How to Build a Subscription box service with Replit

To build a subscription box service in Replit, you’ll create a small web app (using Node.js and Express) that lets users subscribe, stores their subscription data in a database, and integrates a payment system like Stripe. In Replit, you can host this directly, set environment variables for API keys using the “Secrets” tab, and even sync your code with GitHub for version control. The flow is: serve the front-end (HTML + basic CSS), handle subscription form submission, securely process payments via Stripe API, then store subscriber info in a database such as Replit DB (built-in option) or an external database like MongoDB Atlas.

 

Project Setup on Replit

 

Choose the "Node.js" template when creating your new Repl. This gives you a server.js file by default. You’ll keep your back-end logic there. Create a public folder for your front-end HTML/CSS, and optionally a views folder if you prefer templating later.

• server.js → Main backend logic (Express app, routes, API endpoints)
• public/index.html → Subscription form, fetched by Express static route
• Replit Secrets → Store your Stripe keys or DB credentials safely here

 

// Inside the Shell on Replit
npm install express stripe replidb

 

Basic Express Setup

 

Open server.js and replace everything with this code:

 

// server.js

const express = require("express")
const path = require("path")
const bodyParser = require("body-parser")
const Stripe = require("stripe")
const { Database } = require("replidb") // Using built-in Replit DB wrapper

const app = express()
const db = new Database()

// This key should be stored in Replit Secrets (Tools > Secrets)
const stripe = Stripe(process.env.STRIPE_SECRET_KEY)

app.use(bodyParser.json())
app.use(express.static(path.join(__dirname, "public")))

// Route to handle subscription
app.post("/subscribe", async (req, res) => {
  const { email, name, plan } = req.body

  try {
    // Create customer in Stripe
    const customer = await stripe.customers.create({ email, name })

    // Example subscription creation
    const priceId = "price_xxx" // Replace with your Stripe price ID
    const subscription = await stripe.subscriptions.create({
      customer: customer.id,
      items: [{ price: priceId }]
    })

    // Save subscriber info to Replit DB
    await db.set(email, { name, plan, stripeId: subscription.id })

    res.json({ success: true, message: "Subscription successful!" })
  } catch (error) {
    console.error(error)
    res.status(500).json({ success: false, message: "Subscription failed" })
  }
})

// Replit automatically assigns PORT
app.listen(process.env.PORT || 3000, () => {
  console.log("Server running!")
})

 

Create the Front-End Subscription Form

 

In the left sidebar, create a folder named public and inside it, a file called index.html. Add a simple form that posts to your backend.

 

<!-- public/index.html -->
<!DOCTYPE html>
<html>
  <head>
    <title>My Subscription Box</title>
    <style>
      body { font-family: sans-serif; max-width: 500px; margin: 50px auto; }
      input, select, button { display: block; width: 100%; margin-top: 10px; padding: 10px; }
    </style>
  </head>
  <body>
    <h2>Join Our Subscription Box!</h2>
    <form id="subForm">
      <input type="text" name="name" placeholder="Your name" required />
      <input type="email" name="email" placeholder="Your email" required />
      <select name="plan">
        <option value="basic">Basic</option>
        <option value="premium">Premium</option>
      </select>
      <button type="submit">Subscribe</button>
    </form>

    <script>
      const subForm = document.getElementById("subForm")
      subForm.addEventListener("submit", async (e) => {
        e.preventDefault()
        const formData = Object.fromEntries(new FormData(subForm))
        const response = await fetch("/subscribe", {
          method: "POST",
          headers: { "Content-Type": "application/json" },
          body: JSON.stringify(formData)
        })
        const result = await response.json()
        alert(result.message)
      })
    </script>
  </body>
</html>

 

Set Up Secrets in Replit

 

In Replit, open the sidebar and go to Tools → Secrets. Add:

• KEY: STRIPE_SECRET_KEY
• VALUE: your real Stripe secret key (starts with sk_live or sk_test)

Replit automatically injects it into process.env for your code.

 

Run and Test

 

Click the green Run button in Replit. Then open the webview tab. Fill the form — your request will hit the backend, Stripe will process it (if keys are real), and you’ll see saved data in your Replit DB. You can check the DB with:

 

// In the Shell
await db.list()  // see all emails
await db.get("[email protected]")  // see one record

 

Deployment and Notes

 

• Persistence: Replit DB is persistent for small projects but not for production-scale. For scaling, connect MongoDB Atlas or Supabase.
• Security: Never hardcode API keys. Always use Replit Secrets.
• Collaboration: If working with teammates, use the “Invite” button so both can edit in real time.
• Git Integration: Link your Repl with GitHub from the left panel for version control.
• Custom Domain: Use Replit’s “Deployments” tab to set a custom domain when production-ready.

 

This structure works end-to-end inside Replit — you can build your subscription box MVP, process payments, and keep data securely, all without leaving the platform.

When building a subscription box service on Replit, treat Replit as a real production-like environment but lighter, built for iteration and demos. You’ll build a small but complete Node.js + Express backend, connect it to a Replit-hosted database (or external DB like Supabase), securely manage API keys in Replit Secrets, and host a simple React or HTML/JS frontend. The main best practice is to keep backend and frontend structured clearly, avoid committing secret keys, and use Replit’s built-in web hosting and deployment features correctly instead of assuming it behaves like your local Docker or AWS server.

