`Size with id ${item.sizeId} not found`);
         }
 
-        const size = product.sizes[0];
-        const totalSum = size.price * item.quantity;
+        const discountDecimal = 1 - productSize.discount / 100;
+        const discountedPrice = productSize.price * discountDecimal;
+        const sizeQtyPrice = discountedPrice * item.quantity;
 
-        return { productId: item.productId, quantity: item.quantity, price: size.price, totalSum };
+        return {
+          productId: item.productId,
+          sizeId: productSize.id,
+          quantity: item.quantity,
+          price: discountedPrice,
+          sizeQtyPrice,
+        };
       })
     );
 
-    const totalPrice = sizes.reduce((prev: number, cur: any) => prev + cur.totalSum, 0);
+    // combine all products sizes retrieved by flat()
+    const combinedproductsAndSizes = sizes.flat();
+    const totalPrice = combinedproductsAndSizes.reduce((prev: number, curr: any) => prev + curr.sizeQtyPrice, 0);
 
     const order = await Order.create({
       phone,
@@ -81,10 +87,11 @@ export const createOrder = async (req: Request, res: Response): Promise<void> =>
     });
 
     await Promise.all(
-      sizes.map(async (item: any) =>
+      combinedproductsAndSizes.map(async (item: any) =>
         OrderItems.create({
           orderId: order.id,
           productId: item.productId,
+          sizeId: item.sizeId,
           quantity: item.quantity,
           price: item.price,
         })
@@ -98,60 +105,62 @@ export const createOrder = async (req: Request, res: Response): Promise<void> =>
     sendInternalErrorResponse(res, error);
   }
 };
-export const getAllOrders = async (req: Request, res: Response): Promise<void> => {
-  const transaction: Transaction = await sequelize.transaction();
+export const getUserOrders = async (req: Request, res: Response) => {
   try {
+    const { id } = req.user as User;
+    const orders = await Order.findAll({
+      where: {
+        userId: id,
+      },
+    });
+
+    if (!orders || orders.length === 0) {
+      return sendErrorResponse(res, 'No orders found');
+    }
+
+    return res.status(200).json({
+      ok: true,
+      message: 'Orders retrieved successfully',
+      data: orders,
+    });
+  } catch (err) {
+    return sendInternalErrorResponse(res, err);
+  }
+};
+export const sellerProductOrders = async (req: Request, res: Response) => {
+  try {
+    const { id } = req.user as User;
     const orders = await Order.findAll({
-      attributes: ['id', 'totalPrice', 'country', 'city', 'phone'],
       include: [
         {
-          model: User,
-          as: 'user',
-          attributes: ['email', 'phoneNumber', 'firstName', 'lastName'],
-        },
-        {
-          model: Cart,
-          as: 'Carts',
+          model: OrderItems,
+          as: 'orderItems',
+          include: [
+            {
+              model: Product,
+              as: 'products',
+              where: { sellerId: id },
+            },
+          ],
         },
       ],
-      transaction,
     });
-
-    if (orders.length === 0) {
-      res.status(404).json({
-        ok: false,
-        message: 'No orders found',
-      });
-      return;
+    if (!orders) {
+      return sendErrorResponse(res, 'No orders found');
     }
-    const [cartItems] = await sequelize.query('SELECT "productId", quantity from "CartsProducts" where "cartId" = ?', {
-      replacements: [orders.map((order: any) => order.Carts.id)],
-      transaction,
+
+    res.status(200).json({
+      ok: true,
+      message: 'Orders retrieved successfully',
+      data: orders,
     });
-    const orderedProducts = Promise.all(
-      cartItems.map(async (item: any) => {
-        const productsAndQuantity = [];
-        const product = await Product.findOne({
-          where: { id: item.productId },
-          attributes: ['name', 'description', 'id'],
-          include: {
-            model: Size,
-            as: 'sizes',
-          },
-        });
-        productsAndQuantity.push({ product, quantity: item.quantity });
-        return productsAndQuantity;
-      })
-    );
-    await transaction.commit();
-    res.status(200).json({ ok: true, data: { orders, orderItems: await orderedProducts } });
-  } catch (error) {
-    logger.error(error);
-    await transaction.rollback();
-    sendInternalErrorResponse(res, error);
-    return;
+  } catch (err) {
+    logger.error('Error changing order status:', err);
+    console.log('hello there');
+    return sendInternalErrorResponse(res, err);
   }
 };
+
 export const deleteOrder = async (req: Request, res: Response) => {
   try {
     const order = await Order.findByPk(req.params.id);
@@ -166,17 +175,3 @@ export const deleteOrder = async (req: Request, res: Response) => {
     sendInternalErrorResponse(res, error);
   }
 };
