Job posting and job application flow

.rspec

@@ -0,0 +1 @@
+--require spec_helper

Gemfile

@@ -20,7 +20,7 @@ gem "tailwindcss-rails"
 gem "jbuilder"
 
 # Use Active Model has_secure_password [https://guides.rubyonrails.org/active_model_basics.html#securepassword]
-# gem "bcrypt", "~> 3.1.7"
+gem "bcrypt", "~> 3.1.7"
 
 # Windows does not include zoneinfo files, so bundle the tzinfo-data gem
 gem "tzinfo-data", platforms: %i[ windows jruby ]
@@ -42,6 +42,8 @@ gem "thruster", require: false
 # Use Active Storage variants [https://guides.rubyonrails.org/active_storage_overview.html#transforming-images]
 # gem "image_processing", "~> 1.2"
 
+gem "ransack"
+
 group :development, :test do
   # See https://guides.rubyonrails.org/debugging_rails_applications.html#debugging-with-the-debug-gem
   gem "debug", platforms: %i[ mri windows ], require: "debug/prelude"
@@ -51,6 +53,9 @@ group :development, :test do
 
   # Omakase Ruby styling [https://github.com/rails/rubocop-rails-omakase/]
   gem "rubocop-rails-omakase", require: false
+  gem "rspec-rails"
+  gem "factory_bot_rails"
+  gem "faker"
 end
 
 group :development do
@@ -62,4 +67,5 @@ group :test do
   # Use system testing [https://guides.rubyonrails.org/testing.html#system-testing]
   gem "capybara"
   gem "selenium-webdriver"
+  gem "shoulda-matchers"
 end

Gemfile.lock

@@ -76,6 +76,7 @@ GEM
       public_suffix (>= 2.0.2, < 7.0)
     ast (2.4.3)
     base64 (0.2.0)
+    bcrypt (3.1.20)
     bcrypt_pbkdf (1.1.1)
     bcrypt_pbkdf (1.1.1-arm64-darwin)
     bcrypt_pbkdf (1.1.1-x86_64-darwin)
@@ -103,12 +104,20 @@ GEM
     debug (1.10.0)
       irb (~> 1.10)
       reline (>= 0.3.8)
+    diff-lcs (1.6.1)
     dotenv (3.1.7)
     drb (2.2.1)
     ed25519 (1.3.0)
     erubi (1.13.1)
     et-orbi (1.2.11)
       tzinfo
+    factory_bot (6.5.1)
+      activesupport (>= 6.1.0)
+    factory_bot_rails (6.4.4)
+      factory_bot (~> 6.5)
+      railties (>= 5.0.0)
+    faker (3.5.1)
+      i18n (>= 1.8.11, < 2)
     fugit (1.11.1)
       et-orbi (~> 1, >= 1.2.11)
       raabro (~> 1.4)
@@ -249,12 +258,33 @@ GEM
       zeitwerk (~> 2.6)
     rainbow (3.1.1)
     rake (13.2.1)
+    ransack (4.3.0)
+      activerecord (>= 6.1.5)
+      activesupport (>= 6.1.5)
+      i18n
     rdoc (6.13.1)
       psych (>= 4.0.0)
     regexp_parser (2.10.0)
     reline (0.6.0)
       io-console (~> 0.5)
     rexml (3.4.1)
+    rspec-core (3.13.3)
+      rspec-support (~> 3.13.0)
+    rspec-expectations (3.13.3)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.13.0)
+    rspec-mocks (3.13.2)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.13.0)
+    rspec-rails (7.1.1)
+      actionpack (>= 7.0)
+      activesupport (>= 7.0)
+      railties (>= 7.0)
+      rspec-core (~> 3.13)
+      rspec-expectations (~> 3.13)
+      rspec-mocks (~> 3.13)
+      rspec-support (~> 3.13)
+    rspec-support (3.13.2)
     rubocop (1.75.1)
       json (~> 2.3)
       language_server-protocol (~> 3.17.0.2)
@@ -292,6 +322,8 @@ GEM
       rexml (~> 3.2, >= 3.2.5)
       rubyzip (>= 1.2.2, < 3.0)
       websocket (~> 1.0)
+    shoulda-matchers (6.4.0)
+      activesupport (>= 5.2.0)
     solid_cable (3.0.7)
       actioncable (>= 7.2)
       activejob (>= 7.2)
@@ -372,19 +404,25 @@ PLATFORMS
   x86_64-linux-musl
 
