From dfd237755dc3142c06170607fd03ef9503f6844c Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 18 Feb 2025 12:11:19 -0600
Subject: [PATCH 01/70] pushing to pull on other device

---
 src/registrar/assets/src/js/getgov/main.js    |  2 +
 src/registrar/forms/domain_request_wizard.py  | 64 +++++++++++++++++-
 ...equest_feb_naming_requirements_and_more.py | 23 +++++++
 src/registrar/models/domain_request.py        | 20 ++++++
 .../domain_request_dotgov_domain.html         | 66 ++++++++++++++-----
 src/registrar/views/domain_request.py         | 45 +++++++++++--
 6 files changed, 197 insertions(+), 23 deletions(-)
 create mode 100644 src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py

diff --git a/src/registrar/assets/src/js/getgov/main.js b/src/registrar/assets/src/js/getgov/main.js
index a077da929..67db06376 100644
--- a/src/registrar/assets/src/js/getgov/main.js
+++ b/src/registrar/assets/src/js/getgov/main.js
@@ -25,6 +25,8 @@ nameserversFormListener();
 hookupYesNoListener("other_contacts-has_other_contacts",'other-employees', 'no-other-employees');
 hookupYesNoListener("additional_details-has_anything_else_text",'anything-else', null);
 hookupYesNoListener("additional_details-has_cisa_representative",'cisa-representative', null);
+hookupYesNoListener("feb_naming_requirements", "", "domain-naming-requirements-details-container");
+
 initializeUrbanizationToggle();
 
 userProfileListener();
diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index d7a02b124..91c8ccb9b 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -607,6 +607,68 @@ class DotGovDomainForm(RegistrarForm):
         },
     )
 
+class ExecutiveNamingRequirementsYesNoForm(BaseYesNoForm):
+    """
+    Form for verifying if the domain request meets the Federal Executive Branch domain naming requirements.
+    If the "no" option is selected, details must be provided via the separate details form.
+    """
+
+    field_name = "feb_naming_requirements"
+
+    @property
+    def form_is_checked(self):
+        """
+        Determines the initial checked state of the form based on the domain_request's attributes.
+        """
+        return self.domain_request.feb_naming_requirements
+    
+    def clean(self):
+        # Skip validation if this form is not applicable.
+        if not (self.domain_request.is_federal() and self.domain_request.federal_type == "Executive"):
+            # If not executive, default to "yes"
+            self.cleaned_data["feb_naming_requirements"] = "yes"
+            return self.cleaned_data
+
+        # Only validate the yes/no field here; details are handled by the separate details form.
+        cleaned = super().clean()
+        return cleaned
+
+    def to_database(self, obj: DomainRequest):
+        """
+        Saves the cleaned data from this form to the DomainRequest object.
+        """
+        if not self.is_valid():
+            return
+        obj.feb_naming_requirements = (self.cleaned_data["feb_naming_requirements"] == "yes")
+        obj.save()
+
+    @classmethod
+    def from_database(cls, obj):
+        """
+        Retrieves initial data from the DomainRequest object to prepopulate the form.
+        """
+        initial = {}
+        if hasattr(obj, "feb_naming_requirements"):
+            initial["feb_naming_requirements"] = "yes" if obj.feb_naming_requirements else "no"
+        return initial
+    
+class ExecutiveNamingRequirementsDetailsForm(BaseDeletableRegistrarForm):
+    JOIN = "feb_naming_requirements_details"
+
+    # Text area for additional details; rendered conditionally when "no" is selected.
+    feb_naming_requirements_details = forms.CharField(
+        widget=forms.Textarea(attrs={'maxlength': '2000'}),
+        max_length=2000,
+        required=True,
+        label="",
+        help_text="Maximum 2000 characters allowed.",
+    )
+
+    def to_database(self, obj: DomainRequest):
+        if not self.is_valid():
+            return
+        obj.feb_naming_requirements_details = self.cleaned_data["feb_naming_requirements_details"]
+        obj.save()
 
 class PurposeForm(RegistrarForm):
     purpose = forms.CharField(
@@ -625,7 +687,7 @@ class PurposeForm(RegistrarForm):
         ],
         error_messages={"required": "Describe how you’ll use the .gov domain you’re requesting."},
     )
-
+    
 
 class OtherContactsYesNoForm(BaseYesNoForm):
     """The yes/no field for the OtherContacts form."""
diff --git a/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py b/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py
new file mode 100644
index 000000000..32634d8ee
--- /dev/null
+++ b/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py
@@ -0,0 +1,23 @@
+# Generated by Django 4.2.17 on 2025-02-13 22:41
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ("registrar", "0140_alter_portfolioinvitation_additional_permissions_and_more"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="domainrequest",
+            name="feb_naming_requirements",
+            field=models.BooleanField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="feb_naming_requirements_details",
+            field=models.TextField(blank=True, null=True),
+        ),
+    ]
diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index 1cca3742f..ceaa19e77 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -501,6 +501,16 @@ class DomainRequest(TimeStampedModel):
         on_delete=models.PROTECT,
     )
 
+    feb_naming_requirements = models.BooleanField(
+        null=True,
+        blank=True,
+    )
+
+    feb_naming_requirements_details = models.TextField(
+        null=True,
+        blank=True,
+    )
+
     alternative_domains = models.ManyToManyField(
         "registrar.Website",
         blank=True,
@@ -1388,6 +1398,16 @@ class DomainRequest(TimeStampedModel):
         if self.has_anything_else_text is None or self.has_cisa_representative is None:
             has_details = False
         return has_details
+    
+    def is_feb(self) -> bool:
+        """Is this domain request for a Federal Executive Branch agency?"""
+        # if not self.generic_org_type:
+        #     # generic_org_type is either blank or None, assume no
+        #     return False
+        # if self.generic_org_type == DomainRequest.OrganizationChoices.FEDERAL:
+        #     return self.federal_type == DomainRequest.FederalChoices.EXECUTIVE
+        # return False
+        return True # TODO: this is for testing, remove before merging
 
     def is_federal(self) -> Union[bool, None]:
         """Is this domain request for a federal agency?
diff --git a/src/registrar/templates/domain_request_dotgov_domain.html b/src/registrar/templates/domain_request_dotgov_domain.html
index 91373609d..d58815e3b 100644
--- a/src/registrar/templates/domain_request_dotgov_domain.html
+++ b/src/registrar/templates/domain_request_dotgov_domain.html
@@ -2,19 +2,19 @@
 {% load static field_helpers url_helpers %}
 
 {% block form_instructions %}
-  <p>Before requesting a .gov domain, please make sure it meets <a class="usa-link" rel="noopener noreferrer" target="_blank" href="{% public_site_url 'domains/choosing' %}">our naming requirements</a>. Your domain name must:
+  <p>Before requesting a .gov domain, please make sure it meets <a class="usa-link" rel="noopener noreferrer" target="_blank" href="{% if is_feb %}https://get.gov/domains/executive-branch-guidance/{% else %}{% public_site_url 'domains/choosing' %}{% endif %}">our naming requirements</a>. Your domain name must:
     <ul class="usa-list">
       <li>Be available </li>
-      <li>Relate to your organization’s name, location, and/or services </li>
+      <li>Relate to your organization's name, location, and/or services </li>
       <li>Be unlikely to mislead or confuse the general public (even if your domain is only intended for a specific audience) </li>
     </ul>
   </p>
 
   <p>Names that <em>uniquely apply to your organization</em> are likely to be approved over names that could also apply to other organizations. 
-    {% if not is_federal %}In most instances, this requires including your state’s two-letter abbreviation.{% endif %}</p> 
+    {% if not is_federal %}In most instances, this requires including your state's two-letter abbreviation.{% endif %}</p> 
   
   {% if not portfolio %}
-  <p>Requests for your organization’s initials or an abbreviated name might not be approved, but we encourage you to request the name you want.</p> 
+  <p>Requests for your organization's initials or an abbreviated name might not be approved, but we encourage you to request the name you want.</p> 
   {% endif %}
 
   <p>Note that <strong>only federal agencies can request generic terms</strong> like
@@ -41,9 +41,10 @@
     <legend>
       <h2>What .gov domain do you want?</h2>
     </legend>
-
-    <p id="domain_instructions" class="margin-top-05">After you enter your domain, we’ll make sure it’s available and that it meets some of our naming requirements. If your domain passes these initial checks, we’ll verify that it meets all our requirements after you complete the rest of this form.</p>
-
+    <p id="domain_instructions" class="margin-top-05">
+      After you enter your domain, we'll make sure it's available and that it meets some of our naming requirements. 
+      If your domain passes these initial checks, we'll verify that it meets all our requirements after you complete the rest of this form.
+    </p>
     {% with attr_aria_labelledby="domain_instructions domain_instructions2" attr_aria_describedby="id_dotgov_domain-requested_domain--toast" %}
       {# attr_validate / validate="domain" invokes code in getgov.min.js #}
       {% with append_gov=True attr_validate="domain" add_label_class="usa-sr-only" %}
@@ -63,10 +64,9 @@
     <legend>
       <h2>Alternative domains (optional)</h2>
     </legend>
-
-    <p id="alt_domain_instructions" class="margin-top-05">Are there other domains you’d like if we can’t give
-    you your first choice?</p>
-
+    <p id="alt_domain_instructions" class="margin-top-05">
+      Are there other domains you'd like if we can't give you your first choice?
+    </p>
     {% with attr_aria_labelledby="alt_domain_instructions" %}
       {# Will probably want to remove blank-ok and do related cleanup when we implement delete #}
       {% with attr_validate="domain" append_gov=True add_label_class="usa-sr-only" add_class="blank-ok alternate-domain-input" %}
@@ -79,13 +79,12 @@
         {% endfor %}
       {% endwith %}
     {% endwith %}
-
     <button type="button" value="save" class="usa-button usa-button--unstyled usa-button--with-icon" id="add-form">
       <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24" height="24">
-        <use xlink:href="{%static 'img/sprite.svg'%}#add_circle"></use>
-      </svg><span class="margin-left-05">Add another alternative</span>
+        <use xlink:href="{% static 'img/sprite.svg' %}#add_circle"></use>
+      </svg>
+      <span class="margin-left-05">Add another alternative</span>
     </button>
-
     <div class="margin-bottom-3">
       <button
       id="validate-alt-domains-availability"
@@ -94,10 +93,41 @@
       validate-for="{{ forms.1.requested_domain.auto_id }}"
       >Check availability</button>
     </div>
-    
+    <p class="margin-top-05">
+      If you're not sure this is the domain you want, that's ok. You can change the domain later.
+    </p>
+  </fieldset>
 
-  <p class="margin-top-05">If you’re not sure this is the domain you want, that’s ok. You can change the domain later. </p>
+  {{ forms.2.management_form }}
+  {{ forms.3.management_form }}
 
-</fieldset>
+  {% if is_feb %}
+    <fieldset class="usa-fieldset margin-top-0 dotgov-domain-form">
+      <legend>
+        <h2>Does this submission meet each domain naming requirement?</h2>
+      </legend>
+      <p id="dotgov-domain-naming-requirements" class="margin-top-05">
+        OMB will review each request against the domain 
+        <a class="usa-link" rel="noopener noreferrer" target="_blank" href="https://get.gov/domains/executive-branch-guidance/">
+          naming requirements for executive branch agencies
+        </a>. 
+        Agency submissions are expected to meet each requirement.
+      </p>
+      {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
+        {% input_with_errors forms.2.feb_naming_requirements %}
+      {% endwith %}
+
+      {# Conditional Details Field – only shown when the executive naming requirements radio is "False" #}
+      <div id="domain-naming-requirements-details-container" class="conditional-panel" style="display: none;">
+        <p class="usa-label">
+          Provide details below <span class="usa-label--required">*</span>
+        </p>
+        {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+          {% input_with_errors forms.3.feb_naming_requirements_details %}
+        {% endwith %}
+        <p class="usa-hint">Maximum 2000 characters allowed.</p>
+      </div>
+    </fieldset>
+  {% endif %}
 
 {% endblock %}
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 3248c1368..83662505f 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -466,6 +466,7 @@ class DomainRequestWizard(DomainRequestWizardPermissionView, TemplateView):
                 "requested_domain__name": requested_domain_name,
             }
         context["domain_request_id"] = self.domain_request.id
+        context["is_executive"] = self.domain_request.is_federal() and self.domain_request.federal_type == "Executive"
         return context
 
     def get_step_list(self) -> list:
@@ -652,14 +653,52 @@ class CurrentSites(DomainRequestWizard):
 
 class DotgovDomain(DomainRequestWizard):
     template_name = "domain_request_dotgov_domain.html"
-    forms = [forms.DotGovDomainForm, forms.AlternativeDomainFormSet]
+    forms = [
+        forms.DotGovDomainForm, 
+        forms.AlternativeDomainFormSet,
+        forms.ExecutiveNamingRequirementsYesNoForm,
+        forms.ExecutiveNamingRequirementsDetailsForm,
+    ]
 
     def get_context_data(self):
         context = super().get_context_data()
         context["generic_org_type"] = self.domain_request.generic_org_type
-        context["federal_type"] = self.domain_request.federal_type
+        context["is_feb"] = self.domain_request.is_feb()
         return context
 
+    def is_valid(self, forms_list: list) -> bool:
+        """
+        Expected order of forms_list:
+          0: DotGovDomainForm
+          1: AlternativeDomainFormSet
+          2: ExecutiveNamingRequirementsYesNoForm
+          3: ExecutiveNamingRequirementsDetailsForm
+        """
+        # If not a federal executive branch agency, mark executive-related forms for deletion.
+        if not (self.domain_request.is_feb()):
+            forms_list[2].mark_form_for_deletion()
+            forms_list[3].mark_form_for_deletion()
+            return all(form.is_valid() for form in forms_list)
+
+        valid = True
+        yesno_form = forms_list[2]
+        details_form = forms_list[3]
+
+        if yesno_form.cleaned_data.get("feb_naming_requirements") == "yes":
+            # If the user selects "yes", no details are needed.
+            details_form.mark_form_for_deletion()
+            valid = all(
+                form.is_valid() for i, form in enumerate(forms_list) if i != 3
+            )
+        else:
+            # "No" was selected – details are required.
+            valid = (
+                yesno_form.is_valid() and 
+                details_form.is_valid() and 
+                all(form.is_valid() for i, form in enumerate(forms_list) if i not in [2, 3])
+            )
+        return valid
+
 
 class Purpose(DomainRequestWizard):
     template_name = "domain_request_purpose.html"
@@ -711,9 +750,7 @@ class OtherContacts(DomainRequestWizard):
 
 
 class AdditionalDetails(DomainRequestWizard):
-
     template_name = "domain_request_additional_details.html"
-
     forms = [
         forms.CisaRepresentativeYesNoForm,
         forms.CisaRepresentativeForm,

From 292c08902a01daf43c69148ff7190d5cd41b0d22 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Fri, 21 Feb 2025 15:28:50 -0600
Subject: [PATCH 02/70] add new FEB questions to gov domain request wizard page

---
 src/registrar/assets/src/js/getgov/main.js   |  2 +-
 src/registrar/forms/domain_request_wizard.py | 29 ++++++++++++++++++--
 src/registrar/models/domain_request.py       | 13 ++++-----
 src/registrar/views/domain_request.py        | 22 +++++++++------
 4 files changed, 47 insertions(+), 19 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/main.js b/src/registrar/assets/src/js/getgov/main.js
index 67db06376..796e6f815 100644
--- a/src/registrar/assets/src/js/getgov/main.js
+++ b/src/registrar/assets/src/js/getgov/main.js
@@ -25,7 +25,7 @@ nameserversFormListener();
 hookupYesNoListener("other_contacts-has_other_contacts",'other-employees', 'no-other-employees');
 hookupYesNoListener("additional_details-has_anything_else_text",'anything-else', null);
 hookupYesNoListener("additional_details-has_cisa_representative",'cisa-representative', null);
-hookupYesNoListener("feb_naming_requirements", "", "domain-naming-requirements-details-container");
+hookupYesNoListener("dotgov_domain-feb_naming_requirements", null, "domain-naming-requirements-details-container");
 
 initializeUrbanizationToggle();
 
diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index 91c8ccb9b..98ccc9122 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -625,8 +625,11 @@ class ExecutiveNamingRequirementsYesNoForm(BaseYesNoForm):
     def clean(self):
         # Skip validation if this form is not applicable.
         if not (self.domain_request.is_federal() and self.domain_request.federal_type == "Executive"):
-            # If not executive, default to "yes"
-            self.cleaned_data["feb_naming_requirements"] = "yes"
+            # Initialize cleaned_data if it doesn't exist
+            if not hasattr(self, 'cleaned_data'):
+                self.cleaned_data = {}
+            # If not executive, default to None
+            self.cleaned_data["feb_naming_requirements"] = None
             return self.cleaned_data
 
         # Only validate the yes/no field here; details are handled by the separate details form.
@@ -639,7 +642,7 @@ class ExecutiveNamingRequirementsYesNoForm(BaseYesNoForm):
         """
         if not self.is_valid():
             return
-        obj.feb_naming_requirements = (self.cleaned_data["feb_naming_requirements"] == "yes")
+        obj.feb_naming_requirements = (self.cleaned_data.get("feb_naming_requirements", None) == "yes")
         obj.save()
 
     @classmethod
@@ -660,6 +663,7 @@ class ExecutiveNamingRequirementsDetailsForm(BaseDeletableRegistrarForm):
         widget=forms.Textarea(attrs={'maxlength': '2000'}),
         max_length=2000,
         required=True,
+        error_messages={"required": ("This field is required.")},
         label="",
         help_text="Maximum 2000 characters allowed.",
     )
@@ -670,6 +674,25 @@ class ExecutiveNamingRequirementsDetailsForm(BaseDeletableRegistrarForm):
         obj.feb_naming_requirements_details = self.cleaned_data["feb_naming_requirements_details"]
         obj.save()
 
+    def is_valid(self):
+        """
+        Validate that details are provided when required.
+        If the form is marked for deletion, bypass validation.
+        """
+        if self.form_data_marked_for_deletion:
+            return True
+            
+        is_valid = super().is_valid()
+        if not is_valid:
+            return False
+
+        # Check if the details field has content
+        details = self.cleaned_data.get('feb_naming_requirements_details', '').strip()
+        if not details:
+            return False
+
+        return True
+
 class PurposeForm(RegistrarForm):
     purpose = forms.CharField(
         label="Purpose",
diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index ceaa19e77..e90edfa72 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -1401,13 +1401,12 @@ class DomainRequest(TimeStampedModel):
     
     def is_feb(self) -> bool:
         """Is this domain request for a Federal Executive Branch agency?"""
-        # if not self.generic_org_type:
-        #     # generic_org_type is either blank or None, assume no
-        #     return False
-        # if self.generic_org_type == DomainRequest.OrganizationChoices.FEDERAL:
-        #     return self.federal_type == DomainRequest.FederalChoices.EXECUTIVE
-        # return False
-        return True # TODO: this is for testing, remove before merging
+        if not self.generic_org_type:
+            # generic_org_type is either blank or None, assume no
+            return False
+        if self.generic_org_type == DomainRequest.OrganizationChoices.FEDERAL:
+            return self.federal_type == DomainRequest.FederalChoices.EXECUTIVE
+        return False
 
     def is_federal(self) -> Union[bool, None]:
         """Is this domain request for a federal agency?
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 83662505f..fce15af24 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -674,27 +674,33 @@ class DotgovDomain(DomainRequestWizard):
           2: ExecutiveNamingRequirementsYesNoForm
           3: ExecutiveNamingRequirementsDetailsForm
         """
+        logger.debug("Validating dotgov domain form")
         # If not a federal executive branch agency, mark executive-related forms for deletion.
         if not (self.domain_request.is_feb()):
             forms_list[2].mark_form_for_deletion()
             forms_list[3].mark_form_for_deletion()
             return all(form.is_valid() for form in forms_list)
 
-        valid = True
-        yesno_form = forms_list[2]
-        details_form = forms_list[3]
+        if not forms_list[2].is_valid():
+            logger.debug("Dotgov domain form is invalid")
+            if forms_list[2].cleaned_data.get("feb_naming_requirements", None) != "no":
+                forms_list[3].mark_form_for_deletion()
+            return False
+        
+        logger.debug(f"feb_naming_requirements: {forms_list[2].cleaned_data.get('feb_naming_requirements', None)}")
 
-        if yesno_form.cleaned_data.get("feb_naming_requirements") == "yes":
-            # If the user selects "yes", no details are needed.
-            details_form.mark_form_for_deletion()
+        if forms_list[2].cleaned_data.get("feb_naming_requirements", None) != "no":
+            logger.debug("Marking details form for deletion")
+            # If the user selects "yes" or has made no selection, no details are needed.
+            forms_list[3].mark_form_for_deletion()
             valid = all(
                 form.is_valid() for i, form in enumerate(forms_list) if i != 3
             )
         else:
             # "No" was selected – details are required.
             valid = (
-                yesno_form.is_valid() and 
-                details_form.is_valid() and 
+                forms_list[2].is_valid() and 
+                forms_list[3].is_valid() and 
                 all(form.is_valid() for i, form in enumerate(forms_list) if i not in [2, 3])
             )
         return valid

From 3f2add63afcffe8f2cf7df44c0ff22e7394ea7cf Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Mon, 24 Feb 2025 15:03:59 -0700
Subject: [PATCH 03/70] Light refactor of search and export component for
 tables

---
 .../assets/src/sass/_theme/_base.scss         |  2 -
 .../includes/domain_requests_table.html       | 46 ++---------------
 .../templates/includes/domains_table.html     | 48 ++++--------------
 .../templates/includes/members_table.html     | 44 ++--------------
 .../templates/includes/search_table.html      | 50 +++++++++++++++++++
 5 files changed, 69 insertions(+), 121 deletions(-)
 create mode 100644 src/registrar/templates/includes/search_table.html

diff --git a/src/registrar/assets/src/sass/_theme/_base.scss b/src/registrar/assets/src/sass/_theme/_base.scss
index 9ca1355c3..1c0e9b124 100644
--- a/src/registrar/assets/src/sass/_theme/_base.scss
+++ b/src/registrar/assets/src/sass/_theme/_base.scss
@@ -99,9 +99,7 @@ body {
     }
     .section-outlined__search {
       flex-grow: 4;
-      // Align right
       max-width: 383px;
-      margin-left: auto;
     }
   }
 }
diff --git a/src/registrar/templates/includes/domain_requests_table.html b/src/registrar/templates/includes/domain_requests_table.html
index 8adc0929a..38f392f20 100644
--- a/src/registrar/templates/includes/domain_requests_table.html
+++ b/src/registrar/templates/includes/domain_requests_table.html
@@ -5,53 +5,17 @@
 <span id="get_domain_requests_json_url" class="display-none">{{url}}</span>
 
 <section class="section-outlined domain-requests {% if portfolio %}section-outlined--border-base-light{% endif %}" id="domain-requests">
-    <div class="section-outlined__header margin-bottom-3 {% if not portfolio %}section-outlined__header--no-portfolio justify-content-space-between{% else %} grid-row{% endif %}">
+    <div class="section-outlined__header margin-bottom-3 {% if not portfolio %}section-outlined__header--no-portfolio flex-wrap{% else %} grid-row{% endif %}">
         {% if not portfolio %}
             <h2 id="domain-requests-header" class="display-inline-block">Domain requests</h2>
         {% else %}
         <!-- Embedding the portfolio value in a data attribute -->
         <span id="portfolio-js-value" data-portfolio="{{ portfolio.id }}"></span>
         {% endif %}
-
-        <div class="section-outlined__search section-outlined__search--widescreen {% if portfolio %}mobile:grid-col-12 desktop:grid-col-6{% endif %}">
-            <section aria-label="Domain requests search component" class="margin-top-2">
-                <form class="usa-search usa-search--small" method="POST" role="search">
-                    {% csrf_token %}
-                    <button class="usa-button usa-button--unstyled margin-right-3 display-none" id="domain-requests__reset-search" type="button">
-                        <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
-                            <use xlink:href="{%static 'img/sprite.svg'%}#close"></use>
-                        </svg>
-                        Reset
-                    </button>
-                    <label id="domain-requests__search-label" class="usa-sr-only" for="domain-requests__search-field">
-                        {% if portfolio %}
-                            Search by domain name or creator
-                        {% else %}
-                            Search by domain name
-                        {% endif %}
-                    </label>                    
-                    <input
-                        class="usa-input"
-                        id="domain-requests__search-field"
-                        type="search"
-                        name="domain-requests-search"
-                        {% if portfolio %}
-                        placeholder="Search by domain name or creator"
-                        {% else %}
-                        placeholder="Search by domain name"
-                        {% endif %}
-                    />
-                    <button class="usa-button" type="submit" id="domain-requests__search-field-submit" aria-labelledby="domain-requests__search-label">
-                        <img
-                            src="{% static 'img/usa-icons-bg/search--white.svg' %}"
-                            class="usa-search__submit-icon"
-                            alt="Search"
-                        />
-                    </button>
-                </form>
-            </section>
-        </div>
-
+        <!-- ---------- SEARCH & EXPORT ---------- -->
+        {% with label_text=portfolio|yesno:"Search by domain name or creator,Search by domain name"  item_id_prefix="domain-requests" aria_label_text="Domain requests search component" %}
+            {% include "includes/search_table.html" %}
+        {% endwith %}
     </div>
 
     {% if portfolio %}
diff --git a/src/registrar/templates/includes/domains_table.html b/src/registrar/templates/includes/domains_table.html
index 3cf04a830..e172a1065 100644
--- a/src/registrar/templates/includes/domains_table.html
+++ b/src/registrar/templates/includes/domains_table.html
@@ -26,54 +26,24 @@
 {% endif %}
 
 <section class="section-outlined domains margin-top-0{% if portfolio %} section-outlined--border-base-light{% endif %}" id="domains">
-  <div class="section-outlined__header margin-bottom-3 {% if not portfolio %} section-outlined__header--no-portfolio justify-content-space-between{% else %} grid-row{% endif %}">
+  <div class="section-outlined__header margin-bottom-3 {% if not portfolio %} section-outlined__header--no-portfolio flex-wrap{% else %} grid-row{% endif %}">
     {% if not portfolio %}
       <h2 id="domains-header" class="display-inline-block">Domains</h2>
     {% else %}
       <!-- Embedding the portfolio value in a data attribute -->
       <span id="portfolio-js-value" data-portfolio="{{ portfolio.id }}"></span>
     {% endif %}
-    <div class="section-outlined__search section-outlined__search--widescreen {% if portfolio %}mobile:grid-col-12 desktop:grid-col-6{% endif %}">
-      <section aria-label="Domains search component" class="margin-top-2">
-        <form class="usa-search usa-search--small" method="POST" role="search">
-          {% csrf_token %}
-          <button class="usa-button usa-button--unstyled margin-right-3 display-none" id="domains__reset-search" type="button">
-            <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
-              <use xlink:href="{%static 'img/sprite.svg'%}#close"></use>
-            </svg>
-            Reset
-          </button>
-          <label id="domains__search-label" class="usa-sr-only" for="domains__search-field">Search by domain name</label>
-          <input
-            class="usa-input"
-            id="domains__search-field"
-            type="search"
-            name="domains-search"
-            placeholder="Search by domain name"
-          />
-          <button class="usa-button" type="submit" id="domains__search-field-submit" aria-labelledby="domains__search-label">
-            <img
-              src="{% static 'img/usa-icons-bg/search--white.svg' %}"
-              class="usa-search__submit-icon"
-              alt="Search"
-            />
-          </button>
-        </form>
-      </section>
-    </div>
+    <!-- ---------- SEARCH & EXPORT ---------- -->
     {% if user_domain_count and user_domain_count > 0 %}
-    <div class="section-outlined__utility-button mobile-lg:padding-right-105 {% if portfolio %} mobile:grid-col-12 desktop:grid-col-6 desktop:padding-left-3{% endif %}">
-      <section aria-label="Domains report component" class="margin-top-205">
-        <a href="{% url 'export_data_type_user' %}" class="usa-button usa-button--unstyled usa-button--with-icon usa-button--justify-right">
-          <svg class="usa-icon usa-icon--large" aria-hidden="true" focusable="false" role="img" width="24" height="24">
-            <use xlink:href="{%static 'img/sprite.svg'%}#file_download"></use>
-          </svg>Export as CSV
-        </a>
-      </section>
-    </div>
+      {% with label_text="Search by domain name" item_id_prefix="domains" aria_label_text="Domains search component" with_export="true" export_aria="Domains report component" export_url='export_data_type_user' %}
+          {% include "includes/search_table.html" %}
+      {% endwith %}
+    {% else %}
+      {% with label_text="Search by domain name" item_id_prefix="domains" aria_label_text="Domains search component"%}
+          {% include "includes/search_table.html" %}
+      {% endwith %}
     {% endif %}
   </div>
-
   <!-- Non org model banner -->
   {% if num_expiring_domains > 0 and not portfolio %}
   <section class="usa-site-alert--slim usa-site-alert--info margin-bottom-2 {% if add_class %}{{ add_class }}{% endif %}" aria-label="Site alert">
diff --git a/src/registrar/templates/includes/members_table.html b/src/registrar/templates/includes/members_table.html
index be1715f30..d09e6de05 100644
--- a/src/registrar/templates/includes/members_table.html
+++ b/src/registrar/templates/includes/members_table.html
@@ -7,45 +7,11 @@
 <span id="get_members_json_url" class="display-none">{{url}}</span>
 <section class="section-outlined members margin-top-0 section-outlined--border-base-light" id="members">
   <div class="section-outlined__header margin-bottom-3 grid-row">
-      <!-- ---------- SEARCH ---------- -->
-      <div class="section-outlined__search mobile:grid-col-12 desktop:grid-col-6 section-outlined__search--widescreen">
-        <section aria-label="Members search component" class="margin-top-2">
-          <form class="usa-search usa-search--small" method="POST" role="search">
-            {% csrf_token %}
-            <button class="usa-button usa-button--unstyled margin-right-3 display-none" id="members__reset-search" type="button">
-              <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
-                <use xlink:href="{%static 'img/sprite.svg'%}#close"></use>
-              </svg>
-              Reset
-            </button>
-            <label class="usa-sr-only" for="members__search-field">Search by member name</label>
-            <input
-              class="usa-input"
-              id="members__search-field"
-              type="search"
-              name="members-search"
-              placeholder="Search by member name"
-            />
-            <button class="usa-button" type="submit" id="members__search-field-submit">
-              <img
-                src="{% static 'img/usa-icons-bg/search--white.svg' %}"
-                class="usa-search__submit-icon"
-                alt="Search"
-              />
-            </button>
-          </form>
-        </section>
-      </div>
-      <div class="section-outlined__utility-button mobile-lg:padding-right-105 {% if portfolio %} mobile:grid-col-12 desktop:grid-col-6 desktop:padding-left-3{% endif %}">
-        <section aria-label="Domains report component" class="margin-top-205">
-          <a href="{% url 'export_members_portfolio' %}" class="usa-button usa-button--unstyled usa-button--with-icon usa-button--justify-right">
-            <svg class="usa-icon usa-icon--large" aria-hidden="true" focusable="false" role="img" width="24" height="24">
-              <use xlink:href="{%static 'img/sprite.svg'%}#file_download"></use>
-            </svg>Export as CSV
-          </a>
-        </section>
-      </div>
-    </div>
+    <!-- ---------- SEARCH & EXPORT ---------- -->
+    {% with label_text="Search by member name" item_id_prefix="members" aria_label_text="Members search component" with_export="true" export_aria="Members report component" export_url='export_members_portfolio'%}
+        {% include "includes/search_table.html" %}
+    {% endwith %}
+  </div>
 
     <!-- ---------- MAIN TABLE ---------- -->
     <div class="display-none margin-top-0" id="members__table-wrapper">
diff --git a/src/registrar/templates/includes/search_table.html b/src/registrar/templates/includes/search_table.html
new file mode 100644
index 000000000..6473ccf60
--- /dev/null
+++ b/src/registrar/templates/includes/search_table.html
@@ -0,0 +1,50 @@
+{% load static %}
+<div class="grid-col-12">
+    <label class="usa-label display-block maxw-none" for="{{item_id_prefix}}__search-field">
+        {{ label_text }}
+    </label> 
+</div>
+<div class="section-outlined__search section-outlined__search--widescreen {% if portfolio %}mobile:grid-col-12 desktop:grid-col-6{% endif %}">
+    <section aria-label="{{aria_label_text}}" class="margin-top-2">
+    <!-- ---------- SEARCH ---------- -->
+        <form class="usa-search usa-search--small usa-search--show-label" method="POST" role="search">
+        {% csrf_token %} 
+        <div class="usa-search--show-label__input-wrapper flex-align-self-end">
+            <input
+            class="usa-input"
+            id="{{item_id_prefix}}__search-field"
+            type="search"
+            name="{{item_id_prefix}}-search"
+            placeholder="{{label_text}}"
+            />
+            <button class="usa-button" type="submit" id="{{item_id_prefix}}__search-field-submit" aria-labelledby="{{item_id_prefix}}__search-label">
+            <img
+                src="{% static 'img/usa-icons-bg/search--white.svg' %}"
+                class="usa-search__submit-icon"
+                alt="Search"
+            />
+            </button>
+            <button class="usa-button usa-button--unstyled margin-left-1 display-none" id="{{item_id_prefix}}__reset-search" type="button">
+                <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
+                <use xlink:href="{%static 'img/sprite.svg'%}#close"></use>
+                </svg>
+                Reset
+            </button>
+        </div>
+        </form>
+    </section>
+</div>
+<!-- ---------- EXPORT ---------- -->
+{% if with_export|lower == "true" %}
+<div class="section-outlined__utility-button mobile-lg:padding-right-105 {% if portfolio %} mobile:grid-col-12 desktop:grid-col-6 desktop:padding-left-3{% endif %}">
+    <section aria-label="{{export_aria}}" class="margin-top-205">
+        <a href="{% url export_url %}" class="usa-button usa-button--unstyled usa-button--with-icon usa-button--justify-right">
+        <svg class="usa-icon usa-icon--large" aria-hidden="true" focusable="false" role="img" width="24" height="24">
+            <use xlink:href="{%static 'img/sprite.svg'%}#file_download"></use>
+        </svg>Export as CSV
+        </a>
+    </section>
+</div>
+{% endif %}
+
+    
\ No newline at end of file

From 190bca2cac79367d91cab6cfc0426a3a19a788b1 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 25 Feb 2025 10:18:22 -0600
Subject: [PATCH 04/70] fix is_feb

---
 src/registrar/models/domain_request.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index e90edfa72..8b20f08bc 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -1405,7 +1405,7 @@ class DomainRequest(TimeStampedModel):
             # generic_org_type is either blank or None, assume no
             return False
         if self.generic_org_type == DomainRequest.OrganizationChoices.FEDERAL:
-            return self.federal_type == DomainRequest.FederalChoices.EXECUTIVE
+            return self.federal_type == BranchChoices.EXECUTIVE
         return False
 
     def is_federal(self) -> Union[bool, None]:

From 065febd496eca3350053070f91c426a7d08a5ab4 Mon Sep 17 00:00:00 2001
From: Matt-Spence <Matthewswspence@gmail.com>
Date: Tue, 25 Feb 2025 14:34:01 -0500
Subject: [PATCH 05/70] correct form validation and dynamic elements

---
 src/registrar/forms/domain_request_wizard.py  | 71 +++----------------
 src/registrar/models/domain_request.py        |  2 +-
 .../domain_request_dotgov_domain.html         |  4 +-
 src/registrar/views/domain_request.py         | 38 +++++-----
 4 files changed, 32 insertions(+), 83 deletions(-)

diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index 98ccc9122..32c8e2ed4 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -607,7 +607,8 @@ class DotGovDomainForm(RegistrarForm):
         },
     )
 
-class ExecutiveNamingRequirementsYesNoForm(BaseYesNoForm):
+
+class ExecutiveNamingRequirementsYesNoForm(BaseYesNoForm, BaseDeletableRegistrarForm):
     """
     Form for verifying if the domain request meets the Federal Executive Branch domain naming requirements.
     If the "no" option is selected, details must be provided via the separate details form.
@@ -621,77 +622,25 @@ class ExecutiveNamingRequirementsYesNoForm(BaseYesNoForm):
         Determines the initial checked state of the form based on the domain_request's attributes.
         """
         return self.domain_request.feb_naming_requirements
-    
-    def clean(self):
-        # Skip validation if this form is not applicable.
-        if not (self.domain_request.is_federal() and self.domain_request.federal_type == "Executive"):
-            # Initialize cleaned_data if it doesn't exist
-            if not hasattr(self, 'cleaned_data'):
-                self.cleaned_data = {}
-            # If not executive, default to None
-            self.cleaned_data["feb_naming_requirements"] = None
-            return self.cleaned_data
 
-        # Only validate the yes/no field here; details are handled by the separate details form.
-        cleaned = super().clean()
-        return cleaned
 
-    def to_database(self, obj: DomainRequest):
-        """
-        Saves the cleaned data from this form to the DomainRequest object.
-        """
-        if not self.is_valid():
-            return
-        obj.feb_naming_requirements = (self.cleaned_data.get("feb_naming_requirements", None) == "yes")
-        obj.save()
-
-    @classmethod
-    def from_database(cls, obj):
-        """
-        Retrieves initial data from the DomainRequest object to prepopulate the form.
-        """
-        initial = {}
-        if hasattr(obj, "feb_naming_requirements"):
-            initial["feb_naming_requirements"] = "yes" if obj.feb_naming_requirements else "no"
-        return initial
-    
 class ExecutiveNamingRequirementsDetailsForm(BaseDeletableRegistrarForm):
-    JOIN = "feb_naming_requirements_details"
-
     # Text area for additional details; rendered conditionally when "no" is selected.
     feb_naming_requirements_details = forms.CharField(
-        widget=forms.Textarea(attrs={'maxlength': '2000'}),
+        widget=forms.Textarea(attrs={"maxlength": "2000"}),
         max_length=2000,
         required=True,
         error_messages={"required": ("This field is required.")},
+        validators=[
+            MaxLengthValidator(
+                2000,
+                message="Response must be less than 2000 characters.",
+            )
+        ],
         label="",
         help_text="Maximum 2000 characters allowed.",
     )
 
-    def to_database(self, obj: DomainRequest):
-        if not self.is_valid():
-            return
-        obj.feb_naming_requirements_details = self.cleaned_data["feb_naming_requirements_details"]
-        obj.save()
-
-    def is_valid(self):
-        """
-        Validate that details are provided when required.
-        If the form is marked for deletion, bypass validation.
-        """
-        if self.form_data_marked_for_deletion:
-            return True
-            
-        is_valid = super().is_valid()
-        if not is_valid:
-            return False
-
-        # Check if the details field has content
-        details = self.cleaned_data.get('feb_naming_requirements_details', '').strip()
-        if not details:
-            return False
-
-        return True
 
 class PurposeForm(RegistrarForm):
     purpose = forms.CharField(
@@ -710,7 +659,7 @@ class PurposeForm(RegistrarForm):
         ],
         error_messages={"required": "Describe how you’ll use the .gov domain you’re requesting."},
     )
-    
+
 
 class OtherContactsYesNoForm(BaseYesNoForm):
     """The yes/no field for the OtherContacts form."""
diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index 8b20f08bc..860bd9b2c 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -1398,7 +1398,7 @@ class DomainRequest(TimeStampedModel):
         if self.has_anything_else_text is None or self.has_cisa_representative is None:
             has_details = False
         return has_details
-    
+
     def is_feb(self) -> bool:
         """Is this domain request for a Federal Executive Branch agency?"""
         if not self.generic_org_type:
diff --git a/src/registrar/templates/domain_request_dotgov_domain.html b/src/registrar/templates/domain_request_dotgov_domain.html
index d58815e3b..b5eff278d 100644
--- a/src/registrar/templates/domain_request_dotgov_domain.html
+++ b/src/registrar/templates/domain_request_dotgov_domain.html
@@ -2,7 +2,7 @@
 {% load static field_helpers url_helpers %}
 
 {% block form_instructions %}
-  <p>Before requesting a .gov domain, please make sure it meets <a class="usa-link" rel="noopener noreferrer" target="_blank" href="{% if is_feb %}https://get.gov/domains/executive-branch-guidance/{% else %}{% public_site_url 'domains/choosing' %}{% endif %}">our naming requirements</a>. Your domain name must:
+  <p>Before requesting a .gov domain, please make sure it meets <a class="usa-link" rel="noopener noreferrer" target="_blank" href="{% if requires_feb_questions %}https://get.gov/domains/executive-branch-guidance/{% else %}{% public_site_url 'domains/choosing' %}{% endif %}">our naming requirements</a>. Your domain name must:
     <ul class="usa-list">
       <li>Be available </li>
       <li>Relate to your organization's name, location, and/or services </li>
@@ -101,7 +101,7 @@
   {{ forms.2.management_form }}
   {{ forms.3.management_form }}
 
-  {% if is_feb %}
+  {% if requires_feb_questions %}
     <fieldset class="usa-fieldset margin-top-0 dotgov-domain-form">
       <legend>
         <h2>Does this submission meet each domain naming requirement?</h2>
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index fce15af24..8a2bb9d8b 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -12,6 +12,7 @@ from registrar.forms.utility.wizard_form_helper import request_step_list
 from registrar.models import DomainRequest
 from registrar.models.contact import Contact
 from registrar.models.user import User
+from registrar.utility.waffle import flag_is_active_for_user
 from registrar.views.utility import StepsHelper
 from registrar.views.utility.permission_views import DomainRequestPermissionDeleteView
 from registrar.utility.enums import Step, PortfolioDomainRequestStep
@@ -180,6 +181,9 @@ class DomainRequestWizard(DomainRequestWizardPermissionView, TemplateView):
         """Determines which step enum we should use for the wizard"""
         return PortfolioDomainRequestStep if self.is_portfolio else Step
 
+    def requires_feb_questions(self) -> bool:
+        return self.domain_request.is_feb() and flag_is_active_for_user(self.request.user, "organization_feature")
+
     @property
     def prefix(self):
         """Namespace the wizard to avoid clashes in session variable names."""
@@ -227,7 +231,12 @@ class DomainRequestWizard(DomainRequestWizardPermissionView, TemplateView):
             if portfolio and not self._domain_request.generic_org_type:
                 self._domain_request.generic_org_type = portfolio.organization_type
                 self._domain_request.save()
+            if portfolio and not self._domain_request.federal_type:
+                logger.debug(f"Setting fed type to {portfolio.federal_type}")
+                self._domain_request.federal_type = portfolio.federal_type
+                self._domain_request.save()
         else:
+            logger.debug("Did not find domain request in DomainRequestWizard, creating new one.")
             self._domain_request = DomainRequest.objects.create(creator=self.request.user)
         return self._domain_request
 
@@ -654,7 +663,7 @@ class CurrentSites(DomainRequestWizard):
 class DotgovDomain(DomainRequestWizard):
     template_name = "domain_request_dotgov_domain.html"
     forms = [
-        forms.DotGovDomainForm, 
+        forms.DotGovDomainForm,
         forms.AlternativeDomainFormSet,
         forms.ExecutiveNamingRequirementsYesNoForm,
         forms.ExecutiveNamingRequirementsDetailsForm,
@@ -662,8 +671,7 @@ class DotgovDomain(DomainRequestWizard):
 
     def get_context_data(self):
         context = super().get_context_data()
-        context["generic_org_type"] = self.domain_request.generic_org_type
-        context["is_feb"] = self.domain_request.is_feb()
+        context["requires_feb_questions"] = self.requires_feb_questions()
         return context
 
     def is_valid(self, forms_list: list) -> bool:
@@ -675,34 +683,26 @@ class DotgovDomain(DomainRequestWizard):
           3: ExecutiveNamingRequirementsDetailsForm
         """
         logger.debug("Validating dotgov domain form")
-        # If not a federal executive branch agency, mark executive-related forms for deletion.
-        if not (self.domain_request.is_feb()):
+        # If FEB questions aren't required, validate only non-FEB forms
+        if not self.requires_feb_questions():
             forms_list[2].mark_form_for_deletion()
             forms_list[3].mark_form_for_deletion()
-            return all(form.is_valid() for form in forms_list)
+            return forms_list[0].is_valid() and forms_list[1].is_valid()
 
         if not forms_list[2].is_valid():
             logger.debug("Dotgov domain form is invalid")
-            if forms_list[2].cleaned_data.get("feb_naming_requirements", None) != "no":
-                forms_list[3].mark_form_for_deletion()
+            # mark details form for deletion so that its errors don't show up
+            forms_list[3].mark_form_for_deletion()
             return False
-        
-        logger.debug(f"feb_naming_requirements: {forms_list[2].cleaned_data.get('feb_naming_requirements', None)}")
 
-        if forms_list[2].cleaned_data.get("feb_naming_requirements", None) != "no":
+        if forms_list[2].cleaned_data.get("feb_naming_requirements", None):
             logger.debug("Marking details form for deletion")
             # If the user selects "yes" or has made no selection, no details are needed.
             forms_list[3].mark_form_for_deletion()
-            valid = all(
-                form.is_valid() for i, form in enumerate(forms_list) if i != 3
-            )
+            valid = all(form.is_valid() for i, form in enumerate(forms_list) if i != 3)
         else:
             # "No" was selected – details are required.
-            valid = (
-                forms_list[2].is_valid() and 
-                forms_list[3].is_valid() and 
-                all(form.is_valid() for i, form in enumerate(forms_list) if i not in [2, 3])
-            )
+            valid = all(form.is_valid() for form in forms_list)
         return valid
 
 

From b2c57b5aa124863e1f50d2b59e9458345c0fa5c2 Mon Sep 17 00:00:00 2001
From: Matt-Spence <Matthewswspence@gmail.com>
Date: Tue, 25 Feb 2025 15:02:07 -0500
Subject: [PATCH 06/70] fix tests

---
 src/registrar/tests/test_admin_request.py | 2 ++
 src/registrar/tests/test_views_request.py | 3 ++-
 src/registrar/views/domain_request.py     | 3 ++-
 3 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/src/registrar/tests/test_admin_request.py b/src/registrar/tests/test_admin_request.py
index f7dfed108..da1b33df2 100644
--- a/src/registrar/tests/test_admin_request.py
+++ b/src/registrar/tests/test_admin_request.py
@@ -1981,6 +1981,8 @@ class TestDomainRequestAdmin(MockEppLib):
             "senior_official",
             "approved_domain",
             "requested_domain",
+            "feb_naming_requirements",
+            "feb_naming_requirements_details",
             "purpose",
             "no_other_contacts_rationale",
             "anything_else",
diff --git a/src/registrar/tests/test_views_request.py b/src/registrar/tests/test_views_request.py
index f6eba2a56..316be82cf 100644
--- a/src/registrar/tests/test_views_request.py
+++ b/src/registrar/tests/test_views_request.py
@@ -2413,7 +2413,7 @@ class DomainRequestTests(TestWithUser, WebTest):
         so_page = org_contact_result.follow()
         self.assertContains(so_page, "Domain requests from cities")
 
