diff --git a/backend/.env.sample b/backend/.env.sample
index 9c8fcbd..71b3925 100644
--- a/backend/.env.sample
+++ b/backend/.env.sample
@@ -1,4 +1,6 @@
 # sample env file with some imp info
 
 # PORT = 6352
-# MONGO_URL = YOUR_MONGODB_URL
\ No newline at end of file
+# MONGO_URL = YOUR_MONGODB_URL
+# EMAIL=""
+# EMAIL_PASSWORD="" //this is app password
\ No newline at end of file
diff --git a/backend/Schemas/User.Schema.js b/backend/Schemas/User.Schema.js
index c827eba..9dfa46d 100644
--- a/backend/Schemas/User.Schema.js
+++ b/backend/Schemas/User.Schema.js
@@ -26,6 +26,12 @@ const UserSchema = new mongoose.Schema({
     type: String,
     default: "3 days",
   },
+  resetPasswordToken: {
+    type: String,
+  },
+  resetPasswordExpires: {
+    type: Date,
+  },
 });
 
 const User = mongoose.model("User", UserSchema);
diff --git a/backend/index.js b/backend/index.js
index ebc7178..71bde03 100644
--- a/backend/index.js
+++ b/backend/index.js
@@ -7,6 +7,8 @@ import jwt from "jsonwebtoken";
 import bcrypt from "bcrypt";
 import User from "./Schemas/User.Schema.js";
 import client from "./twilioConfig.js";
+import crypto from "crypto"; // Add this line
+import nodemailer from "nodemailer"; // Add this line
 
 dotenv.config();
 
@@ -341,6 +343,95 @@ app.post("/login", async (req, res) => {
     res.status(500).send({ message: "Error logging in", error: error.message });
   }
 });
+// Configure nodemailer for email sending
+const transporter = nodemailer.createTransport({
+  service: "Gmail",
+  auth: {
+    user: process.env.EMAIL,
+    pass: process.env.EMAIL_PASSWORD,
+  },
+});
+
+// Route to handle forgot password
+app.post("/forgot-password", async (req, res) => {
+  const { email } = req.body;
+
+  try {
+    const user = await User.findOne({ email });
+    if (!user) {
+      return res.status(404).json({ message: "User not found" });
+    }
+
+    const token = crypto.randomBytes(20).toString("hex");
+
+    user.resetPasswordToken = token;
+    user.resetPasswordExpires = Date.now() + 3600000; // 1 hour
+
+    await user.save();
+
+    const resetURL = `http://localhost:3000/user/reset-password/${token}`;
+
+    const mailOptions = {
+      to: user.email,
+      from: process.env.EMAIL,
+      subject: "Password Reset",
+      text: `You are receiving this because you (or someone else) have requested the reset of the password for your account.\n\n
+        Please click on the following link, or paste this into your browser to complete the process:\n\n
+        ${resetURL}\n\n
+        If you did not request this, please ignore this email and your password will remain unchanged.\n`,
+    };
+
+    transporter.sendMail(mailOptions, (err, response) => {
+      if (err) {
+        console.error("There was an error: ", err);
+        res.status(500).json({ message: "Error sending email", error: err });
+      } else {
+        res.status(200).json({
+          success: true,
+          message: "Password reset email sent successfully",
+        });
+      }
+    });
+  } catch (error) {
+    res.status(500).json({ message: "Server error", error: error.message });
+  }
+});
+
+// Route to handle reset password
+app.post("/user/reset-password/:token", async (req, res) => {
+  const { token } = req.params;
+  const { password } = req.body;
+
+  try {
+    const user = await User.findOne({
+      resetPasswordToken: token,
+      resetPasswordExpires: { $gt: Date.now() },
+    });
+
+    if (!user) {
+      return res.status(400).json({ message: "Password reset token is invalid or has expired." });
+    }
+
+    const hashedPassword = await bcrypt.hash(password, 10);
+
+    user.password = hashedPassword;
+    user.resetPasswordToken = undefined;
+    user.resetPasswordExpires = undefined;
+
