From d84a7890224ca1ec52c2e5097e8c0c1104589cdd Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Thu, 26 Dec 2024 17:10:37 -0800
Subject: [PATCH 01/68] Renewal form

---
 src/registrar/config/urls.py                 |  5 ++
 src/registrar/fixtures/fixtures_domains.py   |  2 +-
 src/registrar/models/domain.py               |  5 ++
 src/registrar/templates/domain_base.html     |  9 +-
 src/registrar/templates/domain_detail.html   |  4 +-
 src/registrar/templates/domain_sidebar.html  | 10 ++-
 src/registrar/templatetags/custom_filters.py |  1 +
 src/registrar/views/__init__.py              |  1 +
 src/registrar/views/domain.py                | 92 ++++++++++++++++++--
 9 files changed, 117 insertions(+), 12 deletions(-)

diff --git a/src/registrar/config/urls.py b/src/registrar/config/urls.py
index 66708c571..2bf7b9e5f 100644
--- a/src/registrar/config/urls.py
+++ b/src/registrar/config/urls.py
@@ -345,6 +345,11 @@ urlpatterns = [
         views.DomainSecurityEmailView.as_view(),
         name="domain-security-email",
     ),
+    path(
+        "domain/<int:pk>/renewal",
+        views.DomainRenewalView.as_view(),
+        name="domain-renewal",
+    ),
     path(
         "domain/<int:pk>/users/add",
         views.DomainAddUserView.as_view(),
diff --git a/src/registrar/fixtures/fixtures_domains.py b/src/registrar/fixtures/fixtures_domains.py
index 4606024d0..4d4115180 100644
--- a/src/registrar/fixtures/fixtures_domains.py
+++ b/src/registrar/fixtures/fixtures_domains.py
@@ -44,7 +44,7 @@ class DomainFixture(DomainRequestFixture):
             cls._approve_domain_requests(users)
 
     @staticmethod
-    def _generate_fake_expiration_date(days_in_future=365):
+    def _generate_fake_expiration_date(days_in_future=40):
         """Generates a fake expiration date between 1 and 365 days in the future."""
         current_date = timezone.now().date()  # nosec
         return current_date + timedelta(days=random.randint(1, days_in_future))  # nosec
diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index 6eb2fac07..3fa6a61b2 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -1167,6 +1167,11 @@ class Domain(TimeStampedModel, DomainHelper):
         threshold_date = now + timedelta(days=60)
         return now < self.expiration_date <= threshold_date
 
+    ###dummy method for testing for domain renewal form fail or success banner
+
+    def update_expiration(self, success=True):
+        return success
+
     def state_display(self, request=None):
         """Return the display status of the domain."""
         if self.is_expired() and (self.state != self.State.UNKNOWN):
diff --git a/src/registrar/templates/domain_base.html b/src/registrar/templates/domain_base.html
index 9f7e8d2e6..de8e88791 100644
--- a/src/registrar/templates/domain_base.html
+++ b/src/registrar/templates/domain_base.html
@@ -1,5 +1,7 @@
 {% extends "base.html" %}
 {% load static %}
+{% load static url_helpers %}
+
 
 {% block title %}{{ domain.name }} | {% endblock %}
 
@@ -53,8 +55,11 @@
         {% endif %}
 
         {% block domain_content %}
-
+        {% if request.path|endswith:"renewal"%}
+        <h1>Renew {{domain.name}} </h1>
+        {%else%}
         <h1 class="break-word">Domain Overview</h1>
+        {% endif%}
 
         {% endblock %}  {# domain_content #}
       {% endif %}
@@ -62,4 +67,4 @@
     </div>
   </div>
 </div>
-{% endblock %}  {# content #}
+{% endblock %}  {# content #}
\ No newline at end of file
diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index a5b8e52cb..b168f7e82 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -50,7 +50,9 @@
           {% if domain.get_state_help_text %}
             <div class="padding-top-1 text-primary-darker">
               {% if has_domain_renewal_flag and domain.is_expiring and is_domain_manager %}
-                This domain will expire soon. <a href="/not-available-yet">Renew to maintain access.</a>
+                This domain will expire soon. 
+                {% url 'domain-renewal' pk=domain.id as url %}
+                <a href="{{ url }}">Renew to maintain access.</a>
               {% elif has_domain_renewal_flag and domain.is_expiring and is_portfolio_user %}
                 This domain will expire soon. Contact one of the listed domain managers to renew the domain.
               {% else %}
diff --git a/src/registrar/templates/domain_sidebar.html b/src/registrar/templates/domain_sidebar.html
index 289f544ce..dc97f5ca1 100644
--- a/src/registrar/templates/domain_sidebar.html
+++ b/src/registrar/templates/domain_sidebar.html
@@ -79,8 +79,14 @@
       {% with url_name="domain-users" %}
         {% include "includes/domain_sidenav_item.html" with item_text="Domain managers" %}
       {% endwith %}
-
+      
+      {% if has_domain_renewal_flag and is_domain_manager and domain.is_expiring %}
+        {% with url_name="domain-renewal" %}
+          {% include "includes/domain_sidenav_item.html" with item_text="Renewal form" %}
+        {% endwith %}
+      {% endif %}
+      
       {% endif %}
     </ul>
   </nav>
-</div>
+</div>
\ No newline at end of file
diff --git a/src/registrar/templatetags/custom_filters.py b/src/registrar/templatetags/custom_filters.py
index 6140130c8..6f3894ea5 100644
--- a/src/registrar/templatetags/custom_filters.py
+++ b/src/registrar/templatetags/custom_filters.py
@@ -200,6 +200,7 @@ def is_domain_subpage(path):
         "domain-users-add",
         "domain-request-delete",
         "domain-user-delete",
+        "domain-renewal",
         "invitation-cancel",
     ]
     return get_url_name(path) in url_names
diff --git a/src/registrar/views/__init__.py b/src/registrar/views/__init__.py
index a80b16b1a..4e3faced1 100644
--- a/src/registrar/views/__init__.py
+++ b/src/registrar/views/__init__.py
@@ -14,6 +14,7 @@ from .domain import (
     DomainInvitationCancelView,
     DomainDeleteUserView,
     PrototypeDomainDNSRecordView,
+    DomainRenewalView,
 )
 from .user_profile import UserProfileView, FinishProfileSetupView
 from .health import *
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index cb3da1f83..99a173517 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -12,7 +12,7 @@ from django.contrib import messages
 from django.contrib.messages.views import SuccessMessageMixin
 from django.db import IntegrityError
 from django.http import HttpResponseRedirect
-from django.shortcuts import redirect
+from django.shortcuts import redirect, render
 from django.urls import reverse
 from django.views.generic.edit import FormMixin
 from django.conf import settings
@@ -307,6 +307,90 @@ class DomainView(DomainBaseView):
         self._update_session_with_domain()
 
 
+class DomainRenewalView(DomainBaseView):
+    """Domain detail overview page."""
+
+    template_name = "domain_renewal.html"
+
+    def get_context_data(self, **kwargs):
+        context = super().get_context_data(**kwargs)
+
+        default_emails = [DefaultEmail.PUBLIC_CONTACT_DEFAULT.value, DefaultEmail.LEGACY_DEFAULT.value]
+        context["hidden_security_emails"] = default_emails
+
+        security_email = self.object.get_security_email()
+        user = self.request.user
+        if security_email is None or security_email in default_emails:
+            context["security_email"] = None
+        context["user"] = user
+        return context
+
+    def can_access_domain_via_portfolio(self, pk):
+        """Most views should not allow permission to portfolio users.
+        If particular views allow permissions, they will need to override
+        this function."""
+        portfolio = self.request.session.get("portfolio")
+        if self.request.user.has_any_domains_portfolio_permission(portfolio):
+            if Domain.objects.filter(id=pk).exists():
+                domain = Domain.objects.get(id=pk)
+                if domain.domain_info.portfolio == portfolio:
+                    return True
+        return False
+
+    def in_editable_state(self, pk):
+        """Override in_editable_state from DomainPermission
+        Allow detail page to be viewable"""
+
+        requested_domain = None
+        if Domain.objects.filter(id=pk).exists():
+            requested_domain = Domain.objects.get(id=pk)
+
+        # return true if the domain exists, this will allow the detail page to load
+        if requested_domain:
+            return True
+        return False
+
+    def _get_domain(self, request):
+        """
+        override get_domain for this view so that domain overview
+        always resets the cache for the domain object
+        """
+        self.session = request.session
+        self.object = self.get_object()
+        self._update_session_with_domain()
+
+    def post(self, request, pk):
+        domain = Domain.objects.filter(id=pk).first()
+
+        # Check if the checkbox is checked
+        is_policy_acknowledged = request.POST.get("is_policy_acknowledged", None)
+        if is_policy_acknowledged != "on":
+            print("!!! Checkbox is NOT acknowledged")
+            messages.error(
+                request, "Check the box if you read and agree to the requirements for operating a .gov domain."
+            )
+            return render(
+                request,
+                "domain_renewal.html",
+                {
+                    "domain": domain,
+                    "form": request.POST,
+                },
+            )
+
+        print("*** Checkbox is acknowledged")
+        if "submit_button" in request.POST:
+            print("*** Submit button clicked")
+            updated_expiration = domain.update_expiration(success=True)
+            print("*** Updated expiration result:", updated_expiration)
+
+            if updated_expiration is True:
+                messages.success(request, "This domain has been renewed for one year")
+            else:
+                messages.error(request, "This domain has not been renewed")
+        return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
+
+
 class DomainOrgNameAddressView(DomainFormBaseView):
     """Organization view"""
 
@@ -807,11 +891,7 @@ class DomainDNSSECView(DomainFormBaseView):
         has_dnssec_records = self.object.dnssecdata is not None
 
         # Create HTML for the modal button
-        modal_button = (
-            '<button type="submit" '
-            'class="usa-button usa-button--secondary" '
-            'name="disable_dnssec">Confirm</button>'
-        )
+        modal_button = '<button type="submit" ' 'name="disable_dnssec">Confirm</button>'
 
         context["modal_button"] = modal_button
         context["has_dnssec_records"] = has_dnssec_records

From b5658a357b6aa9b49c7c37393ae1f8893dbebbeb Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Thu, 26 Dec 2024 17:15:07 -0800
Subject: [PATCH 02/68] Fix linter

---
 src/registrar/models/domain.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index 3fa6a61b2..715f1b9da 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -1167,7 +1167,7 @@ class Domain(TimeStampedModel, DomainHelper):
         threshold_date = now + timedelta(days=60)
         return now < self.expiration_date <= threshold_date
 
-    ###dummy method for testing for domain renewal form fail or success banner
+    # Dummy method for testing for domain renewal form fail or success banner
 
     def update_expiration(self, success=True):
         return success

From 8b9eb93b682a3f8b714c42558b90db6b94bc7c57 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Mon, 30 Dec 2024 11:07:33 -0500
Subject: [PATCH 03/68] added back domain renewal form

---
 src/registrar/templates/domain_renewal.html | 127 ++++++++++++++++++++
 1 file changed, 127 insertions(+)
 create mode 100644 src/registrar/templates/domain_renewal.html

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
new file mode 100644
index 000000000..c179941d6
--- /dev/null
+++ b/src/registrar/templates/domain_renewal.html
@@ -0,0 +1,127 @@
+{% extends "domain_base.html" %}
+{% load static url_helpers %}
+{% load custom_filters %}
+
+{% block domain_content %}
+  {% block breadcrumb %}
+  {% if portfolio %}
+  <!-- Navigation breadcrumbs -->
+  <nav class="usa-breadcrumb padding-top-0" aria-label="Domain breadcrumb">
+    <ol class="usa-breadcrumb__list">
+      <li class="usa-breadcrumb__list-item">
+        <a href="{% url 'domains' %}" class="usa-breadcrumb__link"><span>Domains</span></a>
+      </li>
+      <li class="usa-breadcrumb__list-item">
+        <a href="{% url 'domain' pk=domain.id %}" class="usa-breadcrumb__link"><span>{{domain.name}}</span></a>
+      </li>
+      <li class="usa-breadcrumb__list-item usa-current" aria-current="page">
+        <span>Renewal Form</span>
+      </li>
+
+    </ol>
+  </nav>
+  {% endif %}
+  {% endblock breadcrumb %}
+
+  {{ block.super }}
+  <div class="margin-top-4 tablet:grid-col-10">
+    <h2 class="text-bold text-primary-dark domain-name-wrap">Confirm the following information for accuracy</h2>
+    <p>Review these details below. We <a href="https://get.gov/domains/requirements/#what-.gov-domain-registrants-must-do" class="usa-link">
+      require</a> that you maintain accurate information for the domain.
+      The details you provide will only be used to support eh administration of .gov and won't be made public.
+    </p>
+    <p>If you would like to retire your domain instead, please <a href="https://get.gov/contact/" class="usa-link">
+      contact us</a>. </p>
+    <p><em>Required fields are marked with an asterisk (<abbr class="usa-hint usa-hint--required" title="required">*</abbr>).</em>
+    </p>
+    </div>
+
+    {% url 'user-profile' as url %}
+    {% include "includes/summary_item.html" with title='Your Contact Information' value=user edit_link=url editable=is_editable  contact='true' %}
+
+
+
+    {% if analyst_action != 'edit' or analyst_action_location != domain.pk %}
+      {% if is_portfolio_user and not is_domain_manager %}
+      <div class="usa-alert usa-alert--info usa-alert--slim">
+        <div class="usa-alert__body">
+          <p class="usa-alert__text ">
+            You don't have access to manage {{domain.name}}. If you need to make updates, contact one of the listed domain managers.
+          </p>
+        </div>
+      </div>
+      {% endif %}
+    {% endif %}
+
+    {% url 'domain-security-email' pk=domain.id as url %}
+    {% if security_email is not None and security_email not in hidden_security_emails%}
+      {% include "includes/summary_item.html" with title='Security email' value=security_email edit_link=url editable=is_editable %}
+    {% else %}
+      {% include "includes/summary_item.html" with title='Security email' value='None provided' edit_link=url editable=is_editable %}
+    {% endif %}
+    {% url 'domain-users' pk=domain.id as url %}
+    {% if portfolio %}
+      {% include "includes/summary_item.html" with title='Domain managers' domain_permissions=True value=domain edit_link=url editable=is_editable %}
+    {% else %}
+      {% include "includes/summary_item.html" with title='Domain managers' list=True users=True value=domain.permissions.all edit_link=url editable=is_editable %}
+    {% endif %}
+
+
+    <div class="border-top-1px border-primary-dark padding-top-1 margin-bottom-2">
+
+      <fieldset class="usa-fieldset">
+        <legend>
+          <h3 class="summary-item__title 
+          font-sans-md 
+          text-primary-dark 
+          text-semibold 
+          margin-top-0 
+          margin-bottom-05 
+          padding-right-1">
+          Acknowledgement of .gov domain requirements
+          </h3>          
+        </legend>
+
+        {% if messages %}
+          <ul class="messages"></ul>
+          {% for message in messages %}
+              <p class="usa-error-message">{{ message }}</p>
+          {% endfor %}
+        </ul>
+        {% endif %}
+
+
+  <form method="post" action="{% url 'domain-renewal' pk=domain.id %}"> 
+    {% csrf_token %}
+    <label>
+      <div class="usa-checkbox">
+        <input 
+          class="usa-checkbox__input" 
+          id="renewal-checkbox" 
+          type="checkbox" 
+          name="is_policy_acknowledged"
+          value="on"
+          {% if request.POST.is_policy_acknowledged %} checked {% endif %}
+          >
+          <label class="usa-checkbox__label" for="renewal-checkbox">
+            I read and agree to the 
+            <a href="https://get.gov/domains/requirements/" class="usa-link">
+              requirements for operating a .gov domain
+            </a>.
+            <abbr class="usa-hint usa-hint--required" title="required">*</abbr>
+          </label>
+      </div>
+    </fieldset>
+    </div>    
+   <button
+    type="submit"
+    name="submit_button"
+    value="next"
+    class="usa-button"
+    method="post"
+    >Submit</button>
+
+  </form>
+
+  </div>
+{% endblock %}  {# domain_content #}
\ No newline at end of file

From 19e5700a4db2dd3d46ab4490ec37911c0c678f14 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Mon, 30 Dec 2024 09:05:40 -0800
Subject: [PATCH 04/68] Add in the domain renewal template oops

---
 src/registrar/templates/domain_renewal.html | 127 ++++++++++++++++++++
 1 file changed, 127 insertions(+)
 create mode 100644 src/registrar/templates/domain_renewal.html

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
new file mode 100644
index 000000000..eda7a8bdd
--- /dev/null
+++ b/src/registrar/templates/domain_renewal.html
@@ -0,0 +1,127 @@
+{% extends "domain_base.html" %}
+{% load static url_helpers %}
+{% load custom_filters %}
+
+{% block domain_content %}
+  {% block breadcrumb %}
+  {% if portfolio %}
+  <!-- Navigation breadcrumbs -->
+  <nav class="usa-breadcrumb padding-top-0" aria-label="Domain breadcrumb">
+    <ol class="usa-breadcrumb__list">
+      <li class="usa-breadcrumb__list-item">
+        <a href="{% url 'domains' %}" class="usa-breadcrumb__link"><span>Domains</span></a>
+      </li>
+      <li class="usa-breadcrumb__list-item">
+        <a href="{% url 'domain' pk=domain.id %}" class="usa-breadcrumb__link"><span>{{domain.name}}</span></a>
+      </li>
+      <li class="usa-breadcrumb__list-item usa-current" aria-current="page">
+        <span>Renewal Form</span>
+      </li>
+
+    </ol>
+  </nav>
+  {% endif %}
+  {% endblock breadcrumb %}
+
+  {{ block.super }}
+  <div class="margin-top-4 tablet:grid-col-10">
+    <h2 class="text-bold text-primary-dark domain-name-wrap">Confirm the following information for accuracy</h2>
+    <p>Review these details below. We <a href="https://get.gov/domains/requirements/#what-.gov-domain-registrants-must-do" class="usa-link">
+      require</a> that you maintain accurate information for the domain.
+      The details you provide will only be used to support eh administration of .gov and won't be made public.
+    </p>
+    <p>If you would like to retire your domain instead, please <a href="https://get.gov/contact/" class="usa-link">
+      contact us</a>. </p>
+    <p><em>Required fields are marked with an asterisk (<abbr class="usa-hint usa-hint--required" title="required">*</abbr>).</em>
+    </p>
+    </div>
+
+    {% url 'user-profile' as url %}
+    {% include "includes/summary_item.html" with title='Your Contact Information' value=user edit_link=url editable=is_editable  contact='true' %}
+  
+
+
+    {% if analyst_action != 'edit' or analyst_action_location != domain.pk %}
+      {% if is_portfolio_user and not is_domain_manager %}
+      <div class="usa-alert usa-alert--info usa-alert--slim">
+        <div class="usa-alert__body">
+          <p class="usa-alert__text ">
+            You don't have access to manage {{domain.name}}. If you need to make updates, contact one of the listed domain managers.
+          </p>
+        </div>
+      </div>
+      {% endif %}
+    {% endif %}
+
+    {% url 'domain-security-email' pk=domain.id as url %}
+    {% if security_email is not None and security_email not in hidden_security_emails%}
+      {% include "includes/summary_item.html" with title='Security email' value=security_email edit_link=url editable=is_editable %}
+    {% else %}
+      {% include "includes/summary_item.html" with title='Security email' value='None provided' edit_link=url editable=is_editable %}
+    {% endif %}
+    {% url 'domain-users' pk=domain.id as url %}
+    {% if portfolio %}
+      {% include "includes/summary_item.html" with title='Domain managers' domain_permissions=True value=domain edit_link=url editable=is_editable %}
+    {% else %}
+      {% include "includes/summary_item.html" with title='Domain managers' list=True users=True value=domain.permissions.all edit_link=url editable=is_editable %}
+    {% endif %}
+
+        
+    <div class="border-top-1px border-primary-dark padding-top-1 margin-bottom-2">
+
+      <fieldset class="usa-fieldset">
+        <legend>
+          <h3 class="summary-item__title 
+          font-sans-md 
+          text-primary-dark 
+          text-semibold 
+          margin-top-0 
+          margin-bottom-05 
+          padding-right-1">
+          Acknowledgement of .gov domain requirements
+          </h3>          
+        </legend>
+      
+        {% if messages %}
+          <ul class="messages"></ul>
+          {% for message in messages %}
+              <p class="usa-error-message">{{ message }}</p>
+          {% endfor %}
+        </ul>
+        {% endif %}
+      
+        
+  <form method="post" action="{% url 'domain-renewal' pk=domain.id %}"> 
+    {% csrf_token %}
+    <label>
+      <div class="usa-checkbox">
+        <input 
+          class="usa-checkbox__input" 
+          id="renewal-checkbox" 
+          type="checkbox" 
+          name="is_policy_acknowledged"
+          value="on"
+          {% if request.POST.is_policy_acknowledged %} checked {% endif %}
+          >
+          <label class="usa-checkbox__label" for="renewal-checkbox">
+            I read and agree to the 
+            <a href="https://get.gov/domains/requirements/" class="usa-link">
+              requirements for operating a .gov domain
+            </a>.
+            <abbr class="usa-hint usa-hint--required" title="required">*</abbr>
+          </label>
+      </div>
+    </fieldset>
+    </div>    
+   <button
+    type="submit"
+    name="submit_button"
+    value="next"
+    class="usa-button"
+    method="post"
+    >Submit</button>
+
+  </form>
+
+  </div>
+{% endblock %}  {# domain_content #}
\ No newline at end of file

From e23d81f7e7d4096e76450b0cca84908846484872 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Mon, 30 Dec 2024 12:44:52 -0500
Subject: [PATCH 05/68] added renew method

---
 src/registrar/models/domain.py |  6 +++++-
 src/registrar/views/domain.py  | 11 ++++++-----
 2 files changed, 11 insertions(+), 6 deletions(-)

diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index 715f1b9da..e170c8668 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -322,28 +322,32 @@ class Domain(TimeStampedModel, DomainHelper):
         """
 
         # If no date is specified, grab the registry_expiration_date
+        print("checking if there is a date")
         try:
             exp_date = self.registry_expiration_date
         except KeyError:
             # if no expiration date from registry, set it to today
             logger.warning("current expiration date not set; setting to today")
             exp_date = date.today()
-
+        print("we got the date", exp_date)
         # create RenewDomain request
         request = commands.RenewDomain(name=self.name, cur_exp_date=exp_date, period=epp.Period(length, unit))
 
         try:
             # update expiration date in registry, and set the updated
             # expiration date in the registrar, and in the cache
+            print("we are in the second try")
             self._cache["ex_date"] = registry.send(request, cleaned=True).res_data[0].ex_date
             self.expiration_date = self._cache["ex_date"]
             self.save()
         except RegistryError as err:
             # if registry error occurs, log the error, and raise it as well
+            print("registry error")
             logger.error(f"registry error renewing domain: {err}")
             raise (err)
         except Exception as e:
             # exception raised during the save to registrar
+            print("this is the last error")
             logger.error(f"error updating expiration date in registrar: {e}")
             raise (e)
 
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 99a173517..1c1996c65 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -381,12 +381,13 @@ class DomainRenewalView(DomainBaseView):
         print("*** Checkbox is acknowledged")
         if "submit_button" in request.POST:
             print("*** Submit button clicked")
-            updated_expiration = domain.update_expiration(success=True)
-            print("*** Updated expiration result:", updated_expiration)
-
-            if updated_expiration is True:
+            # updated_expiration = domain.update_expiration(success=True)
+            # print("*** Updated expiration result:", updated_expiration)
+            try:
+                domain.renew_domain()
                 messages.success(request, "This domain has been renewed for one year")
-            else:
+            except Exception as e:
+                print(f'An error occured: {e}')
                 messages.error(request, "This domain has not been renewed")
         return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
 

From a128086d6f5e2cf51dda942dfc92c7dceb92a45d Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Tue, 31 Dec 2024 10:13:53 -0800
Subject: [PATCH 06/68] Update print statements and exp timing

---
 src/registrar/models/domain.py | 16 +++++++++-------
 src/registrar/views/domain.py  |  5 +++--
 2 files changed, 12 insertions(+), 9 deletions(-)

diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index e170c8668..b7145ec0c 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -322,32 +322,34 @@ class Domain(TimeStampedModel, DomainHelper):
         """
 
         # If no date is specified, grab the registry_expiration_date
-        print("checking if there is a date")
+        print("*** Checking if there is a date")
         try:
             exp_date = self.registry_expiration_date
         except KeyError:
             # if no expiration date from registry, set it to today
-            logger.warning("current expiration date not set; setting to today")
-            exp_date = date.today()
-        print("we got the date", exp_date)
+            logger.warning("*** Current expiration date not set; setting to 35 days ")
+            # exp_date = date.today()
+            exp_date = date.today() - timedelta(days=35)
+            print(exp_date)
+        print("*** The exp_date is", exp_date)
         # create RenewDomain request
         request = commands.RenewDomain(name=self.name, cur_exp_date=exp_date, period=epp.Period(length, unit))
 
         try:
             # update expiration date in registry, and set the updated
             # expiration date in the registrar, and in the cache
-            print("we are in the second try")
+            print("** In renew_domain in 2nd try statement")
             self._cache["ex_date"] = registry.send(request, cleaned=True).res_data[0].ex_date
             self.expiration_date = self._cache["ex_date"]
             self.save()
         except RegistryError as err:
             # if registry error occurs, log the error, and raise it as well
-            print("registry error")
+            print("*** Registry error")
             logger.error(f"registry error renewing domain: {err}")
             raise (err)
         except Exception as e:
             # exception raised during the save to registrar
-            print("this is the last error")
+            print("*** In renew_domain, in the last Exception statement")
             logger.error(f"error updating expiration date in registrar: {e}")
             raise (e)
 
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 1c1996c65..dd8e9928b 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -384,11 +384,12 @@ class DomainRenewalView(DomainBaseView):
             # updated_expiration = domain.update_expiration(success=True)
             # print("*** Updated expiration result:", updated_expiration)
             try:
+                print("*** Did we get into the try statement")
                 domain.renew_domain()
                 messages.success(request, "This domain has been renewed for one year")
             except Exception as e:
-                print(f'An error occured: {e}')
-                messages.error(request, "This domain has not been renewed")
+                print(f"An error occured: {e}")
+                messages.error(request, "*** This domain has not been renewed")
         return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
 
 

From c145ecbfa29d925af2806343eb8d8534677d8ac5 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Tue, 31 Dec 2024 13:55:18 -0500
Subject: [PATCH 07/68] put back the fixtures command

---
 src/registrar/fixtures/fixtures_domains.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/fixtures/fixtures_domains.py b/src/registrar/fixtures/fixtures_domains.py
index 4d4115180..4606024d0 100644
--- a/src/registrar/fixtures/fixtures_domains.py
+++ b/src/registrar/fixtures/fixtures_domains.py
@@ -44,7 +44,7 @@ class DomainFixture(DomainRequestFixture):
             cls._approve_domain_requests(users)
 
     @staticmethod
-    def _generate_fake_expiration_date(days_in_future=40):
+    def _generate_fake_expiration_date(days_in_future=365):
         """Generates a fake expiration date between 1 and 365 days in the future."""
         current_date = timezone.now().date()  # nosec
         return current_date + timedelta(days=random.randint(1, days_in_future))  # nosec

From e5f9696bac942a946c92430ff36dc6eba489b608 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Fri, 3 Jan 2025 10:43:35 -0500
Subject: [PATCH 08/68] added tests

---
 src/registrar/tests/test_views_domain.py | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index ba237e1e7..767445810 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -529,6 +529,21 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             )
             self.assertContains(detail_page, "Renew to maintain access")
 
+    @override_flag("domain_renewal", active=True)
+    def test_domain_renewal_sidebar_and_form(self):
+        self.client.force_login(self.user)
+        with patch.object(Domain, "is_expiring", self.custom_is_expiring), patch.object(
+            Domain, "is_expired", self.custom_is_expired
+        ):
+            detail_page = self.client.get(
+                reverse("domain", kwargs={"pk": self.expiringdomain.id}),
+            )
+            self.assertContains(detail_page, "Renewal form")
+            response = self.client.get(reverse("domain-renewal",kwargs={"pk": self.expiringdomain.id}))
+            self.assertEqual(response.status_code, 200)
+            self.assertContains(response, f"Renew {self.expiringdomain.name}")
+            
+
 
 class TestDomainManagers(TestDomainOverview):
     @classmethod

From 4feb29b269a39417e35fae2589b7026fbee757c3 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Fri, 3 Jan 2025 10:47:42 -0800
Subject: [PATCH 09/68] Add in tests for making edit is clickable and goes to
 right route

---
 src/registrar/tests/test_views_domain.py | 57 +++++++++++++++++++++++-
 1 file changed, 55 insertions(+), 2 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 767445810..281b7291e 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -539,10 +539,63 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
                 reverse("domain", kwargs={"pk": self.expiringdomain.id}),
             )
             self.assertContains(detail_page, "Renewal form")
-            response = self.client.get(reverse("domain-renewal",kwargs={"pk": self.expiringdomain.id}))
+            response = self.client.get(reverse("domain-renewal", kwargs={"pk": self.expiringdomain.id}))
             self.assertEqual(response.status_code, 200)
             self.assertContains(response, f"Renew {self.expiringdomain.name}")
-            
+
+    @override_flag("domain_renewal", active=True)
+    def test_domain_renewal_form_your_contact_info_edit(self):
+        with less_console_noise():
+            # Start on the Renewal page for the domain
+            renewal_page = self.app.get(reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id}))
+
+            # Verify we see "Your Contact Information" on the renewal form
+            self.assertContains(renewal_page, "Your Contact Information")
+
+            # Verify that the "Edit" button for Your Contact is there and links to correct URL
+            edit_button_url = reverse("user-profile")
+            self.assertContains(renewal_page, f'href="{edit_button_url}"')
+
+            # Simulate clicking on edit button
+            edit_page = renewal_page.click(href=edit_button_url, index=1)
+            self.assertEqual(edit_page.status_code, 200)
+            self.assertContains(edit_page, "Review the details below and update any required information")
+
+    @override_flag("domain_renewal", active=True)
+    def test_domain_renewal_form_security_contact_edit(self):
+        with less_console_noise():
+            # Start on the Renewal page for the domain
+            renewal_page = self.app.get(reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id}))
+
+            # Verify we see "Security email" on the renewal form
+            self.assertContains(renewal_page, "Security email")
+
+            # Verify that the "Edit" button for Security email is there and links to correct URL
+            edit_button_url = reverse("domain-security-email", kwargs={"pk": self.domain_with_ip.id})
+            self.assertContains(renewal_page, f'href="{edit_button_url}"')
+
+            # Simulate clicking on edit button
+            edit_page = renewal_page.click(href=edit_button_url, index=1)
+            self.assertEqual(edit_page.status_code, 200)
+            self.assertContains(edit_page, "A security contact should be capable of evaluating")
+
+    @override_flag("domain_renewal", active=True)
+    def test_domain_renewal_form_domain_manager_edit(self):
+        with less_console_noise():
+            # Start on the Renewal page for the domain
+            renewal_page = self.app.get(reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id}))
+
+            # Verify we see "Domain managers" on the renewal form
+            self.assertContains(renewal_page, "Domain managers")
+
+            # Verify that the "Edit" button for Domain managers is there and links to correct URL
+            edit_button_url = reverse("domain-users", kwargs={"pk": self.domain_with_ip.id})
+            self.assertContains(renewal_page, f'href="{edit_button_url}"')
+
+            # Simulate clicking on edit button
+            edit_page = renewal_page.click(href=edit_button_url, index=1)
+            self.assertEqual(edit_page.status_code, 200)
+            self.assertContains(edit_page, "Domain managers can update all information related to a domain")
 
 
 class TestDomainManagers(TestDomainOverview):

From 3f3ba22a119db0568861440f88dc0632d2ae4bfd Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Fri, 3 Jan 2025 11:28:48 -0800
Subject: [PATCH 10/68] Update text to click on link

---
 src/registrar/tests/test_views_domain.py | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 281b7291e..02d7aa9ac 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -535,11 +535,24 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
         with patch.object(Domain, "is_expiring", self.custom_is_expiring), patch.object(
             Domain, "is_expired", self.custom_is_expired
         ):
+            # Grab the detail page
             detail_page = self.client.get(
                 reverse("domain", kwargs={"pk": self.expiringdomain.id}),
             )
+
+            # Make sure we see the link as a domain manager
+            self.assertContains(detail_page, "Renew to maintain access")
+
+            # Make sure we can see Renewal form on the sidebar since it's expiring
             self.assertContains(detail_page, "Renewal form")
-            response = self.client.get(reverse("domain-renewal", kwargs={"pk": self.expiringdomain.id}))
+
+            # Grab link to the renewal page
+            renewal_form_url = reverse("domain-renewal", kwargs={"pk": self.expiringdomain.id})
+            self.assertContains(detail_page, f'href="{renewal_form_url}"')
+
+            # Simulate clicking the link
+            response = self.client.get(renewal_form_url)
+
             self.assertEqual(response.status_code, 200)
             self.assertContains(response, f"Renew {self.expiringdomain.name}")
 

From dca70f4195237db300508421ecc59b0a43bab908 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Sat, 4 Jan 2025 14:17:55 -0800
Subject: [PATCH 11/68] Unit test for submit and recieving error message

---
 src/registrar/tests/test_views_domain.py | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 02d7aa9ac..50b8f31f6 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -9,6 +9,7 @@ from api.tests.common import less_console_noise_decorator
 from registrar.models.utility.portfolio_helper import UserPortfolioPermissionChoices, UserPortfolioRoleChoices
 from .common import MockEppLib, MockSESClient, create_user  # type: ignore
 from django_webtest import WebTest  # type: ignore
+from django.contrib.messages import get_messages
 import boto3_mocking  # type: ignore
 
 from registrar.utility.errors import (
@@ -610,6 +611,25 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             self.assertEqual(edit_page.status_code, 200)
             self.assertContains(edit_page, "Domain managers can update all information related to a domain")
 
+    @override_flag("domain_renewal", active=True)
+    def test_ack_checkbox_not_checked(self):
+
+        # Grab the renewal URL
+        renewal_url = reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id})
+
+        # Test clicking the checkbox
+        response = self.client.post(renewal_url, data={"submit_button": "next"})
+
+        # Verify the error message is displayed
+        # Retrieves messages obj (used in the post call)
+        messages = list(get_messages(response.wsgi_request))
+        # Check we only get 1 error message
+        self.assertEqual(len(messages), 1)
+        # Check that the 1 error msg also is the right text
+        self.assertEqual(
+            str(messages[0]),
+            "Check the box if you read and agree to the requirements for operating a .gov domain.",
+        )
 
 class TestDomainManagers(TestDomainOverview):
     @classmethod

From bad8a8c98a75c1df161321c6a49d4b087d19e291 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Sat, 4 Jan 2025 14:48:21 -0800
Subject: [PATCH 12/68] Fix padding on form and addin subtext for security
 email

---
 src/registrar/templates/domain_renewal.html        | 7 ++++---
 src/registrar/templates/includes/summary_item.html | 8 +++++---
 src/registrar/tests/test_views_domain.py           | 1 +
 3 files changed, 10 insertions(+), 6 deletions(-)

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index eda7a8bdd..4bf69dbca 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -26,6 +26,7 @@
   {{ block.super }}
   <div class="margin-top-4 tablet:grid-col-10">
     <h2 class="text-bold text-primary-dark domain-name-wrap">Confirm the following information for accuracy</h2>
+    <p> HELLO </p>
     <p>Review these details below. We <a href="https://get.gov/domains/requirements/#what-.gov-domain-registrants-must-do" class="usa-link">
       require</a> that you maintain accurate information for the domain.
       The details you provide will only be used to support eh administration of .gov and won't be made public.
@@ -55,9 +56,9 @@
 