-    @less_console_noise_decorator
+    # @less_console_noise_decorator
     def test_domain_request_dotgov_domain_dynamic_text(self):
         intro_page = self.app.get(reverse("domain-request:start"))
         # django-webtest does not handle cookie-based sessions well because it keeps
@@ -2496,6 +2496,7 @@ class DomainRequestTests(TestWithUser, WebTest):
         # ---- DOTGOV DOMAIN PAGE  ----
         self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
         dotgov_page = current_sites_result.follow()
+        print(dotgov_page)
 
         self.assertContains(dotgov_page, "medicare.gov")
 
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 8a2bb9d8b..a244c0191 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -236,7 +236,6 @@ class DomainRequestWizard(DomainRequestWizardPermissionView, TemplateView):
                 self._domain_request.federal_type = portfolio.federal_type
                 self._domain_request.save()
         else:
-            logger.debug("Did not find domain request in DomainRequestWizard, creating new one.")
             self._domain_request = DomainRequest.objects.create(creator=self.request.user)
         return self._domain_request
 
@@ -671,6 +670,8 @@ class DotgovDomain(DomainRequestWizard):
 
     def get_context_data(self):
         context = super().get_context_data()
+        context["generic_org_type"] = self.domain_request.generic_org_type
+        context["federal_type"] = self.domain_request.federal_type
         context["requires_feb_questions"] = self.requires_feb_questions()
         return context
 

From df303fa66f457a3936fa037e1124667dd60ba6d8 Mon Sep 17 00:00:00 2001
From: Matt-Spence <Matthewswspence@gmail.com>
Date: Wed, 26 Feb 2025 11:46:35 -0500
Subject: [PATCH 07/70] initial work on feb purpose questions

---
 src/registrar/forms/domain_request_wizard.py  |  19 ---
 .../forms/domainrequestwizard/purpose.py      | 114 ++++++++++++++++++
 ...mainrequest_feb_purpose_choice_and_more.py |  40 ++++++
 src/registrar/models/domain_request.py        |  45 ++++++-
 .../templates/domain_request_purpose.html     |  95 +++++++++++++--
 src/registrar/views/domain_request.py         |  64 +++++++++-
 6 files changed, 341 insertions(+), 36 deletions(-)
 create mode 100644 src/registrar/forms/domainrequestwizard/purpose.py
 create mode 100644 src/registrar/migrations/0142_domainrequest_feb_purpose_choice_and_more.py

diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index 32c8e2ed4..4e7182843 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -642,25 +642,6 @@ class ExecutiveNamingRequirementsDetailsForm(BaseDeletableRegistrarForm):
     )
 
 
-class PurposeForm(RegistrarForm):
-    purpose = forms.CharField(
-        label="Purpose",
-        widget=forms.Textarea(
-            attrs={
-                "aria-label": "What is the purpose of your requested domain? Describe how you’ll use your .gov domain. \
-                Will it be used for a website, email, or something else?"
-            }
-        ),
-        validators=[
-            MaxLengthValidator(
-                2000,
-                message="Response must be less than 2000 characters.",
-            )
-        ],
-        error_messages={"required": "Describe how you’ll use the .gov domain you’re requesting."},
-    )
-
-
 class OtherContactsYesNoForm(BaseYesNoForm):
     """The yes/no field for the OtherContacts form."""
 
diff --git a/src/registrar/forms/domainrequestwizard/purpose.py b/src/registrar/forms/domainrequestwizard/purpose.py
new file mode 100644
index 000000000..23e5c28e9
--- /dev/null
+++ b/src/registrar/forms/domainrequestwizard/purpose.py
@@ -0,0 +1,114 @@
+from django import forms
+from django.core.validators import MaxLengthValidator
+from registrar.forms.utility.wizard_form_helper import BaseDeletableRegistrarForm, BaseYesNoForm, RegistrarForm
+
+class FEBPurposeOptionsForm(BaseDeletableRegistrarForm):
+
+    field_name = "feb_purpose_choice"
+
+    form_choices = (("new", "Used for a new website"), ("redirect", "Used as a redirect for an existing website"), ("other", "Not for a website"))
+
+    feb_purpose_choice = forms.ChoiceField(
+        required=True,
+        choices=form_choices,
+        widget=forms.RadioSelect,
+        error_messages={
+            "required": "This question is required.",
+        },
+        label = "Select one"
+    )
+
+class PurposeDetailsForm(BaseDeletableRegistrarForm):
+
+    labels = {
+        "new": "Explain why a new domain is required and why a subdomain of an existing domain doesn't meet your needs. \
+            Include any data that supports a clear public benefit or evident user need for this new domain.",
+        "redirect": "Explain why a redirect is necessary",
+        "other": "Describe how this domain will be used",
+    }
+
+    field_name="purpose"
+
+    purpose = forms.CharField(
+        label="Purpose",
+        widget=forms.Textarea(
+            attrs={
+                "aria-label": "What is the purpose of your requested domain? Describe how you’ll use your .gov domain. \
+                Will it be used for a website, email, or something else?"
+            }
+        ),
+        validators=[
+            MaxLengthValidator(
+                2000,
+                message="Response must be less than 2000 characters.",
+            )
+        ],
+        error_messages={"required": "Describe how you’ll use the .gov domain you’re requesting."},
+    )
+
+class FEBTimeFrameYesNoForm(BaseDeletableRegistrarForm, BaseYesNoForm):
+    """
+    Form for determining whether the domain request comes with a target timeframe for launch.
+    If the "no" option is selected, details must be provided via the separate details form.
+    """
+
+    field_name = "has_timeframe"
+
+    @property
+    def form_is_checked(self):
+        """
+        Determines the initial checked state of the form based on the domain_request's attributes.
+        """
+        return self.domain_request.has_timeframe
+
+
+class FEBTimeFrameDetailsForm(BaseDeletableRegistrarForm):
+    time_frame_details = forms.CharField(
+        label="time_frame_details",
+        widget=forms.Textarea(
+            attrs={
+                "aria-label": "Provide details on your target timeframe. \
+                    Is there a special significance to this date (legal requirement, announcement, event, etc)?"
+            }
+        ),
+        validators=[
+            MaxLengthValidator(
+                2000,
+                message="Response must be less than 2000 characters.",
+            )
+        ],
+        error_messages={"required": "Provide details on your target timeframe."},
+    )
+
+class FEBInteragencyInitiativeYesNoForm(BaseDeletableRegistrarForm, BaseYesNoForm):
+    """
+    Form for determining whether the domain request is part of an interagency initative.
+    If the "no" option is selected, details must be provided via the separate details form.
+    """
+
+    field_name = "is_interagency_initiative"
+
+    @property
+    def form_is_checked(self):
+        """
+        Determines the initial checked state of the form based on the domain_request's attributes.
+        """
+        return self.domain_request.is_interagency_initiative
+
+
+class FEBInteragencyInitiativeDetailsForm(BaseDeletableRegistrarForm):
+    interagency_initiative_details = forms.CharField(
+        label="interagency_initiative_details",
+        widget=forms.Textarea(
+            attrs={
+                "aria-label": "Name the agencies that will be involved in this initiative."
+            }
+        ),
+        validators=[
+            MaxLengthValidator(
+                2000,
+                message="Response must be less than 2000 characters.",
+            )
+        ],
+        error_messages={"required": "Name the agencies that will be involved in this initiative."},
+    )
\ No newline at end of file
diff --git a/src/registrar/migrations/0142_domainrequest_feb_purpose_choice_and_more.py b/src/registrar/migrations/0142_domainrequest_feb_purpose_choice_and_more.py
new file mode 100644
index 000000000..1cd5fb587
--- /dev/null
+++ b/src/registrar/migrations/0142_domainrequest_feb_purpose_choice_and_more.py
@@ -0,0 +1,40 @@
+# Generated by Django 4.2.17 on 2025-02-25 23:45
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ("registrar", "0141_domainrequest_feb_naming_requirements_and_more"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="domainrequest",
+            name="feb_purpose_choice",
+            field=models.CharField(
+                blank=True, choices=[("website", "Website"), ("redirect", "Redirect"), ("other", "Other")], null=True
+            ),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="has_timeframe",
+            field=models.BooleanField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="interagency_initiative_details",
+            field=models.TextField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="is_interagency_initiative",
+            field=models.BooleanField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="time_frame_details",
+            field=models.TextField(blank=True, null=True),
+        ),
+    ]
diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index 860bd9b2c..b45767598 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -53,6 +53,11 @@ class DomainRequest(TimeStampedModel):
         def get_status_label(cls, status_name: str):
             """Returns the associated label for a given status name"""
             return cls(status_name).label if status_name else None
+        
+    class FEBPurposeChoices(models.TextChoices):
+        WEBSITE = "website"
+        REDIRECT = "redirect"
+        OTHER = "other"
 
     class StateTerritoryChoices(models.TextChoices):
         ALABAMA = "AL", "Alabama (AL)"
@@ -501,6 +506,7 @@ class DomainRequest(TimeStampedModel):
         on_delete=models.PROTECT,
     )
 
+    # Fields specific to Federal Executive Branch agencies, used by OMB for reviewing requests
     feb_naming_requirements = models.BooleanField(
         null=True,
         blank=True,
@@ -511,6 +517,40 @@ class DomainRequest(TimeStampedModel):
         blank=True,
     )
 
+    feb_purpose_choice = models.CharField(
+        null=True,
+        blank=True,
+        choices=FEBPurposeChoices.choices,
+    )
+
+    # This field is alternately used for generic domain purpose explanations
+    # and for explanations of the specific purpose chosen with feb_purpose_choice
+    # by a Federal Executive Branch agency.
+    purpose = models.TextField(
+        null=True,
+        blank=True,
+    )
+
+    has_timeframe = models.BooleanField(
+        null=True,
+        blank=True,
+    )
+
+    time_frame_details = models.TextField(
+        null=True,
+        blank=True,
+    )
+
+    is_interagency_initiative = models.BooleanField(
+        null=True,
+        blank=True,
+    )
+
+    interagency_initiative_details = models.TextField(
+        null=True,
+        blank=True,
+    )
+
     alternative_domains = models.ManyToManyField(
         "registrar.Website",
         blank=True,
@@ -518,10 +558,7 @@ class DomainRequest(TimeStampedModel):
         help_text="Other domain names the creator provided for consideration",
     )
 
-    purpose = models.TextField(
-        null=True,
-        blank=True,
-    )
+
 
     other_contacts = models.ManyToManyField(
         "registrar.Contact",
diff --git a/src/registrar/templates/domain_request_purpose.html b/src/registrar/templates/domain_request_purpose.html
index bfd9beb15..d0fb65042 100644
--- a/src/registrar/templates/domain_request_purpose.html
+++ b/src/registrar/templates/domain_request_purpose.html
@@ -3,17 +3,90 @@
 
 {% block form_instructions %}
   <p>.Gov domains are intended for public use. Domains will not be given to organizations that only want to reserve a domain name (defensive registration) or that only intend to use the domain internally (as for an intranet).</p> 
-<p>Read about <a class="usa-link" rel="noopener noreferrer" target="_blank" href="{% public_site_url 'domains/requirements/' %}">activities that are prohibited on .gov domains.</a></p>
-<h2>What is the purpose of your requested domain?</h2>
-<p>Describe how you’ll use your .gov domain. Will it be used for a website, email, or something else?</p>
+  <p>Read about <a class="usa-link" rel="noopener noreferrer" target="_blank" href="{% public_site_url 'domains/requirements/' %}">activities that are prohibited on .gov domains.</a></p>
+  <h2>What is the purpose of your requested domain?</h2>
+  <h2>{{requires_feb_questions}}</h2>
 {% endblock %}
 
-{% block form_required_fields_help_text %}
-{# commented out so it does not appear on this page #}
-{% endblock %}
+{% if requires_feb_questions %}
+  {% block feb_fields %}
+    <fieldset class="usa-fieldset margin-top-0 dotgov-domain-form">
+      {{forms.0.management_form}}
+      {{forms.1.management_form}}
+      {{forms.2.management_form}}
+      {{forms.3.management_form}}
+      {{forms.4.management_form}}
+      {{forms.5.management_form}}
+      <p class="usa-label">
+        Select One <span class="usa-label--required">*</span>
+      </p>
+      {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+        {% input_with_errors forms.0.feb_purpose_choice %}
+      {% endwith %}
+
+      <div id="domain-purpose-details-container" class="conditional-panel" style="display: none;">
+        <p class="usa-label">
+          Provide details below <span class="usa-label--required">*</span>
+        </p>
+        {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+          {% input_with_errors forms.1.purpose %}
+        {% endwith %}
+        <p class="usa-hint">Maximum 2000 characters allowed.</p>
+      </div>
+
+      <legend>
+        <h3>Do you have a target time frame for launching this domain?</h3>
+      </legend>
+      <p class="usa-label">
+        Select One <span class="usa-label--required">*</span>
+      </p>
+      {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+        {% input_with_errors forms.2.has_timeframe %}
+      {% endwith %}
+
+      <div id="domain-timeframe-details-container" class="conditional-panel" style="display: none;">
+        <p class="usa-label">
+          Provide details below <span class="usa-label--required">*</span>
+        </p>
+        {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+          {% input_with_errors forms.3.time_frame_details %}
+        {% endwith %}
+        <p class="usa-hint">Maximum 2000 characters allowed.</p>
+      </div>
+
+      <legend>
+        <h3>Will the domain name be used for an interagency initiative?</h3>
+      </legend>
+      <p class="usa-label">
+        Select One <span class="usa-label--required">*</span>
+      </p>
+      {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+        {% input_with_errors forms.4.is_interagency_initiative %}
+      {% endwith %}
+
+      <div id="domain-interagency-initaitive-details-container" class="conditional-panel" style="display: none;">
+        <p class="usa-label">
+          Provide details below <span class="usa-label--required">*</span>
+        </p>
+        {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+          {% input_with_errors forms.5.interagency_initiative_details %}
+        {% endwith %}
+        <p class="usa-hint">Maximum 2000 characters allowed.</p>
+      </div>
+    </fieldset>
+  {% endblock %}
+{% else %}
+  <p>Describe how you’ll use your .gov domain. Will it be used for a website, email, or something else?</p>
+
+  {% block form_required_fields_help_text %}
+  {# commented out so it does not appear on this page #}
+  {% endblock %}
+
+  {% block form_fields %}
+      {% with attr_maxlength=2000 add_label_class="usa-sr-only" %}
+        {% input_with_errors forms.1.purpose %}
+      {% endwith %}
+  {% endblock %}
+{% endif %}
+
 
-{% block form_fields %}
-    {% with attr_maxlength=2000 add_label_class="usa-sr-only" %}
-      {% input_with_errors forms.0.purpose %}
-    {% endwith %}
-{% endblock %}
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index a244c0191..372861c07 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -8,6 +8,7 @@ from django.utils.translation import gettext_lazy as _
 from django.views.generic import TemplateView
 from django.contrib import messages
 from registrar.forms import domain_request_wizard as forms
+from registrar.forms.domainrequestwizard import purpose
 from registrar.forms.utility.wizard_form_helper import request_step_list
 from registrar.models import DomainRequest
 from registrar.models.contact import Contact
@@ -182,7 +183,9 @@ class DomainRequestWizard(DomainRequestWizardPermissionView, TemplateView):
         return PortfolioDomainRequestStep if self.is_portfolio else Step
 
     def requires_feb_questions(self) -> bool:
-        return self.domain_request.is_feb() and flag_is_active_for_user(self.request.user, "organization_feature")
+        # TODO: this is for testing, revert later
+        return False
+        # return self.domain_request.is_feb() and flag_is_active_for_user(self.request.user, "organization_feature")
 
     @property
     def prefix(self):
@@ -709,7 +712,64 @@ class DotgovDomain(DomainRequestWizard):
 
 class Purpose(DomainRequestWizard):
     template_name = "domain_request_purpose.html"
-    forms = [forms.PurposeForm]
+
+    forms = [purpose.FEBPurposeOptionsForm,
+             purpose.PurposeDetailsForm,
+             purpose.FEBTimeFrameYesNoForm,
+             purpose.FEBTimeFrameDetailsForm,
+             purpose.FEBInteragencyInitiativeYesNoForm,
+             purpose.FEBInteragencyInitiativeDetailsForm
+            ]
+
+    def get_context_data(self):
+        context= super().get_context_data()
+        context["requires_feb_questions"] = self.requires_feb_questions()
+        return context
+    
+    def is_valid(self, forms_list: list) -> bool:
+        """
+        Expected order of forms_list:
+          0: FEBPurposeOptionsForm
+          1: PurposeDetailsForm
+          2: FEBTimeFrameYesNoForm
+          3: FEBTimeFrameDetailsForm
+          4: FEBInteragencyInitiativeYesNoForm
+          5: FEBInteragencyInitiativeDetailsForm
+        """
+
+        feb_purpose_options_form = forms_list[0]
+        purpose_details_form = forms_list[1]
+        feb_timeframe_yes_no_form = forms_list[2]
+        feb_timeframe_details_form = forms_list[3]
+        feb_initiative_yes_no_form = forms_list[4]
+        feb_initiative_details_form = forms_list[5]
+
+        if not self.requires_feb_questions():
+            # if FEB questions don't apply, mark all other forms for deletion
+            feb_purpose_options_form.mark_form_for_deletion()
+            feb_timeframe_yes_no_form.mark_form_for_deletion()
+            feb_timeframe_details_form.mark_form_for_deletion()
+            feb_initiative_yes_no_form.mark_form_for_deletion()
+            feb_initiative_details_form.mark_form_for_deletion()
+            # we only care about the purpose form in this case since it's used in both instances
+            return purpose_details_form.is_valid()
+        
+        if not feb_purpose_options_form.id_valid():
+            # Ensure details form doesn't throw errors if it's not showing
+            purpose_details_form.mark_form_for_deletion()
+        
+        if not feb_initiative_yes_no_form.is_valid() or not feb_timeframe_yes_no_form.cleaned_data.get("has_timeframe"):
+            # Ensure details form doesn't throw errors if it's not showing
+            feb_initiative_details_form.mark_form_for_deletion()
+
+        if not feb_timeframe_yes_no_form.is_valid() or not feb_initiative_yes_no_form.cleaned_data.get("is_interagency_initiative"):
+            # Ensure details form doesn't throw errors if it's not showing
+            feb_timeframe_details_form.mark_form_for_delation()
+
+        valid = all(form.is_valid() for form in forms_list if not form.form_data_marked_for_deletion)
+
+        return valid
+
 
 
 class OtherContacts(DomainRequestWizard):

From 4bcb5bfd50ef97a55e792a2111b81be40bd19689 Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Wed, 26 Feb 2025 13:45:40 -0700
Subject: [PATCH 08/70] initial draft (need to fix DOM targeting)

---
 src/registrar/admin.py                        |  9 +++--
 .../assets/src/js/getgov-admin/andi.js        | 36 +++++++++++++++++++
 .../assets/src/js/getgov-admin/main.js        |  2 ++
 .../admin/includes/detail_table_fieldset.html |  9 +++--
 src/registrar/utility/admin_helpers.py        |  1 +
 5 files changed, 52 insertions(+), 5 deletions(-)
 create mode 100644 src/registrar/assets/src/js/getgov-admin/andi.js

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 2d2b90a5f..bb60ad6f4 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -283,6 +283,11 @@ class DomainRequestAdminForm(forms.ModelForm):
                 admin.site,
                 attrs={"data-placeholder": "---------", "ajax-url": "get-suborganization-list-json"},
             ),
+            # 'investigator': forms.Select(
+            #     attrs={
+            #         'aria-describedby': 'id_investigator-arialabel'}),
+            # 'senior_official': forms.Select(
+            #     attrs={'aria-describedby': 'id_senior_official-arialabel'}),
         }
         labels = {
             "action_needed_reason_email": "Email",
@@ -2622,11 +2627,9 @@ class DomainRequestAdmin(ListHeaderAdmin, ImportExportModelAdmin):
 
     # Table ordering
     # NOTE: This impacts the select2 dropdowns (combobox)
-    # Currentl, there's only one for requests on DomainInfo
+    # Currently, there's only one for requests on DomainInfo
     ordering = ["-last_submitted_date", "requested_domain__name"]
 
-    change_form_template = "django/admin/domain_request_change_form.html"
-
     def get_fieldsets(self, request, obj=None):
         fieldsets = super().get_fieldsets(request, obj)
 
diff --git a/src/registrar/assets/src/js/getgov-admin/andi.js b/src/registrar/assets/src/js/getgov-admin/andi.js
new file mode 100644
index 000000000..416c4f05f
--- /dev/null
+++ b/src/registrar/assets/src/js/getgov-admin/andi.js
@@ -0,0 +1,36 @@
+export function initAriaInjections() {
+    console.log("FIRED")
+    document.addEventListener('DOMContentLoaded', function () {
+        // Find all spans with "--aria-description" in their id
+        const descriptionSpans = document.querySelectorAll('span[id*="--aria-description"]');
+
+        // Iterate through each span to add aria-describedby
+        descriptionSpans.forEach(function(span) {
+            // Extract the base ID from the span's id (remove "--aria-description" part)
+            const fieldId = span.id.replace('--aria-description', '');
+
+            // Find the field element with the corresponding ID
+            const field = document.getElementById(fieldId);
+
+            // If the field exists, set the aria-describedby attribute
+            if (field) {
+                let select2ElementDetected = false
+                if (field.classList.contains('admin-autocomplete')) {
+                    console.log("select2---> select2-"+${fieldId}+"-container")
+                    // If it's a Select2 component, find the rendered span inside Select2
+                    const select2Span = field.querySelector('.select2-selection');
+                    if (select2Span) {
+                        console.log("set select2 aria")
+                        select2Span.setAttribute('aria-describedby', span.id);
+                        select2ElementDetected=true
+                    }
+                } 
+                if (!select2ElementDetected)
+                {
+                    // Otherwise, set aria-describedby directly on the field
+                    field.setAttribute('aria-describedby', span.id);
+                }
+            }
+        });
+    });
+}
\ No newline at end of file
diff --git a/src/registrar/assets/src/js/getgov-admin/main.js b/src/registrar/assets/src/js/getgov-admin/main.js
index 64be572b2..7f9d7fc78 100644
--- a/src/registrar/assets/src/js/getgov-admin/main.js
+++ b/src/registrar/assets/src/js/getgov-admin/main.js
@@ -15,6 +15,7 @@ import { initDomainFormTargetBlankButtons } from './domain-form.js';
 import { initDynamicPortfolioFields } from './portfolio-form.js';
 import { initDynamicDomainInformationFields } from './domain-information-form.js';
 import { initDynamicDomainFields } from './domain-form.js';
+import { initAriaInjections } from './andi.js'
 
 // General
 initModals();
@@ -22,6 +23,7 @@ initCopyToClipboard();
 initFilterHorizontalWidget();
 initDescriptions();
 initSubmitBar();
+initAriaInjections();
 
 // Domain request
 initIneligibleModal();
diff --git a/src/registrar/templates/django/admin/includes/detail_table_fieldset.html b/src/registrar/templates/django/admin/includes/detail_table_fieldset.html
index a074e8a7c..bf58853eb 100644
--- a/src/registrar/templates/django/admin/includes/detail_table_fieldset.html
+++ b/src/registrar/templates/django/admin/includes/detail_table_fieldset.html
@@ -160,6 +160,13 @@ This is using a custom implementation fieldset.html (see admin/fieldset.html)
 {% endblock field_readonly %}
 
 {% block field_other %}
+    <!-- {{field.field.field.widget.template_name|safe}} -->
+    {% if "related_widget_wrapper" in field.field.field.widget.template_name or field.field.field.widget.input_type == 'select' %}
+        <span id="{{ field.field.id_for_label }}--aria-description" class="visually-hidden admin-select--aria-description">
+            {{ field.field.label }}, combo-box, collapsed, edit, has autocomplete. To set the value, use the arrow keys or type the text.
+        </span>
+    {% endif %}
+
     {% if field.field.name == "action_needed_reason_email" %}
         {{ field.field }}
 
@@ -251,7 +258,6 @@ This is using a custom implementation fieldset.html (see admin/fieldset.html)
 
     {% elif field.field.name == "rejection_reason_email" %}
         {{ field.field }}
-
         <div class="margin-top-05 text-faded custom-email-placeholder">
             &ndash;
         </div>
@@ -331,7 +337,6 @@ This is using a custom implementation fieldset.html (see admin/fieldset.html)
                 </button>
             </div>
         </div>
-        
         {% if original_object.rejection_reason_email %}
             <input id="last-sent-rejection-email-content" class="display-none" value="{{original_object.rejection_reason_email}}">
         {% else %}
diff --git a/src/registrar/utility/admin_helpers.py b/src/registrar/utility/admin_helpers.py
index 93a0a16b5..5fe2f3b3b 100644
--- a/src/registrar/utility/admin_helpers.py
+++ b/src/registrar/utility/admin_helpers.py
@@ -105,6 +105,7 @@ class AutocompleteSelectWithPlaceholder(AutocompleteSelect):
         attrs = super().build_attrs(base_attrs, extra_attrs=extra_attrs)
         if "data-placeholder" in base_attrs:
             attrs["data-placeholder"] = base_attrs["data-placeholder"]
+        
         return attrs
 
     def __init__(self, field, admin_site, attrs=None, choices=(), using=None):

From 8250a72f7357c1612d521f1a0ece200209822c83 Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Wed, 26 Feb 2025 18:51:05 -0700
Subject: [PATCH 09/70] updates

---
 .../assets/src/js/getgov-admin/andi.js        | 66 +++++++++++--------
 .../admin/includes/detail_table_fieldset.html |  7 +-
 2 files changed, 45 insertions(+), 28 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov-admin/andi.js b/src/registrar/assets/src/js/getgov-admin/andi.js
index 416c4f05f..9be03fa89 100644
--- a/src/registrar/assets/src/js/getgov-admin/andi.js
+++ b/src/registrar/assets/src/js/getgov-admin/andi.js
@@ -1,36 +1,50 @@
+/*
+This function intercepts all select2 dropdowns and adds aria content.
+It relies on an override in detail_table_fieldset.html that provides
+a span with a corresponding id for aria-describedby content.
+
+This allows us to avoid overriding aria-label, which is used by select2
+to send the current dropdown selection to ANDI
+*/
 export function initAriaInjections() {
     console.log("FIRED")
     document.addEventListener('DOMContentLoaded', function () {
-        // Find all spans with "--aria-description" in their id
-        const descriptionSpans = document.querySelectorAll('span[id*="--aria-description"]');
+        // Set timeout so this fires after select2.js finishes adding to the DOM
+        setTimeout(function () {
+            // Find all spans with "--aria-description" in their id
+            const descriptionSpans = document.querySelectorAll('span[id*="--aria-description"]');
 
-        // Iterate through each span to add aria-describedby
-        descriptionSpans.forEach(function(span) {
-            // Extract the base ID from the span's id (remove "--aria-description" part)
-            const fieldId = span.id.replace('--aria-description', '');
+            // Iterate through each span to add aria-describedby
+            descriptionSpans.forEach(function(span) {
+                // Extract the base ID from the span's id (remove "--aria-description" part)
+                const fieldId = span.id.replace('--aria-description', '');
 
-            // Find the field element with the corresponding ID
-            const field = document.getElementById(fieldId);
+                // Find the field element with the corresponding ID
+                const field = document.getElementById(fieldId);
 
-            // If the field exists, set the aria-describedby attribute
-            if (field) {
-                let select2ElementDetected = false
-                if (field.classList.contains('admin-autocomplete')) {
-                    console.log("select2---> select2-"+${fieldId}+"-container")
-                    // If it's a Select2 component, find the rendered span inside Select2
-                    const select2Span = field.querySelector('.select2-selection');
-                    if (select2Span) {
-                        console.log("set select2 aria")
-                        select2Span.setAttribute('aria-describedby', span.id);
-                        select2ElementDetected=true
+                // If the field exists, set the aria-describedby attribute
+                if (field) {
+                    let select2ElementDetected = false
+                    if (field.classList.contains('admin-autocomplete')) {
+                        const select2Id="select2-"+fieldId+"-container"
+                        console.log("select2---> "+select2Id)
+                        // If it's a Select2 component, find the rendered span inside Select2
+                        const select2SpanThatTriggersAria = document.querySelector("span[aria-labelledby='"+select2Id+"']");
+                        const select2SpanThatHoldsSelection = document.getElementById(select2Id)
+                        if (select2SpanThatTriggersAria) {
+                            console.log("set select2 aria")
+                            select2SpanThatTriggersAria.setAttribute('aria-describedby', span.id);
+                            // select2SpanThatTriggersAria.setAttribute('aria-labelledby', select2Id);
+                            select2ElementDetected=true
+                        }
+                    } 
+                    if (!select2ElementDetected)
+                    {
+                        // Otherwise, set aria-describedby directly on the field
+                        field.setAttribute('aria-describedby', span.id);
                     }
-                } 
-                if (!select2ElementDetected)
-                {
-                    // Otherwise, set aria-describedby directly on the field
-                    field.setAttribute('aria-describedby', span.id);
                 }
-            }
-        });
+            });
+        }, 500);
     });
 }
\ No newline at end of file
diff --git a/src/registrar/templates/django/admin/includes/detail_table_fieldset.html b/src/registrar/templates/django/admin/includes/detail_table_fieldset.html
index bf58853eb..3ca6a3b66 100644
--- a/src/registrar/templates/django/admin/includes/detail_table_fieldset.html
+++ b/src/registrar/templates/django/admin/includes/detail_table_fieldset.html
@@ -160,8 +160,11 @@ This is using a custom implementation fieldset.html (see admin/fieldset.html)
 {% endblock field_readonly %}
 
 {% block field_other %}
-    <!-- {{field.field.field.widget.template_name|safe}} -->
-    {% if "related_widget_wrapper" in field.field.field.widget.template_name or field.field.field.widget.input_type == 'select' %}
+    {% comment %}
+    .gov override - add Aria messages for select2 dropdowns.  These messages are hooked-up to their respective DOM
+    elements via javascript (see andi.js)
+    {% endcomment %}
+    {% if "related_widget_wrapper" in field.field.field.widget.template_name %}
         <span id="{{ field.field.id_for_label }}--aria-description" class="visually-hidden admin-select--aria-description">
             {{ field.field.label }}, combo-box, collapsed, edit, has autocomplete. To set the value, use the arrow keys or type the text.
         </span>

From fb066839820178095475b2c14848e8e76003a3ea Mon Sep 17 00:00:00 2001
From: Matt-Spence <Matthewswspence@gmail.com>
Date: Thu, 27 Feb 2025 13:03:50 -0500
Subject: [PATCH 10/70] pushing to another device

---
 .../templates/domain_request_purpose.html     | 127 +++++++++---------
 src/registrar/tests/test_forms.py             |   4 +-
 src/registrar/views/domain_request.py         |   6 +-
 3 files changed, 67 insertions(+), 70 deletions(-)

diff --git a/src/registrar/templates/domain_request_purpose.html b/src/registrar/templates/domain_request_purpose.html
index d0fb65042..bef221c4b 100644
--- a/src/registrar/templates/domain_request_purpose.html
+++ b/src/registrar/templates/domain_request_purpose.html
@@ -5,88 +5,85 @@
   <p>.Gov domains are intended for public use. Domains will not be given to organizations that only want to reserve a domain name (defensive registration) or that only intend to use the domain internally (as for an intranet).</p> 
   <p>Read about <a class="usa-link" rel="noopener noreferrer" target="_blank" href="{% public_site_url 'domains/requirements/' %}">activities that are prohibited on .gov domains.</a></p>
   <h2>What is the purpose of your requested domain?</h2>
-  <h2>{{requires_feb_questions}}</h2>
 {% endblock %}
 
-{% if requires_feb_questions %}
-  {% block feb_fields %}
-    <fieldset class="usa-fieldset margin-top-0 dotgov-domain-form">
-      {{forms.0.management_form}}
-      {{forms.1.management_form}}
-      {{forms.2.management_form}}
-      {{forms.3.management_form}}
-      {{forms.4.management_form}}
-      {{forms.5.management_form}}
-      <p class="usa-label">
-        Select One <span class="usa-label--required">*</span>
-      </p>
-      {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
-        {% input_with_errors forms.0.feb_purpose_choice %}
-      {% endwith %}
+{% block form_required_fields_help_text %}
+{# commented out so it does not appear on this page #}
+{% endblock %}
 
-      <div id="domain-purpose-details-container" class="conditional-panel" style="display: none;">
+{% block form_fields %}
+  {% if requires_feb_questions %}
+      <fieldset class="usa-fieldset margin-top-0 dotgov-domain-form">
+        {{forms.0.management_form}}
+        {{forms.1.management_form}}
+        {{forms.2.management_form}}
+        {{forms.3.management_form}}
+        {{forms.4.management_form}}
+        {{forms.5.management_form}}
         <p class="usa-label">
-          Provide details below <span class="usa-label--required">*</span>
+          Select One <span class="usa-label--required">*</span>
         </p>
-        {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
-          {% input_with_errors forms.1.purpose %}
+        {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
+          {% input_with_errors forms.0.feb_purpose_choice %}
         {% endwith %}
-        <p class="usa-hint">Maximum 2000 characters allowed.</p>
-      </div>
 
-      <legend>
-        <h3>Do you have a target time frame for launching this domain?</h3>
-      </legend>
-      <p class="usa-label">
-        Select One <span class="usa-label--required">*</span>
-      </p>
-      {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
-        {% input_with_errors forms.2.has_timeframe %}
-      {% endwith %}
+        <div id="domain-purpose-details-container" class="conditional-panel" style="display: none;">
+          <p class="usa-label">
+            Provide details below <span class="usa-label--required">*</span>
+          </p>
+          {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+            {% input_with_errors forms.1.purpose %}
+          {% endwith %}
+          <p class="usa-hint">Maximum 2000 characters allowed.</p>
+        </div>
 
-      <div id="domain-timeframe-details-container" class="conditional-panel" style="display: none;">
+        <legend>
+          <h3>Do you have a target time frame for launching this domain?</h3>
+        </legend>
         <p class="usa-label">
-          Provide details below <span class="usa-label--required">*</span>
+          Select One <span class="usa-label--required">*</span>
         </p>
-        {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
-          {% input_with_errors forms.3.time_frame_details %}
+        {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
+          {% input_with_errors forms.2.has_timeframe %}
         {% endwith %}
-        <p class="usa-hint">Maximum 2000 characters allowed.</p>
-      </div>
 
-      <legend>
-        <h3>Will the domain name be used for an interagency initiative?</h3>
-      </legend>
-      <p class="usa-label">
-        Select One <span class="usa-label--required">*</span>
-      </p>
-      {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
-        {% input_with_errors forms.4.is_interagency_initiative %}
-      {% endwith %}
+        <div id="domain-timeframe-details-container" class="conditional-panel" style="display: none;">
+          <p class="usa-label">
+            Provide details below <span class="usa-label--required">*</span>
+          </p>
+          {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+            {% input_with_errors forms.3.time_frame_details %}
+          {% endwith %}
+          <p class="usa-hint">Maximum 2000 characters allowed.</p>
+        </div>
 
-      <div id="domain-interagency-initaitive-details-container" class="conditional-panel" style="display: none;">
+        <legend>
+          <h3>Will the domain name be used for an interagency initiative?</h3>
+        </legend>
         <p class="usa-label">
-          Provide details below <span class="usa-label--required">*</span>
+          Select One <span class="usa-label--required">*</span>
         </p>
-        {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
-          {% input_with_errors forms.5.interagency_initiative_details %}
+        {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
+          {% input_with_errors forms.4.is_interagency_initiative %}
         {% endwith %}
-        <p class="usa-hint">Maximum 2000 characters allowed.</p>
-      </div>
-    </fieldset>
-  {% endblock %}
-{% else %}
-  <p>Describe how you’ll use your .gov domain. Will it be used for a website, email, or something else?</p>
 
-  {% block form_required_fields_help_text %}
-  {# commented out so it does not appear on this page #}
-  {% endblock %}
+        <div id="domain-interagency-initaitive-details-container" class="conditional-panel" style="display: none;">
+          <p class="usa-label">
+            Provide details below <span class="usa-label--required">*</span>
+          </p>
+          {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+            {% input_with_errors forms.5.interagency_initiative_details %}
+          {% endwith %}
+          <p class="usa-hint">Maximum 2000 characters allowed.</p>
+        </div>
+      </fieldset>
+  {% else %}
+    <p>Describe how you’ll use your .gov domain. Will it be used for a website, email, or something else?</p>
 
-  {% block form_fields %}
-      {% with attr_maxlength=2000 add_label_class="usa-sr-only" %}
-        {% input_with_errors forms.1.purpose %}
-      {% endwith %}
-  {% endblock %}
-{% endif %}
+    {% with attr_maxlength=2000 add_label_class="usa-sr-only" %}
+      {% input_with_errors forms.1.purpose %}
+    {% endwith %}
+  {% endif %}
+{% endblock %}
 
 
diff --git a/src/registrar/tests/test_forms.py b/src/registrar/tests/test_forms.py
index 35a7d76ac..4a43e70d8 100644
--- a/src/registrar/tests/test_forms.py
+++ b/src/registrar/tests/test_forms.py
@@ -14,7 +14,7 @@ from registrar.forms.domain_request_wizard import (
     OtherContactsForm,
     RequirementsForm,
     TribalGovernmentForm,
-    PurposeForm,
+    PurposeDetailsForm,
     AnythingElseForm,
     AboutYourOrganizationForm,
 )
@@ -257,7 +257,7 @@ class TestFormValidation(MockEppLib):
     @less_console_noise_decorator
     def test_purpose_form_character_count_invalid(self):
         """Response must be less than 2000 characters."""
-        form = PurposeForm(
+        form = PurposeDetailsForm(
             data={
                 "purpose": "Bacon ipsum dolor amet fatback strip steak pastrami"
                 "shankle, drumstick doner chicken landjaeger turkey andouille."
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 372861c07..2d755c636 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -184,7 +184,7 @@ class DomainRequestWizard(DomainRequestWizardPermissionView, TemplateView):
 
     def requires_feb_questions(self) -> bool:
         # TODO: this is for testing, revert later
-        return False
+        return True
         # return self.domain_request.is_feb() and flag_is_active_for_user(self.request.user, "organization_feature")
 
     @property
@@ -754,7 +754,7 @@ class Purpose(DomainRequestWizard):
             # we only care about the purpose form in this case since it's used in both instances
             return purpose_details_form.is_valid()
         
-        if not feb_purpose_options_form.id_valid():
+        if not feb_purpose_options_form.is_valid():
             # Ensure details form doesn't throw errors if it's not showing
             purpose_details_form.mark_form_for_deletion()
         
@@ -764,7 +764,7 @@ class Purpose(DomainRequestWizard):
 
         if not feb_timeframe_yes_no_form.is_valid() or not feb_initiative_yes_no_form.cleaned_data.get("is_interagency_initiative"):
             # Ensure details form doesn't throw errors if it's not showing
-            feb_timeframe_details_form.mark_form_for_delation()
+            feb_timeframe_details_form.mark_form_for_deletion()
 
         valid = all(form.is_valid() for form in forms_list if not form.form_data_marked_for_deletion)
 

From 8d2a24767405de7b36cef3a301b301b8b5129e4c Mon Sep 17 00:00:00 2001
From: CuriousX <nicolle.leclair@gmail.com>
Date: Fri, 28 Feb 2025 11:10:53 -0700
Subject: [PATCH 11/70] Update src/registrar/assets/src/js/getgov-admin/andi.js

Co-authored-by: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
---
 src/registrar/assets/src/js/getgov-admin/andi.js | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/registrar/assets/src/js/getgov-admin/andi.js b/src/registrar/assets/src/js/getgov-admin/andi.js
index 9be03fa89..8c17b2d07 100644
--- a/src/registrar/assets/src/js/getgov-admin/andi.js
+++ b/src/registrar/assets/src/js/getgov-admin/andi.js
@@ -7,7 +7,6 @@ This allows us to avoid overriding aria-label, which is used by select2
 to send the current dropdown selection to ANDI
 */
 export function initAriaInjections() {
-    console.log("FIRED")
     document.addEventListener('DOMContentLoaded', function () {
         // Set timeout so this fires after select2.js finishes adding to the DOM
         setTimeout(function () {

From c821b20e8eaed6b53d0e902483d233560e581e76 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Fri, 28 Feb 2025 12:54:51 -0600
Subject: [PATCH 12/70] push remote for demo

---
 .../src/js/getgov/domain-purpose-form.js      | 44 +++++++++++++++
 src/registrar/assets/src/js/getgov/main.js    | 10 +++-
 src/registrar/assets/src/js/getgov/radios.js  | 56 ++++++++++++++++++-
 .../forms/domainrequestwizard/purpose.py      |  7 ---
 .../templates/domain_request_purpose.html     | 40 ++++++-------
 src/registrar/views/domain_request.py         | 21 +++++--
 6 files changed, 138 insertions(+), 40 deletions(-)
 create mode 100644 src/registrar/assets/src/js/getgov/domain-purpose-form.js

diff --git a/src/registrar/assets/src/js/getgov/domain-purpose-form.js b/src/registrar/assets/src/js/getgov/domain-purpose-form.js
new file mode 100644
index 000000000..fa13305b6
--- /dev/null
+++ b/src/registrar/assets/src/js/getgov/domain-purpose-form.js
@@ -0,0 +1,44 @@
+import { showElement } from './helpers.js';
+
+export const domain_purpose_choice_callbacks = {
+    'new': {
+        callback: function(value, element) {
+            console.log("Callback for new")
+            //show the purpose details container
+            showElement(element);
+            // change just the text inside the em tag
+            const labelElement = element.querySelector('.usa-label em');
+            labelElement.innerHTML = 'Explain why a new domain is required and why a ' +
+                'subdomain of an existing domain doesn\'t meet your needs.' +
+                '<br><br>' + // Adding double line break for spacing
+                'Include any data that supports a clear public benefit or ' +
+                'evidence user need for this new domain. ' +
+                '<span class="usa-label--required">*</span>';
+        },
+        element: document.getElementById('domain-purpose-details-container')
+    },
+    'redirect': {
+        callback: function(value, element) {
+            console.log("Callback for redirect")
+            // show the purpose details container
+            showElement(element);
+            // change just the text inside the em tag
+            const labelElement = element.querySelector('.usa-label em');
+            labelElement.innerHTML = 'Explain why a redirect is necessary. ' +
+                '<span class="usa-label--required">*</span>';
+        },
+        element: document.getElementById('domain-purpose-details-container')
+    },
+    'other': {
+        callback: function(value, element) {
+            console.log("Callback for other")
+            // Show the purpose details container
+            showElement(element);
+            // change just the text inside the em tag
+            const labelElement = element.querySelector('.usa-label em');
+            labelElement.innerHTML = 'Describe how this domain will be used. ' +
+                '<span class="usa-label--required">*</span>';
+        },
+        element: document.getElementById('domain-purpose-details-container')
+    }
+}
\ No newline at end of file
diff --git a/src/registrar/assets/src/js/getgov/main.js b/src/registrar/assets/src/js/getgov/main.js
index 796e6f815..184fd05cb 100644
--- a/src/registrar/assets/src/js/getgov/main.js
+++ b/src/registrar/assets/src/js/getgov/main.js
@@ -1,4 +1,4 @@
-import { hookupYesNoListener, hookupRadioTogglerListener } from './radios.js';
+import { hookupYesNoListener, hookupCallbacksToRadioToggler } from './radios.js';
 import { initDomainValidators } from './domain-validators.js';
 import { initFormsetsForms, triggerModalOnDsDataForm, nameserversFormListener } from './formset-forms.js';
 import { initializeUrbanizationToggle } from './urbanization.js';
@@ -15,7 +15,7 @@ import { initDomainManagersPage } from './domain-managers.js';
 import { initDomainDSData } from './domain-dsdata.js';
 import { initDomainDNSSEC } from './domain-dnssec.js';
 import { initFormErrorHandling } from './form-errors.js';
-
+import { domain_purpose_choice_callbacks } from './domain-purpose-form.js';
 initDomainValidators();
 
 initFormsetsForms();
@@ -27,6 +27,12 @@ hookupYesNoListener("additional_details-has_anything_else_text",'anything-else',
 hookupYesNoListener("additional_details-has_cisa_representative",'cisa-representative', null);
 hookupYesNoListener("dotgov_domain-feb_naming_requirements", null, "domain-naming-requirements-details-container");
 
+hookupCallbacksToRadioToggler("purpose-feb_purpose_choice", domain_purpose_choice_callbacks);
+
+hookupYesNoListener("purpose-has_timeframe", "domain-timeframe-details-container", null);
+hookupYesNoListener("purpose-is_interagency_initiative", "domain-interagency-initaitive-details-container", null);
+
+
 initializeUrbanizationToggle();
 
 userProfileListener();
diff --git a/src/registrar/assets/src/js/getgov/radios.js b/src/registrar/assets/src/js/getgov/radios.js
index 055bdf621..d5feb05d5 100644
--- a/src/registrar/assets/src/js/getgov/radios.js
+++ b/src/registrar/assets/src/js/getgov/radios.js
@@ -17,7 +17,7 @@ export function hookupYesNoListener(radioButtonName, elementIdToShowIfYes, eleme
         'False': elementIdToShowIfNo
     });
 }
-  
+
 /** 
  * Hookup listeners for radio togglers in form fields.
  * 
@@ -75,3 +75,57 @@ export function hookupRadioTogglerListener(radioButtonName, valueToElementMap) {
         handleRadioButtonChange();
     }
 }
+  
+/** 
+ * Hookup listeners for radio togglers in form fields.
+ * 
+ * Parameters:
+ *  - radioButtonName: The "name=" value for the radio buttons being used as togglers
+ *  - valueToCallbackMap: An object where keys are the values of the radio buttons, 
+ *    and values are dictionaries containing a 'callback' key and an optional 'element' key. 
+ *    If provided, the element will be passed in as the second argument to the callback function.
+ * 
+ * Usage Example:
+ * Assuming you have radio buttons with values 'option1', 'option2', and 'option3',
+ * and corresponding callback functions 'function1', 'function2', 'function3' that will
+ * apply to elements 'element1', 'element2', 'element3' respectively.
+ * 
+ * hookupCallbacksToRadioToggler('exampleRadioGroup', {
+ *      'option1': {callback: function1, element: element1},
+ *      'option2': {callback: function2, element: element2},
+ *      'option3': {callback: function3}  // No element provided
+ *    });
+ * 
+ * Picking the 'option1' radio button will call function1('option1', element1).
+ * Picking the 'option3' radio button will call function3('option3') without a second parameter.
+ **/
+export function hookupCallbacksToRadioToggler(radioButtonName, valueToCallbackMap) {
+    // Get the radio buttons
+    let radioButtons = document.querySelectorAll(`input[name="${radioButtonName}"]`);
+    
+    function handleRadioButtonChange() {
+        // Find the checked radio button
+        let radioButtonChecked = document.querySelector(`input[name="${radioButtonName}"]:checked`);
+        let selectedValue = radioButtonChecked ? radioButtonChecked.value : null;
+    
+        // Execute the callback function for the selected value
+        if (selectedValue && valueToCallbackMap[selectedValue]) {
+            const entry = valueToCallbackMap[selectedValue];
+            if ('element' in entry) {
+                entry.callback(selectedValue, entry.element);
+            } else {
+                entry.callback(selectedValue);
+            }
+        }
+    }
+
+    if (radioButtons && radioButtons.length) {
+        // Add event listener to each radio button
+        radioButtons.forEach(function (radioButton) {
+            radioButton.addEventListener('change', handleRadioButtonChange);
+        });
+    
+        // Initialize by checking the current state
+        handleRadioButtonChange();
+    }
+}
\ No newline at end of file
diff --git a/src/registrar/forms/domainrequestwizard/purpose.py b/src/registrar/forms/domainrequestwizard/purpose.py
index 23e5c28e9..52946a5e6 100644
--- a/src/registrar/forms/domainrequestwizard/purpose.py
+++ b/src/registrar/forms/domainrequestwizard/purpose.py
@@ -20,13 +20,6 @@ class FEBPurposeOptionsForm(BaseDeletableRegistrarForm):
 
 class PurposeDetailsForm(BaseDeletableRegistrarForm):
 
