Async AI interviews for modern hiring. Candidates train an AI twin from their CV, links, and personal Q&A; recruiters (or anyone with a public link) run conversational interviews against that twin, then leave match scores and feedback.
Demo / work in progress — This repository is a functional prototype, not a finished product. Flows, copy, rate limits, and infrastructure may change. Use the hosted demo to explore; expect rough edges and missing polish.
Live demo: https://getinterv.web.app/
| Role | Capabilities |
|---|---|
| Candidate | Sign in, build a profile, train the AI twin (ingest + RAG), share a public profile link, run a test interview, manage visibility, review interviews and match scores on a dashboard, manage Account (password, reset profile, delete account) |
| Recruiter | Sign in, complete a recruiter profile, search published candidates, start/restart interviews, leave feedback and optional contact details, manage Account (password, delete account) |
| Visitor | Open a candidate’s public link and start an interview (when the candidate has enabled their public profile) |
The product goal is calendar-free screening: the twin answers in the candidate’s voice using retrieved context, while humans review transcripts and scores afterward.
Interv’s “AI twin” is not a single prompt — it combines profile data in Firestore, vector RAG, and streaming Gemini chat.
When a candidate clicks Save & train AI on Train profile:
- The Angular app saves
profiles/{uid}in Firestore (name, title, summary, CV text, links, personal Q&A, work preferences, etc.). - The app calls
POST /ingest/{profileId}on the FastAPI backend (authenticated as the profile owner). - The backend:
- Validates and trims payloads (
backend/services/request_validation.py,api_limits.py). - Scrapes GitHub/website URLs where possible (
link_scraper.py); each link’s description note is always included in training (even when a URL cannot be fetched). LinkedIn URLs are not scraped. - Uses Gemini (
GEMINI_PROFILE_MODEL) to extract 8–15 skills from CV, summary, Q&A, and link notes, and to generate a Profile overview (1–2 paragraphs of work experience from the CV). - Chunks CV, Q&A answers, and link content (notes + scraped text) into Chroma (
backend/services/rag.py). - Saves
skills,careerOverview(CV-based overview only), andragEnabledon the profile document. The Summary field you enter on Train profile is shown under your role on the public page as-is.
- Validates and trims payloads (
The train screen shows a privacy notice: CV, Q&A, link notes, and scraped page content are sent to Google’s Gemini API to power the twin and profile copy.
During a live interview (public link, recruiter flow, or candidate test interview):
- The Angular InterviewFacade opens a WebSocket to
/chat/ws/{profileId}/{interviewId}. - For each recruiter message, the backend:
- Loads the profile from Firestore.
- Retrieves relevant chunks with RAG (
get_relevant_context) — query embedding + Chroma similarity search, timeout ~12s. - Builds a system prompt that instructs the model to speak in first person as the candidate, grounded in retrieved context (
build_system_promptinbackend/routers/chat.py). - Streams the reply with Gemini (
GEMINI_CHAT_MODEL, defaultgemini-3-flash-preview) back over the WebSocket.
- Messages and interview state are persisted under
profiles/{id}/interviews/{interviewId}in Firestore. - Turn limits, rate limits, and suggested starter questions are enforced on both client and server.
- Recruiters can submit match score and feedback (stored on the interview document).
- Candidates see scores and transcripts on the dashboard; self test interviews do not require recruiter feedback.
- Optional AI summary and suggested-question endpoints use Gemini with separate quotas (
usage_rate_limit.py).
backend/
├── main.py # FastAPI app, CORS (includes getinterv.web.app)
├── routers/
│ ├── ingest.py # Profile training → RAG + skills
│ ├── chat.py # WebSocket interview twin
│ ├── interviews.py # CRUD, summaries, suggested questions
│ └── profiles.py # Personal Q&A generation, etc.
└── services/
├── gemini.py # Google GenAI client (chat + profile models)
├── rag.py # Chunk, ingest, retrieve
├── vector_store.py # Chroma per profile
├── skills.py # CV → skills via Gemini
└── link_scraper.py # Optional link content for RAG
Copy backend/.env.example → backend/.env and set at minimum:
GEMINI_API_KEY— required for train + chatFIREBASE_SERVICE_ACCOUNT_KEY— path or JSON for Admin SDK (Firestore, auth verification)- Chroma must be available (see
vector_store.py; ingest skips RAG if the store is down)
Without a trained profile (name, title, summary, CV + successful ingest), interviews cannot start — the UI blocks Test interview until the profile is complete.
