From 8b9d883f99c3004bef56dd542c15569947cefb05 Mon Sep 17 00:00:00 2001
From: mightycox <j.acox@hotmail.com>
Date: Wed, 18 Oct 2023 13:59:31 -0700
Subject: [PATCH 1/5] EDX-1905 - fixes existing expiry date not populating

---
 frontend/src/components/secure-message/AccessUserCard.vue | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/frontend/src/components/secure-message/AccessUserCard.vue b/frontend/src/components/secure-message/AccessUserCard.vue
index 8c6f3bab5..cd6ddfeeb 100644
--- a/frontend/src/components/secure-message/AccessUserCard.vue
+++ b/frontend/src/components/secure-message/AccessUserCard.vue
@@ -485,7 +485,7 @@ export default {
       });
 
       this.selectedRoles = [...mySelection];
-      this.accessExpiryDate = this.user.edxUserSchools[0].expiryDate;
+      this.accessExpiryDate = this.getExpiryDate(this.user);
     },
     clearExpiryDate(){
       this.accessExpiryDate = null;

From 83d0202b7dbf497f0304b9c2bfe33ddda6622111 Mon Sep 17 00:00:00 2001
From: SodhiA1 <38086281+SodhiA1@users.noreply.github.com>
Date: Wed, 18 Oct 2023 15:40:38 -0700
Subject: [PATCH 2/5] Update Details.vue

---
 frontend/src/components/institute/authority/Details.vue | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/frontend/src/components/institute/authority/Details.vue b/frontend/src/components/institute/authority/Details.vue
index 79da0c547..44c474880 100644
--- a/frontend/src/components/institute/authority/Details.vue
+++ b/frontend/src/components/institute/authority/Details.vue
@@ -520,7 +520,7 @@
                     </v-row>
                   </v-col>
                 </v-row>
-              </v-col>
+              </v-col> 
               <v-col
                 v-if="showPhysicalAddress"
                 cols="3"
@@ -699,7 +699,7 @@
               </v-col>
             </v-row>
 
-            <v-row>
+            <v-row v-if="showPhysicalAddress">
               <v-col>
                 <v-row
                   no-gutters
@@ -808,7 +808,7 @@
               </v-col>
             </v-row>
 
-            <v-row no-gutters>
+            <v-row v-if="showPhysicalAddress" no-gutters>
               <v-col>
                 <v-checkbox
                   id="sameAsMailingCheckbox"
@@ -913,7 +913,7 @@ export default {
     },
     showPhysicalAddress() {
       if (this.editing) {
-        return !this.excludeShowingPhysicalAddressesForAuthoritiesOfType.includes(this.authorityCopy.authorityTypeCode);
+        return !this.excludeShowingPhysicalAddressesForAuthoritiesOfType.includes(this.authorityCopy?.authorityTypeCode);
       }
       return !this.excludeShowingPhysicalAddressesForAuthoritiesOfType.includes(this.authority?.authorityTypeCode);
     }

From 71ca122cd101f1001bb75bf7d45b0cf891fca159 Mon Sep 17 00:00:00 2001
From: Eckerman <erineckerman@gmail.com>
Date: Wed, 18 Oct 2023 16:41:42 -0700
Subject: [PATCH 3/5] Remove special char check on contact forms

---
 .../src/components/institute/EditAuthorityContactPage.vue    | 3 +--
 .../src/components/institute/EditDistrictContactPage.vue     | 4 +---
 .../src/components/institute/NewAuthorityContactPage.vue     | 3 +--
 frontend/src/components/institute/NewDistrictContactPage.vue | 5 ++---
 .../components/institute/common/EditSchoolContactPage.vue    | 4 +---
 .../src/components/institute/common/NewSchoolContactPage.vue | 4 +---
 6 files changed, 7 insertions(+), 16 deletions(-)