+    await user.save();
+
+    res.status(200).json({
+      success: true,
+      message: "Password reset successful!",
+    });
+  } catch (error) {
+    res.status(500).json({ message: "Server error", error: error.message });
+  }
+});
+
+
+
+
 
 // Start the server
 const server = app.listen(PORT, () => {
diff --git a/backend/package-lock.json b/backend/package-lock.json
index fc71943..a66a124 100644
--- a/backend/package-lock.json
+++ b/backend/package-lock.json
@@ -15,6 +15,7 @@
         "express": "^4.19.2",
         "jsonwebtoken": "^9.0.2",
         "mongoose": "^8.4.0",
+        "nodemailer": "^6.9.14",
         "nodemon": "^3.1.1",
         "twilio": "^5.1.1"
       },
@@ -5519,6 +5520,14 @@
       "integrity": "sha512-y10wOWt8yZpqXmOgRo77WaHEmhYQYGNA6y421PKsKYWEK8aW+cqAphborZDhqfyKrbZEN92CN1X2KbafY2s7Yw==",
       "dev": true
     },
+    "node_modules/nodemailer": {
+      "version": "6.9.14",
+      "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.9.14.tgz",
+      "integrity": "sha512-Dobp/ebDKBvz91sbtRKhcznLThrKxKt97GI2FAlAyy+fk19j73Uz3sBXolVtmcXjaorivqsbbbjDY+Jkt4/bQA==",
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
     "node_modules/nodemon": {
       "version": "3.1.1",
       "resolved": "https://registry.npmjs.org/nodemon/-/nodemon-3.1.1.tgz",
diff --git a/backend/package.json b/backend/package.json
index b45c2fd..3dd18f8 100644
--- a/backend/package.json
+++ b/backend/package.json
@@ -21,6 +21,7 @@
     "express": "^4.19.2",
     "jsonwebtoken": "^9.0.2",
     "mongoose": "^8.4.0",
+    "nodemailer": "^6.9.14",
     "nodemon": "^3.1.1",
     "twilio": "^5.1.1"
   },
diff --git a/src/App.js b/src/App.js
index e7014b4..6471c45 100644
--- a/src/App.js
+++ b/src/App.js
@@ -17,6 +17,8 @@ import AdminD from "./Dashboards/AdminD";
 import Settings from "./pages/Settings";
 import AccountSettings from "./settings/AccountSettings";
 import NotFoundPage from "./pages/PNF";
+import ForgotPassword from "./pages/Forgotpassword.js";
+import ResetPassword from "./pages/ResetPassword.js";
 
 const App = () => {
   return (
@@ -26,6 +28,8 @@ const App = () => {
         <Route path="/user/add-products" element={<PForm />} />
         <Route path="/user/signup" element={<SignUp />} />
         <Route path="/user/login" element={<Login />} />
+        <Route path="/user/forgot-password" element={<ForgotPassword />} />
+        <Route path="/user/reset-password/:token" element={<ResetPassword />} />
         <Route element={<PrivateRoute />}>
           <Route path="/admin/dashboard" element={<AdminD></AdminD>} />
           <Route path="/scanqr" element={<QRCodeVerification />} />
diff --git a/src/pages/Forgotpassword.js b/src/pages/Forgotpassword.js
new file mode 100644
index 0000000..2b9c53d
--- /dev/null
+++ b/src/pages/Forgotpassword.js
@@ -0,0 +1,121 @@
+import React, { useState } from "react";
+import axios from "axios";
+import { toast, ToastContainer } from "react-toastify";
+import "react-toastify/dist/ReactToastify.css";
+import Navbar from "../components/Navbar";
+import { RotatingLines } from "react-loader-spinner";
+import { useNavigate } from "react-router-dom";
+
+const ForgotPassword = () => {
+const navigate=useNavigate();
+  const [email, setEmail] = useState("");
+  const [errors, setErrors] = useState({});
+  const [loading, setLoading] = useState(false);
+
+  const validateEmail = (email) => {
+    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+    return emailRegex.test(email);
+  };
+
+  const handleSubmit = async (e) => {
+    e.preventDefault();
+    const newErrors = {};
+
+    if (!validateEmail(email)) {
+      newErrors.email = "Invalid email address.";
+    }
+
+    setErrors(newErrors);
+
+    if (Object.keys(newErrors).length === 0) {