-export const updateOrder = async (req: Request, res: Response) => {
-  try {
-    const order = await Order.findByPk(req.params.id);
-    if (!order) {
-      res.status(404).json({ ok: false, message: `No order found with id: ${req.params.id}` });
-      return;
-    }
-    await Order.update(req.body, { where: { id: req.params.id } });
-    res.status(200).json({ ok: true, message: 'Order updated successfully!' });
-  } catch (error) {
-    logger.error(error);
-    sendInternalErrorResponse(res, error);
-  }
-};
diff --git a/src/controllers/orderStatusController.ts b/src/controllers/orderStatusController.ts
new file mode 100644
index 00000000..1e2d6f37
--- /dev/null
+++ b/src/controllers/orderStatusController.ts
@@ -0,0 +1,95 @@
+/* eslint-disable @typescript-eslint/no-unnecessary-condition */
+import { Request, Response } from 'express';
+import { sendErrorResponse } from '../helpers/helper';
+import Order from '../database/models/order';
+import User from '../database/models/user';
+import logger from '../logs/config';
+import { io } from '../server';
+import { sendInternalErrorResponse } from '../validations';
+
+export const processOrder = async (req: Request, res: Response) => {
+  try {
+    const { orderId } = req.params;
+    const { id } = req.user as User;
+    const order = await Order.findOne({ where: { id: orderId, userId: id } });
+
+    if (!order) {
+      return sendErrorResponse(res, 'Order not found');
+    }
+
+    io.emit('orderProcessed', { order });
+
+    return res.status(200).json({
+      ok: true,
+      message: `The order is ${order.status}`,
+    });
+  } catch (err) {
+    logger.error('Error processing order:', err);
+    return sendInternalErrorResponse(res, err);
+  }
+};
+
+export const cancelOrder = async (req: Request, res: Response) => {
+  try {
+    const { orderId } = req.params;
+    const { id } = req.user as User;
+    const order = await Order.findOne({ where: { id: orderId, userId: id } });
+
+    if (!order) {
+      return sendErrorResponse(res, 'Order not found');
+    }
+    console.log(order);
+
+    if (order.status !== 'cancelled' && order.status !== 'pending') {
+      return sendErrorResponse(
+        res,
+        'Only orders that are only paid only or pending are the only ones that can be cancelled'
+      );
+    }
+    order.status = 'cancelled';
+    await order.save();
+
+    io.emit('orderCancelled', { order });
+
+    return res.status(200).json({
+      ok: true,
+      message: 'Order is cancelled successfully !',
+      data: order,
+    });
+  } catch (err) {
+    logger.error('Error cancelling order:', err);
+    return sendInternalErrorResponse(res, err);
+  }
+};
+
+export const sellerChangeOrderStatus = async (req: Request, res: Response) => {
+  try {
+    const { orderId } = req.params;
+    const { status, expectedDeliveryDate } = req.body;
+    const order = await Order.findOne({
+      where: {
+        id: orderId,
+      },
+    });
+
+    if (!order) {
+      return sendErrorResponse(res, 'Order not found or you do not have permission to modify this order');
+    }
+
+    order.status = status;
+    if (expectedDeliveryDate) {
+      order.expectedDeliveryDate = new Date(expectedDeliveryDate);
+    }
+    await order.save();
+
+    io.emit('orderStatusChanged', { order });
+
+    return res.status(200).json({
+      ok: true,
+      message: 'Order status updated successfully',
+    });
+  } catch (err) {
+    logger.error('Error changing order status:', err);
+    return sendInternalErrorResponse(res, err);
+  }
+};
diff --git a/src/controllers/productsController.ts b/src/controllers/productsController.ts
index 00fd53b2..f33ebc03 100644
--- a/src/controllers/productsController.ts
+++ b/src/controllers/productsController.ts
@@ -13,9 +13,7 @@ import User from '../database/models/user';
 import { sendEmail } from '../helpers/send-email';
 import { destroyImage } from '../helpers/destroyImage';
 import { extractImageId } from '../helpers/extractImageId';
-// import Review, { ReviewAttributes } from '../database/models/Review';
 import Review, { ReviewAttributes } from '../database/models/Review';
-import Cart from '../database/models/cart';
 import Order from '../database/models/order';
 import OrderItems from '../database/models/orderItems';
 
@@ -23,7 +21,7 @@ export const createProduct = async (req: Request, res: Response) => {
   try {
     const { name, description, colors } = req.body as ProductAttributes;
     const { categoryId } = req.params;
-    const seller = (await req.user) as any;
+    const seller = (await req.user) as User;
     const sellerId = seller.id;
 
     // when products exists
@@ -68,7 +66,7 @@ export const createSize = async (req: Request, res: Response) => {
     const { productId } = req.params;
     const { size, price, discount, expiryDate, quantity } = req.body as SizeAttributes;
 
