gak112 / DearJobTesting

1 stars 0 forks source link

[WEB] [EMPLOYER -ShareCandidate] Incorrect Share Link Generation on Profiles Search Page for Employers #850

Open eraytech opened 1 year ago

eraytech commented 1 year ago

Steps:

  1. Open a web browser and go to "https://dearjob.org".
  2. Click on the "LOGIN" link on the homepage.
  3. Log in using the registered EMPLOYER email ID and password, then click the login button or press enter.
  4. After successful login, perform a search on the homepage with jobseeker name/skills or without entering specific criteria.
  5. Access the "Profiles Search" page, which displays a list of jobseekers sorted based on subscription.

Actual Result:

On the "Profiles Search" page, the share button for sharing a candidate's profile generates an incorrect link, leading to "https://dearjob.org/#/" instead of providing a shareable link specific to the viewed jobseeker's profile.

Expected Result:

Clicking the share button on the "Profiles Search" page should generate a correct and shareable link that directs others to the specific jobseeker's profile being viewed. The link should accurately reflect the details of the jobseeker's profile, allowing employers to easily share candidate information with others. This ensures a seamless and accurate sharing experience for employers when considering potential candidates.

image image

eraytech commented 1 year ago

1.jobseeker able to open the shared candaite profile, which should be restricted as jobseeker should not have privilages of employer or staffing consultancy

when jobseeker tried to click on such links, it should show:

Attention:

"This area is exclusively designated for authorized staffing consultancies and employers to access candidate profiles. As a job seeker, access to this section is not permitted."

2.if authorised user access this link, after sucesfful login it should open the link , instead of again copying pasting the link again to acess