+      setLoading(true);
+      try {
+        const response = await axios.post(
+          "https://smartserver-scbe.onrender.com/forgot-password",
+          { email }
+        );
+
+        if (response && response.data.success) {
+          toast.success("Password reset email sent!");
+          navigate("/user/login")
+
+        }
+      } catch (error) {
+        if (error.response) {
+          setErrors({ server: error.response.data.message });
+          toast.error(error.response.data.message);
+        } else if (error.request) {
+          setErrors({
+            server: "Server not responding. Please try again later.",
+          });
+          toast.error("Server not responding. Please try again later.");
+        } else {
+          setErrors({ server: "An error occurred. Please try again." });
+          toast.error("An error occurred. Please try again.");
+        }
+      } finally {
+        setLoading(false);
+      }
+    }
+  };
+
+  return (
+    <>
+      <Navbar />
+      <ToastContainer />
+      <div className="flex items-center justify-center min-h-screen bg-gray-100">
+        <div className="w-full max-w-md p-8 space-y-6 bg-white rounded-lg shadow-2xl">
+          <div className="flex justify-center">
+            <img
+              src="https://i.postimg.cc/jSY8z9x8/S-3-2.png"
+              alt="Logo"
+              className="w-16 h-16"
+            />
+          </div>
+          <h2 className="text-2xl font-bold text-center text-green-600">
+            Forgot Password
+          </h2>
+          <p className="text-center text-gray-600">
+            Enter your email to receive a password reset link
+          </p>
+          <form className="space-y-4" onSubmit={handleSubmit}>
+            <div>
+              <label className="block text-gray-700">Email</label>
+              <input
+                type="email"
+                value={email}
+                onChange={(e) => setEmail(e.target.value)}
+                className="w-full px-4 py-2 mt-2 border rounded-md focus:outline-none focus:ring-1 focus:ring-green-600"
+                placeholder="Email"
+              />
+              {errors.email && (
+                <p className="mt-1 text-sm text-red-600">{errors.email}</p>
+              )}
+            </div>
+            {errors.server && (
+              <p className="mt-1 text-sm text-red-600">{errors.server}</p>
+            )}
+            <button
+              className="w-full px-4 py-2 text-white bg-green-600 rounded-md hover:bg-green-700"
+              disabled={loading}
+            >
+              {loading ? (
+                <RotatingLines
+                  strokeColor="white"
+                  strokeWidth="5"
+                  animationDuration="0.75"
+                  width="24"
+                  visible={true}
+                />
+              ) : (
+                "Submit"
+              )}
+            </button>
+          </form>
+        </div>
+      </div>
+    </>
+  );
+};
+
+export default ForgotPassword;
diff --git a/src/pages/Login.js b/src/pages/Login.js
index 039d436..55bff59 100644
--- a/src/pages/Login.js
+++ b/src/pages/Login.js
@@ -171,13 +171,19 @@ const Login = () => {
                 "Login"
               )}
             </button>
-            <div className="flex justify-center mt-4">
+            <div className="flex justify-between mt-4">
               <Link
                 to="/user/signup"
                 className="text-green-600 hover:underline"
               >
                 Sign Up
               </Link>
+              <Link
+                to="/user/forgot-password"
+                className="text-green-600 hover:underline"
+              >
+                Forgot Password?