-    labels = {
-        "new": "Explain why a new domain is required and why a subdomain of an existing domain doesn't meet your needs. \
-            Include any data that supports a clear public benefit or evident user need for this new domain.",
-        "redirect": "Explain why a redirect is necessary",
-        "other": "Describe how this domain will be used",
-    }
-
     field_name="purpose"
 
     purpose = forms.CharField(
diff --git a/src/registrar/templates/domain_request_purpose.html b/src/registrar/templates/domain_request_purpose.html
index bef221c4b..a7d5ddbfd 100644
--- a/src/registrar/templates/domain_request_purpose.html
+++ b/src/registrar/templates/domain_request_purpose.html
@@ -7,10 +7,6 @@
   <h2>What is the purpose of your requested domain?</h2>
 {% endblock %}
 
-{% block form_required_fields_help_text %}
-{# commented out so it does not appear on this page #}
-{% endblock %}
-
 {% block form_fields %}
   {% if requires_feb_questions %}
       <fieldset class="usa-fieldset margin-top-0 dotgov-domain-form">
@@ -21,60 +17,56 @@
         {{forms.4.management_form}}
         {{forms.5.management_form}}
         <p class="usa-label">
-          Select One <span class="usa-label--required">*</span>
+          <em>Select One <span class="usa-label--required">*</span></em>
         </p>
         {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
           {% input_with_errors forms.0.feb_purpose_choice %}
         {% endwith %}
 
-        <div id="domain-purpose-details-container" class="conditional-panel" style="display: none;">
+        <div id="domain-purpose-details-container" class="conditional-panel display-none">
           <p class="usa-label">
-            Provide details below <span class="usa-label--required">*</span>
+            <em>Provide details below <span class="usa-label--required">*</span></em>
           </p>
           {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
             {% input_with_errors forms.1.purpose %}
           {% endwith %}
-          <p class="usa-hint">Maximum 2000 characters allowed.</p>
+          <p class="usa-hint margin-top-0">Maximum 2000 characters allowed.</p>
         </div>
 
-        <legend>
-          <h3>Do you have a target time frame for launching this domain?</h3>
-        </legend>
+        <h2 class="margin-top-5">Do you have a target time frame for launching this domain?</h2>
         <p class="usa-label">
-          Select One <span class="usa-label--required">*</span>
+          <em>Select One <span class="usa-label--required">*</span></em>
         </p>
         {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
           {% input_with_errors forms.2.has_timeframe %}
         {% endwith %}
 
-        <div id="domain-timeframe-details-container" class="conditional-panel" style="display: none;">
-          <p class="usa-label">
-            Provide details below <span class="usa-label--required">*</span>
+        <div id="domain-timeframe-details-container" class="conditional-panel">
+          <p>
+            <em>Provide details below <span class="usa-label--required">*</span></em>
           </p>
           {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
             {% input_with_errors forms.3.time_frame_details %}
           {% endwith %}
-          <p class="usa-hint">Maximum 2000 characters allowed.</p>
+          <p class="usa-hint margin-top-0">Maximum 2000 characters allowed.</p>
         </div>
 
-        <legend>
-          <h3>Will the domain name be used for an interagency initiative?</h3>
-        </legend>
-        <p class="usa-label">
-          Select One <span class="usa-label--required">*</span>
+        <h2>Will the domain name be used for an interagency initiative?</h2>
+        <p>
+          <em>Select One <span class="usa-label--required">*</span></em>
         </p>
         {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
           {% input_with_errors forms.4.is_interagency_initiative %}
         {% endwith %}
 
-        <div id="domain-interagency-initaitive-details-container" class="conditional-panel" style="display: none;">
+        <div id="domain-interagency-initaitive-details-container" class="conditional-panel">
           <p class="usa-label">
-            Provide details below <span class="usa-label--required">*</span>
+            <em>Provide details below <span class="usa-label--required">*</span></em>
           </p>
           {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
             {% input_with_errors forms.5.interagency_initiative_details %}
           {% endwith %}
-          <p class="usa-hint">Maximum 2000 characters allowed.</p>
+          <p class="usa-hint margin-top-0">Maximum 2000 characters allowed.</p>
         </div>
       </fieldset>
   {% else %}
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 2d755c636..9ecd66191 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -745,26 +745,35 @@ class Purpose(DomainRequestWizard):
         feb_initiative_details_form = forms_list[5]
 
         if not self.requires_feb_questions():
-            # if FEB questions don't apply, mark all other forms for deletion
+            # if FEB questions don't apply, mark those forms for deletion
             feb_purpose_options_form.mark_form_for_deletion()
             feb_timeframe_yes_no_form.mark_form_for_deletion()
             feb_timeframe_details_form.mark_form_for_deletion()
             feb_initiative_yes_no_form.mark_form_for_deletion()
             feb_initiative_details_form.mark_form_for_deletion()
-            # we only care about the purpose form in this case since it's used in both instances
+            # we only care about the purpose details form in this case since it's used in both instances
             return purpose_details_form.is_valid()
         
         if not feb_purpose_options_form.is_valid():
             # Ensure details form doesn't throw errors if it's not showing
             purpose_details_form.mark_form_for_deletion()
+
+        feb_timeframe_valid = feb_timeframe_yes_no_form.is_valid()
+        feb_initiative_valid = feb_initiative_yes_no_form.is_valid()
+
+        logger.debug(f"feb timeframe yesno: {feb_timeframe_yes_no_form.cleaned_data.get('has_timeframe')}")
+        logger.debug(f"FEB initiative yesno: {feb_initiative_yes_no_form.cleaned_data.get('is_interagency_initiative')}")
         
-        if not feb_initiative_yes_no_form.is_valid() or not feb_timeframe_yes_no_form.cleaned_data.get("has_timeframe"):
+        if not feb_timeframe_valid or not feb_timeframe_yes_no_form.cleaned_data.get("has_timeframe"):
+            # Ensure details form doesn't throw errors if it's not showing
+            feb_timeframe_details_form.mark_form_for_deletion()
+
+        if not feb_initiative_valid or not feb_initiative_yes_no_form.cleaned_data.get("is_interagency_initiative"):
             # Ensure details form doesn't throw errors if it's not showing
             feb_initiative_details_form.mark_form_for_deletion()
 
-        if not feb_timeframe_yes_no_form.is_valid() or not feb_initiative_yes_no_form.cleaned_data.get("is_interagency_initiative"):
-            # Ensure details form doesn't throw errors if it's not showing
-            feb_timeframe_details_form.mark_form_for_deletion()
+        for i, form in enumerate(forms_list):
+            logger.debug(f"Form {i} is marked for deletion: {form.form_data_marked_for_deletion}")
 
         valid = all(form.is_valid() for form in forms_list if not form.form_data_marked_for_deletion)
 

From c65b67d508056a5a918e06a8efcc0dc3f14edcac Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Mon, 3 Mar 2025 11:38:42 -0700
Subject: [PATCH 13/70] linted

---
 src/registrar/utility/admin_helpers.py | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/registrar/utility/admin_helpers.py b/src/registrar/utility/admin_helpers.py
index 5fe2f3b3b..93a0a16b5 100644
--- a/src/registrar/utility/admin_helpers.py
+++ b/src/registrar/utility/admin_helpers.py
@@ -105,7 +105,6 @@ class AutocompleteSelectWithPlaceholder(AutocompleteSelect):
         attrs = super().build_attrs(base_attrs, extra_attrs=extra_attrs)
         if "data-placeholder" in base_attrs:
             attrs["data-placeholder"] = base_attrs["data-placeholder"]
-        
         return attrs
 
     def __init__(self, field, admin_site, attrs=None, choices=(), using=None):

From 4004a2f73566b5d2e2c1b1d3207b904dfebbab6c Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Mon, 3 Mar 2025 16:11:50 -0600
Subject: [PATCH 14/70] add FEB purpose questions

---
 .../src/js/getgov/domain-purpose-form.js      |   9 +-
 src/registrar/assets/src/js/getgov/main.js    |   6 +-
 .../forms/domainrequestwizard/purpose.py      |  24 ++--
 src/registrar/models/domain_request.py        |   4 +-
 .../templates/domain_request_purpose.html     |  38 +++---
 src/registrar/tests/test_forms.py             |   3 +-
 src/registrar/tests/test_views_request.py     | 119 ++++++++++++++++++
 src/registrar/views/domain_request.py         |  49 ++++----
 8 files changed, 191 insertions(+), 61 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/domain-purpose-form.js b/src/registrar/assets/src/js/getgov/domain-purpose-form.js
index fa13305b6..7cde5bc35 100644
--- a/src/registrar/assets/src/js/getgov/domain-purpose-form.js
+++ b/src/registrar/assets/src/js/getgov/domain-purpose-form.js
@@ -3,7 +3,6 @@ import { showElement } from './helpers.js';
 export const domain_purpose_choice_callbacks = {
     'new': {
         callback: function(value, element) {
-            console.log("Callback for new")
             //show the purpose details container
             showElement(element);
             // change just the text inside the em tag
@@ -15,11 +14,10 @@ export const domain_purpose_choice_callbacks = {
                 'evidence user need for this new domain. ' +
                 '<span class="usa-label--required">*</span>';
         },
-        element: document.getElementById('domain-purpose-details-container')
+        element: document.getElementById('purpose-details-container')
     },
     'redirect': {
         callback: function(value, element) {
-            console.log("Callback for redirect")
             // show the purpose details container
             showElement(element);
             // change just the text inside the em tag
@@ -27,11 +25,10 @@ export const domain_purpose_choice_callbacks = {
             labelElement.innerHTML = 'Explain why a redirect is necessary. ' +
                 '<span class="usa-label--required">*</span>';
         },
-        element: document.getElementById('domain-purpose-details-container')
+        element: document.getElementById('purpose-details-container')
     },
     'other': {
         callback: function(value, element) {
-            console.log("Callback for other")
             // Show the purpose details container
             showElement(element);
             // change just the text inside the em tag
@@ -39,6 +36,6 @@ export const domain_purpose_choice_callbacks = {
             labelElement.innerHTML = 'Describe how this domain will be used. ' +
                 '<span class="usa-label--required">*</span>';
         },
-        element: document.getElementById('domain-purpose-details-container')
+        element: document.getElementById('purpose-details-container')
     }
 }
\ No newline at end of file
diff --git a/src/registrar/assets/src/js/getgov/main.js b/src/registrar/assets/src/js/getgov/main.js
index 184fd05cb..139c8484a 100644
--- a/src/registrar/assets/src/js/getgov/main.js
+++ b/src/registrar/assets/src/js/getgov/main.js
@@ -29,8 +29,8 @@ hookupYesNoListener("dotgov_domain-feb_naming_requirements", null, "domain-namin
 
 hookupCallbacksToRadioToggler("purpose-feb_purpose_choice", domain_purpose_choice_callbacks);
 
-hookupYesNoListener("purpose-has_timeframe", "domain-timeframe-details-container", null);
-hookupYesNoListener("purpose-is_interagency_initiative", "domain-interagency-initaitive-details-container", null);
+hookupYesNoListener("purpose-has_timeframe", "purpose-timeframe-details-container", null);
+hookupYesNoListener("purpose-is_interagency_initiative", "purpose-interagency-initaitive-details-container", null);
 
 
 initializeUrbanizationToggle();
@@ -56,4 +56,4 @@ initFormErrorHandling();
 // Init the portfolio new member page
 initPortfolioMemberPageRadio();
 initPortfolioNewMemberPageToggle();
-initAddNewMemberPageListeners();
+initAddNewMemberPageListeners();
\ No newline at end of file
diff --git a/src/registrar/forms/domainrequestwizard/purpose.py b/src/registrar/forms/domainrequestwizard/purpose.py
index 52946a5e6..43dd62290 100644
--- a/src/registrar/forms/domainrequestwizard/purpose.py
+++ b/src/registrar/forms/domainrequestwizard/purpose.py
@@ -1,12 +1,17 @@
 from django import forms
 from django.core.validators import MaxLengthValidator
-from registrar.forms.utility.wizard_form_helper import BaseDeletableRegistrarForm, BaseYesNoForm, RegistrarForm
+from registrar.forms.utility.wizard_form_helper import BaseDeletableRegistrarForm, BaseYesNoForm
+
 
 class FEBPurposeOptionsForm(BaseDeletableRegistrarForm):
 
     field_name = "feb_purpose_choice"
 
-    form_choices = (("new", "Used for a new website"), ("redirect", "Used as a redirect for an existing website"), ("other", "Not for a website"))
+    form_choices = (
+        ("new", "Used for a new website"),
+        ("redirect", "Used as a redirect for an existing website"),
+        ("other", "Not for a website"),
+    )
 
     feb_purpose_choice = forms.ChoiceField(
         required=True,
@@ -15,12 +20,13 @@ class FEBPurposeOptionsForm(BaseDeletableRegistrarForm):
         error_messages={
             "required": "This question is required.",
         },
-        label = "Select one"
+        label="Select one",
     )
 
+
 class PurposeDetailsForm(BaseDeletableRegistrarForm):
 
-    field_name="purpose"
+    field_name = "purpose"
 
     purpose = forms.CharField(
         label="Purpose",
@@ -39,6 +45,7 @@ class PurposeDetailsForm(BaseDeletableRegistrarForm):
         error_messages={"required": "Describe how you’ll use the .gov domain you’re requesting."},
     )
 
+
 class FEBTimeFrameYesNoForm(BaseDeletableRegistrarForm, BaseYesNoForm):
     """
     Form for determining whether the domain request comes with a target timeframe for launch.
@@ -73,6 +80,7 @@ class FEBTimeFrameDetailsForm(BaseDeletableRegistrarForm):
         error_messages={"required": "Provide details on your target timeframe."},
     )
 
+
 class FEBInteragencyInitiativeYesNoForm(BaseDeletableRegistrarForm, BaseYesNoForm):
     """
     Form for determining whether the domain request is part of an interagency initative.
@@ -92,11 +100,7 @@ class FEBInteragencyInitiativeYesNoForm(BaseDeletableRegistrarForm, BaseYesNoFor
 class FEBInteragencyInitiativeDetailsForm(BaseDeletableRegistrarForm):
     interagency_initiative_details = forms.CharField(
         label="interagency_initiative_details",
-        widget=forms.Textarea(
-            attrs={
-                "aria-label": "Name the agencies that will be involved in this initiative."
-            }
-        ),
+        widget=forms.Textarea(attrs={"aria-label": "Name the agencies that will be involved in this initiative."}),
         validators=[
             MaxLengthValidator(
                 2000,
@@ -104,4 +108,4 @@ class FEBInteragencyInitiativeDetailsForm(BaseDeletableRegistrarForm):
             )
         ],
         error_messages={"required": "Name the agencies that will be involved in this initiative."},
-    )
\ No newline at end of file
+    )
diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index b45767598..b7aaff65d 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -53,7 +53,7 @@ class DomainRequest(TimeStampedModel):
         def get_status_label(cls, status_name: str):
             """Returns the associated label for a given status name"""
             return cls(status_name).label if status_name else None
-        
+
     class FEBPurposeChoices(models.TextChoices):
         WEBSITE = "website"
         REDIRECT = "redirect"
@@ -558,8 +558,6 @@ class DomainRequest(TimeStampedModel):
         help_text="Other domain names the creator provided for consideration",
     )
 
-
-
     other_contacts = models.ManyToManyField(
         "registrar.Contact",
         blank=True,
diff --git a/src/registrar/templates/domain_request_purpose.html b/src/registrar/templates/domain_request_purpose.html
index a7d5ddbfd..fb5145476 100644
--- a/src/registrar/templates/domain_request_purpose.html
+++ b/src/registrar/templates/domain_request_purpose.html
@@ -7,6 +7,10 @@
   <h2>What is the purpose of your requested domain?</h2>
 {% endblock %}
 
+{% block form_required_fields_help_text %}
+{# empty this block so it doesn't show on this page #}
+{% endblock %}
+
 {% block form_fields %}
   {% if requires_feb_questions %}
       <fieldset class="usa-fieldset margin-top-0 dotgov-domain-form">
@@ -16,54 +20,54 @@
         {{forms.3.management_form}}
         {{forms.4.management_form}}
         {{forms.5.management_form}}
-        <p class="usa-label">
-          <em>Select One <span class="usa-label--required">*</span></em>
+        <p class="margin-bottom-0 margin-top-1">
+          <em>Select one. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></em>
         </p>
         {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
           {% input_with_errors forms.0.feb_purpose_choice %}
         {% endwith %}
 
-        <div id="domain-purpose-details-container" class="conditional-panel display-none">
+        <div id="purpose-details-container" class="conditional-panel display-none">
           <p class="usa-label">
             <em>Provide details below <span class="usa-label--required">*</span></em>
           </p>
-          {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+          {% with add_label_class="usa-sr-only" attr_required="required" attr_maxlength="2000" %}
             {% input_with_errors forms.1.purpose %}
           {% endwith %}
           <p class="usa-hint margin-top-0">Maximum 2000 characters allowed.</p>
         </div>
 
-        <h2 class="margin-top-5">Do you have a target time frame for launching this domain?</h2>
-        <p class="usa-label">
-          <em>Select One <span class="usa-label--required">*</span></em>
+        <h2>Do you have a target time frame for launching this domain?</h2>
+        <p class="margin-bottom-0 margin-top-1">
+          <em>Select one. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></em>
         </p>
         {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
           {% input_with_errors forms.2.has_timeframe %}
         {% endwith %}
 
-        <div id="domain-timeframe-details-container" class="conditional-panel">
-          <p>
-            <em>Provide details below <span class="usa-label--required">*</span></em>
+        <div id="purpose-timeframe-details-container" class="conditional-panel">
+          <p class="margin-bottom-0 margin-top-1">
+            <em>Provide details below. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></em>
           </p>
-          {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+          {% with add_label_class="usa-sr-only" attr_required="required" attr_maxlength="2000" %}
             {% input_with_errors forms.3.time_frame_details %}
           {% endwith %}
           <p class="usa-hint margin-top-0">Maximum 2000 characters allowed.</p>
         </div>
 
         <h2>Will the domain name be used for an interagency initiative?</h2>
-        <p>
-          <em>Select One <span class="usa-label--required">*</span></em>
+        <p class="margin-bottom-0 margin-top-1">
+          <em>Select one. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></em>
         </p>
         {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
           {% input_with_errors forms.4.is_interagency_initiative %}
         {% endwith %}
 
-        <div id="domain-interagency-initaitive-details-container" class="conditional-panel">
-          <p class="usa-label">
-            <em>Provide details below <span class="usa-label--required">*</span></em>
+        <div id="purpose-interagency-initaitive-details-container" class="conditional-panel">
+          <p class="margin-bottom-0 margin-top-1">
+            <em>Provide details below. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></em>
           </p>
-          {% with add_label_class="usa-sr-only" attr_required="required" maxlength="2000" %}
+          {% with add_label_class="usa-sr-only" attr_required="required" attr_maxlength="2000" %}
             {% input_with_errors forms.5.interagency_initiative_details %}
           {% endwith %}
           <p class="usa-hint margin-top-0">Maximum 2000 characters allowed.</p>
diff --git a/src/registrar/tests/test_forms.py b/src/registrar/tests/test_forms.py
index 4a43e70d8..03f20c862 100644
--- a/src/registrar/tests/test_forms.py
+++ b/src/registrar/tests/test_forms.py
@@ -14,10 +14,11 @@ from registrar.forms.domain_request_wizard import (
     OtherContactsForm,
     RequirementsForm,
     TribalGovernmentForm,
-    PurposeDetailsForm,
     AnythingElseForm,
     AboutYourOrganizationForm,
 )
+from registrar.forms.domainrequestwizard.purpose import PurposeDetailsForm
+
 from registrar.forms.domain import ContactForm
 from registrar.forms.portfolio import (
     PortfolioInvitedMemberForm,
diff --git a/src/registrar/tests/test_views_request.py b/src/registrar/tests/test_views_request.py
index 316be82cf..af4834070 100644
--- a/src/registrar/tests/test_views_request.py
+++ b/src/registrar/tests/test_views_request.py
@@ -5,6 +5,7 @@ from django.utils import timezone
 from django.conf import settings
 from django.urls import reverse
 from api.tests.common import less_console_noise_decorator
+from registrar.utility.constants import BranchChoices
 from .common import MockSESClient, completed_domain_request  # type: ignore
 from django_webtest import WebTest  # type: ignore
 import boto3_mocking  # type: ignore
@@ -2521,6 +2522,124 @@ class DomainRequestTests(TestWithUser, WebTest):
         self.assertContains(dotgov_page, "CityofEudoraKS.gov")
         self.assertNotContains(dotgov_page, "medicare.gov")
 
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    def test_domain_request_dotgov_domain_FEB_questions(self):
+        """
+        Test that for a member of a federal executive branch portfolio with org feature on, the dotgov domain page
+        contains additional questions for OMB.
+        """
+        agency, _ = FederalAgency.objects.get_or_create(
+            agency="US Treasury Dept",
+            federal_type=BranchChoices.EXECUTIVE,
+        )
+
+        portfolio, _ = Portfolio.objects.get_or_create(
+            creator=self.user,
+            organization_name="Test Portfolio",
+            organization_type=Portfolio.OrganizationChoices.FEDERAL,
+            federal_agency=agency,
+        )
+
+        portfolio_perm, _ = UserPortfolioPermission.objects.get_or_create(
+            user=self.user, portfolio=portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+        )
+        intro_page = self.app.get(reverse("domain-request:start"))
+        # django-webtest does not handle cookie-based sessions well because it keeps
+        # resetting the session key on each new request, thus destroying the concept
+        # of a "session". We are going to do it manually, saving the session ID here
+        # and then setting the cookie on each request.
+        session_id = self.app.cookies[settings.SESSION_COOKIE_NAME]
+
+        intro_form = intro_page.forms[0]
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+        intro_result = intro_form.submit()
+
+        # follow first redirect
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+        portfolio_requesting_entity = intro_result.follow()
+        session_id = self.app.cookies[settings.SESSION_COOKIE_NAME]
+
+        # ---- REQUESTING ENTITY PAGE  ----
+        requesting_entity_form = portfolio_requesting_entity.forms[0]
+        requesting_entity_form["portfolio_requesting_entity-requesting_entity_is_suborganization"] = False
+
+        # test next button
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+        requesting_entity_result = requesting_entity_form.submit()
+
+        # ---- CURRENT SITES PAGE  ----
+        # Follow the redirect to the next form page
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+        current_sites_page = requesting_entity_result.follow()
+        current_sites_form = current_sites_page.forms[0]
+        current_sites_form["current_sites-0-website"] = "www.treasury.com"
+
+        # test saving the page
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+        current_sites_result = current_sites_form.submit()
+
+        # ---- DOTGOV DOMAIN PAGE  ----
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+        dotgov_page = current_sites_result.follow()
+
+        # separate out these tests for readability
+        self.feb_dotgov_domain_tests(dotgov_page)
+
+        # Now proceed with the actual test
+        domain_form = dotgov_page.forms[0]
+        domain_form["dotgov_domain-requested_domain"] = "test.gov"
+        domain_form["dotgov_domain-feb_naming_requirements"] = "True"
+
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+        domain_result = domain_form.submit()
+
+        # ---- PURPOSE PAGE  ----
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+        purpose_page = domain_result.follow()
+
+        self.feb_purpose_page_tests(purpose_page)
+
+    def feb_purpose_page_tests(self, purpose_page):
+        self.assertContains(purpose_page, "What is the purpose of your requested domain?")
+
+        # Make sure the purpose selector form is present
+        self.assertContains(purpose_page, "feb_purpose_choice")
+
+        # Make sure the purpose details form is present
+        self.assertContains(purpose_page, "purpose-details")
+
+        # Make sure the timeframe yes/no form is present
+        self.assertContains(purpose_page, "purpose-has_timeframe")
+
+        # Make sure the timeframe details form is present
+        self.assertContains(purpose_page, "purpose-time_frame_details")
+
+        # Make sure the interagency initiative yes/no form is present
+        self.assertContains(purpose_page, "purpose-is_interagency_initiative")
+
+        # Make sure the interagency initiative details form is present
+        self.assertContains(purpose_page, "purpose-interagency_initiative_details")
+
+    def feb_dotgov_domain_tests(self, dotgov_page):
+        # Make sure the dynamic example content doesn't show
+        self.assertNotContains(dotgov_page, "medicare.gov")
+
+        # Make sure the link at the top directs to OPM FEB guidance
+        self.assertContains(dotgov_page, "https://get.gov/domains/executive-branch-guidance/")
+
+        # Check for header of first FEB form
+        self.assertContains(dotgov_page, "Does this submission meet each domain naming requirement?")
+
+        # Check for label of second FEB form
+        self.assertContains(dotgov_page, "Provide details below")
+
+        # Check that the yes/no form was included
+        self.assertContains(dotgov_page, "feb_naming_requirements")
+
+        # Check that the details form was included
+        self.assertContains(dotgov_page, "feb_naming_requirements_details")
+
     @less_console_noise_decorator
     def test_domain_request_formsets(self):
         """Users are able to add more than one of some fields."""
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 9ecd66191..60ebac594 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -183,9 +183,7 @@ class DomainRequestWizard(DomainRequestWizardPermissionView, TemplateView):
         return PortfolioDomainRequestStep if self.is_portfolio else Step
 
     def requires_feb_questions(self) -> bool:
-        # TODO: this is for testing, revert later
-        return True
-        # return self.domain_request.is_feb() and flag_is_active_for_user(self.request.user, "organization_feature")
+        return self.domain_request.is_feb() and flag_is_active_for_user(self.request.user, "organization_feature")
 
     @property
     def prefix(self):
@@ -713,19 +711,20 @@ class DotgovDomain(DomainRequestWizard):
 class Purpose(DomainRequestWizard):
     template_name = "domain_request_purpose.html"
 
-    forms = [purpose.FEBPurposeOptionsForm,
-             purpose.PurposeDetailsForm,
-             purpose.FEBTimeFrameYesNoForm,
-             purpose.FEBTimeFrameDetailsForm,
-             purpose.FEBInteragencyInitiativeYesNoForm,
-             purpose.FEBInteragencyInitiativeDetailsForm
-            ]
+    forms = [
+        purpose.FEBPurposeOptionsForm,
+        purpose.PurposeDetailsForm,
+        purpose.FEBTimeFrameYesNoForm,
+        purpose.FEBTimeFrameDetailsForm,
+        purpose.FEBInteragencyInitiativeYesNoForm,
+        purpose.FEBInteragencyInitiativeDetailsForm,
+    ]
 
     def get_context_data(self):
-        context= super().get_context_data()
+        context = super().get_context_data()
         context["requires_feb_questions"] = self.requires_feb_questions()
         return context
-    
+
     def is_valid(self, forms_list: list) -> bool:
         """
         Expected order of forms_list:
@@ -753,17 +752,29 @@ class Purpose(DomainRequestWizard):
             feb_initiative_details_form.mark_form_for_deletion()
             # we only care about the purpose details form in this case since it's used in both instances
             return purpose_details_form.is_valid()
-        
-        if not feb_purpose_options_form.is_valid():
+
+        if feb_purpose_options_form.is_valid():
+            option = feb_purpose_options_form.cleaned_data.get("feb_purpose_choice")
+            if option == "new":
+                purpose_details_form.fields["purpose"].error_messages = {
+                    "required": "Explain why a new domain is required."
+                }
+            elif option == "redirect":
+                purpose_details_form.fields["purpose"].error_messages = {
+                    "required": "Explain why a redirect is needed."
+                }
+            elif option == "other":
+                purpose_details_form.fields["purpose"].error_messages = {
+                    "required": "Provide details on how this domain will be used."
+                }
+            # If somehow none of these are true use the default error message
+        else:
             # Ensure details form doesn't throw errors if it's not showing
             purpose_details_form.mark_form_for_deletion()
 
         feb_timeframe_valid = feb_timeframe_yes_no_form.is_valid()
         feb_initiative_valid = feb_initiative_yes_no_form.is_valid()
 
-        logger.debug(f"feb timeframe yesno: {feb_timeframe_yes_no_form.cleaned_data.get('has_timeframe')}")
-        logger.debug(f"FEB initiative yesno: {feb_initiative_yes_no_form.cleaned_data.get('is_interagency_initiative')}")
-        
         if not feb_timeframe_valid or not feb_timeframe_yes_no_form.cleaned_data.get("has_timeframe"):
             # Ensure details form doesn't throw errors if it's not showing
             feb_timeframe_details_form.mark_form_for_deletion()
@@ -772,15 +783,11 @@ class Purpose(DomainRequestWizard):
             # Ensure details form doesn't throw errors if it's not showing
             feb_initiative_details_form.mark_form_for_deletion()
 
-        for i, form in enumerate(forms_list):
-            logger.debug(f"Form {i} is marked for deletion: {form.form_data_marked_for_deletion}")
-
         valid = all(form.is_valid() for form in forms_list if not form.form_data_marked_for_deletion)
 
         return valid
 
 
-
 class OtherContacts(DomainRequestWizard):
     template_name = "domain_request_other_contacts.html"
     forms = [forms.OtherContactsYesNoForm, forms.OtherContactsFormSet, forms.NoOtherContactsForm]

From 470e05a7b6bf033f9602dcbbdd093b49114e456f Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Mon, 3 Mar 2025 16:25:42 -0600
Subject: [PATCH 15/70] test fix

---
 src/registrar/tests/test_views_request.py | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/registrar/tests/test_views_request.py b/src/registrar/tests/test_views_request.py
index af4834070..abb9d4e77 100644
--- a/src/registrar/tests/test_views_request.py
+++ b/src/registrar/tests/test_views_request.py
@@ -2414,7 +2414,7 @@ class DomainRequestTests(TestWithUser, WebTest):
         so_page = org_contact_result.follow()
         self.assertContains(so_page, "Domain requests from cities")
 
-    # @less_console_noise_decorator
+    @less_console_noise_decorator
     def test_domain_request_dotgov_domain_dynamic_text(self):
         intro_page = self.app.get(reverse("domain-request:start"))
         # django-webtest does not handle cookie-based sessions well because it keeps
@@ -2497,7 +2497,6 @@ class DomainRequestTests(TestWithUser, WebTest):
         # ---- DOTGOV DOMAIN PAGE  ----
         self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
         dotgov_page = current_sites_result.follow()
-        print(dotgov_page)
 
         self.assertContains(dotgov_page, "medicare.gov")
 

From 34dd8511e29e981a6edd6f33fa8b6b7e2a3a811c Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Mon, 3 Mar 2025 17:12:28 -0600
Subject: [PATCH 16/70] test fixes

---
 src/registrar/tests/test_admin_request.py | 5 +++++
 src/registrar/tests/test_views_request.py | 9 +++++++--
 src/registrar/views/domain_request.py     | 1 -
 3 files changed, 12 insertions(+), 3 deletions(-)

diff --git a/src/registrar/tests/test_admin_request.py b/src/registrar/tests/test_admin_request.py
index 9fb415941..9320dd3d3 100644
--- a/src/registrar/tests/test_admin_request.py
+++ b/src/registrar/tests/test_admin_request.py
@@ -1983,7 +1983,12 @@ class TestDomainRequestAdmin(MockEppLib):
             "requested_domain",
             "feb_naming_requirements",
             "feb_naming_requirements_details",
+            "feb_purpose_choice",
             "purpose",
+            "has_timeframe",
+            "time_frame_details",
+            "is_interagency_initiative",
+            "interagency_initiative_details",
             "no_other_contacts_rationale",
             "anything_else",
             "has_anything_else_text",
diff --git a/src/registrar/tests/test_views_request.py b/src/registrar/tests/test_views_request.py
index 2f3c87207..d2a791969 100644
--- a/src/registrar/tests/test_views_request.py
+++ b/src/registrar/tests/test_views_request.py
@@ -54,6 +54,7 @@ class DomainRequestTests(TestWithUser, WebTest):
         UserPortfolioPermission.objects.all().delete()
         Portfolio.objects.all().delete()
         User.objects.all().delete()
+        FederalAgency.objects.all().delete()
 
     @less_console_noise_decorator
     def test_domain_request_form_intro_acknowledgement(self):
@@ -2547,7 +2548,7 @@ class DomainRequestTests(TestWithUser, WebTest):
         self.assertContains(dotgov_page, "CityofEudoraKS.gov")
         self.assertNotContains(dotgov_page, "medicare.gov")
 
-    @less_console_noise_decorator
+    # @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     def test_domain_request_dotgov_domain_FEB_questions(self):
         """
@@ -2613,8 +2614,10 @@ class DomainRequestTests(TestWithUser, WebTest):
 
         # Now proceed with the actual test
         domain_form = dotgov_page.forms[0]
-        domain_form["dotgov_domain-requested_domain"] = "test.gov"
+        domain_form["dotgov_domain-requested_domain"] = "asdffhgjkl.gov"
         domain_form["dotgov_domain-feb_naming_requirements"] = "True"
+        domain_form["dotgov_domain-feb_naming_requirements_details"] = "test"
+        print(domain_form.fields)
 
         self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
         domain_result = domain_form.submit()
@@ -2622,9 +2625,11 @@ class DomainRequestTests(TestWithUser, WebTest):
         # ---- PURPOSE PAGE  ----
         self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
         purpose_page = domain_result.follow()
+        print(purpose_page.forms[0].fields)
 
         self.feb_purpose_page_tests(purpose_page)
 
+
     def feb_purpose_page_tests(self, purpose_page):
         self.assertContains(purpose_page, "What is the purpose of your requested domain?")
 
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index f4bb877d6..55cd9a19e 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -233,7 +233,6 @@ class DomainRequestWizard(TemplateView):
                 self._domain_request.generic_org_type = portfolio.organization_type
                 self._domain_request.save()
             if portfolio and not self._domain_request.federal_type:
-                logger.debug(f"Setting fed type to {portfolio.federal_type}")
                 self._domain_request.federal_type = portfolio.federal_type
                 self._domain_request.save()
         else:

From 9ddf7a6cd04dc5dbb6dd3fb06cc6bedceaef1617 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 4 Mar 2025 13:27:41 -0600
Subject: [PATCH 17/70] test fixes

---
 src/registrar/forms/domain_request_wizard.py |  3 +++
 src/registrar/tests/test_views_request.py    | 11 +++++------
 2 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index 4e7182843..7cbb159b4 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -599,6 +599,9 @@ class DotGovDomainForm(RegistrarForm):
             return_type=ValidationReturnType.FORM_VALIDATION_ERROR,
         )
         return validated
+    
+    def is_valid(self):
+        return super().is_valid()
 
     requested_domain = forms.CharField(
         label="What .gov domain do you want?",
diff --git a/src/registrar/tests/test_views_request.py b/src/registrar/tests/test_views_request.py
index d2a791969..7b117f67d 100644
--- a/src/registrar/tests/test_views_request.py
+++ b/src/registrar/tests/test_views_request.py
@@ -2614,18 +2614,17 @@ class DomainRequestTests(TestWithUser, WebTest):
 
         # Now proceed with the actual test
         domain_form = dotgov_page.forms[0]
-        domain_form["dotgov_domain-requested_domain"] = "asdffhgjkl.gov"
+        domain = "test.gov"
+        domain_form["dotgov_domain-requested_domain"] = domain
         domain_form["dotgov_domain-feb_naming_requirements"] = "True"
         domain_form["dotgov_domain-feb_naming_requirements_details"] = "test"
-        print(domain_form.fields)
-
-        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
-        domain_result = domain_form.submit()
+        with patch('registrar.forms.domain_request_wizard.DotGovDomainForm.clean_requested_domain', return_value=domain):  # noqa
+            self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+            domain_result = domain_form.submit()
 
         # ---- PURPOSE PAGE  ----
         self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
         purpose_page = domain_result.follow()
-        print(purpose_page.forms[0].fields)
 
         self.feb_purpose_page_tests(purpose_page)
 

From cafc5509618960c12eeb980e5576e3407e1683a8 Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Tue, 4 Mar 2025 20:20:23 -0700
Subject: [PATCH 18/70] Fixes + Updates to meet new ACs

---
 src/registrar/templates/home.html             | 16 +++---
 .../includes/domain_requests_table.html       | 18 +++++--
 .../templates/includes/domains_table.html     | 32 ++++++++----
 src/registrar/templates/includes/export.html  | 12 +++++
 .../templates/includes/members_table.html     |  9 ++--
 src/registrar/templates/includes/search.html  | 17 ++++---
 .../templates/includes/search_table.html      | 50 -------------------
 .../templates/portfolio_requests.html         | 20 ++++----
 8 files changed, 83 insertions(+), 91 deletions(-)
 create mode 100644 src/registrar/templates/includes/export.html
 delete mode 100644 src/registrar/templates/includes/search_table.html

diff --git a/src/registrar/templates/home.html b/src/registrar/templates/home.html
index 3c96016eb..1d178d3fb 100644
--- a/src/registrar/templates/home.html
+++ b/src/registrar/templates/home.html
@@ -15,14 +15,14 @@
       {% include "includes/form_messages.html" %}
     {% endblock %}
   
-    <h1>Manage your domains</h1>
-
-    <p class="margin-top-4">
-      <button data-href="{% url 'domain-request:start' %}" class="usa-button use-button-as-link"
-      >
-        Start a new domain request
-      </button>
-    </p>
+    <div class="grid-row margin-bottom-3">
+      <h1 class="flex-fill">Manage your domains</h1>
+      <div>
+        <button data-href="{% url 'domain-request:start' %}" class="usa-button use-button-as-link">
+          Start a new domain request
+        </button>
+      </div>
+    </div>
 
     {% include "includes/domains_table.html" with user_domain_count=user_domain_count %}
     {% include "includes/domain_requests_table.html" %}
diff --git a/src/registrar/templates/includes/domain_requests_table.html b/src/registrar/templates/includes/domain_requests_table.html
index 7ddf88607..decbfcce6 100644
--- a/src/registrar/templates/includes/domain_requests_table.html
+++ b/src/registrar/templates/includes/domain_requests_table.html
@@ -4,17 +4,25 @@
 {% url 'get_domain_requests_json' as url %}
 <span id="get_domain_requests_json_url" class="display-none">{{url}}</span>
 
-<section class="section-outlined domain-requests {% if portfolio %}section-outlined--border-base-light{% endif %}" id="domain-requests">
+<section class="section-outlined domain-requests {% if portfolio %}margin-top-0 section-outlined--border-base-light{% endif %}" id="domain-requests">
     <div class="section-outlined__header margin-bottom-3 {% if not portfolio %}section-outlined__header--no-portfolio flex-wrap{% else %} grid-row{% endif %}">
         {% if not portfolio %}
-            <h2 id="domain-requests-header" class="display-inline-block">Domain requests</h2>
+        <div class="grid-row grid-col-12">
+            <h2 id="domain-requests-header" class="display-inline-block flex-fill">Domain requests</h2>
+        </div>
         {% else %}
         <!-- Embedding the portfolio value in a data attribute -->
         <span id="portfolio-js-value" data-portfolio="{{ portfolio.id }}"></span>
         {% endif %}
-        <!-- ---------- SEARCH & EXPORT ---------- -->
-        {% with label_text=portfolio|yesno:"Search by domain name or creator,Search by domain name"  item_id_prefix="domain-requests" aria_label_text="Domain requests search component" %}
-            {% include "includes/search_table.html" %}
+        <!-- ---------- SEARCH ---------- -->
+        {% with label_text=portfolio|yesno:"Search by domain name or creator,Search by domain name"  item_name="domain-requests" aria_label_text="Domain requests search component"%}
+            {% if portfolio %}
+                {% with use_search_icon="true" %}
+                    {% include "includes/search.html" %}
+                {% endwith %}
+            {% else %}
+                {% include "includes/search.html" %}
+            {% endif %}
         {% endwith %}
     </div>
 
diff --git a/src/registrar/templates/includes/domains_table.html b/src/registrar/templates/includes/domains_table.html
index c47161d67..66076283a 100644
--- a/src/registrar/templates/includes/domains_table.html
+++ b/src/registrar/templates/includes/domains_table.html
@@ -28,19 +28,33 @@
 <section class="section-outlined domains margin-top-0{% if portfolio %} section-outlined--border-base-light{% endif %}" id="domains">
   <div class="section-outlined__header margin-bottom-3 {% if not portfolio %} section-outlined__header--no-portfolio flex-wrap{% else %} grid-row{% endif %}">
     {% if not portfolio %}
-      <h2 id="domains-header" class="display-inline-block">Domains</h2>
+      <div class="grid-row grid-col-12">
+        <h2 id="domains-header" class="display-inline-block flex-fill">Domains</h2>
+        <!-- ---------- EXPORT (non-org placement) ---------- -->
+        {% if user_domain_count and user_domain_count > 0 %}
+          {% with export_aria="Domains report component" export_url='export_data_type_user' %}
+              {% include "includes/export.html" %}
+          {% endwith %}
+        {% endif %}
+      </div>
     {% else %}
       <!-- Embedding the portfolio value in a data attribute -->
       <span id="portfolio-js-value" data-portfolio="{{ portfolio.id }}"></span>
     {% endif %}
-    <!-- ---------- SEARCH & EXPORT ---------- -->
-    {% if user_domain_count and user_domain_count > 0 %}
-      {% with label_text="Search by domain name" item_id_prefix="domains" aria_label_text="Domains search component" with_export="true" export_aria="Domains report component" export_url='export_data_type_user' %}
-          {% include "includes/search_table.html" %}
-      {% endwith %}
-    {% else %}
-      {% with label_text="Search by domain name" item_id_prefix="domains" aria_label_text="Domains search component"%}
-          {% include "includes/search_table.html" %}
+    <!-- ---------- SEARCH ---------- -->
+    {% with label_text="Search by domain name" item_name="domains" aria_label_text="Domains search component"%}
+      {% if portfolio %}
+        {% with use_search_icon="true" %}
+            {% include "includes/search.html" %}
+        {% endwith %}
+      {% else %}
+        {% include "includes/search.html" %}
+      {% endif %}
+    {% endwith %}
+    <!-- ---------- EXPORT (org placement) ---------- -->
+    {% if user_domain_count and user_domain_count > 0 and portfolio%}
+      {% with export_aria="Domains report component" export_url='export_data_type_user' %}
+          {% include "includes/export.html" %}
       {% endwith %}
     {% endif %}
   </div>
diff --git a/src/registrar/templates/includes/export.html b/src/registrar/templates/includes/export.html
new file mode 100644
index 000000000..68c11a09a
--- /dev/null
+++ b/src/registrar/templates/includes/export.html
@@ -0,0 +1,12 @@
+{% load static %}
+<div class="section-outlined__utility-button mobile-lg:padding-right-105 {% if portfolio %} flex-auto desktop:padding-left-3{% endif %} margin-top-0">
+    <section aria-label="{{export_aria}}" class="margin-top-205">
+        <a href="{% url export_url %}" class="usa-button usa-button--unstyled usa-button--with-icon usa-button--justify-right">
+        <svg class="usa-icon usa-icon--large" aria-hidden="true" focusable="false" role="img" width="24" height="24">
+            <use xlink:href="{%static 'img/sprite.svg'%}#file_download"></use>
+        </svg>Export as CSV
+        </a>
+    </section>
+</div>
+
+    
\ No newline at end of file
diff --git a/src/registrar/templates/includes/members_table.html b/src/registrar/templates/includes/members_table.html
index d09e6de05..2af87036f 100644
--- a/src/registrar/templates/includes/members_table.html
+++ b/src/registrar/templates/includes/members_table.html
@@ -7,9 +7,12 @@
 <span id="get_members_json_url" class="display-none">{{url}}</span>
 <section class="section-outlined members margin-top-0 section-outlined--border-base-light" id="members">
   <div class="section-outlined__header margin-bottom-3 grid-row">
-    <!-- ---------- SEARCH & EXPORT ---------- -->
-    {% with label_text="Search by member name" item_id_prefix="members" aria_label_text="Members search component" with_export="true" export_aria="Members report component" export_url='export_members_portfolio'%}
-        {% include "includes/search_table.html" %}
+    <!-- ---------- SEARCH ---------- -->
+    {% with label_text="Search by member name" item_name="members" aria_label_text="Members search component" use_search_icon="true" %}
+        {% include "includes/search.html" %}
+    {% endwith %}
+    {% with export_aria="Members report component" export_url='export_members_portfolio' %}
+        {% include "includes/export.html" %}
     {% endwith %}
   </div>
 
diff --git a/src/registrar/templates/includes/search.html b/src/registrar/templates/includes/search.html
index 8c9f60cdb..b83d8935e 100644
--- a/src/registrar/templates/includes/search.html
+++ b/src/registrar/templates/includes/search.html
@@ -1,26 +1,29 @@
 {% load static %}
 