     {% url 'domain-security-email' pk=domain.id as url %}
     {% if security_email is not None and security_email not in hidden_security_emails%}
-      {% include "includes/summary_item.html" with title='Security email' value=security_email edit_link=url editable=is_editable %}
+      {% include "includes/summary_item.html" with title='Security email' value=security_email custom_text_for_value_none='We strongly recommend that you provide a security email. This email will allow the  public to report observed or suspected security issues on your domain.' edit_link=url editable=is_editable %}
     {% else %}
-      {% include "includes/summary_item.html" with title='Security email' value='None provided' edit_link=url editable=is_editable %}
+      {% include "includes/summary_item.html" with title='Security email' value='None provided' custom_text_for_value_none='We strongly recommend that you provide a security email. This email will allow the  public to report observed or suspected security issues on your domain.' edit_link=url editable=is_editable %}
     {% endif %}
     {% url 'domain-users' pk=domain.id as url %}
     {% if portfolio %}
@@ -67,7 +68,7 @@
     {% endif %}
 
         
-    <div class="border-top-1px border-primary-dark padding-top-1 margin-bottom-2">
+    <div class="border-top-1px border-primary-dark padding-top-1 margin-top-3 margin-bottom-2">
 
       <fieldset class="usa-fieldset">
         <legend>
diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index 15cc0f67f..facc8956a 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -128,11 +128,13 @@
         {% endif %}
       {% else %}
       <p class="margin-top-0 margin-bottom-0">
+        {% if custom_text_for_value_none %}
+          <p class="text-base-dark">{{ custom_text_for_value_none }}</p>
+        {% endif %}
         {% if value %}
           {{ value }}
-        {% elif custom_text_for_value_none %}
-          {{ custom_text_for_value_none }}
-        {% else %}
+        {% endif %}
+        {% if not value and not custom_text_for_value_none %}
           None
         {% endif %}
       </p>
diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 50b8f31f6..fa4351de1 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -631,6 +631,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             "Check the box if you read and agree to the requirements for operating a .gov domain.",
         )
 
+
 class TestDomainManagers(TestDomainOverview):
     @classmethod
     def setUpClass(cls):

From a3c50043c5a1d6fdc7154ad2944926d39181d9ac Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Sat, 4 Jan 2025 14:55:40 -0800
Subject: [PATCH 13/68] Removing print statements

---
 src/registrar/models/domain.py              | 16 ++--------------
 src/registrar/templates/domain_renewal.html |  1 -
 src/registrar/views/domain.py               |  7 -------
 3 files changed, 2 insertions(+), 22 deletions(-)

diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index b7145ec0c..59e04e7c3 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -322,34 +322,27 @@ class Domain(TimeStampedModel, DomainHelper):
         """
 
         # If no date is specified, grab the registry_expiration_date
-        print("*** Checking if there is a date")
         try:
             exp_date = self.registry_expiration_date
         except KeyError:
             # if no expiration date from registry, set it to today
-            logger.warning("*** Current expiration date not set; setting to 35 days ")
-            # exp_date = date.today()
-            exp_date = date.today() - timedelta(days=35)
-            print(exp_date)
-        print("*** The exp_date is", exp_date)
+            logger.warning("current expiration date not set; setting to today")
+            exp_date = date.today()
         # create RenewDomain request
         request = commands.RenewDomain(name=self.name, cur_exp_date=exp_date, period=epp.Period(length, unit))
 
         try:
             # update expiration date in registry, and set the updated
             # expiration date in the registrar, and in the cache
-            print("** In renew_domain in 2nd try statement")
             self._cache["ex_date"] = registry.send(request, cleaned=True).res_data[0].ex_date
             self.expiration_date = self._cache["ex_date"]
             self.save()
         except RegistryError as err:
             # if registry error occurs, log the error, and raise it as well
-            print("*** Registry error")
             logger.error(f"registry error renewing domain: {err}")
             raise (err)
         except Exception as e:
             # exception raised during the save to registrar
-            print("*** In renew_domain, in the last Exception statement")
             logger.error(f"error updating expiration date in registrar: {e}")
             raise (e)
 
@@ -1173,11 +1166,6 @@ class Domain(TimeStampedModel, DomainHelper):
         threshold_date = now + timedelta(days=60)
         return now < self.expiration_date <= threshold_date
 
-    # Dummy method for testing for domain renewal form fail or success banner
-
-    def update_expiration(self, success=True):
-        return success
-
     def state_display(self, request=None):
         """Return the display status of the domain."""
         if self.is_expired() and (self.state != self.State.UNKNOWN):
diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index 4bf69dbca..07aeecd1a 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -26,7 +26,6 @@
   {{ block.super }}
   <div class="margin-top-4 tablet:grid-col-10">
     <h2 class="text-bold text-primary-dark domain-name-wrap">Confirm the following information for accuracy</h2>
-    <p> HELLO </p>
     <p>Review these details below. We <a href="https://get.gov/domains/requirements/#what-.gov-domain-registrants-must-do" class="usa-link">
       require</a> that you maintain accurate information for the domain.
       The details you provide will only be used to support eh administration of .gov and won't be made public.
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 44ac9e9d6..ab68addb7 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -365,7 +365,6 @@ class DomainRenewalView(DomainBaseView):
         # Check if the checkbox is checked
         is_policy_acknowledged = request.POST.get("is_policy_acknowledged", None)
         if is_policy_acknowledged != "on":
-            print("!!! Checkbox is NOT acknowledged")
             messages.error(
                 request, "Check the box if you read and agree to the requirements for operating a .gov domain."
             )
@@ -378,17 +377,11 @@ class DomainRenewalView(DomainBaseView):
                 },
             )
 
-        print("*** Checkbox is acknowledged")
         if "submit_button" in request.POST:
-            print("*** Submit button clicked")
-            # updated_expiration = domain.update_expiration(success=True)
-            # print("*** Updated expiration result:", updated_expiration)
             try:
-                print("*** Did we get into the try statement")
                 domain.renew_domain()
                 messages.success(request, "This domain has been renewed for one year")
             except Exception as e:
-                print(f"An error occured: {e}")
                 messages.error(request, "*** This domain has not been renewed")
         return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
 

From 3dc445d17da90c09251faa03adaaa05960f84edc Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Mon, 6 Jan 2025 14:32:16 -0800
Subject: [PATCH 14/68] Update test and add in documentation

---
 docs/developer/registry-access.md        | 47 ++++++++++++++++++++++++
 src/registrar/tests/test_views_domain.py |  5 ++-
 src/registrar/views/domain.py            |  4 +-
 3 files changed, 53 insertions(+), 3 deletions(-)

