An Instagram Reels-like platform where people in need can post video requests for help and receive direct donations from donors worldwide.

• Vertical Video Feed: Instagram Reels-style scrolling experience
• Video-Only Posts: Every post requires an MP4 video (no exceptions)
• Direct Donations: Stripe-powered secure payments
• Trust System: Verification, risk scoring, and reporting
• Following Feed: Stay updated on posts you care about
• Real-time Updates: Posters can add video updates to their campaigns
• Admin Dashboard: Review reports and manage trust status

• Node.js 18+
• MongoDB 6+
• Stripe account (for payments)

1. Clone and install dependencies:

npm install

2. Set up environment variables:

cp .env.example .env

Edit .env with your actual values:

• MongoDB connection string
• JWT secret (generate a strong random string)
• Stripe API keys (from Stripe Dashboard)

3. Start MongoDB:

# If using local MongoDB
mongod

4. Seed the database:

npm run seed

This creates:

• 1 admin user (admin@scroll4good.com / admin123)
• 2 needy users
• 1 donor user (donor@example.com / donor123)
• 12 demo posts with real video URLs

5. Start the server:

npm run dev

6. Open your browser:

http://localhost:3000

1. Install Stripe CLI: https://stripe.com/docs/stripe-cli

2. Login to Stripe:

stripe login

3. Forward webhooks to local server:

stripe listen --forward-to localhost:3000/api/stripe/webhook

4. Copy the webhook signing secret to .env:

STRIPE_WEBHOOK_SECRET=whsec_xxxxx

Use Stripe test cards:

• Success: 4242 4242 4242 4242
• Decline: 4000 0000 0000 0002
• Any future expiry date and any 3-digit CVC

• Browse feed and discover posts
• Donate to campaigns
• Follow posts for updates
• Report suspicious content

• Create video posts requesting help
• Add video updates to campaigns
• Track donations received

• Review reported posts
• Verify or flag content
• Manage trust status
• Remove inappropriate posts

scroll4good/
├── client/                 # Frontend (Vanilla JS + Tailwind)
│   ├── index.html         # Feed (Reels UI)
│   ├── login.html
│   ├── register.html
│   ├── post.html          # Post details
│   ├── create.html        # Create post (needy)
│   ├── following.html     # Following feed
│   ├── profile.html
│   ├── admin.html         # Admin panel
│   ├── success.html       # Payment success
│   └── src/
│       ├── api.js         # API client
│       ├── auth.js        # Auth utilities
│       ├── feed.js        # Feed logic
│       ├── post.js        # Post details
│       ├── create.js      # Create post
│       ├── following.js   # Following feed
│       ├── admin.js       # Admin panel
│       └── ui/
│           ├── reelCard.js
│           ├── modal.js
│           ├── toast.js
│           └── utils.js
├── server/
│   ├── index.js           # Express app entry
│   ├── models/            # Mongoose models
│   ├── routes/            # API routes
│   ├── middleware/        # Auth, validation, etc.
│   ├── utils/             # Helpers
│   ├── uploads/           # Video storage
│   └── scripts/
│       └── seed.js        # Database seeding
└── package.json

• POST /api/auth/register - Register new user
• POST /api/auth/login - Login
• POST /api/auth/logout - Logout
• GET /api/auth/me - Get current user

• GET /api/posts - Get posts feed (cursor pagination)
• POST /api/posts - Create post (needy only, video required)
• GET /api/posts/:id - Get post details
• PATCH /api/posts/:id - Update post (limited)

• POST /api/posts/:id/follow - Follow a post
• DELETE /api/posts/:id/follow - Unfollow
• GET /api/posts/following - Get following feed

• GET /api/posts/:id/updates - Get post updates
• POST /api/posts/:id/updates - Add update (video required)

• POST /api/donations/checkout - Create Stripe checkout
• GET /api/donations/session/:id - Check session status
• POST /api/stripe/webhook - Stripe webhook handler

• POST /api/reports - Report a post

• POST /api/ai/risk-score - Calculate risk score

• GET /api/admin/reports - Get all reports
• PATCH /api/admin/posts/:id/trust-status - Update trust
• PATCH /api/admin/posts/:id/status - Update status
• PATCH /api/admin/posts/:id/verify - Verify post

• POST /api/uploads/video - Upload video (returns URL)

Frontend:

• HTML5
• Vanilla JavaScript (ES Modules)
• Tailwind CSS (CDN)
• Fetch API

Backend:

• Node.js + Express
• MongoDB + Mongoose
• JWT (httpOnly cookies)
• Stripe Checkout + Webhooks
• Multer (file uploads)

• JWT authentication with httpOnly cookies
• Password hashing with bcryptjs
• Request validation with Zod
• Rate limiting on sensitive endpoints
• CORS with credentials
• File type and size validation
• Role-based access control

1. ✅ Only people in need can post (role must be "needy")
2. ✅ Every post MUST include a video (mp4 required)
3. ✅ Feed UI mimics Instagram Reels (vertical snap scrolling)
4. ✅ No NGO accounts, no organization accounts
5. ✅ No other content types (only help request videos)

MongoDB connection issues:

• Ensure MongoDB is running: mongod
• Check connection string in .env

Video upload fails:

• Check MAX_VIDEO_SIZE_MB in .env
• Ensure server/uploads directory exists
• Verify video is mp4 format

Stripe webhook not working:

• Run stripe listen --forward-to localhost:3000/api/stripe/webhook
• Copy webhook secret to .env
• Restart server after updating .env

CORS errors:

• Ensure FRONTEND_URL matches your client URL
• Check that credentials are included in fetch requests

Import postman_collection.json to test all API endpoints.

MIT

Built with ❤️ for a better world