-<div class="section-outlined__search mobile:grid-col-12 desktop:grid-col-9">
+<div class="section-outlined__search tablet:grid-col">
     <section aria-label="{{aria_label_text}}">
-        <form class="usa-search usa-search--show-label" method="POST" role="search">
+        <form class="usa-search usa-search--small usa-search--show-label" method="POST" role="search">
             {% csrf_token %}
-            <label class="usa-label display-block margin-bottom-05 maxw-none" for="{{item_name}}__search-field">
+            <label class="usa-label display-block maxw-none margin-top-2 margin-bottom-1" for="{{item_id_prefix}}__search-field">
                 {{ label_text }}
-            </label>            
-            <div class="usa-search--show-label__input-wrapper flex-align-self-end">
+            </label> 
+            <div class="usa-search--show-label__input-wrapper">
                 <input
                 class="usa-input minw-15"
                 id="{{item_name}}__search-field"
                 type="search"
                 name="{{item_name}}-search"
                 />
-                <button class="usa-button" type="submit" id="{{item_name}}__search-field-submit">
-                    <span class="usa-search__submit-text">Search </span>
+                <button class="usa-button" type="submit" id="{{item_name}}__search-field-submit" aria-labelledby="{{item_id_prefix}}__search-label">
+                    {% if use_search_icon %} 
                     <img
                         src="{% static 'img/usa-icons-bg/search--white.svg' %}"
                         class="usa-search__submit-icon"
                         alt="Search"
                     />
+                    {% else %}
+                    <span class="usa-search__submit-text">Search </span>
+                    {% endif %}
                 </button>
                 <button class="usa-button usa-button--unstyled margin-left-3 display-none flex-1" id="{{item_name}}__reset-search" type="button">
                     <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
diff --git a/src/registrar/templates/includes/search_table.html b/src/registrar/templates/includes/search_table.html
deleted file mode 100644
index 6473ccf60..000000000
--- a/src/registrar/templates/includes/search_table.html
+++ /dev/null
@@ -1,50 +0,0 @@
-{% load static %}
-<div class="grid-col-12">
-    <label class="usa-label display-block maxw-none" for="{{item_id_prefix}}__search-field">
-        {{ label_text }}
-    </label> 
-</div>
-<div class="section-outlined__search section-outlined__search--widescreen {% if portfolio %}mobile:grid-col-12 desktop:grid-col-6{% endif %}">
-    <section aria-label="{{aria_label_text}}" class="margin-top-2">
-    <!-- ---------- SEARCH ---------- -->
-        <form class="usa-search usa-search--small usa-search--show-label" method="POST" role="search">
-        {% csrf_token %} 
-        <div class="usa-search--show-label__input-wrapper flex-align-self-end">
-            <input
-            class="usa-input"
-            id="{{item_id_prefix}}__search-field"
-            type="search"
-            name="{{item_id_prefix}}-search"
-            placeholder="{{label_text}}"
-            />
-            <button class="usa-button" type="submit" id="{{item_id_prefix}}__search-field-submit" aria-labelledby="{{item_id_prefix}}__search-label">
-            <img
-                src="{% static 'img/usa-icons-bg/search--white.svg' %}"
-                class="usa-search__submit-icon"
-                alt="Search"
-            />
-            </button>
-            <button class="usa-button usa-button--unstyled margin-left-1 display-none" id="{{item_id_prefix}}__reset-search" type="button">
-                <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
-                <use xlink:href="{%static 'img/sprite.svg'%}#close"></use>
-                </svg>
-                Reset
-            </button>
-        </div>
-        </form>
-    </section>
-</div>
-<!-- ---------- EXPORT ---------- -->
-{% if with_export|lower == "true" %}
-<div class="section-outlined__utility-button mobile-lg:padding-right-105 {% if portfolio %} mobile:grid-col-12 desktop:grid-col-6 desktop:padding-left-3{% endif %}">
-    <section aria-label="{{export_aria}}" class="margin-top-205">
-        <a href="{% url export_url %}" class="usa-button usa-button--unstyled usa-button--with-icon usa-button--justify-right">
-        <svg class="usa-icon usa-icon--large" aria-hidden="true" focusable="false" role="img" width="24" height="24">
-            <use xlink:href="{%static 'img/sprite.svg'%}#file_download"></use>
-        </svg>Export as CSV
-        </a>
-    </section>
-</div>
-{% endif %}
-
-    
\ No newline at end of file
diff --git a/src/registrar/templates/portfolio_requests.html b/src/registrar/templates/portfolio_requests.html
index 4f366d0c6..d1185f46a 100644
--- a/src/registrar/templates/portfolio_requests.html
+++ b/src/registrar/templates/portfolio_requests.html
@@ -16,15 +16,18 @@
 {% endblock messages%}
 
 <div id="main-content">
-    <h1 id="domain-requests-header" class="margin-bottom-1">Domain requests</h1>
-    <div class="grid-row grid-gap">
-
+    <div class="grid-row grid-gap margin-bottom-3">
+        <div class="mobile:grid-col-12 tablet:grid-col-6"> 
+            <h1 id="domain-requests-header" class="margin-bottom-1">Domain requests</h1>
+            {% if has_edit_request_portfolio_permission %}
+                <p class="margin-y-0">Domain requests can only be modified by the person who created the request.</p>
+            {% else %}
+                <p class="margin-y-0">Domain requests can only be modified by the person who created the request.</p>
+            {% endif %}
+        </div>
+       
         {% if has_edit_request_portfolio_permission %}
             <div class="mobile:grid-col-12 tablet:grid-col-6">
-                <p class="margin-y-0">Domain requests can only be modified by the person who created the request.</p>
-            </div>
-            <div class="mobile:grid-col-12 tablet:grid-col-6">
- 
                 <p class="float-right-tablet tablet:margin-y-0">
                     <button data-href="{% url 'domain-request:start' %}" class="usa-button use-button-as-link"
                     >
@@ -32,10 +35,9 @@
                     </button>
                 </p>
             </div>
-        {% else %}
-            <p class="margin-y-0">Domain requests can only be modified by the person who created the request.</p>
         {% endif %}
     </div>
+
     
     
     {% include "includes/domain_requests_table.html" with portfolio=portfolio %}

From ccfc3c613ffa28aaa6978bf31eb126c76b333d9a Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Tue, 4 Mar 2025 20:27:26 -0700
Subject: [PATCH 19/70] fix aria label

---
 src/registrar/templates/includes/search.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/includes/search.html b/src/registrar/templates/includes/search.html
index b83d8935e..ac85f2544 100644
--- a/src/registrar/templates/includes/search.html
+++ b/src/registrar/templates/includes/search.html
@@ -4,7 +4,7 @@
     <section aria-label="{{aria_label_text}}">
         <form class="usa-search usa-search--small usa-search--show-label" method="POST" role="search">
             {% csrf_token %}
-            <label class="usa-label display-block maxw-none margin-top-2 margin-bottom-1" for="{{item_id_prefix}}__search-field">
+            <label id="{{item_name}}__search-label" class="usa-label display-block maxw-none margin-top-2 margin-bottom-1" for="{{item_id_prefix}}__search-field">
                 {{ label_text }}
             </label> 
             <div class="usa-search--show-label__input-wrapper">

From 39b05a8fe1d0835e655f72550f91001bca35a382 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Wed, 5 Mar 2025 12:36:11 -0800
Subject: [PATCH 20/70] Add required fix for state

---
 src/registrar/forms/domain_request_wizard.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index d7a02b124..c76a3d856 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -348,7 +348,7 @@ class OrganizationContactForm(RegistrarForm):
         error_messages={
             "required": ("Select the state, territory, or military post where your organization is located.")
         },
-        widget=ComboboxWidget,
+        widget=ComboboxWidget(attrs={"required": True}),
     )
     zipcode = forms.CharField(
         label="Zip code",

From b067904086f1e1bc6b908bf69040ec38df48874a Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Wed, 5 Mar 2025 13:55:33 -0700
Subject: [PATCH 21/70] Fix bug

---
 src/registrar/decorators.py | 22 ++++++++++++++--------
 1 file changed, 14 insertions(+), 8 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index 7cb2792f4..829011817 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -98,6 +98,7 @@ def _user_has_permission(user, request, rules, **kwargs):
     if not user.is_authenticated or user.is_restricted():
         return False
 
+    portfolio = request.session.get("portfolio")
     # Define permission checks
     permission_checks = [
         (IS_STAFF, lambda: user.is_staff),
@@ -111,7 +112,7 @@ def _user_has_permission(user, request, rules, **kwargs):
         (
             HAS_PORTFOLIO_DOMAINS_ANY_PERM,
             lambda: user.is_org_user(request)
-            and user.has_any_domains_portfolio_permission(request.session.get("portfolio")),
+            and user.has_any_domains_portfolio_permission(portfolio),
         ),
         (
             IS_PORTFOLIO_MEMBER_AND_DOMAIN_MANAGER,
@@ -129,34 +130,35 @@ def _user_has_permission(user, request, rules, **kwargs):
         (
             HAS_PORTFOLIO_DOMAIN_REQUESTS_ANY_PERM,
             lambda: user.is_org_user(request)
-            and user.has_any_requests_portfolio_permission(request.session.get("portfolio")),
+            and user.has_any_requests_portfolio_permission(portfolio)
         ),
         (
             HAS_PORTFOLIO_DOMAIN_REQUESTS_VIEW_ALL,
             lambda: user.is_org_user(request)
-            and user.has_view_all_domain_requests_portfolio_permission(request.session.get("portfolio")),
+            and user.has_view_all_domain_requests_portfolio_permission(portfolio)
+            and _domain_request_exists_under_portfolio(portfolio, kwargs.get("domain_request_pk")),
         ),
         (
             HAS_PORTFOLIO_DOMAIN_REQUESTS_EDIT,
-            lambda: _has_portfolio_domain_requests_edit(user, request, kwargs.get("domain_request_pk")),
+            lambda: _has_portfolio_domain_requests_edit(user, request, kwargs.get("domain_request_pk"))
         ),
         (
             HAS_PORTFOLIO_MEMBERS_ANY_PERM,
             lambda: user.is_org_user(request)
             and (
-                user.has_view_members_portfolio_permission(request.session.get("portfolio"))
-                or user.has_edit_members_portfolio_permission(request.session.get("portfolio"))
+                user.has_view_members_portfolio_permission(portfolio)
+                or user.has_edit_members_portfolio_permission(portfolio)
             ),
         ),
         (
             HAS_PORTFOLIO_MEMBERS_EDIT,
             lambda: user.is_org_user(request)
-            and user.has_edit_members_portfolio_permission(request.session.get("portfolio")),
+            and user.has_edit_members_portfolio_permission(portfolio),
         ),
         (
             HAS_PORTFOLIO_MEMBERS_VIEW,
             lambda: user.is_org_user(request)
-            and user.has_view_members_portfolio_permission(request.session.get("portfolio")),
+            and user.has_view_members_portfolio_permission(portfolio),
         ),
     ]
 
@@ -198,6 +200,10 @@ def _is_domain_request_creator(user, domain_request_pk):
         return DomainRequest.objects.filter(creator=user, id=domain_request_pk).exists()
     return True
 
+def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
+    """Checks to see if the given domain request exists under the provided portfolio"""
+    return DomainRequest.objects.filter(portfolio=portfolio, id=domain_request_pk).exists()
+
 
 def _is_portfolio_member(request):
     """Checks to see if the user in the request is a member of the

From 8b76cde13d1b435f697ad1e05811edb953becbc2 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Wed, 5 Mar 2025 14:33:07 -0700
Subject: [PATCH 22/70] Start correcting additional perms

---
 src/registrar/decorators.py       | 33 ++++++++++++++++++++++++-------
 src/registrar/views/portfolios.py | 23 ++++++++++-----------
 2 files changed, 38 insertions(+), 18 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index 829011817..aa16e91f5 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -2,6 +2,8 @@ import functools
 from django.core.exceptions import PermissionDenied
 from django.utils.decorators import method_decorator
 from registrar.models import Domain, DomainInformation, DomainInvitation, DomainRequest, UserDomainRole
+from registrar.models.portfolio_invitation import PortfolioInvitation
+from registrar.models.user_portfolio_permission import UserPortfolioPermission
 
 # Constants for clarity
 ALL = "all"
@@ -116,7 +118,9 @@ def _user_has_permission(user, request, rules, **kwargs):
         ),
         (
             IS_PORTFOLIO_MEMBER_AND_DOMAIN_MANAGER,
-            lambda: _is_domain_manager(user, **kwargs) and _is_portfolio_member(request),
+            lambda: _is_domain_manager(user, **kwargs) 
+            and _is_portfolio_member(request) 
+            and _domain_exists_under_portfolio(portfolio, kwargs.get("domain_pk")),
         ),
         (
             IS_DOMAIN_MANAGER_AND_NOT_PORTFOLIO_MEMBER,
@@ -141,6 +145,7 @@ def _user_has_permission(user, request, rules, **kwargs):
         (
             HAS_PORTFOLIO_DOMAIN_REQUESTS_EDIT,
             lambda: _has_portfolio_domain_requests_edit(user, request, kwargs.get("domain_request_pk"))
+            and _domain_request_exists_under_portfolio(portfolio, kwargs.get("domain_request_pk")),
         ),
         (
             HAS_PORTFOLIO_MEMBERS_ANY_PERM,
@@ -153,12 +158,17 @@ def _user_has_permission(user, request, rules, **kwargs):
         (
             HAS_PORTFOLIO_MEMBERS_EDIT,
             lambda: user.is_org_user(request)
-            and user.has_edit_members_portfolio_permission(portfolio),
+            and user.has_edit_members_portfolio_permission(portfolio)
         ),
         (
             HAS_PORTFOLIO_MEMBERS_VIEW,
             lambda: user.is_org_user(request)
-            and user.has_view_members_portfolio_permission(portfolio),
+            and user.has_view_members_portfolio_permission(portfolio)
+            # TODO -- fix this on all related URLS :(
+            and (
+                _member_exists_under_portfolio(portfolio, kwargs.get("member_pk")) 
+                or _member_invitation_exists_under_portfolio(portfolio, kwargs.get("memberinvitation_pk"))
+            ),
         ),
     ]
 
@@ -192,6 +202,19 @@ def _is_domain_manager(user, **kwargs):
         return DomainInvitation.objects.filter(id=domain_invitation_id, domain__permissions__user=user).exists()
     return False
 
+def _domain_exists_under_portfolio(portfolio, domain_pk):
+    """Checks to see if the given domain exists under the provided portfolio"""
+    return Domain.objects.filter(domain_info__portfolio=portfolio, id=domain_pk).exists()
+
+def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
+    """Checks to see if the given domain request exists under the provided portfolio"""
+    return DomainRequest.objects.filter(portfolio=portfolio, id=domain_request_pk).exists()
+
+def _member_exists_under_portfolio(portfolio, member_pk):
+    return UserPortfolioPermission.objects.filter(portfolio=portfolio, id=member_pk).exists()
+
+def _member_invitation_exists_under_portfolio(portfolio, memberinvitation_pk):
+    return PortfolioInvitation.objects.filter(portfolio=portfolio, id=memberinvitation_pk).exists()
 
 def _is_domain_request_creator(user, domain_request_pk):
     """Checks to see if the user is the creator of a domain request
@@ -200,10 +223,6 @@ def _is_domain_request_creator(user, domain_request_pk):
         return DomainRequest.objects.filter(creator=user, id=domain_request_pk).exists()
     return True
 
-def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
-    """Checks to see if the given domain request exists under the provided portfolio"""
-    return DomainRequest.objects.filter(portfolio=portfolio, id=domain_request_pk).exists()
-
 
 def _is_portfolio_member(request):
     """Checks to see if the user in the request is a member of the
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 1882cc11b..420ef5acf 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -12,6 +12,7 @@ from registrar.decorators import (
     HAS_PORTFOLIO_DOMAINS_ANY_PERM,
     HAS_PORTFOLIO_MEMBERS_ANY_PERM,
     HAS_PORTFOLIO_MEMBERS_EDIT,
+    HAS_PORTFOLIO_MEMBERS_VIEW,
     IS_PORTFOLIO_MEMBER,
     grant_access,
 )
@@ -71,7 +72,7 @@ class PortfolioDomainRequestsView(View):
         return render(request, "portfolio_requests.html")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW)
 class PortfolioMemberView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -115,7 +116,7 @@ class PortfolioMemberView(DetailView, View):
         )
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioMemberDeleteView(View):
 
     def post(self, request, pk):
@@ -217,7 +218,7 @@ class PortfolioMemberDeleteView(View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioMemberEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -300,7 +301,7 @@ class PortfolioMemberEditView(DetailView, View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW)
 class PortfolioMemberDomainsView(View):
 
     template_name = "portfolio_member_domains.html"
@@ -319,7 +320,7 @@ class PortfolioMemberDomainsView(View):
         )
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioMemberDomainsEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -431,7 +432,7 @@ class PortfolioMemberDomainsEditView(DetailView, View):
             UserDomainRole.objects.filter(domain_id__in=removed_domain_ids, user=member).delete()
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW)
 class PortfolioInvitedMemberView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -475,7 +476,7 @@ class PortfolioInvitedMemberView(DetailView, View):
         )
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioInvitedMemberDeleteView(View):
 
     def post(self, request, pk):
@@ -521,7 +522,7 @@ class PortfolioInvitedMemberDeleteView(View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioInvitedMemberEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -592,7 +593,7 @@ class PortfolioInvitedMemberEditView(DetailView, View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW)
 class PortfolioInvitedMemberDomainsView(View):
 
     template_name = "portfolio_member_domains.html"
@@ -609,7 +610,7 @@ class PortfolioInvitedMemberDomainsView(View):
         )
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioInvitedMemberDomainsEditView(DetailView, View):
 
     model = Portfolio
@@ -903,7 +904,7 @@ class PortfolioMembersView(View):
         return render(request, "portfolio_members.html")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
+@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioAddMemberView(DetailView, FormMixin):
 
     template_name = "portfolio_members_add_new.html"

From 949424854eecadbdf0e70d77fdbfcf7d85e26990 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Wed, 5 Mar 2025 14:56:28 -0700
Subject: [PATCH 23/70] refactor ids part 1

---
 src/registrar/config/urls.py      | 20 +++----
 src/registrar/views/portfolios.py | 98 +++++++++++++++----------------
 2 files changed, 59 insertions(+), 59 deletions(-)

diff --git a/src/registrar/config/urls.py b/src/registrar/config/urls.py
index 12efe5a9f..56f0cfd0f 100644
--- a/src/registrar/config/urls.py
+++ b/src/registrar/config/urls.py
@@ -89,52 +89,52 @@ urlpatterns = [
         name="members",
     ),
     path(
-        "member/<int:pk>",
+        "member/<int:member_pk>",
         views.PortfolioMemberView.as_view(),
         name="member",
     ),
     path(
-        "member/<int:pk>/delete",
+        "member/<int:member_pk>/delete",
         views.PortfolioMemberDeleteView.as_view(),
         name="member-delete",
     ),
     path(
-        "member/<int:pk>/permissions",
+        "member/<int:member_pk>/permissions",
         views.PortfolioMemberEditView.as_view(),
         name="member-permissions",
     ),
     path(
-        "member/<int:pk>/domains",
+        "member/<int:member_pk>/domains",
         views.PortfolioMemberDomainsView.as_view(),
         name="member-domains",
     ),
     path(
-        "member/<int:pk>/domains/edit",
+        "member/<int:member_pk>/domains/edit",
         views.PortfolioMemberDomainsEditView.as_view(),
         name="member-domains-edit",
     ),
     path(
-        "invitedmember/<int:pk>",
+        "invitedmember/<int:invitedmember_pk>",
         views.PortfolioInvitedMemberView.as_view(),
         name="invitedmember",
     ),
     path(
-        "invitedmember/<int:pk>/delete",
+        "invitedmember/<int:invitedmember_pk>/delete",
         views.PortfolioInvitedMemberDeleteView.as_view(),
         name="invitedmember-delete",
     ),
     path(
-        "invitedmember/<int:pk>/permissions",
+        "invitedmember/<int:invitedmember_pk>/permissions",
         views.PortfolioInvitedMemberEditView.as_view(),
         name="invitedmember-permissions",
     ),
     path(
-        "invitedmember/<int:pk>/domains",
+        "invitedmember/<int:invitedmember_pk>/domains",
         views.PortfolioInvitedMemberDomainsView.as_view(),
         name="invitedmember-domains",
     ),
     path(
-        "invitedmember/<int:pk>/domains/edit",
+        "invitedmember/<int:invitedmember_pk>/domains/edit",
         views.PortfolioInvitedMemberDomainsEditView.as_view(),
         name="invitedmember-domains-edit",
     ),
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 420ef5acf..d2a54ea51 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -78,8 +78,8 @@ class PortfolioMemberView(DetailView, View):
     context_object_name = "portfolio"
     template_name = "portfolio_member.html"
 
-    def get(self, request, pk):
-        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=pk)
+    def get(self, request, member_pk):
+        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
         member = portfolio_permission.user
 
         # We have to explicitely name these with member_ otherwise we'll have conflicts with context preprocessors
@@ -103,8 +103,8 @@ class PortfolioMemberView(DetailView, View):
             request,
             self.template_name,
             {
-                "edit_url": reverse("member-permissions", args=[pk]),
-                "domains_url": reverse("member-domains", args=[pk]),
+                "edit_url": reverse("member-permissions", args=[member_pk]),
+                "domains_url": reverse("member-domains", args=[member_pk]),
                 "portfolio_permission": portfolio_permission,
                 "member": member,
                 "member_has_view_all_requests_portfolio_permission": member_has_view_all_requests_portfolio_permission,
@@ -119,19 +119,19 @@ class PortfolioMemberView(DetailView, View):
 @grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioMemberDeleteView(View):
 
-    def post(self, request, pk):
+    def post(self, request, member_pk):
         """
         Find and delete the portfolio member using the provided primary key (pk).
         Redirect to a success page after deletion (or any other appropriate page).
         """
-        portfolio_member_permission = get_object_or_404(UserPortfolioPermission, pk=pk)
+        portfolio_member_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
         member = portfolio_member_permission.user
         portfolio = portfolio_member_permission.portfolio
 
         # Validate if the member can be removed
         error_message = self._validate_member_removal(request, member, portfolio)
         if error_message:
-            return self._handle_error_response(request, error_message, pk)
+            return self._handle_error_response(request, error_message, member_pk)
 
         # Attempt to send notification emails
         self._send_removal_notifications(request, portfolio_member_permission)
@@ -162,14 +162,14 @@ class PortfolioMemberDeleteView(View):
             )
         return None
 
-    def _handle_error_response(self, request, error_message, pk):
+    def _handle_error_response(self, request, error_message, member_pk):
         """
         Return an error response (JSON or redirect with messages).
         """
         if request.headers.get("X-Requested-With") == "XMLHttpRequest":
             return JsonResponse({"error": error_message}, status=400)
         messages.error(request, error_message)
-        return redirect(reverse("member", kwargs={"pk": pk}))
+        return redirect(reverse("member", kwargs={"pk": member_pk}))
 
     def _send_removal_notifications(self, request, portfolio_member_permission):
         """
@@ -225,8 +225,8 @@ class PortfolioMemberEditView(DetailView, View):
     template_name = "portfolio_member_permissions.html"
     form_class = portfolioForms.PortfolioMemberForm
 
-    def get(self, request, pk):
-        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=pk)
+    def get(self, request, member_pk):
+        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
         user = portfolio_permission.user
 
         form = self.form_class(instance=portfolio_permission)
@@ -241,8 +241,8 @@ class PortfolioMemberEditView(DetailView, View):
             },
         )
 
-    def post(self, request, pk):
-        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=pk)
+    def post(self, request, member_pk):
+        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
         user = portfolio_permission.user
         form = self.form_class(request.POST, instance=portfolio_permission)
         removing_admin_role_on_self = False
@@ -277,7 +277,7 @@ class PortfolioMemberEditView(DetailView, View):
                 self._handle_exceptions(e)
             form.save()
             messages.success(self.request, "The member access and permission changes have been saved.")
-            return redirect("member", pk=pk) if not removing_admin_role_on_self else redirect("home")
+            return redirect("member", pk=member_pk) if not removing_admin_role_on_self else redirect("home")
 
         return render(
             request,
@@ -306,8 +306,8 @@ class PortfolioMemberDomainsView(View):
 
     template_name = "portfolio_member_domains.html"
 
-    def get(self, request, pk):
-        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=pk)
+    def get(self, request, member_pk):
+        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
         member = portfolio_permission.user
 
         return render(
@@ -326,8 +326,8 @@ class PortfolioMemberDomainsEditView(DetailView, View):
     context_object_name = "portfolio"
     template_name = "portfolio_member_domains_edit.html"
 
-    def get(self, request, pk):
-        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=pk)
+    def get(self, request, member_pk):
+        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
         member = portfolio_permission.user
 
         return render(
@@ -339,33 +339,33 @@ class PortfolioMemberDomainsEditView(DetailView, View):
             },
         )
 
-    def post(self, request, pk):
+    def post(self, request, member_pk):
         """
         Handles adding and removing domains for a portfolio member.
         """
         added_domains = request.POST.get("added_domains")
         removed_domains = request.POST.get("removed_domains")
-        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=pk)
+        portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
         member = portfolio_permission.user
         portfolio = portfolio_permission.portfolio
 
         added_domain_ids = self._parse_domain_ids(added_domains, "added domains")
         if added_domain_ids is None:
-            return redirect(reverse("member-domains", kwargs={"pk": pk}))
+            return redirect(reverse("member-domains", kwargs={"pk": member_pk}))
 
         removed_domain_ids = self._parse_domain_ids(removed_domains, "removed domains")
         if removed_domain_ids is None:
-            return redirect(reverse("member-domains", kwargs={"pk": pk}))
+            return redirect(reverse("member-domains", kwargs={"pk": member_pk}))
 
         if not (added_domain_ids or removed_domain_ids):
             messages.success(request, "The domain assignment changes have been saved.")
-            return redirect(reverse("member-domains", kwargs={"pk": pk}))
+            return redirect(reverse("member-domains", kwargs={"pk": member_pk}))
 
         try:
             self._process_added_domains(added_domain_ids, member, request.user, portfolio)
             self._process_removed_domains(removed_domain_ids, member)
             messages.success(request, "The domain assignment changes have been saved.")
-            return redirect(reverse("member-domains", kwargs={"pk": pk}))
+            return redirect(reverse("member-domains", kwargs={"pk": member_pk}))
         except IntegrityError:
             messages.error(
                 request,
@@ -373,7 +373,7 @@ class PortfolioMemberDomainsEditView(DetailView, View):
                 f"please contact {DefaultUserValues.HELP_EMAIL}.",
             )
             logger.error("A database error occurred while saving changes.", exc_info=True)
-            return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))
+            return redirect(reverse("member-domains-edit", kwargs={"pk": member_pk}))
         except Exception as e:
             messages.error(
                 request,
@@ -381,7 +381,7 @@ class PortfolioMemberDomainsEditView(DetailView, View):
                 f"please contact {DefaultUserValues.HELP_EMAIL}.",
             )
             logger.error(f"An unexpected error occurred: {str(e)}", exc_info=True)
-            return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))
+            return redirect(reverse("member-domains-edit", kwargs={"pk": member_pk}))
 
     def _parse_domain_ids(self, domain_data, domain_type):
         """
@@ -439,8 +439,8 @@ class PortfolioInvitedMemberView(DetailView, View):
     template_name = "portfolio_member.html"
     # form_class = PortfolioInvitedMemberForm
 
-    def get(self, request, pk):
-        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=pk)
+    def get(self, request, invitedmember_pk):
+        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
         # form = self.form_class(instance=portfolio_invitation)
 
         # We have to explicitely name these with member_ otherwise we'll have conflicts with context preprocessors
@@ -464,8 +464,8 @@ class PortfolioInvitedMemberView(DetailView, View):
             request,
             self.template_name,
             {
-                "edit_url": reverse("invitedmember-permissions", args=[pk]),
-                "domains_url": reverse("invitedmember-domains", args=[pk]),
+                "edit_url": reverse("invitedmember-permissions", args=[invitedmember_pk]),
+                "domains_url": reverse("invitedmember-domains", args=[invitedmember_pk]),
                 "portfolio_invitation": portfolio_invitation,
                 "member_has_view_all_requests_portfolio_permission": member_has_view_all_requests_portfolio_permission,
                 "member_has_edit_request_portfolio_permission": member_has_edit_request_portfolio_permission,
@@ -479,12 +479,12 @@ class PortfolioInvitedMemberView(DetailView, View):
 @grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioInvitedMemberDeleteView(View):
 
-    def post(self, request, pk):
+    def post(self, request, invitedmember_pk):
         """
         Find and delete the portfolio invited member using the provided primary key (pk).
         Redirect to a success page after deletion (or any other appropriate page).
         """
-        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=pk)
+        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
 
         try:
             # if invitation being removed is an admin
@@ -529,8 +529,8 @@ class PortfolioInvitedMemberEditView(DetailView, View):
     template_name = "portfolio_member_permissions.html"
     form_class = portfolioForms.PortfolioInvitedMemberForm
 
-    def get(self, request, pk):
-        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=pk)
+    def get(self, request, invitedmember_pk):
+        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
         form = self.form_class(instance=portfolio_invitation)
 
         return render(
@@ -542,8 +542,8 @@ class PortfolioInvitedMemberEditView(DetailView, View):
             },
         )
 
-    def post(self, request, pk):
-        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=pk)
+    def post(self, request, invitedmember_pk):
+        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
         form = self.form_class(request.POST, instance=portfolio_invitation)
         if form.is_valid():
             try:
@@ -569,7 +569,7 @@ class PortfolioInvitedMemberEditView(DetailView, View):
                 self._handle_exceptions(e)
             form.save()
             messages.success(self.request, "The member access and permission changes have been saved.")
-            return redirect("invitedmember", pk=pk)
+            return redirect("invitedmember", pk=invitedmember_pk)
 
         return render(
             request,
@@ -598,8 +598,8 @@ class PortfolioInvitedMemberDomainsView(View):
 
     template_name = "portfolio_member_domains.html"
 
-    def get(self, request, pk):
-        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=pk)
+    def get(self, request, invitedmember_pk):
+        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
 
         return render(
             request,
@@ -617,8 +617,8 @@ class PortfolioInvitedMemberDomainsEditView(DetailView, View):
     context_object_name = "portfolio"
     template_name = "portfolio_member_domains_edit.html"
 
-    def get(self, request, pk):
-        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=pk)
+    def get(self, request, invitedmember_pk):
+        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
 
         return render(
             request,
@@ -628,33 +628,33 @@ class PortfolioInvitedMemberDomainsEditView(DetailView, View):
             },
         )
 
-    def post(self, request, pk):
+    def post(self, request, invitedmember_pk):
         """
         Handles adding and removing domains for a portfolio invitee.
         """
         added_domains = request.POST.get("added_domains")
         removed_domains = request.POST.get("removed_domains")
-        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=pk)
+        portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
         email = portfolio_invitation.email
         portfolio = portfolio_invitation.portfolio
 
         added_domain_ids = self._parse_domain_ids(added_domains, "added domains")
         if added_domain_ids is None:
-            return redirect(reverse("invitedmember-domains", kwargs={"pk": pk}))
+            return redirect(reverse("invitedmember-domains", kwargs={"pk": invitedmember_pk}))
 
         removed_domain_ids = self._parse_domain_ids(removed_domains, "removed domains")
         if removed_domain_ids is None:
-            return redirect(reverse("invitedmember-domains", kwargs={"pk": pk}))
+            return redirect(reverse("invitedmember-domains", kwargs={"pk": invitedmember_pk}))
 
         if not (added_domain_ids or removed_domain_ids):
             messages.success(request, "The domain assignment changes have been saved.")
-            return redirect(reverse("invitedmember-domains", kwargs={"pk": pk}))
+            return redirect(reverse("invitedmember-domains", kwargs={"pk": invitedmember_pk}))
 
         try:
             self._process_added_domains(added_domain_ids, email, request.user, portfolio)
             self._process_removed_domains(removed_domain_ids, email)
             messages.success(request, "The domain assignment changes have been saved.")
-            return redirect(reverse("invitedmember-domains", kwargs={"pk": pk}))
+            return redirect(reverse("invitedmember-domains", kwargs={"pk": invitedmember_pk}))
         except IntegrityError:
             messages.error(
                 request,
@@ -662,7 +662,7 @@ class PortfolioInvitedMemberDomainsEditView(DetailView, View):
                 f"please contact {DefaultUserValues.HELP_EMAIL}.",
             )
             logger.error("A database error occurred while saving changes.", exc_info=True)
-            return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": pk}))
+            return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": invitedmember_pk}))
         except Exception as e:
             messages.error(
                 request,
@@ -670,7 +670,7 @@ class PortfolioInvitedMemberDomainsEditView(DetailView, View):
                 f"please contact {DefaultUserValues.HELP_EMAIL}.",
             )
             logger.error(f"An unexpected error occurred: {str(e)}.", exc_info=True)
-            return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": pk}))
+            return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": invitedmember_pk}))
 
     def _parse_domain_ids(self, domain_data, domain_type):
         """

From 5107fcb25211cfd622068f9ba4fd8f81830e66de Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Wed, 5 Mar 2025 15:22:42 -0700
Subject: [PATCH 24/70] refactor ids part 2

---
 src/registrar/decorators.py                       |  6 +++---
 .../includes/member_domains_edit_table.html       |  4 ++--
 .../templates/portfolio_member_domains.html       |  8 ++++----
 .../templates/portfolio_member_domains_edit.html  |  8 ++++----
 .../templates/portfolio_member_permissions.html   |  4 ++--
 src/registrar/views/portfolio_members_json.py     |  5 ++++-
 src/registrar/views/portfolios.py                 | 15 ++++++++++++---
 7 files changed, 31 insertions(+), 19 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index aa16e91f5..714e375c4 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -167,7 +167,7 @@ def _user_has_permission(user, request, rules, **kwargs):
             # TODO -- fix this on all related URLS :(
             and (
                 _member_exists_under_portfolio(portfolio, kwargs.get("member_pk")) 
-                or _member_invitation_exists_under_portfolio(portfolio, kwargs.get("memberinvitation_pk"))
+                or _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
             ),
         ),
     ]
@@ -213,8 +213,8 @@ def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
 def _member_exists_under_portfolio(portfolio, member_pk):
     return UserPortfolioPermission.objects.filter(portfolio=portfolio, id=member_pk).exists()
 
-def _member_invitation_exists_under_portfolio(portfolio, memberinvitation_pk):
-    return PortfolioInvitation.objects.filter(portfolio=portfolio, id=memberinvitation_pk).exists()
+def _member_invitation_exists_under_portfolio(portfolio, invitedmember_pk):
+    return PortfolioInvitation.objects.filter(portfolio=portfolio, id=invitedmember_pk).exists()
 
 def _is_domain_request_creator(user, domain_request_pk):
     """Checks to see if the user is the creator of a domain request
diff --git a/src/registrar/templates/includes/member_domains_edit_table.html b/src/registrar/templates/includes/member_domains_edit_table.html
index a76f711cc..1d706f89a 100644
--- a/src/registrar/templates/includes/member_domains_edit_table.html
+++ b/src/registrar/templates/includes/member_domains_edit_table.html
@@ -91,9 +91,9 @@
   aria-describedby="You have unsaved changes that will be lost."
 >
 {% if portfolio_permission %}
-    {% url 'member-domains' pk=portfolio_permission.id as url %}
+    {% url 'member-domains' member_pk=portfolio_permission.id as url %}
 {% else %}
-    {% url 'invitedmember-domains' pk=portfolio_invitation.id as url %}
+    {% url 'invitedmember-domains' invitedmember_pk=portfolio_invitation.id as url %}
 {% endif %}
 
 {% include 'includes/modal.html' with modal_heading="Are you sure you want to continue?" modal_description="You have unsaved changes that will be lost." modal_button_url=url modal_button_text="Continue without saving" %}
diff --git a/src/registrar/templates/portfolio_member_domains.html b/src/registrar/templates/portfolio_member_domains.html
index 76d48c20b..677539585 100644
--- a/src/registrar/templates/portfolio_member_domains.html
+++ b/src/registrar/templates/portfolio_member_domains.html
@@ -15,11 +15,11 @@
 
     {% url 'members' as url %}
     {% if portfolio_permission %}
-        {% url 'member' pk=portfolio_permission.id as url2 %}
-        {% url 'member-domains-edit' pk=portfolio_permission.id as url3 %}
+        {% url 'member' member_pk=portfolio_permission.id as url2 %}
+        {% url 'member-domains-edit' member_pk=portfolio_permission.id as url3 %}
     {% else %}
-        {% url 'invitedmember' pk=portfolio_invitation.id as url2 %}
-        {% url 'invitedmember-domains-edit' pk=portfolio_invitation.id as url3 %}
+        {% url 'invitedmember' invitedmember_pk=portfolio_invitation.id as url2 %}
+        {% url 'invitedmember-domains-edit' invitedmember_pk=portfolio_invitation.id as url3 %}
     {% endif %}
     <nav class="usa-breadcrumb padding-top-0" aria-label="Portfolio member breadcrumb">
     <ol class="usa-breadcrumb__list">
diff --git a/src/registrar/templates/portfolio_member_domains_edit.html b/src/registrar/templates/portfolio_member_domains_edit.html
index 572c6cb6e..2a88075d7 100644
--- a/src/registrar/templates/portfolio_member_domains_edit.html
+++ b/src/registrar/templates/portfolio_member_domains_edit.html
@@ -15,11 +15,11 @@
 
     {% url 'members' as url %}
     {% if portfolio_permission %}
-        {% url 'member' pk=portfolio_permission.id as url2 %}
-        {% url 'member-domains' pk=portfolio_permission.id as url3 %}
+        {% url 'member' member_pk=portfolio_permission.id as url2 %}
+        {% url 'member-domains' member_pk=portfolio_permission.id as url3 %}
     {% else %}
-        {% url 'invitedmember' pk=portfolio_invitation.id as url2 %}
-        {% url 'invitedmember-domains' pk=portfolio_invitation.id as url3 %}
+        {% url 'invitedmember' invitedmember_pk=portfolio_invitation.id as url2 %}
+        {% url 'invitedmember-domains' invitedmember_pk=portfolio_invitation.id as url3 %}
     {% endif %}
     <nav class="usa-breadcrumb padding-top-0" aria-label="Portfolio member breadcrumb">
         <ol class="usa-breadcrumb__list">
diff --git a/src/registrar/templates/portfolio_member_permissions.html b/src/registrar/templates/portfolio_member_permissions.html
index 351243388..e5ae5864e 100644
--- a/src/registrar/templates/portfolio_member_permissions.html
+++ b/src/registrar/templates/portfolio_member_permissions.html
@@ -20,9 +20,9 @@
   <!-- Navigation breadcrumbs -->
   {% url 'members' as url %}
   {% if portfolio_permission %}
-      {% url 'member' pk=portfolio_permission.id as url2 %}
+      {% url 'member' member_pk=portfolio_permission.id as url2 %}
   {% else %}
-      {% url 'invitedmember' pk=invitation.id as url2 %}
+      {% url 'invitedmember' invitedmember_pk=invitation.id as url2 %}
   {% endif %}
   <nav class="usa-breadcrumb padding-top-0 bg-gray-1" aria-label="Portfolio member breadcrumb">
   <ol class="usa-breadcrumb__list">
diff --git a/src/registrar/views/portfolio_members_json.py b/src/registrar/views/portfolio_members_json.py
index ecdd24441..46b295025 100644
--- a/src/registrar/views/portfolio_members_json.py
+++ b/src/registrar/views/portfolio_members_json.py
@@ -213,9 +213,12 @@ class PortfolioMembersJson(View):
         view_only = not user.has_edit_members_portfolio_permission(portfolio) or not user_can_edit_other_users
 
         is_admin = UserPortfolioRoleChoices.ORGANIZATION_ADMIN in (item.get("roles") or [])
-        action_url = reverse(item["type"], kwargs={"pk": item["id"]})
 
         item_type = item.get("type", "")
+        if item_type == "invitedmember":
+            action_url = reverse(item["type"], kwargs={"invitedmember_pk": item["id"]})
+        else:
+            action_url = reverse(item["type"], kwargs={"member_pk": item["id"]})
 
         # Ensure domain_info is properly processed for invites -
         # we need to un-concatenate the subquery
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index d2a54ea51..3a04d4c86 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -77,6 +77,7 @@ class PortfolioMemberView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
     template_name = "portfolio_member.html"
+    pk_url_kwarg = "member_pk"
 
     def get(self, request, member_pk):
         portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
@@ -118,6 +119,7 @@ class PortfolioMemberView(DetailView, View):
 
 @grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioMemberDeleteView(View):
+    pk_url_kwarg = "member_pk"
 
     def post(self, request, member_pk):
         """
@@ -224,6 +226,7 @@ class PortfolioMemberEditView(DetailView, View):
     context_object_name = "portfolio"
     template_name = "portfolio_member_permissions.html"
     form_class = portfolioForms.PortfolioMemberForm
+    pk_url_kwarg = "member_pk"
 
     def get(self, request, member_pk):
         portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
@@ -277,7 +280,7 @@ class PortfolioMemberEditView(DetailView, View):
                 self._handle_exceptions(e)
             form.save()
             messages.success(self.request, "The member access and permission changes have been saved.")
-            return redirect("member", pk=member_pk) if not removing_admin_role_on_self else redirect("home")
+            return redirect("member", member_pk=member_pk) if not removing_admin_role_on_self else redirect("home")
 
         return render(
             request,
@@ -305,6 +308,7 @@ class PortfolioMemberEditView(DetailView, View):
 class PortfolioMemberDomainsView(View):
 
     template_name = "portfolio_member_domains.html"
+    pk_url_kwarg = "member_pk"
 
     def get(self, request, member_pk):
         portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
@@ -325,6 +329,7 @@ class PortfolioMemberDomainsEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
     template_name = "portfolio_member_domains_edit.html"
+    pk_url_kwarg = "member_pk"
 
     def get(self, request, member_pk):
         portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=member_pk)
@@ -438,6 +443,7 @@ class PortfolioInvitedMemberView(DetailView, View):
     context_object_name = "portfolio"
     template_name = "portfolio_member.html"
     # form_class = PortfolioInvitedMemberForm
+    pk_url_kwarg = "invitedmember_pk"
 
     def get(self, request, invitedmember_pk):
         portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
@@ -478,7 +484,7 @@ class PortfolioInvitedMemberView(DetailView, View):
 
 @grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioInvitedMemberDeleteView(View):
-
+    pk_url_kwarg = "invitedmember_pk"
     def post(self, request, invitedmember_pk):
         """
         Find and delete the portfolio invited member using the provided primary key (pk).
@@ -528,6 +534,7 @@ class PortfolioInvitedMemberEditView(DetailView, View):
     context_object_name = "portfolio"
     template_name = "portfolio_member_permissions.html"
     form_class = portfolioForms.PortfolioInvitedMemberForm
+    pk_url_kwarg = "invitedmember_pk"
 
     def get(self, request, invitedmember_pk):
         portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
@@ -569,7 +576,7 @@ class PortfolioInvitedMemberEditView(DetailView, View):
                 self._handle_exceptions(e)
             form.save()
             messages.success(self.request, "The member access and permission changes have been saved.")
-            return redirect("invitedmember", pk=invitedmember_pk)
+            return redirect("invitedmember", invitedmember_pk=invitedmember_pk)
 
         return render(
             request,
@@ -597,6 +604,7 @@ class PortfolioInvitedMemberEditView(DetailView, View):
 class PortfolioInvitedMemberDomainsView(View):
 
     template_name = "portfolio_member_domains.html"
+    pk_url_kwarg = "invitedmember_pk"
 
     def get(self, request, invitedmember_pk):
         portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)
@@ -616,6 +624,7 @@ class PortfolioInvitedMemberDomainsEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
     template_name = "portfolio_member_domains_edit.html"
+    pk_url_kwarg = "invitedmember_pk"
 
     def get(self, request, invitedmember_pk):
         portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=invitedmember_pk)

From fefefcadaf780679c403d721705fd434060673ad Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Wed, 5 Mar 2025 15:32:17 -0700
Subject: [PATCH 25/70] Fix bug in grant_access

---
 src/registrar/decorators.py | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index 714e375c4..e6e45f0da 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -164,7 +164,6 @@ def _user_has_permission(user, request, rules, **kwargs):
             HAS_PORTFOLIO_MEMBERS_VIEW,
             lambda: user.is_org_user(request)
             and user.has_view_members_portfolio_permission(portfolio)
-            # TODO -- fix this on all related URLS :(
             and (
                 _member_exists_under_portfolio(portfolio, kwargs.get("member_pk")) 
                 or _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
@@ -173,7 +172,7 @@ def _user_has_permission(user, request, rules, **kwargs):
     ]
 
     # Check conditions iteratively
-    return any(check() for rule, check in permission_checks if rule in rules)
+    return all(check() for rule, check in permission_checks if rule in rules)
 
 
 def _has_portfolio_domain_requests_edit(user, request, domain_request_id):

From 76a660a4c9fb7545516698957527f7d57f5200ce Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Wed, 5 Mar 2025 16:05:09 -0700
Subject: [PATCH 26/70] Removed timeout (thanks Zander!), cleanup

---
 .../assets/src/js/getgov-admin/andi.js        | 83 +++++++++++--------
 .../assets/src/js/getgov-admin/main.js        |  4 +-
 src/registrar/fixtures/fixtures_portfolios.py |  1 +
 3 files changed, 50 insertions(+), 38 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov-admin/andi.js b/src/registrar/assets/src/js/getgov-admin/andi.js
index 8c17b2d07..a6b42b966 100644
--- a/src/registrar/assets/src/js/getgov-admin/andi.js
+++ b/src/registrar/assets/src/js/getgov-admin/andi.js
@@ -4,46 +4,57 @@ It relies on an override in detail_table_fieldset.html that provides
 a span with a corresponding id for aria-describedby content.
 