diff --git a/docs/developer/registry-access.md b/docs/developer/registry-access.md
index c7737d5bc..c52810c35 100644
--- a/docs/developer/registry-access.md
+++ b/docs/developer/registry-access.md
@@ -103,3 +103,50 @@ response = registry._client.transport.receive()
 ```
 
 This is helpful for debugging situations where epplib is not correctly or fully parsing the XML returned from the registry.
+
+### Adding in a expiring soon domain
+The below scenario is if you are NOT in org model mode (`organization_feature` waffle flag is off).
+
+1. Go to the `staging` sandbox and to `/admin`
+2. Go to Domains and find a domain that is actually expired by sorting the Expiration Date column
+3. Click into the domain to check the expiration date
+4. Click into Manage Domain to double check the expiration date as well
+5. Now hold onto that domain name, and save it for the command below
+
+6. In a terminal, run these commands:
+```
+cf ssh getgov-<your-intials>
+/tmp/lifecycle/shell
+./manage.py shell
+from registrar.models import Domain, DomainInvitation
+from registrar.models import User
+user = User.objects.filter(first_name="<your-first-name>")
+domain = Domain.objects.get_or_create(name="<that-domain-here>")
+```
+
+7. Go back to `/admin` and create Domain Information for that domain you just added in via the terminal 
+8. Go to Domain to find it 
+9. Click Manage Domain
+10. Add yourself as domain manager
+11. Go to the Registrar page and you should now see the expiring domain
+
+If you want to be in the org model mode, turn the `organization_feature` waffle flag on, and add that domain via Django Admin to a portfolio to be able to view it. 
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index fa4351de1..e6e42d563 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -576,7 +576,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             self.assertContains(edit_page, "Review the details below and update any required information")
 
     @override_flag("domain_renewal", active=True)
-    def test_domain_renewal_form_security_contact_edit(self):
+    def test_domain_renewal_form_security_email_edit(self):
         with less_console_noise():
             # Start on the Renewal page for the domain
             renewal_page = self.app.get(reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id}))
@@ -584,6 +584,9 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             # Verify we see "Security email" on the renewal form
             self.assertContains(renewal_page, "Security email")
 
+            # Verify we see "strong recommend" blurb
+            self.assertContains(renewal_page, "We strongly recommend that you provide a security email.")
+
             # Verify that the "Edit" button for Security email is there and links to correct URL
             edit_button_url = reverse("domain-security-email", kwargs={"pk": self.domain_with_ip.id})
             self.assertContains(renewal_page, f'href="{edit_button_url}"')
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index ab68addb7..7ce0d7e1a 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -380,9 +380,9 @@ class DomainRenewalView(DomainBaseView):
         if "submit_button" in request.POST:
             try:
                 domain.renew_domain()
-                messages.success(request, "This domain has been renewed for one year")
+                messages.success(request, "This domain has been renewed for one year.")
             except Exception as e:
-                messages.error(request, "*** This domain has not been renewed")
+                messages.error(request, "This domain has not been renewed for one year, error was %s" % e)
         return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
 
 

From 5f9a398bb77fd5217c4f0c019a8c4420fd8327e2 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Tue, 7 Jan 2025 09:43:48 -0500
Subject: [PATCH 15/68] some test

---
 src/registrar/tests/test_views_domain.py | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 02d7aa9ac..4eed20d56 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -530,7 +530,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             self.assertContains(detail_page, "Renew to maintain access")
 
     @override_flag("domain_renewal", active=True)
-    def test_domain_renewal_sidebar_and_form(self):
+    def test_domain_renewal_form_and_sidebar(self):
         self.client.force_login(self.user)
         with patch.object(Domain, "is_expiring", self.custom_is_expiring), patch.object(
             Domain, "is_expired", self.custom_is_expired
@@ -608,8 +608,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             # Simulate clicking on edit button
             edit_page = renewal_page.click(href=edit_button_url, index=1)
             self.assertEqual(edit_page.status_code, 200)
-            self.assertContains(edit_page, "Domain managers can update all information related to a domain")
-
+            self.assertContains(edit_page, "Domain managers can update all information related to a domain"
 
 class TestDomainManagers(TestDomainOverview):
     @classmethod

From a8808e5356ccb5c5cf54b7f9f85616de6323a9ba Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Tue, 7 Jan 2025 16:11:33 -0500
Subject: [PATCH 16/68] ran app black

---
 src/registrar/tests/test_views_domain.py | 15 +++++++--------
 1 file changed, 7 insertions(+), 8 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 25f79d7e0..ee8adf903 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -464,7 +464,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
 
     def custom_is_expiring(self):
         return True
-    
+
     def custom_renew_domain(self):
         self.domain_with_ip.expiration_date = self.todays_expiration_date()
         self.domain_with_ip.save()
@@ -644,7 +644,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             str(messages[0]),
             "Check the box if you read and agree to the requirements for operating a .gov domain.",
         )
-    
+
     @override_flag("domain_renewal", active=True)
     def test_ack_checkbox_checked(self):
 
@@ -652,19 +652,18 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
         with patch.object(Domain, "renew_domain", self.custom_renew_domain):
             renewal_url = reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id})
 
-            # Click the check, and submit 
+            # Click the check, and submit
             response = self.client.post(renewal_url, data={"is_policy_acknowledged": "on", "submit_button": "next"})
 
-            #Check that it redirects after a successfully submits
-            self.assertRedirects(response, reverse("domain", kwargs={"pk":self.domain_with_ip.id}))
+            # Check that it redirects after a successfully submits
+            self.assertRedirects(response, reverse("domain", kwargs={"pk": self.domain_with_ip.id}))
 
-            #Check for the updated expiration
+            # Check for the updated expiration
             formatted_new_expiration_date = self.todays_expiration_date().strftime("%b. %-d, %Y")
-            redirect_response = self.client.get(reverse("domain", kwargs={"pk":self.domain_with_ip.id}), follow=True)
+            redirect_response = self.client.get(reverse("domain", kwargs={"pk": self.domain_with_ip.id}), follow=True)
             self.assertContains(redirect_response, formatted_new_expiration_date)
 
 
-
 class TestDomainManagers(TestDomainOverview):
     @classmethod
     def setUpClass(cls):

From c2d17442f8a05ab7c70929c954519352ab731dcc Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Tue, 7 Jan 2025 17:04:02 -0500
Subject: [PATCH 17/68] domain invitations now send email from django admin for
 both domain and portfolio invitations, consolidated error handling

---
 src/registrar/admin.py                        | 145 +++++++++++++----
 src/registrar/models/domain_invitation.py     |   2 +
 src/registrar/utility/email_invitations.py    |  52 +++---
 src/registrar/utility/errors.py               |  13 +-
 src/registrar/views/domain.py                 | 148 ++++--------------
 .../views/utility/portfolio_helper.py         |  83 ++++++++++
 6 files changed, 264 insertions(+), 179 deletions(-)
 create mode 100644 src/registrar/views/utility/portfolio_helper.py

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 849cb6100..183d251b4 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -14,6 +14,7 @@ from django.db.models import (
 from django.db.models.functions import Concat, Coalesce
 from django.http import HttpResponseRedirect
 from registrar.models.federal_agency import FederalAgency
+from registrar.models.portfolio_invitation import PortfolioInvitation
 from registrar.utility.admin_helpers import (
     AutocompleteSelectWithPlaceholder,
     get_action_needed_reason_default_email,
@@ -27,8 +28,12 @@ from django.shortcuts import redirect
 from django_fsm import get_available_FIELD_transitions, FSMField
 from registrar.models import DomainInformation, Portfolio, UserPortfolioPermission, DomainInvitation
 from registrar.models.utility.portfolio_helper import UserPortfolioPermissionChoices, UserPortfolioRoleChoices
-from registrar.utility.email import EmailSendingError
-from registrar.utility.email_invitations import send_portfolio_invitation_email
+from registrar.utility.email_invitations import send_domain_invitation_email, send_portfolio_invitation_email
+from registrar.views.utility.portfolio_helper import (
+    get_org_membership,
+    get_requested_user,
+    handle_invitation_exceptions,
+)
 from waffle.decorators import flag_is_active
 from django.contrib import admin, messages
 from django.contrib.auth.admin import UserAdmin as BaseUserAdmin
@@ -41,7 +46,7 @@ from waffle.admin import FlagAdmin
 from waffle.models import Sample, Switch
 from registrar.models import Contact, Domain, DomainRequest, DraftDomain, User, Website, SeniorOfficial
 from registrar.utility.constants import BranchChoices
-from registrar.utility.errors import FSMDomainRequestError, FSMErrorCodes, MissingEmailError
+from registrar.utility.errors import FSMDomainRequestError, FSMErrorCodes
 from registrar.utility.waffle import flag_is_active_for_user
 from registrar.views.utility.mixins import OrderableFieldsMixin
 from django.contrib.admin.views.main import ORDER_VAR
@@ -1442,11 +1447,108 @@ class DomainInvitationAdmin(ListHeaderAdmin):
         which will be successful if a single User exists for that email; otherwise, will
         just continue to create the invitation.
         """
-        if not change and User.objects.filter(email=obj.email).count() == 1:
-            # Domain Invitation creation for an existing User
-            obj.retrieve()
-        # Call the parent save method to save the object
-        super().save_model(request, obj, form, change)
+        if not change:
+            domain = obj.domain
+            domain_org = domain.domain_info.portfolio
+            requested_email = obj.email
+            # Look up a user with that email
+            requested_user = get_requested_user(requested_email)
+            requestor = request.user
+
+            member_of_a_different_org, member_of_this_org = get_org_membership(
+                domain_org, requested_email, requested_user
+            )
+
+            try:
+                if (
+                    flag_is_active(request, "organization_feature")
+                    and not flag_is_active(request, "multiple_portfolios")
+                    and domain_org is not None
+                    and not member_of_this_org
+                ):
+                    send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=domain_org)
+                    PortfolioInvitation.objects.get_or_create(
+                        email=requested_email,
+                        portfolio=domain_org,
+                        roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
+                    )
+                    messages.success(request, f"{requested_email} has been invited to the organization: {domain_org}")
+
+                send_domain_invitation_email(
+                    email=requested_email,
+                    requestor=requestor,
+                    domain=domain,
+                    is_member_of_different_org=member_of_a_different_org,
+                )
+                if requested_user is not None:
+                    # Domain Invitation creation for an existing User
+                    obj.retrieve()
+                # Call the parent save method to save the object
+                super().save_model(request, obj, form, change)
+                messages.success(request, f"{requested_email} has been invited to the domain: {domain}")
+            except Exception as e:
+                handle_invitation_exceptions(request, e, requested_email)
+                return
+        else:
+            # Call the parent save method to save the object
+            super().save_model(request, obj, form, change)
+
+    def response_add(self, request, obj, post_url_continue=None):
+        """
+        Override response_add to handle rendering when exceptions are raised during add model.
+
+        Normal flow on successful save_model on add is to redirect to changelist_view.
+        If there are errors, flow is modified to instead render change form.
+        """
+        # Check if there are any error or warning messages in the `messages` framework
+        storage = get_messages(request)
+        has_errors = any(message.level_tag in ["error", "warning"] for message in storage)
+
+        if has_errors:
+            # Re-render the change form if there are errors or warnings
+            # Prepare context for rendering the change form
+
+            # Get the model form
+            ModelForm = self.get_form(request, obj=obj)
+            form = ModelForm(instance=obj)
+
+            # Create an AdminForm instance
+            admin_form = AdminForm(
+                form,
+                list(self.get_fieldsets(request, obj)),
+                self.get_prepopulated_fields(request, obj),
+                self.get_readonly_fields(request, obj),
+                model_admin=self,
+            )
+            media = self.media + form.media
+
+            opts = obj._meta
+            change_form_context = {
+                **self.admin_site.each_context(request),  # Add admin context
+                "title": f"Add {opts.verbose_name}",
+                "opts": opts,
+                "original": obj,
+                "save_as": self.save_as,
+                "has_change_permission": self.has_change_permission(request, obj),
+                "add": True,  # Indicate this is an "Add" form
+                "change": False,  # Indicate this is not a "Change" form
+                "is_popup": False,
+                "inline_admin_formsets": [],
+                "save_on_top": self.save_on_top,
+                "show_delete": self.has_delete_permission(request, obj),
+                "obj": obj,
+                "adminform": admin_form,  # Pass the AdminForm instance
+                "media": media,
+                "errors": None,
+            }
+            return self.render_change_form(
+                request,
+                context=change_form_context,
+                add=True,
+                change=False,
+                obj=obj,
+            )
+        return super().response_add(request, obj, post_url_continue)
 
 
 class PortfolioInvitationAdmin(ListHeaderAdmin):
@@ -1523,36 +1625,11 @@ class PortfolioInvitationAdmin(ListHeaderAdmin):
                     messages.warning(request, "User is already a member of this portfolio.")
             except Exception as e:
                 # when exception is raised, handle and do not save the model
-                self._handle_exceptions(e, request, obj)
+                handle_invitation_exceptions(request, e, requested_email)
                 return
         # Call the parent save method to save the object
         super().save_model(request, obj, form, change)
 
-    def _handle_exceptions(self, exception, request, obj):
-        """Handle exceptions raised during the process.
-
-        Log warnings / errors, and message errors to the user.
-        """
-        if isinstance(exception, EmailSendingError):
-            logger.warning(
-                "Could not sent email invitation to %s for portfolio %s (EmailSendingError)",
-                obj.email,
-                obj.portfolio,
-                exc_info=True,
-            )
-            messages.error(request, "Could not send email invitation. Portfolio invitation not saved.")
-        elif isinstance(exception, MissingEmailError):
-            messages.error(request, str(exception))
-            logger.error(
-                f"Can't send email to '{obj.email}' for portfolio '{obj.portfolio}'. "
-                f"No email exists for the requestor.",
-                exc_info=True,
-            )
-
-        else:
-            logger.warning("Could not send email invitation (Other Exception)", exc_info=True)
-            messages.error(request, "Could not send email invitation. Portfolio invitation not saved.")
-
     def response_add(self, request, obj, post_url_continue=None):
         """
         Override response_add to handle rendering when exceptions are raised during add model.
diff --git a/src/registrar/models/domain_invitation.py b/src/registrar/models/domain_invitation.py
index 28089dcb5..e2aede696 100644
--- a/src/registrar/models/domain_invitation.py
+++ b/src/registrar/models/domain_invitation.py
@@ -56,6 +56,8 @@ class DomainInvitation(TimeStampedModel):
         Raises:
             RuntimeError if no matching user can be found.
         """
+        # NOTE: this is currently not accounting for scenario when User.objects.get matches
+        # multiple user accounts with the same email address
 
         # get a user with this email address
         User = get_user_model()
diff --git a/src/registrar/utility/email_invitations.py b/src/registrar/utility/email_invitations.py
index 7171b8902..9455c5927 100644
--- a/src/registrar/utility/email_invitations.py
+++ b/src/registrar/utility/email_invitations.py
@@ -7,7 +7,7 @@ from registrar.utility.errors import (
     OutsideOrgMemberError,
 )
 from registrar.utility.waffle import flag_is_active_for_user
-from registrar.utility.email import send_templated_email
+from registrar.utility.email import EmailSendingError, send_templated_email
 import logging
 
 logger = logging.getLogger(__name__)
@@ -38,7 +38,7 @@ def send_domain_invitation_email(email: str, requestor, domain, is_member_of_dif
     # Check if the requestor is staff and has an email
     if not requestor.is_staff:
         if not requestor.email or requestor.email.strip() == "":
-            raise MissingEmailError
+            raise MissingEmailError(email=email, domain=domain)
         else:
             requestor_email = requestor.email
 
@@ -65,15 +65,18 @@ def send_domain_invitation_email(email: str, requestor, domain, is_member_of_dif
         pass
 
     # Send the email
-    send_templated_email(
-        "emails/domain_invitation.txt",
-        "emails/domain_invitation_subject.txt",
-        to_address=email,
-        context={
-            "domain": domain,
-            "requestor_email": requestor_email,
-        },
-    )
+    try:
+        send_templated_email(
+            "emails/domain_invitation.txt",
+            "emails/domain_invitation_subject.txt",
+            to_address=email,
+            context={
+                "domain": domain,
+                "requestor_email": requestor_email,
+            },
+        )
+    except EmailSendingError as err:
+        raise EmailSendingError(f"Could not send email invitation to {email} for domain {domain}.") from err
 
 
 def send_portfolio_invitation_email(email: str, requestor, portfolio):
@@ -98,17 +101,22 @@ def send_portfolio_invitation_email(email: str, requestor, portfolio):
     # Check if the requestor is staff and has an email
     if not requestor.is_staff:
         if not requestor.email or requestor.email.strip() == "":
-            raise MissingEmailError
+            raise MissingEmailError(email=email, portfolio=portfolio)
         else:
             requestor_email = requestor.email
 
-    send_templated_email(
-        "emails/portfolio_invitation.txt",
-        "emails/portfolio_invitation_subject.txt",
-        to_address=email,
-        context={
-            "portfolio": portfolio,
-            "requestor_email": requestor_email,
-            "email": email,
-        },
-    )
+    try:
+        send_templated_email(
+            "emails/portfolio_invitation.txt",
+            "emails/portfolio_invitation_subject.txt",
+            to_address=email,
+            context={
+                "portfolio": portfolio,
+                "requestor_email": requestor_email,
+                "email": email,
+            },
+        )
+    except EmailSendingError as err:
+        raise EmailSendingError(
+            f"Could not sent email invitation to {email} for portfolio {portfolio}. Portfolio invitation not saved."
+        ) from err
diff --git a/src/registrar/utility/errors.py b/src/registrar/utility/errors.py
index 039fb3696..cc18d7269 100644
--- a/src/registrar/utility/errors.py
+++ b/src/registrar/utility/errors.py
@@ -46,8 +46,17 @@ class AlreadyDomainInvitedError(InvitationError):
 class MissingEmailError(InvitationError):
     """Raised when the requestor has no email associated with their account."""
 
-    def __init__(self):
-        super().__init__("Can't send invitation email. No email is associated with your user account.")
+    def __init__(self, email=None, domain=None, portfolio=None):
+        # Default message if no additional info is provided
+        message = "Can't send invitation email. No email is associated with your user account."
+
+        # Customize message based on provided arguments
+        if email and domain:
+            message = f"Can't send email to '{email}' on domain '{domain}'. No email exists for the requestor."
+        elif email and portfolio:
+            message = f"Can't send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor."
+
+        super().__init__(message)
 
 
 class OutsideOrgMemberError(ValueError):
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index f544a20f7..14e7dc933 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -10,7 +10,6 @@ import logging
 import requests
 from django.contrib import messages
 from django.contrib.messages.views import SuccessMessageMixin
-from django.db import IntegrityError
 from django.http import HttpResponseRedirect
 from django.shortcuts import redirect
 from django.urls import reverse
@@ -31,22 +30,23 @@ from registrar.models.user_portfolio_permission import UserPortfolioPermission
 from registrar.models.utility.portfolio_helper import UserPortfolioRoleChoices
 from registrar.utility.enums import DefaultEmail
 from registrar.utility.errors import (
-    AlreadyDomainInvitedError,
-    AlreadyDomainManagerError,
     GenericError,
     GenericErrorCodes,
-    MissingEmailError,
     NameserverError,
     NameserverErrorCodes as nsErrorCodes,
     DsDataError,
     DsDataErrorCodes,
     SecurityEmailError,
     SecurityEmailErrorCodes,
-    OutsideOrgMemberError,
 )
 from registrar.models.utility.contact_error import ContactError
 from registrar.views.utility.permission_views import UserDomainRolePermissionDeleteView
 from registrar.utility.waffle import flag_is_active_for_user
+from registrar.views.utility.portfolio_helper import (
+    get_org_membership,
+    get_requested_user,
+    handle_invitation_exceptions,
+)
 
 from ..forms import (
     SeniorOfficialContactForm,
@@ -1149,43 +1149,13 @@ class DomainAddUserView(DomainFormBaseView):
     def get_success_url(self):
         return reverse("domain-users", kwargs={"pk": self.object.pk})
 
-    def _get_org_membership(self, requestor_org, requested_email, requested_user):
-        """
-        Verifies if an email belongs to a different organization as a member or invited member.
-        Verifies if an email belongs to this organization as a member or invited member.
-        User does not belong to any org can be deduced from the tuple returned.
-
-        Returns a tuple (member_of_a_different_org, member_of_this_org).
-        """
-
-        # COMMENT: this code does not take into account multiple portfolios flag
-
-        # COMMENT: shouldn't this code be based on the organization of the domain, not the org
-        # of the requestor? requestor could have multiple portfolios
-
-        # Check for existing permissions or invitations for the requested user
-        existing_org_permission = UserPortfolioPermission.objects.filter(user=requested_user).first()
-        existing_org_invitation = PortfolioInvitation.objects.filter(email=requested_email).first()
-
-        # Determine membership in a different organization
-        member_of_a_different_org = (
-            existing_org_permission and existing_org_permission.portfolio != requestor_org
-        ) or (existing_org_invitation and existing_org_invitation.portfolio != requestor_org)
-
-        # Determine membership in the same organization
-        member_of_this_org = (existing_org_permission and existing_org_permission.portfolio == requestor_org) or (
-            existing_org_invitation and existing_org_invitation.portfolio == requestor_org
-        )
-
-        return member_of_a_different_org, member_of_this_org
-
     def form_valid(self, form):
         """Add the specified user to this domain."""
         requested_email = form.cleaned_data["email"]
         requestor = self.request.user
 
         # Look up a user with that email
-        requested_user = self._get_requested_user(requested_email)
+        requested_user = get_requested_user(requested_email)
         # NOTE: This does not account for multiple portfolios flag being set to True
         domain_org = self.object.domain_info.portfolio
 
@@ -1196,49 +1166,36 @@ class DomainAddUserView(DomainFormBaseView):
             or requestor.is_staff
         )
 
-        member_of_a_different_org, member_of_this_org = self._get_org_membership(
-            domain_org, requested_email, requested_user
-        )
-
-        # determine portfolio of the domain (code currently is looking at requestor's portfolio)
-        # if requested_email/user is not member or invited member of this portfolio
-        # COMMENT: this code does not take into account multiple portfolios flag
-        #   send portfolio invitation email
-        #   create portfolio invitation
-        #   create message to view
-        if (
-            flag_is_active_for_user(requestor, "organization_feature")
-            and not flag_is_active_for_user(requestor, "multiple_portfolios")
-            and domain_org is not None
-            and requestor_can_update_portfolio
-            and not member_of_this_org
-        ):
-            try:
-                send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=domain_org)
-                PortfolioInvitation.objects.get_or_create(email=requested_email, portfolio=domain_org)
-                messages.success(self.request, f"{requested_email} has been invited to the organization: {domain_org}")
-            except Exception as e:
-                self._handle_portfolio_exceptions(e, requested_email, domain_org)
-                # If that first invite does not succeed take an early exit
-                return redirect(self.get_success_url())
-
+        member_of_a_different_org, member_of_this_org = get_org_membership(domain_org, requested_email, requested_user)
         try:
+            # determine portfolio of the domain (code currently is looking at requestor's portfolio)
+            # if requested_email/user is not member or invited member of this portfolio
+            # COMMENT: this code does not take into account multiple portfolios flag
+            #   send portfolio invitation email
+            #   create portfolio invitation
+            #   create message to view
+            if (
+                flag_is_active_for_user(requestor, "organization_feature")
+                and not flag_is_active_for_user(requestor, "multiple_portfolios")
+                and domain_org is not None
+                and requestor_can_update_portfolio
+                and not member_of_this_org
+            ):
+                send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=domain_org)
+                PortfolioInvitation.objects.get_or_create(
+                    email=requested_email, portfolio=domain_org, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+                )
+                messages.success(self.request, f"{requested_email} has been invited to the organization: {domain_org}")
+
             if requested_user is None:
                 self._handle_new_user_invitation(requested_email, requestor, member_of_a_different_org)
             else:
                 self._handle_existing_user(requested_email, requestor, requested_user, member_of_a_different_org)
         except Exception as e:
-            self._handle_exceptions(e, requested_email)
+            handle_invitation_exceptions(self.request, e, requested_email)
 
         return redirect(self.get_success_url())
 
-    def _get_requested_user(self, email):
-        """Retrieve a user by email or return None if the user doesn't exist."""
-        try:
-            return User.objects.get(email=email)
-        except User.DoesNotExist:
-            return None
-
     def _handle_new_user_invitation(self, email, requestor, member_of_different_org):
         """Handle invitation for a new user who does not exist in the system."""
         send_domain_invitation_email(
@@ -1265,57 +1222,6 @@ class DomainAddUserView(DomainFormBaseView):
         )
         messages.success(self.request, f"Added user {email}.")
 
-    def _handle_exceptions(self, exception, email):
-        """Handle exceptions raised during the process."""
-        if isinstance(exception, EmailSendingError):
-            logger.warning(
-                "Could not send email invitation to %s for domain %s (EmailSendingError)",
-                email,
-                self.object,
-                exc_info=True,
-            )
-            messages.warning(self.request, "Could not send email invitation.")
-        elif isinstance(exception, OutsideOrgMemberError):
-            logger.warning(
-                "Could not send email. Can not invite member of a .gov organization to a different organization.",
-                self.object,
-                exc_info=True,
-            )
-            messages.error(
-                self.request,
-                f"{email} is already a member of another .gov organization.",
-            )
-        elif isinstance(exception, AlreadyDomainManagerError):
-            messages.warning(self.request, str(exception))
-        elif isinstance(exception, AlreadyDomainInvitedError):
-            messages.warning(self.request, str(exception))
-        elif isinstance(exception, MissingEmailError):
-            messages.error(self.request, str(exception))
-            logger.error(
-                f"Can't send email to '{email}' on domain '{self.object}'. No email exists for the requestor.",
-                exc_info=True,
-            )
-        elif isinstance(exception, IntegrityError):
-            messages.warning(self.request, f"{email} is already a manager for this domain")
-        else:
-            logger.warning("Could not send email invitation (Other Exception)", exc_info=True)
-            messages.warning(self.request, "Could not send email invitation.")
-
-    def _handle_portfolio_exceptions(self, exception, email, portfolio):
-        """Handle exceptions raised during the process."""
-        if isinstance(exception, EmailSendingError):
-            logger.warning("Could not send email invitation (EmailSendingError)", exc_info=True)
-            messages.warning(self.request, "Could not send email invitation.")
-        elif isinstance(exception, MissingEmailError):
-            messages.error(self.request, str(exception))
-            logger.error(
-                f"Can't send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor.",
-                exc_info=True,
-            )
-        else:
-            logger.warning("Could not send email invitation (Other Exception)", exc_info=True)
-            messages.warning(self.request, "Could not send email invitation.")
-
 
 class DomainInvitationCancelView(SuccessMessageMixin, DomainInvitationPermissionCancelView):
     object: DomainInvitation
diff --git a/src/registrar/views/utility/portfolio_helper.py b/src/registrar/views/utility/portfolio_helper.py
new file mode 100644
index 000000000..6fa2d7e60
--- /dev/null
+++ b/src/registrar/views/utility/portfolio_helper.py
@@ -0,0 +1,83 @@
+from django.contrib import messages
+from django.db import IntegrityError
+from registrar.models.portfolio_invitation import PortfolioInvitation
+from registrar.models.user import User
+from registrar.models.user_portfolio_permission import UserPortfolioPermission
+from registrar.utility.email import EmailSendingError
+import logging
+
+from registrar.utility.errors import (
+    AlreadyDomainInvitedError,
+    AlreadyDomainManagerError,
+    MissingEmailError,
+    OutsideOrgMemberError,
+)
+
+logger = logging.getLogger(__name__)
+
+
+def get_org_membership(requestor_org, requested_email, requested_user):
+    """
+    Verifies if an email belongs to a different organization as a member or invited member.
+    Verifies if an email belongs to this organization as a member or invited member.
+    User does not belong to any org can be deduced from the tuple returned.
+
+    Returns a tuple (member_of_a_different_org, member_of_this_org).
+    """
+
+    # COMMENT: this code does not take into account multiple portfolios flag
+
+    # COMMENT: shouldn't this code be based on the organization of the domain, not the org
+    # of the requestor? requestor could have multiple portfolios
+
+    # Check for existing permissions or invitations for the requested user
+    existing_org_permission = UserPortfolioPermission.objects.filter(user=requested_user).first()
+    existing_org_invitation = PortfolioInvitation.objects.filter(email=requested_email).first()
+
+    # Determine membership in a different organization
+    member_of_a_different_org = (existing_org_permission and existing_org_permission.portfolio != requestor_org) or (
+        existing_org_invitation and existing_org_invitation.portfolio != requestor_org
+    )
+
+    # Determine membership in the same organization
+    member_of_this_org = (existing_org_permission and existing_org_permission.portfolio == requestor_org) or (
+        existing_org_invitation and existing_org_invitation.portfolio == requestor_org
+    )
+
+    return member_of_a_different_org, member_of_this_org
+
+
+def get_requested_user(email):
+    """Retrieve a user by email or return None if the user doesn't exist."""
+    try:
+        return User.objects.get(email=email)
+    except User.DoesNotExist:
+        return None
+
+
+def handle_invitation_exceptions(request, exception, email):
+    """Handle exceptions raised during the process."""
+    if isinstance(exception, EmailSendingError):
+        logger.warning(str(exception), exc_info=True)
+        messages.error(request, str(exception))
+    elif isinstance(exception, MissingEmailError):
+        messages.error(request, str(exception))
+        logger.error(str(exception), exc_info=True)
+    elif isinstance(exception, OutsideOrgMemberError):
+        logger.warning(
+            "Could not send email. Can not invite member of a .gov organization to a different organization.",
+            exc_info=True,
+        )
+        messages.error(
+            request,
+            f"{email} is already a member of another .gov organization.",
+        )
+    elif isinstance(exception, AlreadyDomainManagerError):
+        messages.warning(request, str(exception))
+    elif isinstance(exception, AlreadyDomainInvitedError):
+        messages.warning(request, str(exception))
+    elif isinstance(exception, IntegrityError):
+        messages.warning(request, f"{email} is already a manager for this domain")
+    else:
+        logger.warning("Could not send email invitation (Other Exception)", exc_info=True)
+        messages.warning(request, "Could not send email invitation.")

From 3d237ba0f5e3f677ab607551f3428375478cec0e Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Tue, 7 Jan 2025 18:05:34 -0500
Subject: [PATCH 18/68] auto retrieve portfolio invitations on create

---
 src/registrar/admin.py                        | 31 +++++++++++++++++--
 .../models/utility/portfolio_helper.py        |  4 ++-
 src/registrar/views/domain.py                 |  5 ++-
 src/registrar/views/portfolios.py             |  4 ++-
 4 files changed, 38 insertions(+), 6 deletions(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 183d251b4..0f0c76ee3 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -1467,11 +1467,14 @@ class DomainInvitationAdmin(ListHeaderAdmin):
                     and not member_of_this_org
                 ):
                     send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=domain_org)
-                    PortfolioInvitation.objects.get_or_create(
+                    portfolio_invitation, _ = PortfolioInvitation.objects.get_or_create(
                         email=requested_email,
                         portfolio=domain_org,
                         roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
                     )
+                    if requested_user is not None:
+                        portfolio_invitation.retrieve()
+                        portfolio_invitation.save()
                     messages.success(request, f"{requested_email} has been invited to the organization: {domain_org}")
 
                 send_domain_invitation_email(
@@ -1548,7 +1551,16 @@ class DomainInvitationAdmin(ListHeaderAdmin):
                 change=False,
                 obj=obj,
             )
-        return super().response_add(request, obj, post_url_continue)
+        # Preserve all success messages
+        all_messages = [message for message in get_messages(request)]
+
+        response = super().response_add(request, obj, post_url_continue)
+
+        # Re-add all messages to the storage after `super().response_add` to preserve them
+        for message in all_messages:
+            messages.add_message(request, message.level, message.message)
+
+        return response
 
 
 class PortfolioInvitationAdmin(ListHeaderAdmin):
@@ -1612,6 +1624,8 @@ class PortfolioInvitationAdmin(ListHeaderAdmin):
             portfolio = obj.portfolio
             requested_email = obj.email
             requestor = request.user
+            # Look up a user with that email
+            requested_user = get_requested_user(requested_email)
 
             permission_exists = UserPortfolioPermission.objects.filter(
                 user__email=requested_email, portfolio=portfolio, user__email__isnull=False
@@ -1620,6 +1634,8 @@ class PortfolioInvitationAdmin(ListHeaderAdmin):
                 if not permission_exists:
                     # if permission does not exist for a user with requested_email, send email
                     send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=portfolio)
+                    if requested_user is not None:
+                        obj.retrieve()
                     messages.success(request, f"{requested_email} has been invited.")
                 else:
                     messages.warning(request, "User is already a member of this portfolio.")
@@ -1685,7 +1701,16 @@ class PortfolioInvitationAdmin(ListHeaderAdmin):
                 change=False,
                 obj=obj,
             )
-        return super().response_add(request, obj, post_url_continue)
+        # Preserve all success messages
+        all_messages = [message for message in get_messages(request)]
+
+        response = super().response_add(request, obj, post_url_continue)
+
+        # Re-add all messages to the storage after `super().response_add` to preserve them
+        for message in all_messages:
+            messages.add_message(request, message.level, message.message)
+
+        return response
 
 
 class DomainInformationResource(resources.ModelResource):
diff --git a/src/registrar/models/utility/portfolio_helper.py b/src/registrar/models/utility/portfolio_helper.py
index cde28e4bd..4ae282f21 100644
--- a/src/registrar/models/utility/portfolio_helper.py
+++ b/src/registrar/models/utility/portfolio_helper.py
@@ -153,7 +153,9 @@ def validate_user_portfolio_permission(user_portfolio_permission):
                 "Based on current waffle flag settings, users cannot be assigned to multiple portfolios."
             )
 
-        existing_invitations = PortfolioInvitation.objects.filter(email=user_portfolio_permission.user.email)
+        existing_invitations = PortfolioInvitation.objects.exclude(
+            portfolio=user_portfolio_permission.portfolio
+        ).filter(email=user_portfolio_permission.user.email)
         if existing_invitations.exists():
             raise ValidationError(
                 "This user is already assigned to a portfolio invitation. "
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 14e7dc933..b8464464e 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -1182,9 +1182,12 @@ class DomainAddUserView(DomainFormBaseView):
                 and not member_of_this_org
             ):
                 send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=domain_org)
-                PortfolioInvitation.objects.get_or_create(
+                portfolio_invitation, _ = PortfolioInvitation.objects.get_or_create(
                     email=requested_email, portfolio=domain_org, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
                 )
+                if requested_user is not None:
+                    portfolio_invitation.retrieve()
+                    portfolio_invitation.save()
                 messages.success(self.request, f"{requested_email} has been invited to the organization: {domain_org}")
 
             if requested_user is None:
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 751e28d85..60b30ad60 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -754,7 +754,9 @@ class PortfolioAddMemberView(PortfolioMembersPermissionView, FormMixin):
         try:
             if not requested_user or not permission_exists:
                 send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=portfolio)
-                form.save()
+                portfolio_invitation = form.save()
+                portfolio_invitation.retrieve()
+                portfolio_invitation.save()
                 messages.success(self.request, f"{requested_email} has been invited.")
             else:
                 if permission_exists:

From b077f814094a98353b7e925a2b34d0ffd8c97376 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Tue, 7 Jan 2025 17:24:13 -0800
Subject: [PATCH 19/68] Address feedback - use form pattern and update error
 messaging

---
 docs/developer/registry-access.md           | 21 +----
 src/registrar/forms/__init__.py             |  1 +
 src/registrar/forms/domain.py               | 12 +++
 src/registrar/models/domain.py              |  5 +-
 src/registrar/templates/domain_renewal.html | 94 ++++++++++-----------
 src/registrar/tests/test_views_domain.py    |  6 +-
 src/registrar/views/domain.py               | 50 +++++------
 7 files changed, 93 insertions(+), 96 deletions(-)

diff --git a/docs/developer/registry-access.md b/docs/developer/registry-access.md
index c52810c35..50caa4823 100644
--- a/docs/developer/registry-access.md
+++ b/docs/developer/registry-access.md
@@ -130,23 +130,4 @@ domain = Domain.objects.get_or_create(name="<that-domain-here>")
 10. Add yourself as domain manager
 11. Go to the Registrar page and you should now see the expiring domain
 
-If you want to be in the org model mode, turn the `organization_feature` waffle flag on, and add that domain via Django Admin to a portfolio to be able to view it. 
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
+If you want to be in the org model mode, turn the `organization_feature` waffle flag on, and add that domain via Django Admin to a portfolio to be able to view it.
\ No newline at end of file
diff --git a/src/registrar/forms/__init__.py b/src/registrar/forms/__init__.py
index 121e2b3f7..13725f109 100644
--- a/src/registrar/forms/__init__.py
+++ b/src/registrar/forms/__init__.py
@@ -10,6 +10,7 @@ from .domain import (
     DomainDsdataFormset,
     DomainDsdataForm,
     DomainSuborganizationForm,
+    DomainRenewalForm,
 )
 from .portfolio import (
     PortfolioOrgAddressForm,
diff --git a/src/registrar/forms/domain.py b/src/registrar/forms/domain.py
index b43d91a58..699efe63b 100644
--- a/src/registrar/forms/domain.py
+++ b/src/registrar/forms/domain.py
@@ -661,3 +661,15 @@ DomainDsdataFormset = formset_factory(
     extra=0,
     can_delete=True,
 )
+
+
+class DomainRenewalForm(forms.Form):
+    """Form making sure domain renewal ack is checked"""
+
+    is_policy_acknowledged = forms.BooleanField(
+        required=True,
+        label="I have read and agree to the requirements for operating a .gov domain.",
+        error_messages={
+            "required": "Check the box if you read and agree to the requirements for operating a .gov domain."
+        },
+    )
diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index 59e04e7c3..217b88202 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -337,13 +337,14 @@ class Domain(TimeStampedModel, DomainHelper):
             self._cache["ex_date"] = registry.send(request, cleaned=True).res_data[0].ex_date
             self.expiration_date = self._cache["ex_date"]
             self.save()
+
         except RegistryError as err:
             # if registry error occurs, log the error, and raise it as well
-            logger.error(f"registry error renewing domain: {err}")
+            logger.error(f"Registry error renewing domain '{self.name}': {err}")
             raise (err)
         except Exception as e:
             # exception raised during the save to registrar
-            logger.error(f"error updating expiration date in registrar: {e}")
+            logger.error(f"Error updating expiration date for domain '{self.name}' in registrar: {e}")
             raise (e)
 
     @Cache
diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index 07aeecd1a..bf529a04d 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -4,6 +4,18 @@
 
 {% block domain_content %}
   {% block breadcrumb %}
+
+  <!-- Banner for if_policy_acknowledged -->
+  {% if form.is_policy_acknowledged.errors %}
+    <div class="usa-alert usa-alert--error usa-alert--slim margin-bottom-2">
+      <div class="usa-alert__body">
+        {% for error in form.is_policy_acknowledged.errors %}
+          <p class="usa-alert__text">{{ error }}</p>
+        {% endfor %}
+      </div>
+    </div>
+  {% endif %}
+
   {% if portfolio %}
   <!-- Navigation breadcrumbs -->
   <nav class="usa-breadcrumb padding-top-0" aria-label="Domain breadcrumb">
@@ -28,13 +40,13 @@
     <h2 class="text-bold text-primary-dark domain-name-wrap">Confirm the following information for accuracy</h2>
     <p>Review these details below. We <a href="https://get.gov/domains/requirements/#what-.gov-domain-registrants-must-do" class="usa-link">
       require</a> that you maintain accurate information for the domain.
-      The details you provide will only be used to support eh administration of .gov and won't be made public.
+      The details you provide will only be used to support the administration of .gov and won't be made public.
     </p>
     <p>If you would like to retire your domain instead, please <a href="https://get.gov/contact/" class="usa-link">
       contact us</a>. </p>
     <p><em>Required fields are marked with an asterisk (<abbr class="usa-hint usa-hint--required" title="required">*</abbr>).</em>
     </p>
-    </div>
+  </div>
 
     {% url 'user-profile' as url %}
     {% include "includes/summary_item.html" with title='Your Contact Information' value=user edit_link=url editable=is_editable  contact='true' %}
@@ -66,62 +78,50 @@
       {% include "includes/summary_item.html" with title='Domain managers' list=True users=True value=domain.permissions.all edit_link=url editable=is_editable %}
     {% endif %}
 
-        
+
     <div class="border-top-1px border-primary-dark padding-top-1 margin-top-3 margin-bottom-2">
 
       <fieldset class="usa-fieldset">
         <legend>
-          <h3 class="summary-item__title 
+        <h3 class="summary-item__title 
           font-sans-md 
           text-primary-dark 
           text-semibold 
           margin-top-0 
           margin-bottom-05 
           padding-right-1">
