Travel Checkout App Refactoring Plan

Transform the current checkout app into a modern, realistic demo with proper data management, improved UX, and better code organization.

• ✅ Application Restored: Working React-based travel checkout app with demo modal and 3-tour landing page
• ✅ Task 1.1 Completed: Configuration file created and implemented
• ✅ Task 1.2 Completed: Utility functions implemented with Base64 encoding, localStorage helpers, image caching, and comprehensive error handling
• ✅ Task 1.3 Completed: Full demo modal implementation with first-time visitor detection, encoded localStorage, fade animations, accessibility features, and comprehensive event handling
• 🧪 Test Mode Added: Click "🧪 Test Utility Functions" on landing page to verify utility functions work correctly
• 📱 Current Features: Demo modal (first-time only) → Landing page with 3 tours → Tour selection → Basic navigation
• 🎯 Phase 1 Complete: Infrastructure & Configuration phase fully implemented

Server Base URL: https://server.zenithpayments.support User Journey: Landing Page → Tour Selection → Form Page → Payment Flow API Calls:

1. GET https://server.zenithpayments.support/api/v1/tour/{id} - Load tour + set security cookies
2. POST https://server.zenithpayments.support/api/v1/create-nonce - Get single-use nonce (CSRF + bot check)
3. POST https://server.zenithpayments.support/api/v1/payment/exchange-nonce - Get payment fingerprint
4. Client-side ZenPay initialization
5. Server callback (no frontend involvement)

File: /js/config.js

Subtasks:

• Create config.js file with export structure
• Add server configuration:
  • SERVER_BASE_URL: 'https://server.zenithpayments.support'
  • API_BASE_PATH: '/api/v1'
• Update API endpoints:
  • TOUR_ENDPOINT: '/tour/' (will be: /api/v1/tour/{id})
  • NONCE_ENDPOINT: '/create-nonce' (will be: /api/v1/create-nonce)
  • EXCHANGE_ENDPOINT: '/payment/exchange-nonce' (will be: /api/v1/payment/exchange-nonce)
• Move external library URLs:
  • jQuery URL: 'https://code.jquery.com/jquery-3.6.0.min.js'
  • Bootstrap CSS: 'https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css'
  • Bootstrap JS: 'https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js'
  • ZenPay plugin URL: 'https://payuat.travelpay.com.au/online/v5/js/zp-payment-bs5.js'
  • ZenPay CSS: 'https://payuat.travelpay.com.au/online/v5/css/zp-payment-bs5.css'
• Add default form values:
  • Default payment mode, display mode
  • Default customer data structure
  • Merchant configuration
• Add demo modal configuration:
  • Modal title, message text
  • Storage keys for demo acknowledgment
  • Modal styling configuration
• Add tour configuration:
  • Default tour IDs for landing page
  • Image cache settings (expiration time, max size)
  • Loading states configuration
• Export configuration object as default export

File: /js/utils.js

Subtasks:

• Create utils.js file with proper exports
• Implement encoding/decoding functions:
  • encodeForStorage(data) - Base64 encoding only (no obfuscation as requested)
  • decodeFromStorage(encodedData) - Reverse decoding with error handling
  • Add validation for corrupted data (Base64 format validation)
• Implement localStorage helpers:
  • setStorageItem(key, value, encode=true) - Store with optional encoding
  • getStorageItem(key, decode=true) - Retrieve with optional decoding
  • removeStorageItem(key) - Safe removal with error handling
  • clearAllStorageItems(prefix) - Clear items by prefix (returns count)
• Implement image caching utilities:
  • cacheImage(url, key) - Fetch image, convert to base64, store (500KB limit)
  • getCachedImage(key) - Retrieve base64 image from storage
  • isCacheExpired(key, maxAge) - Check if cached item is expired (default 7 days)
  • clearImageCache() - Remove all cached images
  • getCacheSize() - Calculate total cache size in bytes
• Implement cookie utilities:
  • getCookie(name) - Extract cookie value by name
  • getXSRFToken() - Specifically get XSRF-TOKEN cookie
  • parseCookies() - Parse all cookies into object
• Implement API helpers:
  • buildApiUrl(endpoint) - Construct full API URL
  • getDefaultHeaders() - Get common request headers
  • handleApiError(response) - Standardized error handling
• Implement validation utilities:
  • validateEmail(email) - Email format validation
  • validatePhone(phone) - Phone number validation
  • validateRequired(value) - Required field validation
• Export all utility functions

✅ COMPLETED - All utility functions implemented with Base64-only encoding, comprehensive error handling, and test functionality added to main app.