 This allows us to avoid overriding aria-label, which is used by select2
-to send the current dropdown selection to ANDI
+to send the current dropdown selection to ANDI.
 */
-export function initAriaInjections() {
+export function initAriaInjectionsForSelect2Dropdowns() {
     document.addEventListener('DOMContentLoaded', function () {
-        // Set timeout so this fires after select2.js finishes adding to the DOM
-        setTimeout(function () {
-            // Find all spans with "--aria-description" in their id
-            const descriptionSpans = document.querySelectorAll('span[id*="--aria-description"]');
+        // Find all spans with "--aria-description" in their id
+        const descriptionSpans = document.querySelectorAll('span[id*="--aria-description"]');
 
-            // Iterate through each span to add aria-describedby
-            descriptionSpans.forEach(function(span) {
-                // Extract the base ID from the span's id (remove "--aria-description" part)
-                const fieldId = span.id.replace('--aria-description', '');
+        descriptionSpans.forEach(function (span) {
+            // Extract the base ID from the span's id (remove "--aria-description")
+            const fieldId = span.id.replace('--aria-description', '');
+            const field = document.getElementById(fieldId);
 
-                // Find the field element with the corresponding ID
-                const field = document.getElementById(fieldId);
-
-                // If the field exists, set the aria-describedby attribute
-                if (field) {
-                    let select2ElementDetected = false
-                    if (field.classList.contains('admin-autocomplete')) {
-                        const select2Id="select2-"+fieldId+"-container"
-                        console.log("select2---> "+select2Id)
-                        // If it's a Select2 component, find the rendered span inside Select2
-                        const select2SpanThatTriggersAria = document.querySelector("span[aria-labelledby='"+select2Id+"']");
-                        const select2SpanThatHoldsSelection = document.getElementById(select2Id)
-                        if (select2SpanThatTriggersAria) {
-                            console.log("set select2 aria")
-                            select2SpanThatTriggersAria.setAttribute('aria-describedby', span.id);
-                            // select2SpanThatTriggersAria.setAttribute('aria-labelledby', select2Id);
-                            select2ElementDetected=true
-                        }
-                    } 
-                    if (!select2ElementDetected)
-                    {
-                        // Otherwise, set aria-describedby directly on the field
-                        field.setAttribute('aria-describedby', span.id);
-                    }
+            if (field) {
+                // If Select2 is already initialized, apply aria-describedby immediately
+                if (field.classList.contains('select2-hidden-accessible')) {
+                    applyAriaDescribedBy(field, span.id);
+                    return;
                 }
-            });
-        }, 500);
+
+                // Use MutationObserver to detect Select2 initialization
+                const observer = new MutationObserver(function (mutations) {
+                    if (document.getElementById(fieldId)?.classList.contains("select2-hidden-accessible")) {
+                        applyAriaDescribedBy(field, span.id);
+                        observer.disconnect(); // Stop observing after applying attributes
+                    }
+                });
+
+                observer.observe(document.body, {
+                    childList: true,
+                    subtree: true
+                });
+            }
+        });
+
+        // Function to apply aria-describedby to Select2 UI
+        function applyAriaDescribedBy(field, descriptionId) {
+            let select2ElementDetected = false;
+            const select2Id = "select2-" + field.id + "-container";
+
+            // Find the Select2 selection box
+            const select2SpanThatTriggersAria = document.querySelector(`span[aria-labelledby='${select2Id}']`);
+
+            if (select2SpanThatTriggersAria) {
+                select2SpanThatTriggersAria.setAttribute('aria-describedby', descriptionId);
+                select2ElementDetected = true;
+            }
+
+            // If no Select2 component was detected, apply aria-describedby directly to the field
+            if (!select2ElementDetected) {
+                field.setAttribute('aria-describedby', descriptionId);
+            }
+        }
     });
 }
\ No newline at end of file
diff --git a/src/registrar/assets/src/js/getgov-admin/main.js b/src/registrar/assets/src/js/getgov-admin/main.js
index 456863437..6ea73b9f3 100644
--- a/src/registrar/assets/src/js/getgov-admin/main.js
+++ b/src/registrar/assets/src/js/getgov-admin/main.js
@@ -19,7 +19,7 @@ import { initDynamicDomainInformationFields } from './domain-information-form.js
 import { initDynamicDomainFields } from './domain-form.js';
 import { initAnalyticsDashboard } from './analytics.js';
 import { initButtonLinks } from './button-utils.js';
-import { initAriaInjections } from './andi.js'
+import { initAriaInjectionsForSelect2Dropdowns } from './andi.js'
 
 // General
 initModals();
@@ -27,7 +27,7 @@ initCopyToClipboard();
 initFilterHorizontalWidget();
 initDescriptions();
 initSubmitBar();
-initAriaInjections();
+initAriaInjectionsForSelect2Dropdowns();
 initButtonLinks();
 
 // Domain request
diff --git a/src/registrar/fixtures/fixtures_portfolios.py b/src/registrar/fixtures/fixtures_portfolios.py
index b93b9efdd..4bf6f5da6 100644
--- a/src/registrar/fixtures/fixtures_portfolios.py
+++ b/src/registrar/fixtures/fixtures_portfolios.py
@@ -74,6 +74,7 @@ class PortfolioFixture:
         if not portfolio.federal_agency:
             if portfolio_dict.get("federal_agency") is not None:
                 portfolio.federal_agency, _ = FederalAgency.objects.get_or_create(name=portfolio_dict["federal_agency"])
+                portfolio.federal_agency.federal_type, _ = Federal_type.objects.get_or_create(name=portfolio_dict["federal_agency"])
             else:
                 federal_agencies = FederalAgency.objects.all()
                 # Random choice of agency for selects, used as placeholders for testing.

From 5c48277e7bddf1e4266b3c9b21c61524fd1790d8 Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Wed, 5 Mar 2025 16:15:42 -0700
Subject: [PATCH 27/70] revert stray fixtures experiment

---
 src/registrar/fixtures/fixtures_portfolios.py | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/registrar/fixtures/fixtures_portfolios.py b/src/registrar/fixtures/fixtures_portfolios.py
index 4bf6f5da6..b93b9efdd 100644
--- a/src/registrar/fixtures/fixtures_portfolios.py
+++ b/src/registrar/fixtures/fixtures_portfolios.py
@@ -74,7 +74,6 @@ class PortfolioFixture:
         if not portfolio.federal_agency:
             if portfolio_dict.get("federal_agency") is not None:
                 portfolio.federal_agency, _ = FederalAgency.objects.get_or_create(name=portfolio_dict["federal_agency"])
-                portfolio.federal_agency.federal_type, _ = Federal_type.objects.get_or_create(name=portfolio_dict["federal_agency"])
             else:
                 federal_agencies = FederalAgency.objects.all()
                 # Random choice of agency for selects, used as placeholders for testing.

From b6a213b88c4fb579e075d1c4eadb89b59cde5f1f Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 6 Mar 2025 08:24:15 -0700
Subject: [PATCH 28/70] Update decorators.py

---
 src/registrar/decorators.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index e6e45f0da..dfe58021c 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -172,7 +172,7 @@ def _user_has_permission(user, request, rules, **kwargs):
     ]
 
     # Check conditions iteratively
-    return all(check() for rule, check in permission_checks if rule in rules)
+    return any(check() for rule, check in permission_checks if rule in rules)
 
 
 def _has_portfolio_domain_requests_edit(user, request, domain_request_id):

From 59932c11f31bcd8156cd7331f5daa734bb39813f Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 6 Mar 2025 09:37:39 -0700
Subject: [PATCH 29/70] tighten logic for existence checks

---
 src/registrar/decorators.py       | 74 ++++++++++++++++++++++++-------
 src/registrar/views/portfolios.py | 25 ++++++++---
 2 files changed, 78 insertions(+), 21 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index dfe58021c..1a449bd0e 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -1,3 +1,4 @@
+import logging
 import functools
 from django.core.exceptions import PermissionDenied
 from django.utils.decorators import method_decorator
@@ -5,6 +6,9 @@ from registrar.models import Domain, DomainInformation, DomainInvitation, Domain
 from registrar.models.portfolio_invitation import PortfolioInvitation
 from registrar.models.user_portfolio_permission import UserPortfolioPermission
 
+
+logger = logging.getLogger(__name__)
+
 # Constants for clarity
 ALL = "all"
 IS_STAFF = "is_staff"
@@ -20,6 +24,7 @@ HAS_PORTFOLIO_DOMAIN_REQUESTS_ANY_PERM = "has_portfolio_domain_requests_any_perm
 HAS_PORTFOLIO_DOMAIN_REQUESTS_VIEW_ALL = "has_portfolio_domain_requests_view_all"
 HAS_PORTFOLIO_DOMAIN_REQUESTS_EDIT = "has_portfolio_domain_requests_edit"
 HAS_PORTFOLIO_MEMBERS_ANY_PERM = "has_portfolio_members_any_perm"
+HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT = "has_portfolio_members_view_and_edit"
 HAS_PORTFOLIO_MEMBERS_EDIT = "has_portfolio_members_edit"
 HAS_PORTFOLIO_MEMBERS_VIEW = "has_portfolio_members_view"
 
@@ -109,7 +114,9 @@ def _user_has_permission(user, request, rules, **kwargs):
         (IS_PORTFOLIO_MEMBER, lambda: user.is_org_user(request)),
         (
             HAS_PORTFOLIO_DOMAINS_VIEW_ALL,
-            lambda: _has_portfolio_view_all_domains(request, kwargs.get("domain_pk")),
+            lambda: user.is_org_user(request)
+            and user.has_view_all_domains_portfolio_permission(portfolio)
+            and _domain_exists_under_portfolio(portfolio, kwargs.get("domain_pk")),
         ),
         (
             HAS_PORTFOLIO_DOMAINS_ANY_PERM,
@@ -155,10 +162,29 @@ def _user_has_permission(user, request, rules, **kwargs):
                 or user.has_edit_members_portfolio_permission(portfolio)
             ),
         ),
+        (
+            # More restrictive check as compared to HAS_PORTFOLIO_MEMBERS_ANY_PERM.
+            # This is needed because grant_access does not apply perms in a layered fashion
+            # and grants access when any valid perm is found - so chaining view and edit works differently.
+            HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT,
+            lambda: user.is_org_user(request)
+            and (
+                user.has_view_members_portfolio_permission(portfolio)
+                and user.has_edit_members_portfolio_permission(portfolio)
+            )
+            and (
+                _member_exists_under_portfolio(portfolio, kwargs.get("member_pk")) 
+                or _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
+            ),
+        ),
         (
             HAS_PORTFOLIO_MEMBERS_EDIT,
             lambda: user.is_org_user(request)
             and user.has_edit_members_portfolio_permission(portfolio)
+            and (
+                _member_exists_under_portfolio(portfolio, kwargs.get("member_pk")) 
+                or _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
+            ),
         ),
         (
             HAS_PORTFOLIO_MEMBERS_VIEW,
@@ -202,17 +228,47 @@ def _is_domain_manager(user, **kwargs):
     return False
 
 def _domain_exists_under_portfolio(portfolio, domain_pk):
-    """Checks to see if the given domain exists under the provided portfolio"""
+    """Checks to see if the given domain exists under the provided portfolio. Returns True if the pk is None.
+    HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
+    """
+    # The view expects this, and the page will throw an error without this if it needs it.
+    # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
+    if not domain_pk:
+        logger.info("_domain_exists_under_portfolio => Could not find domain_pk. This is a non-issue if called from the right context.")
+        return True
     return Domain.objects.filter(domain_info__portfolio=portfolio, id=domain_pk).exists()
 
 def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
-    """Checks to see if the given domain request exists under the provided portfolio"""
+    """Checks to see if the given domain request exists under the provided portfolio. Returns True if the pk is None.
+    HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
+    """
+    # The view expects this, and the page will throw an error without this if it needs it.
+    # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
+    if not domain_request_pk:
+        logger.info("_domain_request_exists_under_portfolio => Could not find domain_request_pk. This is a non-issue if called from the right context.")
+        return True
     return DomainRequest.objects.filter(portfolio=portfolio, id=domain_request_pk).exists()
 
 def _member_exists_under_portfolio(portfolio, member_pk):
+    """Checks to see if the given UserPortfolioPermission exists under the provided portfolio. Returns True if the pk is None.
+    HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
+    """
+    # The view expects this, and the page will throw an error without this if it needs it.
+    # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
+    if not member_pk:
+        logger.info("_member_exists_under_portfolio => Could not find member_pk. This is a non-issue if called from the right context.")
+        return True
     return UserPortfolioPermission.objects.filter(portfolio=portfolio, id=member_pk).exists()
 
 def _member_invitation_exists_under_portfolio(portfolio, invitedmember_pk):
+    """Checks to see if the given PortfolioInvitation exists under the provided portfolio. Returns True if the pk is None.
+    HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
+    """
+    # The view expects this, and the page will throw an error without this if it needs it.
+    # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
+    if not invitedmember_pk:
+        logger.info("_member_invitation_exists_under_portfolio => Could not find invitedmember_pk. This is a non-issue if called from the right context.")
+        return True
     return PortfolioInvitation.objects.filter(portfolio=portfolio, id=invitedmember_pk).exists()
 
 def _is_domain_request_creator(user, domain_request_pk):
@@ -310,15 +366,3 @@ def _is_staff_managing_domain(request, **kwargs):
     # the user is permissioned,
     # and it is in a valid status
     return True
-
-
-def _has_portfolio_view_all_domains(request, domain_pk):
-    """Returns whether the user in the request can access the domain
-    via portfolio view all domains permission."""
-    portfolio = request.session.get("portfolio")
-    if request.user.has_view_all_domains_portfolio_permission(portfolio):
-        if Domain.objects.filter(id=domain_pk).exists():
-            domain = Domain.objects.get(id=domain_pk)
-            if domain.domain_info.portfolio == portfolio:
-                return True
-    return False
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 3a04d4c86..1a31f9a7f 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -13,6 +13,7 @@ from registrar.decorators import (
     HAS_PORTFOLIO_MEMBERS_ANY_PERM,
     HAS_PORTFOLIO_MEMBERS_EDIT,
     HAS_PORTFOLIO_MEMBERS_VIEW,
+    HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT,
     IS_PORTFOLIO_MEMBER,
     grant_access,
 )
@@ -117,7 +118,9 @@ class PortfolioMemberView(DetailView, View):
         )
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
+# The parent page requires VIEW access, the child requires EDIT.
+# This prevents url skimming without having to inherit the base class.
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
 class PortfolioMemberDeleteView(View):
     pk_url_kwarg = "member_pk"
 
@@ -220,7 +223,9 @@ class PortfolioMemberDeleteView(View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
+# The parent page requires VIEW access, the child requires EDIT.
+# This prevents url skimming without having to inherit the base class.
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
 class PortfolioMemberEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -324,7 +329,9 @@ class PortfolioMemberDomainsView(View):
         )
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
+# The parent page requires VIEW access, the child requires EDIT.
+# This prevents url skimming without having to inherit the base class.
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
 class PortfolioMemberDomainsEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -482,7 +489,9 @@ class PortfolioInvitedMemberView(DetailView, View):
         )
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
+# The parent page requires VIEW access, the child requires EDIT.
+# This prevents url skimming without having to inherit the base class.
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
 class PortfolioInvitedMemberDeleteView(View):
     pk_url_kwarg = "invitedmember_pk"
     def post(self, request, invitedmember_pk):
@@ -528,7 +537,9 @@ class PortfolioInvitedMemberDeleteView(View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
+# The parent page requires VIEW access, the child requires EDIT.
+# This prevents url skimming without having to inherit the base class.
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
 class PortfolioInvitedMemberEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -618,7 +629,9 @@ class PortfolioInvitedMemberDomainsView(View):
         )
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW, HAS_PORTFOLIO_MEMBERS_EDIT)
+# The parent page requires VIEW access, the child requires EDIT.
+# This prevents url skimming without having to inherit the base class.
+@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
 class PortfolioInvitedMemberDomainsEditView(DetailView, View):
 
     model = Portfolio

From af9a82eb8ffd664ce1c375c05446162cec6ddb5f Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 6 Mar 2025 09:50:38 -0700
Subject: [PATCH 30/70] tighten logic part 2

---
 src/registrar/decorators.py | 49 +++++++++++++++++++++++++------------
 1 file changed, 33 insertions(+), 16 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index 1a449bd0e..f44a274d7 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -120,13 +120,12 @@ def _user_has_permission(user, request, rules, **kwargs):
         ),
         (
             HAS_PORTFOLIO_DOMAINS_ANY_PERM,
-            lambda: user.is_org_user(request)
-            and user.has_any_domains_portfolio_permission(portfolio),
+            lambda: user.is_org_user(request) and user.has_any_domains_portfolio_permission(portfolio),
         ),
         (
             IS_PORTFOLIO_MEMBER_AND_DOMAIN_MANAGER,
-            lambda: _is_domain_manager(user, **kwargs) 
-            and _is_portfolio_member(request) 
+            lambda: _is_domain_manager(user, **kwargs)
+            and _is_portfolio_member(request)
             and _domain_exists_under_portfolio(portfolio, kwargs.get("domain_pk")),
         ),
         (
@@ -140,8 +139,7 @@ def _user_has_permission(user, request, rules, **kwargs):
         ),
         (
             HAS_PORTFOLIO_DOMAIN_REQUESTS_ANY_PERM,
-            lambda: user.is_org_user(request)
-            and user.has_any_requests_portfolio_permission(portfolio)
+            lambda: user.is_org_user(request) and user.has_any_requests_portfolio_permission(portfolio),
         ),
         (
             HAS_PORTFOLIO_DOMAIN_REQUESTS_VIEW_ALL,
@@ -173,8 +171,10 @@ def _user_has_permission(user, request, rules, **kwargs):
                 and user.has_edit_members_portfolio_permission(portfolio)
             )
             and (
-                _member_exists_under_portfolio(portfolio, kwargs.get("member_pk")) 
-                or _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
+                # AND rather than OR because these functions return true if the PK is not found.
+                # This adds support for if the view simply doesn't have said PK.
+                _member_exists_under_portfolio(portfolio, kwargs.get("member_pk"))
+                and _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
             ),
         ),
         (
@@ -182,8 +182,10 @@ def _user_has_permission(user, request, rules, **kwargs):
             lambda: user.is_org_user(request)
             and user.has_edit_members_portfolio_permission(portfolio)
             and (
-                _member_exists_under_portfolio(portfolio, kwargs.get("member_pk")) 
-                or _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
+                # AND rather than OR because these functions return true if the PK is not found.
+                # This adds support for if the view simply doesn't have said PK.
+                _member_exists_under_portfolio(portfolio, kwargs.get("member_pk"))
+                and _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
             ),
         ),
         (
@@ -191,8 +193,10 @@ def _user_has_permission(user, request, rules, **kwargs):
             lambda: user.is_org_user(request)
             and user.has_view_members_portfolio_permission(portfolio)
             and (
-                _member_exists_under_portfolio(portfolio, kwargs.get("member_pk")) 
-                or _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
+                # AND rather than OR because these functions return true if the PK is not found.
+                # This adds support for if the view simply doesn't have said PK.
+                _member_exists_under_portfolio(portfolio, kwargs.get("member_pk"))
+                and _member_invitation_exists_under_portfolio(portfolio, kwargs.get("invitedmember_pk"))
             ),
         ),
     ]
@@ -227,6 +231,7 @@ def _is_domain_manager(user, **kwargs):
         return DomainInvitation.objects.filter(id=domain_invitation_id, domain__permissions__user=user).exists()
     return False
 
+
 def _domain_exists_under_portfolio(portfolio, domain_pk):
     """Checks to see if the given domain exists under the provided portfolio. Returns True if the pk is None.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
@@ -234,10 +239,13 @@ def _domain_exists_under_portfolio(portfolio, domain_pk):
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
     if not domain_pk:
-        logger.info("_domain_exists_under_portfolio => Could not find domain_pk. This is a non-issue if called from the right context.")
+        logger.info(
+            "_domain_exists_under_portfolio => Could not find domain_pk. This is a non-issue if called from the right context."
+        )
         return True
     return Domain.objects.filter(domain_info__portfolio=portfolio, id=domain_pk).exists()
 
+
 def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
     """Checks to see if the given domain request exists under the provided portfolio. Returns True if the pk is None.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
@@ -245,10 +253,13 @@ def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
     if not domain_request_pk:
-        logger.info("_domain_request_exists_under_portfolio => Could not find domain_request_pk. This is a non-issue if called from the right context.")
+        logger.info(
+            "_domain_request_exists_under_portfolio => Could not find domain_request_pk. This is a non-issue if called from the right context."
+        )
         return True
     return DomainRequest.objects.filter(portfolio=portfolio, id=domain_request_pk).exists()
 
+
 def _member_exists_under_portfolio(portfolio, member_pk):
     """Checks to see if the given UserPortfolioPermission exists under the provided portfolio. Returns True if the pk is None.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
@@ -256,10 +267,13 @@ def _member_exists_under_portfolio(portfolio, member_pk):
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
     if not member_pk:
-        logger.info("_member_exists_under_portfolio => Could not find member_pk. This is a non-issue if called from the right context.")
+        logger.info(
+            "_member_exists_under_portfolio => Could not find member_pk. This is a non-issue if called from the right context."
+        )
         return True
     return UserPortfolioPermission.objects.filter(portfolio=portfolio, id=member_pk).exists()
 
+
 def _member_invitation_exists_under_portfolio(portfolio, invitedmember_pk):
     """Checks to see if the given PortfolioInvitation exists under the provided portfolio. Returns True if the pk is None.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
@@ -267,10 +281,13 @@ def _member_invitation_exists_under_portfolio(portfolio, invitedmember_pk):
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
     if not invitedmember_pk:
-        logger.info("_member_invitation_exists_under_portfolio => Could not find invitedmember_pk. This is a non-issue if called from the right context.")
+        logger.info(
+            "_member_invitation_exists_under_portfolio => Could not find invitedmember_pk. This is a non-issue if called from the right context."
+        )
         return True
     return PortfolioInvitation.objects.filter(portfolio=portfolio, id=invitedmember_pk).exists()
 
+
 def _is_domain_request_creator(user, domain_request_pk):
     """Checks to see if the user is the creator of a domain request
     with domain_request_pk."""

From 59613bc9b2fd7f60183ba85733ab79052fab7347 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 6 Mar 2025 10:09:07 -0700
Subject: [PATCH 31/70] fix bug with export button

---
 src/registrar/templates/includes/members_table.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/includes/members_table.html b/src/registrar/templates/includes/members_table.html
index 528f9a5dc..0343c78b7 100644
--- a/src/registrar/templates/includes/members_table.html
+++ b/src/registrar/templates/includes/members_table.html
@@ -40,7 +40,7 @@
       <div class="section-outlined__utility-button mobile-lg:padding-right-105 {% if portfolio %} mobile:grid-col-12 desktop:grid-col-6 desktop:padding-left-3{% endif %}">
         <section aria-label="Members report component" class="margin-top-205" id="members-report-component">
           <div class="usa-sr-only" id="members-export-button__description">Click to export as csv</div>
-          <button href="{% url 'export_members_portfolio' %}" class="use-button-as-link usa-button usa-button--unstyled usa-button--with-icon usa-button--justify-right" aria-labelledby="members-report-component" aria-describedby="members-export-button__description">
+          <button data-href="{% url 'export_members_portfolio' %}" class="use-button-as-link usa-button usa-button--unstyled usa-button--with-icon usa-button--justify-right" aria-labelledby="members-report-component" aria-describedby="members-export-button__description">
             <svg class="usa-icon usa-icon--large" aria-hidden="true" focusable="false" role="img" width="24" height="24">
               <use xlink:href="{%static 'img/sprite.svg'%}#file_download"></use>
             </svg>Export as CSV

From 2c56ea480f6b0e3e3b98a6285fec671e9550b43d Mon Sep 17 00:00:00 2001
From: Erin Song <121973038+erinysong@users.noreply.github.com>
Date: Thu, 6 Mar 2025 09:15:48 -0800
Subject: [PATCH 32/70] Make requested content changes

---
 src/registrar/templates/domain_base.html   | 2 +-
 src/registrar/templates/domain_detail.html | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/domain_base.html b/src/registrar/templates/domain_base.html
index 58038d0a4..3451157b5 100644
--- a/src/registrar/templates/domain_base.html
+++ b/src/registrar/templates/domain_base.html
@@ -58,7 +58,7 @@
         {% if request.path|endswith:"renewal"%}
         <h1>Renew {{domain.name}} </h1>
         {%else%}
-        <h1 class="break-word">Domain Overview</h1>
+        <h1 class="break-word">Domain overview</h1>
         {% endif%}
 
         {% endblock %}  {# domain_content #}
diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index eba0eaf85..a0d477249 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -99,7 +99,7 @@
     {% if domain.dnssecdata is not None %}
       {% include "includes/summary_item.html" with title='DNSSEC' value='Enabled' edit_link=url editable=is_editable %}
     {% else %}
-      {% include "includes/summary_item.html" with title='DNSSEC' value='Not Enabled' edit_link=url editable=is_editable %}
+      {% include "includes/summary_item.html" with title='DNSSEC' value='Not enabled' edit_link=url editable=is_editable %}
     {% endif %}
 
     {% if portfolio %}

From 8ddcf50bc865c6af09dcdf0a6c69258c48f0c02c Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 6 Mar 2025 12:03:25 -0700
Subject: [PATCH 33/70] final touches

---
 src/registrar/decorators.py       | 18 ++++--------------
 src/registrar/views/portfolios.py | 28 ++++++++--------------------
 2 files changed, 12 insertions(+), 34 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index f44a274d7..edaa0bf95 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -24,7 +24,6 @@ HAS_PORTFOLIO_DOMAIN_REQUESTS_ANY_PERM = "has_portfolio_domain_requests_any_perm
 HAS_PORTFOLIO_DOMAIN_REQUESTS_VIEW_ALL = "has_portfolio_domain_requests_view_all"
 HAS_PORTFOLIO_DOMAIN_REQUESTS_EDIT = "has_portfolio_domain_requests_edit"
 HAS_PORTFOLIO_MEMBERS_ANY_PERM = "has_portfolio_members_any_perm"
-HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT = "has_portfolio_members_view_and_edit"
 HAS_PORTFOLIO_MEMBERS_EDIT = "has_portfolio_members_edit"
 HAS_PORTFOLIO_MEMBERS_VIEW = "has_portfolio_members_view"
 
@@ -120,7 +119,8 @@ def _user_has_permission(user, request, rules, **kwargs):
         ),
         (
             HAS_PORTFOLIO_DOMAINS_ANY_PERM,
-            lambda: user.is_org_user(request) and user.has_any_domains_portfolio_permission(portfolio),
+            lambda: user.is_org_user(request) and user.has_any_domains_portfolio_permission(portfolio)
+            and _domain_exists_under_portfolio(portfolio, kwargs.get("domain_pk")),
         ),
         (
             IS_PORTFOLIO_MEMBER_AND_DOMAIN_MANAGER,
@@ -139,7 +139,8 @@ def _user_has_permission(user, request, rules, **kwargs):
         ),
         (
             HAS_PORTFOLIO_DOMAIN_REQUESTS_ANY_PERM,
-            lambda: user.is_org_user(request) and user.has_any_requests_portfolio_permission(portfolio),
+            lambda: user.is_org_user(request) and user.has_any_requests_portfolio_permission(portfolio)
+            and _domain_request_exists_under_portfolio(portfolio, kwargs.get("domain_request_pk")),
         ),
         (
             HAS_PORTFOLIO_DOMAIN_REQUESTS_VIEW_ALL,
@@ -158,17 +159,6 @@ def _user_has_permission(user, request, rules, **kwargs):
             and (
                 user.has_view_members_portfolio_permission(portfolio)
                 or user.has_edit_members_portfolio_permission(portfolio)
-            ),
-        ),
-        (
-            # More restrictive check as compared to HAS_PORTFOLIO_MEMBERS_ANY_PERM.
-            # This is needed because grant_access does not apply perms in a layered fashion
-            # and grants access when any valid perm is found - so chaining view and edit works differently.
-            HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT,
-            lambda: user.is_org_user(request)
-            and (
-                user.has_view_members_portfolio_permission(portfolio)
-                and user.has_edit_members_portfolio_permission(portfolio)
             )
             and (
                 # AND rather than OR because these functions return true if the PK is not found.
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 1a31f9a7f..53538a19e 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -13,7 +13,6 @@ from registrar.decorators import (
     HAS_PORTFOLIO_MEMBERS_ANY_PERM,
     HAS_PORTFOLIO_MEMBERS_EDIT,
     HAS_PORTFOLIO_MEMBERS_VIEW,
-    HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT,
     IS_PORTFOLIO_MEMBER,
     grant_access,
 )
@@ -73,7 +72,7 @@ class PortfolioDomainRequestsView(View):
         return render(request, "portfolio_requests.html")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW)
+@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
 class PortfolioMemberView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -118,9 +117,7 @@ class PortfolioMemberView(DetailView, View):
         )
 
 
-# The parent page requires VIEW access, the child requires EDIT.
-# This prevents url skimming without having to inherit the base class.
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioMemberDeleteView(View):
     pk_url_kwarg = "member_pk"
 
@@ -223,9 +220,7 @@ class PortfolioMemberDeleteView(View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-# The parent page requires VIEW access, the child requires EDIT.
-# This prevents url skimming without having to inherit the base class.
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioMemberEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -329,9 +324,7 @@ class PortfolioMemberDomainsView(View):
         )
 
 
-# The parent page requires VIEW access, the child requires EDIT.
-# This prevents url skimming without having to inherit the base class.
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioMemberDomainsEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -489,11 +482,10 @@ class PortfolioInvitedMemberView(DetailView, View):
         )
 
 
-# The parent page requires VIEW access, the child requires EDIT.
-# This prevents url skimming without having to inherit the base class.
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioInvitedMemberDeleteView(View):
     pk_url_kwarg = "invitedmember_pk"
+
     def post(self, request, invitedmember_pk):
         """
         Find and delete the portfolio invited member using the provided primary key (pk).
@@ -537,9 +529,7 @@ class PortfolioInvitedMemberDeleteView(View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-# The parent page requires VIEW access, the child requires EDIT.
-# This prevents url skimming without having to inherit the base class.
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioInvitedMemberEditView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -629,9 +619,7 @@ class PortfolioInvitedMemberDomainsView(View):
         )
 
 
-# The parent page requires VIEW access, the child requires EDIT.
-# This prevents url skimming without having to inherit the base class.
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW_AND_EDIT)
+@grant_access(HAS_PORTFOLIO_MEMBERS_EDIT)
 class PortfolioInvitedMemberDomainsEditView(DetailView, View):
 
     model = Portfolio

From 12853d78285e33e29eb960e79bfbbecbb8afd7f7 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 6 Mar 2025 12:16:53 -0700
Subject: [PATCH 34/70] Update portfolios.py

---
 src/registrar/views/portfolios.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 53538a19e..d9760ff5a 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -304,7 +304,7 @@ class PortfolioMemberEditView(DetailView, View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW)
+@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
 class PortfolioMemberDomainsView(View):
 
     template_name = "portfolio_member_domains.html"
@@ -437,7 +437,7 @@ class PortfolioMemberDomainsEditView(DetailView, View):
             UserDomainRole.objects.filter(domain_id__in=removed_domain_ids, user=member).delete()
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW)
+@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
 class PortfolioInvitedMemberView(DetailView, View):
     model = Portfolio
     context_object_name = "portfolio"
@@ -601,7 +601,7 @@ class PortfolioInvitedMemberEditView(DetailView, View):
             messages.warning(self.request, "Could not send email notification to existing organization admins.")
 
 
-@grant_access(HAS_PORTFOLIO_MEMBERS_VIEW)
+@grant_access(HAS_PORTFOLIO_MEMBERS_ANY_PERM)
 class PortfolioInvitedMemberDomainsView(View):
 
     template_name = "portfolio_member_domains.html"

From 19433f2ae19b33f39af354e6579a653e1441ee48 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 6 Mar 2025 14:55:59 -0700
Subject: [PATCH 35/70] Initial unit tests

---
 src/registrar/decorators.py                 |  13 +-
 src/registrar/tests/test_resource_access.py | 323 ++++++++++++++++++++
 2 files changed, 335 insertions(+), 1 deletion(-)
 create mode 100644 src/registrar/tests/test_resource_access.py

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index edaa0bf95..ab495f89c 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -108,7 +108,18 @@ def _user_has_permission(user, request, rules, **kwargs):
     # Define permission checks
     permission_checks = [
         (IS_STAFF, lambda: user.is_staff),
-        (IS_DOMAIN_MANAGER, lambda: _is_domain_manager(user, **kwargs)),
+        (
+            IS_DOMAIN_MANAGER, 
+            lambda: (
+                not user.is_org_user(request)
+                and _is_domain_manager(user, **kwargs)
+            )
+            or (
+                user.is_org_user(request)
+                and _is_domain_manager(user, **kwargs)
+                and _domain_exists_under_portfolio(portfolio, kwargs.get("domain_pk"))
+            )
+        ),
         (IS_STAFF_MANAGING_DOMAIN, lambda: _is_staff_managing_domain(request, **kwargs)),
         (IS_PORTFOLIO_MEMBER, lambda: user.is_org_user(request)),
         (
diff --git a/src/registrar/tests/test_resource_access.py b/src/registrar/tests/test_resource_access.py
new file mode 100644
index 000000000..b75085258
--- /dev/null
+++ b/src/registrar/tests/test_resource_access.py
@@ -0,0 +1,323 @@
+from django.test import Client
+from django.urls import reverse
+from waffle.testutils import override_flag
+
+from registrar.tests.common import (
+    MockDbForIndividualTests,
+    less_console_noise_decorator,
+    completed_domain_request,
+)
+from registrar.models import (
+    Domain,
+    DomainRequest,
+    Portfolio,
+    UserPortfolioPermission,
+    PortfolioInvitation,
+    User,
+)
+from registrar.models.utility.portfolio_helper import (
+    UserPortfolioRoleChoices,
+    UserPortfolioPermissionChoices,
+)
+from registrar.decorators import (
+    _domain_exists_under_portfolio,
+    _domain_request_exists_under_portfolio,
+    _member_exists_under_portfolio,
+    _member_invitation_exists_under_portfolio,
+)
+
+
+class TestPortfolioResourceAccess(MockDbForIndividualTests):
+    """Test functions that verify resources belong to a portfolio.
+    More specifically, this function tests our helper utilities in decorators.py"""
+
+    def setUp(self):
+        super().setUp()
+        
+        # Create portfolios
+        self.portfolio = Portfolio.objects.create(
+            creator=self.user, organization_name="Test Portfolio"
+        )
+        self.other_portfolio = Portfolio.objects.create(
+            creator=self.custom_staffuser, organization_name="Other Portfolio"
+        )
+        
+        # Create domain requests
+        self.domain_request = completed_domain_request(name="eggnog.gov", user=self.user, portfolio=self.portfolio)
+        
+        self.other_domain_request = completed_domain_request(
+            name="christmas.gov", user=self.tired_user, portfolio=self.other_portfolio
+        )
+        
+
+        # Create domains
+        self.approved_domain_request_1 = completed_domain_request(
+            name="done_1.gov", user=self.tired_user, portfolio=self.portfolio, status=DomainRequest.DomainRequestStatus.IN_REVIEW
+        )
+        self.approved_domain_request_2 = completed_domain_request(
+            name="done_2.gov", user=self.tired_user, portfolio=self.other_portfolio, status=DomainRequest.DomainRequestStatus.IN_REVIEW
+        )
+        self.approved_domain_request_1.approve()
+        self.approved_domain_request_2.approve()
+        self.domain = self.approved_domain_request_1.approved_domain
+        self.other_domain = self.approved_domain_request_2.approved_domain
+
+        
+        # Create portfolio permissions
+        self.user_permission = UserPortfolioPermission.objects.create(
+            user=self.user,
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+        )
+        
+        self.other_user_permission = UserPortfolioPermission.objects.create(
+            user=self.tired_user,
+            portfolio=self.other_portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+        )
+        
+        # Create portfolio invitations
+        self.portfolio_invitation = PortfolioInvitation.objects.create(
+            email="invited@example.com",
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            status=PortfolioInvitation.PortfolioInvitationStatus.INVITED
+        )
+        
+        self.other_portfolio_invitation = PortfolioInvitation.objects.create(
+            email="other-invited@example.com",
+            portfolio=self.other_portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            status=PortfolioInvitation.PortfolioInvitationStatus.INVITED
+        )
+
+    # Domain request tests
+    @less_console_noise_decorator
+    def test_domain_request_exists_under_portfolio_when_pk_is_none(self):
+        """Check behavior when the PK is None."""
+        self.assertTrue(_domain_request_exists_under_portfolio(self.portfolio, None))
+
+    @less_console_noise_decorator
+    def test_domain_request_exists_under_portfolio_when_exists(self):
+        """Verify returns True when the domain request exists under the portfolio."""
+        self.assertTrue(_domain_request_exists_under_portfolio(self.portfolio, self.domain_request.id))
+
+    @less_console_noise_decorator
+    def test_domain_request_exists_under_portfolio_when_not_exists(self):
+        """Verify returns False when the domain request does not exist under the portfolio."""
+        self.assertFalse(_domain_request_exists_under_portfolio(self.portfolio, self.other_domain_request.id))
+
+    # Domain tests
+    @less_console_noise_decorator
+    def test_domain_exists_under_portfolio_when_pk_is_none(self):
+        """Check behavior when the PK is None."""
+        self.assertTrue(_domain_exists_under_portfolio(self.portfolio, None))
+
+    @less_console_noise_decorator
+    def test_domain_exists_under_portfolio_when_exists(self):
+        """Verify returns True when the domain exists under the portfolio."""
+        self.assertTrue(_domain_exists_under_portfolio(self.portfolio, self.domain.id))
+
+    @less_console_noise_decorator
+    def test_domain_exists_under_portfolio_when_not_exists(self):
+        """Verify returns False when the domain does not exist under the portfolio."""
+        self.assertFalse(_domain_exists_under_portfolio(self.portfolio, self.other_domain.id))
+
+    # Member tests
+    @less_console_noise_decorator
+    def test_member_exists_under_portfolio_when_pk_is_none(self):
+        """Check behavior when the PK is None."""
+        self.assertTrue(_member_exists_under_portfolio(self.portfolio, None))
+
+    @less_console_noise_decorator
+    def test_member_exists_under_portfolio_when_exists(self):
+        """Verify returns True when the member exists under the portfolio."""
+        self.assertTrue(_member_exists_under_portfolio(self.portfolio, self.user_permission.id))
+
+    @less_console_noise_decorator
+    def test_member_exists_under_portfolio_when_not_exists(self):
+        """Verify returns False when the member does not exist under the portfolio."""
+        self.assertFalse(_member_exists_under_portfolio(self.portfolio, self.other_user_permission.id))
+
+    # Member invitation tests
+    @less_console_noise_decorator
+    def test_member_invitation_exists_under_portfolio_when_pk_is_none(self):
+        """Check behavior when the PK is None."""
+        self.assertTrue(_member_invitation_exists_under_portfolio(self.portfolio, None))
+
+    @less_console_noise_decorator
+    def test_member_invitation_exists_under_portfolio_when_exists(self):
+        """Verify returns True when the member invitation exists under the portfolio."""
+        self.assertTrue(_member_invitation_exists_under_portfolio(self.portfolio, self.portfolio_invitation.id))
+
+    @less_console_noise_decorator
+    def test_member_invitation_exists_under_portfolio_when_not_exists(self):
+        """Verify returns False when the member invitation does not exist under the portfolio."""
+        self.assertFalse(_member_invitation_exists_under_portfolio(self.portfolio, self.other_portfolio_invitation.id))
+
+
+class TestPortfolioDomainRequestViewAccess(MockDbForIndividualTests):
+    """Tests for domain request views to ensure users can only access domain requests in their portfolio."""
+    
+    def setUp(self):
+        super().setUp()
+        self.client = Client()
+        self.client.force_login(self.user)
+        
+        # Create portfolios
+        self.portfolio = Portfolio.objects.create(
+            creator=self.user, organization_name="Test Portfolio"
+        )
+        self.other_portfolio = Portfolio.objects.create(
+            creator=self.tired_user, organization_name="Other Portfolio"
+        )
+        
+        # Create domain requests
+        self.domain_request = completed_domain_request(
+            name="test-domain.gov",
+            portfolio=self.portfolio,
+            status=DomainRequest.DomainRequestStatus.STARTED,
+            user=self.user
+        )
+        
+        self.other_domain_request = completed_domain_request(
+            name="other-domain.gov",
+            portfolio=self.other_portfolio,
+            status=DomainRequest.DomainRequestStatus.STARTED,
+            user=self.tired_user
+        )
+        
+        # Give user permission to view all requests
+        self.user_permission = UserPortfolioPermission.objects.create(
+            user=self.user,
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
+            additional_permissions=[UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS]
+        )
+        
+        # Setup session for portfolio views
+        session = self.client.session
+        session["portfolio"] = self.portfolio
+        session.save()
+
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_requests", active=True)
+    @less_console_noise_decorator
+    def test_domain_request_view_same_portfolio(self):
+        """Test that user can access domain requests in their portfolio."""
+        # With just the view all permission, access should be denied
+        response = self.client.get(reverse("edit-domain-request", kwargs={
+            "domain_request_pk": self.domain_request.pk
+        }))
+        self.assertEqual(response.status_code, 403)
+
+        # But with the edit permission, the user should be able to access this domain request
+        self.user_permission.additional_permissions = [
+            UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS,
+            UserPortfolioPermissionChoices.EDIT_REQUESTS
+        ]
+        self.user_permission.save()
+        self.user_permission.refresh_from_db()
+        response = self.client.get(reverse("edit-domain-request", kwargs={
+            "domain_request_pk": self.domain_request.pk
+        }), follow=True)
+        self.assertEqual(response.status_code, 200)
+    
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_requests", active=True)
+    @less_console_noise_decorator
+    def test_domain_request_view_different_portfolio(self):
+        """Test that user cannot access domain request not in their portfolio."""
+        response = self.client.get(reverse("edit-domain-request", kwargs={
+            "domain_request_pk": self.other_domain_request.pk
+        }))
+        self.assertEqual(response.status_code, 403)
+
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_requests", active=True)
+    @less_console_noise_decorator
+    def test_domain_request_viewonly_same_portfolio(self):
+        """Test that user can access view-only domain request in their portfolio."""
+        response = self.client.get(reverse("domain-request-status-viewonly", kwargs={
+            "domain_request_pk": self.domain_request.pk
+        }))
+        self.assertEqual(response.status_code, 200)
+    
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_requests", active=True)
+    @less_console_noise_decorator
+    def test_domain_request_viewonly_different_portfolio(self):
+        """Test that user cannot access view-only domain request not in their portfolio."""
+        response = self.client.get(reverse("domain-request-status-viewonly", kwargs={
+            "domain_request_pk": self.other_domain_request.pk
+        }))
+        self.assertEqual(response.status_code, 403)
+
+
+class TestPortfolioDomainViewAccess(MockDbForIndividualTests):
+    """Tests for domain views to ensure users can only access domains in their portfolio."""
+    
+    def setUp(self):
+        super().setUp()
+        self.client = Client()
+        self.client.force_login(self.user)
+        
+        # Create portfolios
+        self.portfolio = Portfolio.objects.create(
+            creator=self.user, organization_name="Test Portfolio"
+        )
+        self.other_portfolio = Portfolio.objects.create(
+            creator=self.tired_user, organization_name="Other Portfolio"
+        )
+        
+        # Create domains through domain requests
+        self.domain_request = completed_domain_request(
+            name="test-domain.gov",
+            portfolio=self.portfolio,
+            status=DomainRequest.DomainRequestStatus.IN_REVIEW,
+            user=self.user
+        )
+        self.domain_request.approve()
+        self.domain = self.domain_request.approved_domain
+        
+        self.other_domain_request = completed_domain_request(
+            name="other-domain.gov",
+            portfolio=self.other_portfolio,
+            status=DomainRequest.DomainRequestStatus.IN_REVIEW,
+            user=self.user
+        )
+        self.other_domain_request.approve()
+        self.other_domain = self.other_domain_request.approved_domain
+        
+        # Give user permission to view all domains
+        self.user_permission = UserPortfolioPermission.objects.create(
+            user=self.user,
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
+            additional_permissions=[UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS]
+        )
+        
+        # Setup session for portfolio views
+        session = self.client.session
+        session["portfolio"] = self.portfolio
+        session.save()
+
+    @override_flag("organization_feature", active=True)
+    @less_console_noise_decorator
+    def test_domain_view_same_portfolio(self):
+        """Test that user can access domain in their portfolio."""
+        response = self.client.get(reverse("domain", kwargs={
+            "domain_pk": self.domain.pk
+        }))
+        self.assertEqual(response.status_code, 200)
+    
+    @override_flag("organization_feature", active=True)
+    @less_console_noise_decorator
+    def test_domain_view_different_portfolio(self):
+        """Test that user cannot access domain not in their portfolio."""
+        response = self.client.get(reverse("domain", kwargs={
+            "domain_pk": self.other_domain.pk
+        }))
+        self.assertEqual(response.status_code, 403)
+
+

From f28fb37b210e0ba995519e868bb4dd9ede42be3f Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 6 Mar 2025 15:08:00 -0700
Subject: [PATCH 36/70] Add test on member

---
 src/registrar/tests/test_resource_access.py | 61 +++++++++++++++++++++
 1 file changed, 61 insertions(+)

diff --git a/src/registrar/tests/test_resource_access.py b/src/registrar/tests/test_resource_access.py
index b75085258..cbd907863 100644
--- a/src/registrar/tests/test_resource_access.py
+++ b/src/registrar/tests/test_resource_access.py
@@ -321,3 +321,64 @@ class TestPortfolioDomainViewAccess(MockDbForIndividualTests):
         self.assertEqual(response.status_code, 403)
 
 
+class TestPortfolioMemberViewAccess(MockDbForIndividualTests):
+    """Tests for member views to ensure users can only access members in their portfolio."""
+    
+    def setUp(self):
+        super().setUp()
+        self.client = Client()
+        self.client.force_login(self.user)
+        
+        # Create portfolios
+        self.portfolio = Portfolio.objects.create(
+            creator=self.user, organization_name="Test Portfolio"
+        )
+        self.other_portfolio = Portfolio.objects.create(
+            creator=self.tired_user, organization_name="Other Portfolio"
+        )
+
+        
+        # Create portfolio permissions
+        self.member_permission = UserPortfolioPermission.objects.create(
+            user=self.meoward_user,
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+        )
+        
+        self.other_member_permission = UserPortfolioPermission.objects.create(
+            user=self.lebowski_user,
+            portfolio=self.other_portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+        )
+
+        # Give user permission to view/edit members
+        self.user_permission = UserPortfolioPermission.objects.create(
+            user=self.user,
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+        )
+        
+        # Setup session for portfolio views
+        session = self.client.session
+        session["portfolio"] = self.portfolio
+        session.save()
+
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_members", active=True)
+    @less_console_noise_decorator
+    def test_member_view_same_portfolio(self):
+        """Test that user can access member in their portfolio."""
+        response = self.client.get(reverse("member", kwargs={
+            "member_pk": self.member_permission.pk
+        }))
+        self.assertEqual(response.status_code, 200)
+    
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_members", active=True)
+    @less_console_noise_decorator
+    def test_member_view_different_portfolio(self):
+        """Test that user cannot access member not in their portfolio."""
+        response = self.client.get(reverse("member", kwargs={
+            "member_pk": self.other_member_permission.pk
+        }))
+        self.assertEqual(response.status_code, 403)

From 6ea64a030c9a21213a6d0f9b5522ec75e5851285 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 6 Mar 2025 15:19:38 -0700
Subject: [PATCH 37/70] Fix some unit tests

---
 src/registrar/tests/test_url_auth.py        |   2 +
 src/registrar/tests/test_views_portfolio.py | 130 ++++++++++----------
 src/registrar/views/portfolios.py           |  26 ++--
 3 files changed, 80 insertions(+), 78 deletions(-)

diff --git a/src/registrar/tests/test_url_auth.py b/src/registrar/tests/test_url_auth.py
index 7e0193e1d..8b0cec83e 100644
--- a/src/registrar/tests/test_url_auth.py
+++ b/src/registrar/tests/test_url_auth.py
@@ -29,6 +29,8 @@ SAMPLE_KWARGS = {
     "user_pk": "1",
     "portfolio_id": "1",
     "user_id": "1",
+    "member_pk": "1",
+    "invitedmember_pk": "1"
 }
 
 # Our test suite will ignore some namespaces.
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 64bcb50a8..1c6ae5001 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -867,7 +867,7 @@ class TestPortfolio(WebTest):
 
         # Verify that the user cannot access the member page
         self.client.force_login(self.user)
-        response = self.client.get(reverse("member", kwargs={"pk": 1}), follow=True)
+        response = self.client.get(reverse("member", kwargs={"member_pk": 1}), follow=True)
         # Make sure the page is denied
         self.assertEqual(response.status_code, 403)
 
@@ -886,7 +886,7 @@ class TestPortfolio(WebTest):
 