 DEPENDENCIES
+  bcrypt (~> 3.1.7)
   bootsnap
   brakeman
   capybara
   debug
+  factory_bot_rails
+  faker
   importmap-rails
   jbuilder
   kamal
   pg (~> 1.1)
   propshaft
   puma (>= 5.0)
   rails (~> 8.0.2)
+  ransack
+  rspec-rails
   rubocop-rails-omakase
   selenium-webdriver
+  shoulda-matchers
   solid_cable
   solid_cache
   solid_queue

app/assets/stylesheets/application.css

@@ -8,3 +8,49 @@
  *
  * Consider organizing styles into separate files for maintainability.
  */
+
+ .field_with_errors {
+    display: contents;
+  }
+
+/* Prevent scrolling while dialog is open */
+body:has(dialog[data-dialog-target="dialog"][open]) {
+  overflow: hidden;
+}
+
+/* Customize the dialog backdrop */
+dialog {
+  box-shadow: 0 0 0 100vw rgb(0 0 0 / 0.5);
+  position: fixed;
+  top: 50%;
+  left: 50%;
+  transform: translate(-50%, -50%);
+  margin: 0;
+}
+
+@keyframes fade-in {
+  0% {
+    opacity: 0;
+  }
+  100% {
+    opacity: 1;
+  }
+}
+
+@keyframes fade-out {
+  0% {
+    opacity: 1;
+  }
+  100% {
+    opacity: 0;
+  }
+}
+
+/* Add animations */
+dialog[data-dialog-target="dialog"][open] {
+  animation: fade-in 200ms forwards;
+}
+
+dialog[data-dialog-target="dialog"][closing] {
+  animation: fade-out 200ms forwards;
+}

app/channels/application_cable/connection.rb

@@ -0,0 +1,16 @@
+module ApplicationCable
+  class Connection < ActionCable::Connection::Base
+    identified_by :current_user
+
+    def connect
+      set_current_user || reject_unauthorized_connection
+    end
+
+    private
+      def set_current_user
+        if session = Session.find_by(id: cookies.signed[:session_id])
+          self.current_user = session.user
+        end
+      end
+  end
+end

app/controllers/application_controller.rb

@@ -1,4 +1,5 @@
 class ApplicationController < ActionController::Base
+  include Authentication
   # Only allow modern browsers supporting webp images, web push, badges, import maps, CSS nesting, and CSS :has.
   allow_browser versions: :modern
 end

app/controllers/concerns/authentication.rb

@@ -0,0 +1,52 @@
+module Authentication
+  extend ActiveSupport::Concern
+
+  included do
+    before_action :require_authentication
+    helper_method :authenticated?
+  end
+
+  class_methods do
+    def allow_unauthenticated_access(**options)
+      skip_before_action :require_authentication, **options
+    end
+  end
+
+  private
+    def authenticated?
+      resume_session
+    end
+
+    def require_authentication
+      resume_session || request_authentication
+    end
+
+    def resume_session
+      Current.session ||= find_session_by_cookie
+    end
+
+    def find_session_by_cookie
+      Session.find_by(id: cookies.signed[:session_id]) if cookies.signed[:session_id]
+    end
+
+    def request_authentication
+      session[:return_to_after_authenticating] = request.url
+      redirect_to new_employer_session_path
+    end
+
+    def after_authentication_url
+      session.delete(:return_to_after_authenticating) || root_url
+    end
+
+    def start_new_session_for(user)
+      user.sessions.create!(user_agent: request.user_agent, ip_address: request.remote_ip).tap do |session|
+        Current.session = session
+        cookies.signed.permanent[:session_id] = { value: session.id, httponly: true, same_site: :lax }
+      end
+    end
+
+    def terminate_session
+      Current.session.destroy
+      cookies.delete(:session_id)
+    end
+end