Location: Main app initialization

Subtasks:

• Create demo modal component in main app:
  • Add modal HTML structure using React.createElement
  • Create dark overlay (position: fixed, z-index: 9999)
  • Center modal container with responsive sizing
• Implement first-time visitor detection:
  • Check encoded localStorage for demo acknowledgment
  • Use storage key: btoa('zenith_demo_ack_v1')
  • Handle corrupted/invalid storage data gracefully
• Create modal UI elements:
  • Modal header with title: "ZenPay Security Demo"
  • Modal body with explanation text (see content below)
  • Modal footer with "Got it!" button
  • Close button (X) in top-right corner
  • Professional styling matching app theme
• Implement modal logic:
  • Show modal before any other UI renders
  • Prevent background interaction (pointer-events: none)
  • Store acknowledgment when dismissed
  • Fade-in/fade-out animations (CSS transitions)
• Add demo explanation content:
  • "This is a demonstration of ZenPay's secure payment flow"
  • "You'll see how single-use nonces and CSRF tokens protect transactions"
  • "This is a safe testing environment - no real payments will be processed"
  • "Click 'Got it!' to continue to the tour selection"
• Add modal event handlers:
  • Button click handler to dismiss modal
  • Escape key handler to close modal
  • Click outside modal to close (optional)
• Add accessibility features:
  • Focus trap within modal (body overflow hidden)
  • ARIA labels and roles (dialog, modal, labelledby, describedby)
  • Keyboard navigation support (Escape key)

✅ COMPLETED - Full demo modal implementation with first-time visitor detection, encoded localStorage, fade animations, accessibility features, and comprehensive event handling.

File: /js/landing-page.js

Subtasks:

• Create landing-page.js file with proper imports
• Import required dependencies:
  • Import config from './config.js'
  • Import utils from './utils.js'
  • Import React components from window.TravelCheckout
• Define tour data structure:
  • Create array of 3 tour objects with IDs
  • Tour IDs: 'tour_paris_explorer', 'tour_tokyo_adventure', 'tour_sydney_harbor'
  • Include fallback data for offline mode
• Implement tour data loading:
  • loadTourData(tourId) function
  • Call GET https://server.zenithpayments.support/api/v1/tour/{id}
  • Handle CORS and credentials properly
  • Store response data in component state
  • Cache successful responses
• Create 3-card layout structure:
  • Container div with 100% width
  • CSS Grid: grid-template-columns: 1fr 1fr 1fr
  • Equal height cards with align-items: stretch
  • Responsive breakpoints for mobile/tablet
• Implement individual card component:
  • Card container with hover detection
  • Hero image with lazy loading
  • Title, description, price display
  • "Select Tour" call-to-action button
  • Loading state placeholder
• Add hover effects:
  • CSS transitions: transition: all 0.3s ease
  • Hovered card: transform: scale(1.02), enhanced shadow
  • Non-hovered cards: opacity: 0.6, reduced scale
  • Smooth state transitions
• Implement image caching:
  • Check localStorage before fetching images
  • Convert images to base64 and cache
  • Handle cache expiration (7 days)
  • Fallback to direct URL if caching fails
• Add loading states:
  • Skeleton cards while loading tour data
  • Progressive image loading
  • Error states for failed API calls
• Implement click handlers:
  • Card click handler to select tour
  • Pass selected tour data to parent component
  • Trigger navigation to form page
• Add responsive design:
  • Mobile: Single column layout
  • Tablet: Two column layout
  • Desktop: Three column layout
  • Touch-friendly sizing for mobile
• Export renderLandingPage(onTourSelect, loadingState) function