         # Verify that the user cannot access the member page
         self.client.force_login(self.user)
-        response = self.client.get(reverse("member", kwargs={"pk": 1}), follow=True)
+        response = self.client.get(reverse("member", kwargs={"member_pk": 1}), follow=True)
         # Make sure the page is denied
         self.assertEqual(response.status_code, 403)
 
@@ -909,7 +909,7 @@ class TestPortfolio(WebTest):
 
         # Verify the page can be accessed
         self.client.force_login(self.user)
-        response = self.client.get(reverse("member", kwargs={"pk": permission_obj.pk}), follow=True)
+        response = self.client.get(reverse("member", kwargs={"member_pk": permission_obj.pk}), follow=True)
         self.assertEqual(response.status_code, 200)
 
         # Assert text within the page is correct
@@ -942,7 +942,7 @@ class TestPortfolio(WebTest):
 
         # Verify the page can be accessed
         self.client.force_login(self.user)
-        response = self.client.get(reverse("member", kwargs={"pk": permission_obj.pk}), follow=True)
+        response = self.client.get(reverse("member", kwargs={"member_pk": permission_obj.pk}), follow=True)
         self.assertEqual(response.status_code, 200)
 
         # Assert text within the page is correct
@@ -966,7 +966,7 @@ class TestPortfolio(WebTest):
 
         # Verify that the user cannot access the member page
         self.client.force_login(self.user)
-        response = self.client.get(reverse("invitedmember", kwargs={"pk": 1}), follow=True)
+        response = self.client.get(reverse("invitedmember", kwargs={"invitedmember_pk": 1}), follow=True)
         # Make sure the page is denied
         self.assertEqual(response.status_code, 403)
 
@@ -985,7 +985,7 @@ class TestPortfolio(WebTest):
 
         # Verify that the user cannot access the member page
         self.client.force_login(self.user)
-        response = self.client.get(reverse("invitedmember", kwargs={"pk": 1}), follow=True)
+        response = self.client.get(reverse("invitedmember", kwargs={"invitedmember_pk": 1}), follow=True)
         # Make sure the page is denied
         self.assertEqual(response.status_code, 403)
 
@@ -1016,7 +1016,7 @@ class TestPortfolio(WebTest):
 
         # Verify the page can be accessed
         self.client.force_login(self.user)
-        response = self.client.get(reverse("invitedmember", kwargs={"pk": portfolio_invitation.pk}), follow=True)
+        response = self.client.get(reverse("invitedmember", kwargs={"invitedmember_pk": portfolio_invitation.pk}), follow=True)
         self.assertEqual(response.status_code, 200)
 
         # Assert text within the page is correct
@@ -1054,7 +1054,7 @@ class TestPortfolio(WebTest):
 
         # Verify the page can be accessed
         self.client.force_login(self.user)
-        response = self.client.get(reverse("invitedmember", kwargs={"pk": portfolio_invitation.pk}), follow=True)
+        response = self.client.get(reverse("invitedmember", kwargs={"invitedmember_pk": portfolio_invitation.pk}), follow=True)
         self.assertEqual(response.status_code, 200)
 
         # Assert text within the page is correct
@@ -1697,7 +1697,7 @@ class TestPortfolioMemberDeleteView(WebTest):
             self.client.force_login(self.user)
             # We check X_REQUESTED_WITH bc those return JSON responses
             response = self.client.post(
-                reverse("member-delete", kwargs={"pk": upp.pk}), HTTP_X_REQUESTED_WITH="XMLHttpRequest"
+                reverse("member-delete", kwargs={"member_pk": upp.pk}), HTTP_X_REQUESTED_WITH="XMLHttpRequest"
             )
 
             self.assertEqual(response.status_code, 400)  # Bad request due to active requests
@@ -1738,7 +1738,7 @@ class TestPortfolioMemberDeleteView(WebTest):
             self.client.force_login(self.user)
             # We check X_REQUESTED_WITH bc those return JSON responses
             response = self.client.post(
-                reverse("member-delete", kwargs={"pk": admin_perm_user.pk}), HTTP_X_REQUESTED_WITH="XMLHttpRequest"
+                reverse("member-delete", kwargs={"member_pk": admin_perm_user.pk}), HTTP_X_REQUESTED_WITH="XMLHttpRequest"
             )
 
             self.assertEqual(response.status_code, 400)
@@ -1795,7 +1795,7 @@ class TestPortfolioMemberDeleteView(WebTest):
             self.client.force_login(self.user)
             response = self.client.post(
                 # We check X_REQUESTED_WITH bc those return JSON responses
-                reverse("member-delete", kwargs={"pk": upp.pk}),
+                reverse("member-delete", kwargs={"member_pk": upp.pk}),
                 HTTP_X_REQUESTED_WITH="XMLHttpRequest",
             )
 
@@ -1862,7 +1862,7 @@ class TestPortfolioMemberDeleteView(WebTest):
             self.client.force_login(self.user)
             response = self.client.post(
                 # We check X_REQUESTED_WITH bc those return JSON responses
-                reverse("member-delete", kwargs={"pk": upp.pk}),
+                reverse("member-delete", kwargs={"member_pk": upp.pk}),
                 HTTP_X_REQUESTED_WITH="XMLHttpRequest",
             )
 
@@ -1939,7 +1939,7 @@ class TestPortfolioMemberDeleteView(WebTest):
             self.client.force_login(self.user)
             response = self.client.post(
                 # We check X_REQUESTED_WITH bc those return JSON responses
-                reverse("member-delete", kwargs={"pk": upp.pk}),
+                reverse("member-delete", kwargs={"member_pk": upp.pk}),
                 HTTP_X_REQUESTED_WITH="XMLHttpRequest",
             )
 
@@ -2000,7 +2000,7 @@ class TestPortfolioMemberDeleteView(WebTest):
             with patch("django.contrib.messages.error") as mock_error:
                 self.client.force_login(self.user)
                 response = self.client.post(
-                    reverse("member-delete", kwargs={"pk": upp.pk}),
+                    reverse("member-delete", kwargs={"member_pk": upp.pk}),
                 )
                 # We don't want to do follow=True in response bc that does automatic redirection
 
@@ -2023,7 +2023,7 @@ class TestPortfolioMemberDeleteView(WebTest):
 
                 # Location is used for a 3xx HTTP status code to indicate that the URL was redirected
                 # and then confirm that we're still on the Manage Members page
-                self.assertEqual(response.headers["Location"], reverse("member", kwargs={"pk": upp.pk}))
+                self.assertEqual(response.headers["Location"], reverse("member", kwargs={"member_pk": upp.pk}))
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
@@ -2047,7 +2047,7 @@ class TestPortfolioMemberDeleteView(WebTest):
             with patch("django.contrib.messages.error") as mock_error:
                 self.client.force_login(self.user)
                 response = self.client.post(
-                    reverse("member-delete", kwargs={"pk": admin_perm_user.pk}),
+                    reverse("member-delete", kwargs={"member_pk": admin_perm_user.pk}),
                 )
 
                 self.assertEqual(response.status_code, 302)
@@ -2066,7 +2066,7 @@ class TestPortfolioMemberDeleteView(WebTest):
 
                 # Location is used for a 3xx HTTP status code to indicate that the URL was redirected
                 # and then confirm that we're still on the Manage Members page
-                self.assertEqual(response.headers["Location"], reverse("member", kwargs={"pk": admin_perm_user.pk}))
+                self.assertEqual(response.headers["Location"], reverse("member", kwargs={"member_pk": admin_perm_user.pk}))
 
 
 class TestPortfolioInvitedMemberDeleteView(WebTest):
@@ -2125,7 +2125,7 @@ class TestPortfolioInvitedMemberDeleteView(WebTest):
         with patch("django.contrib.messages.success") as mock_success:
             self.client.force_login(self.user)
             response = self.client.post(
-                reverse("invitedmember-delete", kwargs={"pk": invitation.pk}),
+                reverse("invitedmember-delete", kwargs={"member_pk": invitation.pk}),
             )
 
             self.assertEqual(response.status_code, 302)
@@ -2190,7 +2190,7 @@ class TestPortfolioInvitedMemberDeleteView(WebTest):
         with patch("django.contrib.messages.success") as mock_success:
             self.client.force_login(self.user)
             response = self.client.post(
-                reverse("invitedmember-delete", kwargs={"pk": invitation.pk}),
+                reverse("invitedmember-delete", kwargs={"member_pk": invitation.pk}),
             )
 
             self.assertEqual(response.status_code, 302)
@@ -2263,7 +2263,7 @@ class TestPortfolioInvitedMemberDeleteView(WebTest):
         with patch("django.contrib.messages.success") as mock_success:
             self.client.force_login(self.user)
             response = self.client.post(
-                reverse("invitedmember-delete", kwargs={"pk": invitation.pk}),
+                reverse("invitedmember-delete", kwargs={"member_pk": invitation.pk}),
             )
 
             self.assertEqual(response.status_code, 302)
@@ -2365,7 +2365,7 @@ class TestPortfolioMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio member domains view is accessible."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("member-domains", kwargs={"pk": self.permission.id}))
+        response = self.client.get(reverse("member-domains", kwargs={"member_pk": self.permission.id}))
 
         # Make sure the page loaded, and that we're on the right page
         self.assertEqual(response.status_code, 200)
@@ -2378,7 +2378,7 @@ class TestPortfolioMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio member domains view is not accessible to user with no perms."""
         self.client.force_login(self.user_no_perms)
 
-        response = self.client.get(reverse("member-domains", kwargs={"pk": self.permission.id}))
+        response = self.client.get(reverse("member-domains", kwargs={"member_pk": self.permission.id}))
 
         # Make sure the request returns forbidden
         self.assertEqual(response.status_code, 403)
@@ -2390,7 +2390,7 @@ class TestPortfolioMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio member domains view is not accessible when no authenticated user."""
         self.client.logout()
 
-        response = self.client.get(reverse("member-domains", kwargs={"pk": self.permission.id}))
+        response = self.client.get(reverse("member-domains", kwargs={"member_pk": self.permission.id}))
 
         # Make sure the request returns redirect to openid login
         self.assertEqual(response.status_code, 302)  # Redirect to openid login
@@ -2403,7 +2403,7 @@ class TestPortfolioMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio member domains view returns not found if user portfolio permission not found."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("member-domains", kwargs={"pk": "0"}))
+        response = self.client.get(reverse("member-domains", kwargs={"member_pk": "0"}))
 
         # Make sure the response is not found
         self.assertEqual(response.status_code, 404)
@@ -2463,7 +2463,7 @@ class TestPortfolioInvitedMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains view is accessible."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("invitedmember-domains", kwargs={"pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.id}))
 
         # Make sure the page loaded, and that we're on the right page
         self.assertEqual(response.status_code, 200)
@@ -2476,7 +2476,7 @@ class TestPortfolioInvitedMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains view is not accessible to user with no perms."""
         self.client.force_login(self.user_no_perms)
 
-        response = self.client.get(reverse("invitedmember-domains", kwargs={"pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.id}))
 
         # Make sure the request returns forbidden
         self.assertEqual(response.status_code, 403)
@@ -2488,7 +2488,7 @@ class TestPortfolioInvitedMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains view is not accessible when no authenticated user."""
         self.client.logout()
 
-        response = self.client.get(reverse("invitedmember-domains", kwargs={"pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.id}))
 
         # Make sure the request returns redirect to openid login
         self.assertEqual(response.status_code, 302)  # Redirect to openid login
@@ -2501,7 +2501,7 @@ class TestPortfolioInvitedMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains view returns not found if user is not a member."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("invitedmember-domains", kwargs={"pk": "0"}))
+        response = self.client.get(reverse("invitedmember-domains", kwargs={"member_pk": "0"}))
 
         # Make sure the response is not found
         self.assertEqual(response.status_code, 404)
@@ -2566,7 +2566,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
             ],
         )
         # Create url to be used in all tests
-        self.url = reverse("member-domains-edit", kwargs={"pk": self.portfolio_permission.pk})
+        self.url = reverse("member-domains-edit", kwargs={"member_pk": self.portfolio_permission.pk})
 
     def tearDown(self):
         super().tearDown()
@@ -2584,7 +2584,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         """Tests that the portfolio member domains edit view is accessible."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("member-domains-edit", kwargs={"pk": self.permission.id}))
+        response = self.client.get(reverse("member-domains-edit", kwargs={"member_pk": self.permission.id}))
 
         # Make sure the page loaded, and that we're on the right page
         self.assertEqual(response.status_code, 200)
@@ -2597,7 +2597,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         """Tests that the portfolio member domains edit view is not accessible to user with no perms."""
         self.client.force_login(self.user_no_perms)
 
-        response = self.client.get(reverse("member-domains-edit", kwargs={"pk": self.permission.id}))
+        response = self.client.get(reverse("member-domains-edit", kwargs={"member_pk": self.permission.id}))
 
         # Make sure the request returns forbidden
         self.assertEqual(response.status_code, 403)
@@ -2609,7 +2609,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         """Tests that the portfolio member domains edit view is not accessible when no authenticated user."""
         self.client.logout()
 
-        response = self.client.get(reverse("member-domains-edit", kwargs={"pk": self.permission.id}))
+        response = self.client.get(reverse("member-domains-edit", kwargs={"member_pk": self.permission.id}))
 
         # Make sure the request returns redirect to openid login
         self.assertEqual(response.status_code, 302)  # Redirect to openid login
@@ -2623,7 +2623,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         portfolio permission not found."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("member-domains-edit", kwargs={"pk": "0"}))
+        response = self.client.get(reverse("member-domains-edit", kwargs={"member_pk": "0"}))
 
         # Make sure the response is not found
         self.assertEqual(response.status_code, 404)
@@ -2645,7 +2645,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.assertEqual(UserDomainRole.objects.filter(user=self.user, role=UserDomainRole.Roles.MANAGER).count(), 3)
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("member-domains", kwargs={"pk": self.portfolio_permission.pk}))
+        self.assertRedirects(response, reverse("member-domains", kwargs={"member_pk": self.portfolio_permission.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
@@ -2681,7 +2681,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.assertEqual(UserDomainRole.objects.filter(domain=self.domain3, user=self.user).count(), 1)
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("member-domains", kwargs={"pk": self.portfolio_permission.pk}))
+        self.assertRedirects(response, reverse("member-domains", kwargs={"member_pk": self.portfolio_permission.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
@@ -2706,7 +2706,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.assertEqual(UserDomainRole.objects.filter(user=self.user).count(), 0)
 
         # Check for an error message and a redirect
-        self.assertRedirects(response, reverse("member-domains", kwargs={"pk": self.portfolio_permission.pk}))
+        self.assertRedirects(response, reverse("member-domains", kwargs={"member_pk": self.portfolio_permission.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -2729,7 +2729,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.assertEqual(UserDomainRole.objects.filter(user=self.user).count(), 0)
 
         # Check for an error message and a redirect
-        self.assertRedirects(response, reverse("member-domains", kwargs={"pk": self.portfolio_permission.pk}))
+        self.assertRedirects(response, reverse("member-domains", kwargs={"member_pk": self.portfolio_permission.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -2749,7 +2749,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.assertEqual(UserDomainRole.objects.filter(user=self.user).count(), 0)
 
         # Check for an info message and a redirect
-        self.assertRedirects(response, reverse("member-domains", kwargs={"pk": self.portfolio_permission.pk}))
+        self.assertRedirects(response, reverse("member-domains", kwargs={"member_pk": self.portfolio_permission.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
@@ -2772,7 +2772,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.assertEqual(UserDomainRole.objects.filter(user=self.user, role=UserDomainRole.Roles.MANAGER).count(), 0)
 
         # Check for an error message and a redirect to edit form
-        self.assertRedirects(response, reverse("member-domains-edit", kwargs={"pk": self.portfolio_permission.pk}))
+        self.assertRedirects(response, reverse("member-domains-edit", kwargs={"member_pk": self.portfolio_permission.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -2831,7 +2831,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
                 UserPortfolioPermissionChoices.EDIT_MEMBERS,
             ],
         )
-        self.url = reverse("invitedmember-domains-edit", kwargs={"pk": self.invitation.pk})
+        self.url = reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.pk})
 
     def tearDown(self):
         super().tearDown()
@@ -2849,7 +2849,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view is accessible."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.id}))
 
         # Make sure the page loaded, and that we're on the right page
         self.assertEqual(response.status_code, 200)
@@ -2862,7 +2862,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view is not accessible to user with no perms."""
         self.client.force_login(self.user_no_perms)
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.id}))
 
         # Make sure the request returns forbidden
         self.assertEqual(response.status_code, 403)
@@ -2874,7 +2874,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view is not accessible when no authenticated user."""
         self.client.logout()
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.id}))
 
         # Make sure the request returns redirect to openid login
         self.assertEqual(response.status_code, 302)  # Redirect to openid login
@@ -2887,7 +2887,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view returns not found if user is not a member."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"pk": "0"}))
+        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"member_pk": "0"}))
 
         # Make sure the response is not found
         self.assertEqual(response.status_code, 404)
@@ -2914,7 +2914,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
@@ -2971,7 +2971,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
@@ -3015,7 +3015,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
         # assert that send_domain_invitation_email is not called
         mock_send_domain_email.assert_not_called()
 
@@ -3035,7 +3035,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         self.assertEqual(DomainInvitation.objects.count(), 0)
 
         # Check for an error message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -3058,7 +3058,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         self.assertEqual(DomainInvitation.objects.count(), 0)
 
         # Check for an error message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -3078,7 +3078,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         self.assertEqual(DomainInvitation.objects.count(), 0)
 
         # Check for an info message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
@@ -3106,7 +3106,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for an error message and a redirect to edit form
-        self.assertRedirects(response, reverse("invitedmember-domains-edit", kwargs={"pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -4089,7 +4089,7 @@ class TestPortfolioMemberEditView(WebTest):
         mock_send_update_email.return_value = True
 
         response = self.client.post(
-            reverse("member-permissions", kwargs={"pk": basic_permission.id}),
+            reverse("member-permissions", kwargs={"member_pk": basic_permission.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
             },
@@ -4152,7 +4152,7 @@ class TestPortfolioMemberEditView(WebTest):
         mock_send_update_email.return_value = False
 
         response = self.client.post(
-            reverse("member-permissions", kwargs={"pk": basic_permission.id}),
+            reverse("member-permissions", kwargs={"member_pk": basic_permission.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
             },
@@ -4219,7 +4219,7 @@ class TestPortfolioMemberEditView(WebTest):
         )
 
         response = self.client.post(
-            reverse("member-permissions", kwargs={"pk": admin_permission.id}),
+            reverse("member-permissions", kwargs={"member_pk": admin_permission.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
             },
@@ -4257,7 +4257,7 @@ class TestPortfolioMemberEditView(WebTest):
         mock_send_update_email.return_value = True
 
         response = self.client.post(
-            reverse("member-permissions", kwargs={"pk": basic_permission.id}),
+            reverse("member-permissions", kwargs={"member_pk": basic_permission.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4306,7 +4306,7 @@ class TestPortfolioMemberEditView(WebTest):
         mock_send_update_email.return_value = True
 
         response = self.client.post(
-            reverse("member-permissions", kwargs={"pk": admin_permission.id}),
+            reverse("member-permissions", kwargs={"member_pk": admin_permission.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4369,7 +4369,7 @@ class TestPortfolioMemberEditView(WebTest):
         mock_send_update_email.return_value = False
 
         response = self.client.post(
-            reverse("member-permissions", kwargs={"pk": admin_permission.id}),
+            reverse("member-permissions", kwargs={"member_pk": admin_permission.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4429,7 +4429,7 @@ class TestPortfolioMemberEditView(WebTest):
 
         # Test missing required admin permissions
         response = self.client.post(
-            reverse("member-permissions", kwargs={"pk": permission.id}),
+            reverse("member-permissions", kwargs={"member_pk": permission.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 # Missing required admin fields
@@ -4461,7 +4461,7 @@ class TestPortfolioMemberEditView(WebTest):
         admin_permission = UserPortfolioPermission.objects.get(user=self.user, portfolio=self.portfolio)
 
         response = self.client.post(
-            reverse("member-permissions", kwargs={"pk": admin_permission.id}),
+            reverse("member-permissions", kwargs={"member_pk": admin_permission.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4534,7 +4534,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"pk": self.invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"member_pk": self.invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
             },
@@ -4577,7 +4577,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"pk": self.invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"member_pk": self.invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
             },
@@ -4623,7 +4623,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"pk": self.admin_invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"member_pk": self.admin_invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4669,7 +4669,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"pk": self.admin_invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"member_pk": self.admin_invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4715,7 +4715,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"pk": self.invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"member_pk": self.invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4742,7 +4742,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"pk": self.admin_invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"member_pk": self.admin_invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
             },
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index d9760ff5a..4321f4c51 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -171,7 +171,7 @@ class PortfolioMemberDeleteView(View):
         if request.headers.get("X-Requested-With") == "XMLHttpRequest":
             return JsonResponse({"error": error_message}, status=400)
         messages.error(request, error_message)
-        return redirect(reverse("member", kwargs={"pk": member_pk}))
+        return redirect(reverse("member", kwargs={"member_pk": member_pk}))
 
     def _send_removal_notifications(self, request, portfolio_member_permission):
         """
@@ -356,21 +356,21 @@ class PortfolioMemberDomainsEditView(DetailView, View):
 
         added_domain_ids = self._parse_domain_ids(added_domains, "added domains")
         if added_domain_ids is None:
-            return redirect(reverse("member-domains", kwargs={"pk": member_pk}))
+            return redirect(reverse("member-domains", kwargs={"member_pk": member_pk}))
 
         removed_domain_ids = self._parse_domain_ids(removed_domains, "removed domains")
         if removed_domain_ids is None:
-            return redirect(reverse("member-domains", kwargs={"pk": member_pk}))
+            return redirect(reverse("member-domains", kwargs={"member_pk": member_pk}))
 
         if not (added_domain_ids or removed_domain_ids):
             messages.success(request, "The domain assignment changes have been saved.")
-            return redirect(reverse("member-domains", kwargs={"pk": member_pk}))
+            return redirect(reverse("member-domains", kwargs={"member_pk": member_pk}))
 
         try:
             self._process_added_domains(added_domain_ids, member, request.user, portfolio)
             self._process_removed_domains(removed_domain_ids, member)
             messages.success(request, "The domain assignment changes have been saved.")
-            return redirect(reverse("member-domains", kwargs={"pk": member_pk}))
+            return redirect(reverse("member-domains", kwargs={"member_pk": member_pk}))
         except IntegrityError:
             messages.error(
                 request,
@@ -378,7 +378,7 @@ class PortfolioMemberDomainsEditView(DetailView, View):
                 f"please contact {DefaultUserValues.HELP_EMAIL}.",
             )
             logger.error("A database error occurred while saving changes.", exc_info=True)
-            return redirect(reverse("member-domains-edit", kwargs={"pk": member_pk}))
+            return redirect(reverse("member-domains-edit", kwargs={"member_pk": member_pk}))
         except Exception as e:
             messages.error(
                 request,
@@ -386,7 +386,7 @@ class PortfolioMemberDomainsEditView(DetailView, View):
                 f"please contact {DefaultUserValues.HELP_EMAIL}.",
             )
             logger.error(f"An unexpected error occurred: {str(e)}", exc_info=True)
-            return redirect(reverse("member-domains-edit", kwargs={"pk": member_pk}))
+            return redirect(reverse("member-domains-edit", kwargs={"member_pk": member_pk}))
 
     def _parse_domain_ids(self, domain_data, domain_type):
         """
@@ -650,21 +650,21 @@ class PortfolioInvitedMemberDomainsEditView(DetailView, View):
 
         added_domain_ids = self._parse_domain_ids(added_domains, "added domains")
         if added_domain_ids is None:
-            return redirect(reverse("invitedmember-domains", kwargs={"pk": invitedmember_pk}))
+            return redirect(reverse("invitedmember-domains", kwargs={"invitedmember_pk": invitedmember_pk}))
 
         removed_domain_ids = self._parse_domain_ids(removed_domains, "removed domains")
         if removed_domain_ids is None:
-            return redirect(reverse("invitedmember-domains", kwargs={"pk": invitedmember_pk}))
+            return redirect(reverse("invitedmember-domains", kwargs={"invitedmember_pk": invitedmember_pk}))
 
         if not (added_domain_ids or removed_domain_ids):
             messages.success(request, "The domain assignment changes have been saved.")
-            return redirect(reverse("invitedmember-domains", kwargs={"pk": invitedmember_pk}))
+            return redirect(reverse("invitedmember-domains", kwargs={"invitedmember_pk": invitedmember_pk}))
 
         try:
             self._process_added_domains(added_domain_ids, email, request.user, portfolio)
             self._process_removed_domains(removed_domain_ids, email)
             messages.success(request, "The domain assignment changes have been saved.")
-            return redirect(reverse("invitedmember-domains", kwargs={"pk": invitedmember_pk}))
+            return redirect(reverse("invitedmember-domains", kwargs={"invitedmember_pk": invitedmember_pk}))
         except IntegrityError:
             messages.error(
                 request,
@@ -672,7 +672,7 @@ class PortfolioInvitedMemberDomainsEditView(DetailView, View):
                 f"please contact {DefaultUserValues.HELP_EMAIL}.",
             )
             logger.error("A database error occurred while saving changes.", exc_info=True)
-            return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": invitedmember_pk}))
+            return redirect(reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": invitedmember_pk}))
         except Exception as e:
             messages.error(
                 request,
@@ -680,7 +680,7 @@ class PortfolioInvitedMemberDomainsEditView(DetailView, View):
                 f"please contact {DefaultUserValues.HELP_EMAIL}.",
             )
             logger.error(f"An unexpected error occurred: {str(e)}.", exc_info=True)
-            return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": invitedmember_pk}))
+            return redirect(reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": invitedmember_pk}))
 
     def _parse_domain_ids(self, domain_data, domain_type):
         """

From e6bfc40c3fb019b4835feaa958e7c9102dcc0fc0 Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Thu, 6 Mar 2025 15:59:40 -0700
Subject: [PATCH 38/70] updated searchbar to not use the icon...anywhere

---
 .../templates/includes/domain_requests_table.html         | 8 +-------
 src/registrar/templates/includes/domains_table.html       | 8 +-------
 src/registrar/templates/includes/members_table.html       | 2 +-
 3 files changed, 3 insertions(+), 15 deletions(-)

diff --git a/src/registrar/templates/includes/domain_requests_table.html b/src/registrar/templates/includes/domain_requests_table.html
index decbfcce6..71f7a5b2a 100644
--- a/src/registrar/templates/includes/domain_requests_table.html
+++ b/src/registrar/templates/includes/domain_requests_table.html
@@ -16,13 +16,7 @@
         {% endif %}
         <!-- ---------- SEARCH ---------- -->
         {% with label_text=portfolio|yesno:"Search by domain name or creator,Search by domain name"  item_name="domain-requests" aria_label_text="Domain requests search component"%}
-            {% if portfolio %}
-                {% with use_search_icon="true" %}
-                    {% include "includes/search.html" %}
-                {% endwith %}
-            {% else %}
-                {% include "includes/search.html" %}
-            {% endif %}
+            {% include "includes/search.html" %}
         {% endwith %}
     </div>
 
diff --git a/src/registrar/templates/includes/domains_table.html b/src/registrar/templates/includes/domains_table.html
index 66076283a..d274a4f61 100644
--- a/src/registrar/templates/includes/domains_table.html
+++ b/src/registrar/templates/includes/domains_table.html
@@ -43,13 +43,7 @@
     {% endif %}
     <!-- ---------- SEARCH ---------- -->
     {% with label_text="Search by domain name" item_name="domains" aria_label_text="Domains search component"%}
-      {% if portfolio %}
-        {% with use_search_icon="true" %}
-            {% include "includes/search.html" %}
-        {% endwith %}
-      {% else %}
-        {% include "includes/search.html" %}
-      {% endif %}
+      {% include "includes/search.html" %}
     {% endwith %}
     <!-- ---------- EXPORT (org placement) ---------- -->
     {% if user_domain_count and user_domain_count > 0 and portfolio%}
diff --git a/src/registrar/templates/includes/members_table.html b/src/registrar/templates/includes/members_table.html
index 2af87036f..f93b0d3c8 100644
--- a/src/registrar/templates/includes/members_table.html
+++ b/src/registrar/templates/includes/members_table.html
@@ -8,7 +8,7 @@
 <section class="section-outlined members margin-top-0 section-outlined--border-base-light" id="members">
   <div class="section-outlined__header margin-bottom-3 grid-row">
     <!-- ---------- SEARCH ---------- -->
-    {% with label_text="Search by member name" item_name="members" aria_label_text="Members search component" use_search_icon="true" %}
+    {% with label_text="Search by member name" item_name="members" aria_label_text="Members search component"%}
         {% include "includes/search.html" %}
     {% endwith %}
     {% with export_aria="Members report component" export_url='export_members_portfolio' %}

From 39eb317afbd25eeb434706118e7a41d244b2d3e3 Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Thu, 6 Mar 2025 16:02:11 -0700
Subject: [PATCH 39/70] fixed if/else statement

---
 src/registrar/templates/portfolio_requests.html | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/src/registrar/templates/portfolio_requests.html b/src/registrar/templates/portfolio_requests.html
index d1185f46a..978d28f3b 100644
--- a/src/registrar/templates/portfolio_requests.html
+++ b/src/registrar/templates/portfolio_requests.html
@@ -19,11 +19,7 @@
     <div class="grid-row grid-gap margin-bottom-3">
         <div class="mobile:grid-col-12 tablet:grid-col-6"> 
             <h1 id="domain-requests-header" class="margin-bottom-1">Domain requests</h1>
-            {% if has_edit_request_portfolio_permission %}
                 <p class="margin-y-0">Domain requests can only be modified by the person who created the request.</p>
-            {% else %}
-                <p class="margin-y-0">Domain requests can only be modified by the person who created the request.</p>
-            {% endif %}
         </div>
        
         {% if has_edit_request_portfolio_permission %}

From 22e2453bbaa374d51cb11fb4fe7ab1bbde1aeb3d Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Fri, 7 Mar 2025 07:52:24 -0700
Subject: [PATCH 40/70] Fix some more ids in tests

---
 src/registrar/tests/test_views_portfolio.py | 38 ++++++++++-----------
 1 file changed, 19 insertions(+), 19 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 1c6ae5001..72be16ba8 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2125,7 +2125,7 @@ class TestPortfolioInvitedMemberDeleteView(WebTest):
         with patch("django.contrib.messages.success") as mock_success:
             self.client.force_login(self.user)
             response = self.client.post(
-                reverse("invitedmember-delete", kwargs={"member_pk": invitation.pk}),
+                reverse("invitedmember-delete", kwargs={"invitedmember_pk": invitation.pk}),
             )
 
             self.assertEqual(response.status_code, 302)
@@ -2190,7 +2190,7 @@ class TestPortfolioInvitedMemberDeleteView(WebTest):
         with patch("django.contrib.messages.success") as mock_success:
             self.client.force_login(self.user)
             response = self.client.post(
-                reverse("invitedmember-delete", kwargs={"member_pk": invitation.pk}),
+                reverse("invitedmember-delete", kwargs={"invitedmember_pk": invitation.pk}),
             )
 
             self.assertEqual(response.status_code, 302)
@@ -2263,7 +2263,7 @@ class TestPortfolioInvitedMemberDeleteView(WebTest):
         with patch("django.contrib.messages.success") as mock_success:
             self.client.force_login(self.user)
             response = self.client.post(
-                reverse("invitedmember-delete", kwargs={"member_pk": invitation.pk}),
+                reverse("invitedmember-delete", kwargs={"invitedmember_pk": invitation.pk}),
             )
 
             self.assertEqual(response.status_code, 302)
@@ -2463,7 +2463,7 @@ class TestPortfolioInvitedMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains view is accessible."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.id}))
 
         # Make sure the page loaded, and that we're on the right page
         self.assertEqual(response.status_code, 200)
@@ -2476,7 +2476,7 @@ class TestPortfolioInvitedMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains view is not accessible to user with no perms."""
         self.client.force_login(self.user_no_perms)
 
-        response = self.client.get(reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.id}))
 
         # Make sure the request returns forbidden
         self.assertEqual(response.status_code, 403)
@@ -2488,7 +2488,7 @@ class TestPortfolioInvitedMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains view is not accessible when no authenticated user."""
         self.client.logout()
 
-        response = self.client.get(reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.id}))
 
         # Make sure the request returns redirect to openid login
         self.assertEqual(response.status_code, 302)  # Redirect to openid login
@@ -2501,7 +2501,7 @@ class TestPortfolioInvitedMemberDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains view returns not found if user is not a member."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("invitedmember-domains", kwargs={"member_pk": "0"}))
+        response = self.client.get(reverse("invitedmember-domains", kwargs={"invitedmember_pk": "0"}))
 
         # Make sure the response is not found
         self.assertEqual(response.status_code, 404)
@@ -2831,7 +2831,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
                 UserPortfolioPermissionChoices.EDIT_MEMBERS,
             ],
         )
-        self.url = reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.pk})
+        self.url = reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.pk})
 
     def tearDown(self):
         super().tearDown()
@@ -2849,7 +2849,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view is accessible."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.id}))
 
         # Make sure the page loaded, and that we're on the right page
         self.assertEqual(response.status_code, 200)
@@ -2862,7 +2862,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view is not accessible to user with no perms."""
         self.client.force_login(self.user_no_perms)
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.id}))
 
         # Make sure the request returns forbidden
         self.assertEqual(response.status_code, 403)
@@ -2874,7 +2874,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view is not accessible when no authenticated user."""
         self.client.logout()
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.id}))
+        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.id}))
 
         # Make sure the request returns redirect to openid login
         self.assertEqual(response.status_code, 302)  # Redirect to openid login
@@ -2887,7 +2887,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view returns not found if user is not a member."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"member_pk": "0"}))
+        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": "0"}))
 
         # Make sure the response is not found
         self.assertEqual(response.status_code, 404)
@@ -2914,7 +2914,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
@@ -2971,7 +2971,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
@@ -3015,7 +3015,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
         # assert that send_domain_invitation_email is not called
         mock_send_domain_email.assert_not_called()
 
@@ -3035,7 +3035,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         self.assertEqual(DomainInvitation.objects.count(), 0)
 
         # Check for an error message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -3058,7 +3058,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         self.assertEqual(DomainInvitation.objects.count(), 0)
 
         # Check for an error message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -3078,7 +3078,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         self.assertEqual(DomainInvitation.objects.count(), 0)
 
         # Check for an info message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"member_pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
@@ -3106,7 +3106,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for an error message and a redirect to edit form
-        self.assertRedirects(response, reverse("invitedmember-domains-edit", kwargs={"member_pk": self.invitation.pk}))
+        self.assertRedirects(response, reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(

From 452b8f358836c42af9719fade4bf5c069a998090 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Fri, 7 Mar 2025 10:02:46 -0700
Subject: [PATCH 41/70] Update test_views_portfolio.py

---
 src/registrar/tests/test_views_portfolio.py | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 72be16ba8..cfd7cd206 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -4534,7 +4534,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"member_pk": self.invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"invitedmember_pk": self.invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
             },
@@ -4623,7 +4623,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"member_pk": self.admin_invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"invitedmember_pk": self.admin_invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4669,7 +4669,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"member_pk": self.admin_invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"invitedmember_pk": self.admin_invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4715,7 +4715,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"member_pk": self.invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"invitedmember_pk": self.invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER,
                 "domain_permissions": UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS,
@@ -4742,7 +4742,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"member_pk": self.admin_invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"invitedmember_pk": self.admin_invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
             },

From cc08b18bdd193baac1be41727febff0dbc3cdc66 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Fri, 7 Mar 2025 10:53:15 -0700
Subject: [PATCH 42/70] Fix remaining unit tests

---
 src/registrar/decorators.py                 |  15 +-
 src/registrar/tests/test_resource_access.py | 171 +++++++++-----------
 src/registrar/tests/test_url_auth.py        |   2 +-
 src/registrar/tests/test_views_portfolio.py |  61 +++++--
 src/registrar/tests/test_views_request.py   |  35 ++--
 src/registrar/views/portfolios.py           |   1 -
 6 files changed, 147 insertions(+), 138 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index ab495f89c..93d0c0fe1 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -109,16 +109,13 @@ def _user_has_permission(user, request, rules, **kwargs):
     permission_checks = [
         (IS_STAFF, lambda: user.is_staff),
         (
-            IS_DOMAIN_MANAGER, 
-            lambda: (
-                not user.is_org_user(request)
-                and _is_domain_manager(user, **kwargs)
-            )
+            IS_DOMAIN_MANAGER,
+            lambda: (not user.is_org_user(request) and _is_domain_manager(user, **kwargs))
             or (
                 user.is_org_user(request)
                 and _is_domain_manager(user, **kwargs)
                 and _domain_exists_under_portfolio(portfolio, kwargs.get("domain_pk"))
-            )
+            ),
         ),
         (IS_STAFF_MANAGING_DOMAIN, lambda: _is_staff_managing_domain(request, **kwargs)),
         (IS_PORTFOLIO_MEMBER, lambda: user.is_org_user(request)),
@@ -130,7 +127,8 @@ def _user_has_permission(user, request, rules, **kwargs):
         ),
         (
             HAS_PORTFOLIO_DOMAINS_ANY_PERM,
-            lambda: user.is_org_user(request) and user.has_any_domains_portfolio_permission(portfolio)
+            lambda: user.is_org_user(request)
+            and user.has_any_domains_portfolio_permission(portfolio)
             and _domain_exists_under_portfolio(portfolio, kwargs.get("domain_pk")),
         ),
         (
@@ -150,7 +148,8 @@ def _user_has_permission(user, request, rules, **kwargs):
         ),
         (
             HAS_PORTFOLIO_DOMAIN_REQUESTS_ANY_PERM,
-            lambda: user.is_org_user(request) and user.has_any_requests_portfolio_permission(portfolio)
+            lambda: user.is_org_user(request)
+            and user.has_any_requests_portfolio_permission(portfolio)
             and _domain_request_exists_under_portfolio(portfolio, kwargs.get("domain_request_pk")),
         ),
         (
diff --git a/src/registrar/tests/test_resource_access.py b/src/registrar/tests/test_resource_access.py
index cbd907863..6e8d168e2 100644
--- a/src/registrar/tests/test_resource_access.py
+++ b/src/registrar/tests/test_resource_access.py
@@ -33,62 +33,60 @@ class TestPortfolioResourceAccess(MockDbForIndividualTests):
 
     def setUp(self):
         super().setUp()
-        
+
         # Create portfolios
-        self.portfolio = Portfolio.objects.create(
-            creator=self.user, organization_name="Test Portfolio"
-        )
+        self.portfolio = Portfolio.objects.create(creator=self.user, organization_name="Test Portfolio")
         self.other_portfolio = Portfolio.objects.create(
             creator=self.custom_staffuser, organization_name="Other Portfolio"
         )
-        
+
         # Create domain requests
         self.domain_request = completed_domain_request(name="eggnog.gov", user=self.user, portfolio=self.portfolio)
-        
+
         self.other_domain_request = completed_domain_request(
             name="christmas.gov", user=self.tired_user, portfolio=self.other_portfolio
         )
-        
 
         # Create domains
         self.approved_domain_request_1 = completed_domain_request(
-            name="done_1.gov", user=self.tired_user, portfolio=self.portfolio, status=DomainRequest.DomainRequestStatus.IN_REVIEW
+            name="done_1.gov",
+            user=self.tired_user,
+            portfolio=self.portfolio,
+            status=DomainRequest.DomainRequestStatus.IN_REVIEW,
         )
         self.approved_domain_request_2 = completed_domain_request(
-            name="done_2.gov", user=self.tired_user, portfolio=self.other_portfolio, status=DomainRequest.DomainRequestStatus.IN_REVIEW
+            name="done_2.gov",
+            user=self.tired_user,
+            portfolio=self.other_portfolio,
+            status=DomainRequest.DomainRequestStatus.IN_REVIEW,
         )
         self.approved_domain_request_1.approve()
         self.approved_domain_request_2.approve()
         self.domain = self.approved_domain_request_1.approved_domain
         self.other_domain = self.approved_domain_request_2.approved_domain
 
-        
         # Create portfolio permissions
         self.user_permission = UserPortfolioPermission.objects.create(
-            user=self.user,
-            portfolio=self.portfolio,
-            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+            user=self.user, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
         )
-        
+
         self.other_user_permission = UserPortfolioPermission.objects.create(
-            user=self.tired_user,
-            portfolio=self.other_portfolio,
-            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+            user=self.tired_user, portfolio=self.other_portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
         )
-        
+
         # Create portfolio invitations
         self.portfolio_invitation = PortfolioInvitation.objects.create(
             email="invited@example.com",
             portfolio=self.portfolio,
             roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
-            status=PortfolioInvitation.PortfolioInvitationStatus.INVITED
+            status=PortfolioInvitation.PortfolioInvitationStatus.INVITED,
         )
-        
+
         self.other_portfolio_invitation = PortfolioInvitation.objects.create(
             email="other-invited@example.com",
             portfolio=self.other_portfolio,
             roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
-            status=PortfolioInvitation.PortfolioInvitationStatus.INVITED
+            status=PortfolioInvitation.PortfolioInvitationStatus.INVITED,
         )
 
     # Domain request tests
@@ -158,43 +156,39 @@ class TestPortfolioResourceAccess(MockDbForIndividualTests):
 
 class TestPortfolioDomainRequestViewAccess(MockDbForIndividualTests):
     """Tests for domain request views to ensure users can only access domain requests in their portfolio."""
-    
+
     def setUp(self):
         super().setUp()
         self.client = Client()
         self.client.force_login(self.user)
-        
+
         # Create portfolios
-        self.portfolio = Portfolio.objects.create(
-            creator=self.user, organization_name="Test Portfolio"
-        )
-        self.other_portfolio = Portfolio.objects.create(
-            creator=self.tired_user, organization_name="Other Portfolio"
-        )
-        
+        self.portfolio = Portfolio.objects.create(creator=self.user, organization_name="Test Portfolio")
+        self.other_portfolio = Portfolio.objects.create(creator=self.tired_user, organization_name="Other Portfolio")
+
         # Create domain requests
         self.domain_request = completed_domain_request(
             name="test-domain.gov",
             portfolio=self.portfolio,
             status=DomainRequest.DomainRequestStatus.STARTED,
-            user=self.user
+            user=self.user,
         )
-        
+
         self.other_domain_request = completed_domain_request(
             name="other-domain.gov",
             portfolio=self.other_portfolio,
             status=DomainRequest.DomainRequestStatus.STARTED,
-            user=self.tired_user
+            user=self.tired_user,
         )
-        
+
         # Give user permission to view all requests
         self.user_permission = UserPortfolioPermission.objects.create(
             user=self.user,
             portfolio=self.portfolio,
             roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
-            additional_permissions=[UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS]
+            additional_permissions=[UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS],
         )
-        
+
         # Setup session for portfolio views
         session = self.client.session
         session["portfolio"] = self.portfolio
@@ -206,31 +200,29 @@ class TestPortfolioDomainRequestViewAccess(MockDbForIndividualTests):
     def test_domain_request_view_same_portfolio(self):
         """Test that user can access domain requests in their portfolio."""
         # With just the view all permission, access should be denied
-        response = self.client.get(reverse("edit-domain-request", kwargs={
-            "domain_request_pk": self.domain_request.pk
-        }))
+        response = self.client.get(reverse("edit-domain-request", kwargs={"domain_request_pk": self.domain_request.pk}))
         self.assertEqual(response.status_code, 403)
 
         # But with the edit permission, the user should be able to access this domain request
         self.user_permission.additional_permissions = [
             UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS,
-            UserPortfolioPermissionChoices.EDIT_REQUESTS
+            UserPortfolioPermissionChoices.EDIT_REQUESTS,
         ]
         self.user_permission.save()
         self.user_permission.refresh_from_db()
-        response = self.client.get(reverse("edit-domain-request", kwargs={
-            "domain_request_pk": self.domain_request.pk
-        }), follow=True)
+        response = self.client.get(
+            reverse("edit-domain-request", kwargs={"domain_request_pk": self.domain_request.pk}), follow=True
+        )
         self.assertEqual(response.status_code, 200)
-    
+
     @override_flag("organization_feature", active=True)
     @override_flag("organization_requests", active=True)
     @less_console_noise_decorator
     def test_domain_request_view_different_portfolio(self):
         """Test that user cannot access domain request not in their portfolio."""
-        response = self.client.get(reverse("edit-domain-request", kwargs={
-            "domain_request_pk": self.other_domain_request.pk
-        }))
+        response = self.client.get(
+            reverse("edit-domain-request", kwargs={"domain_request_pk": self.other_domain_request.pk})
+        )
         self.assertEqual(response.status_code, 403)
 