diff --git a/frontend/src/components/institute/EditAuthorityContactPage.vue b/frontend/src/components/institute/EditAuthorityContactPage.vue
index 5cafcd142..2130a662a 100644
--- a/frontend/src/components/institute/EditAuthorityContactPage.vue
+++ b/frontend/src/components/institute/EditAuthorityContactPage.vue
@@ -29,14 +29,13 @@
               v-model="editContact.firstName"
               class="pt-0"
               variant="underlined"
-              :rules="[rules.noSpecialCharactersContactName()]"
               :maxlength="255"
               label="First Name"
             />
             <v-text-field
               id="editAuthorityContactLastNameInput"
               v-model="editContact.lastName"
-              :rules="[rules.required(), rules.noSpecialCharactersContactName()]"
+              :rules="[rules.required()]"
               class="pt-0"
               variant="underlined"
               :maxlength="255"
diff --git a/frontend/src/components/institute/EditDistrictContactPage.vue b/frontend/src/components/institute/EditDistrictContactPage.vue
index 37ae86874..185bcd495 100644
--- a/frontend/src/components/institute/EditDistrictContactPage.vue
+++ b/frontend/src/components/institute/EditDistrictContactPage.vue
@@ -29,14 +29,13 @@
               v-model="editContact.firstName"
               class="pt-0"
               variant="underlined"
-              :rules="[rules.noSpecialCharactersContactName()]"
               :maxlength="255"
               label="First Name"
             />
             <v-text-field
               id="editDistrictContactLastNameInput"
               v-model="editContact.lastName"
-              :rules="[rules.required(), rules.noSpecialCharactersContactName()]"
+              :rules="[rules.required()]"
               class="pt-0"
               variant="underlined"
               :maxlength="255"
@@ -45,7 +44,6 @@
             <v-text-field
               id="editDistrictContactJobTitle"
               v-model="editContact.jobTitle"
-              :rules="[rules.noSpecialCharactersContactTitle()]"
               label="Position Title"
               variant="underlined"
               type="text"
diff --git a/frontend/src/components/institute/NewAuthorityContactPage.vue b/frontend/src/components/institute/NewAuthorityContactPage.vue
index 0445c7032..474941bd6 100644
--- a/frontend/src/components/institute/NewAuthorityContactPage.vue
+++ b/frontend/src/components/institute/NewAuthorityContactPage.vue
@@ -27,7 +27,6 @@
             <v-text-field
               id="newContactFirstNameInput"
               v-model="newContact.firstName"
-              :rules="[rules.noSpecialCharactersContactName()]"
               variant="underlined"
               class="pt-0"
               :maxlength="255"
@@ -36,7 +35,7 @@
             <v-text-field
               id="newContactLastNameInput"
               v-model="newContact.lastName"
-              :rules="[rules.required(), rules.noSpecialCharactersContactName()]"
+              :rules="[rules.required()]"
               variant="underlined"
               class="pt-0"
               :maxlength="255"
diff --git a/frontend/src/components/institute/NewDistrictContactPage.vue b/frontend/src/components/institute/NewDistrictContactPage.vue
index df69a1f65..6ca7901fe 100644
--- a/frontend/src/components/institute/NewDistrictContactPage.vue
+++ b/frontend/src/components/institute/NewDistrictContactPage.vue
@@ -27,7 +27,7 @@
             <v-text-field
               id="newContactFirstNameInput"
               v-model="newContact.firstName"
-              :rules="[rules.required(), rules.noSpecialCharactersContactName()]"
+              :rules="[rules.required()]"
               class="pt-0"
               variant="underlined"
               :maxlength="255"
@@ -36,7 +36,7 @@
             <v-text-field
               id="newContactLastNameInput"
               v-model="newContact.lastName"
-              :rules="[rules.required(), rules.noSpecialCharactersContactName()]"
+              :rules="[rules.required()]"
               class="pt-0"
               variant="underlined"
               :maxlength="255"
@@ -45,7 +45,6 @@
             <v-text-field
               id="newContactJobTitleInput"
               v-model="newContact.jobTitle"
-              :rules="[rules.noSpecialCharactersContactTitle()]"
               class="pt-0"
               variant="underlined"
               :maxlength="255"
diff --git a/frontend/src/components/institute/common/EditSchoolContactPage.vue b/frontend/src/components/institute/common/EditSchoolContactPage.vue
index 2540e0435..a565dcefe 100644
--- a/frontend/src/components/institute/common/EditSchoolContactPage.vue
+++ b/frontend/src/components/institute/common/EditSchoolContactPage.vue
@@ -29,14 +29,13 @@
               v-model="editContact.firstName"
               class="pt-0"
               variant="underlined"
-              :rules="[rules.noSpecialCharactersContactName()]"
               :maxlength="255"
               label="First Name"
             />
             <v-text-field
               id="editSchoolContactLastNameInput"
               v-model="editContact.lastName"
-              :rules="[rules.required(), rules.noSpecialCharactersContactName()]"
+              :rules="[rules.required()]"
               class="pt-0"
               variant="underlined"
               :maxlength="255"
@@ -48,7 +47,6 @@
               label="Position Title"
               type="text"
               variant="underlined"
-              :rules="[rules.noSpecialCharactersContactTitle()]"
               maxlength="255"
             />
             <v-text-field
diff --git a/frontend/src/components/institute/common/NewSchoolContactPage.vue b/frontend/src/components/institute/common/NewSchoolContactPage.vue
index 11a5a47a8..91b8b21ea 100644
--- a/frontend/src/components/institute/common/NewSchoolContactPage.vue
+++ b/frontend/src/components/institute/common/NewSchoolContactPage.vue
@@ -29,7 +29,6 @@
               v-model="newContact.firstName"
               variant="underlined"
               class="pt-0"
-              :rules="[rules.noSpecialCharactersContactName()]"
               :maxlength="255"
               label="First Name"
             />
@@ -37,7 +36,7 @@
               id="newContactLastNameInput"
               v-model="newContact.lastName"
               variant="underlined"
-              :rules="[rules.required(), rules.noSpecialCharactersContactName()]"
+              :rules="[rules.required()]"
               class="pt-0"
               :maxlength="255"
               label="Last Name"
@@ -47,7 +46,6 @@
               v-model="newContact.jobTitle"
               class="pt-0"
               variant="underlined"
-              :rules="[rules.noSpecialCharactersContactTitle()]"
               :maxlength="255"
               label="Position Title"
             />