-    const result = await Size.create({ size, price, discount, expiryDate, productId, quantity });
+    await Size.create({ size, price, discount, expiryDate, productId, quantity });
     res.status(201).json({
       ok: true,
       message: 'Product size added successfully',
diff --git a/src/database/index.ts b/src/database/index.ts
index 647e9f76..80551d5b 100644
--- a/src/database/index.ts
+++ b/src/database/index.ts
@@ -6,8 +6,8 @@ const databaseConnection = async () => {
   try {
     await sequelize.authenticate();
     logger.info('connected to the database');
-  } catch (error: any) {
-    logger.error(error.message);
+  } catch (error: unknown) {
+    if (error instanceof Error) logger.error(error.message);
   }
 };
 
diff --git a/src/database/migrations/20240514160800-orders.js b/src/database/migrations/20240514160800-orders.js
index e7f132ae..bf93bf22 100644
--- a/src/database/migrations/20240514160800-orders.js
+++ b/src/database/migrations/20240514160800-orders.js
@@ -10,7 +10,7 @@ module.exports = {
         primaryKey: true,
       },
       status: {
-        type: Sequelize.ENUM('pending', 'delivered', 'cancelled'),
+        type: Sequelize.ENUM('pending', 'delivered', 'cancelled', 'paid'),
         defaultValue: 'pending',
       },
       shippingAddress1: {
@@ -49,6 +49,10 @@ module.exports = {
         type: Sequelize.FLOAT,
         allowNull: false,
       },
+      expectedDeliveryDate: {
+        type: Sequelize.DATE,
+        allowNull: true,
+      },
       createdAt: {
         type: Sequelize.DATE,
         allowNull: false,
diff --git a/src/database/migrations/20240527203432-add-sizeId-to-orderItems.js b/src/database/migrations/20240527203432-add-sizeId-to-orderItems.js
new file mode 100644
index 00000000..6265586f
--- /dev/null
+++ b/src/database/migrations/20240527203432-add-sizeId-to-orderItems.js
@@ -0,0 +1,20 @@
+'use strict';
+
+module.exports = {
+  up: async (queryInterface, Sequelize) => {
+    await queryInterface.addColumn('orderItems', 'sizeId', {
+      type: Sequelize.UUID,
+      allowNull: false,
+      references: {
+        model: 'sizes',
+        key: 'id',
+      },
+      onUpdate: 'CASCADE',
+      onDelete: 'CASCADE',
+    });
+  },
+
+  down: async (queryInterface, Sequelize) => {
+    await queryInterface.removeColumn('orderItems', 'sizeId');
+  },
+};
diff --git a/src/database/models/Product.ts b/src/database/models/Product.ts
index 49155d3f..9391df66 100644
--- a/src/database/models/Product.ts
+++ b/src/database/models/Product.ts
@@ -2,7 +2,7 @@ import { Model, DataTypes } from 'sequelize';
 import sequelize from './index';
 import { UUIDV4 } from 'sequelize';
 import { Category } from './Category';
-import { Size } from './Size';
+import { Size, SizeAttributes } from './Size';
 import User from './user';
 
 export interface ProductAttributes {
@@ -13,6 +13,7 @@ export interface ProductAttributes {
   images: string[];
   colors?: string[];
   categoryId: string;
+  sizes?: any;
   createdAt?: Date;
   updatedAt?: Date;
 }
@@ -25,9 +26,9 @@ export class Product extends Model<ProductAttributes> implements ProductAttribut
   public categoryId!: string;
   public images!: string[];
   public colors!: string[];
+  public sizes!: any;
   public readonly createdAt!: Date | undefined;
   public readonly updatedAt!: Date | undefined;
-  sizes?: any;
 }
 
 Product.init(
diff --git a/src/database/models/Size.ts b/src/database/models/Size.ts
index ef0652e3..c9850534 100644
--- a/src/database/models/Size.ts
+++ b/src/database/models/Size.ts
@@ -1,7 +1,7 @@
 import { Model, Optional, DataTypes, UUIDV4 } from 'sequelize';
 import sequelize from './index';
 export interface SizeAttributes {
-  id: number;
+  id?: number;
   size?: string;
   price: number;
   quantity?: number;
@@ -9,11 +9,11 @@ export interface SizeAttributes {
   expiryDate?: Date;
   productId: string;
   available?: boolean;
+  createdAt?: Date;
+  updatedAt?: Date;
 }
 