-          Acknowledgement of .gov domain requirements
-          </h3>          
+        Acknowledgement of .gov domain requirements </h3>          
         </legend>
-      
-        {% if messages %}
-          <ul class="messages"></ul>
-          {% for message in messages %}
-              <p class="usa-error-message">{{ message }}</p>
-          {% endfor %}
-        </ul>
-        {% endif %}
-      
-        
-  <form method="post" action="{% url 'domain-renewal' pk=domain.id %}"> 
-    {% csrf_token %}
-    <label>
-      <div class="usa-checkbox">
-        <input 
-          class="usa-checkbox__input" 
-          id="renewal-checkbox" 
-          type="checkbox" 
-          name="is_policy_acknowledged"
-          value="on"
-          {% if request.POST.is_policy_acknowledged %} checked {% endif %}
-          >
-          <label class="usa-checkbox__label" for="renewal-checkbox">
-            I read and agree to the 
-            <a href="https://get.gov/domains/requirements/" class="usa-link">
+    
+        <form method="post" action="{% url 'domain-renewal' pk=domain.id %}"> 
+          {% csrf_token %}
+          <div class="usa-checkbox">
+          {% if form.is_policy_acknowledged.errors %}
+            <p class="usa-error-message">{{ form.is_policy_acknowledged.errors|join:" " }}</p>
+          {% endif %}
+          <input 
+            class="usa-checkbox__input" 
+            id="renewal-checkbox" 
+            type="checkbox" 
+            name="{{ form.is_policy_acknowledged.name }}">
+            <label class="usa-checkbox__label" for="renewal-checkbox">
+              I read and agree to the 
+              <a href="https://get.gov/domains/requirements/" class="usa-link">
               requirements for operating a .gov domain
-            </a>.
-            <abbr class="usa-hint usa-hint--required" title="required">*</abbr>
-          </label>
-      </div>
-    </fieldset>
-    </div>    
-   <button
-    type="submit"
-    name="submit_button"
-    value="next"
-    class="usa-button"
-    method="post"
-    >Submit</button>
-
-  </form>
-
+              </a>.
+              <abbr class="usa-hint usa-hint--required" title="required">*</abbr>
+            </label>
+          </div>
+    
+          <button
+            type="submit"
+            name="submit_button"
+            value="next"
+            class="usa-button margin-top-3"
+          > Submit
+          </button>
+        </form>
+      </fieldset>
+    </div>  <!-- End of the acknowledgement section div -->
   </div>
 {% endblock %}  {# domain_content #}
\ No newline at end of file
diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index ee8adf903..0a4096fbf 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -454,7 +454,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
 
         self.user.save()
 
-    def todays_expiration_date(self):
+    def expiration_date_one_year_out(self):
         todays_date = datetime.today()
         new_expiration_date = todays_date.replace(year=todays_date.year + 1)
         return new_expiration_date
@@ -466,7 +466,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
         return True
 
     def custom_renew_domain(self):
-        self.domain_with_ip.expiration_date = self.todays_expiration_date()
+        self.domain_with_ip.expiration_date = self.expiration_date_one_year_out()
         self.domain_with_ip.save()
 
     @override_flag("domain_renewal", active=True)
@@ -659,7 +659,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             self.assertRedirects(response, reverse("domain", kwargs={"pk": self.domain_with_ip.id}))
 
             # Check for the updated expiration
-            formatted_new_expiration_date = self.todays_expiration_date().strftime("%b. %-d, %Y")
+            formatted_new_expiration_date = self.expiration_date_one_year_out().strftime("%b. %-d, %Y")
             redirect_response = self.client.get(reverse("domain", kwargs={"pk": self.domain_with_ip.id}), follow=True)
             self.assertContains(redirect_response, formatted_new_expiration_date)
 
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index b849459f2..593fc9093 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -12,11 +12,11 @@ from django.contrib import messages
 from django.contrib.messages.views import SuccessMessageMixin
 from django.db import IntegrityError
 from django.http import HttpResponseRedirect
-from django.shortcuts import redirect, render
+from django.shortcuts import redirect, render, get_object_or_404
 from django.urls import reverse
 from django.views.generic.edit import FormMixin
 from django.conf import settings
-from registrar.forms.domain import DomainSuborganizationForm
+from registrar.forms.domain import DomainSuborganizationForm, DomainRenewalForm
 from registrar.models import (
     Domain,
     DomainRequest,
@@ -364,30 +364,32 @@ class DomainRenewalView(DomainBaseView):
         self._update_session_with_domain()
 
     def post(self, request, pk):
-        domain = Domain.objects.filter(id=pk).first()
+        domain = get_object_or_404(Domain, id=pk)
 
-        # Check if the checkbox is checked
-        is_policy_acknowledged = request.POST.get("is_policy_acknowledged", None)
-        if is_policy_acknowledged != "on":
-            messages.error(
-                request, "Check the box if you read and agree to the requirements for operating a .gov domain."
-            )
-            return render(
-                request,
-                "domain_renewal.html",
-                {
-                    "domain": domain,
-                    "form": request.POST,
-                },
-            )
+        form = DomainRenewalForm(request.POST)
 
-        if "submit_button" in request.POST:
-            try:
-                domain.renew_domain()
-                messages.success(request, "This domain has been renewed for one year.")
-            except Exception as e:
-                messages.error(request, "This domain has not been renewed for one year, error was %s" % e)
-        return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
+        if form.is_valid():
+            # check for key in the post request data
+            if "submit_button" in request.POST:
+                try:
+                    domain.renew_domain()
+                    messages.success(request, "This domain has been renewed for one year.")
+                except Exception as e:
+                    messages.error(
+                        request,
+                        "This domain has not been renewed for one year, please email help@get.gov if this problem persists.",
+                    )
+            return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
+
+        # if not valid, render the template with error messages
+        return render(
+            request,
+            "domain_renewal.html",
+            {
+                "domain": domain,
+                "form": form,
+            },
+        )
 
 
 class DomainOrgNameAddressView(DomainFormBaseView):

From e196e02d9284c55057ec1dc6ce4736c6b0f3e0ba Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Tue, 7 Jan 2025 17:28:35 -0800
Subject: [PATCH 20/68] Address linter errors

---
 src/registrar/views/domain.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 593fc9093..4b26caa5f 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -374,10 +374,11 @@ class DomainRenewalView(DomainBaseView):
                 try:
                     domain.renew_domain()
                     messages.success(request, "This domain has been renewed for one year.")
-                except Exception as e:
+                except Exception:
                     messages.error(
                         request,
-                        "This domain has not been renewed for one year, please email help@get.gov if this problem persists.",
+                        "This domain has not been renewed for one year, "
+                        "please email help@get.gov if this problem persists.",
                     )
             return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
 

From aad1ee976b5735633d93caa1a1b9724a46206206 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Tue, 7 Jan 2025 17:40:37 -0800
Subject: [PATCH 21/68] Fix checkbox unchecked test

---
 src/registrar/tests/test_views_domain.py | 14 +++-----------
 1 file changed, 3 insertions(+), 11 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 0a4096fbf..ef4d415df 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -631,19 +631,11 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
         # Grab the renewal URL
         renewal_url = reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id})
 
-        # Test clicking the checkbox
+        # Test that the checkbox is not checked
         response = self.client.post(renewal_url, data={"submit_button": "next"})
 
-        # Verify the error message is displayed
-        # Retrieves messages obj (used in the post call)
-        messages = list(get_messages(response.wsgi_request))
-        # Check we only get 1 error message
-        self.assertEqual(len(messages), 1)
-        # Check that the 1 error msg also is the right text
-        self.assertEqual(
-            str(messages[0]),
-            "Check the box if you read and agree to the requirements for operating a .gov domain.",
-        )
+        error_message = "Check the box if you read and agree to the requirements for operating a .gov domain."
+        self.assertContains(response, error_message)
 
     @override_flag("domain_renewal", active=True)
     def test_ack_checkbox_checked(self):

From 33e36590a4e0ff9b21836d22848618bc456b0533 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Tue, 7 Jan 2025 17:43:54 -0800
Subject: [PATCH 22/68] Remove unused import for linter

---
 src/registrar/tests/test_views_domain.py | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index ef4d415df..79240286a 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -11,7 +11,6 @@ from api.tests.common import less_console_noise_decorator
 from registrar.models.utility.portfolio_helper import UserPortfolioPermissionChoices, UserPortfolioRoleChoices
 from .common import MockEppLib, MockSESClient, create_user  # type: ignore
 from django_webtest import WebTest  # type: ignore
-from django.contrib.messages import get_messages
 import boto3_mocking  # type: ignore
 
 from registrar.utility.errors import (

From 628c4c0d0e4015a248bcc2ee33d583bbf5bcdb69 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Wed, 8 Jan 2025 13:56:48 -0500
Subject: [PATCH 23/68] expired domain renewal form

---
 src/registrar/templates/domain_detail.html  | 6 ++++++
 src/registrar/templates/domain_sidebar.html | 2 +-
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index b168f7e82..becf46d5b 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -50,11 +50,17 @@
           {% if domain.get_state_help_text %}
             <div class="padding-top-1 text-primary-darker">
               {% if has_domain_renewal_flag and domain.is_expiring and is_domain_manager %}
+                This domain has expired, but it is still online. 
+                {% url 'domain-renewal' pk=domain.id as url %}
+                <a href="{{ url }}">Renew to maintain access.</a>
+              {% elif has_domain_renewal_flag and domain.is_expired and is_domain_manager %}
                 This domain will expire soon. 
                 {% url 'domain-renewal' pk=domain.id as url %}
                 <a href="{{ url }}">Renew to maintain access.</a>
               {% elif has_domain_renewal_flag and domain.is_expiring and is_portfolio_user %}
                 This domain will expire soon. Contact one of the listed domain managers to renew the domain.
+              {% elif has_domain_renewal_flag and domain.is_expired and is_portfolio_user %}
+                This domain has expired, but it is still online. Contact one of the listed domain managers to renew the domain.
               {% else %}
                 {{ domain.get_state_help_text }}
               {% endif %}
diff --git a/src/registrar/templates/domain_sidebar.html b/src/registrar/templates/domain_sidebar.html
index 9d71ebf63..c9feb7200 100644
--- a/src/registrar/templates/domain_sidebar.html
+++ b/src/registrar/templates/domain_sidebar.html
@@ -80,7 +80,7 @@
         {% include "includes/domain_sidenav_item.html" with item_text="Domain managers" %}
       {% endwith %}
       
-      {% if has_domain_renewal_flag and is_domain_manager and domain.is_expiring %}
+      {% if has_domain_renewal_flag and is_domain_manager and (domain.is_expiring or domain.is_expired) %}
         {% with url_name="domain-renewal" %}
           {% include "includes/domain_sidenav_item.html" with item_text="Renewal form" %}
         {% endwith %}

From e8fede74ac05885d3b83d90b5cff372f870a5c89 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Wed, 8 Jan 2025 15:25:06 -0500
Subject: [PATCH 24/68] updated code to fix parsing error

---
 src/registrar/templates/domain_sidebar.html | 10 +--
 src/registrar/tests/test_views_domain.py    | 77 +++++++++++++++------
 2 files changed, 61 insertions(+), 26 deletions(-)

diff --git a/src/registrar/templates/domain_sidebar.html b/src/registrar/templates/domain_sidebar.html
index c9feb7200..336a9fe7c 100644
--- a/src/registrar/templates/domain_sidebar.html
+++ b/src/registrar/templates/domain_sidebar.html
@@ -80,10 +80,12 @@
         {% include "includes/domain_sidenav_item.html" with item_text="Domain managers" %}
       {% endwith %}
       
-      {% if has_domain_renewal_flag and is_domain_manager and (domain.is_expiring or domain.is_expired) %}
-        {% with url_name="domain-renewal" %}
-          {% include "includes/domain_sidenav_item.html" with item_text="Renewal form" %}
-        {% endwith %}
+      {% if has_domain_renewal_flag and is_domain_manager%}
+       {% if domain.is_expiring or domain.is_expired %}
+          {% with url_name="domain-renewal" %}
+            {% include "includes/domain_sidenav_item.html" with item_text="Renewal form" %}
+          {% endwith %}
+        {% endif %}
       {% endif %}
       
       {% endif %}
diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index ee8adf903..406e96ed4 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -440,15 +440,15 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             username="usertest",
         )
 
-        self.expiringdomain, _ = Domain.objects.get_or_create(
-            name="expiringdomain.gov",
+        self.domaintorenew, _ = Domain.objects.get_or_create(
+            name="domainrenewal.gov",
         )
 
         UserDomainRole.objects.get_or_create(
-            user=self.user, domain=self.expiringdomain, role=UserDomainRole.Roles.MANAGER
+            user=self.user, domain=self.domaintorenew, role=UserDomainRole.Roles.MANAGER
         )
 
-        DomainInformation.objects.get_or_create(creator=self.user, domain=self.expiringdomain)
+        DomainInformation.objects.get_or_create(creator=self.user, domain=self.domaintorenew)
 
         self.portfolio, _ = Portfolio.objects.get_or_create(organization_name="Test org", creator=self.user)
 
@@ -459,9 +459,12 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
         new_expiration_date = todays_date.replace(year=todays_date.year + 1)
         return new_expiration_date
 
-    def custom_is_expired(self):
+    def custom_is_expired_false(self):
         return False
 
+    def custom_is_expired_true(self):
+        return True
+    
     def custom_is_expiring(self):
         return True
 
@@ -473,11 +476,11 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
     def test_expiring_domain_on_detail_page_as_domain_manager(self):
         self.client.force_login(self.user)
         with patch.object(Domain, "is_expiring", self.custom_is_expiring), patch.object(
-            Domain, "is_expired", self.custom_is_expired
+            Domain, "is_expired", self.custom_is_expired_false
         ):
-            self.assertEquals(self.expiringdomain.state, Domain.State.UNKNOWN)
+            self.assertEquals(self.domaintorenew.state, Domain.State.UNKNOWN)
             detail_page = self.client.get(
-                reverse("domain", kwargs={"pk": self.expiringdomain.id}),
+                reverse("domain", kwargs={"pk": self.domaintorenew.id}),
             )
             self.assertContains(detail_page, "Expiring soon")
 
@@ -508,17 +511,17 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
                 UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS,
             ],
         )
-        expiringdomain2, _ = Domain.objects.get_or_create(name="bogusdomain2.gov")
+        domaintorenew2, _ = Domain.objects.get_or_create(name="bogusdomain2.gov")
         DomainInformation.objects.get_or_create(
-            creator=non_dom_manage_user, domain=expiringdomain2, portfolio=self.portfolio
+            creator=non_dom_manage_user, domain=domaintorenew2, portfolio=self.portfolio
         )
         non_dom_manage_user.refresh_from_db()
         self.client.force_login(non_dom_manage_user)
         with patch.object(Domain, "is_expiring", self.custom_is_expiring), patch.object(
-            Domain, "is_expired", self.custom_is_expired
+            Domain, "is_expired", self.custom_is_expired_false
         ):
             detail_page = self.client.get(
-                reverse("domain", kwargs={"pk": expiringdomain2.id}),
+                reverse("domain", kwargs={"pk": domaintorenew2.id}),
             )
             self.assertContains(detail_page, "Contact one of the listed domain managers to renew the domain.")
 
@@ -527,29 +530,29 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
     def test_expiring_domain_on_detail_page_in_org_model_as_a_domain_manager(self):
         portfolio, _ = Portfolio.objects.get_or_create(organization_name="Test org2", creator=self.user)
 
-        expiringdomain3, _ = Domain.objects.get_or_create(name="bogusdomain3.gov")
+        domaintorenew3, _ = Domain.objects.get_or_create(name="bogusdomain3.gov")
 
-        UserDomainRole.objects.get_or_create(user=self.user, domain=expiringdomain3, role=UserDomainRole.Roles.MANAGER)
-        DomainInformation.objects.get_or_create(creator=self.user, domain=expiringdomain3, portfolio=portfolio)
+        UserDomainRole.objects.get_or_create(user=self.user, domain=domaintorenew3, role=UserDomainRole.Roles.MANAGER)
+        DomainInformation.objects.get_or_create(creator=self.user, domain=domaintorenew3, portfolio=portfolio)
         self.user.refresh_from_db()
         self.client.force_login(self.user)
         with patch.object(Domain, "is_expiring", self.custom_is_expiring), patch.object(
-            Domain, "is_expired", self.custom_is_expired
+            Domain, "is_expired", self.custom_is_expired_false
         ):
             detail_page = self.client.get(
-                reverse("domain", kwargs={"pk": expiringdomain3.id}),
+                reverse("domain", kwargs={"pk": domaintorenew3.id}),
             )
             self.assertContains(detail_page, "Renew to maintain access")
 
     @override_flag("domain_renewal", active=True)
-    def test_domain_renewal_form_and_sidebar(self):
+    def test_domain_renewal_form_and_sidebar_expiring(self):
         self.client.force_login(self.user)
         with patch.object(Domain, "is_expiring", self.custom_is_expiring), patch.object(
-            Domain, "is_expired", self.custom_is_expired
+            Domain, "is_expiring", self.custom_is_expiring
         ):
             # Grab the detail page
             detail_page = self.client.get(
-                reverse("domain", kwargs={"pk": self.expiringdomain.id}),
+                reverse("domain", kwargs={"pk": self.domaintorenew.id}),
             )
 
             # Make sure we see the link as a domain manager
@@ -559,14 +562,44 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             self.assertContains(detail_page, "Renewal form")
 
             # Grab link to the renewal page
-            renewal_form_url = reverse("domain-renewal", kwargs={"pk": self.expiringdomain.id})
+            renewal_form_url = reverse("domain-renewal", kwargs={"pk": self.domaintorenew.id})
             self.assertContains(detail_page, f'href="{renewal_form_url}"')
 
             # Simulate clicking the link
             response = self.client.get(renewal_form_url)
 
             self.assertEqual(response.status_code, 200)
-            self.assertContains(response, f"Renew {self.expiringdomain.name}")
+            self.assertContains(response, f"Renew {self.domaintorenew.name}")
+    
+    @override_flag("domain_renewal", active=True)
+    def test_domain_renewal_form_and_sidebar_expired(self):
+        
+        self.client.force_login(self.user)
+     
+        with patch.object(Domain, "is_expired", self.custom_is_expired_true), patch.object(
+            Domain, "is_expired", self.custom_is_expired_true
+        ):
+            # Grab the detail page
+            detail_page = self.client.get(
+                reverse("domain", kwargs={"pk": self.domaintorenew.id}),
+            )
+
+            print("puglesss", self.domaintorenew.is_expired)
+            # Make sure we see the link as a domain manager
+            self.assertContains(detail_page, "Renew to maintain access")
+
+            # Make sure we can see Renewal form on the sidebar since it's expired
+            self.assertContains(detail_page, "Renewal form")
+
+            # Grab link to the renewal page
+            renewal_form_url = reverse("domain-renewal", kwargs={"pk": self.domaintorenew.id})
+            self.assertContains(detail_page, f'href="{renewal_form_url}"')
+
+            # Simulate clicking the link
+            response = self.client.get(renewal_form_url)
+
+            self.assertEqual(response.status_code, 200)
+            self.assertContains(response, f"Renew {self.domaintorenew.name}")
 
     @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_your_contact_info_edit(self):

From c7af6645d4a8ffac6a3b33b307f97ed6871aded2 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Wed, 8 Jan 2025 15:31:59 -0500
Subject: [PATCH 25/68] ran app black .

---
 src/registrar/tests/test_views_domain.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 406e96ed4..575dc0faf 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -464,7 +464,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
 
     def custom_is_expired_true(self):
         return True
-    
+
     def custom_is_expiring(self):
         return True
 
@@ -570,12 +570,12 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
 
             self.assertEqual(response.status_code, 200)
             self.assertContains(response, f"Renew {self.domaintorenew.name}")
-    
+
     @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_and_sidebar_expired(self):
-        
+
         self.client.force_login(self.user)
-     
+
         with patch.object(Domain, "is_expired", self.custom_is_expired_true), patch.object(
             Domain, "is_expired", self.custom_is_expired_true
         ):

From b048ff96de5565042e126ffd64cbdc3750a5face Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 8 Jan 2025 18:26:56 -0500
Subject: [PATCH 26/68] handle multiple domains in email notifications

---
 src/registrar/admin.py                        |  3 +-
 .../templates/emails/domain_invitation.txt    | 41 +++++----
 .../emails/domain_invitation_subject.txt      |  2 +-
 src/registrar/utility/email_invitations.py    | 50 +++++++----
 src/registrar/views/domain.py                 |  5 +-
 src/registrar/views/portfolios.py             | 85 ++++++++++++-------
 6 files changed, 119 insertions(+), 67 deletions(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 0f0c76ee3..06731db38 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -1480,8 +1480,9 @@ class DomainInvitationAdmin(ListHeaderAdmin):
                 send_domain_invitation_email(
                     email=requested_email,
                     requestor=requestor,
-                    domain=domain,
+                    domains=domain,
                     is_member_of_different_org=member_of_a_different_org,
+                    requested_user=requested_user
                 )
                 if requested_user is not None:
                     # Domain Invitation creation for an existing User
diff --git a/src/registrar/templates/emails/domain_invitation.txt b/src/registrar/templates/emails/domain_invitation.txt
index 068040205..4959f7c23 100644
--- a/src/registrar/templates/emails/domain_invitation.txt
+++ b/src/registrar/templates/emails/domain_invitation.txt
@@ -1,36 +1,46 @@
 {% autoescape off %}{# In a text file, we don't want to have HTML entities escaped #}
-Hi.
+{% if requested_user and requested_user.first_name %}
+Hi, {{ requested_user.first_name }}.
+{% else %}
+Hi,
+{% endif %}
 
-{{ requestor_email }} has added you as a manager on {{ domain.name }}.
+{{ requestor_email }} has invited you to manage:
+{% for domain in domains %}
+{{ domain.name }}
+{% endfor %}
 
-You can manage this domain on the .gov registrar <https://manage.get.gov>.
+To manage domain information, visit the .gov registrar <https://manage.get.gov>.
 
 ----------------------------------------------------------------
+{% if not requested_user %}
 
 YOU NEED A LOGIN.GOV ACCOUNT
-You’ll need a Login.gov account to manage your .gov domain. Login.gov provides
-a simple and secure process for signing in to many government services with one
-account. 
+You’ll need a Login.gov account to access the .gov registrar. That account needs to be
+associated with the following email address: {{ invitee_email_address }}
 
-If you don’t already have one, follow these steps to create your
-Login.gov account <https://login.gov/help/get-started/create-your-account/>.
+Login.gov provides a simple and secure process for signing in to many government
+services with one account. If you don’t already have one, follow these steps to create
+your Login.gov account <https://login.gov/help/get-started/create-your-account/>.
+{% endif %}
 
 
 DOMAIN MANAGEMENT
-As a .gov domain manager, you can add or update information about your domain.
-You’ll also serve as a contact for your .gov domain. Please keep your contact
-information updated. 
+As a .gov domain manager, you can add or update information like name servers. You’ll
+also serve as a contact for the domains you manage. Please keep your contact
+information updated.
 
 Learn more about domain management <https://get.gov/help/domain-management>. 
 
 
 SOMETHING WRONG?
-If you’re not affiliated with {{ domain.name }} or think you received this
-message in error, reply to this email.
+If you’re not affiliated with the .gov domains mentioned in this invitation or think you
+received this message in error, reply to this email.
 
 
 THANK YOU
-.Gov helps the public identify official, trusted information. Thank you for using a .gov domain.
+.Gov helps the public identify official, trusted information. Thank you for using a .gov
+domain.
 
 ----------------------------------------------------------------
 
@@ -38,5 +48,6 @@ The .gov team
 Contact us: <https://get.gov/contact/>
 Learn about .gov <https://get.gov>
 
-The .gov registry is a part of the Cybersecurity and Infrastructure Security Agency (CISA) <https://cisa.gov/>
+The .gov registry is a part of the Cybersecurity and Infrastructure Security Agency
+(CISA) <https://cisa.gov/>
 {% endautoescape %}
diff --git a/src/registrar/templates/emails/domain_invitation_subject.txt b/src/registrar/templates/emails/domain_invitation_subject.txt
index 319b80176..9663346d0 100644
--- a/src/registrar/templates/emails/domain_invitation_subject.txt
+++ b/src/registrar/templates/emails/domain_invitation_subject.txt
@@ -1 +1 @@
-You’ve been added to a .gov domain
\ No newline at end of file
+You've been invited to manage {% if domains|length > 1 %}.gov domains{% else %}{{ domains.0.name }}{% endif %}
\ No newline at end of file
diff --git a/src/registrar/utility/email_invitations.py b/src/registrar/utility/email_invitations.py
index 9455c5927..630da7ce5 100644
--- a/src/registrar/utility/email_invitations.py
+++ b/src/registrar/utility/email_invitations.py
@@ -1,5 +1,7 @@
 from django.conf import settings
 from registrar.models import DomainInvitation
+from registrar.models.domain import Domain
+from registrar.models.user import User
 from registrar.utility.errors import (
     AlreadyDomainInvitedError,
     AlreadyDomainManagerError,
@@ -13,7 +15,7 @@ import logging
 logger = logging.getLogger(__name__)
 
 
-def send_domain_invitation_email(email: str, requestor, domain, is_member_of_different_org):
+def send_domain_invitation_email(email: str, requestor, domains: Domain | list[Domain], is_member_of_different_org, requested_user=None):
     """
     Sends a domain invitation email to the specified address.
 
@@ -22,8 +24,9 @@ def send_domain_invitation_email(email: str, requestor, domain, is_member_of_dif
     Args:
         email (str): Email address of the recipient.
         requestor (User): The user initiating the invitation.
-        domain (Domain): The domain object for which the invitation is being sent.
+        domains (Domain or list of Domain): The domain objects for which the invitation is being sent.
         is_member_of_different_org (bool): if an email belongs to a different org
+        requested_user (User | None): The recipient if the email belongs to a user in the registrar
 
     Raises:
         MissingEmailError: If the requestor has no email associated with their account.
@@ -32,13 +35,19 @@ def send_domain_invitation_email(email: str, requestor, domain, is_member_of_dif
         OutsideOrgMemberError: If the requested_user is part of a different organization.
         EmailSendingError: If there is an error while sending the email.
     """
+    print('send_domain_invitation_email')
+    # Normalize domains
+    if isinstance(domains, Domain):
+        domains = [domains]
+
     # Default email address for staff
     requestor_email = settings.DEFAULT_FROM_EMAIL
 
     # Check if the requestor is staff and has an email
     if not requestor.is_staff:
         if not requestor.email or requestor.email.strip() == "":
-            raise MissingEmailError(email=email, domain=domain)
+            domain_names = ", ".join([domain.name for domain in domains])
+            raise MissingEmailError(email=email, domain=domain_names)
         else:
             requestor_email = requestor.email
 
@@ -51,18 +60,19 @@ def send_domain_invitation_email(email: str, requestor, domain, is_member_of_dif
     ):
         raise OutsideOrgMemberError
 
-    # Check for an existing invitation
-    try:
-        invite = DomainInvitation.objects.get(email=email, domain=domain)
-        if invite.status == DomainInvitation.DomainInvitationStatus.RETRIEVED:
-            raise AlreadyDomainManagerError(email)
-        elif invite.status == DomainInvitation.DomainInvitationStatus.CANCELED:
-            invite.update_cancellation_status()
-            invite.save()
-        else:
-            raise AlreadyDomainInvitedError(email)
-    except DomainInvitation.DoesNotExist:
-        pass
+    # Check for an existing invitation for each domain
+    for domain in domains:
+        try:
+            invite = DomainInvitation.objects.get(email=email, domain=domain)
+            if invite.status == DomainInvitation.DomainInvitationStatus.RETRIEVED:
+                raise AlreadyDomainManagerError(email)
+            elif invite.status == DomainInvitation.DomainInvitationStatus.CANCELED:
+                invite.update_cancellation_status()
+                invite.save()
+            else:
+                raise AlreadyDomainInvitedError(email)
+        except DomainInvitation.DoesNotExist:
+            pass
 
     # Send the email
     try:
@@ -71,12 +81,18 @@ def send_domain_invitation_email(email: str, requestor, domain, is_member_of_dif
             "emails/domain_invitation_subject.txt",
             to_address=email,
             context={
-                "domain": domain,
+                "domains": domains,
                 "requestor_email": requestor_email,
+                "invitee_email_address": email,
+                "requested_user": requested_user,
             },
         )
     except EmailSendingError as err:
-        raise EmailSendingError(f"Could not send email invitation to {email} for domain {domain}.") from err
+        print('point of failure test')
+        domain_names = ", ".join([domain.name for domain in domains])
+        raise EmailSendingError(
+            f"Could not send email invitation to {email} for domains: {domain_names}"
+        ) from err
 
 
 def send_portfolio_invitation_email(email: str, requestor, portfolio):
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index b8464464e..f7938a301 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -1204,7 +1204,7 @@ class DomainAddUserView(DomainFormBaseView):
         send_domain_invitation_email(
             email=email,
             requestor=requestor,
-            domain=self.object,
+            domains=self.object,
             is_member_of_different_org=member_of_different_org,
         )
         DomainInvitation.objects.get_or_create(email=email, domain=self.object)
@@ -1215,8 +1215,9 @@ class DomainAddUserView(DomainFormBaseView):
         send_domain_invitation_email(
             email=email,
             requestor=requestor,
-            domain=self.object,
+            domains=self.object,
             is_member_of_different_org=member_of_different_org,
+            requested_user=requested_user,
         )
         UserDomainRole.objects.create(
             user=requested_user,
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 60b30ad60..0cca1280c 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -8,13 +8,14 @@ from django.utils.safestring import mark_safe
 from django.contrib import messages
 from registrar.forms import portfolio as portfolioForms
 from registrar.models import Portfolio, User
+from registrar.models.domain import Domain
 from registrar.models.domain_invitation import DomainInvitation
 from registrar.models.portfolio_invitation import PortfolioInvitation
 from registrar.models.user_domain_role import UserDomainRole
 from registrar.models.user_portfolio_permission import UserPortfolioPermission
 from registrar.models.utility.portfolio_helper import UserPortfolioPermissionChoices, UserPortfolioRoleChoices
 from registrar.utility.email import EmailSendingError
-from registrar.utility.email_invitations import send_portfolio_invitation_email
+from registrar.utility.email_invitations import send_domain_invitation_email, send_portfolio_invitation_email
 from registrar.utility.errors import MissingEmailError
 from registrar.utility.enums import DefaultUserValues
 from registrar.views.utility.mixins import PortfolioMemberPermission
@@ -33,6 +34,8 @@ from django.views.generic import View
 from django.views.generic.edit import FormMixin
 from django.db import IntegrityError
 
+from registrar.views.utility.portfolio_helper import get_org_membership
+
 
 logger = logging.getLogger(__name__)
 
@@ -237,6 +240,7 @@ class PortfolioMemberDomainsEditView(PortfolioMemberDomainsEditPermissionView, V
         removed_domains = request.POST.get("removed_domains")
         portfolio_permission = get_object_or_404(UserPortfolioPermission, pk=pk)
         member = portfolio_permission.user
+        portfolio = portfolio_permission.portfolio
 
         added_domain_ids = self._parse_domain_ids(added_domains, "added domains")
         if added_domain_ids is None:
@@ -248,7 +252,7 @@ class PortfolioMemberDomainsEditView(PortfolioMemberDomainsEditPermissionView, V
 
         if added_domain_ids or removed_domain_ids:
             try:
-                self._process_added_domains(added_domain_ids, member)
+                self._process_added_domains(added_domain_ids, member, request.user, portfolio)
                 self._process_removed_domains(removed_domain_ids, member)
                 messages.success(request, "The domain assignment changes have been saved.")
                 return redirect(reverse("member-domains", kwargs={"pk": pk}))
@@ -263,7 +267,7 @@ class PortfolioMemberDomainsEditView(PortfolioMemberDomainsEditPermissionView, V
             except Exception as e:
                 messages.error(
                     request,
-                    "An unexpected error occurred: {str(e)}. If the issue persists, "
+                    f"An unexpected error occurred: {str(e)}. If the issue persists, "
                     f"please contact {DefaultUserValues.HELP_EMAIL}.",
                 )
                 logger.error(f"An unexpected error occurred: {str(e)}")
@@ -287,16 +291,26 @@ class PortfolioMemberDomainsEditView(PortfolioMemberDomainsEditPermissionView, V
             logger.error(f"Invalid data for {domain_type}")
             return None
 
-    def _process_added_domains(self, added_domain_ids, member):
+    def _process_added_domains(self, added_domain_ids, member, requestor, portfolio):
         """
         Processes added domains by bulk creating UserDomainRole instances.
         """
         if added_domain_ids:
+            print('_process_added_domains')
+            added_domains = Domain.objects.filter(id__in=added_domain_ids)
+            member_of_a_different_org, _ = get_org_membership(portfolio, member.email, member)
+            send_domain_invitation_email(
+                email=member.email,
+                requestor=requestor,
+                domains=added_domains,
+                is_member_of_different_org=member_of_a_different_org,
+                requested_user=member,
+            )
             # Bulk create UserDomainRole instances for added domains
             UserDomainRole.objects.bulk_create(
                 [
-                    UserDomainRole(domain_id=domain_id, user=member, role=UserDomainRole.Roles.MANAGER)
-                    for domain_id in added_domain_ids
+                    UserDomainRole(domain=domain, user=member, role=UserDomainRole.Roles.MANAGER)
+                    for domain in added_domains
                 ],
                 ignore_conflicts=True,  # Avoid duplicate entries
             )
@@ -443,6 +457,7 @@ class PortfolioInvitedMemberDomainsEditView(PortfolioMemberDomainsEditPermission
         removed_domains = request.POST.get("removed_domains")
         portfolio_invitation = get_object_or_404(PortfolioInvitation, pk=pk)
         email = portfolio_invitation.email
+        portfolio = portfolio_invitation.portfolio
 
         added_domain_ids = self._parse_domain_ids(added_domains, "added domains")
         if added_domain_ids is None:
@@ -454,7 +469,7 @@ class PortfolioInvitedMemberDomainsEditView(PortfolioMemberDomainsEditPermission
 
         if added_domain_ids or removed_domain_ids:
             try:
-                self._process_added_domains(added_domain_ids, email)
+                self._process_added_domains(added_domain_ids, email, request.user, portfolio)
                 self._process_removed_domains(removed_domain_ids, email)
                 messages.success(request, "The domain assignment changes have been saved.")
                 return redirect(reverse("invitedmember-domains", kwargs={"pk": pk}))
@@ -469,7 +484,7 @@ class PortfolioInvitedMemberDomainsEditView(PortfolioMemberDomainsEditPermission
             except Exception as e:
                 messages.error(
                     request,
-                    "An unexpected error occurred: {str(e)}. If the issue persists, "
+                    f"An unexpected error occurred: {str(e)}. If the issue persists, "
                     f"please contact {DefaultUserValues.HELP_EMAIL}.",
                 )
                 logger.error(f"An unexpected error occurred: {str(e)}.")
@@ -493,34 +508,41 @@ class PortfolioInvitedMemberDomainsEditView(PortfolioMemberDomainsEditPermission
             logger.error(f"Invalid data for {domain_type}.")
             return None
 
-    def _process_added_domains(self, added_domain_ids, email):
+    def _process_added_domains(self, added_domain_ids, email, requestor, portfolio):
         """
         Processes added domain invitations by updating existing invitations
         or creating new ones.
         """
-        if not added_domain_ids:
-            return
-
-        # Update existing invitations from CANCELED to INVITED
-        existing_invitations = DomainInvitation.objects.filter(domain_id__in=added_domain_ids, email=email)
-        existing_invitations.update(status=DomainInvitation.DomainInvitationStatus.INVITED)
-
-        # Determine which domains need new invitations
-        existing_domain_ids = existing_invitations.values_list("domain_id", flat=True)
-        new_domain_ids = set(added_domain_ids) - set(existing_domain_ids)
-
-        # Bulk create new invitations
-        DomainInvitation.objects.bulk_create(
-            [
-                DomainInvitation(
-                    domain_id=domain_id,
+        if added_domain_ids:
+            added_domains = Domain.objects.filter(id__in=added_domain_ids)
+            member_of_a_different_org, _ = get_org_membership(portfolio, email, None)
+            send_domain_invitation_email(
                     email=email,
-                    status=DomainInvitation.DomainInvitationStatus.INVITED,
+                    requestor=requestor,
+                    domains=added_domains,
+                    is_member_of_different_org=member_of_a_different_org,
                 )
-                for domain_id in new_domain_ids
-            ]
-        )
 
+            # Update existing invitations from CANCELED to INVITED
+            existing_invitations = DomainInvitation.objects.filter(domain__in=added_domains, email=email)
+            existing_invitations.update(status=DomainInvitation.DomainInvitationStatus.INVITED)
+
+            # Determine which domains need new invitations
+            existing_domain_ids = existing_invitations.values_list("domain_id", flat=True)
+            new_domain_ids = set(added_domain_ids) - set(existing_domain_ids)
+
+            # Bulk create new invitations
+            DomainInvitation.objects.bulk_create(
+                [
+                    DomainInvitation(
+                        domain_id=domain_id,
+                        email=email,
+                        status=DomainInvitation.DomainInvitationStatus.INVITED,
+                    )
+                    for domain_id in new_domain_ids
+                ]
+            )
+        
     def _process_removed_domains(self, removed_domain_ids, email):
         """
         Processes removed domain invitations by updating their status to CANCELED.
@@ -755,8 +777,9 @@ class PortfolioAddMemberView(PortfolioMembersPermissionView, FormMixin):
             if not requested_user or not permission_exists:
                 send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=portfolio)
                 portfolio_invitation = form.save()
-                portfolio_invitation.retrieve()
-                portfolio_invitation.save()
+                if requested_user is not None:
+                    portfolio_invitation.retrieve()
+                    portfolio_invitation.save()
                 messages.success(self.request, f"{requested_email} has been invited.")
             else:
                 if permission_exists:

From acd20e89141f7a581fdb62281fc3d5c082d3b780 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Wed, 8 Jan 2025 21:16:01 -0800
Subject: [PATCH 27/68] Fix uncheck error

---
 src/registrar/templates/domain_renewal.html | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index bf529a04d..7867bfce8 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -103,7 +103,9 @@
             class="usa-checkbox__input" 
             id="renewal-checkbox" 
             type="checkbox" 
-            name="{{ form.is_policy_acknowledged.name }}">
+            name="{{ form.is_policy_acknowledged.name }}"
+            {% if form.is_policy_acknowledged.value %}checked{% endif %}
+            >
             <label class="usa-checkbox__label" for="renewal-checkbox">
               I read and agree to the 
               <a href="https://get.gov/domains/requirements/" class="usa-link">

From 9a8b236d5d6fdea79e200a0aa6e4067a7a5e5d07 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 07:24:30 -0500
Subject: [PATCH 28/68] refactored admin.py and renamed helper file

---
 src/registrar/admin.py                        | 208 ++++++------------
 src/registrar/views/domain.py                 |   2 +-
 src/registrar/views/portfolios.py             |   2 +-
 ...rtfolio_helper.py => invitation_helper.py} |   3 +
 4 files changed, 78 insertions(+), 137 deletions(-)
 rename src/registrar/views/utility/{portfolio_helper.py => invitation_helper.py} (93%)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 06731db38..e6f0f7929 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -29,7 +29,7 @@ from django_fsm import get_available_FIELD_transitions, FSMField
 from registrar.models import DomainInformation, Portfolio, UserPortfolioPermission, DomainInvitation
 from registrar.models.utility.portfolio_helper import UserPortfolioPermissionChoices, UserPortfolioRoleChoices
 from registrar.utility.email_invitations import send_domain_invitation_email, send_portfolio_invitation_email
-from registrar.views.utility.portfolio_helper import (
+from registrar.views.utility.invitation_helper import (
     get_org_membership,
     get_requested_user,
     handle_invitation_exceptions,
@@ -1393,8 +1393,78 @@ class UserDomainRoleAdmin(ListHeaderAdmin, ImportExportModelAdmin):
 
         return super().changeform_view(request, object_id, form_url, extra_context=extra_context)
 
+class BaseInvitationAdmin(ListHeaderAdmin):
+    """Base class for admin classes which will customize save_model and send email invitations
+    on model adds, and require custom handling of forms and form errors."""
 
-class DomainInvitationAdmin(ListHeaderAdmin):
+    def response_add(self, request, obj, post_url_continue=None):
+        """
+        Override response_add to handle rendering when exceptions are raised during add model.
+
+        Normal flow on successful save_model on add is to redirect to changelist_view.
+        If there are errors, flow is modified to instead render change form.
+        """
+        # store current messages from request so that they are preserved throughout the method
+        storage = get_messages(request)
+        # Check if there are any error or warning messages in the `messages` framework
+        has_errors = any(message.level_tag in ["error", "warning"] for message in storage)
+
+        if has_errors:
+            # Re-render the change form if there are errors or warnings
+            # Prepare context for rendering the change form
+
+            # Get the model form
+            ModelForm = self.get_form(request, obj=obj)
+            form = ModelForm(instance=obj)
+
+            # Create an AdminForm instance
+            admin_form = AdminForm(
+                form,
+                list(self.get_fieldsets(request, obj)),
+                self.get_prepopulated_fields(request, obj),
+                self.get_readonly_fields(request, obj),
+                model_admin=self,
+            )
+            media = self.media + form.media
+
+            opts = obj._meta
+            change_form_context = {
+                **self.admin_site.each_context(request),  # Add admin context
+                "title": f"Add {opts.verbose_name}",
+                "opts": opts,
+                "original": obj,
+                "save_as": self.save_as,
+                "has_change_permission": self.has_change_permission(request, obj),
+                "add": True,  # Indicate this is an "Add" form
+                "change": False,  # Indicate this is not a "Change" form
+                "is_popup": False,
+                "inline_admin_formsets": [],
+                "save_on_top": self.save_on_top,
+                "show_delete": self.has_delete_permission(request, obj),
+                "obj": obj,
+                "adminform": admin_form,  # Pass the AdminForm instance
+                "media": media,
+                "errors": None,
+            }
+            return self.render_change_form(
+                request,
+                context=change_form_context,
+                add=True,
+                change=False,
+                obj=obj,
+            )
+
+        response = super().response_add(request, obj, post_url_continue)
+
+        # Re-add all messages from storage after `super().response_add`
+        # as super().response_add resets the success messages in request
+        for message in storage:
+            messages.add_message(request, message.level, message.message)
+
+        return response
+
+
+class DomainInvitationAdmin(BaseInvitationAdmin):
     """Custom domain invitation admin class."""
 