     @override_flag("organization_feature", active=True)
@@ -238,65 +230,61 @@ class TestPortfolioDomainRequestViewAccess(MockDbForIndividualTests):
     @less_console_noise_decorator
     def test_domain_request_viewonly_same_portfolio(self):
         """Test that user can access view-only domain request in their portfolio."""
-        response = self.client.get(reverse("domain-request-status-viewonly", kwargs={
-            "domain_request_pk": self.domain_request.pk
-        }))
+        response = self.client.get(
+            reverse("domain-request-status-viewonly", kwargs={"domain_request_pk": self.domain_request.pk})
+        )
         self.assertEqual(response.status_code, 200)
-    
+
     @override_flag("organization_feature", active=True)
     @override_flag("organization_requests", active=True)
     @less_console_noise_decorator
     def test_domain_request_viewonly_different_portfolio(self):
         """Test that user cannot access view-only domain request not in their portfolio."""
-        response = self.client.get(reverse("domain-request-status-viewonly", kwargs={
-            "domain_request_pk": self.other_domain_request.pk
-        }))
+        response = self.client.get(
+            reverse("domain-request-status-viewonly", kwargs={"domain_request_pk": self.other_domain_request.pk})
+        )
         self.assertEqual(response.status_code, 403)
 
 
 class TestPortfolioDomainViewAccess(MockDbForIndividualTests):
     """Tests for domain views to ensure users can only access domains in their portfolio."""
-    
+
     def setUp(self):
         super().setUp()
         self.client = Client()
         self.client.force_login(self.user)
-        
+
         # Create portfolios
-        self.portfolio = Portfolio.objects.create(
-            creator=self.user, organization_name="Test Portfolio"
-        )
-        self.other_portfolio = Portfolio.objects.create(
-            creator=self.tired_user, organization_name="Other Portfolio"
-        )
-        
+        self.portfolio = Portfolio.objects.create(creator=self.user, organization_name="Test Portfolio")
+        self.other_portfolio = Portfolio.objects.create(creator=self.tired_user, organization_name="Other Portfolio")
+
         # Create domains through domain requests
         self.domain_request = completed_domain_request(
             name="test-domain.gov",
             portfolio=self.portfolio,
             status=DomainRequest.DomainRequestStatus.IN_REVIEW,
-            user=self.user
+            user=self.user,
         )
         self.domain_request.approve()
         self.domain = self.domain_request.approved_domain
-        
+
         self.other_domain_request = completed_domain_request(
             name="other-domain.gov",
             portfolio=self.other_portfolio,
             status=DomainRequest.DomainRequestStatus.IN_REVIEW,
-            user=self.user
+            user=self.user,
         )
         self.other_domain_request.approve()
         self.other_domain = self.other_domain_request.approved_domain
-        
+
         # Give user permission to view all domains
         self.user_permission = UserPortfolioPermission.objects.create(
             user=self.user,
             portfolio=self.portfolio,
             roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
-            additional_permissions=[UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS]
+            additional_permissions=[UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS],
         )
-        
+
         # Setup session for portfolio views
         session = self.client.session
         session["portfolio"] = self.portfolio
@@ -306,49 +294,38 @@ class TestPortfolioDomainViewAccess(MockDbForIndividualTests):
     @less_console_noise_decorator
     def test_domain_view_same_portfolio(self):
         """Test that user can access domain in their portfolio."""
-        response = self.client.get(reverse("domain", kwargs={
-            "domain_pk": self.domain.pk
-        }))
+        response = self.client.get(reverse("domain", kwargs={"domain_pk": self.domain.pk}))
         self.assertEqual(response.status_code, 200)
-    
+
     @override_flag("organization_feature", active=True)
     @less_console_noise_decorator
     def test_domain_view_different_portfolio(self):
         """Test that user cannot access domain not in their portfolio."""
-        response = self.client.get(reverse("domain", kwargs={
-            "domain_pk": self.other_domain.pk
-        }))
+        response = self.client.get(reverse("domain", kwargs={"domain_pk": self.other_domain.pk}))
         self.assertEqual(response.status_code, 403)
 
 
 class TestPortfolioMemberViewAccess(MockDbForIndividualTests):
     """Tests for member views to ensure users can only access members in their portfolio."""
-    
+
     def setUp(self):
         super().setUp()
         self.client = Client()
         self.client.force_login(self.user)
-        
-        # Create portfolios
-        self.portfolio = Portfolio.objects.create(
-            creator=self.user, organization_name="Test Portfolio"
-        )
-        self.other_portfolio = Portfolio.objects.create(
-            creator=self.tired_user, organization_name="Other Portfolio"
-        )
 
-        
+        # Create portfolios
+        self.portfolio = Portfolio.objects.create(creator=self.user, organization_name="Test Portfolio")
+        self.other_portfolio = Portfolio.objects.create(creator=self.tired_user, organization_name="Other Portfolio")
+
         # Create portfolio permissions
         self.member_permission = UserPortfolioPermission.objects.create(
-            user=self.meoward_user,
-            portfolio=self.portfolio,
-            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+            user=self.meoward_user, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
         )
-        
+
         self.other_member_permission = UserPortfolioPermission.objects.create(
             user=self.lebowski_user,
             portfolio=self.other_portfolio,
-            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
         )
 
         # Give user permission to view/edit members
@@ -357,7 +334,7 @@ class TestPortfolioMemberViewAccess(MockDbForIndividualTests):
             portfolio=self.portfolio,
             roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
         )
-        
+
         # Setup session for portfolio views
         session = self.client.session
         session["portfolio"] = self.portfolio
@@ -368,17 +345,13 @@ class TestPortfolioMemberViewAccess(MockDbForIndividualTests):
     @less_console_noise_decorator
     def test_member_view_same_portfolio(self):
         """Test that user can access member in their portfolio."""
-        response = self.client.get(reverse("member", kwargs={
-            "member_pk": self.member_permission.pk
-        }))
+        response = self.client.get(reverse("member", kwargs={"member_pk": self.member_permission.pk}))
         self.assertEqual(response.status_code, 200)
-    
+
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
     @less_console_noise_decorator
     def test_member_view_different_portfolio(self):
         """Test that user cannot access member not in their portfolio."""
-        response = self.client.get(reverse("member", kwargs={
-            "member_pk": self.other_member_permission.pk
-        }))
+        response = self.client.get(reverse("member", kwargs={"member_pk": self.other_member_permission.pk}))
         self.assertEqual(response.status_code, 403)
diff --git a/src/registrar/tests/test_url_auth.py b/src/registrar/tests/test_url_auth.py
index 8b0cec83e..d7f84dbe0 100644
--- a/src/registrar/tests/test_url_auth.py
+++ b/src/registrar/tests/test_url_auth.py
@@ -30,7 +30,7 @@ SAMPLE_KWARGS = {
     "portfolio_id": "1",
     "user_id": "1",
     "member_pk": "1",
-    "invitedmember_pk": "1"
+    "invitedmember_pk": "1",
 }
 
 # Our test suite will ignore some namespaces.
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index cfd7cd206..d6e365c2d 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -1016,7 +1016,9 @@ class TestPortfolio(WebTest):
 
         # Verify the page can be accessed
         self.client.force_login(self.user)
-        response = self.client.get(reverse("invitedmember", kwargs={"invitedmember_pk": portfolio_invitation.pk}), follow=True)
+        response = self.client.get(
+            reverse("invitedmember", kwargs={"invitedmember_pk": portfolio_invitation.pk}), follow=True
+        )
         self.assertEqual(response.status_code, 200)
 
         # Assert text within the page is correct
@@ -1054,7 +1056,9 @@ class TestPortfolio(WebTest):
 
         # Verify the page can be accessed
         self.client.force_login(self.user)
-        response = self.client.get(reverse("invitedmember", kwargs={"invitedmember_pk": portfolio_invitation.pk}), follow=True)
+        response = self.client.get(
+            reverse("invitedmember", kwargs={"invitedmember_pk": portfolio_invitation.pk}), follow=True
+        )
         self.assertEqual(response.status_code, 200)
 
         # Assert text within the page is correct
@@ -1738,7 +1742,8 @@ class TestPortfolioMemberDeleteView(WebTest):
             self.client.force_login(self.user)
             # We check X_REQUESTED_WITH bc those return JSON responses
             response = self.client.post(
-                reverse("member-delete", kwargs={"member_pk": admin_perm_user.pk}), HTTP_X_REQUESTED_WITH="XMLHttpRequest"
+                reverse("member-delete", kwargs={"member_pk": admin_perm_user.pk}),
+                HTTP_X_REQUESTED_WITH="XMLHttpRequest",
             )
 
             self.assertEqual(response.status_code, 400)
@@ -2066,7 +2071,9 @@ class TestPortfolioMemberDeleteView(WebTest):
 
                 # Location is used for a 3xx HTTP status code to indicate that the URL was redirected
                 # and then confirm that we're still on the Manage Members page
-                self.assertEqual(response.headers["Location"], reverse("member", kwargs={"member_pk": admin_perm_user.pk}))
+                self.assertEqual(
+                    response.headers["Location"], reverse("member", kwargs={"member_pk": admin_perm_user.pk})
+                )
 
 
 class TestPortfolioInvitedMemberDeleteView(WebTest):
@@ -2772,7 +2779,9 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.assertEqual(UserDomainRole.objects.filter(user=self.user, role=UserDomainRole.Roles.MANAGER).count(), 0)
 
         # Check for an error message and a redirect to edit form
-        self.assertRedirects(response, reverse("member-domains-edit", kwargs={"member_pk": self.portfolio_permission.pk}))
+        self.assertRedirects(
+            response, reverse("member-domains-edit", kwargs={"member_pk": self.portfolio_permission.pk})
+        )
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -2849,7 +2858,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view is accessible."""
         self.client.force_login(self.user)
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.id}))
+        response = self.client.get(
+            reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.id})
+        )
 
         # Make sure the page loaded, and that we're on the right page
         self.assertEqual(response.status_code, 200)
@@ -2862,7 +2873,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view is not accessible to user with no perms."""
         self.client.force_login(self.user_no_perms)
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.id}))
+        response = self.client.get(
+            reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.id})
+        )
 
         # Make sure the request returns forbidden
         self.assertEqual(response.status_code, 403)
@@ -2874,7 +2887,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         """Tests that the portfolio invited member domains edit view is not accessible when no authenticated user."""
         self.client.logout()
 
-        response = self.client.get(reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.id}))
+        response = self.client.get(
+            reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.id})
+        )
 
         # Make sure the request returns redirect to openid login
         self.assertEqual(response.status_code, 302)  # Redirect to openid login
@@ -2914,7 +2929,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
+        self.assertRedirects(
+            response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk})
+        )
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
@@ -2971,7 +2988,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
+        self.assertRedirects(
+            response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk})
+        )
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
@@ -3015,7 +3034,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for a success message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
+        self.assertRedirects(
+            response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk})
+        )
         # assert that send_domain_invitation_email is not called
         mock_send_domain_email.assert_not_called()
 
@@ -3035,7 +3056,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         self.assertEqual(DomainInvitation.objects.count(), 0)
 
         # Check for an error message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
+        self.assertRedirects(
+            response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk})
+        )
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -3058,7 +3081,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         self.assertEqual(DomainInvitation.objects.count(), 0)
 
         # Check for an error message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
+        self.assertRedirects(
+            response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk})
+        )
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -3078,7 +3103,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         self.assertEqual(DomainInvitation.objects.count(), 0)
 
         # Check for an info message and a redirect
-        self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk}))
+        self.assertRedirects(
+            response, reverse("invitedmember-domains", kwargs={"invitedmember_pk": self.invitation.pk})
+        )
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
@@ -3106,7 +3133,9 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         )
 
         # Check for an error message and a redirect to edit form
-        self.assertRedirects(response, reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.pk}))
+        self.assertRedirects(
+            response, reverse("invitedmember-domains-edit", kwargs={"invitedmember_pk": self.invitation.pk})
+        )
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(
@@ -4577,7 +4606,7 @@ class TestPortfolioInvitedMemberEditView(WebTest):
 
         # Test updating invitation permissions
         response = self.client.post(
-            reverse("invitedmember-permissions", kwargs={"member_pk": self.invitation.id}),
+            reverse("invitedmember-permissions", kwargs={"invitedmember_pk": self.invitation.id}),
             {
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
             },
diff --git a/src/registrar/tests/test_views_request.py b/src/registrar/tests/test_views_request.py
index 6818759c5..87583cc96 100644
--- a/src/registrar/tests/test_views_request.py
+++ b/src/registrar/tests/test_views_request.py
@@ -2796,7 +2796,7 @@ class DomainRequestTests(TestWithUser, WebTest):
         self.assertEqual(intro_page.status_code, 200)
 
         # This user should also be allowed to edit existing ones
-        domain_request = completed_domain_request(user=self.user)
+        domain_request = completed_domain_request(user=self.user, portfolio=portfolio)
         edit_page = self.app.get(
             reverse("edit-domain-request", kwargs={"domain_request_pk": domain_request.pk})
         ).follow()
@@ -2904,7 +2904,9 @@ class DomainRequestTestDifferentStatuses(TestWithUser, WebTest):
             roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
             additional_permissions=[UserPortfolioPermissionChoices.EDIT_REQUESTS],
         )
-        domain_request = completed_domain_request(status=DomainRequest.DomainRequestStatus.SUBMITTED, user=self.user)
+        domain_request = completed_domain_request(
+            status=DomainRequest.DomainRequestStatus.SUBMITTED, user=self.user, portfolio=portfolio
+        )
         domain_request.save()
 
         detail_page = self.app.get(f"/domain-request/{domain_request.id}")
@@ -3044,13 +3046,17 @@ class TestDomainRequestWizard(TestWithUser, WebTest):
                 roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
                 additional_permissions=[UserPortfolioPermissionChoices.EDIT_REQUESTS],
             )
+            domain_request.portfolio = portfolio
+            domain_request.save()
+            domain_request.refresh_from_db()
 
             # Check portfolio-specific breadcrumb
             portfolio_page = self.app.get(f"/domain-request/{domain_request.id}/edit/").follow()
             self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
 
             self.assertContains(portfolio_page, "Domain requests")
-
+            domain_request.portfolio = None
+            domain_request.save()
             # Clean up portfolio
             permission.delete()
             portfolio.delete()
@@ -3177,15 +3183,6 @@ class TestDomainRequestWizard(TestWithUser, WebTest):
         - The user does not see the Domain and Domain requests buttons
         """
 
-        # This should unlock 4 steps by default.
-        # Purpose, .gov domain, current websites, and requirements for operating
-        domain_request = completed_domain_request(
-            status=DomainRequest.DomainRequestStatus.STARTED,
-            user=self.user,
-        )
-        domain_request.anything_else = None
-        domain_request.save()
-
         federal_agency = FederalAgency.objects.get(agency="Non-Federal Agency")
         # Add a portfolio
         portfolio = Portfolio.objects.create(
@@ -3203,6 +3200,14 @@ class TestDomainRequestWizard(TestWithUser, WebTest):
             ],
         )
 
+        # This should unlock 4 steps by default.
+        # Purpose, .gov domain, current websites, and requirements for operating
+        domain_request = completed_domain_request(
+            status=DomainRequest.DomainRequestStatus.STARTED, user=self.user, portfolio=portfolio
+        )
+        domain_request.anything_else = None
+        domain_request.save()
+
         response = self.app.get(f"/domain-request/{domain_request.id}/edit/")
         # django-webtest does not handle cookie-based sessions well because it keeps
         # resetting the session key on each new request, thus destroying the concept
@@ -3247,6 +3252,8 @@ class TestDomainRequestWizard(TestWithUser, WebTest):
             self.fail(f"Expected a redirect, but got a different response: {response}")
 
         # Data cleanup
+        domain_request.portfolio = None
+        domain_request.save()
         user_portfolio_permission.delete()
         portfolio.delete()
         federal_agency.delete()
@@ -3311,7 +3318,9 @@ class TestPortfolioDomainRequestViewonly(TestWithUser, WebTest):
             user=self.user, portfolio=portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
         )
         dummy_user, _ = User.objects.get_or_create(username="testusername123456")
-        domain_request = completed_domain_request(status=DomainRequest.DomainRequestStatus.SUBMITTED, user=dummy_user)
+        domain_request = completed_domain_request(
+            status=DomainRequest.DomainRequestStatus.SUBMITTED, user=dummy_user, portfolio=portfolio
+        )
         domain_request.save()
 
         detail_page = self.app.get(f"/domain-request/viewonly/{domain_request.id}")
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 4321f4c51..c2ec44b9e 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -12,7 +12,6 @@ from registrar.decorators import (
     HAS_PORTFOLIO_DOMAINS_ANY_PERM,
     HAS_PORTFOLIO_MEMBERS_ANY_PERM,
     HAS_PORTFOLIO_MEMBERS_EDIT,
-    HAS_PORTFOLIO_MEMBERS_VIEW,
     IS_PORTFOLIO_MEMBER,
     grant_access,
 )

From f4db3b2592d2808a2c6c67b801199e9383c5206d Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Fri, 7 Mar 2025 11:31:45 -0700
Subject: [PATCH 43/70] Battle of the linter circa 2025

---
 src/registrar/decorators.py                 | 21 ++++++++++++++-------
 src/registrar/tests/test_resource_access.py |  2 --
 2 files changed, 14 insertions(+), 9 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index 93d0c0fe1..36d23e4a2 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -233,50 +233,57 @@ def _is_domain_manager(user, **kwargs):
 
 
 def _domain_exists_under_portfolio(portfolio, domain_pk):
-    """Checks to see if the given domain exists under the provided portfolio. Returns True if the pk is None.
+    """Checks to see if the given domain exists under the provided portfolio.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
+    Returns True if the pk is None. Otherwise, returns a bool if said object exists.
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
     if not domain_pk:
         logger.info(
-            "_domain_exists_under_portfolio => Could not find domain_pk. This is a non-issue if called from the right context."
+            "_domain_exists_under_portfolio => Could not find domain_pk. "
+            "This is a non-issue if called from the right context."
         )
         return True
     return Domain.objects.filter(domain_info__portfolio=portfolio, id=domain_pk).exists()
 
 
 def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
-    """Checks to see if the given domain request exists under the provided portfolio. Returns True if the pk is None.
+    """Checks to see if the given domain request exists under the provided portfolio.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
+    Returns True if the pk is None. Otherwise, returns a bool if said object exists.
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
     if not domain_request_pk:
         logger.info(
-            "_domain_request_exists_under_portfolio => Could not find domain_request_pk. This is a non-issue if called from the right context."
+            "_domain_request_exists_under_portfolio => Could not find domain_request_pk. "
+            "This is a non-issue if called from the right context."
         )
         return True
     return DomainRequest.objects.filter(portfolio=portfolio, id=domain_request_pk).exists()
 
 
 def _member_exists_under_portfolio(portfolio, member_pk):
-    """Checks to see if the given UserPortfolioPermission exists under the provided portfolio. Returns True if the pk is None.
+    """Checks to see if the given UserPortfolioPermission exists under the provided portfolio.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
+    Returns True if the pk is None. Otherwise, returns a bool if said object exists.
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
     if not member_pk:
         logger.info(
-            "_member_exists_under_portfolio => Could not find member_pk. This is a non-issue if called from the right context."
+            "_member_exists_under_portfolio => Could not find member_pk. "
+            "This is a non-issue if called from the right context."
         )
         return True
     return UserPortfolioPermission.objects.filter(portfolio=portfolio, id=member_pk).exists()
 
 
 def _member_invitation_exists_under_portfolio(portfolio, invitedmember_pk):
-    """Checks to see if the given PortfolioInvitation exists under the provided portfolio. Returns True if the pk is None.
+    """Checks to see if the given PortfolioInvitation exists under the provided portfolio.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
+    Returns True if the pk is None. Otherwise, returns a bool if said object exists.
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
diff --git a/src/registrar/tests/test_resource_access.py b/src/registrar/tests/test_resource_access.py
index 6e8d168e2..cf8f1c933 100644
--- a/src/registrar/tests/test_resource_access.py
+++ b/src/registrar/tests/test_resource_access.py
@@ -8,12 +8,10 @@ from registrar.tests.common import (
     completed_domain_request,
 )
 from registrar.models import (
-    Domain,
     DomainRequest,
     Portfolio,
     UserPortfolioPermission,
     PortfolioInvitation,
-    User,
 )
 from registrar.models.utility.portfolio_helper import (
     UserPortfolioRoleChoices,

From b879c92ef788fb0962f90186e36c9ba69f7acfe1 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Fri, 7 Mar 2025 11:55:36 -0700
Subject: [PATCH 44/70] Update decorators.py

---
 src/registrar/decorators.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index 36d23e4a2..d2ebc7c75 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -289,7 +289,8 @@ def _member_invitation_exists_under_portfolio(portfolio, invitedmember_pk):
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
     if not invitedmember_pk:
         logger.info(
-            "_member_invitation_exists_under_portfolio => Could not find invitedmember_pk. This is a non-issue if called from the right context."
+            "_member_invitation_exists_under_portfolio => Could not find invitedmember_pk. "
+            "This is a non-issue if called from the right context."
         )
         return True
     return PortfolioInvitation.objects.filter(portfolio=portfolio, id=invitedmember_pk).exists()

From eafafb3eb5840c08beb3ef05f415a59c29cd4f12 Mon Sep 17 00:00:00 2001
From: CuriousX <nicolle.leclair@gmail.com>
Date: Fri, 7 Mar 2025 13:05:52 -0700
Subject: [PATCH 45/70] Update src/registrar/admin.py

Co-authored-by: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
---
 src/registrar/admin.py | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 2be00fad5..9e4b66f94 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -434,11 +434,6 @@ class DomainRequestAdminForm(forms.ModelForm):
                 admin.site,
                 attrs={"data-placeholder": "---------", "ajax-url": "get-suborganization-list-json"},
             ),
-            # 'investigator': forms.Select(
-            #     attrs={
-            #         'aria-describedby': 'id_investigator-arialabel'}),
-            # 'senior_official': forms.Select(
-            #     attrs={'aria-describedby': 'id_senior_official-arialabel'}),
         }
         labels = {
             "action_needed_reason_email": "Email",

From 37be43259d5a6016a5bed55ff348b8dcbc30fb45 Mon Sep 17 00:00:00 2001
From: CuriousX <nicolle.leclair@gmail.com>
Date: Fri, 7 Mar 2025 13:06:10 -0700
Subject: [PATCH 46/70] Update
 src/registrar/templates/django/admin/includes/detail_table_fieldset.html

Co-authored-by: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
---
 .../templates/django/admin/includes/detail_table_fieldset.html  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/django/admin/includes/detail_table_fieldset.html b/src/registrar/templates/django/admin/includes/detail_table_fieldset.html
index 3ca6a3b66..f12bd67f9 100644
--- a/src/registrar/templates/django/admin/includes/detail_table_fieldset.html
+++ b/src/registrar/templates/django/admin/includes/detail_table_fieldset.html
@@ -166,7 +166,7 @@ This is using a custom implementation fieldset.html (see admin/fieldset.html)
     {% endcomment %}
     {% if "related_widget_wrapper" in field.field.field.widget.template_name %}
         <span id="{{ field.field.id_for_label }}--aria-description" class="visually-hidden admin-select--aria-description">
-            {{ field.field.label }}, combo-box, collapsed, edit, has autocomplete. To set the value, use the arrow keys or type the text.
+            {{ field.field.label }}, edit, has autocomplete. To set the value, use the arrow keys or type the text.
         </span>
     {% endif %}
 

From 7a128077b98eaa8651c0b8b4c3782081194f2b38 Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Fri, 7 Mar 2025 13:24:46 -0700
Subject: [PATCH 47/70] Fix wrapping and search icon responsiveness for small
 screen sizes.  Also fixed aria labels (merge error)

---
 .../templates/includes/domain_requests_table.html        | 2 +-
 src/registrar/templates/includes/domains_table.html      | 2 +-
 src/registrar/templates/includes/search.html             | 9 ++++-----
 3 files changed, 6 insertions(+), 7 deletions(-)

diff --git a/src/registrar/templates/includes/domain_requests_table.html b/src/registrar/templates/includes/domain_requests_table.html
index 71f7a5b2a..377a69add 100644
--- a/src/registrar/templates/includes/domain_requests_table.html
+++ b/src/registrar/templates/includes/domain_requests_table.html
@@ -5,7 +5,7 @@
 <span id="get_domain_requests_json_url" class="display-none">{{url}}</span>
 
 <section class="section-outlined domain-requests {% if portfolio %}margin-top-0 section-outlined--border-base-light{% endif %}" id="domain-requests">
-    <div class="section-outlined__header margin-bottom-3 {% if not portfolio %}section-outlined__header--no-portfolio flex-wrap{% else %} grid-row{% endif %}">
+    <div class="section-outlined__header margin-bottom-3 grid-row">
         {% if not portfolio %}
         <div class="grid-row grid-col-12">
             <h2 id="domain-requests-header" class="display-inline-block flex-fill">Domain requests</h2>
diff --git a/src/registrar/templates/includes/domains_table.html b/src/registrar/templates/includes/domains_table.html
index d274a4f61..17a956935 100644
--- a/src/registrar/templates/includes/domains_table.html
+++ b/src/registrar/templates/includes/domains_table.html
@@ -26,7 +26,7 @@
 {% endif %}
 
 <section class="section-outlined domains margin-top-0{% if portfolio %} section-outlined--border-base-light{% endif %}" id="domains">
-  <div class="section-outlined__header margin-bottom-3 {% if not portfolio %} section-outlined__header--no-portfolio flex-wrap{% else %} grid-row{% endif %}">
+  <div class="section-outlined__header margin-bottom-3 grid-row">
     {% if not portfolio %}
       <div class="grid-row grid-col-12">
         <h2 id="domains-header" class="display-inline-block flex-fill">Domains</h2>
diff --git a/src/registrar/templates/includes/search.html b/src/registrar/templates/includes/search.html
index ac85f2544..479a8e986 100644
--- a/src/registrar/templates/includes/search.html
+++ b/src/registrar/templates/includes/search.html
@@ -2,9 +2,9 @@
 
 <div class="section-outlined__search tablet:grid-col">
     <section aria-label="{{aria_label_text}}">
-        <form class="usa-search usa-search--small usa-search--show-label" method="POST" role="search">
+        <form class="usa-search {% if use_search_icon %} usa-search--small {% else %} usa-search--default {% endif %}usa-search--show-label" method="POST" role="search">
             {% csrf_token %}
-            <label id="{{item_name}}__search-label" class="usa-label display-block maxw-none margin-top-2 margin-bottom-1" for="{{item_id_prefix}}__search-field">
+            <label id="{{item_name}}__search-label" class="usa-label display-block maxw-none margin-top-2 margin-bottom-1" for="{{item_name}}__search-field">
                 {{ label_text }}
             </label> 
             <div class="usa-search--show-label__input-wrapper">
@@ -14,14 +14,13 @@
                 type="search"
                 name="{{item_name}}-search"
                 />
-                <button class="usa-button" type="submit" id="{{item_name}}__search-field-submit" aria-labelledby="{{item_id_prefix}}__search-label">
-                    {% if use_search_icon %} 
+                <button class="usa-button" type="submit" id="{{item_name}}__search-field-submit" aria-labelledby="{{item_name}}__search-label">
                     <img
                         src="{% static 'img/usa-icons-bg/search--white.svg' %}"
                         class="usa-search__submit-icon"
                         alt="Search"
                     />
-                    {% else %}
+                    {% if not use_search_icon %} 
                     <span class="usa-search__submit-text">Search </span>
                     {% endif %}
                 </button>

From eb0f022942d521d914e5291a4e348ce4ad33ebda Mon Sep 17 00:00:00 2001
From: CocoByte <nicolle.leclair@gmail.com>
Date: Fri, 7 Mar 2025 13:32:21 -0700
Subject: [PATCH 48/70] restored senior_official to a select2 component

---
 src/registrar/admin.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 9e4b66f94..09d0eaa81 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -2758,6 +2758,7 @@ class DomainRequestAdmin(ListHeaderAdmin, ImportExportModelAdmin):
         "investigator",
         "portfolio",
         "sub_organization",
+        "senior_official",
     ]
 
     filter_horizontal = ("current_websites", "alternative_domains", "other_contacts")

From a9e51ad80cde9a689e5c3f3f1ff40a35e3e47764 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Mon, 10 Mar 2025 08:35:43 -0600
Subject: [PATCH 49/70] Update export.html

---
 src/registrar/templates/includes/export.html | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/src/registrar/templates/includes/export.html b/src/registrar/templates/includes/export.html
index 68c11a09a..7ed003e88 100644
--- a/src/registrar/templates/includes/export.html
+++ b/src/registrar/templates/includes/export.html
@@ -1,11 +1,11 @@
 {% load static %}
 <div class="section-outlined__utility-button mobile-lg:padding-right-105 {% if portfolio %} flex-auto desktop:padding-left-3{% endif %} margin-top-0">
     <section aria-label="{{export_aria}}" class="margin-top-205">
-        <a href="{% url export_url %}" class="usa-button usa-button--unstyled usa-button--with-icon usa-button--justify-right">
-        <svg class="usa-icon usa-icon--large" aria-hidden="true" focusable="false" role="img" width="24" height="24">
-            <use xlink:href="{%static 'img/sprite.svg'%}#file_download"></use>
-        </svg>Export as CSV
-        </a>
+        <button data-href="{% url export_url %}" class="usa-button usa-button--unstyled usa-button--with-icon usa-button--justify-right use-button-as-link">
+            <svg class="usa-icon usa-icon--large" aria-hidden="true" focusable="false" role="img" width="24" height="24">
+                <use xlink:href="{%static 'img/sprite.svg'%}#file_download"></use>
+            </svg>Export as CSV
+        </button>
     </section>
 </div>
 

From 028ed115dcc859d3b710a798044d7b1cc0adca9c Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Mon, 10 Mar 2025 13:34:24 -0600
Subject: [PATCH 50/70] Update src/registrar/decorators.py

---
 src/registrar/decorators.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index d2ebc7c75..f6cadd7f5 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -240,7 +240,7 @@ def _domain_exists_under_portfolio(portfolio, domain_pk):
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
     if not domain_pk:
-        logger.info(
+        logger.warning(
             "_domain_exists_under_portfolio => Could not find domain_pk. "
             "This is a non-issue if called from the right context."
         )

From 55a101b7f6a99602d49aa004977f6e33a183d03c Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Mon, 10 Mar 2025 12:53:23 -0700
Subject: [PATCH 51/70] Add files with print statements

---
 src/registrar/forms/domain_request_wizard.py |  6 +++-
 src/registrar/models/domain.py               | 17 ++++-----
 src/registrar/views/domain_request.py        | 37 ++++++++++++++++++--
 3 files changed, 49 insertions(+), 11 deletions(-)

diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index d7a02b124..0ca74dacc 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -83,14 +83,16 @@ class RequestingEntityForm(RegistrarForm):
         Overrides RegistrarForm method in order to set sub_organization to 'other'
         on GETs of the RequestingEntityForm."""
         if obj is None:
+            print("!!!! FROM_DATABASE receive a NONE object")
             return {}
         # get the domain request as a dict, per usual method
         domain_request_dict = {name: getattr(obj, name) for name in cls.declared_fields.keys()}  # type: ignore
-
+        print(f"**** FROM_DATABASE BEFORE modification: {domain_request_dict}")
         # set sub_organization to 'other' if is_requesting_new_suborganization is True
         if isinstance(obj, DomainRequest) and obj.is_requesting_new_suborganization():
             domain_request_dict["sub_organization"] = "other"
 
+        print(f"***** FROM_DATABASE: AFTER modification: {domain_request_dict}")
         return domain_request_dict
 
     def clean_sub_organization(self):
@@ -163,6 +165,7 @@ class RequestingEntityForm(RegistrarForm):
     def clean(self):
         """Custom clean implementation to handle our desired logic flow for suborganization."""
         cleaned_data = super().clean()
+        print(f"**** CLEAN: data before: {cleaned_data}")
 
         # Get the cleaned data
         suborganization = cleaned_data.get("sub_organization")
@@ -190,6 +193,7 @@ class RequestingEntityForm(RegistrarForm):
         elif not self.data and getattr(self, "_original_suborganization", None) == "other":
             self.cleaned_data["sub_organization"] = self._original_suborganization
 
+        print(f"**** CLEAN: clean data after: {cleaned_data}")
         return cleaned_data
 
 
diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index d3c0ed347..cb241db52 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -245,15 +245,16 @@ class Domain(TimeStampedModel, DomainHelper):
         is called in the validate function on the request/domain page
 
         throws- RegistryError or InvalidDomainError"""
-        if not cls.string_could_be_domain(domain):
-            logger.warning("Not a valid domain: %s" % str(domain))
-            # throw invalid domain error so that it can be caught in
-            # validate_and_handle_errors in domain_helper
-            raise errors.InvalidDomainError()
+        return True
+        # if not cls.string_could_be_domain(domain):
+        #     logger.warning("Not a valid domain: %s" % str(domain))
+        #     # throw invalid domain error so that it can be caught in
+        #     # validate_and_handle_errors in domain_helper
+        #     raise errors.InvalidDomainError()
 
-        domain_name = domain.lower()
-        req = commands.CheckDomain([domain_name])
-        return registry.send(req, cleaned=True).res_data[0].avail
+        # domain_name = domain.lower()
+        # req = commands.CheckDomain([domain_name])
+        # return registry.send(req, cleaned=True).res_data[0].avail
 
     @classmethod
     def registered(cls, domain: str) -> bool:
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 1d17e3047..dda309fa8 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -21,6 +21,7 @@ from registrar.models.contact import Contact
 from registrar.models.user import User
 from registrar.views.utility import StepsHelper
 from registrar.utility.enums import Step, PortfolioDomainRequestStep
+from registrar.models.utility.generic_helper import get_url_name
 
 logger = logging.getLogger(__name__)
 
@@ -205,30 +206,39 @@ class DomainRequestWizard(TemplateView):
         else:
             raise ValueError("Invalid value for User")
 
+        print("****** LINE ABOVE ******")
         if self.has_pk():
             try:
                 self._domain_request = DomainRequest.objects.get(
                     creator=creator,
                     pk=self.kwargs.get("domain_request_pk"),
                 )
+                print(f"@@@@ Retrieved existing DomainRequest: {self._domain_request}")
                 return self._domain_request
             except DomainRequest.DoesNotExist:
                 logger.debug("DomainRequest id %s did not have a DomainRequest" % self.kwargs.get("domain_request_pk"))
 
+        print("****** LINE BELOW ******")
         # If a user is creating a request, we assume that perms are handled upstream
         if self.request.user.is_org_user(self.request):
             portfolio = self.request.session.get("portfolio")
+            print(f"@@@@ User is an org user. Portfolio retrieved: {portfolio}")
             self._domain_request = DomainRequest.objects.create(
                 creator=self.request.user,
                 portfolio=portfolio,
             )
-
+            print(f"@@@@ New DomainRequest created: {self._domain_request}")
             # Question for reviewers: we should probably be doing this right?
             if portfolio and not self._domain_request.generic_org_type:
+                print(f"@@@@ Set generic_org_type to {portfolio.organization_type}")
                 self._domain_request.generic_org_type = portfolio.organization_type
                 self._domain_request.save()
+                print(f"@@@@ Updated DomainRequest: {self._domain_request}")
         else:
+            # Should not see this statement wanyway bc we are creating w portfolio
+            print("XXXX User is not an org user - create domain request w/o portfolio")
             self._domain_request = DomainRequest.objects.create(creator=self.request.user)
+            print(f"XXXX New DomainRequest created for non-org user: {self._domain_request}")
         return self._domain_request
 
     @property
@@ -255,8 +265,11 @@ class DomainRequestWizard(TemplateView):
 
     def done(self):
         """Called when the user clicks the submit button, if all forms are valid."""
+        print("***** DONE: Submitting")
         self.domain_request.submit()  # change the status to submitted
+        print("***** DONE: Saving")
         self.domain_request.save()
+        print(f"***** DONE Finished saving, domain request is {self.domain_request}")
         logger.debug("Domain Request object saved: %s", self.domain_request.id)
         return redirect(reverse(f"{self.URL_NAMESPACE}:finished"))
 
@@ -439,6 +452,14 @@ class DomainRequestWizard(TemplateView):
 
     def get_context_data(self):
         """Define context for access on all wizard pages."""
+        print("in get_context_data")
+        # current_url = self.request.get_full_path()
+        # print("current_url is", current_url)
+        # print("reverse", reverse(f"{self.URL_NAMESPACE}:finished"))
+        # if current_url == reverse(f"{self.URL_NAMESPACE}:finished"):
+        #     return None
+
+        # print("past the check")
         requested_domain_name = None
         if self.domain_request.requested_domain is not None:
             requested_domain_name = self.domain_request.requested_domain.name
@@ -511,9 +532,11 @@ class DomainRequestWizard(TemplateView):
 
         forms = self.get_forms(use_post=True)
         if self.is_valid(forms):
+            print("YYYYY should come into here bc it's valid")
             # always save progress
             self.save(forms)
         else:
+            print("XXXXXX should not come into here to call get context data again bc it's valid")
             context = self.get_context_data()
             context["forms"] = forms
             return render(request, self.template_name, context)
@@ -593,8 +616,18 @@ class RequestingEntity(DomainRequestWizard):
                     "suborganization_state_territory": None,
                 }
             )
-
+        print("!!!!! DomainRequest Instance:", self.domain_request)
+        print("!!!!! Cleaned Data for RequestingEntityForm:", requesting_entity_form.cleaned_data)
+        print("!!!!! Suborganization Data Before Submit: Requested:", cleaned_data.get("requested_suborganization"))
+        print("!!!!! City:", cleaned_data.get("suborganization_city"))
+        print("!!!!! State/Territory:", cleaned_data.get("suborganization_state_territory"))
+        print("$$$$$ DomainRequest before form save:", self.domain_request)
+        print("$$$$$ forms is", forms)
+        # So maybe bc it's saving 2 forms, one actually gets saved and the other becomes a draft?
+        # super().save(forms[0])
         super().save(forms)
+        print("$$$$$ After super().save() called, domain request instance:", self.domain_request)
+        # super().save(forms)
 
 
 class PortfolioAdditionalDetails(DomainRequestWizard):

From d354f45e611b2979029c0403d3ec8edc444605ac Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Mon, 10 Mar 2025 14:42:44 -0600
Subject: [PATCH 52/70] PR suggestions

---
 src/registrar/decorators.py | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index f6cadd7f5..f0bbb0907 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -239,7 +239,7 @@ def _domain_exists_under_portfolio(portfolio, domain_pk):
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if not domain_pk:
+    if domain_pk is not None:
         logger.warning(
             "_domain_exists_under_portfolio => Could not find domain_pk. "
             "This is a non-issue if called from the right context."
@@ -255,8 +255,8 @@ def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if not domain_request_pk:
-        logger.info(
+    if domain_request_pk is not None:
+        logger.warning(
             "_domain_request_exists_under_portfolio => Could not find domain_request_pk. "
             "This is a non-issue if called from the right context."
         )
@@ -271,8 +271,8 @@ def _member_exists_under_portfolio(portfolio, member_pk):
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if not member_pk:
-        logger.info(
+    if member_pk is not None:
+        logger.warning(
             "_member_exists_under_portfolio => Could not find member_pk. "
             "This is a non-issue if called from the right context."
         )
@@ -287,8 +287,8 @@ def _member_invitation_exists_under_portfolio(portfolio, invitedmember_pk):
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if not invitedmember_pk:
-        logger.info(
+    if invitedmember_pk is not None:
+        logger.warning(
             "_member_invitation_exists_under_portfolio => Could not find invitedmember_pk. "
             "This is a non-issue if called from the right context."
         )

From 7d9ddebcf9a6f2701c41e514793b24a889911816 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Mon, 10 Mar 2025 15:02:38 -0600
Subject: [PATCH 53/70] fix dumb typo

---
 src/registrar/decorators.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index f0bbb0907..9e7dda511 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -239,7 +239,7 @@ def _domain_exists_under_portfolio(portfolio, domain_pk):
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if domain_pk is not None:
+    if domain_pk is None:
         logger.warning(
             "_domain_exists_under_portfolio => Could not find domain_pk. "
             "This is a non-issue if called from the right context."
@@ -255,7 +255,7 @@ def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if domain_request_pk is not None:
+    if domain_request_pk is None:
         logger.warning(
             "_domain_request_exists_under_portfolio => Could not find domain_request_pk. "
             "This is a non-issue if called from the right context."
@@ -271,7 +271,7 @@ def _member_exists_under_portfolio(portfolio, member_pk):
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if member_pk is not None:
+    if member_pk is None:
         logger.warning(
             "_member_exists_under_portfolio => Could not find member_pk. "
             "This is a non-issue if called from the right context."
@@ -287,7 +287,7 @@ def _member_invitation_exists_under_portfolio(portfolio, invitedmember_pk):
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if invitedmember_pk is not None:
+    if invitedmember_pk is None:
         logger.warning(
             "_member_invitation_exists_under_portfolio => Could not find invitedmember_pk. "
             "This is a non-issue if called from the right context."

From a233420af9e0c2678a52e7fbec75e65dfd50ccd4 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Mon, 10 Mar 2025 17:19:56 -0700
Subject: [PATCH 54/70] Add in documentation and updated code

---
 docs/developer/README.md                     | 12 +++++++
 src/registrar/forms/domain_request_wizard.py |  5 ---
 src/registrar/models/domain.py               | 18 +++++-----
 src/registrar/views/domain_request.py        | 37 +-------------------
 4 files changed, 22 insertions(+), 50 deletions(-)