-export interface SizeCreationAttributes extends Optional<SizeAttributes, 'id'> {}
-
-export class Size extends Model<SizeAttributes, SizeCreationAttributes> implements SizeAttributes {
+export class Size extends Model<SizeAttributes> implements SizeAttributes {
   public id!: number;
   public size!: string;
   public price!: number;
diff --git a/src/database/models/order.ts b/src/database/models/order.ts
index 2bf01245..4f0d45b3 100644
--- a/src/database/models/order.ts
+++ b/src/database/models/order.ts
@@ -16,6 +16,7 @@ interface OrderAttributes {
   userId: string;
   zipCode?: string;
   totalPrice: number;
+  expectedDeliveryDate?: Date;
 }
 
 interface OrderCreationAttributes extends Optional<OrderAttributes, 'id'> {}
@@ -33,6 +34,7 @@ class Order extends Model<OrderAttributes, OrderCreationAttributes> implements O
   public userId!: string;
   public totalPrice!: number;
   public zipCode?: string;
+  public expectedDeliveryDate?: Date;
 }
 
 Order.init(
@@ -43,7 +45,7 @@ Order.init(
       primaryKey: true,
     },
     status: {
-      type: DataTypes.ENUM('pending', 'delivered', 'cancelled'),
+      type: DataTypes.ENUM('pending', 'delivered', 'cancelled', 'paid'),
       defaultValue: 'pending',
     },
     shippingAddress1: {
@@ -82,6 +84,10 @@ Order.init(
       type: DataTypes.FLOAT,
       allowNull: false,
     },
+    expectedDeliveryDate: {
+      type: DataTypes.DATE,
+      allowNull: true,
+    },
     createdAt: {
       type: DataTypes.DATE,
       allowNull: false,
diff --git a/src/database/models/orderItems.ts b/src/database/models/orderItems.ts
index 2cafc934..3b3cd22e 100644
--- a/src/database/models/orderItems.ts
+++ b/src/database/models/orderItems.ts
@@ -2,11 +2,13 @@ import { DataTypes, Model, Optional, UUIDV4 } from 'sequelize';
 import sequelize from './index';
 import Order from './order';
 import { Product } from './Product';
+import { Size } from './Size';
 
 interface OrderItemsAttributes {
   id: string;
   orderId: string;
   productId: string;
+  sizeId: string;
   quantity: number;
   price: number;
   createdAt?: Date;
@@ -19,6 +21,7 @@ class OrderItems extends Model<OrderItemsAttributes, OrderItemCreationAttributes
   public id!: string;
   public orderId!: string;
   public productId!: string;
+  public sizeId!: string;
   public quantity!: number;
   public price!: number;
   public readonly createdAt!: Date;
@@ -52,6 +55,16 @@ OrderItems.init(
       onUpdate: 'CASCADE',
       onDelete: 'CASCADE',
     },
+    sizeId: {
+      type: DataTypes.UUID,
+      allowNull: false,
+      references: {
+        model: 'sizes',
+        key: 'id',
+      },
+      onUpdate: 'CASCADE',
+      onDelete: 'CASCADE',
+    },
     quantity: {
       type: DataTypes.INTEGER,
       allowNull: false,
@@ -80,6 +93,7 @@ OrderItems.init(
 
 OrderItems.belongsTo(Order, { foreignKey: 'orderId', as: 'orders' });
 OrderItems.belongsTo(Product, { foreignKey: 'productId', as: 'products' });
+OrderItems.belongsTo(Size, { foreignKey: 'sizeId', as: 'sizes' });
 
 Order.hasMany(OrderItems, { foreignKey: 'orderId', as: 'orderItems' });
 Product.hasMany(OrderItems, { foreignKey: 'productId', as: 'orderItems' });
diff --git a/src/docs/auth.yaml b/src/docs/auth.yaml
index c8085e40..b900807a 100644
--- a/src/docs/auth.yaml
+++ b/src/docs/auth.yaml
@@ -4,9 +4,9 @@ paths:
       summary: Authenticate with Google
       tags:
         - Login
-      description: |
-        Initiates the authentication process with Google OAuth 2.0.
-        Users will be redirected to Google's authentication page to log in.
+      description:
+        Initiates the authentication process with Google OAuth 2.0. Users will be redirected to Google's authentication
+        page to log in.
       responses:
         '302':
           description: Redirects the user to Google's authentication page
@@ -85,7 +85,7 @@ paths:
     post:
       summary: Request Password Reset
       tags:
-        - Password Reset
+        - Login
       description: |
         Allows users to request a password reset link. The user must provide their email address. If the user exists, a password reset link will be sent to the provided email.
       requestBody:
@@ -122,7 +122,7 @@ paths:
     post:
       summary: Reset Password
       tags:
-        - Password Reset
+        - Login
       description: |
         Allows users to reset their password using a valid token received in the password reset link. The token is passed as a URL parameter, and the new password is provided by the user in the request body.
       parameters:
@@ -161,16 +161,12 @@ paths:
         500:
           description: Internal server error
 