 

Basic Structure

 

Start a new Replit Node.js project. Replit will automatically create index.js as your main entry file. Create a folder named client/ for frontend files and a folder named routes/ for backend routes. This keeps the project tidy and makes it similar to production setups.

• index.js: main server entry (Express app, payment handling setup).
• routes/subscriptions.js: all subscription-related API routes.
• client/: frontend files (HTML, CSS, JS, or React app if using React template).
• .env or Secrets: store real API keys in Replit Secrets tab, never in code.

 

// index.js - main server entry
import express from "express"
import bodyParser from "body-parser"
import cors from "cors"
import { config } from "dotenv"
import subscriptionRoutes from "./routes/subscriptions.js"

config() // Loads environment variables if local; Replit Secrets auto-available
const app = express()

app.use(cors())
app.use(bodyParser.json())

// Mount routes
app.use("/api/subscriptions", subscriptionRoutes)

const PORT = process.env.PORT || 3000
app.listen(PORT, () => {
  console.log(`Server running on port ${PORT}`)
})

 

Creating a Routes File

 

In Replit, click the “New File” button and create routes/subscriptions.js. This file defines your backend endpoints responsible for handling new subscriptions, fetching existing customers, and connecting to payment services like Stripe.

 

// routes/subscriptions.js
import express from "express"
const router = express.Router()

// Mock database for demo - replace with real DB later
const subscribers = []

// POST /api/subscriptions/new
router.post("/new", (req, res) => {
  const { name, email, plan } = req.body
  if (!email || !plan) {
    return res.status(400).json({ error: "Email and plan are required" })
  }
  subscribers.push({ name, email, plan })
  res.json({ success: true, message: "Subscription created!" })
})

export default router

 

Connecting to a Database

 

Replit includes a small database feature called Replit Database, good for small projects. For production-ready apps, use Supabase, MongoDB Atlas, or Firebase. To use Replit DB, add this near the top of routes/subscriptions.js:

 

// Using Replit Database
import Database from "@replit/database"
const db = new Database()

router.post("/new", async (req, res) => {
  const { name, email, plan } = req.body
  if (!email || !plan) {
    return res.status(400).json({ error: "Email and plan required" })
  }
  await db.set(email, { name, plan })
  res.json({ message: "Subscription stored in database!" })
})

 

Secrets and Environment Variables

 

Instead of typing any payment or database keys into your code, store them in the Replit Secrets tab (the padlock icon on the left sidebar). For example, add:

• STRIPE_SECRET_KEY: your real Stripe key (starts with sk\_).
• DATABASE\_URL: if using external DB.

Then access them in code as environment variables:

 

const stripeSecret = process.env.STRIPE_SECRET_KEY

 

Integrating Payment (Stripe Example)

 

Install Stripe with Replit’s Package Manager (left sidebar → Search “stripe”). Then, add a simple route for checkout. Put this inside routes/subscriptions.js below other route definitions.

 

import Stripe from "stripe"
const stripe = new Stripe(process.env.STRIPE_SECRET_KEY)

router.post("/checkout", async (req, res) => {
  try {
    const session = await stripe.checkout.sessions.create({
      payment_method_types: ["card"],
      mode: "subscription",
      line_items: [
        {
          price: "price_1234", // Replace with your Stripe price ID
          quantity: 1
        }
      ],
      success_url: `${req.headers.origin}/success`,
      cancel_url: `${req.headers.origin}/cancel`,
    })
    res.json({ url: session.url })
  } catch (err) {
    res.status(500).json({ error: err.message })
  }
})

 

Frontend Setup

 

For a minimal HTML/JS frontend, create client/index.html and link it to your Express backend using Replit’s hosting domain (for example, https://your-repl-name.your-username.repl.co/api/subscriptions/).

 

<!-- client/index.html -->
<!DOCTYPE html>
<html>
<head>
  <title>Subscription Box Signup</title>
</head>
<body>
  <h1>Subscribe to Our Box!</h1>
  <form id="subForm">
    <input type="text" placeholder="Name" id="name" required />
    <input type="email" placeholder="Email" id="email" required />
    <select id="plan">
      <option value="basic">Basic</option>
      <option value="premium">Premium</option>
    </select>
    <button type="submit">Subscribe</button>
  </form>
  <script>
    document.getElementById("subForm").addEventListener("submit", async (e) => {
      e.preventDefault()
      const res = await fetch("/api/subscriptions/new", {
        method: "POST",
        headers: { "Content-Type": "application/json" },
        body: JSON.stringify({
          name: document.getElementById("name").value,
          email: document.getElementById("email").value,
          plan: document.getElementById("plan").value
        })
      })
      const data = await res.json()
      alert(data.message || "Subscribed!")
    })
  </script>
</body>
</html>

 

Replit Specific Tips

 

• Don’t run migrations or heavy scripts inside Replit shell; use light scripts or external dashboards.
• Secrets are per Repl — if you fork or invite collaborators, be explicit about who can see them.
• Use the “Deploy” button for a stable, always-on service; otherwise, Replit free-tier apps sleep after inactivity.
• Use console.log() generously for debugging, since Replit shows both backend and frontend logs live.
• Back up your code to GitHub often using built-in Git integration in Replit.

 

Following this pattern gives you a clean separation of concerns, keeps your secrets safe, and ensures the subscription box app runs reliably in Replit’s environment.