diff --git a/docs/developer/README.md b/docs/developer/README.md
index 46194bd70..e89a7ad0e 100644
--- a/docs/developer/README.md
+++ b/docs/developer/README.md
@@ -207,6 +207,18 @@ Linters:
 docker-compose exec app ./manage.py lint
 ```
 
+### Get availability for domain requests to work locally
+
+If you're on local (localhost:8080) and want to submit a domain request, and keep getting the "We’re experiencing a system error. Please wait a few minutes and try again. If you continue to get this error, contact help@get.gov." error, you can get past the availability check by updating the available() function in registrar/models/domain.py to return True and comment everything else out - see below for reference!
+
+```
+@classmethod
+def available(cls, domain: str) -> bool:
+  # Comment everything else out in the function
+  return True 
+```
+
+
 ### Testing behind logged in pages
 
 To test behind logged in pages with external tools, like `pa11y-ci` or `OWASP Zap`, add
diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index 0ca74dacc..ba72078b0 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -83,16 +83,13 @@ class RequestingEntityForm(RegistrarForm):
         Overrides RegistrarForm method in order to set sub_organization to 'other'
         on GETs of the RequestingEntityForm."""
         if obj is None:
-            print("!!!! FROM_DATABASE receive a NONE object")
             return {}
         # get the domain request as a dict, per usual method
         domain_request_dict = {name: getattr(obj, name) for name in cls.declared_fields.keys()}  # type: ignore
-        print(f"**** FROM_DATABASE BEFORE modification: {domain_request_dict}")
         # set sub_organization to 'other' if is_requesting_new_suborganization is True
         if isinstance(obj, DomainRequest) and obj.is_requesting_new_suborganization():
             domain_request_dict["sub_organization"] = "other"
 
-        print(f"***** FROM_DATABASE: AFTER modification: {domain_request_dict}")
         return domain_request_dict
 
     def clean_sub_organization(self):
@@ -165,7 +162,6 @@ class RequestingEntityForm(RegistrarForm):
     def clean(self):
         """Custom clean implementation to handle our desired logic flow for suborganization."""
         cleaned_data = super().clean()
-        print(f"**** CLEAN: data before: {cleaned_data}")
 
         # Get the cleaned data
         suborganization = cleaned_data.get("sub_organization")
@@ -193,7 +189,6 @@ class RequestingEntityForm(RegistrarForm):
         elif not self.data and getattr(self, "_original_suborganization", None) == "other":
             self.cleaned_data["sub_organization"] = self._original_suborganization
 
-        print(f"**** CLEAN: clean data after: {cleaned_data}")
         return cleaned_data
 
 
diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index cb241db52..01ed246ac 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -245,16 +245,16 @@ class Domain(TimeStampedModel, DomainHelper):
         is called in the validate function on the request/domain page
 
         throws- RegistryError or InvalidDomainError"""
-        return True
-        # if not cls.string_could_be_domain(domain):
-        #     logger.warning("Not a valid domain: %s" % str(domain))
-        #     # throw invalid domain error so that it can be caught in
-        #     # validate_and_handle_errors in domain_helper
-        #     raise errors.InvalidDomainError()
 
-        # domain_name = domain.lower()
-        # req = commands.CheckDomain([domain_name])
-        # return registry.send(req, cleaned=True).res_data[0].avail
+        if not cls.string_could_be_domain(domain):
+            logger.warning("Not a valid domain: %s" % str(domain))
+            # throw invalid domain error so that it can be caught in
+            # validate_and_handle_errors in domain_helper
+            raise errors.InvalidDomainError()
+
+        domain_name = domain.lower()
+        req = commands.CheckDomain([domain_name])
+        return registry.send(req, cleaned=True).res_data[0].avail
 
     @classmethod
     def registered(cls, domain: str) -> bool:
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index dda309fa8..77457beea 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -206,39 +206,30 @@ class DomainRequestWizard(TemplateView):
         else:
             raise ValueError("Invalid value for User")
 
-        print("****** LINE ABOVE ******")
         if self.has_pk():
             try:
                 self._domain_request = DomainRequest.objects.get(
                     creator=creator,
                     pk=self.kwargs.get("domain_request_pk"),
                 )
-                print(f"@@@@ Retrieved existing DomainRequest: {self._domain_request}")
                 return self._domain_request
             except DomainRequest.DoesNotExist:
                 logger.debug("DomainRequest id %s did not have a DomainRequest" % self.kwargs.get("domain_request_pk"))
 
-        print("****** LINE BELOW ******")
         # If a user is creating a request, we assume that perms are handled upstream
         if self.request.user.is_org_user(self.request):
             portfolio = self.request.session.get("portfolio")
-            print(f"@@@@ User is an org user. Portfolio retrieved: {portfolio}")
             self._domain_request = DomainRequest.objects.create(
                 creator=self.request.user,
                 portfolio=portfolio,
             )
-            print(f"@@@@ New DomainRequest created: {self._domain_request}")
             # Question for reviewers: we should probably be doing this right?
             if portfolio and not self._domain_request.generic_org_type:
-                print(f"@@@@ Set generic_org_type to {portfolio.organization_type}")
                 self._domain_request.generic_org_type = portfolio.organization_type
                 self._domain_request.save()
-                print(f"@@@@ Updated DomainRequest: {self._domain_request}")
         else:
             # Should not see this statement wanyway bc we are creating w portfolio
-            print("XXXX User is not an org user - create domain request w/o portfolio")
             self._domain_request = DomainRequest.objects.create(creator=self.request.user)
-            print(f"XXXX New DomainRequest created for non-org user: {self._domain_request}")
         return self._domain_request
 
     @property
@@ -265,11 +256,8 @@ class DomainRequestWizard(TemplateView):
 
     def done(self):
         """Called when the user clicks the submit button, if all forms are valid."""
-        print("***** DONE: Submitting")
         self.domain_request.submit()  # change the status to submitted
-        print("***** DONE: Saving")
         self.domain_request.save()
-        print(f"***** DONE Finished saving, domain request is {self.domain_request}")
         logger.debug("Domain Request object saved: %s", self.domain_request.id)
         return redirect(reverse(f"{self.URL_NAMESPACE}:finished"))
 
@@ -452,14 +440,6 @@ class DomainRequestWizard(TemplateView):
 
     def get_context_data(self):
         """Define context for access on all wizard pages."""
-        print("in get_context_data")
-        # current_url = self.request.get_full_path()
-        # print("current_url is", current_url)
-        # print("reverse", reverse(f"{self.URL_NAMESPACE}:finished"))
-        # if current_url == reverse(f"{self.URL_NAMESPACE}:finished"):
-        #     return None
-
-        # print("past the check")
         requested_domain_name = None
         if self.domain_request.requested_domain is not None:
             requested_domain_name = self.domain_request.requested_domain.name
@@ -532,11 +512,9 @@ class DomainRequestWizard(TemplateView):
 
         forms = self.get_forms(use_post=True)
         if self.is_valid(forms):
-            print("YYYYY should come into here bc it's valid")
             # always save progress
             self.save(forms)
         else:
-            print("XXXXXX should not come into here to call get context data again bc it's valid")
             context = self.get_context_data()
             context["forms"] = forms
             return render(request, self.template_name, context)
@@ -616,18 +594,7 @@ class RequestingEntity(DomainRequestWizard):
                     "suborganization_state_territory": None,
                 }
             )
-        print("!!!!! DomainRequest Instance:", self.domain_request)
-        print("!!!!! Cleaned Data for RequestingEntityForm:", requesting_entity_form.cleaned_data)
-        print("!!!!! Suborganization Data Before Submit: Requested:", cleaned_data.get("requested_suborganization"))
-        print("!!!!! City:", cleaned_data.get("suborganization_city"))
-        print("!!!!! State/Territory:", cleaned_data.get("suborganization_state_territory"))
-        print("$$$$$ DomainRequest before form save:", self.domain_request)
-        print("$$$$$ forms is", forms)
-        # So maybe bc it's saving 2 forms, one actually gets saved and the other becomes a draft?
-        # super().save(forms[0])
         super().save(forms)
-        print("$$$$$ After super().save() called, domain request instance:", self.domain_request)
-        # super().save(forms)
 
 
 class PortfolioAdditionalDetails(DomainRequestWizard):
@@ -849,11 +816,9 @@ class Finished(DomainRequestWizard):
     forms = []  # type: ignore
 
     def get(self, request, *args, **kwargs):
-        context = self.get_context_data()
-        context["domain_request_id"] = self.domain_request.id
         # clean up this wizard session, because we are done with it
         del self.storage
-        return render(self.request, self.template_name, context)
+        return render(self.request, self.template_name)
 
 
 @grant_access(IS_DOMAIN_REQUEST_CREATOR, HAS_PORTFOLIO_DOMAIN_REQUESTS_EDIT)

From 031b7e6676dbf8b07d7b0e4c2a23c720c1fb0d28 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Tue, 11 Mar 2025 08:27:55 -0600
Subject: [PATCH 55/70] Update decorators.py

---
 src/registrar/decorators.py | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/src/registrar/decorators.py b/src/registrar/decorators.py
index 9e7dda511..b4b5c3bd2 100644
--- a/src/registrar/decorators.py
+++ b/src/registrar/decorators.py
@@ -235,11 +235,11 @@ def _is_domain_manager(user, **kwargs):
 def _domain_exists_under_portfolio(portfolio, domain_pk):
     """Checks to see if the given domain exists under the provided portfolio.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
-    Returns True if the pk is None. Otherwise, returns a bool if said object exists.
+    Returns True if the pk is falsy. Otherwise, returns a bool if said object exists.
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if domain_pk is None:
+    if not domain_pk:
         logger.warning(
             "_domain_exists_under_portfolio => Could not find domain_pk. "
             "This is a non-issue if called from the right context."
@@ -251,11 +251,11 @@ def _domain_exists_under_portfolio(portfolio, domain_pk):
 def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
     """Checks to see if the given domain request exists under the provided portfolio.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
-    Returns True if the pk is None. Otherwise, returns a bool if said object exists.
+    Returns True if the pk is falsy. Otherwise, returns a bool if said object exists.
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if domain_request_pk is None:
+    if not domain_request_pk:
         logger.warning(
             "_domain_request_exists_under_portfolio => Could not find domain_request_pk. "
             "This is a non-issue if called from the right context."
@@ -267,11 +267,11 @@ def _domain_request_exists_under_portfolio(portfolio, domain_request_pk):
 def _member_exists_under_portfolio(portfolio, member_pk):
     """Checks to see if the given UserPortfolioPermission exists under the provided portfolio.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
-    Returns True if the pk is None. Otherwise, returns a bool if said object exists.
+    Returns True if the pk is falsy. Otherwise, returns a bool if said object exists.
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if member_pk is None:
+    if not member_pk:
         logger.warning(
             "_member_exists_under_portfolio => Could not find member_pk. "
             "This is a non-issue if called from the right context."
@@ -283,11 +283,11 @@ def _member_exists_under_portfolio(portfolio, member_pk):
 def _member_invitation_exists_under_portfolio(portfolio, invitedmember_pk):
     """Checks to see if the given PortfolioInvitation exists under the provided portfolio.
     HELPFUL REMINDER: Watch for typos! Verify that the kwarg key exists before using this function.
-    Returns True if the pk is None. Otherwise, returns a bool if said object exists.
+    Returns True if the pk is falsy. Otherwise, returns a bool if said object exists.
     """
     # The view expects this, and the page will throw an error without this if it needs it.
     # Thus, if it is none, we are not checking on a specific record and therefore there is nothing to check.
-    if invitedmember_pk is None:
+    if not invitedmember_pk:
         logger.warning(
             "_member_invitation_exists_under_portfolio => Could not find invitedmember_pk. "
             "This is a non-issue if called from the right context."

From b09f68946f61ce7cb465119e4279f1c22c8099e0 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 11 Mar 2025 10:48:54 -0500
Subject: [PATCH 56/70] review changes

---
 ...equest_feb_naming_requirements_and_more.py | 29 +++++++++++++-
 ...mainrequest_feb_purpose_choice_and_more.py | 40 -------------------
 src/registrar/models/domain_request.py        |  8 +---
 src/registrar/views/domain_request.py         |  4 --
 4 files changed, 30 insertions(+), 51 deletions(-)
 delete mode 100644 src/registrar/migrations/0142_domainrequest_feb_purpose_choice_and_more.py

diff --git a/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py b/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py
index 32634d8ee..ad29e57d0 100644
--- a/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py
+++ b/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py
@@ -1,4 +1,4 @@
-# Generated by Django 4.2.17 on 2025-02-13 22:41
+# Generated by Django 4.2.17 on 2025-03-10 19:55
 
 from django.db import migrations, models
 
@@ -20,4 +20,31 @@ class Migration(migrations.Migration):
             name="feb_naming_requirements_details",
             field=models.TextField(blank=True, null=True),
         ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="feb_purpose_choice",
+            field=models.CharField(
+                blank=True, choices=[("website", "Website"), ("redirect", "Redirect"), ("other", "Other")], null=True
+            ),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="has_timeframe",
+            field=models.BooleanField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="interagency_initiative_details",
+            field=models.TextField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="is_interagency_initiative",
+            field=models.BooleanField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="time_frame_details",
+            field=models.TextField(blank=True, null=True),
+        ),
     ]
diff --git a/src/registrar/migrations/0142_domainrequest_feb_purpose_choice_and_more.py b/src/registrar/migrations/0142_domainrequest_feb_purpose_choice_and_more.py
deleted file mode 100644
index 1cd5fb587..000000000
--- a/src/registrar/migrations/0142_domainrequest_feb_purpose_choice_and_more.py
+++ /dev/null
@@ -1,40 +0,0 @@
-# Generated by Django 4.2.17 on 2025-02-25 23:45
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-
-    dependencies = [
-        ("registrar", "0141_domainrequest_feb_naming_requirements_and_more"),
-    ]
-
-    operations = [
-        migrations.AddField(
-            model_name="domainrequest",
-            name="feb_purpose_choice",
-            field=models.CharField(
-                blank=True, choices=[("website", "Website"), ("redirect", "Redirect"), ("other", "Other")], null=True
-            ),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="has_timeframe",
-            field=models.BooleanField(blank=True, null=True),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="interagency_initiative_details",
-            field=models.TextField(blank=True, null=True),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="is_interagency_initiative",
-            field=models.BooleanField(blank=True, null=True),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="time_frame_details",
-            field=models.TextField(blank=True, null=True),
-        ),
-    ]
diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index b7aaff65d..ac1adfad5 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -1436,13 +1436,9 @@ class DomainRequest(TimeStampedModel):
 
     def is_feb(self) -> bool:
         """Is this domain request for a Federal Executive Branch agency?"""
-        if not self.generic_org_type:
-            # generic_org_type is either blank or None, assume no
-            return False
-        if self.generic_org_type == DomainRequest.OrganizationChoices.FEDERAL:
-            return self.federal_type == BranchChoices.EXECUTIVE
+        if self.portfolio:
+            return self.portfolio.federal_type == BranchChoices.EXECUTIVE
         return False
-
     def is_federal(self) -> Union[bool, None]:
         """Is this domain request for a federal agency?
 
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 55cd9a19e..33de99c39 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -232,9 +232,6 @@ class DomainRequestWizard(TemplateView):
             if portfolio and not self._domain_request.generic_org_type:
                 self._domain_request.generic_org_type = portfolio.organization_type
                 self._domain_request.save()
-            if portfolio and not self._domain_request.federal_type:
-                self._domain_request.federal_type = portfolio.federal_type
-                self._domain_request.save()
         else:
             self._domain_request = DomainRequest.objects.create(creator=self.request.user)
         return self._domain_request
@@ -474,7 +471,6 @@ class DomainRequestWizard(TemplateView):
                 "requested_domain__name": requested_domain_name,
             }
         context["domain_request_id"] = self.domain_request.id
-        context["is_executive"] = self.domain_request.is_federal() and self.domain_request.federal_type == "Executive"
         return context
 
     def get_step_list(self) -> list:

From ba631dd857202836abd7359571f1049af5a6c9f5 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 11 Mar 2025 10:51:19 -0500
Subject: [PATCH 57/70] small review fix

---
 src/registrar/forms/domain_request_wizard.py | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index 7cbb159b4..4e7182843 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -599,9 +599,6 @@ class DotGovDomainForm(RegistrarForm):
             return_type=ValidationReturnType.FORM_VALIDATION_ERROR,
         )
         return validated
-    
-    def is_valid(self):
-        return super().is_valid()
 
     requested_domain = forms.CharField(
         label="What .gov domain do you want?",

From d5c5007b349d1776114fb0cf18d9b0f48426c099 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Tue, 11 Mar 2025 11:41:04 -0700
Subject: [PATCH 58/70] Remove comment

---
 docs/developer/README.md              | 1 -
 src/registrar/views/domain_request.py | 2 --
 2 files changed, 3 deletions(-)

diff --git a/docs/developer/README.md b/docs/developer/README.md
index e89a7ad0e..0629bb124 100644
--- a/docs/developer/README.md
+++ b/docs/developer/README.md
@@ -218,7 +218,6 @@ def available(cls, domain: str) -> bool:
   return True 
 ```
 
-
 ### Testing behind logged in pages
 
 To test behind logged in pages with external tools, like `pa11y-ci` or `OWASP Zap`, add
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 77457beea..6780f48ef 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -21,7 +21,6 @@ from registrar.models.contact import Contact
 from registrar.models.user import User
 from registrar.views.utility import StepsHelper
 from registrar.utility.enums import Step, PortfolioDomainRequestStep
-from registrar.models.utility.generic_helper import get_url_name
 
 logger = logging.getLogger(__name__)
 
@@ -228,7 +227,6 @@ class DomainRequestWizard(TemplateView):
                 self._domain_request.generic_org_type = portfolio.organization_type
                 self._domain_request.save()
         else:
-            # Should not see this statement wanyway bc we are creating w portfolio
             self._domain_request = DomainRequest.objects.create(creator=self.request.user)
         return self._domain_request
 

From b41e706dcdd95a822f5451929db5b440149e3ce0 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 11 Mar 2025 15:16:36 -0500
Subject: [PATCH 59/70] review changes

---
 src/registrar/forms/domain_request_wizard.py  | 35 ++++--------
 .../purpose.py => feb.py}                     | 56 +++++++++++--------
 src/registrar/views/domain_request.py         | 14 ++---
 3 files changed, 52 insertions(+), 53 deletions(-)
 rename src/registrar/forms/{domainrequestwizard/purpose.py => feb.py} (75%)

diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index 4e7182843..91fe7ba05 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -607,38 +607,25 @@ class DotGovDomainForm(RegistrarForm):
         },
     )
 
+class PurposeDetailsForm(BaseDeletableRegistrarForm):
 
-class ExecutiveNamingRequirementsYesNoForm(BaseYesNoForm, BaseDeletableRegistrarForm):
-    """
-    Form for verifying if the domain request meets the Federal Executive Branch domain naming requirements.
-    If the "no" option is selected, details must be provided via the separate details form.
-    """
+    field_name = "purpose"
 
-    field_name = "feb_naming_requirements"
-
-    @property
-    def form_is_checked(self):
-        """
-        Determines the initial checked state of the form based on the domain_request's attributes.
-        """
-        return self.domain_request.feb_naming_requirements
-
-
-class ExecutiveNamingRequirementsDetailsForm(BaseDeletableRegistrarForm):
-    # Text area for additional details; rendered conditionally when "no" is selected.
-    feb_naming_requirements_details = forms.CharField(
-        widget=forms.Textarea(attrs={"maxlength": "2000"}),
-        max_length=2000,
-        required=True,
-        error_messages={"required": ("This field is required.")},
+    purpose = forms.CharField(
+        label="Purpose",
+        widget=forms.Textarea(
+            attrs={
+                "aria-label": "What is the purpose of your requested domain? Describe how you’ll use your .gov domain. \
+                Will it be used for a website, email, or something else?"
+            }
+        ),
         validators=[
             MaxLengthValidator(
                 2000,
                 message="Response must be less than 2000 characters.",
             )
         ],
-        label="",
-        help_text="Maximum 2000 characters allowed.",
+        error_messages={"required": "Describe how you’ll use the .gov domain you’re requesting."},
     )
 
 
diff --git a/src/registrar/forms/domainrequestwizard/purpose.py b/src/registrar/forms/feb.py
similarity index 75%
rename from src/registrar/forms/domainrequestwizard/purpose.py
rename to src/registrar/forms/feb.py
index 43dd62290..44fd417c2 100644
--- a/src/registrar/forms/domainrequestwizard/purpose.py
+++ b/src/registrar/forms/feb.py
@@ -3,6 +3,40 @@ from django.core.validators import MaxLengthValidator
 from registrar.forms.utility.wizard_form_helper import BaseDeletableRegistrarForm, BaseYesNoForm
 
 
+class ExecutiveNamingRequirementsYesNoForm(BaseYesNoForm, BaseDeletableRegistrarForm):
+    """
+    Form for verifying if the domain request meets the Federal Executive Branch domain naming requirements.
+    If the "no" option is selected, details must be provided via the separate details form.
+    """
+
+    field_name = "feb_naming_requirements"
+
+    @property
+    def form_is_checked(self):
+        """
+        Determines the initial checked state of the form based on the domain_request's attributes.
+        """
+        return self.domain_request.feb_naming_requirements
+
+
+class ExecutiveNamingRequirementsDetailsForm(BaseDeletableRegistrarForm):
+    # Text area for additional details; rendered conditionally when "no" is selected.
+    feb_naming_requirements_details = forms.CharField(
+        widget=forms.Textarea(attrs={"maxlength": "2000"}),
+        max_length=2000,
+        required=True,
+        error_messages={"required": ("This field is required.")},
+        validators=[
+            MaxLengthValidator(
+                2000,
+                message="Response must be less than 2000 characters.",
+            )
+        ],
+        label="",
+        help_text="Maximum 2000 characters allowed.",
+    )
+
+
 class FEBPurposeOptionsForm(BaseDeletableRegistrarForm):
 
     field_name = "feb_purpose_choice"
@@ -24,28 +58,6 @@ class FEBPurposeOptionsForm(BaseDeletableRegistrarForm):
     )
 
 
-class PurposeDetailsForm(BaseDeletableRegistrarForm):
-
-    field_name = "purpose"
-
-    purpose = forms.CharField(
-        label="Purpose",
-        widget=forms.Textarea(
-            attrs={
-                "aria-label": "What is the purpose of your requested domain? Describe how you’ll use your .gov domain. \
-                Will it be used for a website, email, or something else?"
-            }
-        ),
-        validators=[
-            MaxLengthValidator(
-                2000,
-                message="Response must be less than 2000 characters.",
-            )
-        ],
-        error_messages={"required": "Describe how you’ll use the .gov domain you’re requesting."},
-    )
-
-
 class FEBTimeFrameYesNoForm(BaseDeletableRegistrarForm, BaseYesNoForm):
     """
     Form for determining whether the domain request comes with a target timeframe for launch.
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index 33de99c39..b659b0812 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -15,7 +15,7 @@ from registrar.decorators import (
     grant_access,
 )
 from registrar.forms import domain_request_wizard as forms
-from registrar.forms.domainrequestwizard import purpose
+from registrar.forms import feb
 from registrar.forms.utility.wizard_form_helper import request_step_list
 from registrar.models import DomainRequest
 from registrar.models.contact import Contact
@@ -707,12 +707,12 @@ class Purpose(DomainRequestWizard):
     template_name = "domain_request_purpose.html"
 
     forms = [
-        purpose.FEBPurposeOptionsForm,
-        purpose.PurposeDetailsForm,
-        purpose.FEBTimeFrameYesNoForm,
-        purpose.FEBTimeFrameDetailsForm,
-        purpose.FEBInteragencyInitiativeYesNoForm,
-        purpose.FEBInteragencyInitiativeDetailsForm,
+        feb.FEBPurposeOptionsForm,
+        forms.PurposeDetailsForm,
+        feb.FEBTimeFrameYesNoForm,
+        feb.FEBTimeFrameDetailsForm,
+        feb.FEBInteragencyInitiativeYesNoForm,
+        feb.FEBInteragencyInitiativeDetailsForm,
     ]
 
     def get_context_data(self):

From 95cd22d54927fbc5efb5d50051229643a72795b4 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 11 Mar 2025 15:34:25 -0500
Subject: [PATCH 60/70] linter and merge fixes

---
 src/registrar/assets/src/js/getgov/main.js   | 1 -
 src/registrar/forms/domain_request_wizard.py | 1 +
 src/registrar/models/domain_request.py       | 1 +
 src/registrar/tests/test_views_request.py    | 5 +++--
 src/registrar/views/domain_request.py        | 4 ++--
 5 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/main.js b/src/registrar/assets/src/js/getgov/main.js
index 6995b195d..f077448aa 100644
--- a/src/registrar/assets/src/js/getgov/main.js
+++ b/src/registrar/assets/src/js/getgov/main.js
@@ -1,5 +1,4 @@
 import { hookupYesNoListener, hookupCallbacksToRadioToggler } from './radios.js';
-import { hookupYesNoListener } from './radios.js';
 import { initDomainValidators } from './domain-validators.js';
 import { initFormsetsForms, triggerModalOnDsDataForm } from './formset-forms.js';
 import { initFormNameservers } from './form-nameservers'
diff --git a/src/registrar/forms/domain_request_wizard.py b/src/registrar/forms/domain_request_wizard.py
index 91fe7ba05..a9c9f6f03 100644
--- a/src/registrar/forms/domain_request_wizard.py
+++ b/src/registrar/forms/domain_request_wizard.py
@@ -607,6 +607,7 @@ class DotGovDomainForm(RegistrarForm):
         },
     )
 
+
 class PurposeDetailsForm(BaseDeletableRegistrarForm):
 
     field_name = "purpose"
diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index ac1adfad5..5ae51ebc6 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -1439,6 +1439,7 @@ class DomainRequest(TimeStampedModel):
         if self.portfolio:
             return self.portfolio.federal_type == BranchChoices.EXECUTIVE
         return False
+
     def is_federal(self) -> Union[bool, None]:
         """Is this domain request for a federal agency?
 
diff --git a/src/registrar/tests/test_views_request.py b/src/registrar/tests/test_views_request.py
index 7b117f67d..caeeafc21 100644
--- a/src/registrar/tests/test_views_request.py
+++ b/src/registrar/tests/test_views_request.py
@@ -2618,7 +2618,9 @@ class DomainRequestTests(TestWithUser, WebTest):
         domain_form["dotgov_domain-requested_domain"] = domain
         domain_form["dotgov_domain-feb_naming_requirements"] = "True"
         domain_form["dotgov_domain-feb_naming_requirements_details"] = "test"
-        with patch('registrar.forms.domain_request_wizard.DotGovDomainForm.clean_requested_domain', return_value=domain):  # noqa
+        with patch(
+            "registrar.forms.domain_request_wizard.DotGovDomainForm.clean_requested_domain", return_value=domain
+        ):  # noqa
             self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
             domain_result = domain_form.submit()
 
@@ -2628,7 +2630,6 @@ class DomainRequestTests(TestWithUser, WebTest):
 
         self.feb_purpose_page_tests(purpose_page)
 
-
     def feb_purpose_page_tests(self, purpose_page):
         self.assertContains(purpose_page, "What is the purpose of your requested domain?")
 
diff --git a/src/registrar/views/domain_request.py b/src/registrar/views/domain_request.py
index b659b0812..3c395108b 100644
--- a/src/registrar/views/domain_request.py
+++ b/src/registrar/views/domain_request.py
@@ -660,8 +660,8 @@ class DotgovDomain(DomainRequestWizard):
     forms = [
         forms.DotGovDomainForm,
         forms.AlternativeDomainFormSet,
-        forms.ExecutiveNamingRequirementsYesNoForm,
-        forms.ExecutiveNamingRequirementsDetailsForm,
+        feb.ExecutiveNamingRequirementsYesNoForm,
+        feb.ExecutiveNamingRequirementsDetailsForm,
     ]
 
     def get_context_data(self):

From 951fe6610525c75d0ab990eff283f1a6e498ad83 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 11 Mar 2025 16:04:14 -0500
Subject: [PATCH 61/70] fix odd spacing problem

---
 src/registrar/templates/domain_request_purpose.html | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/registrar/templates/domain_request_purpose.html b/src/registrar/templates/domain_request_purpose.html
index fb5145476..9c6754f22 100644
--- a/src/registrar/templates/domain_request_purpose.html
+++ b/src/registrar/templates/domain_request_purpose.html
@@ -4,7 +4,6 @@
 {% block form_instructions %}
   <p>.Gov domains are intended for public use. Domains will not be given to organizations that only want to reserve a domain name (defensive registration) or that only intend to use the domain internally (as for an intranet).</p> 
   <p>Read about <a class="usa-link" rel="noopener noreferrer" target="_blank" href="{% public_site_url 'domains/requirements/' %}">activities that are prohibited on .gov domains.</a></p>
-  <h2>What is the purpose of your requested domain?</h2>
 {% endblock %}
 
 {% block form_required_fields_help_text %}
@@ -20,6 +19,7 @@
         {{forms.3.management_form}}
         {{forms.4.management_form}}
         {{forms.5.management_form}}
+        <h2>What is the purpose of your requested domain?</h2>
         <p class="margin-bottom-0 margin-top-1">
           <em>Select one. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></em>
         </p>
@@ -74,6 +74,7 @@
         </div>
       </fieldset>
   {% else %}
+    <h2>What is the purpose of your requested domain?</h2>
     <p>Describe how you’ll use your .gov domain. Will it be used for a website, email, or something else?</p>
 
     {% with attr_maxlength=2000 add_label_class="usa-sr-only" %}

From 0bc6595a17321739e5748d6e828a904ff8b1b216 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Tue, 11 Mar 2025 15:16:48 -0700
Subject: [PATCH 62/70] Fix the manage url issue for action needed emails

---
 .../templates/emails/transition_domain_invitation.txt     | 2 +-
 src/registrar/utility/admin_helpers.py                    | 8 +++++++-
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/emails/transition_domain_invitation.txt b/src/registrar/templates/emails/transition_domain_invitation.txt
index 14dd626dd..35947eb72 100644
--- a/src/registrar/templates/emails/transition_domain_invitation.txt
+++ b/src/registrar/templates/emails/transition_domain_invitation.txt
@@ -57,7 +57,7 @@ THANK YOU
 The .gov team
 
 .Gov blog <https://get.gov/updates/> 
-Domain management <{{ manage_url }}}>
+Domain management <{{ manage_url }}>
 Get.gov <https://get.gov>
 
 The .gov registry is a part of the Cybersecurity and Infrastructure Security Agency (CISA) <https://cisa.gov/>
diff --git a/src/registrar/utility/admin_helpers.py b/src/registrar/utility/admin_helpers.py
index 93a0a16b5..adbc182d0 100644
--- a/src/registrar/utility/admin_helpers.py
+++ b/src/registrar/utility/admin_helpers.py
@@ -1,4 +1,5 @@
 from registrar.models.domain_request import DomainRequest
+from django.conf import settings
 from django.template.loader import get_template
 from django.utils.html import format_html
 from django.urls import reverse
@@ -35,8 +36,13 @@ def _get_default_email(domain_request, file_path, reason, excluded_reasons=None)
         return None
 
     recipient = domain_request.creator
+    env_base_url = settings.BASE_URL
+    # If NOT in prod, update instances of "manage.get.gov" links to point to
+    # current environment, ie "getgov-rh.app.cloud.gov"
+    manage_url = env_base_url if not settings.IS_PRODUCTION else "https://manage.get.gov"
+
     # Return the context of the rendered views
-    context = {"domain_request": domain_request, "recipient": recipient, "reason": reason}
+    context = {"domain_request": domain_request, "recipient": recipient, "reason": reason, "manage_url": manage_url}
 
     email_body_text = get_template(file_path).render(context=context)
     email_body_text_cleaned = email_body_text.strip().lstrip("\n") if email_body_text else None

From 266e0b7f53a7838dcca67f097c86db69d4f54968 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Wed, 12 Mar 2025 10:32:03 -0500
Subject: [PATCH 63/70] fix migrations

---
 ...equest_feb_naming_requirements_and_more.py | 50 +++++++++++++++++++
 1 file changed, 50 insertions(+)
 create mode 100644 src/registrar/migrations/0142_domainrequest_feb_naming_requirements_and_more.py

diff --git a/src/registrar/migrations/0142_domainrequest_feb_naming_requirements_and_more.py b/src/registrar/migrations/0142_domainrequest_feb_naming_requirements_and_more.py
new file mode 100644
index 000000000..5a8dbeec8
--- /dev/null
+++ b/src/registrar/migrations/0142_domainrequest_feb_naming_requirements_and_more.py
@@ -0,0 +1,50 @@
+# Generated by Django 4.2.17 on 2025-03-10 19:55
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ("registrar", "0141_alter_portfolioinvitation_additional_permissions_and_more"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="domainrequest",
+            name="feb_naming_requirements",
+            field=models.BooleanField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="feb_naming_requirements_details",
+            field=models.TextField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="feb_purpose_choice",
+            field=models.CharField(
+                blank=True, choices=[("website", "Website"), ("redirect", "Redirect"), ("other", "Other")], null=True
+            ),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="has_timeframe",
+            field=models.BooleanField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="interagency_initiative_details",
+            field=models.TextField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="is_interagency_initiative",
+            field=models.BooleanField(blank=True, null=True),
+        ),
+        migrations.AddField(
+            model_name="domainrequest",
+            name="time_frame_details",
+            field=models.TextField(blank=True, null=True),
+        ),
+    ]

From 47c795cc9f0cc6e09a6d8b6c59036d6c2135973a Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Wed, 12 Mar 2025 10:39:02 -0500
Subject: [PATCH 64/70] migration fix

---
 ...equest_feb_naming_requirements_and_more.py | 50 -------------------
 1 file changed, 50 deletions(-)
 delete mode 100644 src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py

diff --git a/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py b/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py
deleted file mode 100644
index ad29e57d0..000000000
--- a/src/registrar/migrations/0141_domainrequest_feb_naming_requirements_and_more.py
+++ /dev/null
@@ -1,50 +0,0 @@
-# Generated by Django 4.2.17 on 2025-03-10 19:55
-
-from django.db import migrations, models
-
-
-class Migration(migrations.Migration):
-
-    dependencies = [
-        ("registrar", "0140_alter_portfolioinvitation_additional_permissions_and_more"),
-    ]
-
-    operations = [
-        migrations.AddField(
-            model_name="domainrequest",
-            name="feb_naming_requirements",
-            field=models.BooleanField(blank=True, null=True),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="feb_naming_requirements_details",
-            field=models.TextField(blank=True, null=True),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="feb_purpose_choice",
-            field=models.CharField(
-                blank=True, choices=[("website", "Website"), ("redirect", "Redirect"), ("other", "Other")], null=True
-            ),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="has_timeframe",
-            field=models.BooleanField(blank=True, null=True),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="interagency_initiative_details",
-            field=models.TextField(blank=True, null=True),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="is_interagency_initiative",
-            field=models.BooleanField(blank=True, null=True),
-        ),
-        migrations.AddField(
-            model_name="domainrequest",
-            name="time_frame_details",
-            field=models.TextField(blank=True, null=True),
-        ),
-    ]

From 0dd3aa5433d626543138f9456d9b98082f7e99f2 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Wed, 12 Mar 2025 10:58:51 -0500
Subject: [PATCH 65/70] minor import fix

---
 src/registrar/tests/test_forms.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/tests/test_forms.py b/src/registrar/tests/test_forms.py
index 03f20c862..1c8b127ae 100644
--- a/src/registrar/tests/test_forms.py
+++ b/src/registrar/tests/test_forms.py
@@ -17,7 +17,7 @@ from registrar.forms.domain_request_wizard import (
     AnythingElseForm,
     AboutYourOrganizationForm,
 )
-from registrar.forms.domainrequestwizard.purpose import PurposeDetailsForm
+from registrar.forms import PurposeDetailsForm
 
 from registrar.forms.domain import ContactForm
 from registrar.forms.portfolio import (

From 585569a006420b713f416c88a5402645b38ca514 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Wed, 12 Mar 2025 10:29:38 -0600
Subject: [PATCH 66/70] bug fix

---
 src/registrar/forms/portfolio.py              | 10 +++-
 .../models/utility/portfolio_helper.py        | 60 +++++++++++++++----
 2 files changed, 57 insertions(+), 13 deletions(-)

diff --git a/src/registrar/forms/portfolio.py b/src/registrar/forms/portfolio.py
index b83e718cb..2ee174050 100644
--- a/src/registrar/forms/portfolio.py
+++ b/src/registrar/forms/portfolio.py
@@ -22,6 +22,7 @@ from registrar.models.utility.portfolio_helper import (
     get_domains_display,
     get_members_description_display,
     get_members_display,
+    get_portfolio_invitation_associations,
 )
 
 logger = logging.getLogger(__name__)
@@ -459,7 +460,14 @@ class PortfolioNewMemberForm(BasePortfolioMemberForm):
             if hasattr(e, "code"):
                 field = "email" if "email" in self.fields else None
                 if e.code == "has_existing_permissions":
-                    self.add_error(field, f"{self.instance.email} is already a member of another .gov organization.")
+                    existing_permissions, existing_invitations = (
+                        get_portfolio_invitation_associations(self.instance)
+                    )
+
+                    same_portfolio_for_permissions = existing_permissions.exclude(portfolio=self.instance.portfolio)
+                    same_portfolio_for_invitations = existing_invitations.exclude(portfolio=self.instance.portfolio)
+                    if same_portfolio_for_permissions.exists() or same_portfolio_for_invitations.exists():
+                        self.add_error(field, f"{self.instance.email} is already a member of another .gov organization.")
                     override_error = True
                 elif e.code == "has_existing_invitations":
                     self.add_error(
diff --git a/src/registrar/models/utility/portfolio_helper.py b/src/registrar/models/utility/portfolio_helper.py
index 009ea3c26..707dfcf54 100644
--- a/src/registrar/models/utility/portfolio_helper.py
+++ b/src/registrar/models/utility/portfolio_helper.py
@@ -286,8 +286,8 @@ def validate_user_portfolio_permission(user_portfolio_permission):
 
     # == Validate the multiple_porfolios flag. == #
     if not flag_is_active_for_user(user_portfolio_permission.user, "multiple_portfolios"):
-        existing_permissions = UserPortfolioPermission.objects.exclude(id=user_portfolio_permission.id).filter(
-            user=user_portfolio_permission.user
+        existing_permissions, existing_invitations = (
+            get_user_portfolio_permission_associations(user_portfolio_permission)
         )
         if existing_permissions.exists():
             raise ValidationError(
@@ -296,10 +296,6 @@ def validate_user_portfolio_permission(user_portfolio_permission):
                 code="has_existing_permissions",
             )
 
-        existing_invitations = PortfolioInvitation.objects.filter(email=user_portfolio_permission.user.email).exclude(
-            Q(portfolio=user_portfolio_permission.portfolio)
-            | Q(status=PortfolioInvitation.PortfolioInvitationStatus.RETRIEVED)
-        )
         if existing_invitations.exists():
             raise ValidationError(
                 "This user is already assigned to a portfolio invitation. "
@@ -307,6 +303,29 @@ def validate_user_portfolio_permission(user_portfolio_permission):
                 code="has_existing_invitations",
             )
 
+def get_user_portfolio_permission_associations(user_portfolio_permission):
+    """
+    Retrieves the associations for a user portfolio invitation.
+
+    Returns:
+      A tuple:
+        (existing_permissions, existing_invitations)
+      where:
+        - existing_permissions: UserPortfolioPermission objects excluding the current permission.
+        - existing_invitations: PortfolioInvitation objects for the user email excluding 
+        the current invitation and those with status RETRIEVED.
+    """
+    PortfolioInvitation = apps.get_model("registrar.PortfolioInvitation")
+    UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
+    existing_permissions = UserPortfolioPermission.objects.exclude(id=user_portfolio_permission.id).filter(
+        user=user_portfolio_permission.user
+    )
+    existing_invitations = PortfolioInvitation.objects.filter(email__iexact=user_portfolio_permission.user.email).exclude(
+        Q(portfolio=user_portfolio_permission.portfolio)
+        | Q(status=PortfolioInvitation.PortfolioInvitationStatus.RETRIEVED)
+    )
+    return (existing_permissions, existing_invitations)
+
 
 def validate_portfolio_invitation(portfolio_invitation):
     """
@@ -351,17 +370,14 @@ def validate_portfolio_invitation(portfolio_invitation):
         )
 
     # == Validate the multiple_porfolios flag. == #
-    user = User.objects.filter(email=portfolio_invitation.email).first()
+    user = User.objects.filter(email__iexact=portfolio_invitation.email).first()
 
     # If user returns None, then we check for global assignment of multiple_portfolios.
     # Otherwise we just check on the user.
     if not flag_is_active_for_user(user, "multiple_portfolios"):
-        existing_permissions = UserPortfolioPermission.objects.filter(user=user)
-
-        existing_invitations = PortfolioInvitation.objects.filter(email=portfolio_invitation.email).exclude(
-            Q(id=portfolio_invitation.id) | Q(status=PortfolioInvitation.PortfolioInvitationStatus.RETRIEVED)
+        existing_permissions, existing_invitations = (
+            get_portfolio_invitation_associations(portfolio_invitation)
         )
-
         if existing_permissions.exists():
             raise ValidationError(
                 "This user is already assigned to a portfolio. "
@@ -376,6 +392,26 @@ def validate_portfolio_invitation(portfolio_invitation):
                 code="has_existing_invitations",
             )
 
+def get_portfolio_invitation_associations(portfolio_invitation):
+    """
+    Retrieves the associations for a portfolio invitation.
+
+    Returns:
+      A tuple:
+        (existing_permissions, existing_invitations)
+      where:
+        - existing_permissions: UserPortfolioPermission objects matching the email.
+        - existing_invitations: PortfolioInvitation objects for the email excluding 
+        the current invitation and those with status RETRIEVED.
+    """
+    PortfolioInvitation = apps.get_model("registrar.PortfolioInvitation")
+    UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
+    existing_permissions = UserPortfolioPermission.objects.filter(user__email__iexact=portfolio_invitation.email)
+    existing_invitations = PortfolioInvitation.objects.filter(email__iexact=portfolio_invitation.email).exclude(
+        Q(id=portfolio_invitation.id) | Q(status=PortfolioInvitation.PortfolioInvitationStatus.RETRIEVED)
+    )
+    return (existing_permissions, existing_invitations)
+
 
 def cleanup_after_portfolio_member_deletion(portfolio, email, user=None):
     """

From beb4e722b377c3297ad5f0d142e4a98597dac07d Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Wed, 12 Mar 2025 15:44:57 -0600
Subject: [PATCH 67/70] Fix unrelated test failure

---
 src/registrar/forms/portfolio.py               |  8 ++++----
 .../models/utility/portfolio_helper.py         | 18 ++++++++++--------
 src/registrar/tests/test_views_portfolio.py    |  8 +++++---
 3 files changed, 19 insertions(+), 15 deletions(-)

diff --git a/src/registrar/forms/portfolio.py b/src/registrar/forms/portfolio.py
index 2ee174050..db1f58d88 100644
--- a/src/registrar/forms/portfolio.py
+++ b/src/registrar/forms/portfolio.py
@@ -460,14 +460,14 @@ class PortfolioNewMemberForm(BasePortfolioMemberForm):
             if hasattr(e, "code"):
                 field = "email" if "email" in self.fields else None
                 if e.code == "has_existing_permissions":
-                    existing_permissions, existing_invitations = (
-                        get_portfolio_invitation_associations(self.instance)
-                    )
+                    existing_permissions, existing_invitations = get_portfolio_invitation_associations(self.instance)
 
                     same_portfolio_for_permissions = existing_permissions.exclude(portfolio=self.instance.portfolio)
                     same_portfolio_for_invitations = existing_invitations.exclude(portfolio=self.instance.portfolio)
                     if same_portfolio_for_permissions.exists() or same_portfolio_for_invitations.exists():
-                        self.add_error(field, f"{self.instance.email} is already a member of another .gov organization.")
+                        self.add_error(
+                            field, f"{self.instance.email} is already a member of another .gov organization."
+                        )
                     override_error = True
                 elif e.code == "has_existing_invitations":
                     self.add_error(
diff --git a/src/registrar/models/utility/portfolio_helper.py b/src/registrar/models/utility/portfolio_helper.py
index 707dfcf54..98be6cc87 100644
--- a/src/registrar/models/utility/portfolio_helper.py
+++ b/src/registrar/models/utility/portfolio_helper.py
@@ -286,8 +286,8 @@ def validate_user_portfolio_permission(user_portfolio_permission):
 
     # == Validate the multiple_porfolios flag. == #
     if not flag_is_active_for_user(user_portfolio_permission.user, "multiple_portfolios"):
-        existing_permissions, existing_invitations = (
-            get_user_portfolio_permission_associations(user_portfolio_permission)
+        existing_permissions, existing_invitations = get_user_portfolio_permission_associations(
+            user_portfolio_permission
         )
         if existing_permissions.exists():
             raise ValidationError(
@@ -303,6 +303,7 @@ def validate_user_portfolio_permission(user_portfolio_permission):
                 code="has_existing_invitations",
             )
 
+
 def get_user_portfolio_permission_associations(user_portfolio_permission):
     """
     Retrieves the associations for a user portfolio invitation.
@@ -312,7 +313,7 @@ def get_user_portfolio_permission_associations(user_portfolio_permission):
         (existing_permissions, existing_invitations)
       where:
         - existing_permissions: UserPortfolioPermission objects excluding the current permission.
-        - existing_invitations: PortfolioInvitation objects for the user email excluding 
+        - existing_invitations: PortfolioInvitation objects for the user email excluding
         the current invitation and those with status RETRIEVED.
     """
     PortfolioInvitation = apps.get_model("registrar.PortfolioInvitation")
@@ -320,7 +321,9 @@ def get_user_portfolio_permission_associations(user_portfolio_permission):
     existing_permissions = UserPortfolioPermission.objects.exclude(id=user_portfolio_permission.id).filter(
         user=user_portfolio_permission.user
     )
-    existing_invitations = PortfolioInvitation.objects.filter(email__iexact=user_portfolio_permission.user.email).exclude(
+    existing_invitations = PortfolioInvitation.objects.filter(
+        email__iexact=user_portfolio_permission.user.email
+    ).exclude(
         Q(portfolio=user_portfolio_permission.portfolio)
         | Q(status=PortfolioInvitation.PortfolioInvitationStatus.RETRIEVED)
     )
@@ -375,9 +378,7 @@ def validate_portfolio_invitation(portfolio_invitation):
     # If user returns None, then we check for global assignment of multiple_portfolios.
     # Otherwise we just check on the user.
     if not flag_is_active_for_user(user, "multiple_portfolios"):
-        existing_permissions, existing_invitations = (
-            get_portfolio_invitation_associations(portfolio_invitation)
-        )
+        existing_permissions, existing_invitations = get_portfolio_invitation_associations(portfolio_invitation)
         if existing_permissions.exists():
             raise ValidationError(
                 "This user is already assigned to a portfolio. "
@@ -392,6 +393,7 @@ def validate_portfolio_invitation(portfolio_invitation):
                 code="has_existing_invitations",
             )
 
+
 def get_portfolio_invitation_associations(portfolio_invitation):
     """
     Retrieves the associations for a portfolio invitation.
@@ -401,7 +403,7 @@ def get_portfolio_invitation_associations(portfolio_invitation):
         (existing_permissions, existing_invitations)
       where:
         - existing_permissions: UserPortfolioPermission objects matching the email.
-        - existing_invitations: PortfolioInvitation objects for the email excluding 
+        - existing_invitations: PortfolioInvitation objects for the email excluding
         the current invitation and those with status RETRIEVED.
     """
     PortfolioInvitation = apps.get_model("registrar.PortfolioInvitation")
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 2065c2d35..bb99e875f 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -3930,17 +3930,19 @@ class TestPortfolioInviteNewMemberView(MockEppLib, WebTest):
         response = self.client.post(
             reverse("new-member"),
             {
-                "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER.value,
-                "domain_request_permission_member": UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS.value,
+                "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
                 "email": self.user.email,
             },
+            follow=True
         )
         self.assertEqual(response.status_code, 200)
+        with open("debug_response.html", "w") as f:
+            f.write(response.content.decode('utf-8'))
 
         # Verify messages
         self.assertContains(
             response,
-            f"{self.user.email} is already a member of another .gov organization.",
+            "User is already a member of this portfolio.",
         )
 
         # Validate Database has not changed

From 98de052c2ecf748b58c54af1c5dd957a80df3063 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Thu, 13 Mar 2025 08:30:58 -0600
Subject: [PATCH 68/70] linting

---
 src/registrar/models/utility/portfolio_helper.py | 4 ----
 src/registrar/tests/test_views_portfolio.py      | 4 ++--
 2 files changed, 2 insertions(+), 6 deletions(-)

diff --git a/src/registrar/models/utility/portfolio_helper.py b/src/registrar/models/utility/portfolio_helper.py
index 98be6cc87..669985725 100644
--- a/src/registrar/models/utility/portfolio_helper.py
+++ b/src/registrar/models/utility/portfolio_helper.py
@@ -257,9 +257,6 @@ def validate_user_portfolio_permission(user_portfolio_permission):
     Raises:
         ValidationError: If any of the validation rules are violated.
     """
-    PortfolioInvitation = apps.get_model("registrar.PortfolioInvitation")
-    UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
-
     has_portfolio = bool(user_portfolio_permission.portfolio_id)
     portfolio_permissions = set(user_portfolio_permission._get_portfolio_permissions())
 
@@ -346,7 +343,6 @@ def validate_portfolio_invitation(portfolio_invitation):
     Raises:
         ValidationError: If any of the validation rules are violated.
     """
-    PortfolioInvitation = apps.get_model("registrar.PortfolioInvitation")
     UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
     User = get_user_model()
 
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index bb99e875f..13a7a3bc6 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -3933,11 +3933,11 @@ class TestPortfolioInviteNewMemberView(MockEppLib, WebTest):
                 "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
                 "email": self.user.email,
             },
-            follow=True
+            follow=True,
         )
         self.assertEqual(response.status_code, 200)
         with open("debug_response.html", "w") as f:
-            f.write(response.content.decode('utf-8'))
+            f.write(response.content.decode("utf-8"))
 
         # Verify messages
         self.assertContains(

From 9362de496761fccdd92dde7dca80e3eea5d4d773 Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Fri, 14 Mar 2025 08:51:03 -0600
Subject: [PATCH 69/70] Fix bug and add unit test

---
 src/registrar/admin.py                      |  4 +--
 src/registrar/tests/test_views_portfolio.py | 40 +++++++++++++++++++++
 src/registrar/views/portfolios.py           |  2 +-
 3 files changed, 43 insertions(+), 3 deletions(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 09d0eaa81..28f5abf57 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -1846,7 +1846,7 @@ class PortfolioInvitationAdmin(BaseInvitationAdmin):
                 requested_user = get_requested_user(requested_email)
 
                 permission_exists = UserPortfolioPermission.objects.filter(
-                    user__email=requested_email, portfolio=portfolio, user__email__isnull=False
+                    user__email__iexact=requested_email, portfolio=portfolio, user__email__isnull=False
                 ).exists()
                 if not permission_exists:
                     # if permission does not exist for a user with requested_email, send email
@@ -1857,7 +1857,7 @@ class PortfolioInvitationAdmin(BaseInvitationAdmin):
                         is_admin_invitation=is_admin_invitation,
                     ):
                         messages.warning(
-                            self.request, "Could not send email notification to existing organization admins."
+                            request, "Could not send email notification to existing organization admins."
                         )
                     # if user exists for email, immediately retrieve portfolio invitation upon creation
                     if requested_user is not None:
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 13a7a3bc6..114c066b3 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -3952,6 +3952,46 @@ class TestPortfolioInviteNewMemberView(MockEppLib, WebTest):
         # assert that send_portfolio_invitation_email is not called
         mock_send_email.assert_not_called()
 
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_members", active=True)
+    @patch("registrar.views.portfolios.send_portfolio_invitation_email")
+    def test_member_invite_for_existing_member_uppercase(self, mock_send_email):
+        """Tests the member invitation flow for existing portfolio member with a different case."""
+        self.client.force_login(self.user)
+
+        # Simulate a session to ensure continuity
+        session_id = self.client.session.session_key
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+
+        invite_count_before = PortfolioInvitation.objects.count()
+
+        # Simulate submission of member invite for user who has already been invited
+        response = self.client.post(
+            reverse("new-member"),
+            {
+                "role": UserPortfolioRoleChoices.ORGANIZATION_ADMIN,
+                "email": self.user.email.upper(),
+            },
+            follow=True,
+        )
+        self.assertEqual(response.status_code, 200)
+        with open("debug_response.html", "w") as f:
+            f.write(response.content.decode("utf-8"))
+
+        # Verify messages
+        self.assertContains(
+            response,
+            "User is already a member of this portfolio.",
+        )
+
+        # Validate Database has not changed
+        invite_count_after = PortfolioInvitation.objects.count()
+        self.assertEqual(invite_count_after, invite_count_before)
+
+        # assert that send_portfolio_invitation_email is not called
+        mock_send_email.assert_not_called()
+
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index c2ec44b9e..7fa421eaa 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -970,7 +970,7 @@ class PortfolioAddMemberView(DetailView, FormMixin):
         portfolio = form.cleaned_data["portfolio"]
         is_admin_invitation = UserPortfolioRoleChoices.ORGANIZATION_ADMIN in form.cleaned_data["roles"]
 
-        requested_user = User.objects.filter(email=requested_email).first()
+        requested_user = User.objects.filter(email__iexact=requested_email).first()
         permission_exists = UserPortfolioPermission.objects.filter(user=requested_user, portfolio=portfolio).exists()
         try:
             if not requested_user or not permission_exists:

From 127eb38259e478032b2e0de5a36d5a37d3f637ee Mon Sep 17 00:00:00 2001
From: zandercymatics <141044360+zandercymatics@users.noreply.github.com>
Date: Fri, 14 Mar 2025 13:28:05 -0600
Subject: [PATCH 70/70] lint

---
 src/registrar/admin.py | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 28f5abf57..343624915 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -1856,9 +1856,7 @@ class PortfolioInvitationAdmin(BaseInvitationAdmin):
                         portfolio=portfolio,
                         is_admin_invitation=is_admin_invitation,
                     ):
-                        messages.warning(
-                            request, "Could not send email notification to existing organization admins."
-                        )
+                        messages.warning(request, "Could not send email notification to existing organization admins.")
                     # if user exists for email, immediately retrieve portfolio invitation upon creation
                     if requested_user is not None:
                         obj.retrieve()