-tags:
-  - name: Login
-    description: Login a user
-  - name: Password Reset
-    description: Endpoints for password recovery and reset functionality
-
   /api/auth/update-password:
     put:
       summary: Update user password
       description: Updates the password of the authenticated user.
+      security:
+        - bearerAuth: []
       tags:
         - Login
       requestBody:
@@ -189,7 +185,7 @@ tags:
                   example: NewPassw0rd!
       responses:
         '200':
-          description: Successfully updated user password
+          description: Successfully upated user password
           content:
             application/json:
               schema:
@@ -216,7 +212,8 @@ tags:
                     example: The old password is incorrect!
                   error:
                     type: string
-                    example: Ensuring it contains at least 1 letter, 1 number, and 1 special character, minimum 8 characters
+                    example:
+                      Ensuring it contains at least 1 letter, 1 number, and 1 special character, minimum 8 characters
         '500':
           description: Internal server error
           content:
@@ -229,32 +226,4 @@ tags:
                     example: false
                   message:
                     type: string
-                    example: Internal server error occurred
-      security:
-        - bearerAuth: []
-components:
-  securitySchemes:
-    bearerAuth:
-      type: http
-      scheme: bearer
-      bearerFormat: JWT
-  schemas:
-    UpdatePasswordRequest:
-      type: object
-      properties:
-        oldPassword:
-          type: string
-          description: The current password of the user.
-        newPassword:
-          type: string
-          description: The new password that the user wants to set.
-          example: Password@123
-    ErrorResponse:
-      type: object
-      properties:
-        ok:
-          type: boolean
-          example: false
-        message:
-          type: string
-          example: Error message describing what went wrong
+                    example: Internal server error occurred
\ No newline at end of file
diff --git a/src/docs/orders.yaml b/src/docs/orders.yaml
index 6977821b..77a33033 100644
--- a/src/docs/orders.yaml
+++ b/src/docs/orders.yaml
@@ -43,6 +43,7 @@ paths:
                 - city
                 - country
                 - phone
+                - zipCode
       responses:
         '201':
           description: Order created successfully
@@ -71,7 +72,7 @@ paths:
                     example: false
                   message:
                     type: string
-                    example: 'the following fields are required: ...'
+                    example: 'The following fields are required: ...'
         '404':
           description: No cart found for the user
           content:
@@ -97,7 +98,7 @@ paths:
                     example: false
                   message:
                     type: string
-                    example: 'error'
+                    example: 'Error creating order'
 
     get:
       summary: Get all orders
@@ -134,8 +135,10 @@ paths:
                             quantity:
                               type: integer
                               example: 2
-        '404':
+        '204':
           description: No orders found
+        '500':
+          description: Internal server error
           content:
             application/json:
               schema:
@@ -146,7 +149,39 @@ paths:
                     example: false
                   message:
                     type: string
-                    example: 'No orders found'
+                    example: 'Error retrieving orders'
+
+  /api/orders/get-orders:
+    get:
+      summary: Get all orders for the seller products
+      description: Retrieves all orders where the seller is the authenticated user
+      tags:
+        - Orders
+      security:
+        - bearerAuth: []
+      responses:
+        '200':
+          description: List of orders
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: true
+                  message:
+                    type: string
+                    example: 'Orders retrieved successfully'
+                  data:
+                    type: array
+                    items:
+                      $ref: '#/components/schemas/Order'
+                  total:
+                    type: integer
+                    example: 100
+        '204':
+          description: No orders found
         '500':
           description: Internal server error
           content:
@@ -159,7 +194,7 @@ paths:
                     example: false
                   message:
                     type: string
-                    example: 'No orders found'
+                    example: 'Error retrieving orders'
 
