Authentication
MockConnect uses OAuth sign-in and enforces separate candidate and interviewer roles so users cannot switch role identity after registration with the same account.
Trust
Security for role-based interview workflows.
MockConnect is designed around role separation, backend-mediated data access, and careful handling of interview preparation materials.
Candidate and interviewer role separation
Backend API access boundaries
Sensitive resume and feedback handling
Data access
Frontend workflows access profile and marketplace data through the backend API. Database access stays behind backend and package boundaries.
Uploads
Resume uploads are stored through the configured file provider and queued for backend parsing. Uploaded documents should be treated as sensitive candidate or interviewer profile material.
Reporting
Security concerns can be reported to security@mockconnect.dev.