     class Meta:
@@ -1497,74 +1567,8 @@ class DomainInvitationAdmin(ListHeaderAdmin):
             # Call the parent save method to save the object
             super().save_model(request, obj, form, change)
 
-    def response_add(self, request, obj, post_url_continue=None):
-        """
-        Override response_add to handle rendering when exceptions are raised during add model.
 
-        Normal flow on successful save_model on add is to redirect to changelist_view.
-        If there are errors, flow is modified to instead render change form.
-        """
-        # Check if there are any error or warning messages in the `messages` framework
-        storage = get_messages(request)
-        has_errors = any(message.level_tag in ["error", "warning"] for message in storage)
-
-        if has_errors:
-            # Re-render the change form if there are errors or warnings
-            # Prepare context for rendering the change form
-
-            # Get the model form
-            ModelForm = self.get_form(request, obj=obj)
-            form = ModelForm(instance=obj)
-
-            # Create an AdminForm instance
-            admin_form = AdminForm(
-                form,
-                list(self.get_fieldsets(request, obj)),
-                self.get_prepopulated_fields(request, obj),
-                self.get_readonly_fields(request, obj),
-                model_admin=self,
-            )
-            media = self.media + form.media
-
-            opts = obj._meta
-            change_form_context = {
-                **self.admin_site.each_context(request),  # Add admin context
-                "title": f"Add {opts.verbose_name}",
-                "opts": opts,
-                "original": obj,
-                "save_as": self.save_as,
-                "has_change_permission": self.has_change_permission(request, obj),
-                "add": True,  # Indicate this is an "Add" form
-                "change": False,  # Indicate this is not a "Change" form
-                "is_popup": False,
-                "inline_admin_formsets": [],
-                "save_on_top": self.save_on_top,
-                "show_delete": self.has_delete_permission(request, obj),
-                "obj": obj,
-                "adminform": admin_form,  # Pass the AdminForm instance
-                "media": media,
-                "errors": None,
-            }
-            return self.render_change_form(
-                request,
-                context=change_form_context,
-                add=True,
-                change=False,
-                obj=obj,
-            )
-        # Preserve all success messages
-        all_messages = [message for message in get_messages(request)]
-
-        response = super().response_add(request, obj, post_url_continue)
-
-        # Re-add all messages to the storage after `super().response_add` to preserve them
-        for message in all_messages:
-            messages.add_message(request, message.level, message.message)
-
-        return response
-
-
-class PortfolioInvitationAdmin(ListHeaderAdmin):
+class PortfolioInvitationAdmin(BaseInvitationAdmin):
     """Custom portfolio invitation admin class."""
 
     form = PortfolioInvitationAdminForm
@@ -1647,72 +1651,6 @@ class PortfolioInvitationAdmin(ListHeaderAdmin):
         # Call the parent save method to save the object
         super().save_model(request, obj, form, change)
 
-    def response_add(self, request, obj, post_url_continue=None):
-        """
-        Override response_add to handle rendering when exceptions are raised during add model.
-
-        Normal flow on successful save_model on add is to redirect to changelist_view.
-        If there are errors, flow is modified to instead render change form.
-        """
-        # Check if there are any error or warning messages in the `messages` framework
-        storage = get_messages(request)
-        has_errors = any(message.level_tag in ["error", "warning"] for message in storage)
-
-        if has_errors:
-            # Re-render the change form if there are errors or warnings
-            # Prepare context for rendering the change form
-
-            # Get the model form
-            ModelForm = self.get_form(request, obj=obj)
-            form = ModelForm(instance=obj)
-
-            # Create an AdminForm instance
-            admin_form = AdminForm(
-                form,
-                list(self.get_fieldsets(request, obj)),
-                self.get_prepopulated_fields(request, obj),
-                self.get_readonly_fields(request, obj),
-                model_admin=self,
-            )
-            media = self.media + form.media
-
-            opts = obj._meta
-            change_form_context = {
-                **self.admin_site.each_context(request),  # Add admin context
-                "title": f"Add {opts.verbose_name}",
-                "opts": opts,
-                "original": obj,
-                "save_as": self.save_as,
-                "has_change_permission": self.has_change_permission(request, obj),
-                "add": True,  # Indicate this is an "Add" form
-                "change": False,  # Indicate this is not a "Change" form
-                "is_popup": False,
-                "inline_admin_formsets": [],
-                "save_on_top": self.save_on_top,
-                "show_delete": self.has_delete_permission(request, obj),
-                "obj": obj,
-                "adminform": admin_form,  # Pass the AdminForm instance
-                "media": media,
-                "errors": None,
-            }
-            return self.render_change_form(
-                request,
-                context=change_form_context,
-                add=True,
-                change=False,
-                obj=obj,
-            )
-        # Preserve all success messages
-        all_messages = [message for message in get_messages(request)]
-
-        response = super().response_add(request, obj, post_url_continue)
-
-        # Re-add all messages to the storage after `super().response_add` to preserve them
-        for message in all_messages:
-            messages.add_message(request, message.level, message.message)
-
-        return response
-
 
 class DomainInformationResource(resources.ModelResource):
     """defines how each field in the referenced model should be mapped to the corresponding fields in the
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index f7938a301..2e4f375eb 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -42,7 +42,7 @@ from registrar.utility.errors import (
 from registrar.models.utility.contact_error import ContactError
 from registrar.views.utility.permission_views import UserDomainRolePermissionDeleteView
 from registrar.utility.waffle import flag_is_active_for_user
-from registrar.views.utility.portfolio_helper import (
+from registrar.views.utility.invitation_helper import (
     get_org_membership,
     get_requested_user,
     handle_invitation_exceptions,
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 0cca1280c..60a96bba6 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -34,7 +34,7 @@ from django.views.generic import View
 from django.views.generic.edit import FormMixin
 from django.db import IntegrityError
 
-from registrar.views.utility.portfolio_helper import get_org_membership
+from registrar.views.utility.invitation_helper import get_org_membership
 
 
 logger = logging.getLogger(__name__)
diff --git a/src/registrar/views/utility/portfolio_helper.py b/src/registrar/views/utility/invitation_helper.py
similarity index 93%
rename from src/registrar/views/utility/portfolio_helper.py
rename to src/registrar/views/utility/invitation_helper.py
index 6fa2d7e60..8c3b1bff7 100644
--- a/src/registrar/views/utility/portfolio_helper.py
+++ b/src/registrar/views/utility/invitation_helper.py
@@ -15,6 +15,9 @@ from registrar.utility.errors import (
 
 logger = logging.getLogger(__name__)
 
+# These methods are used by multiple views which share similar logic and function
+# when creating invitations and sending associated emails. These can be reused in
+# any view, and were initially developed for domain.py, portfolios.py and admin.py
 
 def get_org_membership(requestor_org, requested_email, requested_user):
     """

From 94ed2c20b99141431535f61d92d66501e8aab498 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 07:33:32 -0500
Subject: [PATCH 29/68] code cleanup - removed unnecessary note

---
 src/registrar/models/domain_invitation.py | 2 --
 1 file changed, 2 deletions(-)

diff --git a/src/registrar/models/domain_invitation.py b/src/registrar/models/domain_invitation.py
index e2aede696..28089dcb5 100644
--- a/src/registrar/models/domain_invitation.py
+++ b/src/registrar/models/domain_invitation.py
@@ -56,8 +56,6 @@ class DomainInvitation(TimeStampedModel):
         Raises:
             RuntimeError if no matching user can be found.
         """
-        # NOTE: this is currently not accounting for scenario when User.objects.get matches
-        # multiple user accounts with the same email address
 
         # get a user with this email address
         User = get_user_model()

From b9626e2b9afb7a6275c81fca560faad6d2724645 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 07:42:17 -0500
Subject: [PATCH 30/68] removed print statements

---
 src/registrar/utility/email_invitations.py | 2 --
 1 file changed, 2 deletions(-)

diff --git a/src/registrar/utility/email_invitations.py b/src/registrar/utility/email_invitations.py
index 630da7ce5..55a0bdf14 100644
--- a/src/registrar/utility/email_invitations.py
+++ b/src/registrar/utility/email_invitations.py
@@ -35,7 +35,6 @@ def send_domain_invitation_email(email: str, requestor, domains: Domain | list[D
         OutsideOrgMemberError: If the requested_user is part of a different organization.
         EmailSendingError: If there is an error while sending the email.
     """
-    print('send_domain_invitation_email')
     # Normalize domains
     if isinstance(domains, Domain):
         domains = [domains]
@@ -88,7 +87,6 @@ def send_domain_invitation_email(email: str, requestor, domains: Domain | list[D
             },
         )
     except EmailSendingError as err:
-        print('point of failure test')
         domain_names = ", ".join([domain.name for domain in domains])
         raise EmailSendingError(
             f"Could not send email invitation to {email} for domains: {domain_names}"

From e06a63e3217f4015d1afb94830c777ad4e9a14c6 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 07:47:17 -0500
Subject: [PATCH 31/68] updated comments related to multiple portfolio flags

---
 src/registrar/views/domain.py                    | 3 ++-
 src/registrar/views/utility/invitation_helper.py | 2 +-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 2e4f375eb..b16e3681d 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -1168,9 +1168,10 @@ class DomainAddUserView(DomainFormBaseView):
 
         member_of_a_different_org, member_of_this_org = get_org_membership(domain_org, requested_email, requested_user)
         try:
+            # COMMENT: this code does not take into account multiple portfolios flag being set to TRUE
+
             # determine portfolio of the domain (code currently is looking at requestor's portfolio)
             # if requested_email/user is not member or invited member of this portfolio
-            # COMMENT: this code does not take into account multiple portfolios flag
             #   send portfolio invitation email
             #   create portfolio invitation
             #   create message to view
diff --git a/src/registrar/views/utility/invitation_helper.py b/src/registrar/views/utility/invitation_helper.py
index 8c3b1bff7..2cdde6a5e 100644
--- a/src/registrar/views/utility/invitation_helper.py
+++ b/src/registrar/views/utility/invitation_helper.py
@@ -28,7 +28,7 @@ def get_org_membership(requestor_org, requested_email, requested_user):
     Returns a tuple (member_of_a_different_org, member_of_this_org).
     """
 
-    # COMMENT: this code does not take into account multiple portfolios flag
+    # COMMENT: this code does not take into account when multiple portfolios flag is set to true
 
     # COMMENT: shouldn't this code be based on the organization of the domain, not the org
     # of the requestor? requestor could have multiple portfolios

From 7e2930f15dbae6cace514972f78b0bb4d1135d31 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 08:36:44 -0500
Subject: [PATCH 32/68] formatted for code readability

---
 src/registrar/admin.py                        |  5 +-
 src/registrar/utility/email_invitations.py    | 90 +++++++++++--------
 src/registrar/views/domain.py                 |  1 +
 src/registrar/views/portfolios.py             | 16 ++--
 .../views/utility/invitation_helper.py        |  1 +
 5 files changed, 69 insertions(+), 44 deletions(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index e6f0f7929..cdcc0400e 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -1393,6 +1393,7 @@ class UserDomainRoleAdmin(ListHeaderAdmin, ImportExportModelAdmin):
 
         return super().changeform_view(request, object_id, form_url, extra_context=extra_context)
 
+
 class BaseInvitationAdmin(ListHeaderAdmin):
     """Base class for admin classes which will customize save_model and send email invitations
     on model adds, and require custom handling of forms and form errors."""
@@ -1542,6 +1543,7 @@ class DomainInvitationAdmin(BaseInvitationAdmin):
                         portfolio=domain_org,
                         roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
                     )
+                    # if user exists for email, immediately retrieve portfolio invitation upon creation
                     if requested_user is not None:
                         portfolio_invitation.retrieve()
                         portfolio_invitation.save()
@@ -1552,7 +1554,7 @@ class DomainInvitationAdmin(BaseInvitationAdmin):
                     requestor=requestor,
                     domains=domain,
                     is_member_of_different_org=member_of_a_different_org,
-                    requested_user=requested_user
+                    requested_user=requested_user,
                 )
                 if requested_user is not None:
                     # Domain Invitation creation for an existing User
@@ -1639,6 +1641,7 @@ class PortfolioInvitationAdmin(BaseInvitationAdmin):
                 if not permission_exists:
                     # if permission does not exist for a user with requested_email, send email
                     send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=portfolio)
+                    # if user exists for email, immediately retrieve portfolio invitation upon creation
                     if requested_user is not None:
                         obj.retrieve()
                     messages.success(request, f"{requested_email} has been invited.")
diff --git a/src/registrar/utility/email_invitations.py b/src/registrar/utility/email_invitations.py
index 55a0bdf14..1491b65a5 100644
--- a/src/registrar/utility/email_invitations.py
+++ b/src/registrar/utility/email_invitations.py
@@ -1,7 +1,6 @@
 from django.conf import settings
 from registrar.models import DomainInvitation
 from registrar.models.domain import Domain
-from registrar.models.user import User
 from registrar.utility.errors import (
     AlreadyDomainInvitedError,
     AlreadyDomainManagerError,
@@ -15,12 +14,12 @@ import logging
 logger = logging.getLogger(__name__)
 
 
-def send_domain_invitation_email(email: str, requestor, domains: Domain | list[Domain], is_member_of_different_org, requested_user=None):
+def send_domain_invitation_email(
+    email: str, requestor, domains: Domain | list[Domain], is_member_of_different_org, requested_user=None
+):
     """
     Sends a domain invitation email to the specified address.
 
-    Raises exceptions for validation or email-sending issues.
-
     Args:
         email (str): Email address of the recipient.
         requestor (User): The user initiating the invitation.
@@ -35,45 +34,66 @@ def send_domain_invitation_email(email: str, requestor, domains: Domain | list[D
         OutsideOrgMemberError: If the requested_user is part of a different organization.
         EmailSendingError: If there is an error while sending the email.
     """
-    # Normalize domains
-    if isinstance(domains, Domain):
-        domains = [domains]
+    domains = normalize_domains(domains)
+    requestor_email = get_requestor_email(requestor, domains)
 
-    # Default email address for staff
-    requestor_email = settings.DEFAULT_FROM_EMAIL
+    validate_invitation(email, domains, requestor, is_member_of_different_org)
 
-    # Check if the requestor is staff and has an email
-    if not requestor.is_staff:
-        if not requestor.email or requestor.email.strip() == "":
-            domain_names = ", ".join([domain.name for domain in domains])
-            raise MissingEmailError(email=email, domain=domain_names)
-        else:
-            requestor_email = requestor.email
+    send_invitation_email(email, requestor_email, domains, requested_user)
 
-    # Check if the recipient is part of a different organization
-    # COMMENT: this does not account for multiple_portfolios flag being active
+
+def normalize_domains(domains):
+    """Ensures domains is always a list."""
+    return [domains] if isinstance(domains, Domain) else domains
+
+
+def get_requestor_email(requestor, domains):
+    """Get the requestor's email or raise an error if it's missing."""
+    if requestor.is_staff:
+        return settings.DEFAULT_FROM_EMAIL
+
+    if not requestor.email or requestor.email.strip() == "":
+        domain_names = ", ".join([domain.name for domain in domains])
+        raise MissingEmailError(email=requestor.email, domain=domain_names)
+
+    return requestor.email
+
+
+def validate_invitation(email, domains, requestor, is_member_of_different_org):
+    """Validate the invitation conditions."""
+    check_outside_org_membership(email, requestor, is_member_of_different_org)
+
+    for domain in domains:
+        validate_existing_invitation(email, domain)
+
+
+def check_outside_org_membership(email, requestor, is_member_of_different_org):
+    """Raise an error if the email belongs to a different organization."""
     if (
         flag_is_active_for_user(requestor, "organization_feature")
         and not flag_is_active_for_user(requestor, "multiple_portfolios")
         and is_member_of_different_org
     ):
-        raise OutsideOrgMemberError
+        raise OutsideOrgMemberError(email=email)
 
-    # Check for an existing invitation for each domain
-    for domain in domains:
-        try:
-            invite = DomainInvitation.objects.get(email=email, domain=domain)
-            if invite.status == DomainInvitation.DomainInvitationStatus.RETRIEVED:
-                raise AlreadyDomainManagerError(email)
-            elif invite.status == DomainInvitation.DomainInvitationStatus.CANCELED:
-                invite.update_cancellation_status()
-                invite.save()
-            else:
-                raise AlreadyDomainInvitedError(email)
-        except DomainInvitation.DoesNotExist:
-            pass
 
-    # Send the email
+def validate_existing_invitation(email, domain):
+    """Check for existing invitations and handle their status."""
+    try:
+        invite = DomainInvitation.objects.get(email=email, domain=domain)
+        if invite.status == DomainInvitation.DomainInvitationStatus.RETRIEVED:
+            raise AlreadyDomainManagerError(email)
+        elif invite.status == DomainInvitation.DomainInvitationStatus.CANCELED:
+            invite.update_cancellation_status()
+            invite.save()
+        else:
+            raise AlreadyDomainInvitedError(email)
+    except DomainInvitation.DoesNotExist:
+        pass
+
+
+def send_invitation_email(email, requestor_email, domains, requested_user):
+    """Send the invitation email."""
     try:
         send_templated_email(
             "emails/domain_invitation.txt",
@@ -88,9 +108,7 @@ def send_domain_invitation_email(email: str, requestor, domains: Domain | list[D
         )
     except EmailSendingError as err:
         domain_names = ", ".join([domain.name for domain in domains])
-        raise EmailSendingError(
-            f"Could not send email invitation to {email} for domains: {domain_names}"
-        ) from err
+        raise EmailSendingError(f"Could not send email invitation to {email} for domains: {domain_names}") from err
 
 
 def send_portfolio_invitation_email(email: str, requestor, portfolio):
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index b16e3681d..2c5553a92 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -1186,6 +1186,7 @@ class DomainAddUserView(DomainFormBaseView):
                 portfolio_invitation, _ = PortfolioInvitation.objects.get_or_create(
                     email=requested_email, portfolio=domain_org, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
                 )
+                # if user exists for email, immediately retrieve portfolio invitation upon creation
                 if requested_user is not None:
                     portfolio_invitation.retrieve()
                     portfolio_invitation.save()
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 60a96bba6..b9249ca6d 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -296,7 +296,7 @@ class PortfolioMemberDomainsEditView(PortfolioMemberDomainsEditPermissionView, V
         Processes added domains by bulk creating UserDomainRole instances.
         """
         if added_domain_ids:
-            print('_process_added_domains')
+            # get added_domains from ids to pass to send email method and bulk create
             added_domains = Domain.objects.filter(id__in=added_domain_ids)
             member_of_a_different_org, _ = get_org_membership(portfolio, member.email, member)
             send_domain_invitation_email(
@@ -514,14 +514,15 @@ class PortfolioInvitedMemberDomainsEditView(PortfolioMemberDomainsEditPermission
         or creating new ones.
         """
         if added_domain_ids:
+            # get added_domains from ids to pass to send email method and bulk create
             added_domains = Domain.objects.filter(id__in=added_domain_ids)
             member_of_a_different_org, _ = get_org_membership(portfolio, email, None)
             send_domain_invitation_email(
-                    email=email,
-                    requestor=requestor,
-                    domains=added_domains,
-                    is_member_of_different_org=member_of_a_different_org,
-                )
+                email=email,
+                requestor=requestor,
+                domains=added_domains,
+                is_member_of_different_org=member_of_a_different_org,
+            )
 
             # Update existing invitations from CANCELED to INVITED
             existing_invitations = DomainInvitation.objects.filter(domain__in=added_domains, email=email)
@@ -542,7 +543,7 @@ class PortfolioInvitedMemberDomainsEditView(PortfolioMemberDomainsEditPermission
                     for domain_id in new_domain_ids
                 ]
             )
-        
+
     def _process_removed_domains(self, removed_domain_ids, email):
         """
         Processes removed domain invitations by updating their status to CANCELED.
@@ -777,6 +778,7 @@ class PortfolioAddMemberView(PortfolioMembersPermissionView, FormMixin):
             if not requested_user or not permission_exists:
                 send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=portfolio)
                 portfolio_invitation = form.save()
+                # if user exists for email, immediately retrieve portfolio invitation upon creation
                 if requested_user is not None:
                     portfolio_invitation.retrieve()
                     portfolio_invitation.save()
diff --git a/src/registrar/views/utility/invitation_helper.py b/src/registrar/views/utility/invitation_helper.py
index 2cdde6a5e..771300406 100644
--- a/src/registrar/views/utility/invitation_helper.py
+++ b/src/registrar/views/utility/invitation_helper.py
@@ -19,6 +19,7 @@ logger = logging.getLogger(__name__)
 # when creating invitations and sending associated emails. These can be reused in
 # any view, and were initially developed for domain.py, portfolios.py and admin.py
 
+
 def get_org_membership(requestor_org, requested_email, requested_user):
     """
     Verifies if an email belongs to a different organization as a member or invited member.

From fbbdba001dde10a3931b19142e660a8d048172a1 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Thu, 9 Jan 2025 08:40:48 -0800
Subject: [PATCH 33/68] Fix status alert, now show expiring soon checkbox
 filter etc

---
 src/registrar/templates/domain_detail.html          | 4 ++--
 src/registrar/templates/domain_renewal.html         | 6 ++----
 src/registrar/templates/includes/domains_table.html | 2 +-
 src/registrar/templates/includes/summary_item.html  | 3 +--
 4 files changed, 6 insertions(+), 9 deletions(-)

diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index becf46d5b..2cd3e5a5c 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -49,11 +49,11 @@
           </span>
           {% if domain.get_state_help_text %}
             <div class="padding-top-1 text-primary-darker">
-              {% if has_domain_renewal_flag and domain.is_expiring and is_domain_manager %}
+              {% if has_domain_renewal_flag and domain.is_expired and is_domain_manager %}
                 This domain has expired, but it is still online. 
                 {% url 'domain-renewal' pk=domain.id as url %}
                 <a href="{{ url }}">Renew to maintain access.</a>
-              {% elif has_domain_renewal_flag and domain.is_expired and is_domain_manager %}
+              {% elif has_domain_renewal_flag and domain.is_expiring and is_domain_manager %}
                 This domain will expire soon. 
                 {% url 'domain-renewal' pk=domain.id as url %}
                 <a href="{{ url }}">Renew to maintain access.</a>
diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index 7867bfce8..e90e4a366 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -49,10 +49,8 @@
   </div>
 
     {% url 'user-profile' as url %}
-    {% include "includes/summary_item.html" with title='Your Contact Information' value=user edit_link=url editable=is_editable  contact='true' %}
+    {% include "includes/summary_item.html" with title='Your contact information' value=user edit_link=url editable=is_editable  contact='true' %}
   
-
-
     {% if analyst_action != 'edit' or analyst_action_location != domain.pk %}
       {% if is_portfolio_user and not is_domain_manager %}
       <div class="usa-alert usa-alert--info usa-alert--slim">
@@ -65,6 +63,7 @@
       {% endif %}
     {% endif %}
 
+    <!-- <div class="custom-renewal-heading"> -->
     {% url 'domain-security-email' pk=domain.id as url %}
     {% if security_email is not None and security_email not in hidden_security_emails%}
       {% include "includes/summary_item.html" with title='Security email' value=security_email custom_text_for_value_none='We strongly recommend that you provide a security email. This email will allow the  public to report observed or suspected security issues on your domain.' edit_link=url editable=is_editable %}
@@ -78,7 +77,6 @@
       {% include "includes/summary_item.html" with title='Domain managers' list=True users=True value=domain.permissions.all edit_link=url editable=is_editable %}
     {% endif %}
 
-
     <div class="border-top-1px border-primary-dark padding-top-1 margin-top-3 margin-bottom-2">
 
       <fieldset class="usa-fieldset">
diff --git a/src/registrar/templates/includes/domains_table.html b/src/registrar/templates/includes/domains_table.html
index f9f8b4c9f..1d7bd7ce6 100644
--- a/src/registrar/templates/includes/domains_table.html
+++ b/src/registrar/templates/includes/domains_table.html
@@ -172,7 +172,7 @@
               >Deleted</label
             >
           </div>
-          {% if has_domain_renewal_flag and num_expiring_domains > 0 %}
+          {% if has_domain_renewal_flag %}
           <div class="usa-checkbox">
             <input
               class="usa-checkbox__input"
diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index df55c2edb..8c02757c1 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -127,14 +127,13 @@
           </ul>
         {% endif %}
       {% else %}
-      <p class="margin-top-0 margin-bottom-0">
         {% if custom_text_for_value_none %}
           <p class="text-base-dark">{{ custom_text_for_value_none }}</p>
         {% endif %}
         {% if value %}
           {{ value }}
         {% endif %}
-        {% if not value and not custom_text_for_value_none %}
+        {% if not value %}
           None
         {% endif %}
       </p>

From 0148b6c6bd2b7868e56221cbdf7cc6eba06fa1d9 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Thu, 9 Jan 2025 09:19:36 -0800
Subject: [PATCH 34/68] Fix test

---
 src/registrar/tests/test_views_domain.py | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 674dead5e..d92da17dd 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -606,10 +606,10 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             # Start on the Renewal page for the domain
             renewal_page = self.app.get(reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id}))
 
-            # Verify we see "Your Contact Information" on the renewal form
-            self.assertContains(renewal_page, "Your Contact Information")
+            # Verify we see "Your contact information" on the renewal form
+            self.assertContains(renewal_page, "Your contact information")
 
-            # Verify that the "Edit" button for Your Contact is there and links to correct URL
+            # Verify that the "Edit" button for Your contact is there and links to correct URL
             edit_button_url = reverse("user-profile")
             self.assertContains(renewal_page, f'href="{edit_button_url}"')
 
@@ -2816,7 +2816,6 @@ class TestDomainRenewal(TestWithUser):
         UserDomainRole.objects.filter(user=self.user, domain=self.domain_with_expiring_soon_date).delete()
         self.client.force_login(self.user)
         domains_page = self.client.get("/")
-        self.assertNotContains(domains_page, "Expiring soon")
         self.assertNotContains(domains_page, "will expire soon")
 
     @less_console_noise_decorator
@@ -2854,5 +2853,4 @@ class TestDomainRenewal(TestWithUser):
         UserDomainRole.objects.filter(user=self.user, domain=self.domain_with_expiring_soon_date).delete()
         self.client.force_login(self.user)
         domains_page = self.client.get("/")
-        self.assertNotContains(domains_page, "Expiring soon")
         self.assertNotContains(domains_page, "will expire soon")

From a302fd8e9ebdeb7da9cd35f445dc74a54a87d905 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 9 Jan 2025 12:39:46 -0500
Subject: [PATCH 35/68] move scss around to account for a netsing rule
 deprecation

---
 src/registrar/assets/src/sass/_theme/_tooltips.scss | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/assets/src/sass/_theme/_tooltips.scss b/src/registrar/assets/src/sass/_theme/_tooltips.scss
index 58beb8ae6..65bfbb483 100644
--- a/src/registrar/assets/src/sass/_theme/_tooltips.scss
+++ b/src/registrar/assets/src/sass/_theme/_tooltips.scss
@@ -66,9 +66,9 @@
     text-align: center;
     font-size: inherit; //inherit tooltip fontsize of .93rem
     max-width: fit-content;
+    display: block;
     @include at-media('desktop') {
       width: 70vw;
     }
-    display: block;
   }
 }
\ No newline at end of file

From c9c92e5c909967fe50ba2ea69745f1b2e7d60d36 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Thu, 9 Jan 2025 10:02:34 -0800
Subject: [PATCH 36/68] Allowing security email to display

---
 src/registrar/templates/domain_renewal.html | 6 +++---
 src/registrar/views/domain.py               | 5 +++--
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index e90e4a366..70ea78575 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -63,13 +63,13 @@
       {% endif %}
     {% endif %}
 
-    <!-- <div class="custom-renewal-heading"> -->
     {% url 'domain-security-email' pk=domain.id as url %}
     {% if security_email is not None and security_email not in hidden_security_emails%}
-      {% include "includes/summary_item.html" with title='Security email' value=security_email custom_text_for_value_none='We strongly recommend that you provide a security email. This email will allow the  public to report observed or suspected security issues on your domain.' edit_link=url editable=is_editable %}
+      {% include "includes/summary_item.html" with title='Security email' value=security_email custom_text_for_value_none='We strongly recommend that you provide a security email. This email will allow the public to report observed or suspected security issues on your domain.' edit_link=url editable=is_editable %}
     {% else %}
-      {% include "includes/summary_item.html" with title='Security email' value='None provided' custom_text_for_value_none='We strongly recommend that you provide a security email. This email will allow the  public to report observed or suspected security issues on your domain.' edit_link=url editable=is_editable %}
+      {% include "includes/summary_item.html" with title='Security email' value='None provided' custom_text_for_value_none='We strongly recommend that you provide a security email. This email will allow the public to report observed or suspected security issues on your domain.' edit_link=url editable=is_editable %}
     {% endif %}
+
     {% url 'domain-users' pk=domain.id as url %}
     {% if portfolio %}
       {% include "includes/summary_item.html" with title='Domain managers' domain_permissions=True value=domain edit_link=url editable=is_editable %}
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 4b26caa5f..19446e670 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -320,13 +320,14 @@ class DomainRenewalView(DomainBaseView):
         context = super().get_context_data(**kwargs)
 
         default_emails = [DefaultEmail.PUBLIC_CONTACT_DEFAULT.value, DefaultEmail.LEGACY_DEFAULT.value]
+
         context["hidden_security_emails"] = default_emails
 
         security_email = self.object.get_security_email()
-        user = self.request.user
         if security_email is None or security_email in default_emails:
             context["security_email"] = None
-        context["user"] = user
+            return context
+        context["security_email"] = security_email
         return context
 
     def can_access_domain_via_portfolio(self, pk):

From 27dae48ff414cdf168b6667dbf6c0674b7d7f383 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Thu, 9 Jan 2025 10:28:21 -0800
Subject: [PATCH 37/68] Fix spacing under None provided/Sec email

---
 src/registrar/templates/includes/summary_item.html | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index 8c02757c1..25387ecbd 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -128,7 +128,7 @@
         {% endif %}
       {% else %}
         {% if custom_text_for_value_none %}
-          <p class="text-base-dark">{{ custom_text_for_value_none }}</p>
+          <p class="margin-top-0 text-base-dark">{{ custom_text_for_value_none }}</p>
         {% endif %}
         {% if value %}
           {{ value }}
@@ -136,7 +136,6 @@
         {% if not value %}
           None
         {% endif %}
-      </p>
       {% endif %}
     </div>
 

From c1eea3cfd99256e4c0305d5f93cf4f60ede66284 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 13:47:57 -0500
Subject: [PATCH 38/68] updated some broken tests

---
 src/registrar/tests/test_admin.py           | 15 +++++++++++--
 src/registrar/tests/test_views_portfolio.py | 25 +++++++++++++++++++--
 2 files changed, 36 insertions(+), 4 deletions(-)

diff --git a/src/registrar/tests/test_admin.py b/src/registrar/tests/test_admin.py
index 3195f8237..8aeb36961 100644
--- a/src/registrar/tests/test_admin.py
+++ b/src/registrar/tests/test_admin.py
@@ -136,12 +136,17 @@ class TestDomainInvitationAdmin(TestCase):
         self.admin = ListHeaderAdmin(model=DomainInvitationAdmin, admin_site=AdminSite())
         self.superuser = create_superuser()
         self.domain = Domain.objects.create(name="example.com")
+        self.portfolio = Portfolio.objects.create(organization_name="new portfolio", creator=self.superuser)
+        DomainInformation.objects.create(domain=self.domain, portfolio=self.portfolio, creator=self.superuser)
         """Create a client object"""
         self.client = Client(HTTP_HOST="localhost:8080")
 
     def tearDown(self):
         """Delete all DomainInvitation objects"""
         DomainInvitation.objects.all().delete()
+        DomainInformation.objects.all().delete()
+        Portfolio.objects.all().delete()
+        Domain.objects.all().delete()
         Contact.objects.all().delete()
         User.objects.all().delete()
 
@@ -189,7 +194,10 @@ class TestDomainInvitationAdmin(TestCase):
             self.assertContains(response, retrieved_html, count=1)
 
     @less_console_noise_decorator
-    def test_save_model_user_exists(self):
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    def test_save_model_user_exists(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
         """Test saving a domain invitation when the user exists.
 
         Should attempt to retrieve the domain invitation."""
@@ -217,7 +225,10 @@ class TestDomainInvitationAdmin(TestCase):
         self.assertEqual(DomainInvitation.objects.first().email, "test@example.com")
 
     @less_console_noise_decorator
-    def test_save_model_user_does_not_exist(self):
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    def test_save_model_user_does_not_exist(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
         """Test saving a domain invitation when the user does not exist.
 
         Should not attempt to retrieve the domain invitation."""
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 9bc97874d..b6b275c99 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2180,7 +2180,8 @@ class TestPortfolioMemberDomainsEditView(TestPortfolioMemberDomainsView):
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
-    def test_post_with_valid_added_domains(self):
+    @patch("registrar.views.portfolios.send_domain_invitation_email")
+    def test_post_with_valid_added_domains(self, mock_send_domain_email):
         """Test that domains can be successfully added."""
         self.client.force_login(self.user)
 
@@ -2198,6 +2199,15 @@ class TestPortfolioMemberDomainsEditView(TestPortfolioMemberDomainsView):
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
 
+        expected_domains = Domain.objects.filter(id__in=[1, 2, 3])
+        # Verify that the invitation email was sent
+        mock_send_domain_email.assert_called_once()
+        call_args = mock_send_domain_email.call_args.kwargs
+        self.assertEqual(call_args["email"], "info@example.com")
+        self.assertEqual(call_args["requestor"], self.user)
+        self.assertEqual(list(call_args["domains"]), list(expected_domains))
+        self.assertIsNone(call_args.get("is_member_of_different_org"))
+
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
@@ -2364,7 +2374,8 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
-    def test_post_with_valid_added_domains(self):
+    @patch("registrar.views.portfolios.send_domain_invitation_email")
+    def test_post_with_valid_added_domains(self, mock_send_domain_email):
         """Test adding new domains successfully."""
         self.client.force_login(self.user)
 
@@ -2387,6 +2398,16 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
 
+        expected_domains = Domain.objects.filter(id__in=[1, 2, 3])
+        # Verify that the invitation email was sent
+        mock_send_domain_email.assert_called_once()
+        call_args = mock_send_domain_email.call_args.kwargs
+        self.assertEqual(call_args["email"], "info@example.com")
+        self.assertEqual(call_args["requestor"], self.user)
+        self.assertEqual(list(call_args["domains"]), list(expected_domains))
+        self.assertIsNone(call_args.get("is_member_of_different_org"))
+
+
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)

From 632eccf7e9a6fc40fbf0b1e6de8abb3ba7f48537 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 15:45:52 -0500
Subject: [PATCH 39/68] a few updates to tests

---
 src/registrar/tests/test_reports.py         | 1 +
 src/registrar/tests/test_views_domain.py    | 2 +-
 src/registrar/tests/test_views_portfolio.py | 7 ++++---
 3 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/src/registrar/tests/test_reports.py b/src/registrar/tests/test_reports.py
index 4a41238c7..b11500ea9 100644
--- a/src/registrar/tests/test_reports.py
+++ b/src/registrar/tests/test_reports.py
@@ -900,6 +900,7 @@ class MemberExportTest(MockDbForIndividualTests, MockEppLib):
         # spaces and leading/trailing whitespace
         csv_content = csv_content.replace(",,", "").replace(",", "").replace(" ", "").replace("\r\n", "\n").strip()
         expected_content = expected_content.replace(",,", "").replace(",", "").replace(" ", "").strip()
+        self.maxDiff = None
         self.assertEqual(csv_content, expected_content)
 
 
diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index aedfc41c2..a3e324d42 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -759,7 +759,7 @@ class TestDomainManagers(TestDomainOverview):
 
         self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
         success_page = success_result.follow()
-        self.assertContains(success_page, "Could not send email invitation.")
+        self.assertContains(success_page, "Failed to send email.")
 
     @boto3_mocking.patching
     @less_console_noise_decorator
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index b6b275c99..18f68a7fb 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2402,16 +2402,17 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         # Verify that the invitation email was sent
         mock_send_domain_email.assert_called_once()
         call_args = mock_send_domain_email.call_args.kwargs
-        self.assertEqual(call_args["email"], "info@example.com")
+        self.assertEqual(call_args["email"], "invited@example.com")
         self.assertEqual(call_args["requestor"], self.user)
         self.assertEqual(list(call_args["domains"]), list(expected_domains))
-        self.assertIsNone(call_args.get("is_member_of_different_org"))
+        self.assertFalse(call_args.get("is_member_of_different_org"))
 
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
-    def test_post_with_existing_and_new_added_domains(self):
+    @patch("registrar.views.portfolios.send_domain_invitation_email")
+    def test_post_with_existing_and_new_added_domains(self, mock_send_domain_email):
         """Test updating existing and adding new invitations."""
         self.client.force_login(self.user)
 

From 0e1d36444f6cbfd85aed32ab6b758b11122d1d12 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Thu, 9 Jan 2025 13:24:43 -0800
Subject: [PATCH 40/68] If not a domain manager and in non org model mode we
 should display certain text

---
 src/registrar/models/domain.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index 217b88202..b9b82f3cf 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -1585,6 +1585,8 @@ class Domain(TimeStampedModel, DomainHelper):
             help_text = (
                 "This domain has expired, but it is still online. " "To renew this domain, contact help@get.gov."
             )
+        elif flag_is_active(self, "domain_renewal") and self.is_expiring():
+            help_text = "This domain will expire soon. Contact one of the listed domain managers to renew the domain."
         else:
             help_text = Domain.State.get_help_text(self.state)
 

From 5ff59efbb6ac1fc2c8ffa0ebc53f58f775aa817a Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 16:41:49 -0500
Subject: [PATCH 41/68] tests for portfolio views

---
 src/registrar/tests/test_views_portfolio.py | 63 ++++++++++++++++++++-
 1 file changed, 60 insertions(+), 3 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 18f68a7fb..490c6b1bb 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2211,7 +2211,8 @@ class TestPortfolioMemberDomainsEditView(TestPortfolioMemberDomainsView):
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
-    def test_post_with_valid_removed_domains(self):
+    @patch("registrar.views.portfolios.send_domain_invitation_email")
+    def test_post_with_valid_removed_domains(self, mock_send_domain_email):
         """Test that domains can be successfully removed."""
         self.client.force_login(self.user)
 
@@ -2233,6 +2234,8 @@ class TestPortfolioMemberDomainsEditView(TestPortfolioMemberDomainsView):
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
+        # assert that send_domain_invitation_email is not called
+        mock_send_domain_email.assert_not_called()
 
         UserDomainRole.objects.all().delete()
 
@@ -2300,6 +2303,29 @@ class TestPortfolioMemberDomainsEditView(TestPortfolioMemberDomainsView):
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "No changes detected.")
 
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_members", active=True)
+    @patch("registrar.views.portfolios.send_domain_invitation_email")
+    def test_post_when_send_domain_email_raises_exception(self, mock_send_domain_email):
+        """Test attempt to add new domains when an EmailSendingError raised."""
+        self.client.force_login(self.user)
+
+        data = {
+            "added_domains": json.dumps([1, 2, 3]),  # Mock domain IDs for the attempted add
+        }
+        mock_send_domain_email.side_effect = EmailSendingError("Failed to send email")
+        response = self.client.post(self.url, data)
+
+        # Check that the UserDomainRole objects were not created
+        self.assertEqual(UserDomainRole.objects.filter(user=self.user, role=UserDomainRole.Roles.MANAGER).count(), 0)
+
+        # Check for an error message and a redirect to edit form
+        self.assertRedirects(response, reverse("member-domains-edit", kwargs={"pk": self.portfolio_permission.pk}))
+        messages = list(response.wsgi_request._messages)
+        self.assertEqual(len(messages), 1)
+        self.assertEqual(str(messages[0]), "An unexpected error occurred: Failed to send email. If the issue persists, please contact help@get.gov.")
+
 
 class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomainsView):
     @classmethod
@@ -2412,7 +2438,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
     @patch("registrar.views.portfolios.send_domain_invitation_email")
-    def test_post_with_existing_and_new_added_domains(self, mock_send_domain_email):
+    def test_post_with_existing_and_new_added_domains(self, _):
         """Test updating existing and adding new invitations."""
         self.client.force_login(self.user)
 
@@ -2452,7 +2478,8 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
-    def test_post_with_valid_removed_domains(self):
+    @patch("registrar.views.portfolios.send_domain_invitation_email")
+    def test_post_with_valid_removed_domains(self, mock_send_domain_email):
         """Test removing domains successfully."""
         self.client.force_login(self.user)
 
@@ -2487,6 +2514,8 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
 
         # Check for a success message and a redirect
         self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"pk": self.invitation.pk}))
+        # assert that send_domain_invitation_email is not called
+        mock_send_domain_email.assert_not_called()
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
@@ -2552,6 +2581,34 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "No changes detected.")
 
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_members", active=True)
+    @patch("registrar.views.portfolios.send_domain_invitation_email")
+    def test_post_when_send_domain_email_raises_exception(self, mock_send_domain_email):
+        """Test attempt to add new domains when an EmailSendingError raised."""
+        self.client.force_login(self.user)
+
+        data = {
+            "added_domains": json.dumps([1, 2, 3]),  # Mock domain IDs for the attempted add
+        }
+        mock_send_domain_email.side_effect = EmailSendingError("Failed to send email")
+        response = self.client.post(self.url, data)
+
+        # Check that the DomainInvitation objects were not created
+        self.assertEqual(
+            DomainInvitation.objects.filter(
+                email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
+            ).count(),
+            0,
+        )
+
+        # Check for an error message and a redirect to edit form