   /api/orders/{id}:
     delete:
@@ -177,8 +212,110 @@ paths:
             type: string
           description: The order ID
       responses:
-        '200':
+        '204':
           description: Order deleted successfully
+        '404':
+          description: No order found with the given ID
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'No order found with id: ...'
+        '500':
+          description: Internal server error
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Error deleting order'
+
+components:
+  securitySchemes:
+    bearerAuth:
+      type: http
+      scheme: bearer
+      bearerFormat: JWT
+
+  schemas:
+    Order:
+      type: object
+      properties:
+        id:
+          type: string
+          example: 'order1'
+        totalPrice:
+          type: number
+          example: 100.50
+        country:
+          type: string
+          example: 'USA'
+        city:
+          type: string
+          example: 'New York'
+        phone:
+          type: string
+          example: '123-456-7890'
+        userId:
+          type: string
+          example: 'user1'
+        shippingAddress1:
+          type: string
+          example: '123 Main St'
+        shippingAddress2:
+          type: string
+          example: 'Apt 4B'
+        zipCode:
+          type: string
+          example: '10001'
+        orderItemIds:
+          type: array
+          items:
+            type: string
+          example: ['item1', 'item2']
+        createdAt:
+          type: string
+          format: date-time
+        updatedAt:
+          type: string
+          format: date-time
+        status:
+          type: string
+          enum:
+            - pending
+            - processing
+            - shipped
+            - delivered
+            - cancelled
+  /api/orders/{orderId}/process:
+    put:
+      summary: Process an order
+      description: Updates the status of an order for the authenticated buyer
+      tags:
+        - Orders
+      security:
+        - bearerAuth: []
+      parameters:
+        - in: path
+          name: orderId
+          required: true
+          schema:
+            type: string
+          description: The order ID
+      responses:
+        '200':
+          description: Order processed successfully
           content:
             application/json:
               schema:
@@ -189,9 +326,11 @@ paths:
                     example: true
                   message:
                     type: string
-                    example: 'Order deleted successfully!'
+                    example: 'Order processed successfully'
+                  data:
+                    $ref: '#/components/schemas/Order'
         '404':
-          description: No order found with the given ID
+          description: Order not found
           content:
             application/json:
               schema:
@@ -202,7 +341,7 @@ paths:
                     example: false
                   message:
                     type: string
-                    example: 'No order found with id: ...'
+                    example: 'Order not found'
         '500':
           description: Internal server error
           content:
@@ -215,7 +354,213 @@ paths:
                     example: false
                   message:
                     type: string
-                    example: 'Error deleting Order'
+                    example: 'Internal server error'
+
+  /api/orders/{orderId}/change-status:
+    put:
+      summary: Change order status
+      description: Updates the status of an order for the authenticated admin
+      tags:
+        - Orders
+      security:
+        - bearerAuth: []
+      parameters:
+        - in: path
+          name: orderId
+          required: true
+          schema:
+            type: string
+          description: The order ID
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema:
+              type: object
+              properties:
+                status:
+                  type: string
+                  example: 'delivered'
+                expectedDeliveryDate:
+                  type: string
+                  format: date
+                  example: '2024-12-31'
+      responses:
+        '200':
+          description: Order status updated successfully
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: true
+                  message:
+                    type: string
+                    example: 'Order status updated successfully'
+                  data:
+                    $ref: '#/components/schemas/Order'
+        '404':
+          description: Order not found
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Order not found'
+        '500':
+          description: Internal server error
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Internal server error'
+
+  /api/orders/{orderId}/cancel:
+    put:
+      summary: Cancel an order
+      description: Allows a buyer to cancel an order if it is in the "Paid" status
+      tags:
+        - Orders
+      security:
+        - bearerAuth: []
+      parameters:
+        - in: path
+          name: orderId
+          required: true
+          schema:
+            type: string
+          description: The order ID
+      responses:
+        '200':
+          description: Order cancelled successfully
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: true
+                  message:
+                    type: string
+                    example: 'Order cancelled successfully'
+                  data:
+                    $ref: '#/components/schemas/Order'
+        '404':
+          description: Order not found
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Order not found'
+        '400':
+          description: Only orders in "Paid" status can be cancelled
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Only orders in "Paid" status can be cancelled'
+        '500':
+          description: Internal server error
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Internal server error'
+
+  /api/orders/get-orders:
+    get:
+      summary: Get user orders
+      description: Retrieves all orders for the authenticated user
+      tags:
+        - Orders
+      security:
+        - bearerAuth: []
+      responses:
+        '200':
+          description: List of orders
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: true
+                  data:
+                    type: object
+                    properties:
+                      orders:
+                        type: array
+                        items:
+                          $ref: '#/components/schemas/Order'
+                      orderItems:
+                        type: array
+                        items:
+                          type: object
+                          properties:
+                            product:
+                              $ref: '#/components/schemas/Product'
+                            quantity:
+                              type: integer
+                              example: 2
+        '404':
+          description: No orders found
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'No orders found'
+        '500':
+          description: Internal server error
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Internal server error'
 