+              </Link>
             </div>
           </form>
         </div>
diff --git a/src/pages/ResetPassword.js b/src/pages/ResetPassword.js
new file mode 100644
index 0000000..9d3b462
--- /dev/null
+++ b/src/pages/ResetPassword.js
@@ -0,0 +1,137 @@
+import React, { useState } from "react";
+import axios from "axios";
+import { toast, ToastContainer } from "react-toastify";
+import "react-toastify/dist/ReactToastify.css";
+import Navbar from "../components/Navbar";
+import { RotatingLines } from "react-loader-spinner";
+import { useNavigate, useParams } from "react-router-dom";
+
+const ResetPassword = () => {
+  const [password, setPassword] = useState("");
+  const [confirmPassword, setConfirmPassword] = useState("");
+  const [errors, setErrors] = useState({});
+  const [loading, setLoading] = useState(false);
+  const navigate = useNavigate();
+  const { token } = useParams();
+
+  const validatePassword = (password) => {
+    return password.length >= 6;
+  };
+
+  const handleSubmit = async (e) => {
+    e.preventDefault();
+    const newErrors = {};
+
+    if (!validatePassword(password)) {
+      newErrors.password = "Password must be at least 6 characters.";
+    }
+
+    if (password !== confirmPassword) {
+      newErrors.confirmPassword = "Passwords do not match.";
+    }
+
+    setErrors(newErrors);
+
+    if (Object.keys(newErrors).length === 0) {
+      setLoading(true);
+      try {
+        const response = await axios.post(
+          `https://smartserver-scbe.onrender.com/user/reset-password/${token}`,
+          { password }
+        );
+
+        if (response && response.data.success) {
+          toast.success("Password reset successful!");
+          navigate("/user/login");
+        }
+      } catch (error) {
+        if (error.response) {
+          setErrors({ server: error.response.data.message });
+          toast.error(error.response.data.message);
+        } else if (error.request) {
+          setErrors({
+            server: "Server not responding. Please try again later.",
+          });
+          toast.error("Server not responding. Please try again later.");
+        } else {
+          setErrors({ server: "An error occurred. Please try again." });
+          toast.error("An error occurred. Please try again.");
+        }
+      } finally {
+        setLoading(false);
+      }
+    }
+  };
+
+  return (
+    <>
+      <Navbar />
+      <ToastContainer />
+      <div className="flex items-center justify-center min-h-screen bg-gray-100">
+        <div className="w-full max-w-md p-8 space-y-6 bg-white rounded-lg shadow-2xl">
+          <div className="flex justify-center">
+            <img
+              src="https://i.postimg.cc/jSY8z9x8/S-3-2.png"
+              alt="Logo"
+              className="w-16 h-16"
+            />
+          </div>
+          <h2 className="text-2xl font-bold text-center text-green-600">
+            Reset Password
+          </h2>
+          <form className="space-y-4" onSubmit={handleSubmit}>
+            <div>
+              <label className="block text-gray-700">New Password</label>
+              <input
+                type="password"
+                value={password}
+                onChange={(e) => setPassword(e.target.value)}
+                className="w-full px-4 py-2 mt-2 border rounded-md focus:outline-none focus:ring-1 focus:ring-green-600"
+                placeholder="New Password"
+              />
+              {errors.password && (
+                <p className="mt-1 text-sm text-red-600">{errors.password}</p>
+              )}
+            </div>
+            <div>
+              <label className="block text-gray-700">Confirm Password</label>
+              <input
+                type="password"
+                value={confirmPassword}
+                onChange={(e) => setConfirmPassword(e.target.value)}
+                className="w-full px-4 py-2 mt-2 border rounded-md focus:outline-none focus:ring-1 focus:ring-green-600"
+                placeholder="Confirm Password"
+              />
+              {errors.confirmPassword && (
+                <p className="mt-1 text-sm text-red-600">
+                  {errors.confirmPassword}
+                </p>
+              )}
+            </div>
+            {errors.server && (
+              <p className="mt-1 text-sm text-red-600">{errors.server}</p>
+            )}
+            <button
+              className="w-full px-4 py-2 text-white bg-green-600 rounded-md hover:bg-green-700"
+              disabled={loading}
+            >
+              {loading ? (
+                <RotatingLines
+                  strokeColor="white"
+                  strokeWidth="5"
+                  animationDuration="0.75"
+                  width="24"
+                  visible={true}
+                />
+              ) : (
+                "Reset Password"
+              )}
+            </button>
+          </form>
+        </div>
+      </div>
+    </>
+  );
+};
+
+export default ResetPassword;