🏢 Office Management System# Office Management System

A full-stack web application for managing office departments and employees with JWT authentication, built with Node.js, Express, MongoDB, and EJS templating.A comprehensive RESTful Office Management System built with Node.js, Express, MongoDB, and EJS templating engine. This system enables efficient management of departments and employees with advanced features like pagination, search, filters, and external API integration for location data.

## 🚀 Features

- Department Management: Create, Read, Update, and Delete departments

- Employee Management: Full CRUD operations for employees

• Hierarchical Structure: Self-referencing supervisor relationships

---- Advanced Search: Search employees by name or email

• Filtering: Filter employees by department or job title

📋 Table of Contents- Pagination: Server-side pagination for efficient data handling

• Location Integration: Dynamic Country, State, and City selection using external API

• Features- Responsive UI: Modern interface built with Tailwind CSS

• Tech Stack- RESTful API: Clean and well-structured API endpoints

• Prerequisites

• Installation## 🛠️ Technology Stack

• Configuration

• Running the Application- Backend: Node.js, Express.js

• Project Structure- Database: MongoDB with Mongoose ODM

• API Documentation- Frontend: EJS (Embedded JavaScript Templates)

• Authentication- Styling: Tailwind CSS

• Database Schema- External API: CountriesNow API for location data

• Testing- Tools: Postman (API Testing)

• Deployment

• License## 📋 Prerequisites

---Before running this project, make sure you have the following installed:

✨ Features- Node.js (v14 or higher)

• MongoDB (v4.4 or higher)

Core Functionality- npm or yarn package manager

• 🔐 JWT Authentication System - Secure login/signup with bcrypt password hashing

• 👥 Employee Management - Complete CRUD operations for employees## 🔧 Installation & Setup

• 🏢 Department Management - Full CRUD functionality for departments

• 🔍 Advanced Search & Filters - Search by name/email, filter by department/job title### 1. Clone the Repository

• 📄 Server-Side Pagination - Efficient data loading with customizable page limits

• 🌍 Location API Integration - Dynamic Country → State → City cascade dropdowns```bash

• 👔 Supervisor Relationships - Self-referencing employee hierarchygit clone

• 📊 Dashboard Statistics - Real-time employee/department counts and insightscd Assignment1

### Security Features

- 🔒 Password hashing using bcrypt (10 salt rounds)### 2. Install Dependencies

- 🎫 JWT tokens with 1-hour expiry

- 🍪 httpOnly cookies for XSS protection```bash

- 🚫 Account lockout after 5 failed login attemptsnpm install

- ✅ Protected routes with authentication middleware```

- 🔐 Environment-based secret key management

### 3. Environment Configuration

### User Experience

- 🎨 Modern UI with Tailwind CSSCreate a `.env` file in the root directory (already provided) and configure:

- 📱 Fully responsive design

- 🎭 Beautiful gradient login/signup pages```env

- 💫 Smooth animations and transitionsPORT=3000

- 🔔 Toast notifications and alertsNODE_ENV=development

- 📋 Form validations (client & server-side)MONGODB_URI=mongodb://localhost:27017/office_management_system

- 🖱️ Intuitive navigation with dropdown menusCOUNTRIES_API_URL=https://countriesnow.space/api/v0.1

APP_NAME=Office Management System

---```



## 🛠️ Tech Stack### 4. Start MongoDB



### BackendMake sure MongoDB is running on your system:

- **Runtime:** Node.js v18+

- **Framework:** Express.js v4.18.2```bash

- **Database:** MongoDB v6+# Windows

- **ODM:** Mongoose v8.0.0net start MongoDB

- **Authentication:** JWT (jsonwebtoken v9.0.0)

- **Password Hashing:** bcryptjs v2.4.3# macOS/Linux

sudo systemctl start mongod

### Frontend```

- **Template Engine:** EJS

- **CSS Framework:** Tailwind CSS v3 (CDN)### 5. Run the Application

- **Icons:** Font Awesome v6.4.0

- **JavaScript:** Vanilla JS (ES6+)**Development Mode** (with auto-restart):

```bash

### External APIsnpm run dev

- **CountriesNow API** - For location data```



---**Production Mode**:

```bash

## 📦 Prerequisitesnpm start

• Node.js (v18 or higher) - Download

• MongoDB (v6 or higher) - DownloadThe application will be available at: http://localhost:3000

• npm (comes with Node.js)

📁 Project Structure

Verify Installation

bash

node --version # Should be v18+office-management-system/

npm --version # Should be v9+├── config/

mongod --version # Should be v6+│ └── database.js # MongoDB connection configuration