 components:
   securitySchemes:
@@ -246,6 +591,9 @@ components:
         userId:
           type: string
           example: 'user1'
+        sellerId:
+          type: string
+          example: 'seller1'
         shippingAddress1:
           type: string
           example: '123 Main St'
@@ -260,3 +608,223 @@ components:
           items:
             type: string
           example: ['item1', 'item2']
+
+    Product:
+      type: object
+      properties:
+        id:
+          type: string
+          example: 'Electronics'
+        name:
+          type: string
+          example: 'Laptop'
+        price:
+          type: number
+          example: 1000.00
+        description:
+          type: string
+          example: 'A high-end laptop'
+        category:
+          type: string
+          example: 'Electronics'
+
+  /api/orders/{orderId}/process:
+    put:
+      summary: Process an order
+      description: Updates the status of an order for the authenticated buyer
+      tags:
+        - Orders
+      security:
+        - bearerAuth: []
+      parameters:
+        - in: path
+          name: orderId
+          required: true
+          schema:
+            type: string
+          description: The order ID
+      responses:
+        '200':
+          description: Order processed successfully
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: true
+                  message:
+                    type: string
+                    example: 'Order processed successfully'
+                  data:
+                    $ref: '#/components/schemas/Order'
+        '404':
+          description: Order not found
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Order not found'
+        '500':
+          description: Internal server error
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Internal server error'
+
+  /api/orders/{orderId}/cancel:
+    put:
+      summary: Cancel an order
+      description: Allows a buyer to cancel an order if it is in the "Paid" status
+      tags:
+        - Orders
+      security:
+        - bearerAuth: []
+      parameters:
+        - in: path
+          name: orderId
+          required: true
+          schema:
+            type: string
+          description: The order ID
+      responses:
+        '200':
+          description: Order cancelled successfully
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: true
+                  message:
+                    type: string
+                    example: 'Order cancelled successfully'
+                  data:
+                    $ref: '#/components/schemas/Order'
+        '404':
+          description: Order not found
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Order not found'
+        '400':
+          description: Only orders in "Paid" status can be cancelled
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Only orders in "Paid" status can be cancelled'
+        '500':
+          description: Internal server error
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Internal server error'
+
+  /api/orders/{orderId}/seller-change-status:
+    put:
+      summary: Change order status
+      description: Updates the status of an order for the authenticated seller
+      tags:
+        - Orders
+      security:
+        - bearerAuth: []
+      parameters:
+        - in: path
+          name: orderId
+          required: true
+          schema:
+            type: string
+          description: The order ID
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema:
+              type: object
+              properties:
+                status:
+                  type: string
+                  example: 'delivered'
+                expectedDeliveryDate:
+                  type: string
+                  format: date
+                  example: '2024-12-31'
+      responses:
+        '200':
+          description: Order status updated successfully
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: true
+                  message:
+                    type: string
+                    example: 'Order status updated successfully'
+                  data:
+                    $ref: '#/components/schemas/Order'
+        '404':
+          description: Order not found
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Order not found'
+        '500':
+          description: Internal server error
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: false
+                  message:
+                    type: string
+                    example: 'Internal server error'
diff --git a/src/docs/payment.yaml b/src/docs/payment.yaml
new file mode 100644
index 00000000..12fba4bf
--- /dev/null
+++ b/src/docs/payment.yaml
@@ -0,0 +1,81 @@
+openapi: 3.0.0
+info:
+  title: Payment API
+  version: 1.0.0
+  description: API for handling payments
+tags:
+  - name: Payment
+    description: API for handling payments
+
+paths:
+  /api/payments/{orderId}/charge:
+    post:
+      summary: Handle payments
+      security:
+        - bearerAuth: []
+      tags:
+        - Payment
+      description: Create a payment session and update order status and stock levels
+      parameters:
+        - in: path
+          name: orderId
+          required: true
+          schema:
+            type: string
+          description: ID of the order where the payment is going to be made
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema:
+              type: object
+              properties:
+                items:
+                  type: array
+                  items:
+                    type: object
+                    properties:
+                      id:
+                        type: string
+                        example: '12345'
+                        description: Product ID
+                      quantity:
+                        type: integer
+                        example: 2
+                        description: Quantity of the product
+              required:
+                - items
+      responses:
+        '200':
+          description: Payment made successfully
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  ok:
+                    type: boolean
+                    example: true
+                  url:
+                    type: string
+                    example: 'https://checkout.stripe.com/pay/cs_test_a1b2c3d4'
+                  message:
+                    type: string
+                    example: 'Payment made successfully'
+        '500':
+          description: Internal server error
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  error:
+                    type: string
+                    example: 'Internal Server Error'
+
+components:
+  securitySchemes:
+    bearerAuth:
+      type: http
+      scheme: bearer
+      bearerFormat: JWT
diff --git a/src/middlewares/handleFileUploads.ts b/src/middlewares/handleFileUploads.ts
deleted file mode 100644
index e97ccc4b..00000000
--- a/src/middlewares/handleFileUploads.ts
+++ /dev/null
@@ -1,10 +0,0 @@
-import { NextFunction, Request, Response } from 'express';
-import multerUpload from '../helpers/multer';
-
-export const handleFileUploads = (req: Request, res: Response, next: NextFunction) => {
-  if (req.files) {
-    multerUpload.array('images', 8)(req, res, next);
-  } else {
-    multerUpload.single('image')(req, res, next);
-  }
-};
diff --git a/src/routes/index.ts b/src/routes/index.ts
index 64d4aa2a..d49ad096 100644
--- a/src/routes/index.ts
+++ b/src/routes/index.ts
@@ -13,8 +13,8 @@ import notificationRoutes from './notificationRoutes';
 import { permissionRoute } from './permissionRoute';
 import { sellerRequestRouter } from './sellerRequestRoute';
 import chatRoute from './chatRoute';
-
 import orderRouter from './orderRoute';
+import { paymentRouter } from './paymentRoutes';
 const router = Router();
 