+        self.assertRedirects(response, reverse("invitedmember-domains-edit", kwargs={"pk": self.invitation.pk}))
+        messages = list(response.wsgi_request._messages)
+        self.assertEqual(len(messages), 1)
+        self.assertEqual(str(messages[0]), "An unexpected error occurred: Failed to send email. If the issue persists, please contact help@get.gov.")
+
 
 class TestRequestingEntity(WebTest):
     """The requesting entity page is a domain request form that only exists

From d35e09ba9d526347256c8d41566d0d4a0d48fdfb Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Thu, 9 Jan 2025 13:54:02 -0800
Subject: [PATCH 42/68] Fix linter

---
 src/registrar/models/domain.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index b9b82f3cf..6a135036d 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -1575,7 +1575,7 @@ class Domain(TimeStampedModel, DomainHelper):
         logger.info("Changing to DNS_NEEDED state")
         logger.info("able to transition to DNS_NEEDED state")
 
-    def get_state_help_text(self) -> str:
+    def get_state_help_text(self, request=None) -> str:
         """Returns a str containing additional information about a given state.
         Returns custom content for when the domain itself is expired."""
 
@@ -1585,7 +1585,7 @@ class Domain(TimeStampedModel, DomainHelper):
             help_text = (
                 "This domain has expired, but it is still online. " "To renew this domain, contact help@get.gov."
             )
-        elif flag_is_active(self, "domain_renewal") and self.is_expiring():
+        elif flag_is_active(request, "domain_renewal") and self.is_expiring():
             help_text = "This domain will expire soon. Contact one of the listed domain managers to renew the domain."
         else:
             help_text = Domain.State.get_help_text(self.state)

From 6df03492b3e26da56a3f87177a310315e50ced92 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 17:20:27 -0500
Subject: [PATCH 43/68] test_views_domain tests added

---
 src/registrar/tests/test_views_domain.py | 59 +++++++++++++++++++++++-
 1 file changed, 57 insertions(+), 2 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index a3e324d42..56cac91a1 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -564,6 +564,8 @@ class TestDomainManagers(TestDomainOverview):
     def tearDown(self):
         """Ensure that the user has its original permissions"""
         PortfolioInvitation.objects.all().delete()
+        UserPortfolioPermission.objects.all().delete()
+        User.objects.exclude(id=self.user.id).delete()
         super().tearDown()
 
     @less_console_noise_decorator
@@ -651,21 +653,74 @@ class TestDomainManagers(TestDomainOverview):
         call_args = mock_send_domain_email.call_args.kwargs
         self.assertEqual(call_args["email"], "mayor@igorville.gov")
         self.assertEqual(call_args["requestor"], self.user)
-        self.assertEqual(call_args["domain"], self.domain)
+        self.assertEqual(call_args["domains"], self.domain)
         self.assertIsNone(call_args.get("is_member_of_different_org"))
 
-        # Assert that the PortfolioInvitation is created
+        # Assert that the PortfolioInvitation is created and retrieved
         portfolio_invitation = PortfolioInvitation.objects.filter(
             email="mayor@igorville.gov", portfolio=self.portfolio
         ).first()
         self.assertIsNotNone(portfolio_invitation, "Portfolio invitation should be created.")
         self.assertEqual(portfolio_invitation.email, "mayor@igorville.gov")
         self.assertEqual(portfolio_invitation.portfolio, self.portfolio)
+        self.assertEqual(portfolio_invitation.status, PortfolioInvitation.PortfolioInvitationStatus.RETRIEVED)
+
+        #Assert that the UserPortfolioPermission is created
+        user_portfolio_permission = UserPortfolioPermission.objects.filter(
+            user=self.user, portfolio=self.portfolio
+        ).first()
+        self.assertIsNotNone(user_portfolio_permission, "User portfolio permission should be created")
 
         self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
         success_page = success_result.follow()
         self.assertContains(success_page, "mayor@igorville.gov")
 
+    @boto3_mocking.patching
+    @override_flag("organization_feature", active=True)
+    @less_console_noise_decorator
+    @patch("registrar.views.domain.send_portfolio_invitation_email")
+    @patch("registrar.views.domain.send_domain_invitation_email")
+    def test_domain_user_add_form_sends_portfolio_invitation_to_new_email(self, mock_send_domain_email, mock_send_portfolio_email):
+        """Adding an email not associated with a user works and sends portfolio invitation."""
+        add_page = self.app.get(reverse("domain-users-add", kwargs={"pk": self.domain.id}))
+        session_id = self.app.cookies[settings.SESSION_COOKIE_NAME]
+
+        add_page.form["email"] = "notauser@igorville.gov"
+
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+
+        success_result = add_page.form.submit()
+
+        self.assertEqual(success_result.status_code, 302)
+        self.assertEqual(
+            success_result["Location"],
+            reverse("domain-users", kwargs={"pk": self.domain.id}),
+        )
+
+        # Verify that the invitation emails were sent
+        mock_send_portfolio_email.assert_called_once_with(
+            email="notauser@igorville.gov", requestor=self.user, portfolio=self.portfolio
+        )
+        mock_send_domain_email.assert_called_once()
+        call_args = mock_send_domain_email.call_args.kwargs
+        self.assertEqual(call_args["email"], "notauser@igorville.gov")
+        self.assertEqual(call_args["requestor"], self.user)
+        self.assertEqual(call_args["domains"], self.domain)
+        self.assertIsNone(call_args.get("is_member_of_different_org"))
+
+        # Assert that the PortfolioInvitation is created
+        portfolio_invitation = PortfolioInvitation.objects.filter(
+            email="notauser@igorville.gov", portfolio=self.portfolio
+        ).first()
+        self.assertIsNotNone(portfolio_invitation, "Portfolio invitation should be created.")
+        self.assertEqual(portfolio_invitation.email, "notauser@igorville.gov")
+        self.assertEqual(portfolio_invitation.portfolio, self.portfolio)
+        self.assertEqual(portfolio_invitation.status, PortfolioInvitation.PortfolioInvitationStatus.INVITED)
+
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+        success_page = success_result.follow()
+        self.assertContains(success_page, "notauser@igorville.gov")
+    
     @boto3_mocking.patching
     @override_flag("organization_feature", active=True)
     @less_console_noise_decorator

From 2f75841febe401a0f91128b48ece2068798b135b Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 9 Jan 2025 18:20:48 -0500
Subject: [PATCH 44/68] admin unit tests

---
 src/registrar/tests/test_admin.py | 915 ++++++++++++++++++++++++++++--
 1 file changed, 871 insertions(+), 44 deletions(-)

diff --git a/src/registrar/tests/test_admin.py b/src/registrar/tests/test_admin.py
index 8aeb36961..ae46ba388 100644
--- a/src/registrar/tests/test_admin.py
+++ b/src/registrar/tests/test_admin.py
@@ -69,7 +69,7 @@ from django.contrib.sessions.backends.db import SessionStore
 from django.contrib.auth import get_user_model
 from django.contrib import messages
 
-from unittest.mock import ANY, patch, Mock
+from unittest.mock import ANY, call, patch, Mock
 from django.forms import ValidationError
 
 
@@ -143,6 +143,7 @@ class TestDomainInvitationAdmin(TestCase):
 
     def tearDown(self):
         """Delete all DomainInvitation objects"""
+        PortfolioInvitation.objects.all().delete()
         DomainInvitation.objects.all().delete()
         DomainInformation.objects.all().delete()
         Portfolio.objects.all().delete()
@@ -194,14 +195,255 @@ class TestDomainInvitationAdmin(TestCase):
             self.assertContains(response, retrieved_html, count=1)
 
     @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_save_model_user_exists(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
-        """Test saving a domain invitation when the user exists.
+    def test_add_domain_invitation_success_when_user_not_portfolio_member(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and is not a portfolio member.
+
+        Should send out domain and portfolio invites.
+        Should trigger success messages for both email sends.
+        Should attempt to retrieve the domain invitation.
+        Should attempt to retrieve the portfolio invitation."""
+
+        user = User.objects.create_user(email="test@example.com", username="username")
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="test@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_called_once_with(
+            email="test@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=user,
+        )
+        mock_send_portfolio_email.assert_called_once_with(
+            email="test@example.com",
+            requestor=self.superuser,
+            portfolio=self.portfolio,
+        )
+
+        # Assert success message
+        mock_messages_success.assert_has_calls([
+            call(request, "test@example.com has been invited to the organization: new portfolio"),
+            call(request, "test@example.com has been invited to the domain: example.com"),
+        ])
+
+        # Assert the invitations were saved
+        self.assertEqual(DomainInvitation.objects.count(), 1)
+        self.assertEqual(DomainInvitation.objects.first().email, "test@example.com")
+        self.assertEqual(PortfolioInvitation.objects.count(), 1)
+        self.assertEqual(PortfolioInvitation.objects.first().email, "test@example.com")
+
+        # Assert invitations were retrieved
+        domain_invitation = DomainInvitation.objects.get(email=user.email, domain=self.domain)
+        portfolio_invitation = PortfolioInvitation.objects.get(email=user.email, portfolio=self.portfolio)
+
+        self.assertEqual(domain_invitation.status, DomainInvitation.DomainInvitationStatus.RETRIEVED)
+        self.assertEqual(portfolio_invitation.status, PortfolioInvitation.PortfolioInvitationStatus.RETRIEVED)
+        self.assertEqual(UserDomainRole.objects.count(), 1)
+        self.assertEqual(UserDomainRole.objects.first().user, user)
+        self.assertEqual(UserPortfolioPermission.objects.count(), 1)
+        self.assertEqual(UserPortfolioPermission.objects.first().user, user)
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=False)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    def test_add_domain_invitation_success_when_user_not_portfolio_member_and_organization_feature_off(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and organization_feature flag is off.
+
+        Should send out a domain invitation.
+        Should not send a out portfolio invitation.
+        Should trigger success message for the domain invitation.
+        Should retrieve the domain invitation.
+        Should not create a portfolio invitation."""
+        
+        user = User.objects.create_user(email="test@example.com", username="username")
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="test@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain but not portfolio
+        mock_send_domain_email.assert_called_once_with(
+            email="test@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=user,
+        )
+        mock_send_portfolio_email.assert_not_called()
+
+        # Assert correct invite was created
+        self.assertEqual(DomainInvitation.objects.count(), 1)
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
+
+        # Assert success message
+        mock_messages_success.assert_called_once_with(
+            request, "test@example.com has been invited to the domain: example.com"
+        )
+
+        # Assert the domain invitation was saved
+        self.assertEqual(DomainInvitation.objects.count(), 1)
+        self.assertEqual(DomainInvitation.objects.first().email, "test@example.com")
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
+
+        # Assert the domain invitation was retrieved
+        domain_invitation = DomainInvitation.objects.get(email=user.email, domain=self.domain)
+
+        self.assertEqual(domain_invitation.status, DomainInvitation.DomainInvitationStatus.RETRIEVED)
+        self.assertEqual(UserDomainRole.objects.count(), 1)
+        self.assertEqual(UserDomainRole.objects.first().user, user)
+        self.assertEqual(UserPortfolioPermission.objects.count(), 0)
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @override_flag("multiple_portfolios", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    def test_add_domain_invitation_success_when_user_not_portfolio_member_and_multiple_portfolio_feature_on(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and multiple_portfolio flag is on.
+
+        Should send out a domain invitation.
+        Should not send a out portfolio invitation.
+        Should trigger success message for the domain invitation.
+        Should retrieve the domain invitation.
+        Should not create a portfolio invitation."""
+        
+        user = User.objects.create_user(email="test@example.com", username="username")
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="test@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain but not portfolio
+        mock_send_domain_email.assert_called_once_with(
+            email="test@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=user,
+        )
+        mock_send_portfolio_email.assert_not_called()
+
+        # Assert correct invite was created
+        self.assertEqual(DomainInvitation.objects.count(), 1)
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
+
+        # Assert success message
+        mock_messages_success.assert_called_once_with(
+            request, "test@example.com has been invited to the domain: example.com"
+        )
+
+        # Assert the domain invitation was saved
+        self.assertEqual(DomainInvitation.objects.count(), 1)
+        self.assertEqual(DomainInvitation.objects.first().email, "test@example.com")
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
+
+        # Assert the domain invitation was retrieved
+        domain_invitation = DomainInvitation.objects.get(email=user.email, domain=self.domain)
+
+        self.assertEqual(domain_invitation.status, DomainInvitation.DomainInvitationStatus.RETRIEVED)
+        self.assertEqual(UserDomainRole.objects.count(), 1)
+        self.assertEqual(UserDomainRole.objects.first().user, user)
+        self.assertEqual(UserPortfolioPermission.objects.count(), 0)
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    def test_add_domain_invitation_success_when_user_existing_portfolio_member(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and a portfolio invitation exists.
+
+        Should send out domain invitation only.
+        Should trigger success message for the domain invitation.
+        Should retrieve the domain invitation."""
+
+        user = User.objects.create_user(email="test@example.com", username="username")
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="test@example.com", domain=self.domain)
+
+        UserPortfolioPermission.objects.create(user=user, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER])
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_called_once_with(
+            email="test@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=user,
+        )
+        mock_send_portfolio_email.assert_not_called
+
+        # Assert retrieve was not called
+        domain_invitation_mock_retrieve.assert_called_once()
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
+        # Assert success message
+        mock_messages_success.assert_called_once_with(
+            request, "test@example.com has been invited to the domain: example.com"
+        )
+
+        # Assert the invitations were saved
+        self.assertEqual(DomainInvitation.objects.count(), 1)
+        self.assertEqual(DomainInvitation.objects.first().email, "test@example.com")
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
+    
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.error")
+    def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_sending_portfolio_email(self, mock_messages_error, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending portfolio email exception.
+
+        Should only attempt to send the portfolio invitation.
+        Should trigger error message on portfolio invitation.
+        Should not attempt to retrieve the domain invitation."""
+
+        mock_send_portfolio_email.side_effect = MissingEmailError("craving a burger")
 
-        Should attempt to retrieve the domain invitation."""
-        # Create a user with the same email
         User.objects.create_user(email="test@example.com", username="username")
 
         # Create a domain invitation instance
@@ -213,25 +455,172 @@ class TestDomainInvitationAdmin(TestCase):
         request = self.factory.post("/admin/registrar/DomainInvitation/add/")
         request.user = self.superuser
 
-        # Patch the retrieve method
-        with patch.object(DomainInvitation, "retrieve") as mock_retrieve:
-            admin_instance.save_model(request, invitation, form=None, change=False)
+       # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
 
-        # Assert retrieve was called
-        mock_retrieve.assert_called_once()
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_not_called()
+        mock_send_portfolio_email.assert_called_once_with(
+            email="test@example.com",
+            requestor=self.superuser,
+            portfolio=self.portfolio,
+        )
 
-        # Assert the invitation was saved
-        self.assertEqual(DomainInvitation.objects.count(), 1)
-        self.assertEqual(DomainInvitation.objects.first().email, "test@example.com")
+        # Assert retrieve on domain invite only was called
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
+        # Assert error message
+        mock_messages_error.assert_called_once_with(
+            request, "Can't send invitation email. No email is associated with your user account."
+        )
+
+        # Assert the invitations were saved
+        self.assertEqual(DomainInvitation.objects.count(), 0)
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
 
     @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_save_model_user_does_not_exist(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+    @patch("django.contrib.messages.error")
+    def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_sending_domain_email(self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending domain email exception.
+
+        Should send out the portfolio invitation and attempt to send the domain invitation.
+        Should trigger portfolio invitation success message.
+        Should trigger domain invitation error message.
+        Should not attempt to retrieve the domain invitation.
+        Should attempt to retrieve the portfolio invitation."""
+
+        mock_send_domain_email.side_effect = MissingEmailError("craving a burger")
+
+        user = User.objects.create_user(email="test@example.com", username="username")
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="test@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_called_once_with(
+            email="test@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=user,
+        )
+        mock_send_portfolio_email.assert_called_once_with(
+            email="test@example.com",
+            requestor=self.superuser,
+            portfolio=self.portfolio,
+        )
+
+        # Assert retrieve on domain invite only was called
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_called_once()
+
+        # Assert success message
+        mock_messages_success.assert_called_once_with(
+            request, "test@example.com has been invited to the organization: new portfolio"
+        )
+
+        # Assert error message
+        mock_messages_error.assert_called_once_with(
+            request, "Can't send invitation email. No email is associated with your user account."
+        )
+
+        # Assert the invitations were saved
+        self.assertEqual(DomainInvitation.objects.count(), 0)
+        self.assertEqual(PortfolioInvitation.objects.count(), 1)
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    @patch("django.contrib.messages.error")
+    def test_add_domain_invitation_when_user_existing_portfolio_member_raises_exception_sending_domain_email(self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending domain email exception.
+
+        Should send out the portfolio invitation and attempt to send the domain invitation.
+        Should trigger portfolio invitation success message.
+        Should trigger domain invitation error message.
+        Should not attempt to retrieve the domain invitation.
+        Should attempt to retrieve the portfolio invitation."""
+
+        mock_send_domain_email.side_effect = MissingEmailError("craving a burger")
+
+        user = User.objects.create_user(email="test@example.com", username="username")
+
+        UserPortfolioPermission.objects.create(
+            user=user, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+        )
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="test@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_called_once_with(
+            email="test@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=user,
+        )
+        mock_send_portfolio_email.assert_not_called()
+
+        # Assert retrieve on domain invite only was called
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
+        # Assert success message
+        mock_messages_success.assert_not_called()
+
+        # Assert error message
+        mock_messages_error.assert_called_once_with(
+            request, "Can't send invitation email. No email is associated with your user account."
+        )
+
+        # Assert the invitations were saved
+        self.assertEqual(DomainInvitation.objects.count(), 0)
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    def test_add_domain_invitation_success_when_email_not_portfolio_member(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
         """Test saving a domain invitation when the user does not exist.
 
-        Should not attempt to retrieve the domain invitation."""
+        Should send out domain and portfolio invitations.
+        Should trigger success messages.
+        Should not attempt to retrieve the domain invitation.
+        Should not attempt to retrieve the portfolio invitation."""
         # Create a domain invitation instance
         invitation = DomainInvitation(email="nonexistent@example.com", domain=self.domain)
 
@@ -242,15 +631,370 @@ class TestDomainInvitationAdmin(TestCase):
         request.user = self.superuser
 
         # Patch the retrieve method to ensure it is not called
-        with patch.object(DomainInvitation, "retrieve") as mock_retrieve:
-            admin_instance.save_model(request, invitation, form=None, change=False)
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_called_once_with(
+            email="nonexistent@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=None,
+        )
+        mock_send_portfolio_email.assert_called_once_with(
+            email="nonexistent@example.com",
+            requestor=self.superuser,
+            portfolio=self.portfolio,
+        )
 
         # Assert retrieve was not called
-        mock_retrieve.assert_not_called()
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_not_called()
 
-        # Assert the invitation was saved
+        # Assert success message
+        mock_messages_success.assert_has_calls([
+            call(request, "nonexistent@example.com has been invited to the organization: new portfolio"),
+            call(request, "nonexistent@example.com has been invited to the domain: example.com"),
+        ])
+
+        # Assert the invitations were saved
         self.assertEqual(DomainInvitation.objects.count(), 1)
         self.assertEqual(DomainInvitation.objects.first().email, "nonexistent@example.com")
+        self.assertEqual(PortfolioInvitation.objects.count(), 1)
+        self.assertEqual(PortfolioInvitation.objects.first().email, "nonexistent@example.com")
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=False)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    def test_add_domain_invitation_success_when_email_not_portfolio_member_and_organization_feature_off(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user does not exist and organization_feature flag is off.
+
+        Should send out a domain invitation.
+        Should not send a out portfolio invitation.
+        Should trigger success message for domain invitation.
+        Should not retrieve the domain invitation.
+        Should not create a portfolio invitation."""
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="nonexistent@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain but not portfolio
+        mock_send_domain_email.assert_called_once_with(
+            email="nonexistent@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=None,
+        )
+        mock_send_portfolio_email.assert_not_called()
+
+        # Assert retrieve on domain invite only was called
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
+        # Assert success message
+        mock_messages_success.assert_called_once_with(
+            request, "nonexistent@example.com has been invited to the domain: example.com"
+        )
+
+        # Assert the domain invitation was saved
+        self.assertEqual(DomainInvitation.objects.count(), 1)
+        self.assertEqual(DomainInvitation.objects.first().email, "nonexistent@example.com")
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @override_flag("multiple_portfolios", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    def test_add_domain_invitation_success_when_email_not_portfolio_member_and_multiple_portfolio_feature_on(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user does not exist and multiple_portfolio flag is on.
+
+        Should send out a domain invitation.
+        Should not send a out portfolio invitation.
+        Should trigger success message for domain invitation.
+        Should not retrieve the domain invitation.
+        Should not create a portfolio invitation."""
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="nonexistent@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain but not portfolio
+        mock_send_domain_email.assert_called_once_with(
+            email="nonexistent@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=None,
+        )
+        mock_send_portfolio_email.assert_not_called()
+
+        # Assert retrieve on domain invite only was called
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
+        # Assert success message
+        mock_messages_success.assert_called_once_with(
+            request, "nonexistent@example.com has been invited to the domain: example.com"
+        )
+
+        # Assert the domain invitation was saved
+        self.assertEqual(DomainInvitation.objects.count(), 1)
+        self.assertEqual(DomainInvitation.objects.first().email, "nonexistent@example.com")
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    def test_add_domain_invitation_success_when_email_existing_portfolio_invitation(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user does not exist and a portfolio invitation exists.
+
+        Should send out domain invitation only.
+        Should trigger success message for the domain invitation.
+        Should not attempt to retrieve the domain invitation.
+        Should not attempt to retrieve the portfolio invitation."""
+
+        PortfolioInvitation.objects.create(email="nonexistent@example.com", portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER])
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="nonexistent@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_called_once_with(
+            email="nonexistent@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=False,
+            requested_user=None,
+        )
+        mock_send_portfolio_email.assert_not_called
+
+        # Assert retrieve was not called
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
+        # Assert success message
+        mock_messages_success.assert_called_once_with(
+            request, "nonexistent@example.com has been invited to the domain: example.com"
+        )
+
+        # Assert the invitations were saved
+        self.assertEqual(DomainInvitation.objects.count(), 1)
+        self.assertEqual(DomainInvitation.objects.first().email, "nonexistent@example.com")
+        self.assertEqual(PortfolioInvitation.objects.count(), 1)
+        self.assertEqual(PortfolioInvitation.objects.first().email, "nonexistent@example.com")
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.error")
+    def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_sending_portfolio_email(self, mock_messages_error, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending portfolio email exception.
+
+        Should only attempt to send the portfolio invitation.
+        Should trigger error message on portfolio invitation.
+        Should not attempt to retrieve the domain invitation.
+        Should not attempt to retrieve the portfolio invitation."""
+
+        mock_send_portfolio_email.side_effect = MissingEmailError("craving a burger")
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="nonexistent@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+       # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_not_called()
+        mock_send_portfolio_email.assert_called_once_with(
+            email="nonexistent@example.com",
+            requestor=self.superuser,
+            portfolio=self.portfolio,
+        )
+
+        # Assert retrieve on domain invite only was called
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
+        # Assert error message
+        mock_messages_error.assert_called_once_with(
+            request, "Can't send invitation email. No email is associated with your user account."
+        )
+
+        # Assert the invitations were saved
+        self.assertEqual(DomainInvitation.objects.count(), 0)
+        self.assertEqual(PortfolioInvitation.objects.count(), 0)
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    @patch("django.contrib.messages.error")
+    def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_sending_domain_email(self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending domain email exception.
+
+        Should send out the portfolio invitation and attempt to send the domain invitation.
+        Should trigger portfolio invitation success message.
+        Should trigger domain invitation error message.
+        Should not attempt to retrieve the domain invitation.
+        Should attempt to retrieve the portfolio invitation."""
+
+        mock_send_domain_email.side_effect = MissingEmailError("craving a burger")
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="nonexistent@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_called_once_with(
+            email="nonexistent@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=None,
+            requested_user=None,
+        )
+        mock_send_portfolio_email.assert_called_once_with(
+            email="nonexistent@example.com",
+            requestor=self.superuser,
+            portfolio=self.portfolio,
+        )
+
+        # Assert retrieve on domain invite only was called
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
+        # Assert success message
+        mock_messages_success.assert_called_once_with(
+            request, "nonexistent@example.com has been invited to the organization: new portfolio"
+        )
+
+        # Assert error message
+        mock_messages_error.assert_called_once_with(
+            request, "Can't send invitation email. No email is associated with your user account."
+        )
+
+        # Assert the invitations were saved
+        self.assertEqual(DomainInvitation.objects.count(), 0)
+        self.assertEqual(PortfolioInvitation.objects.count(), 1)
+
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @patch("registrar.admin.send_domain_invitation_email")
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")
+    @patch("django.contrib.messages.error")
+    def test_add_domain_invitation_when_user_existing_portfolio_email_raises_exception_sending_domain_email(self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending domain email exception.
+
+        Should send out the portfolio invitation and attempt to send the domain invitation.
+        Should trigger portfolio invitation success message.
+        Should trigger domain invitation error message.
+        Should not attempt to retrieve the domain invitation.
+        Should attempt to retrieve the portfolio invitation."""
+
+        mock_send_domain_email.side_effect = MissingEmailError("craving a burger")
+
+        PortfolioInvitation.objects.create(
+            email="nonexistent@example.com", portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+        )
+
+        # Create a domain invitation instance
+        invitation = DomainInvitation(email="nonexistent@example.com", domain=self.domain)
+
+        admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/DomainInvitation/add/")
+        request.user = self.superuser
+
+        # Patch the retrieve method to ensure it is not called
+        with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
+            with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+                admin_instance.save_model(request, invitation, form=None, change=False)
+
+        # Assert sends appropriate emails - domain and portfolio invites
+        mock_send_domain_email.assert_called_once_with(
+            email="nonexistent@example.com",
+            requestor=self.superuser,
+            domains=self.domain,
+            is_member_of_different_org=False,
+            requested_user=None,
+        )
+        mock_send_portfolio_email.assert_not_called()
+
+        # Assert retrieve on domain invite only was called
+        domain_invitation_mock_retrieve.assert_not_called()
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
+        # Assert success message
+        mock_messages_success.assert_not_called()
+
+        # Assert error message
+        mock_messages_error.assert_called_once_with(
+            request, "Can't send invitation email. No email is associated with your user account."
+        )
+
+        # Assert the invitations were saved
+        self.assertEqual(DomainInvitation.objects.count(), 0)
+        self.assertEqual(PortfolioInvitation.objects.count(), 1)
 
 
 class TestUserPortfolioPermissionAdmin(TestCase):
@@ -387,6 +1131,7 @@ class TestPortfolioInvitationAdmin(TestCase):
         Portfolio.objects.all().delete()
         PortfolioInvitation.objects.all().delete()
         Contact.objects.all().delete()
+        User.objects.all().delete()
 
     @classmethod
     def tearDownClass(self):
@@ -543,34 +1288,32 @@ class TestPortfolioInvitationAdmin(TestCase):
     @less_console_noise_decorator
     def test_get_filters(self):
         """Ensures that our filters are displaying correctly"""
-        with less_console_noise():
-            self.client.force_login(self.superuser)
+        self.client.force_login(self.superuser)
 
-            response = self.client.get(
-                "/admin/registrar/portfolioinvitation/",
-                {},
-                follow=True,
-            )
+        response = self.client.get(
+            "/admin/registrar/portfolioinvitation/",
+            {},
+            follow=True,
+        )
 
-            # Assert that the filters are added
-            self.assertContains(response, "invited", count=4)
-            self.assertContains(response, "Invited", count=2)
-            self.assertContains(response, "retrieved", count=2)
-            self.assertContains(response, "Retrieved", count=2)
+        # Assert that the filters are added
+        self.assertContains(response, "invited", count=4)
+        self.assertContains(response, "Invited", count=2)
+        self.assertContains(response, "retrieved", count=2)
+        self.assertContains(response, "Retrieved", count=2)
 
-            # Check for the HTML context specificially
-            invited_html = '<a href="?status__exact=invited">Invited</a>'
-            retrieved_html = '<a href="?status__exact=retrieved">Retrieved</a>'
+        # Check for the HTML context specificially
+        invited_html = '<a href="?status__exact=invited">Invited</a>'
+        retrieved_html = '<a href="?status__exact=retrieved">Retrieved</a>'
 
-            self.assertContains(response, invited_html, count=1)
-            self.assertContains(response, retrieved_html, count=1)
+        self.assertContains(response, invited_html, count=1)
+        self.assertContains(response, retrieved_html, count=1)
 
     @less_console_noise_decorator
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")  # Mock the `messages.warning` call
-    def test_save_sends_email(self, mock_messages_warning, mock_send_email):
-        """On save_model, an email is NOT sent if an invitation already exists."""
-        self.client.force_login(self.superuser)
+    def test_save_sends_email(self, mock_messages_success, mock_send_email):
+        """On save_model, an email is sent if an invitation already exists."""
 
         # Create an instance of the admin class
         admin_instance = PortfolioInvitationAdmin(PortfolioInvitation, admin_site=None)
@@ -589,7 +1332,7 @@ class TestPortfolioInvitationAdmin(TestCase):
         # Call the save_model method
         admin_instance.save_model(request, portfolio_invitation, None, None)
 
-        # Assert that send_portfolio_invitation_email is not called
+        # Assert that send_portfolio_invitation_email is called
         mock_send_email.assert_called()
 
         # Get the arguments passed to send_portfolio_invitation_email
@@ -601,7 +1344,7 @@ class TestPortfolioInvitationAdmin(TestCase):
         self.assertEqual(called_kwargs["portfolio"], self.portfolio)
 
         # Assert that a warning message was triggered
-        mock_messages_warning.assert_called_once_with(request, "james.gordon@gotham.gov has been invited.")
+        mock_messages_success.assert_called_once_with(request, "james.gordon@gotham.gov has been invited.")
 
     @less_console_noise_decorator
     @patch("registrar.admin.send_portfolio_invitation_email")
@@ -638,6 +1381,90 @@ class TestPortfolioInvitationAdmin(TestCase):
         # Assert that a warning message was triggered
         mock_messages_warning.assert_called_once_with(request, "User is already a member of this portfolio.")
 
+    @less_console_noise_decorator
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")  # Mock the `messages.warning` call
+    def test_add_portfolio_invitation_auto_retrieves_invitation_when_user_exists(self, mock_messages_success, mock_send_email):
+        """On save_model, we create and retrieve a portfolio invitation if the user exists."""
+
+        # Create an instance of the admin class
+        admin_instance = PortfolioInvitationAdmin(PortfolioInvitation, admin_site=None)
+
+        User.objects.create_user(email="james.gordon@gotham.gov", username="username")
+
+        # Create a PortfolioInvitation instance
+        portfolio_invitation = PortfolioInvitation(
+            email="james.gordon@gotham.gov",
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+        )
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/PortfolioInvitation/add/")
+        request.user = self.superuser
+
+        # Call the save_model method
+        with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+            admin_instance.save_model(request, portfolio_invitation, None, None)
+
+        # Assert that send_portfolio_invitation_email is called
+        mock_send_email.assert_called()
+
+        # Get the arguments passed to send_portfolio_invitation_email
+        _, called_kwargs = mock_send_email.call_args
+
+        # Assert the email content
+        self.assertEqual(called_kwargs["email"], "james.gordon@gotham.gov")
+        self.assertEqual(called_kwargs["requestor"], self.superuser)
+        self.assertEqual(called_kwargs["portfolio"], self.portfolio)
+
+        # Assert that a warning message was triggered
+        mock_messages_success.assert_called_once_with(request, "james.gordon@gotham.gov has been invited.")
+
+        # The invitation is not retrieved
+        portfolio_invitation_mock_retrieve.assert_called_once()
+        
+    @less_console_noise_decorator
+    @patch("registrar.admin.send_portfolio_invitation_email")
+    @patch("django.contrib.messages.success")  # Mock the `messages.warning` call
+    def test_add_portfolio_invitation_does_not_retrieve_invitation_when_no_user(self, mock_messages_success, mock_send_email):
+        """On save_model, we create but do not retrieve a portfolio invitation if the user does not exist."""
+
+        # Create an instance of the admin class
+        admin_instance = PortfolioInvitationAdmin(PortfolioInvitation, admin_site=None)
+
+        # Create a PortfolioInvitation instance
+        portfolio_invitation = PortfolioInvitation(
+            email="james.gordon@gotham.gov",
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+        )
+
+        # Create a request object
+        request = self.factory.post("/admin/registrar/PortfolioInvitation/add/")
+        request.user = self.superuser
+
+        # Call the save_model method
+        with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
+            admin_instance.save_model(request, portfolio_invitation, None, None)
+
+        # Assert that send_portfolio_invitation_email is called
+        mock_send_email.assert_called()
+
+        # Get the arguments passed to send_portfolio_invitation_email
+        _, called_kwargs = mock_send_email.call_args
+
+        # Assert the email content
+        self.assertEqual(called_kwargs["email"], "james.gordon@gotham.gov")
+        self.assertEqual(called_kwargs["requestor"], self.superuser)
+        self.assertEqual(called_kwargs["portfolio"], self.portfolio)
+
+        # Assert that a warning message was triggered
+        mock_messages_success.assert_called_once_with(request, "james.gordon@gotham.gov has been invited.")
+
+        # The invitation is not retrieved
+        portfolio_invitation_mock_retrieve.assert_not_called()
+
     @less_console_noise_decorator
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.error")  # Mock the `messages.error` call
@@ -667,7 +1494,7 @@ class TestPortfolioInvitationAdmin(TestCase):
 
         # Assert that messages.error was called with the correct message
         mock_messages_error.assert_called_once_with(
-            request, "Could not send email invitation. Portfolio invitation not saved."
+            request, "Email service unavailable"
         )
 
     @less_console_noise_decorator
@@ -705,7 +1532,7 @@ class TestPortfolioInvitationAdmin(TestCase):
 
     @less_console_noise_decorator
     @patch("registrar.admin.send_portfolio_invitation_email")
-    @patch("django.contrib.messages.error")  # Mock the `messages.error` call
+    @patch("django.contrib.messages.warning")  # Mock the `messages.error` call
     def test_save_exception_generic_error(self, mock_messages_error, mock_send_email):
         """Handle generic exceptions correctly during portfolio invitation."""
         self.client.force_login(self.superuser)
@@ -732,7 +1559,7 @@ class TestPortfolioInvitationAdmin(TestCase):
 
         # Assert that messages.error was called with the correct message
         mock_messages_error.assert_called_once_with(
-            request, "Could not send email invitation. Portfolio invitation not saved."
+            request, "Could not send email invitation."
         )
 
 

From ca04baeeefb6473a2fe8df36e9100f9fd60c31c3 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 18:23:24 -0500
Subject: [PATCH 45/68] test_views_portfolio tests

---
 src/registrar/tests/test_views_portfolio.py | 52 ++++++++++++++++++++-
 1 file changed, 51 insertions(+), 1 deletion(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 490c6b1bb..a6edb710d 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2958,7 +2958,7 @@ class TestPortfolioInviteNewMemberView(TestWithUser, WebTest):
             ],
         )
 
-        cls.new_member_email = "davekenn4242@gmail.com"
+        cls.new_member_email = "newmember@example.com"
 
         AllowedEmail.objects.get_or_create(email=cls.new_member_email)
 
@@ -3012,11 +3012,13 @@ class TestPortfolioInviteNewMemberView(TestWithUser, WebTest):
             self.assertEqual(final_response.status_code, 302)  # Redirects
 
             # Validate Database Changes
+            # Validate that portfolio invitation was created but not retrieved
             portfolio_invite = PortfolioInvitation.objects.filter(
                 email=self.new_member_email, portfolio=self.portfolio
             ).first()
             self.assertIsNotNone(portfolio_invite)
             self.assertEqual(portfolio_invite.email, self.new_member_email)
+            self.assertEqual(portfolio_invite.status, PortfolioInvitation.PortfolioInvitationStatus.INVITED)
 
             # Check that an email was sent
             self.assertTrue(mock_client.send_email.called)
@@ -3307,6 +3309,54 @@ class TestPortfolioInviteNewMemberView(TestWithUser, WebTest):
         # assert that send_portfolio_invitation_email is not called
         mock_send_email.assert_not_called()
 
+    @less_console_noise_decorator
+    @override_flag("organization_feature", active=True)
+    @override_flag("organization_members", active=True)
+    @patch("registrar.views.portfolios.send_portfolio_invitation_email")
+    def test_member_invite_for_existing_user_who_is_not_a_member(self, mock_send_email):
+        """Tests the member invitation flow for existing user who is not a portfolio member."""
+        self.client.force_login(self.user)
+
+        # Simulate a session to ensure continuity
+        session_id = self.client.session.session_key
+        self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
+
+        invite_count_before = PortfolioInvitation.objects.count()
+
+        new_user = User.objects.create(email="newuser@example.com")
+
+        # Simulate submission of member invite for the newly created user
+        response = self.client.post(
+            reverse("new-member"),
+            {
+                "role": UserPortfolioRoleChoices.ORGANIZATION_MEMBER.value,
+                "domain_request_permission_member": UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS.value,
+                "email": "newuser@example.com",
+            },
+        )
+        self.assertEqual(response.status_code, 302)
+
+        # Validate Database Changes
+        # Validate that portfolio invitation was created and retrieved
+        portfolio_invite = PortfolioInvitation.objects.filter(
+            email="newuser@example.com", portfolio=self.portfolio
+        ).first()
+        self.assertIsNotNone(portfolio_invite)
+        self.assertEqual(portfolio_invite.email, "newuser@example.com")
+        self.assertEqual(portfolio_invite.status, PortfolioInvitation.PortfolioInvitationStatus.RETRIEVED)
+        # Validate UserPortfolioPermission
+        user_portfolio_permission = UserPortfolioPermission.objects.filter(
+            user=new_user, portfolio=self.portfolio
+        ).first()
+        self.assertIsNotNone(user_portfolio_permission)
+
+        # assert that send_portfolio_invitation_email is called
+        mock_send_email.assert_called_once()
+        call_args = mock_send_email.call_args.kwargs
+        self.assertEqual(call_args["email"], "newuser@example.com")
+        self.assertEqual(call_args["requestor"], self.user)
+        self.assertIsNone(call_args.get("is_member_of_different_org"))
+
 
 class TestEditPortfolioMemberView(WebTest):
     """Tests for the edit member page on portfolios"""

From 8f8394d2804a1c16551b5fdac1df890cf96f31fb Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 9 Jan 2025 19:19:11 -0500
Subject: [PATCH 46/68] Missing model tests on portfolio helpers, some
 misplaced model tests in test_admin

---
 src/registrar/tests/test_admin.py  | 178 +---------------
 src/registrar/tests/test_models.py | 325 +++++++++++++++++++++++++++++
 2 files changed, 326 insertions(+), 177 deletions(-)

diff --git a/src/registrar/tests/test_admin.py b/src/registrar/tests/test_admin.py
index ae46ba388..f14259dd1 100644
--- a/src/registrar/tests/test_admin.py
+++ b/src/registrar/tests/test_admin.py
@@ -1002,8 +1002,6 @@ class TestUserPortfolioPermissionAdmin(TestCase):
 
     def setUp(self):
         """Create a client object"""
-        self.factory = RequestFactory()