File: /js/form-page.js

Subtasks:

• Create form-page.js file with proper imports
• Import required dependencies:
  • Import config from './config.js'
  • Import utils from './utils.js'
  • Import React components from window.TravelCheckout
• Move traveler information form from checkout-steps.js:
  • Copy existing form structure
  • Update to use new component structure
  • Maintain existing form validation
• Implement split layout structure:
  • Container with CSS Grid: grid-template-columns: 1fr 1fr
  • Left column: Form section (50% width)
  • Right column: Tour details section (50% width)
  • Responsive breakpoints for mobile (stack vertically)
• Create form section:
  • Form container with proper spacing
  • Input fields: Name, Email, Phone, Customer Reference
  • Form validation indicators
  • Continue button with validation state
• Create tour details section:
  • Hero image display with fallback
  • Tour title with emoji
  • Description text with proper typography
  • Price and currency display
  • Duration information
  • Available dates list
  • Inclusions list with bullet points
  • Exclusions list with bullet points
• Implement form validation:
  • Real-time validation on input change
  • Required field validation (name, email)
  • Email format validation using utils
  • Phone number format validation
  • Visual validation feedback (red/green borders)
  • Error message display
• Add form state management:
  • Handle input changes
  • Maintain form data in parent state
  • Validate form before allowing continue
  • Reset form functionality
• Implement tour data display:
  • Use tour data passed from landing page
  • Handle missing or incomplete data gracefully
  • Format price with currency symbol
  • Format dates in readable format
  • Handle empty inclusions/exclusions arrays
• Add loading states:
  • Form loading skeleton
  • Tour details loading placeholder
  • Image loading states
• Add responsive design:
  • Mobile: Stack form above tour details
  • Tablet: Maintain side-by-side layout
  • Desktop: Full side-by-side layout
  • Proper spacing and padding for all sizes
• Export renderFormPage(tourData, formData, onInputChange, onContinue, onBack) function

File: /js/payment-page.js (rename from checkout-steps.js)

Subtasks:

• Rename checkout-steps.js to payment-page.js
• Remove landing and form page functions
• Keep only payment/review functionality
• Update function names for clarity
• Export renderPaymentPage() function

File: /js/checkout-app.js

Subtasks:

• Add imports for all new modules:
  • import config from './config.js'
  • import * as utils from './utils.js'
  • import { renderLandingPage } from './landing-page.js'
  • import { renderFormPage } from './form-page.js'
  • import { renderPaymentPage } from './payment-page.js'
  • Keep existing payment handler imports
• Replace hardcoded values with config:
  • Replace all URL constants with config values
  • Update API endpoints to use config
  • Replace default form values with config
• Update state management:
  • Add showDemoModal state
  • Add tourData state for selected tour
  • Add loadingStates for different components
  • Maintain existing payment-related states
• Implement demo modal logic:
  • Check for demo acknowledgment on app init
  • Show modal if first visit
  • Handle modal dismissal
  • Store acknowledgment using utils
• Update step rendering logic:
  • Step 0: Show demo modal OR landing page
  • Step 1: Show form page with tour data
  • Step 2: Show payment page (existing)
  • Handle transitions between steps
• Add tour selection handler:
  • Handle tour selection from landing page
  • Store selected tour data
  • Trigger API call to load full tour details
  • Navigate to form page
• Update navigation handlers:
  • Handle back navigation between steps
  • Maintain tour data across navigation
  • Handle browser back button
• Add error handling:
  • Global error boundary for component failures
  • API error handling and user feedback
  • Network failure recovery
• Add loading state management:
  • Show loading indicators during API calls
  • Handle concurrent loading states
  • Prevent user interaction during loading
• Update initialization logic:
  • Initialize demo modal check
  • Load cached tour data if available
  • Set up global error handlers
• Maintain existing functionality:
  • Keep all payment-related logic intact
  • Preserve form data handling
  • Maintain script loading logic

File: /js/payment-handlers.js

Subtasks:

• Import config and utils:
  • import config from './config.js'
  • import { buildApiUrl, getXSRFToken, handleApiError } from './utils.js'
• Update nonce request function:
  • Change URL to use config.SERVER_BASE_URL + config.API_BASE_PATH + config.NONCE_ENDPOINT
  • Update request headers:
    • Add 'Content-Type': 'application/json'
    • Add 'X-XSRF-TOKEN': getXSRFToken() from cookies
    • Add 'Origin': window.location.origin
    • Add 'Referer': window.location.href
  • Update request body format:

    {
      "tourId": "<selected_tour_id>",
      "cfToken": "<cloudflare_turnstile_token>"
    }

  • Add proper error handling for CSRF failures
  • Handle 429 rate limiting responses
• Update fingerprint exchange function:
  • Change URL to use config.SERVER_BASE_URL + config.API_BASE_PATH + config.EXCHANGE_ENDPOINT
  • Update headers:
    • Keep 'Content-Type': 'application/json'
    • Change to 'X-Payment-Nonce': <nonce> (remove Authorization header)
    • Add 'Origin': window.location.origin
    • Add 'Referer': window.location.href
  • Update request body format:

    {
      "apiKey": "<public_api_key>",
      "mode": "<mode>",
      "paymentAmount": "<amount_in_cents>",
      "merchantUniquePaymentId": "<unique_booking_id>",
      "timestamp": "<ISO8601_timestamp>"
    }

  • Remove backend API key requirement
  • Update error handling for nonce validation failures
• Add cookie handling:
  • Ensure cookies are sent with credentials: 'include'
  • Handle missing XSRF token gracefully
  • Add cookie validation before API calls
• Update error handling:
  • Handle network failures with retry logic
  • Parse error responses properly
  • Provide user-friendly error messages
  • Handle nonce expiration (60 seconds)
• Add request timeout handling:
  • Set reasonable timeouts for API calls
  • Handle timeout errors gracefully
  • Provide timeout feedback to users
• Update function signatures:
  • Include tourId parameter in nonce request
  • Remove unnecessary parameters
  • Update callback functions accordingly

File: /js/landing-page.js

Subtasks:

• Create loadTourData(tourId) function:
  • Build full API URL: https://server.zenithpayments.support/api/v1/tour/${tourId}
  • Configure fetch request:
    • Method: 'GET'
    • Headers: { 'Accept': 'application/json' }
    • Credentials: 'include' (for cookies)
    • Mode: 'cors'
  • Handle response:
    • Check response.ok status
    • Parse JSON response
    • Extract tour data from response.body
    • Validate required fields exist
• Add response data processing:
  • Parse JSON from response.body string
  • Map API response to internal tour object structure
  • Handle missing optional fields gracefully
  • Validate required fields (tourId, title, price, etc.)
• Implement error handling:
  • Network failure handling (offline, timeout)
  • HTTP error status handling (404, 500, etc.)
  • Invalid JSON response handling
  • Missing required data handling
  • Provide fallback data for demo purposes
• Add loading state management:
  • Track loading state per tour
  • Show loading indicators during fetch
  • Handle concurrent requests properly
  • Prevent duplicate requests for same tour
• Implement caching strategy:
  • Cache successful API responses in memory
  • Use sessionStorage for tour data persistence
  • Check cache before making API calls
  • Implement cache expiration (30 minutes)
  • Clear cache on page refresh
• Add tour data validation:
  • Validate tour object structure
  • Ensure required fields are present
  • Validate data types (price as number, etc.)
  • Sanitize text fields for XSS prevention
• Handle cookies and security:
  • Ensure SESSION and XSRF-TOKEN cookies are set
  • Store cookies for subsequent API calls
  • Handle cookie expiration gracefully
• Add retry logic:
  • Retry failed requests (max 3 attempts)
  • Exponential backoff for retries
  • Different retry strategies for different error types
• Create tour loading orchestration:
  • Load all 3 tours concurrently
  • Handle partial failures (some tours load, others fail)
  • Provide feedback for each tour's loading state
  • Allow user interaction with successfully loaded tours

File: /js/payment-handlers.js

Subtasks:

• Implement XSRF token extraction:
  • Read XSRF-TOKEN from cookies
  • Add to request headers
• Add Cloudflare Turnstile integration:
  • Ensure turnstile token is captured
  • Include in nonce request
• Update error handling:
  • Handle 429 rate limiting
  • Handle CSRF token errors
  • Handle nonce expiration (60 seconds)

File: /js/landing-page.js + CSS

Subtasks:

• Create modern card design:
  • Card container: border-radius: 12px, box-shadow: 0 4px 6px rgba(0,0,0,0.1)
  • Background: background: white, border: 1px solid #e5e7eb
  • Padding: padding: 1.5rem
  • Height: min-height: 400px for consistency
• Style card images:
  • Image container: aspect-ratio: 16/9, border-radius: 8px
  • Image: object-fit: cover, width: 100%
  • Loading placeholder with skeleton animation
  • Error fallback with icon/text
• Design typography:
  • Title: font-size: 1.5rem, font-weight: 600, color: #1f2937
  • Description: font-size: 0.875rem, color: #6b7280, line-height: 1.5
  • Price: font-size: 1.25rem, font-weight: 700, color: #059669
• Create call-to-action button:
  • Button: background: #3b82f6, color: white, padding: 0.75rem 1.5rem
  • Border radius: border-radius: 6px
  • Hover state: background: #2563eb, transform: translateY(-1px)
  • Transition: transition: all 0.2s ease
• Implement hover animations:
  • Card hover: transform: translateY(-4px) scale(1.02)
  • Shadow enhancement: box-shadow: 0 10px 25px rgba(0,0,0,0.15)
  • Transition: transition: all 0.3s cubic-bezier(0.4, 0, 0.2, 1)
• Add sibling card effects:
  • Non-hovered cards: opacity: 0.6, transform: scale(0.98)
  • Smooth transition back to normal state
  • Use CSS :hover and :not(:hover) selectors
• Implement responsive design:
  • Mobile (< 768px): Single column, full width cards
  • Tablet (768px - 1024px): Two column grid
  • Desktop (> 1024px): Three column grid
  • Use CSS Grid with grid-template-columns
• Add loading states:
  • Skeleton card animation using CSS keyframes
  • Shimmer effect for loading images
  • Progressive content loading
• Optimize for performance:
  • Use will-change: transform for animated elements
  • GPU acceleration with transform3d(0,0,0)
  • Debounce hover effects to prevent jank
• Add accessibility features:
  • Focus states with outline and box-shadow
  • Keyboard navigation support
  • ARIA labels for screen readers
  • High contrast mode support

File: /js/form-page.js + CSS

Subtasks:

• Create split-screen layout:
  • Container: display: grid, grid-template-columns: 1fr 1fr
  • Gap: gap: 2rem
  • Min height: min-height: calc(100vh - 4rem)
• Style form section:
  • Form container: background: white, padding: 2rem, border-radius: 12px
  • Box shadow: box-shadow: 0 4px 6px rgba(0,0,0,0.05)
  • Form spacing: space-y: 1.5rem between elements
• Design form inputs:
  • Input styling: border: 2px solid #e5e7eb, border-radius: 8px
  • Padding: padding: 0.75rem 1rem
  • Focus state: border-color: #3b82f6, outline: none, box-shadow: 0 0 0 3px rgba(59,130,246,0.1)
  • Error state: border-color: #ef4444, red focus ring
  • Success state: border-color: #10b981, green focus ring
• Style form labels:
  • Label: font-weight: 500, color: #374151, margin-bottom: 0.5rem
  • Required indicator: red asterisk
  • Helper text: font-size: 0.875rem, color: #6b7280
• Design validation feedback:
  • Error messages: color: #ef4444, font-size: 0.875rem
  • Success indicators: green checkmark icons
  • Real-time validation styling
• Style continue button:
  • Primary button: background: #059669, color: white
  • Full width: width: 100%, padding: 1rem
  • Disabled state: opacity: 0.5, cursor: not-allowed
  • Loading state: spinner animation
• Style tour details section:
  • Container: background: #f9fafb, padding: 2rem, border-radius: 12px
  • Sticky positioning: position: sticky, top: 2rem
• Design tour image display:
  • Hero image: aspect-ratio: 16/9, border-radius: 8px
  • Image: object-fit: cover, width: 100%
  • Loading placeholder with blur effect
• Style tour information:
  • Title: font-size: 1.75rem, font-weight: 700, color: #1f2937
  • Description: color: #4b5563, line-height: 1.6
  • Price: font-size: 1.5rem, font-weight: 700, color: #059669
• Design lists (inclusions/exclusions):
  • List container: background: white, border-radius: 8px, padding: 1rem
  • List items: padding: 0.5rem 0, bullet points or checkmarks
  • Alternating background colors for readability
• Add responsive design:
  • Mobile: Stack form above tour details
  • Tablet: Maintain side-by-side with adjusted proportions
  • Desktop: Full side-by-side layout
  • Proper touch targets for mobile (min 44px)
• Implement loading states:
  • Form skeleton with animated placeholders
  • Tour details skeleton matching content structure
  • Progressive loading of images and content
• Add micro-interactions:
  • Input focus animations
  • Button hover effects
  • Form submission feedback
  • Smooth transitions between states