│   ├── departmentController.js  # Department business logic

---│   └── employeeController.js    # Employee business logic

├── models/

## 🚀 Installation│   ├── Department.js            # Department schema

│   └── Employee.js              # Employee schema

### 1. Clone or Download├── routes/

```bash│   ├── departmentRoutes.js      # Department API routes

git clone <repository-url>│   └── employeeRoutes.js        # Employee API routes

cd office-management-system├── views/

```│   ├── layouts/

│   │   ├── header.ejs          # Common header template

### 2. Install Dependencies│   │   └── footer.ejs          # Common footer template

```bash│   ├── departments/

npm install│   │   ├── list.ejs            # Department listing page

```│   │   └── form.ejs            # Department create/edit form

│   ├── employees/

### 3. Setup MongoDB│   │   ├── list.ejs            # Employee listing with pagination

```bash│   │   └── form.ejs            # Employee create/edit form

# Start MongoDB service│   └── index.ejs               # Home page

# Windows├── public/

net start MongoDB│   ├── css/

│   │   └── style.css           # Custom styles

# macOS/Linux│   └── js/

sudo systemctl start mongod│       ├── main.js             # Main JavaScript file

```│       └── location-api.js     # Location API integration

├── middleware/

### 4. Configure Environment│   └── errorHandler.js         # Global error handling

├── utils/

Create `.env` file:│   └── apiHelper.js            # External API helper functions

```env├── .env                        # Environment variables

# Server├── .gitignore                  # Git ignore rules

PORT=3000├── app.js                      # Application entry point

NODE_ENV=development├── package.json                # Project dependencies

└── README.md                   # Project documentation

# Database```

MONGODB_URI=mongodb://127.0.0.1:27017/office_management_system

## 🔗 API Endpoints

# JWT

JWT_SECRET=your-secret-key-change-in-production### Departments

JWT_EXPIRE=1h

- `GET /departments` - List all departments

# External API- `GET /departments/new` - Show create form

COUNTRIES_API_URL=https://countriesnow.space/api/v0.1- `POST /departments` - Create new department

```- `GET /departments/:id/edit` - Show edit form

- `PUT /departments/:id` - Update department

### 5. Seed Database (Optional)- `DELETE /departments/:id` - Delete department

```bash

node seed.js### Employees

• GET /employees - List employees (with pagination, search, filter)

---- GET /employees/new - Show create form

• POST /employees - Create new employee

⚙️ Configuration- GET /employees/:id - View employee details

• GET /employees/:id/edit - Show edit form

| Variable | Description | Default |- PUT /employees/:id - Update employee

|----------|-------------|---------|- DELETE /employees/:id - Delete employee

| PORT | Server port | 3000 |

| MONGODB_URI | MongoDB connection string | mongodb://127.0.0.1:27017/office_management_system |### Query Parameters for Employee Listing

| JWT_SECRET | JWT secret key | Required |

| JWT_EXPIRE | Token expiration | 1h |- page - Page number (default: 1)

• limit - Items per page (default: 10)

---- search - Search by name or email

• department - Filter by department ID

🎯 Running the Application- jobTitle - Filter by job title

Development Mode## 📸 Screenshots

npm start*(Screenshots will be added after complete implementation)*

🧪 Testing with Postman

Access Application

http://localhost:3000

```*(Postman collection will be added in final phase)*



### First-Time Setup## 👥 Author

1. Visit `http://localhost:3000`

2. Redirected to `/auth/signup`**Your Name**

3. Create admin account- GitHub: [@yourusername]

4. Auto-login to dashboard- LinkedIn: [Your LinkedIn Profile]

5. Start managing!

## 📄 License

---

This project is licensed under the ISC License.

## 📁 Project Structure

## 🙏 Acknowledgments

office-management-system/- CountriesNow API for location data

├── config/- Express.js team

│ └── database.js # MongoDB connection- MongoDB team

├── controllers/- Tailwind CSS team

│ ├── authController.js # Auth logic

│ ├── departmentController.js # Department CRUD---

│ └── employeeController.js # Employee CRUD

├── middleware/Note: This project is built as part of an internship assignment to demonstrate full-stack development skills with Node.js, Express, and MongoDB.