-        self.admin = ListHeaderAdmin(model=UserPortfolioPermissionAdmin, admin_site=AdminSite())
         self.client = Client(HTTP_HOST="localhost:8080")
         self.superuser = create_superuser()
         self.portfolio = Portfolio.objects.create(organization_name="Test Portfolio", creator=self.superuser)
@@ -1011,77 +1009,9 @@ class TestUserPortfolioPermissionAdmin(TestCase):
     def tearDown(self):
         """Delete all DomainInvitation objects"""
         Portfolio.objects.all().delete()
-        PortfolioInvitation.objects.all().delete()
         Contact.objects.all().delete()
         User.objects.all().delete()
-
-    @less_console_noise_decorator
-    def test_clean_user_portfolio_permission(self):
-        """Tests validation of user portfolio permission"""
-
-        # Test validation fails when portfolio missing but permissions are present
-        permission = UserPortfolioPermission(user=self.superuser, roles=["organization_admin"], portfolio=None)
-        with self.assertRaises(ValidationError) as err:
-            permission.clean()
-            self.assertEqual(
-                str(err.exception),
-                "When portfolio roles or additional permissions are assigned, portfolio is required.",
-            )
-
-        # Test validation fails when portfolio present but no permissions are present
-        permission = UserPortfolioPermission(user=self.superuser, roles=None, portfolio=self.portfolio)
-        with self.assertRaises(ValidationError) as err:
-            permission.clean()
-            self.assertEqual(
-                str(err.exception),
-                "When portfolio is assigned, portfolio roles or additional permissions are required.",
-            )
-
-        # Test validation fails with forbidden permissions for single role
-        forbidden_member_roles = UserPortfolioPermission.FORBIDDEN_PORTFOLIO_ROLE_PERMISSIONS.get(
-            UserPortfolioRoleChoices.ORGANIZATION_MEMBER
-        )
-        permission = UserPortfolioPermission(
-            user=self.superuser,
-            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
-            additional_permissions=forbidden_member_roles,
-            portfolio=self.portfolio,
-        )
-        with self.assertRaises(ValidationError) as err:
-            permission.clean()
-            self.assertEqual(
-                str(err.exception),
-                "These permissions cannot be assigned to Member: "
-                "<Create and edit members, View all domains and domain reports, View members>",
-            )
-
-    @less_console_noise_decorator
-    def test_get_forbidden_permissions_with_multiple_roles(self):
-        """Tests that forbidden permissions are properly handled when a user has multiple roles"""
-        # Get forbidden permissions for member role
-        member_forbidden = UserPortfolioPermission.FORBIDDEN_PORTFOLIO_ROLE_PERMISSIONS.get(
-            UserPortfolioRoleChoices.ORGANIZATION_MEMBER
-        )
-
-        # Test with both admin and member roles
-        roles = [UserPortfolioRoleChoices.ORGANIZATION_ADMIN, UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
-
-        # These permissions would be forbidden for member alone, but should be allowed
-        # when combined with admin role
-        permissions = UserPortfolioPermission.get_forbidden_permissions(
-            roles=roles, additional_permissions=member_forbidden
-        )
-
-        # Should return empty set since no permissions are commonly forbidden between admin and member
-        self.assertEqual(permissions, set())
-
-        # Verify the same permissions are forbidden when only member role is present
-        member_only_permissions = UserPortfolioPermission.get_forbidden_permissions(
-            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER], additional_permissions=member_forbidden
-        )
-
-        # Should return the forbidden permissions for member role
-        self.assertEqual(member_only_permissions, set(member_forbidden))
+        UserPortfolioPermission.objects.all().delete()
 
     @less_console_noise_decorator
     def test_has_change_form_description(self):
@@ -1137,112 +1067,6 @@ class TestPortfolioInvitationAdmin(TestCase):
     def tearDownClass(self):
         User.objects.all().delete()
 
-    @less_console_noise_decorator
-    @override_flag("multiple_portfolios", active=False)
-    def test_clean_multiple_portfolios_inactive(self):
-        """Tests that users cannot have multiple portfolios or invitations when flag is inactive"""
-        # Create the first portfolio permission
-        UserPortfolioPermission.objects.create(
-            user=self.superuser, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
-        )
-
-        # Test a second portfolio permission object (should fail)
-        second_portfolio = Portfolio.objects.create(organization_name="Second Portfolio", creator=self.superuser)
-        second_permission = UserPortfolioPermission(
-            user=self.superuser, portfolio=second_portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
-        )
-
-        with self.assertRaises(ValidationError) as err:
-            second_permission.clean()
-        self.assertIn("users cannot be assigned to multiple portfolios", str(err.exception))
-
-        # Test that adding a new portfolio invitation also fails
-        third_portfolio = Portfolio.objects.create(organization_name="Third Portfolio", creator=self.superuser)
-        invitation = PortfolioInvitation(
-            email=self.superuser.email, portfolio=third_portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
-        )
-
-        with self.assertRaises(ValidationError) as err:
-            invitation.clean()
-        self.assertIn("users cannot be assigned to multiple portfolios", str(err.exception))
-
-    @less_console_noise_decorator
-    @override_flag("multiple_portfolios", active=True)
-    def test_clean_multiple_portfolios_active(self):
-        """Tests that users can have multiple portfolios and invitations when flag is active"""
-        # Create first portfolio permission
-        UserPortfolioPermission.objects.create(
-            user=self.superuser, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
-        )
-
-        # Second portfolio permission should succeed
-        second_portfolio = Portfolio.objects.create(organization_name="Second Portfolio", creator=self.superuser)
-        second_permission = UserPortfolioPermission(
-            user=self.superuser, portfolio=second_portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
-        )
-        second_permission.clean()
-        second_permission.save()
-
-        # Verify both permissions exist
-        user_permissions = UserPortfolioPermission.objects.filter(user=self.superuser)
-        self.assertEqual(user_permissions.count(), 2)
-
-        # Portfolio invitation should also succeed
-        third_portfolio = Portfolio.objects.create(organization_name="Third Portfolio", creator=self.superuser)
-        invitation = PortfolioInvitation(
-            email=self.superuser.email, portfolio=third_portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
-        )
-        invitation.clean()
-        invitation.save()
-
-        # Verify invitation exists
-        self.assertTrue(
-            PortfolioInvitation.objects.filter(
-                email=self.superuser.email,
-                portfolio=third_portfolio,
-            ).exists()
-        )
-
-    @less_console_noise_decorator
-    def test_clean_portfolio_invitation(self):
-        """Tests validation of portfolio invitation permissions"""
-
-        # Test validation fails when portfolio missing but permissions present
-        invitation = PortfolioInvitation(email="test@example.com", roles=["organization_admin"], portfolio=None)
-        with self.assertRaises(ValidationError) as err:
-            invitation.clean()
-            self.assertEqual(
-                str(err.exception),
-                "When portfolio roles or additional permissions are assigned, portfolio is required.",
-            )
-
-        # Test validation fails when portfolio present but no permissions
-        invitation = PortfolioInvitation(email="test@example.com", roles=None, portfolio=self.portfolio)
-        with self.assertRaises(ValidationError) as err:
-            invitation.clean()
-            self.assertEqual(
-                str(err.exception),
-                "When portfolio is assigned, portfolio roles or additional permissions are required.",
-            )
-
-        # Test validation fails with forbidden permissions
-        forbidden_member_roles = UserPortfolioPermission.FORBIDDEN_PORTFOLIO_ROLE_PERMISSIONS.get(
-            UserPortfolioRoleChoices.ORGANIZATION_MEMBER
-        )
-        invitation = PortfolioInvitation(
-            email="test@example.com",
-            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
-            additional_permissions=forbidden_member_roles,
-            portfolio=self.portfolio,
-        )
-        with self.assertRaises(ValidationError) as err:
-            invitation.clean()
-            self.assertEqual(
-                str(err.exception),
-                "These permissions cannot be assigned to Member: "
-                "<View all domains and domain reports, Create and edit members, View members>",
-            )
-
     @less_console_noise_decorator
     def test_has_model_description(self):
         """Tests if this model has a model description on the table view"""
diff --git a/src/registrar/tests/test_models.py b/src/registrar/tests/test_models.py
index 46604a44a..31af8462a 100644
--- a/src/registrar/tests/test_models.py
+++ b/src/registrar/tests/test_models.py
@@ -28,6 +28,7 @@ from registrar.models.verified_by_staff import VerifiedByStaff  # type: ignore
 from .common import (
     MockSESClient,
     completed_domain_request,
+    create_superuser,
     create_test_user,
 )
 from waffle.testutils import override_flag
@@ -155,6 +156,7 @@ class TestPortfolioInvitations(TestCase):
             roles=[self.portfolio_role_base, self.portfolio_role_admin],
             additional_permissions=[self.portfolio_permission_1, self.portfolio_permission_2],
         )
+        self.superuser = create_superuser()
 
     def tearDown(self):
         super().tearDown()
@@ -294,10 +296,159 @@ class TestPortfolioInvitations(TestCase):
         # Verify
         self.assertEquals(self.invitation.get_portfolio_permissions(), perm_list)
 
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=False)
+    def test_clean_multiple_portfolios_inactive(self):
+        """Tests that users cannot have multiple portfolios or invitations when flag is inactive"""
+        # Create the first portfolio permission
+        UserPortfolioPermission.objects.create(
+            user=self.superuser, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+        )
+
+        # Test a second portfolio permission object (should fail)
+        second_portfolio = Portfolio.objects.create(organization_name="Second Portfolio", creator=self.superuser)
+        second_permission = UserPortfolioPermission(
+            user=self.superuser, portfolio=second_portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+        )
+
+        with self.assertRaises(ValidationError) as err:
+            second_permission.clean()
+        self.assertIn("users cannot be assigned to multiple portfolios", str(err.exception))
+
+        # Test that adding a new portfolio invitation also fails
+        third_portfolio = Portfolio.objects.create(organization_name="Third Portfolio", creator=self.superuser)
+        invitation = PortfolioInvitation(
+            email=self.superuser.email, portfolio=third_portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+        )
+
+        with self.assertRaises(ValidationError) as err:
+            invitation.clean()
+        self.assertIn("users cannot be assigned to multiple portfolios", str(err.exception))
+
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=True)
+    def test_clean_multiple_portfolios_active(self):
+        """Tests that users can have multiple portfolios and invitations when flag is active"""
+        # Create first portfolio permission
+        UserPortfolioPermission.objects.create(
+            user=self.superuser, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+        )
+
+        # Second portfolio permission should succeed
+        second_portfolio = Portfolio.objects.create(organization_name="Second Portfolio", creator=self.superuser)
+        second_permission = UserPortfolioPermission(
+            user=self.superuser, portfolio=second_portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+        )
+        second_permission.clean()
+        second_permission.save()
+
+        # Verify both permissions exist
+        user_permissions = UserPortfolioPermission.objects.filter(user=self.superuser)
+        self.assertEqual(user_permissions.count(), 2)
+
+        # Portfolio invitation should also succeed
+        third_portfolio = Portfolio.objects.create(organization_name="Third Portfolio", creator=self.superuser)
+        invitation = PortfolioInvitation(
+            email=self.superuser.email, portfolio=third_portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN]
+        )
+        invitation.clean()
+        invitation.save()
+
+        # Verify invitation exists
+        self.assertTrue(
+            PortfolioInvitation.objects.filter(
+                email=self.superuser.email,
+                portfolio=third_portfolio,
+            ).exists()
+        )
+    
+    @less_console_noise_decorator
+    def test_clean_portfolio_invitation(self):
+        """Tests validation of portfolio invitation permissions"""
+
+        # Test validation fails when portfolio missing but permissions present
+        invitation = PortfolioInvitation(email="test@example.com", roles=["organization_admin"], portfolio=None)
+        with self.assertRaises(ValidationError) as err:
+            invitation.clean()
+            self.assertEqual(
+                str(err.exception),
+                "When portfolio roles or additional permissions are assigned, portfolio is required.",
+            )
+
+        # Test validation fails when portfolio present but no permissions
+        invitation = PortfolioInvitation(email="test@example.com", roles=None, portfolio=self.portfolio)
+        with self.assertRaises(ValidationError) as err:
+            invitation.clean()
+            self.assertEqual(
+                str(err.exception),
+                "When portfolio is assigned, portfolio roles or additional permissions are required.",
+            )
+
+        # Test validation fails with forbidden permissions
+        forbidden_member_roles = UserPortfolioPermission.FORBIDDEN_PORTFOLIO_ROLE_PERMISSIONS.get(
+            UserPortfolioRoleChoices.ORGANIZATION_MEMBER
+        )
+        invitation = PortfolioInvitation(
+            email="test@example.com",
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
+            additional_permissions=forbidden_member_roles,
+            portfolio=self.portfolio,
+        )
+        with self.assertRaises(ValidationError) as err:
+            invitation.clean()
+            self.assertEqual(
+                str(err.exception),
+                "These permissions cannot be assigned to Member: "
+                "<View all domains and domain reports, Create and edit members, View members>",
+            )
+
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=False)
+    def test_clean_user_portfolio_permission_multiple_portfolios_flag_off_and_duplicate_permission(self):
+        """MISSING TEST: Test validation of multiple_portfolios flag.
+        Scenario 1: Flag is inactive, and the user has existing portfolio permissions
+        
+        NOTE: Refer to the same test under TestUserPortfolioPermission"""
+
+        pass
+
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=False)
+    def test_clean_user_portfolio_permission_multiple_portfolios_flag_off_and_existing_invitation(self):
+        """MISSING TEST: Test validation of multiple_portfolios flag.
+        Scenario 2: Flag is inactive, and the user has existing portfolio invitation to another portfolio
+        
+        NOTE: Refer to the same test under TestUserPortfolioPermission"""
+
+        pass
+
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=True)
+    def test_clean_user_portfolio_permission_multiple_portfolios_flag_on_and_duplicate_permission(self):
+        """MISSING TEST: Test validation of multiple_portfolios flag.
+        Scenario 3: Flag is active, and the user has existing portfolio invitation
+        
+        NOTE: Refer to the same test under TestUserPortfolioPermission"""
+
+        pass
+
+
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=True)
+    def test_clean_user_portfolio_permission_multiple_portfolios_flag_on_and_existing_invitation(self):
+        """MISSING TEST: Test validation of multiple_portfolios flag.
+        Scenario 4: Flag is active, and the user has existing portfolio invitation to another portfolio
+        
+        NOTE: Refer to the same test under TestUserPortfolioPermission"""
+
+        pass
+
 
 class TestUserPortfolioPermission(TestCase):
     @less_console_noise_decorator
     def setUp(self):
+        self.superuser = create_superuser()
+        self.portfolio = Portfolio.objects.create(organization_name="Test Portfolio", creator=self.superuser)
         self.user, _ = User.objects.get_or_create(email="mayor@igorville.gov")
         self.user2, _ = User.objects.get_or_create(email="user2@igorville.gov", username="user2")
         super().setUp()
@@ -311,6 +462,7 @@ class TestUserPortfolioPermission(TestCase):
         Portfolio.objects.all().delete()
         User.objects.all().delete()
         UserDomainRole.objects.all().delete()
+        PortfolioInvitation.objects.all().delete()
 
     @less_console_noise_decorator
     @override_flag("multiple_portfolios", active=True)
@@ -427,6 +579,179 @@ class TestUserPortfolioPermission(TestCase):
         # Assert
         self.assertEqual(portfolio_permission.get_managed_domains_count(), 1)
 
+    @less_console_noise_decorator
+    def test_clean_user_portfolio_permission(self):
+        """Tests validation of user portfolio permission"""
+
+        # Test validation fails when portfolio missing but permissions are present
+        permission = UserPortfolioPermission(user=self.superuser, roles=["organization_admin"], portfolio=None)
+        with self.assertRaises(ValidationError) as err:
+            permission.clean()
+            self.assertEqual(
+                str(err.exception),
+                "When portfolio roles or additional permissions are assigned, portfolio is required.",
+            )
+
+        # Test validation fails when portfolio present but no permissions are present
+        permission = UserPortfolioPermission(user=self.superuser, roles=None, portfolio=self.portfolio)
+        with self.assertRaises(ValidationError) as err:
+            permission.clean()
+            self.assertEqual(
+                str(err.exception),
+                "When portfolio is assigned, portfolio roles or additional permissions are required.",
+            )
+
+        # Test validation fails with forbidden permissions for single role
+        forbidden_member_roles = UserPortfolioPermission.FORBIDDEN_PORTFOLIO_ROLE_PERMISSIONS.get(
+            UserPortfolioRoleChoices.ORGANIZATION_MEMBER
+        )
+        permission = UserPortfolioPermission(
+            user=self.superuser,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
+            additional_permissions=forbidden_member_roles,
+            portfolio=self.portfolio,
+        )
+        with self.assertRaises(ValidationError) as err:
+            permission.clean()
+            self.assertEqual(
+                str(err.exception),
+                "These permissions cannot be assigned to Member: "
+                "<Create and edit members, View all domains and domain reports, View members>",
+            )
+
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=False)
+    def test_clean_user_portfolio_permission_multiple_portfolios_flag_off_and_duplicate_permission(self):
+        """Test validation of multiple_portfolios flag.
+        Scenario 1: Flag is inactive, and the user has existing portfolio permissions"""
+
+        #existing permission
+        UserPortfolioPermission.objects.create(
+            user=self.superuser,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            portfolio=self.portfolio,
+        )
+
+        permission = UserPortfolioPermission(
+            user=self.superuser,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            portfolio=self.portfolio,
+        )
+
+        with self.assertRaises(ValidationError) as err:
+            permission.clean()
+
+        self.assertEqual(
+            str(err.exception.messages[0]),
+            "This user is already assigned to a portfolio. "
+            "Based on current waffle flag settings, users cannot be assigned to multiple portfolios.",
+        )
+
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=False)
+    def test_clean_user_portfolio_permission_multiple_portfolios_flag_off_and_existing_invitation(self):
+        """Test validation of multiple_portfolios flag.
+        Scenario 2: Flag is inactive, and the user has existing portfolio invitation to another portfolio"""
+
+        portfolio2 = Portfolio.objects.create(creator=self.superuser, organization_name="Joey go away")
+
+        PortfolioInvitation.objects.create(
+            email=self.superuser.email, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN], portfolio=portfolio2
+        )
+
+        permission = UserPortfolioPermission(
+            user=self.superuser,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            portfolio=self.portfolio,
+        )
+
+        with self.assertRaises(ValidationError) as err:
+            permission.clean()
+
+        self.assertEqual(
+            str(err.exception.messages[0]),
+            "This user is already assigned to a portfolio invitation. "
+            "Based on current waffle flag settings, users cannot be assigned to multiple portfolios.",
+        )
+
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=True)
+    def test_clean_user_portfolio_permission_multiple_portfolios_flag_on_and_duplicate_permission(self):
+        """Test validation of multiple_portfolios flag.
+        Scenario 3: Flag is active, and the user has existing portfolio invitation"""
+
+        # existing permission
+        UserPortfolioPermission.objects.create(
+            user=self.superuser,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            portfolio=self.portfolio,
+        )
+
+        permission = UserPortfolioPermission(
+            user=self.superuser,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            portfolio=self.portfolio,
+        )
+
+        # Should not raise any exceptions
+        try:
+            permission.clean()
+        except ValidationError:
+            self.fail("ValidationError was raised unexpectedly when flag is active.")
+
+
+    @less_console_noise_decorator
+    @override_flag("multiple_portfolios", active=True)
+    def test_clean_user_portfolio_permission_multiple_portfolios_flag_on_and_existing_invitation(self):
+        """Test validation of multiple_portfolios flag.
+        Scenario 4: Flag is active, and the user has existing portfolio invitation to another portfolio"""
+
+        portfolio2 = Portfolio.objects.create(creator=self.superuser, organization_name="Joey go away")
+
+        PortfolioInvitation.objects.create(
+            email=self.superuser.email, roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN], portfolio=portfolio2
+        )
+
+        permission = UserPortfolioPermission(
+            user=self.superuser,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            portfolio=self.portfolio,
+        )
+
+        # Should not raise any exceptions
+        try:
+            permission.clean()
+        except ValidationError:
+            self.fail("ValidationError was raised unexpectedly when flag is active.")
+
+    @less_console_noise_decorator
+    def test_get_forbidden_permissions_with_multiple_roles(self):
+        """Tests that forbidden permissions are properly handled when a user has multiple roles"""
+        # Get forbidden permissions for member role
+        member_forbidden = UserPortfolioPermission.FORBIDDEN_PORTFOLIO_ROLE_PERMISSIONS.get(
+            UserPortfolioRoleChoices.ORGANIZATION_MEMBER
+        )
+
+        # Test with both admin and member roles
+        roles = [UserPortfolioRoleChoices.ORGANIZATION_ADMIN, UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+
+        # These permissions would be forbidden for member alone, but should be allowed
+        # when combined with admin role
+        permissions = UserPortfolioPermission.get_forbidden_permissions(
+            roles=roles, additional_permissions=member_forbidden
+        )
+
+        # Should return empty set since no permissions are commonly forbidden between admin and member
+        self.assertEqual(permissions, set())
+
+        # Verify the same permissions are forbidden when only member role is present
+        member_only_permissions = UserPortfolioPermission.get_forbidden_permissions(
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER], additional_permissions=member_forbidden
+        )
+
+        # Should return the forbidden permissions for member role
+        self.assertEqual(member_only_permissions, set(member_forbidden))
+
 
 class TestUser(TestCase):
     """Test actions that occur on user login,

From af644254f5d6e68368f75046610c58aae6c9f317 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 9 Jan 2025 19:29:29 -0500
Subject: [PATCH 47/68] lint

---
 src/registrar/tests/test_admin.py           | 139 +++++++++++++-------
 src/registrar/tests/test_models.py          |  14 +-
 src/registrar/tests/test_views_domain.py    |   8 +-
 src/registrar/tests/test_views_portfolio.py |  13 +-
 4 files changed, 110 insertions(+), 64 deletions(-)

diff --git a/src/registrar/tests/test_admin.py b/src/registrar/tests/test_admin.py
index f14259dd1..c9f7a9032 100644
--- a/src/registrar/tests/test_admin.py
+++ b/src/registrar/tests/test_admin.py
@@ -28,7 +28,6 @@ from registrar.admin import (
     TransitionDomainAdmin,
     UserGroupAdmin,
     PortfolioAdmin,
-    UserPortfolioPermissionAdmin,
 )
 from registrar.models import (
     Domain,
@@ -70,8 +69,6 @@ from django.contrib.auth import get_user_model
 from django.contrib import messages
 
 from unittest.mock import ANY, call, patch, Mock
-from django.forms import ValidationError
-
 
 import logging
 
@@ -199,7 +196,9 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_add_domain_invitation_success_when_user_not_portfolio_member(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+    def test_add_domain_invitation_success_when_user_not_portfolio_member(
+        self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
         """Test saving a domain invitation when the user exists and is not a portfolio member.
 
         Should send out domain and portfolio invites.
@@ -235,10 +234,12 @@ class TestDomainInvitationAdmin(TestCase):
         )
 
         # Assert success message
-        mock_messages_success.assert_has_calls([
-            call(request, "test@example.com has been invited to the organization: new portfolio"),
-            call(request, "test@example.com has been invited to the domain: example.com"),
-        ])
+        mock_messages_success.assert_has_calls(
+            [
+                call(request, "test@example.com has been invited to the organization: new portfolio"),
+                call(request, "test@example.com has been invited to the domain: example.com"),
+            ]
+        )
 
         # Assert the invitations were saved
         self.assertEqual(DomainInvitation.objects.count(), 1)
@@ -262,7 +263,9 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_add_domain_invitation_success_when_user_not_portfolio_member_and_organization_feature_off(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+    def test_add_domain_invitation_success_when_user_not_portfolio_member_and_organization_feature_off(
+        self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
         """Test saving a domain invitation when the user exists and organization_feature flag is off.
 
         Should send out a domain invitation.
@@ -270,7 +273,7 @@ class TestDomainInvitationAdmin(TestCase):
         Should trigger success message for the domain invitation.
         Should retrieve the domain invitation.
         Should not create a portfolio invitation."""
-        
+
         user = User.objects.create_user(email="test@example.com", username="username")
 
         # Create a domain invitation instance
@@ -322,7 +325,9 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_add_domain_invitation_success_when_user_not_portfolio_member_and_multiple_portfolio_feature_on(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+    def test_add_domain_invitation_success_when_user_not_portfolio_member_and_multiple_portfolio_feature_on(
+        self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
         """Test saving a domain invitation when the user exists and multiple_portfolio flag is on.
 
         Should send out a domain invitation.
@@ -330,7 +335,7 @@ class TestDomainInvitationAdmin(TestCase):
         Should trigger success message for the domain invitation.
         Should retrieve the domain invitation.
         Should not create a portfolio invitation."""
-        
+
         user = User.objects.create_user(email="test@example.com", username="username")
 
         # Create a domain invitation instance
@@ -381,7 +386,9 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_add_domain_invitation_success_when_user_existing_portfolio_member(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+    def test_add_domain_invitation_success_when_user_existing_portfolio_member(
+        self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
         """Test saving a domain invitation when the user exists and a portfolio invitation exists.
 
         Should send out domain invitation only.
@@ -393,7 +400,9 @@ class TestDomainInvitationAdmin(TestCase):
         # Create a domain invitation instance
         invitation = DomainInvitation(email="test@example.com", domain=self.domain)
 
-        UserPortfolioPermission.objects.create(user=user, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER])
+        UserPortfolioPermission.objects.create(
+            user=user, portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+        )
 
         admin_instance = DomainInvitationAdmin(DomainInvitation, admin_site=None)
 
@@ -429,14 +438,17 @@ class TestDomainInvitationAdmin(TestCase):
         self.assertEqual(DomainInvitation.objects.count(), 1)
         self.assertEqual(DomainInvitation.objects.first().email, "test@example.com")
         self.assertEqual(PortfolioInvitation.objects.count(), 0)
-    
+
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.error")
-    def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_sending_portfolio_email(self, mock_messages_error, mock_send_portfolio_email, mock_send_domain_email):
-        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending portfolio email exception.
+    def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_sending_portfolio_email(
+        self, mock_messages_error, mock_send_portfolio_email, mock_send_domain_email
+    ):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises
+        sending portfolio email exception.
 
         Should only attempt to send the portfolio invitation.
         Should trigger error message on portfolio invitation.
@@ -455,7 +467,7 @@ class TestDomainInvitationAdmin(TestCase):
         request = self.factory.post("/admin/registrar/DomainInvitation/add/")
         request.user = self.superuser
 
-       # Patch the retrieve method to ensure it is not called
+        # Patch the retrieve method to ensure it is not called
         with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
             with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
                 admin_instance.save_model(request, invitation, form=None, change=False)
@@ -487,8 +499,11 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
     @patch("django.contrib.messages.error")
-    def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_sending_domain_email(self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
-        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending domain email exception.
+    def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_sending_domain_email(
+        self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises
+        sending domain email exception.
 
         Should send out the portfolio invitation and attempt to send the domain invitation.
         Should trigger portfolio invitation success message.
@@ -552,8 +567,11 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
     @patch("django.contrib.messages.error")
-    def test_add_domain_invitation_when_user_existing_portfolio_member_raises_exception_sending_domain_email(self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
-        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending domain email exception.
+    def test_add_domain_invitation_when_user_existing_portfolio_member_raises_exception_sending_domain_email(
+        self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises
+        sending domain email exception.
 
         Should send out the portfolio invitation and attempt to send the domain invitation.
         Should trigger portfolio invitation success message.
@@ -614,7 +632,9 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_add_domain_invitation_success_when_email_not_portfolio_member(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+    def test_add_domain_invitation_success_when_email_not_portfolio_member(
+        self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
         """Test saving a domain invitation when the user does not exist.
 
         Should send out domain and portfolio invitations.
@@ -654,10 +674,12 @@ class TestDomainInvitationAdmin(TestCase):
         portfolio_invitation_mock_retrieve.assert_not_called()
 
         # Assert success message
-        mock_messages_success.assert_has_calls([
-            call(request, "nonexistent@example.com has been invited to the organization: new portfolio"),
-            call(request, "nonexistent@example.com has been invited to the domain: example.com"),
-        ])
+        mock_messages_success.assert_has_calls(
+            [
+                call(request, "nonexistent@example.com has been invited to the organization: new portfolio"),
+                call(request, "nonexistent@example.com has been invited to the domain: example.com"),
+            ]
+        )
 
         # Assert the invitations were saved
         self.assertEqual(DomainInvitation.objects.count(), 1)
@@ -670,7 +692,9 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_add_domain_invitation_success_when_email_not_portfolio_member_and_organization_feature_off(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+    def test_add_domain_invitation_success_when_email_not_portfolio_member_and_organization_feature_off(
+        self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
         """Test saving a domain invitation when the user does not exist and organization_feature flag is off.
 
         Should send out a domain invitation.
@@ -722,7 +746,9 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_add_domain_invitation_success_when_email_not_portfolio_member_and_multiple_portfolio_feature_on(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+    def test_add_domain_invitation_success_when_email_not_portfolio_member_and_multiple_portfolio_feature_on(
+        self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
         """Test saving a domain invitation when the user does not exist and multiple_portfolio flag is on.
 
         Should send out a domain invitation.
@@ -773,7 +799,9 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
-    def test_add_domain_invitation_success_when_email_existing_portfolio_invitation(self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
+    def test_add_domain_invitation_success_when_email_existing_portfolio_invitation(
+        self, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
         """Test saving a domain invitation when the user does not exist and a portfolio invitation exists.
 
         Should send out domain invitation only.
@@ -781,7 +809,11 @@ class TestDomainInvitationAdmin(TestCase):
         Should not attempt to retrieve the domain invitation.
         Should not attempt to retrieve the portfolio invitation."""
 
-        PortfolioInvitation.objects.create(email="nonexistent@example.com", portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER])
+        PortfolioInvitation.objects.create(
+            email="nonexistent@example.com",
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
+        )
 
         # Create a domain invitation instance
         invitation = DomainInvitation(email="nonexistent@example.com", domain=self.domain)
@@ -827,8 +859,11 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_domain_invitation_email")
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.error")
-    def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_sending_portfolio_email(self, mock_messages_error, mock_send_portfolio_email, mock_send_domain_email):
-        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending portfolio email exception.
+    def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_sending_portfolio_email(
+        self, mock_messages_error, mock_send_portfolio_email, mock_send_domain_email
+    ):
+        """Test saving a domain invitation when the user exists and is not a portfolio member raises
+        sending portfolio email exception.
 
         Should only attempt to send the portfolio invitation.
         Should trigger error message on portfolio invitation.
@@ -846,7 +881,7 @@ class TestDomainInvitationAdmin(TestCase):
         request = self.factory.post("/admin/registrar/DomainInvitation/add/")
         request.user = self.superuser
 
-       # Patch the retrieve method to ensure it is not called
+        # Patch the retrieve method to ensure it is not called
         with patch.object(DomainInvitation, "retrieve") as domain_invitation_mock_retrieve:
             with patch.object(PortfolioInvitation, "retrieve") as portfolio_invitation_mock_retrieve:
                 admin_instance.save_model(request, invitation, form=None, change=False)
@@ -878,8 +913,11 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
     @patch("django.contrib.messages.error")
-    def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_sending_domain_email(self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
-        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending domain email exception.
+    def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_sending_domain_email(
+        self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
+        """Test saving a domain invitation when the user exists and is not a portfolio member
+        raises sending domain email exception.
 
         Should send out the portfolio invitation and attempt to send the domain invitation.
         Should trigger portfolio invitation success message.
@@ -941,8 +979,11 @@ class TestDomainInvitationAdmin(TestCase):
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")
     @patch("django.contrib.messages.error")
-    def test_add_domain_invitation_when_user_existing_portfolio_email_raises_exception_sending_domain_email(self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email):
-        """Test saving a domain invitation when the user exists and is not a portfolio member raises sending domain email exception.
+    def test_add_domain_invitation_when_user_existing_portfolio_email_raises_exception_sending_domain_email(
+        self, mock_messages_error, mock_messages_success, mock_send_portfolio_email, mock_send_domain_email
+    ):
+        """Test saving a domain invitation when the user exists and is not a portfolio member
+        raises sending domain email exception.
 
         Should send out the portfolio invitation and attempt to send the domain invitation.
         Should trigger portfolio invitation success message.
@@ -953,7 +994,9 @@ class TestDomainInvitationAdmin(TestCase):
         mock_send_domain_email.side_effect = MissingEmailError("craving a burger")
 
         PortfolioInvitation.objects.create(
-            email="nonexistent@example.com", portfolio=self.portfolio, roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER]
+            email="nonexistent@example.com",
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
         )
 
         # Create a domain invitation instance
@@ -1208,7 +1251,9 @@ class TestPortfolioInvitationAdmin(TestCase):
     @less_console_noise_decorator
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")  # Mock the `messages.warning` call
-    def test_add_portfolio_invitation_auto_retrieves_invitation_when_user_exists(self, mock_messages_success, mock_send_email):
+    def test_add_portfolio_invitation_auto_retrieves_invitation_when_user_exists(
+        self, mock_messages_success, mock_send_email
+    ):
         """On save_model, we create and retrieve a portfolio invitation if the user exists."""
 
         # Create an instance of the admin class
@@ -1247,11 +1292,13 @@ class TestPortfolioInvitationAdmin(TestCase):
 
         # The invitation is not retrieved
         portfolio_invitation_mock_retrieve.assert_called_once()
-        
+
     @less_console_noise_decorator
     @patch("registrar.admin.send_portfolio_invitation_email")
     @patch("django.contrib.messages.success")  # Mock the `messages.warning` call
-    def test_add_portfolio_invitation_does_not_retrieve_invitation_when_no_user(self, mock_messages_success, mock_send_email):
+    def test_add_portfolio_invitation_does_not_retrieve_invitation_when_no_user(
+        self, mock_messages_success, mock_send_email
+    ):
         """On save_model, we create but do not retrieve a portfolio invitation if the user does not exist."""
 
         # Create an instance of the admin class
@@ -1317,9 +1364,7 @@ class TestPortfolioInvitationAdmin(TestCase):
         admin_instance.save_model(request, portfolio_invitation, None, None)
 
         # Assert that messages.error was called with the correct message
-        mock_messages_error.assert_called_once_with(
-            request, "Email service unavailable"
-        )
+        mock_messages_error.assert_called_once_with(request, "Email service unavailable")
 
     @less_console_noise_decorator
     @patch("registrar.admin.send_portfolio_invitation_email")
@@ -1382,9 +1427,7 @@ class TestPortfolioInvitationAdmin(TestCase):
         admin_instance.save_model(request, portfolio_invitation, None, None)
 
         # Assert that messages.error was called with the correct message
-        mock_messages_error.assert_called_once_with(
-            request, "Could not send email invitation."
-        )
+        mock_messages_error.assert_called_once_with(request, "Could not send email invitation.")
 
 
 class TestHostAdmin(TestCase):
diff --git a/src/registrar/tests/test_models.py b/src/registrar/tests/test_models.py
index 31af8462a..d8db0f043 100644
--- a/src/registrar/tests/test_models.py
+++ b/src/registrar/tests/test_models.py
@@ -361,7 +361,7 @@ class TestPortfolioInvitations(TestCase):
                 portfolio=third_portfolio,
             ).exists()
         )
-    
+
     @less_console_noise_decorator
     def test_clean_portfolio_invitation(self):
         """Tests validation of portfolio invitation permissions"""
@@ -407,7 +407,7 @@ class TestPortfolioInvitations(TestCase):
     def test_clean_user_portfolio_permission_multiple_portfolios_flag_off_and_duplicate_permission(self):
         """MISSING TEST: Test validation of multiple_portfolios flag.
         Scenario 1: Flag is inactive, and the user has existing portfolio permissions
-        
+
         NOTE: Refer to the same test under TestUserPortfolioPermission"""
 
         pass
@@ -417,7 +417,7 @@ class TestPortfolioInvitations(TestCase):
     def test_clean_user_portfolio_permission_multiple_portfolios_flag_off_and_existing_invitation(self):
         """MISSING TEST: Test validation of multiple_portfolios flag.
         Scenario 2: Flag is inactive, and the user has existing portfolio invitation to another portfolio
-        
+
         NOTE: Refer to the same test under TestUserPortfolioPermission"""
 
         pass
@@ -427,18 +427,17 @@ class TestPortfolioInvitations(TestCase):
     def test_clean_user_portfolio_permission_multiple_portfolios_flag_on_and_duplicate_permission(self):
         """MISSING TEST: Test validation of multiple_portfolios flag.
         Scenario 3: Flag is active, and the user has existing portfolio invitation
-        
+
         NOTE: Refer to the same test under TestUserPortfolioPermission"""
 
         pass
 
-
     @less_console_noise_decorator
     @override_flag("multiple_portfolios", active=True)
     def test_clean_user_portfolio_permission_multiple_portfolios_flag_on_and_existing_invitation(self):
         """MISSING TEST: Test validation of multiple_portfolios flag.
         Scenario 4: Flag is active, and the user has existing portfolio invitation to another portfolio
-        
+
         NOTE: Refer to the same test under TestUserPortfolioPermission"""
 
         pass
@@ -625,7 +624,7 @@ class TestUserPortfolioPermission(TestCase):
         """Test validation of multiple_portfolios flag.
         Scenario 1: Flag is inactive, and the user has existing portfolio permissions"""
 
-        #existing permission
+        # existing permission
         UserPortfolioPermission.objects.create(
             user=self.superuser,
             roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
@@ -699,7 +698,6 @@ class TestUserPortfolioPermission(TestCase):
         except ValidationError:
             self.fail("ValidationError was raised unexpectedly when flag is active.")
 
-
     @less_console_noise_decorator
     @override_flag("multiple_portfolios", active=True)
     def test_clean_user_portfolio_permission_multiple_portfolios_flag_on_and_existing_invitation(self):
diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 56cac91a1..5a1dbbf82 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -665,7 +665,7 @@ class TestDomainManagers(TestDomainOverview):
         self.assertEqual(portfolio_invitation.portfolio, self.portfolio)
         self.assertEqual(portfolio_invitation.status, PortfolioInvitation.PortfolioInvitationStatus.RETRIEVED)
 
-        #Assert that the UserPortfolioPermission is created
+        # Assert that the UserPortfolioPermission is created
         user_portfolio_permission = UserPortfolioPermission.objects.filter(
             user=self.user, portfolio=self.portfolio
         ).first()
@@ -680,7 +680,9 @@ class TestDomainManagers(TestDomainOverview):
     @less_console_noise_decorator
     @patch("registrar.views.domain.send_portfolio_invitation_email")
     @patch("registrar.views.domain.send_domain_invitation_email")
-    def test_domain_user_add_form_sends_portfolio_invitation_to_new_email(self, mock_send_domain_email, mock_send_portfolio_email):
+    def test_domain_user_add_form_sends_portfolio_invitation_to_new_email(
+        self, mock_send_domain_email, mock_send_portfolio_email
+    ):
         """Adding an email not associated with a user works and sends portfolio invitation."""
         add_page = self.app.get(reverse("domain-users-add", kwargs={"pk": self.domain.id}))
         session_id = self.app.cookies[settings.SESSION_COOKIE_NAME]
@@ -720,7 +722,7 @@ class TestDomainManagers(TestDomainOverview):
         self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
         success_page = success_result.follow()
         self.assertContains(success_page, "notauser@igorville.gov")
-    
+
     @boto3_mocking.patching
     @override_flag("organization_feature", active=True)
     @less_console_noise_decorator
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index a6edb710d..fd1a1331d 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2324,7 +2324,10 @@ class TestPortfolioMemberDomainsEditView(TestPortfolioMemberDomainsView):
         self.assertRedirects(response, reverse("member-domains-edit", kwargs={"pk": self.portfolio_permission.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