File: /js/payment-page.js + CSS

Subtasks:

• Update existing payment page styling:
  • Maintain current functionality
  • Apply consistent design system
  • Match landing and form page aesthetics
• Style review cards:
  • Consistent card styling with other pages
  • Clear information hierarchy
  • Proper spacing and typography
• Enhance payment buttons:
  • Primary action styling for "Pay Now"
  • Secondary styling for "Back" button
  • Loading states and disabled states
• Style error and success states:
  • Consistent alert styling
  • Clear visual hierarchy for different message types
  • Proper spacing and readability
• Add responsive design:
  • Mobile-optimized payment flow
  • Touch-friendly button sizing
  • Readable text on small screens

File: /js/utils.js

Subtasks:

• Implement robust image caching:
  • cacheImage(url, key) function:
    • Fetch image with proper error handling
    • Convert to base64 using FileReader or canvas
    • Compress images if too large (>500KB)
    • Store with timestamp for expiration
  • getCachedImage(key) function:
    • Retrieve from localStorage
    • Check expiration timestamp
    • Return base64 data URL or null
  • isCacheExpired(key, maxAge) function:
    • Compare stored timestamp with current time
    • Default expiration: 7 days
    • Handle corrupted timestamp data
• Add cache management:
  • getCacheSize() - Calculate total cache size in bytes
  • clearExpiredCache() - Remove expired items
  • clearImageCache() - Remove all cached images
  • getCacheStats() - Return cache statistics
• Implement cache size limits:
  • Maximum cache size: 50MB
  • LRU (Least Recently Used) eviction policy
  • Automatic cleanup when approaching limits
  • User notification when cache is full
• Add cache optimization:
  • Image compression before caching
  • Progressive JPEG support
  • WebP format detection and support
  • Fallback to original URL if caching fails
• Test caching performance:
  • Measure cache hit/miss ratios
  • Test cache persistence across browser sessions
  • Verify cache invalidation works correctly
  • Test cache behavior with network failures

All Files

Subtasks:

• Add comprehensive error boundaries:
  • Network failure handling:
    • Detect offline/online status
    • Queue requests when offline
    • Retry when connection restored
    • Show appropriate offline messages
  • API error responses:
    • Parse error messages from API responses
    • Handle different HTTP status codes appropriately
    • Provide user-friendly error messages
    • Log errors for debugging
  • Invalid data handling:
    • Validate API response structure
    • Handle missing required fields
    • Sanitize user inputs
    • Prevent XSS attacks
• Implement retry mechanisms:
  • Automatic retry for transient failures:
    • Network timeouts
    • 5xx server errors
    • Rate limiting (429) with backoff
  • Manual retry options:
    • "Try Again" buttons for failed operations
    • "Refresh" options for stale data
    • Clear instructions for users
  • Exponential backoff:
    • Start with 1 second delay
    • Double delay for each retry
    • Maximum delay of 30 seconds
    • Maximum of 3 retry attempts
• Add user feedback systems:
  • Loading indicators:
    • Skeleton screens for content loading
    • Spinner animations for actions
    • Progress bars for multi-step processes
  • Error messages:
    • Clear, actionable error descriptions
    • Suggestions for resolution
    • Contact information for support
  • Success confirmations:
    • Visual feedback for completed actions
    • Clear next steps for users
    • Celebration animations for major milestones
• Implement graceful degradation:
  • Fallback content when APIs fail
  • Offline mode with cached data
  • Progressive enhancement approach
  • Accessibility in error states