From 14583a1ddaca57b18a5b8cf5eeaa22624b69dccb Mon Sep 17 00:00:00 2001
From: SodhiA1 <38086281+SodhiA1@users.noreply.github.com>
Date: Fri, 20 Oct 2023 11:47:43 -0700
Subject: [PATCH 4/5] EDX-1897: Adjust Ministry Permissions

---
 backend/src/routes/auth.js                      |  2 +-
 backend/src/routes/edx-router.js                | 17 +++++++++--------
 .../components/institute/authority/Details.vue  |  2 +-
 .../components/institute/district/Details.vue   |  2 +-
 frontend/src/components/util/NavBar.vue         | 10 +++++-----
 frontend/src/store/modules/auth.js              |  3 ++-
 6 files changed, 19 insertions(+), 17 deletions(-)

diff --git a/backend/src/routes/auth.js b/backend/src/routes/auth.js
index 5a51d6acc..52cf790c9 100644
--- a/backend/src/routes/auth.js
+++ b/backend/src/routes/auth.js
@@ -14,7 +14,7 @@ const {
   validationResult
 } = require('express-validator');
 
-const isValidStaffUserWithRoles = auth.isValidUserWithRoles('GMP & UMP & PenRequestBatch & StudentSearch & StaffAdministration & NominalRoll & NominalRollReadOnly & GUMPAnalytics & PenRequestBatchAnalytics & Exchange', [...roles.User.GMP, ...roles.User.UMP, ...roles.User.PenRequestBatch, ...roles.User.StudentSearch, ...roles.User.StaffAdministration, ...roles.User.NominalRoll , ...roles.User.NominalRollReadOnly, ...roles.User.GUMPAnalytics, ...roles.User.PenRequestBatchAnalytics, ...roles.User.Exchange]);
+const isValidStaffUserWithRoles = auth.isValidUserWithRoles('GMP & UMP & PenRequestBatch & StudentSearch & StaffAdministration & NominalRoll & NominalRollReadOnly & GUMPAnalytics & PenRequestBatchAnalytics & Exchange & EDX', [...roles.User.GMP, ...roles.User.UMP, ...roles.User.PenRequestBatch, ...roles.User.StudentSearch, ...roles.User.StaffAdministration, ...roles.User.NominalRoll , ...roles.User.NominalRollReadOnly, ...roles.User.GUMPAnalytics, ...roles.User.PenRequestBatchAnalytics, ...roles.User.Exchange, ...roles.User.EDX]);
 const isValidWebSocketUserWithRoles = auth.isValidUserWithRoles('GMP & UMP & PenRequestBatch & Exchange & School', [...roles.User.GMP, ...roles.User.UMP, ...roles.User.PenRequestBatch, ...roles.User.Exchange, ...roles.User.School]);
 
 const router = express.Router();
diff --git a/backend/src/routes/edx-router.js b/backend/src/routes/edx-router.js
index 6f0d3b0e4..10ce334b1 100644
--- a/backend/src/routes/edx-router.js
+++ b/backend/src/routes/edx-router.js
@@ -15,15 +15,16 @@ router.get('/users/ministryTeams', passport.authenticate('jwt', {session: false}
 
 router.get('/valid-schools-for-messaging', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, utils.forwardGet('getUserSchools', 'server:edx:rootURL', '/users/user-schools'));
 router.get('/valid-districts-for-messaging', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, utils.forwardGet('getUserDistricts', 'server:edx:rootURL', '/users/user-districts'));
-router.get('/users/roles', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, utils.forwardGet('getUserRoles', 'server:edx:rootURL', '/users/roles'));
-router.get('/users', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, getEdxUsers);
-router.post('/users/roles/school', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, updateEdxUserSchoolRoles);
-router.post('/users/roles/district', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, updateEdxUserDistrictRoles);
-router.post('/users/remove', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, removeUserSchoolOrDistrictAccess);
-router.post('/users/relink', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, relinkUserSchoolOrDistrictAccess);
 