Screenshots below show the path before “Save & train AI” has produced a ready twin: navigation is visible, but test interview stays disabled and the dashboard warns that the twin is not active.
Landing page explains candidates vs recruiters and the three-step flow (train → interview → match score).
Candidate authentication (email/password or Google).
Where AI training happens: CV text, personal Q&A, links, work preferences, and the Gemini privacy banner. Until this form is saved and ingest succeeds, the twin is not ready.
Shows “Complete your profile to activate your twin” and empty interview stats. Test interview in the header is disabled.
Test interview button is disabled with the same warning; Train profile is the primary call to action.
After training, the same pages enable test interview, public link copy, visibility toggles, and live AI chat.
Signed-in users open Account from the header (link, not a dropdown). Routes:
/candidate/account— candidate account page/recruiter/account— recruiter account page
Implemented in @interv/account (libs/account).
| Section | Candidate | Recruiter |
|---|---|---|
| Password | Add password (Google-only) or change password (email sign-in) | Same |
| Reset profile | Clears profile fields, interviews, and RAG data; keeps login | — |
| Delete account | Removes profile, interviews, Firestore user doc, and Firebase Auth user | Same |
Password linking uses Firebase linkWithCredential for Google-only accounts and reauthentication + updatePassword when a password already exists. Delete/reset call the FastAPI accounts API (backend/routers/accounts.py).
Login and register show inline error alerts for wrong credentials, duplicate email, and Google-only accounts. Forms use (submit) with preventDefault() so credentials are not sent in the URL.
| Layer | Technologies |
|---|---|
| Frontend | Angular 21 (standalone, signals, @if / @for), Nx workspace, Tailwind CSS 4, DaisyUI |
| State | NgRx Signal Stores (@ngrx/signals) — facades per domain |
| Auth & data | Firebase Auth, Firestore, Storage |
| API | Python FastAPI, Uvicorn |
| AI | Google Gemini (GenAI SDK), Chroma vector store, custom RAG |
| Realtime | WebSockets (interview streaming) |
| Hosting | Firebase Hosting (demo: getinterv.web.app) |
| Tests | Vitest (libs), Playwright (e2e) |
Nx workspace with path aliases in tsconfig.base.json:
interv/
├── src/ # Shell app (routes, guards, environments)
├── public/ # Static assets (favicon.svg)
├── libs/
│ ├── shared/ # UI (header, logo, confirm modal), models, constants
│ ├── home/ # Marketing landing
│ ├── auth/ # Login / register (candidate + recruiter)
│ ├── account/ # Account page (password, reset profile, delete)
│ ├── candidate-profile/ # Train profile, public/owner profile views
│ ├── candidate-dashboard/# Dashboard, interview list & detail
│ ├── interview/ # Interview UI, setup, summary, transcript
│ ├── recruiter/ # Recruiter dashboard, candidates, profile
│ ├── recruiter-feedback/ # Feedback panel
│ └── states/ # Signal stores + services
│ ├── auth/ # AuthStore, AuthFacade, AuthSyncService, AccountService
│ ├── profile/ # Profile load/save, ingestToRAG
│ ├── interview/ # WebSocket interview facade
│ ├── dashboard/
│ └── recruiter/
├── backend/ # FastAPI AI + interview API
├── e2e/ # Playwright tests + e2e/.env (gitignored)
├── docs/screenshots/ # README images
├── firestore.rules
└── .github/workflows/ # ci.yml (lint, test, e2e), deploy-firebase-hosting.yml
Routing (see src/app/app.routes.ts):
/— home/login,/register— candidate auth/recruiter/login,/recruiter/register— recruiter auth/recruiter/account,/recruiter/profile,/recruiter/dashboard,/recruiter/candidates, …/candidate/account,/candidate/dashboard,/candidate/train-profile,/candidate/my-profile,/candidate/test-interview/candidate/:profileId— public profile + interview entry
- Node.js
^20.19/^22.12/>=24(seepackage.json) - Python 3.11+ for the backend
- Firebase project (Auth, Firestore, Storage) matching
src/environments/environment.ts GEMINI_API_KEYand Firebase service account for the API
npm install
cd backend
python -m venv venv
# Windows: venv\Scripts\activate
# macOS/Linux: source venv/bin/activate
pip install -r requirements.txt
cp .env.example .env
# Edit backend/.env — GEMINI_API_KEY, FIREBASE_SERVICE_ACCOUNT_KEYEnvironment files (all gitignored except *.env.example):
| File | Purpose |
|---|---|
backend/.env |
API keys, Firebase Admin SDK, rate limits |
e2e/.env |
Playwright test users (E2E_CANDIDATE_*, E2E_RECRUITER_*) — copy from e2e/.env.example |
.env (repo root) |
Optional local overrides only if you use them |
Never commit real credentials. See .gitignore and GitHub Actions secrets for CI.