│ ├── auth.js # JWT middleware │ └── errorHandler.js # Error handling ├── models/ │ ├── Admin.js # Admin schema │ ├── Department.js # Department schema │ └── Employee.js # Employee schema ├── public/ │ ├── css/style.css # Custom styles │ └── js/ │ ├── main.js # Utilities │ └── location-api.js # Location logic ├── routes/ │ ├── authRoutes.js # Auth endpoints │ ├── departmentRoutes.js # Department routes │ ├── employeeRoutes.js # Employee routes │ └── apiRoutes.js # API proxy ├── utils/ │ └── apiHelper.js # API wrapper ├── views/ │ ├── auth/ # Auth pages │ ├── departments/ # Department views │ ├── employees/ # Employee views │ ├── layouts/ # Common layouts │ └── index.ejs # Dashboard ├── .env # Environment vars ├── app.js # Entry point ├── package.json # Dependencies └── seed.js # Seeding script

---

## 📚 API Documentation

### Authentication

#### Signup
```http
POST /auth/signup
Body: name, email, password, confirmPassword
Response: JWT cookie + redirect to dashboard

Login

POST /auth/login
Body: email, password
Response: JWT cookie + redirect to dashboard

Logout

GET /auth/logout
Response: Clear cookie + redirect to login

Departments

GET    /departments              # List all
GET    /departments/new          # Show create form
POST   /departments              # Create new
GET    /departments/:id/edit     # Show edit form
PUT    /departments/:id          # Update
DELETE /departments/:id          # Delete

Employees

GET    /employees                # List with pagination/filters
GET    /employees/new            # Show create form
POST   /employees                # Create new
GET    /employees/:id            # View details
GET    /employees/:id/edit       # Show edit form
PUT    /employees/:id            # Update
DELETE /employees/:id            # Delete

Query Parameters

• page - Page number (default: 1)
• search - Search by name/email
• department - Filter by department ID
• jobTitle - Filter by job title

Location API

GET /api/countries               # Get all countries
GET /api/states/:country         # Get states by country
GET /api/cities/:country/:state  # Get cities by state

---

🔐 Authentication

JWT Flow

1. Signup → Password hashed → JWT token → httpOnly cookie
2. Login → Password verified → JWT token → httpOnly cookie
3. Access Protected Route → Token verified → Access granted
4. Logout → Cookie cleared → Redirect to login

Security Features

✅ bcrypt password hashing (10 rounds)
✅ JWT with 1-hour expiry
✅ httpOnly cookies (XSS prevention)
✅ Account lockout (5 failed attempts)
✅ Login attempt tracking
✅ Environment-based secrets

---

💾 Database Schema

Admin

{
  name: String,
  email: String (unique),
  password: String (hashed),
  isActive: Boolean,
  lastLogin: Date,
  loginAttempts: Number,
  lockUntil: Date
}

Department

{
  name: String,
  code: String (unique),
  description: String,
  isActive: Boolean
}

Employee

{
  firstName: String,
  lastName: String,
  email: String (unique),
  phone: String,
  jobTitle: String,
  department: ObjectId (ref: Department),
  supervisor: ObjectId (ref: Employee),
  salary: Number,
  dateOfJoining: Date,
  country: String,
  state: String,
  city: String,
  address: String,
  isActive: Boolean
}

---

🧪 Testing

Manual Testing

1. Auth Flow:

   • Signup new admin
   • Logout and login
   • Try wrong password (test lockout)
   • Access protected routes without login

2. CRUD Operations:

   • Create/Edit/Delete departments
   • Create/Edit/Delete employees
   • Test search and filters
   • Test pagination

3. Location Cascade:

   • Select country → states load
   • Select state → cities load
   • Edit mode → values restore

Postman Collection

See AUTH_DOCUMENTATION.md for detailed API testing guide.

---

🚀 Deployment

Environment Setup

NODE_ENV=production
MONGODB_URI=mongodb+srv://...
JWT_SECRET=strong-random-key

Heroku

heroku create app-name
heroku config:set MONGODB_URI=...
heroku config:set JWT_SECRET=...
git push heroku main

Security Checklist

• Change JWT_SECRET to strong random string
• Enable HTTPS (secure cookies)
• Use MongoDB Atlas (cloud database)
• Set NODE_ENV=production
• Configure CORS if needed
• Enable rate limiting
• Set up logging

---

📄 License

This project is licensed under the MIT License.

---

👨‍💻 Author

Internship Assignment Project

Built with ❤️ using Node.js, Express, MongoDB, and JWT

---

🙏 Acknowledgments

• Node.js & Express.js communities
• MongoDB documentation
• Tailwind CSS framework
• CountriesNow API
• Font Awesome icons

---

📞 Support

For issues or questions:

• Check documentation in AUTH_DOCUMENTATION.md
• Review code comments
• Test with provided seed data

---

⭐ Production-Ready Office Management System ⭐

Complete with JWT Authentication, CRUD Operations, and Modern UI