-router.get('/users/activation-code/primary/:instituteType/:instituteIdentifier', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, findPrimaryEdxActivationCode);
-router.post('/users/activation-code/primary/:instituteType/:instituteIdentifier', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, generateOrRegeneratePrimaryEdxActivationCode);
+router.get('/users/roles', passport.authenticate('jwt', {session: false}, undefined), auth.isValidEDXUserToken, extendSession, utils.forwardGet('getUserRoles', 'server:edx:rootURL', '/users/roles'));
+router.get('/users', passport.authenticate('jwt', {session: false}, undefined), auth.isValidEDXUserToken, extendSession, getEdxUsers);
+router.post('/users/roles/school', passport.authenticate('jwt', {session: false}, undefined), auth.isValidEDXUserToken, extendSession, updateEdxUserSchoolRoles);
+router.post('/users/roles/district', passport.authenticate('jwt', {session: false}, undefined), auth.isValidEDXUserToken, extendSession, updateEdxUserDistrictRoles);
+router.post('/users/remove', passport.authenticate('jwt', {session: false}, undefined), auth.isValidEDXUserToken, extendSession, removeUserSchoolOrDistrictAccess);
+router.post('/users/relink', passport.authenticate('jwt', {session: false}, undefined), auth.isValidEDXUserToken, extendSession, relinkUserSchoolOrDistrictAccess);
+
+router.get('/users/activation-code/primary/:instituteType/:instituteIdentifier', passport.authenticate('jwt', {session: false}, undefined), auth.isValidEDXUserToken, extendSession, findPrimaryEdxActivationCode);
+router.post('/users/activation-code/primary/:instituteType/:instituteIdentifier', passport.authenticate('jwt', {session: false}, undefined), auth.isValidEDXUserToken, extendSession, generateOrRegeneratePrimaryEdxActivationCode);
 