-        self.assertEqual(str(messages[0]), "An unexpected error occurred: Failed to send email. If the issue persists, please contact help@get.gov.")
+        self.assertEqual(
+            str(messages[0]),
+            "An unexpected error occurred: Failed to send email. If the issue persists, please contact help@get.gov.",
+        )
 
 
 class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomainsView):
@@ -2433,7 +2436,6 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         self.assertEqual(list(call_args["domains"]), list(expected_domains))
         self.assertFalse(call_args.get("is_member_of_different_org"))
 
-
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
@@ -2607,7 +2609,10 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         self.assertRedirects(response, reverse("invitedmember-domains-edit", kwargs={"pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
-        self.assertEqual(str(messages[0]), "An unexpected error occurred: Failed to send email. If the issue persists, please contact help@get.gov.")
+        self.assertEqual(
+            str(messages[0]),
+            "An unexpected error occurred: Failed to send email. If the issue persists, please contact help@get.gov.",
+        )
 
 
 class TestRequestingEntity(WebTest):
@@ -3321,8 +3326,6 @@ class TestPortfolioInviteNewMemberView(TestWithUser, WebTest):
         session_id = self.client.session.session_key
         self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
 
-        invite_count_before = PortfolioInvitation.objects.count()
-
         new_user = User.objects.create(email="newuser@example.com")
 
         # Simulate submission of member invite for the newly created user

From 92225b6ba2ac87088500ce5676cf00c5470bb016 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 9 Jan 2025 19:38:50 -0500
Subject: [PATCH 48/68] fix key tyo in
 test_domain_user_add_form_doesnt_send_portfolio_invitation_if_already_member

---
 src/registrar/tests/test_views_domain.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 5a1dbbf82..22e21bfd1 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -758,7 +758,7 @@ class TestDomainManagers(TestDomainOverview):
         call_args = mock_send_domain_email.call_args.kwargs
         self.assertEqual(call_args["email"], "mayor@igorville.gov")
         self.assertEqual(call_args["requestor"], self.user)
-        self.assertEqual(call_args["domain"], self.domain)
+        self.assertEqual(call_args["domains"], self.domain)
         self.assertIsNone(call_args.get("is_member_of_different_org"))
 
         # Assert that no PortfolioInvitation is created

From 054dc47ad2a083869d46213f0116d1c2b06433a4 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 20:13:13 -0500
Subject: [PATCH 49/68] refactored some test setup

---
 src/registrar/tests/test_views_portfolio.py | 58 +++++++++++++++++++--
 1 file changed, 53 insertions(+), 5 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index fd1a1331d..8ea0704bb 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2106,25 +2106,73 @@ class TestPortfolioInvitedMemberDomainsView(TestWithUser, WebTest):
         self.assertEqual(response.status_code, 404)
 
 
-class TestPortfolioMemberDomainsEditView(TestPortfolioMemberDomainsView):
+class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
     @classmethod
     def setUpClass(cls):
         super().setUpClass()
-        cls.url = reverse("member-domains-edit", kwargs={"pk": cls.portfolio_permission.pk})
+        # Create Portfolio
+        cls.portfolio = Portfolio.objects.create(creator=cls.user, organization_name="Test Portfolio")
+        names = ["1.gov", "2.gov", "3.gov"]
+        Domain.objects.bulk_create([Domain(name=name) for name in names])
 
     @classmethod
     def tearDownClass(cls):
         super().tearDownClass()
+        Portfolio.objects.all().delete()
+        User.objects.all().delete()
+        Domain.objects.all().delete()
 
     def setUp(self):
         super().setUp()
-        names = ["1.gov", "2.gov", "3.gov"]
-        Domain.objects.bulk_create([Domain(name=name) for name in names])
+        # Create test member
+        self.user_member = User.objects.create(
+            username="test_member",
+            first_name="Second",
+            last_name="User",
+            email="second@example.com",
+            phone="8003112345",
+            title="Member",
+        )
+
+        # Create test user with no perms
+        self.user_no_perms = User.objects.create(
+            username="test_user_no_perms",
+            first_name="No",
+            last_name="Permissions",
+            email="user_no_perms@example.com",
+            phone="8003112345",
+            title="No Permissions",
+        )
+        # Assign permissions to the user making requests
+        self.portfolio_permission = UserPortfolioPermission.objects.create(
+            user=self.user,
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            additional_permissions=[
+                UserPortfolioPermissionChoices.VIEW_MEMBERS,
+                UserPortfolioPermissionChoices.EDIT_MEMBERS,
+            ],
+        )
+        # Assign permissions to test member
+        self.permission = UserPortfolioPermission.objects.create(
+            user=self.user_member,
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            additional_permissions=[
+                UserPortfolioPermissionChoices.VIEW_MEMBERS,
+                UserPortfolioPermissionChoices.EDIT_MEMBERS,
+            ],
+        )
+        # Create url to be used in all tests
+        self.url = reverse("member-domains-edit", kwargs={"pk": self.portfolio_permission.pk})
 
     def tearDown(self):
         super().tearDown()
         UserDomainRole.objects.all().delete()
-        Domain.objects.all().delete()
+        UserPortfolioPermission.objects.all().delete()
+        PortfolioInvitation.objects.all().delete()
+        Portfolio.objects.exclude(id=self.portfolio.id).delete()
+        User.objects.exclude(id=self.user.id).delete()
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)

From 2be63abce6cd66fa93e6fcab1894ea3878fbc611 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 20:34:46 -0500
Subject: [PATCH 50/68] updates to TestPortfolioMemberDomainsEditView

---
 src/registrar/tests/test_views_portfolio.py | 22 +++++++++++----------
 1 file changed, 12 insertions(+), 10 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 8ea0704bb..1bdab9215 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2112,8 +2112,10 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         super().setUpClass()
         # Create Portfolio
         cls.portfolio = Portfolio.objects.create(creator=cls.user, organization_name="Test Portfolio")
-        names = ["1.gov", "2.gov", "3.gov"]
-        Domain.objects.bulk_create([Domain(name=name) for name in names])
+        # Create domains for testing
+        cls.domain1 = Domain.objects.create(name="1.gov")
+        cls.domain2 = Domain.objects.create(name="2.gov")
+        cls.domain3 = Domain.objects.create(name="3.gov")
 
     @classmethod
     def tearDownClass(cls):
@@ -2133,7 +2135,6 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
             phone="8003112345",
             title="Member",
         )
-
         # Create test user with no perms
         self.user_no_perms = User.objects.create(
             username="test_user_no_perms",
@@ -2169,6 +2170,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
     def tearDown(self):
         super().tearDown()
         UserDomainRole.objects.all().delete()
+        DomainInvitation.objects.all().delete()
         UserPortfolioPermission.objects.all().delete()
         PortfolioInvitation.objects.all().delete()
         Portfolio.objects.exclude(id=self.portfolio.id).delete()
@@ -2234,7 +2236,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.client.force_login(self.user)
 
         data = {
-            "added_domains": json.dumps([1, 2, 3]),  # Mock domain IDs
+            "added_domains": json.dumps([self.domain1.id, self.domain2.id, self.domain3.id]),  # Mock domain IDs
         }
         response = self.client.post(self.url, data)
 
@@ -2247,7 +2249,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
 
-        expected_domains = Domain.objects.filter(id__in=[1, 2, 3])
+        expected_domains = [self.domain1, self.domain2, self.domain3]
         # Verify that the invitation email was sent
         mock_send_domain_email.assert_called_once()
         call_args = mock_send_domain_email.call_args.kwargs
@@ -2265,17 +2267,17 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.client.force_login(self.user)
 
         # Create some UserDomainRole objects
-        domains = [1, 2, 3]
-        UserDomainRole.objects.bulk_create([UserDomainRole(domain_id=domain, user=self.user) for domain in domains])
+        domains = [self.domain1, self.domain2, self.domain3]
+        UserDomainRole.objects.bulk_create([UserDomainRole(domain=domain, user=self.user) for domain in domains])
 
         data = {
-            "removed_domains": json.dumps([1, 2]),
+            "removed_domains": json.dumps([self.domain1.id, self.domain2.id]),
         }
         response = self.client.post(self.url, data)
 
         # Check that the UserDomainRole objects were deleted
         self.assertEqual(UserDomainRole.objects.filter(user=self.user).count(), 1)
-        self.assertEqual(UserDomainRole.objects.filter(domain_id=3, user=self.user).count(), 1)
+        self.assertEqual(UserDomainRole.objects.filter(domain=self.domain3, user=self.user).count(), 1)
 
         # Check for a success message and a redirect
         self.assertRedirects(response, reverse("member-domains", kwargs={"pk": self.portfolio_permission.pk}))
@@ -2360,7 +2362,7 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         self.client.force_login(self.user)
 
         data = {
-            "added_domains": json.dumps([1, 2, 3]),  # Mock domain IDs for the attempted add
+            "added_domains": json.dumps([self.domain1.id, self.domain2.id, self.domain3.id]),  # Mock domain IDs
         }
         mock_send_domain_email.side_effect = EmailSendingError("Failed to send email")
         response = self.client.post(self.url, data)

From bd4264d3185cf360f0e38d74550b28943f0afeb8 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 20:51:00 -0500
Subject: [PATCH 51/68] updated TestPortfolioInvitedMemberEditDomainsView

---
 src/registrar/tests/test_views_portfolio.py | 76 ++++++++++++++++-----
 1 file changed, 59 insertions(+), 17 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 1bdab9215..02133744f 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2380,25 +2380,67 @@ class TestPortfolioMemberDomainsEditView(TestWithUser, WebTest):
         )
 
 
-class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomainsView):
+class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
     @classmethod
     def setUpClass(cls):
         super().setUpClass()
-        cls.url = reverse("invitedmember-domains-edit", kwargs={"pk": cls.invitation.pk})
+        # Create Portfolio
+        cls.portfolio = Portfolio.objects.create(creator=cls.user, organization_name="Test Portfolio")
+        # Create domains for testing
+        cls.domain1 = Domain.objects.create(name="1.gov")
+        cls.domain2 = Domain.objects.create(name="2.gov")
+        cls.domain3 = Domain.objects.create(name="3.gov")
+        
 
     @classmethod
     def tearDownClass(cls):
         super().tearDownClass()
+        Portfolio.objects.all().delete()
+        User.objects.all().delete()
+        Domain.objects.all().delete()
 
     def setUp(self):
         super().setUp()
-        names = ["1.gov", "2.gov", "3.gov"]
-        Domain.objects.bulk_create([Domain(name=name) for name in names])
+        # Add a user with no permissions
+        self.user_no_perms = User.objects.create(
+            username="test_user_no_perms",
+            first_name="No",
+            last_name="Permissions",
+            email="user_no_perms@example.com",
+            phone="8003112345",
+            title="No Permissions",
+        )
+        # Add an invited member who has been invited to manage domains
+        self.invited_member_email = "invited@example.com"
+        self.invitation = PortfolioInvitation.objects.create(
+            email=self.invited_member_email,
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_MEMBER],
+            additional_permissions=[
+                UserPortfolioPermissionChoices.VIEW_MEMBERS,
+            ],
+        )
+
+        # Assign permissions to the user making requests
+        UserPortfolioPermission.objects.create(
+            user=self.user,
+            portfolio=self.portfolio,
+            roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            additional_permissions=[
+                UserPortfolioPermissionChoices.VIEW_MEMBERS,
+                UserPortfolioPermissionChoices.EDIT_MEMBERS,
+            ],
+        )
+        self.url = reverse("invitedmember-domains-edit", kwargs={"pk": self.invitation.pk})
 
     def tearDown(self):
         super().tearDown()
         Domain.objects.all().delete()
         DomainInvitation.objects.all().delete()
+        UserPortfolioPermission.objects.all().delete()
+        PortfolioInvitation.objects.all().delete()
+        Portfolio.objects.exclude(id=self.portfolio.id).delete()
+        User.objects.exclude(id=self.user.id).delete()
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
@@ -2459,7 +2501,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         self.client.force_login(self.user)
 
         data = {
-            "added_domains": json.dumps([1, 2, 3]),  # Mock domain IDs
+            "added_domains": json.dumps([self.domain1.id, self.domain2.id, self.domain3.id]),
         }
         response = self.client.post(self.url, data)
 
@@ -2477,7 +2519,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         self.assertEqual(len(messages), 1)
         self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
 
-        expected_domains = Domain.objects.filter(id__in=[1, 2, 3])
+        expected_domains = [self.domain1, self.domain2, self.domain3]
         # Verify that the invitation email was sent
         mock_send_domain_email.assert_called_once()
         call_args = mock_send_domain_email.call_args.kwargs
@@ -2498,29 +2540,29 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         DomainInvitation.objects.bulk_create(
             [
                 DomainInvitation(
-                    domain_id=1, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.CANCELED
+                    domain=self.domain1, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.CANCELED
                 ),
                 DomainInvitation(
-                    domain_id=2, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
+                    domain=self.domain2, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
                 ),
             ]
         )
 
         data = {
-            "added_domains": json.dumps([1, 2, 3]),
+            "added_domains": json.dumps([self.domain1.id, self.domain2.id, self.domain3.id]),
         }
         response = self.client.post(self.url, data)
 
         # Check that status for domain_id=1 was updated to INVITED
         self.assertEqual(
-            DomainInvitation.objects.get(domain_id=1, email="invited@example.com").status,
+            DomainInvitation.objects.get(domain=self.domain1, email="invited@example.com").status,
             DomainInvitation.DomainInvitationStatus.INVITED,
         )
 
         # Check that domain_id=3 was created as INVITED
         self.assertTrue(
             DomainInvitation.objects.filter(
-                domain_id=3, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
+                domain=self.domain3, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
             ).exists()
         )
 
@@ -2539,28 +2581,28 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         DomainInvitation.objects.bulk_create(
             [
                 DomainInvitation(
-                    domain_id=1, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
+                    domain=self.domain1, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
                 ),
                 DomainInvitation(
-                    domain_id=2, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
+                    domain=self.domain2, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
                 ),
             ]
         )
 
         data = {
-            "removed_domains": json.dumps([1]),
+            "removed_domains": json.dumps([self.domain1.id]),
         }
         response = self.client.post(self.url, data)
 
         # Check that the status for domain_id=1 was updated to CANCELED
         self.assertEqual(
-            DomainInvitation.objects.get(domain_id=1, email="invited@example.com").status,
+            DomainInvitation.objects.get(domain=self.domain1, email="invited@example.com").status,
             DomainInvitation.DomainInvitationStatus.CANCELED,
         )
 
         # Check that domain_id=2 remains INVITED
         self.assertEqual(
-            DomainInvitation.objects.get(domain_id=2, email="invited@example.com").status,
+            DomainInvitation.objects.get(domain=self.domain2, email="invited@example.com").status,
             DomainInvitation.DomainInvitationStatus.INVITED,
         )
 
@@ -2642,7 +2684,7 @@ class TestPortfolioInvitedMemberEditDomainsView(TestPortfolioInvitedMemberDomain
         self.client.force_login(self.user)
 
         data = {
-            "added_domains": json.dumps([1, 2, 3]),  # Mock domain IDs for the attempted add
+            "added_domains": json.dumps([self.domain1.id, self.domain2.id, self.domain3.id]),
         }
         mock_send_domain_email.side_effect = EmailSendingError("Failed to send email")
         response = self.client.post(self.url, data)

From d2b824cc842366d2e7b7533df219b937b6ba76af Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Thu, 9 Jan 2025 20:57:30 -0500
Subject: [PATCH 52/68] lint

---
 src/registrar/tests/test_views_portfolio.py | 17 ++++++++++++-----
 1 file changed, 12 insertions(+), 5 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 02133744f..78a4dae82 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2390,7 +2390,6 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         cls.domain1 = Domain.objects.create(name="1.gov")
         cls.domain2 = Domain.objects.create(name="2.gov")
         cls.domain3 = Domain.objects.create(name="3.gov")
-        
 
     @classmethod
     def tearDownClass(cls):
@@ -2540,10 +2539,14 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         DomainInvitation.objects.bulk_create(
             [
                 DomainInvitation(
-                    domain=self.domain1, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.CANCELED
+                    domain=self.domain1,
+                    email="invited@example.com",
+                    status=DomainInvitation.DomainInvitationStatus.CANCELED,
                 ),
                 DomainInvitation(
-                    domain=self.domain2, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
+                    domain=self.domain2,
+                    email="invited@example.com",
+                    status=DomainInvitation.DomainInvitationStatus.INVITED,
                 ),
             ]
         )
@@ -2581,10 +2584,14 @@ class TestPortfolioInvitedMemberEditDomainsView(TestWithUser, WebTest):
         DomainInvitation.objects.bulk_create(
             [
                 DomainInvitation(
-                    domain=self.domain1, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
+                    domain=self.domain1,
+                    email="invited@example.com",
+                    status=DomainInvitation.DomainInvitationStatus.INVITED,
                 ),
                 DomainInvitation(
-                    domain=self.domain2, email="invited@example.com", status=DomainInvitation.DomainInvitationStatus.INVITED
+                    domain=self.domain2,
+                    email="invited@example.com",
+                    status=DomainInvitation.DomainInvitationStatus.INVITED,
                 ),
             ]
         )

From ca0ab8fa6bc4c8320786effd98f25b9556c1962d Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Fri, 10 Jan 2025 10:57:10 -0500
Subject: [PATCH 53/68] updated for pr feedback

---
 src/registrar/templates/domain_renewal.html |  2 +-
 src/registrar/views/domain.py               | 37 +--------------------
 2 files changed, 2 insertions(+), 37 deletions(-)

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index bf529a04d..6bc2c1bf1 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -49,7 +49,7 @@
   </div>
 
     {% url 'user-profile' as url %}
-    {% include "includes/summary_item.html" with title='Your Contact Information' value=user edit_link=url editable=is_editable  contact='true' %}
+    {% include "includes/summary_item.html" with title='Your Contact Information' value=request.user edit_link=url editable=is_editable  contact='true' %}
   
 
 
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 4b26caa5f..629d1bf03 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -311,24 +311,11 @@ class DomainView(DomainBaseView):
         self._update_session_with_domain()
 
 
-class DomainRenewalView(DomainBaseView):
+class DomainRenewalView(DomainView):
     """Domain detail overview page."""
 
     template_name = "domain_renewal.html"
 
-    def get_context_data(self, **kwargs):
-        context = super().get_context_data(**kwargs)
-
-        default_emails = [DefaultEmail.PUBLIC_CONTACT_DEFAULT.value, DefaultEmail.LEGACY_DEFAULT.value]
-        context["hidden_security_emails"] = default_emails
-
-        security_email = self.object.get_security_email()
-        user = self.request.user
-        if security_email is None or security_email in default_emails:
-            context["security_email"] = None
-        context["user"] = user
-        return context
-
     def can_access_domain_via_portfolio(self, pk):
         """Most views should not allow permission to portfolio users.
         If particular views allow permissions, they will need to override
@@ -341,28 +328,6 @@ class DomainRenewalView(DomainBaseView):
                     return True
         return False
 
-    def in_editable_state(self, pk):
-        """Override in_editable_state from DomainPermission
-        Allow detail page to be viewable"""
-
-        requested_domain = None
-        if Domain.objects.filter(id=pk).exists():
-            requested_domain = Domain.objects.get(id=pk)
-
-        # return true if the domain exists, this will allow the detail page to load
-        if requested_domain:
-            return True
-        return False
-
-    def _get_domain(self, request):
-        """
-        override get_domain for this view so that domain overview
-        always resets the cache for the domain object
-        """
-        self.session = request.session
-        self.object = self.get_object()
-        self._update_session_with_domain()
-
     def post(self, request, pk):
         domain = get_object_or_404(Domain, id=pk)
 

From 6b2123d0f3dd7733b9a90b6192912023e480f4de Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Fri, 10 Jan 2025 11:44:04 -0500
Subject: [PATCH 54/68] reformatted and updated test

---
 src/registrar/tests/test_views_domain.py | 2 +-
 src/registrar/views/domain.py            | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index d92da17dd..56bfe7306 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -607,7 +607,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             renewal_page = self.app.get(reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id}))
 
             # Verify we see "Your contact information" on the renewal form
-            self.assertContains(renewal_page, "Your contact information")
+            self.assertContains(renewal_page, "Your Contact Information")
 
             # Verify that the "Edit" button for Your contact is there and links to correct URL
             edit_button_url = reverse("user-profile")
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index bee59e4a9..629d1bf03 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -315,7 +315,7 @@ class DomainRenewalView(DomainView):
     """Domain detail overview page."""
 
     template_name = "domain_renewal.html"
-    
+
     def can_access_domain_via_portfolio(self, pk):
         """Most views should not allow permission to portfolio users.
         If particular views allow permissions, they will need to override

From 6e1b352d4f4a2f11b1fd1f6cbc6b4e394a0121b4 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Fri, 10 Jan 2025 09:36:57 -0800
Subject: [PATCH 55/68] Fix your contact info title

---
 src/registrar/templates/domain_renewal.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index 0e72568cc..f81389efb 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -49,7 +49,7 @@
   </div>
 
     {% url 'user-profile' as url %}
-    {% include "includes/summary_item.html" with title='Your Contact Information' value=request.user edit_link=url editable=is_editable  contact='true' %}
+    {% include "includes/summary_item.html" with title='Your contact information' value=request.user edit_link=url editable=is_editable  contact='true' %}
   
     {% if analyst_action != 'edit' or analyst_action_location != domain.pk %}
       {% if is_portfolio_user and not is_domain_manager %}

From 25ba5b2a5172c4f7e4cd79eac25663ec0a80b4a6 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Fri, 10 Jan 2025 09:56:58 -0800
Subject: [PATCH 56/68] Fix test capitalization

---
 src/registrar/tests/test_views_domain.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 56bfe7306..d92da17dd 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -607,7 +607,7 @@ class TestDomainDetailDomainRenewal(TestDomainOverview):
             renewal_page = self.app.get(reverse("domain-renewal", kwargs={"pk": self.domain_with_ip.id}))
 
             # Verify we see "Your contact information" on the renewal form
-            self.assertContains(renewal_page, "Your Contact Information")
+            self.assertContains(renewal_page, "Your contact information")
 
             # Verify that the "Edit" button for Your contact is there and links to correct URL
             edit_button_url = reverse("user-profile")

From 19114c7e7214474e2afcb49a57140846e40640c6 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Fri, 10 Jan 2025 11:02:31 -0800
Subject: [PATCH 57/68] Fix checkbox issue

---
 src/registrar/templates/domain_renewal.html | 7 +++----
 src/registrar/views/domain.py               | 3 +++
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index f81389efb..02c9666e3 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -94,14 +94,13 @@
         <form method="post" action="{% url 'domain-renewal' pk=domain.id %}"> 
           {% csrf_token %}
           <div class="usa-checkbox">
-          {% if form.is_policy_acknowledged.errors %}
-            <p class="usa-error-message">{{ form.is_policy_acknowledged.errors|join:" " }}</p>
-          {% endif %}
+          <input type="hidden" name="is_policy_acknowledged" value="False">
           <input 
             class="usa-checkbox__input" 
             id="renewal-checkbox" 
             type="checkbox" 
-            name="{{ form.is_policy_acknowledged.name }}"
+            name="is_policy_acknowledged"
+            value="True"
             {% if form.is_policy_acknowledged.value %}checked{% endif %}
             >
             <label class="usa-checkbox__label" for="renewal-checkbox">
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 629d1bf03..aa338175d 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -329,11 +329,14 @@ class DomainRenewalView(DomainView):
         return False
 
     def post(self, request, pk):
+
+        print("**** POST data:", request.POST)
         domain = get_object_or_404(Domain, id=pk)
 
         form = DomainRenewalForm(request.POST)
 
         if form.is_valid():
+
             # check for key in the post request data
             if "submit_button" in request.POST:
                 try:

From 53f48ba234735823bf51718fba0c1ee64e0134cb Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Fri, 10 Jan 2025 12:09:13 -0800
Subject: [PATCH 58/68] Add in error above ack checkbox and allow edit even
 after refresh

---
 src/registrar/templates/domain_renewal.html | 16 +++++++++++++++-
 src/registrar/views/domain.py               |  1 +
 2 files changed, 16 insertions(+), 1 deletion(-)

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index 02c9666e3..b5bfe29c3 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -94,7 +94,21 @@
         <form method="post" action="{% url 'domain-renewal' pk=domain.id %}"> 
           {% csrf_token %}
           <div class="usa-checkbox">
+
+            {% if form.is_policy_acknowledged.errors %}
+            {% for error in form.is_policy_acknowledged.errors %}
+            <div class="usa-error-message display-flex" role="alert">
+              <svg class="usa-icon usa-icon--large" focusable="true" role="img" aria-label="Error">
+                <use xlink:href="{%static 'img/sprite.svg'%}#error"></use>
+              </svg>
+              <span class="margin-left-05">{{ error }}</span>
+            </div>
+            {% endfor %}
+            </div>
+        {% endif %}
+
           <input type="hidden" name="is_policy_acknowledged" value="False">
+
           <input 
             class="usa-checkbox__input" 
             id="renewal-checkbox" 
@@ -111,7 +125,7 @@
               <abbr class="usa-hint usa-hint--required" title="required">*</abbr>
             </label>
           </div>
-    
+
           <button
             type="submit"
             name="submit_button"
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index aa338175d..9048bfc31 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -357,6 +357,7 @@ class DomainRenewalView(DomainView):
             {
                 "domain": domain,
                 "form": form,
+                "is_editable": True,
             },
         )
 

From 737851d4a62b812ce8276cf9462f11545cd6433f Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Fri, 10 Jan 2025 15:35:09 -0500
Subject: [PATCH 59/68] fixed sidebar issue

---
 src/registrar/templates/domain_sidebar.html | 3 ++-
 src/registrar/views/domain.py               | 3 ++-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/domain_sidebar.html b/src/registrar/templates/domain_sidebar.html
index 336a9fe7c..ca3802720 100644
--- a/src/registrar/templates/domain_sidebar.html
+++ b/src/registrar/templates/domain_sidebar.html
@@ -79,7 +79,8 @@
       {% with url_name="domain-users" %}
         {% include "includes/domain_sidenav_item.html" with item_text="Domain managers" %}
       {% endwith %}
-      
+
+  
       {% if has_domain_renewal_flag and is_domain_manager%}
        {% if domain.is_expiring or domain.is_expired %}
           {% with url_name="domain-renewal" %}
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 9048bfc31..52b95d95a 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -330,7 +330,6 @@ class DomainRenewalView(DomainView):
 
     def post(self, request, pk):
 
-        print("**** POST data:", request.POST)
         domain = get_object_or_404(Domain, id=pk)
 
         form = DomainRenewalForm(request.POST)
@@ -358,6 +357,8 @@ class DomainRenewalView(DomainView):
                 "domain": domain,
                 "form": form,
                 "is_editable": True,
+                "has_domain_renewal_flag": True,
+                "is_domain_manager": True,
             },
         )
 

From b47ab07f8d9b8d7daa7ba7799d310a300c16a452 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Fri, 10 Jan 2025 15:37:26 -0500
Subject: [PATCH 60/68] updated with comment

---
 src/registrar/views/domain.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 52b95d95a..2c741055f 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -350,6 +350,7 @@ class DomainRenewalView(DomainView):
             return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
 
         # if not valid, render the template with error messages
+        # passing editable, has_domain_renewal_flag, and is_editable for re-render
         return render(
             request,
             "domain_renewal.html",

From dac673ad4418edb1cb7799ff549fbd5f9a0f6d54 Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Fri, 10 Jan 2025 12:41:03 -0800
Subject: [PATCH 61/68] Fix wideness of the lines

---
 src/registrar/templates/domain_renewal.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/domain_renewal.html b/src/registrar/templates/domain_renewal.html
index b5bfe29c3..32e535ed5 100644
--- a/src/registrar/templates/domain_renewal.html
+++ b/src/registrar/templates/domain_renewal.html
@@ -46,7 +46,7 @@
       contact us</a>. </p>
     <p><em>Required fields are marked with an asterisk (<abbr class="usa-hint usa-hint--required" title="required">*</abbr>).</em>
     </p>
-  </div>
+
 
     {% url 'user-profile' as url %}
     {% include "includes/summary_item.html" with title='Your contact information' value=request.user edit_link=url editable=is_editable  contact='true' %}

From 9241790e48b8618087804c154b197de3ede3bd73 Mon Sep 17 00:00:00 2001
From: asaki222 <asaki444@gmail.com>
Date: Fri, 10 Jan 2025 16:04:11 -0500
Subject: [PATCH 62/68] added exec info true

---
 src/registrar/models/domain.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index 6a135036d..6bd8278a1 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -326,7 +326,7 @@ class Domain(TimeStampedModel, DomainHelper):
             exp_date = self.registry_expiration_date
         except KeyError:
             # if no expiration date from registry, set it to today
-            logger.warning("current expiration date not set; setting to today")
+            logger.warning("current expiration date not set; setting to today", exc_info=True)
             exp_date = date.today()
         # create RenewDomain request
         request = commands.RenewDomain(name=self.name, cur_exp_date=exp_date, period=epp.Period(length, unit))

From 797561df45c3783576d34b684bf92fe88930563a Mon Sep 17 00:00:00 2001
From: Rebecca Hsieh <rebecca.hsieh@truss.works>
Date: Mon, 13 Jan 2025 08:58:58 -0800
Subject: [PATCH 63/68] Remove duplicated function

---
 src/registrar/views/domain.py | 12 ------------
 1 file changed, 12 deletions(-)

diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 2c741055f..4b2edba06 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -316,18 +316,6 @@ class DomainRenewalView(DomainView):
 
     template_name = "domain_renewal.html"
 
-    def can_access_domain_via_portfolio(self, pk):
-        """Most views should not allow permission to portfolio users.
-        If particular views allow permissions, they will need to override
-        this function."""
-        portfolio = self.request.session.get("portfolio")
-        if self.request.user.has_any_domains_portfolio_permission(portfolio):
-            if Domain.objects.filter(id=pk).exists():
-                domain = Domain.objects.get(id=pk)
-                if domain.domain_info.portfolio == portfolio:
-                    return True
-        return False
-
     def post(self, request, pk):
 
         domain = get_object_or_404(Domain, id=pk)

From de07b109c216512485365d8dd736d4783926a00a Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 14 Jan 2025 12:15:59 -0600
Subject: [PATCH 64/68] fix auditlog errors

---
 src/registrar/admin.py | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index 849cb6100..f13437af1 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -2782,8 +2782,10 @@ class DomainRequestAdmin(ListHeaderAdmin, ImportExportModelAdmin):
 
         try:
             # Retrieve and order audit log entries by timestamp in descending order
-            audit_log_entries = LogEntry.objects.filter(object_id=object_id).order_by("-timestamp")
-
+            audit_log_entries = LogEntry.objects.filter(
+                object_id=object_id, content_type__model="domainrequest"
+            ).order_by("-timestamp")
+            
             # Process each log entry to filter based on the change criteria
             for log_entry in audit_log_entries:
                 entry = self.process_log_entry(log_entry)

From 0c8a0ad1d805868a7317c56406ec7fa129c1e5d0 Mon Sep 17 00:00:00 2001
From: matthewswspence <Matthewswspence@gmail.com>
Date: Tue, 14 Jan 2025 14:35:11 -0600
Subject: [PATCH 65/68] linter fixes

---
 src/registrar/admin.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index f13437af1..bb42b66c6 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -2785,7 +2785,7 @@ class DomainRequestAdmin(ListHeaderAdmin, ImportExportModelAdmin):
             audit_log_entries = LogEntry.objects.filter(
                 object_id=object_id, content_type__model="domainrequest"
             ).order_by("-timestamp")
-            
+
             # Process each log entry to filter based on the change criteria
             for log_entry in audit_log_entries:
                 entry = self.process_log_entry(log_entry)

From b5970ecb373f9d8f1f779d5670f999f507402e62 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Wed, 15 Jan 2025 06:34:46 -0500
Subject: [PATCH 66/68] updates in response to PR suggestions

---
 src/registrar/admin.py                        |  3 +-
 .../templates/emails/domain_invitation.txt    | 10 +----
 src/registrar/tests/test_admin.py             |  5 ++-
 src/registrar/utility/email_invitations.py    |  5 ++-
 src/registrar/views/portfolios.py             |  8 ++--
 .../views/utility/invitation_helper.py        | 39 +++++++++----------
 6 files changed, 35 insertions(+), 35 deletions(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index cdcc0400e..eb4e1737a 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -1520,7 +1520,7 @@ class DomainInvitationAdmin(BaseInvitationAdmin):
         """
         if not change:
             domain = obj.domain
-            domain_org = domain.domain_info.portfolio
+            domain_org = getattr(domain.domain_info, "portfolio", None)
             requested_email = obj.email
             # Look up a user with that email
             requested_user = get_requested_user(requested_email)
@@ -1536,6 +1536,7 @@ class DomainInvitationAdmin(BaseInvitationAdmin):
                     and not flag_is_active(request, "multiple_portfolios")
                     and domain_org is not None
                     and not member_of_this_org
+                    and not member_of_a_different_org
                 ):
                     send_portfolio_invitation_email(email=requested_email, requestor=requestor, portfolio=domain_org)
                     portfolio_invitation, _ = PortfolioInvitation.objects.get_or_create(
diff --git a/src/registrar/templates/emails/domain_invitation.txt b/src/registrar/templates/emails/domain_invitation.txt
index 4959f7c23..a077bff26 100644
--- a/src/registrar/templates/emails/domain_invitation.txt
+++ b/src/registrar/templates/emails/domain_invitation.txt
@@ -1,15 +1,9 @@
 {% autoescape off %}{# In a text file, we don't want to have HTML entities escaped #}
-{% if requested_user and requested_user.first_name %}
-Hi, {{ requested_user.first_name }}.
-{% else %}
-Hi,
-{% endif %}
+Hi,{% if requested_user and requested_user.first_name %} {{ requested_user.first_name }}.{% endif %}
 
 {{ requestor_email }} has invited you to manage:
-{% for domain in domains %}
-{{ domain.name }}
+{% for domain in domains %}{{ domain.name }}
 {% endfor %}
-
 To manage domain information, visit the .gov registrar <https://manage.get.gov>.
 
 ----------------------------------------------------------------
diff --git a/src/registrar/tests/test_admin.py b/src/registrar/tests/test_admin.py
index c9f7a9032..210a1a8e6 100644
--- a/src/registrar/tests/test_admin.py
+++ b/src/registrar/tests/test_admin.py
@@ -334,7 +334,10 @@ class TestDomainInvitationAdmin(TestCase):
         Should not send a out portfolio invitation.
         Should trigger success message for the domain invitation.
         Should retrieve the domain invitation.
-        Should not create a portfolio invitation."""
+        Should not create a portfolio invitation.
+        
+        NOTE: This test may need to be reworked when the multiple_portfolio flag is fully fleshed out.
+        """
 
         user = User.objects.create_user(email="test@example.com", username="username")
 
diff --git a/src/registrar/utility/email_invitations.py b/src/registrar/utility/email_invitations.py
index 1491b65a5..48c796340 100644
--- a/src/registrar/utility/email_invitations.py
+++ b/src/registrar/utility/email_invitations.py
@@ -48,7 +48,10 @@ def normalize_domains(domains):
 
 
 def get_requestor_email(requestor, domains):
-    """Get the requestor's email or raise an error if it's missing."""
+    """Get the requestor's email or raise an error if it's missing.
+
+    If the requestor is staff, default email is returned.
+    """
     if requestor.is_staff:
         return settings.DEFAULT_FROM_EMAIL
 
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index b9249ca6d..c4f60ca35 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -262,7 +262,7 @@ class PortfolioMemberDomainsEditView(PortfolioMemberDomainsEditPermissionView, V
                     "A database error occurred while saving changes. If the issue persists, "
                     f"please contact {DefaultUserValues.HELP_EMAIL}.",
                 )
-                logger.error("A database error occurred while saving changes.")
+                logger.error("A database error occurred while saving changes.", exc_info=True)
                 return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))
             except Exception as e:
                 messages.error(
@@ -270,7 +270,7 @@ class PortfolioMemberDomainsEditView(PortfolioMemberDomainsEditPermissionView, V
                     f"An unexpected error occurred: {str(e)}. If the issue persists, "
                     f"please contact {DefaultUserValues.HELP_EMAIL}.",
                 )
-                logger.error(f"An unexpected error occurred: {str(e)}")
+                logger.error(f"An unexpected error occurred: {str(e)}", exc_info=True)
                 return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))
         else:
             messages.info(request, "No changes detected.")
@@ -479,7 +479,7 @@ class PortfolioInvitedMemberDomainsEditView(PortfolioMemberDomainsEditPermission
                     "A database error occurred while saving changes. If the issue persists, "
                     f"please contact {DefaultUserValues.HELP_EMAIL}.",
                 )
-                logger.error("A database error occurred while saving changes.")
+                logger.error("A database error occurred while saving changes.", exc_info=True)
                 return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": pk}))
             except Exception as e:
                 messages.error(
@@ -487,7 +487,7 @@ class PortfolioInvitedMemberDomainsEditView(PortfolioMemberDomainsEditPermission
                     f"An unexpected error occurred: {str(e)}. If the issue persists, "
                     f"please contact {DefaultUserValues.HELP_EMAIL}.",
                 )
-                logger.error(f"An unexpected error occurred: {str(e)}.")
+                logger.error(f"An unexpected error occurred: {str(e)}.", exc_info=True)
                 return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": pk}))
         else:
             messages.info(request, "No changes detected.")
diff --git a/src/registrar/views/utility/invitation_helper.py b/src/registrar/views/utility/invitation_helper.py
index 771300406..5c730d0c3 100644
--- a/src/registrar/views/utility/invitation_helper.py
+++ b/src/registrar/views/utility/invitation_helper.py
@@ -1,8 +1,6 @@
 from django.contrib import messages
 from django.db import IntegrityError
-from registrar.models.portfolio_invitation import PortfolioInvitation
-from registrar.models.user import User
-from registrar.models.user_portfolio_permission import UserPortfolioPermission
+from registrar.models import PortfolioInvitation, User, UserPortfolioPermission
 from registrar.utility.email import EmailSendingError
 import logging
 
@@ -20,32 +18,33 @@ logger = logging.getLogger(__name__)
 # any view, and were initially developed for domain.py, portfolios.py and admin.py
 
 
-def get_org_membership(requestor_org, requested_email, requested_user):
+def get_org_membership(org, email, user):
     """
-    Verifies if an email belongs to a different organization as a member or invited member.
-    Verifies if an email belongs to this organization as a member or invited member.
-    User does not belong to any org can be deduced from the tuple returned.
+    Determines if an email/user belongs to a different organization or this organization
+    as either a member or an invited member.
 
-    Returns a tuple (member_of_a_different_org, member_of_this_org).
+    This function returns a tuple (member_of_a_different_org, member_of_this_org),
+    which provides:
+    - member_of_a_different_org: True if the user/email is associated with an organization other than the given org.
+    - member_of_this_org: True if the user/email is associated with the given org.
+
+    Note: This implementation assumes single portfolio ownership for a user.
+    If the "multiple portfolios" feature is enabled, this logic may not account for
+    situations where a user or email belongs to multiple organizations.
     """
 
-    # COMMENT: this code does not take into account when multiple portfolios flag is set to true
-
-    # COMMENT: shouldn't this code be based on the organization of the domain, not the org
-    # of the requestor? requestor could have multiple portfolios
-
-    # Check for existing permissions or invitations for the requested user
-    existing_org_permission = UserPortfolioPermission.objects.filter(user=requested_user).first()
-    existing_org_invitation = PortfolioInvitation.objects.filter(email=requested_email).first()
+    # Check for existing permissions or invitations for the user
+    existing_org_permission = UserPortfolioPermission.objects.filter(user=user).first()
+    existing_org_invitation = PortfolioInvitation.objects.filter(email=email).first()
 
     # Determine membership in a different organization
-    member_of_a_different_org = (existing_org_permission and existing_org_permission.portfolio != requestor_org) or (
-        existing_org_invitation and existing_org_invitation.portfolio != requestor_org
+    member_of_a_different_org = (existing_org_permission and existing_org_permission.portfolio != org) or (
+        existing_org_invitation and existing_org_invitation.portfolio != org
     )
 
     # Determine membership in the same organization
-    member_of_this_org = (existing_org_permission and existing_org_permission.portfolio == requestor_org) or (
-        existing_org_invitation and existing_org_invitation.portfolio == requestor_org
+    member_of_this_org = (existing_org_permission and existing_org_permission.portfolio == org) or (
+        existing_org_invitation and existing_org_invitation.portfolio == org
     )
 
     return member_of_a_different_org, member_of_this_org

From f196dce6077c8c420c8cd517be28596327a74932 Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Wed, 15 Jan 2025 07:08:22 -0500
Subject: [PATCH 67/68] lint

---
 src/registrar/tests/test_admin.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/tests/test_admin.py b/src/registrar/tests/test_admin.py
index 210a1a8e6..2a7a52a13 100644
--- a/src/registrar/tests/test_admin.py
+++ b/src/registrar/tests/test_admin.py
@@ -335,7 +335,7 @@ class TestDomainInvitationAdmin(TestCase):
         Should trigger success message for the domain invitation.
         Should retrieve the domain invitation.
         Should not create a portfolio invitation.
-        
+
         NOTE: This test may need to be reworked when the multiple_portfolio flag is fully fleshed out.
         """
 

From ac3286d7801fd165500f3b09415ed7153ae0c21c Mon Sep 17 00:00:00 2001
From: David Kennedy <david.kennedy@associates.cisa.dhs.gov>
Date: Wed, 15 Jan 2025 07:26:01 -0500
Subject: [PATCH 68/68] fixed bug in portfolio invitation change view query

---
 src/registrar/admin.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/admin.py b/src/registrar/admin.py
index eb4e1737a..2e1b15dfb 100644
--- a/src/registrar/admin.py
+++ b/src/registrar/admin.py
@@ -1594,7 +1594,7 @@ class PortfolioInvitationAdmin(BaseInvitationAdmin):
     # Search
     search_fields = [
         "email",
-        "portfolio__name",
+        "portfolio__organization_name",
     ]
 
     # Filters