 router.use('/chats', chatRoute);
@@ -29,6 +29,7 @@ router.use('/wishlist', wishlistRoute);
 router.use('/notifications', notificationRoutes);
 router.use('/permissions', permissionRoute);
 router.use('/vendor-requests', sellerRequestRouter);
+router.use('/payments', paymentRouter);
 
 router.use('/orders', orderRouter);
 export default router;
diff --git a/src/routes/orderRoute.ts b/src/routes/orderRoute.ts
index fbe91a72..7e2fe31e 100644
--- a/src/routes/orderRoute.ts
+++ b/src/routes/orderRoute.ts
@@ -1,14 +1,20 @@
 import { Router } from 'express';
 import { checkUserRoles, isAuthenticated } from '../middlewares/authMiddlewares';
-import { getAllOrders, createOrder, deleteOrder, updateOrder } from '../controllers/orderController';
+import { getUserOrders, createOrder, deleteOrder, sellerProductOrders } from '../controllers/orderController';
+import { processOrder, cancelOrder, sellerChangeOrderStatus } from '../controllers/orderStatusController';
 const orderRouter = Router();
 
 orderRouter
   .route('/')
-  .get(isAuthenticated, checkUserRoles('buyer'), getAllOrders)
+  .get(isAuthenticated, checkUserRoles('buyer'), getUserOrders)
   .post(isAuthenticated, checkUserRoles('buyer'), createOrder);
-orderRouter
-  .route('/:id')
-  .delete(isAuthenticated, checkUserRoles('admin'), deleteOrder)
-  .patch(isAuthenticated, checkUserRoles('buyer'), updateOrder);
+
+orderRouter.route('/get-orders').get(isAuthenticated, checkUserRoles('seller'), sellerProductOrders);
+orderRouter.route('/:id').delete(isAuthenticated, checkUserRoles('admin'), deleteOrder);
+
+orderRouter.get('/:orderId/check-status', isAuthenticated, checkUserRoles('buyer'), processOrder);
+orderRouter.put('/:orderId/cancel', isAuthenticated, checkUserRoles('buyer'), cancelOrder);
+orderRouter.put('/:orderId/seller-change-status', isAuthenticated, checkUserRoles('seller'), sellerChangeOrderStatus);
+orderRouter.get('/seller-products-status', isAuthenticated, checkUserRoles('seller'), sellerProductOrders);
+
 export default orderRouter;
diff --git a/src/routes/paymentRoutes.ts b/src/routes/paymentRoutes.ts
new file mode 100644
index 00000000..714c8028
--- /dev/null
+++ b/src/routes/paymentRoutes.ts
@@ -0,0 +1,9 @@
+/* eslint-disable @typescript-eslint/no-misused-promises */
+import { Router } from 'express';
+import { isAuthenticated } from '../middlewares/authMiddlewares';
+import { handlePayments, handleWebHooks } from '../controllers/handlePaymentsController';
+
+export const paymentRouter = Router();
+
+paymentRouter.post('/:orderId/charge', isAuthenticated, handlePayments);
+paymentRouter.post('/webhook', handleWebHooks);
diff --git a/src/server.ts b/src/server.ts
index 2d828cae..a239ead3 100644
--- a/src/server.ts
+++ b/src/server.ts
@@ -13,6 +13,7 @@ import databaseConnection from './database';
 import { schedulePasswordUpdatePrompts } from './scheduler';
 import scheduledTasks from './config/cornJobs';
 import { socketSetUp } from './chatSetup';
+import { IncomingMessage } from 'http';
 
 dotenv.config();
 
@@ -20,7 +21,13 @@ export const app: Application = express();
 
 app.use(cors());
 app.use(passport.initialize());
-app.use(express.json());
+app.use(
+  express.json({
+    verify: (req, res, buf) => {
+      (req as IncomingMessage & { rawBody: Buffer | string }).rawBody = buf;
+    },
+  })
+);
 app.use(express.urlencoded({ extended: true }));
 app.use(express.static('public'));
 const swaggerSpec = swaggerJsDoc(options);
@@ -59,5 +66,5 @@ const PORT = process.env.PORT ?? 3000;
 const server = app.listen(PORT, () => {
   logger.info(`Server is running on port ${PORT}`);
 });
-
 socketSetUp(server);
+export const io = socketSetUp(server);