npm run start:all- App: http://localhost:4200
- API: http://127.0.0.1:8000 (
apiUrl/wsUrluse127.0.0.1on purpose — avoids IPv6 WebSocket issues)
Or separately:
npx nx serve interv
npm run start:backendnpm run build:interv:prod
npm run deploy:firebaseDeploy Firestore rules when they change: npm run deploy:firestore:rules.
E2E credentials must live in environment variables (e2e/.env locally, GitHub Actions secrets in CI), never in the repo or URLs.
Local setup
cp e2e/.env.example e2e/.env
# Add dedicated Firebase Auth test users (candidate + recruiter)
npm run e2e:install-browsers # first time only
npm run e2ee2e/.env is gitignored. Playwright loads it via e2e/src/auth-helpers.ts.
Create separate Firebase users: candidate via /register, recruiter via /recruiter/register. Using a candidate account for recruiter e2e will fail with a clear sign-in error.
GitHub Actions (CI)
Add repository secrets (Settings → Secrets and variables → Actions):
| Secret | Purpose |
|---|---|
E2E_CANDIDATE_EMAIL / E2E_CANDIDATE_PASSWORD |
Candidate login for protected-page tests |
E2E_RECRUITER_EMAIL / E2E_RECRUITER_PASSWORD |
Recruiter login |
FIREBASE_SERVICE_ACCOUNT_KEY |
Backend Admin SDK JSON (same as local backend/.env) |
GEMINI_API_KEY |
Optional; only needed if e2e covers train/chat |
Do not put these on Railway unless you run Playwright against a Railway-deployed URL. CI starts local app + API via e2e/playwright.config.ts webServer.
Workflows:
.github/workflows/ci.yml— lint, unit tests, Playwright e2e (Chromium) on push/PR.github/workflows/deploy-firebase-hosting.yml— production hosting deploy (FIREBASE_TOKEN)
E2E coverage
| Spec | Auth required |
|---|---|
public-pages.spec.ts, public-routes.spec.ts, auth-redirects.spec.ts |
No |
authenticated-candidate.spec.ts, authenticated-recruiter.spec.ts |
Yes (e2e/.env) |
npx nx build interv
npx nx test shared
npx nx graph
npx nx e2e e2eThe app is signal-first. Priorities: signals → Observables (at boundaries) → Promises (one-shot IO).
| Concern | Approach |
|---|---|
| UI / shared state | NgRx Signal Store (AuthStore, ProfileStore, …) + facades; templates read signals |
| Firebase Auth stream | authState() Observable → AuthSyncService keeps AuthStore updated app-wide |
| Auth token for API calls | Shared currentFirebaseUserOrNull() in @interv/shared (race with timeout) |
| Route guards | Return Observable (authState + of() / from()) — required by Angular router |
| Firestore / fetch / ingest | async/await in services and store methods |
| WebSocket interview | Callbacks → signal patches in InterviewStore |
Guards still call setUser() before activating a protected route so role is loaded from Firestore before navigation completes (in addition to the background sync).
- Frontend API URL:
src/environments/environment.ts(dev) andenvironment.prod.ts(production build). - CORS:
backend/main.pyallowshttps://getinterv.web.appby default; add origins viaBACKEND_CORS_ORIGINS. - Rate limits: Ingest cooldown, per-hour caps for Q&A generation and suggested questions —
backend/.env.example. - Field limits: Shared constants in
libs/shared/.../field-limits.tsand mirrored inbackend/services/api_limits.py.
Interv is a demonstration of AI-assisted hiring workflows. Do not put passwords, secrets, or highly sensitive personal data in profiles. Model outputs can be wrong or incomplete; always verify important decisions with humans. Not legal or HR advice.
MIT (see repository license file if present).