 //edx exchange routes
 router.get('/exchange', passport.authenticate('jwt', {session: false}, undefined), auth.isValidExchangeUserToken, extendSession, getExchanges);
diff --git a/frontend/src/components/institute/authority/Details.vue b/frontend/src/components/institute/authority/Details.vue
index 44c474880..b7f62db2f 100644
--- a/frontend/src/components/institute/authority/Details.vue
+++ b/frontend/src/components/institute/authority/Details.vue
@@ -452,7 +452,7 @@
           </v-row>
           <div v-if="!editing">
             <v-row
-              v-if="!hasMailingAddress() && !editing"
+              v-if="canEditAuthorities() && !hasMailingAddress() && !editing"
               no-gutters
               class="d-flex justify-start"
             >
diff --git a/frontend/src/components/institute/district/Details.vue b/frontend/src/components/institute/district/Details.vue
index 4977deb75..5d0189c1a 100644
--- a/frontend/src/components/institute/district/Details.vue
+++ b/frontend/src/components/institute/district/Details.vue
@@ -301,7 +301,7 @@
           </v-row>
           <div v-if="!editing">
             <v-row
-              v-if="!hasMailingAddress() && !editing"
+              v-if="canEditDistrictDetails() && !hasMailingAddress() && !editing"
               no-gutters
               class="mt-2 d-flex justify-start"
             >
diff --git a/frontend/src/components/util/NavBar.vue b/frontend/src/components/util/NavBar.vue
index 778351123..c802d74ea 100644
--- a/frontend/src/components/util/NavBar.vue
+++ b/frontend/src/components/util/NavBar.vue
@@ -170,7 +170,7 @@ export default {
   },
   computed: {
     ...mapState(appStore, ['config']),
-    ...mapState(authStore, ['isAuthorizedUser', 'ADVANCED_SEARCH_ROLE', 'VIEW_EDIT_PEN_REQUEST_BATCH_FILES_ROLE', 'EDIT_MACROS_ROLE', 'VIEW_GMP_REQUESTS_ROLE', 'VIEW_UMP_REQUESTS_ROLE', 'PROCESS_STUDENT_ROLE', 'VIEW_PEN_COORDINATOR_INFO_ROLE', 'NOMINAL_ROLL_ROLE', 'STAFF_ADMINISTRATION_ADMIN', 'HAS_STATS_ROLE', 'STUDENT_ANALYTICS_STUDENT_PROFILE', 'STUDENT_ANALYTICS_BATCH', 'EXCHANGE_ROLE', 'EXCHANGE_ACCESS_ROLE', 'PEN_TEAM_ROLE']),
+    ...mapState(authStore, ['isAuthorizedUser', 'ADVANCED_SEARCH_ROLE', 'VIEW_EDIT_PEN_REQUEST_BATCH_FILES_ROLE', 'EDIT_MACROS_ROLE', 'VIEW_GMP_REQUESTS_ROLE', 'VIEW_UMP_REQUESTS_ROLE', 'PROCESS_STUDENT_ROLE', 'VIEW_PEN_COORDINATOR_INFO_ROLE', 'NOMINAL_ROLL_ROLE', 'STAFF_ADMINISTRATION_ADMIN', 'HAS_STATS_ROLE', 'STUDENT_ANALYTICS_STUDENT_PROFILE', 'STUDENT_ANALYTICS_BATCH', 'EXCHANGE_ROLE', 'EXCHANGE_ACCESS_ROLE', 'PEN_TEAM_ROLE', 'INSTITUTIONS_ADMINISTRATION_ADMIN']),
     items() {
       return [
         {
@@ -254,22 +254,22 @@ export default {
         },
         {
           title: 'Institutions',
-          authorized: this.isAuthorizedUser,
+          authorized: this.INSTITUTIONS_ADMINISTRATION_ADMIN,
           items: [
             {
               title: 'Schools',
               link: 'instituteSchoolList',
-              authorized: this.isAuthorizedUser
+              authorized: this.INSTITUTIONS_ADMINISTRATION_ADMIN
             },
             {
               title: 'Districts',
               link: 'instituteDistrict',
-              authorized: this.isAuthorizedUser
+              authorized: this.INSTITUTIONS_ADMINISTRATION_ADMIN
             },
             {
               title: 'Authorities',
               link: 'instituteAuthoritiesList',
-              authorized: this.isAuthorizedUser
+              authorized: this.INSTITUTIONS_ADMINISTRATION_ADMIN
             }
           ],
         },
diff --git a/frontend/src/store/modules/auth.js b/frontend/src/store/modules/auth.js
index a51b5c77f..cf44d00b5 100644
--- a/frontend/src/store/modules/auth.js
+++ b/frontend/src/store/modules/auth.js
@@ -69,7 +69,8 @@ export const authStore = defineStore('auth', {
     SCHOOL_ADMIN_ROLE: state => state.isValidSchoolAdmin,
     INDEPENDENT_SCHOOLS_ADMIN_ROLE: state => state.isValidSchoolIndependentAdmin,
     OFFSHORE_SCHOOLS_ADMIN_ROLE: state => state.isValidSchoolOffshoreAdmin,
-    INDEPENDENT_AUTHORITY_ADMIN_ROLE: state => state.isValidIndependentAuthorityAdmin
+    INDEPENDENT_AUTHORITY_ADMIN_ROLE: state => state.isValidIndependentAuthorityAdmin,
+    INSTITUTIONS_ADMINISTRATION_ADMIN: state => state.isValidSchoolAdmin || state.isValidDistrictAdmin || state.isValidSchoolIndependentAdmin || state.isValidSchoolOffshoreAdmin || state.isValidIndependentAuthorityAdmin,
   },
   actions: {
     //sets Json web token and determines whether user is authenticated

From fc1f8e83fb4e41bcae949963724458685c8ec98b Mon Sep 17 00:00:00 2001
From: SodhiA1 <38086281+SodhiA1@users.noreply.github.com>
Date: Fri, 20 Oct 2023 11:52:20 -0700
Subject: [PATCH 5/5] Update roles.js

---
 backend/src/components/roles.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/backend/src/components/roles.js b/backend/src/components/roles.js
index 21fa68157..bdb9284eb 100644
--- a/backend/src/components/roles.js
+++ b/backend/src/components/roles.js
@@ -25,7 +25,8 @@ const roles = {
     //Help functions created in auth module: isValidPenTeamRoleUserToken, isValidPenTeamRoleUser
     PenTeamRole: config.get('server:edx:teamRoles:pen'),
     //Help functions created in auth module: isValidSchoolMoveUserToken, isValidSchoolMoveUser
-    School: ['SCHOOL_ADMIN']
+    School: ['SCHOOL_ADMIN'],
+    EDX: [config.get('server:edx:roleAdmin')]
   },
   Admin: {
     //Help functions created in auth module: isValidGMPAdmin