app/controllers/employer/confirmations_controller.rb

@@ -0,0 +1,12 @@
+class Employer::ConfirmationsController < ApplicationController
+  allow_unauthenticated_access
+
+  def show
+    if user = User.find_by(email_confirmation_token: params[:token])
+      user.confirm_email!
+      redirect_to new_employer_session_path, notice: "Email confirmed successfully. You can now sign in."
+    else
+      redirect_to new_employer_session_path, alert: "Invalid confirmation token."
+    end
+  end
+end

app/controllers/employer/job_applications_controller.rb

@@ -0,0 +1,48 @@
+class Employer::JobApplicationsController < ApplicationController
+  allow_unauthenticated_access only: %i[ new create ]
+  before_action :set_job_post, only: [ :index, :show, :new, :create ]
+
+  def index
+    @q = @job_post.job_applications.ransack(params[:q])
+    @job_applications = @q.result.order(created_at: :desc)
+  end
+
+  def show
+    @job_application = @job_post.job_applications.find(params[:id])
+  end
+
+  def new
+    @job_application = @job_post.job_applications.new
+  end
+
+  def create
+    @job_application = @job_post.job_applications.new(job_application_params)
+    @job_application.status = :pending
+
+    if @job_application.save
+      flash[:notice] = "Job application submitted successfully"
+      redirect_back_or_to root_path
+    else
+      render :new, status: :unprocessable_entity
+    end
+  end
+
+  private
+
+  def job_application_params
+    params.expect(
+      job_application: [
+        :name, :email, :phone, :resume,
+        :date_of_birth, :gender, :permanent_address,
+        :current_address, :linkedin_profile,
+        :preferred_start_date, :highest_education,
+        :institution_name, :degree, :graduation_year,
+        :major, :gpa, :experience
+      ]
+    )
+  end
+
+  def set_job_post
+    @job_post = JobPost.find(params[:job_post_id])
+  end
+end

app/controllers/employer/job_posts_controller.rb

@@ -0,0 +1,68 @@
+class Employer::JobPostsController < ApplicationController
+  def index
+    @job_type = params[:job_type].to_i || JobPost.job_types[:full_time]
+    @job_posts = Current.user.organization.job_posts
+      .where(job_type: @job_type)
+      .order(created_at: :desc)
+
+    @stats = {
+      active_opportunities: Current.user.organization.job_posts.active.count,
+      total_applications: Current.user.organization.job_posts.joins(:job_applications).count,
+      closed_opportunities: Current.user.organization.job_posts.closed.count
+    }
+  end
+
+  def show
+    @job_post = Current.user.organization.job_posts.find(params[:id])
+  end
+
+  def new
+    @job_post = JobPost.new
+  end
+
+  def create
+    @job_post = Current.user.organization.job_posts.new(job_post_params)
+    @job_post.user = Current.user
+    @job_post.status = :active
+
+    if @job_post.save
+      redirect_to employer_job_posts_path, notice: "Job post was successfully created."
+    else
+      render :new, status: :unprocessable_entity
+    end
+  end
+
+  def edit
+    @job_post = Current.user.organization.job_posts.find(params[:id])
+  end
+
+  def update
+    @job_post = Current.user.organization.job_posts.find(params[:id])
+
+    if @job_post.update(job_post_params)
+      redirect_to employer_job_posts_path, notice: "Job post was successfully updated."
+    else
+      render :edit, status: :unprocessable_entity
+    end
+  end
+
+  def destroy
+    @job_post = Current.user.organization.job_posts.find(params[:id])
+    @job_post.destroy
+
+    redirect_to employer_job_posts_path, notice: "Job post was successfully deleted."
+  end
+
+  private
+
+  def job_post_params
+    params.expect(
+      job_post: [
+        :title, :job_type, :location, :min_experience, :max_experience,
+        :openings, :work_mode, :application_deadline, :salary_range,
+        :contact_number, :description, :candidate_preference, :status,
+        job_post_skills_attributes: [ [ :skill_id ] ]
+      ]
+    )
+  end
+end