All Files

Subtasks:

• Test complete user flow:
  • Demo modal functionality:
    • Shows on first visit
    • Doesn't show on subsequent visits
    • Properly stores acknowledgment
    • Handles corrupted storage data
  • Landing page functionality:
    • All 3 tours load correctly
    • Hover effects work smoothly
    • Images cache and load from cache
    • Tour selection navigates correctly
  • Form page functionality:
    • Form validation works correctly
    • Tour details display properly
    • Navigation between steps works
    • Data persists across navigation
  • Payment flow functionality:
    • All API calls work with new endpoints
    • CSRF tokens are handled correctly
    • Nonce exchange works properly
    • ZenPay integration still functions
• Test caching functionality:
  • Images cache on first load
  • Cached images load on subsequent visits
  • Cache expiration works correctly
  • Cache cleanup functions properly
  • Demo acknowledgment persists correctly
• Performance testing:
  • Page load times under 3 seconds
  • Smooth animations (60fps)
  • Memory usage stays reasonable
  • No memory leaks during navigation
  • Image loading doesn't block UI
• Cross-browser testing:
  • Chrome (latest 2 versions)
  • Firefox (latest 2 versions)
  • Safari (latest 2 versions)
  • Edge (latest 2 versions)
  • Mobile browsers (iOS Safari, Chrome Mobile)
• Responsive design testing:
  • Mobile phones (320px - 768px)
  • Tablets (768px - 1024px)
  • Desktop (1024px+)
  • Ultra-wide screens (1440px+)
• Accessibility testing:
  • Keyboard navigation works throughout
  • Screen reader compatibility
  • Color contrast meets WCAG standards
  • Focus indicators are visible
• Security testing:
  • XSS prevention in user inputs
  • CSRF tokens work correctly
  • No sensitive data in localStorage
  • Proper cookie handling
• Error scenario testing:
  • Network failures at each step
  • Invalid API responses
  • Corrupted cache data
  • Browser storage limitations

1. Phase 1: Infrastructure (Config, Utils, Demo Modal) - ~15 tasks
2. Phase 2: File Reorganization (Split components) - ~25 tasks
3. Phase 3: API Integration (Update endpoints, security) - ~20 tasks
4. Phase 4: UI Implementation (Modern design, animations) - ~30 tasks
5. Phase 5: Testing & Optimization (Caching, error handling) - ~35 tasks

Total: ~125 actionable tasks

• Demo modal shows once per user, stored encoded in localStorage
• 3-card landing page with smooth hover effects and real images
• Real tour data loaded from https://server.zenithpayments.support/api/v1/tour/{id}
• Proper security flow with CSRF tokens and nonce handling
• Images cached in localStorage with expiration and size management
• No breaking changes to existing payment flow
• Modern, professional UI/UX with consistent design system
• Responsive design works on mobile, tablet, and desktop
• Comprehensive error handling provides good user experience
• All API calls use correct endpoints with proper headers
• Form validation works with real-time feedback
• Performance optimized with caching and lazy loading
• Cross-browser compatibility verified
• Accessibility standards met (WCAG compliance)

✅ What Frontend Handles:

• All UI components and user interactions
• API calls to backend endpoints
• Client-side caching and storage
• Form validation and user feedback
• Image loading and caching
• Browser compatibility and responsive design
• Error handling and retry logic
• Demo modal and user onboarding

❌ What Backend Handles (NOT in this plan):

• API endpoint implementation
• Database operations
• Server-side validation
• Payment processing callbacks
• Security token generation
• CORS configuration
• Cookie management (server-side)

Ready to start implementation once this task list is approved!