Merge pull request #214 from hack-duke/bro-i-dont-wanna-do-ts

22raor · web-flow · commit dcd3dbda04e7 · 2026-01-17T21:10:05.000-05:00
bruh
diff --git a/portal-backend-python/routers/admin.py b/portal-backend-python/routers/admin.py
@@ -13,6 +13,7 @@
 from models.admin_user import AdminUser
 from models.application import Application, ApplicationStatus
 from models.response import Response
+from models.form import Form as Form1
 from pydantic import BaseModel
 from services.google_sheets import export_applicants_to_sheets
 
@@ -842,3 +843,128 @@ async def export_to_sheets(
         return ExportResponse(**result)
     except Exception as e:
         raise HTTPException(status_code=500, detail=f"Failed to export to Google Sheets: {str(e)}")
+
+
+class ExceptionListResponse(BaseModel):
+    form_key: str
+    exception_emails: list[str]
+
+
+class AddExceptionRequest(BaseModel):
+    email: str
+
+
+class RemoveExceptionRequest(BaseModel):
+    email: str
+
+
+@router.get("/exceptions", response_model=ExceptionListResponse)
+async def get_exception_list(
+    session_id: str,
+    auth_payload: Dict[str, Any] = Security(auth.verify),
+    db: Session = Depends(get_db),
+):
+    """Get the list of emails with form submission exceptions."""
+    auth0_id = auth_payload.get("sub")
+    if not auth0_id:
+        raise HTTPException(status_code=401, detail="Auth0 ID not found in token")
+
+    user = db.query(User).filter(User.auth0_id == auth0_id).first()
+    if not user:
+        raise HTTPException(status_code=401, detail="User not found")
+
+    admin_user = db.query(AdminUser).filter(AdminUser.user_id == user.id).first()
+    if not admin_user:
+        raise HTTPException(status_code=403, detail="Not an admin")
+
+    if not _validate_session(db, user.id, session_id):
+        raise HTTPException(status_code=403, detail="Session invalidated")
+
+    form = db.query(Form1).filter(Form1.form_key == CURRENT_FORM_KEY).first()
+    if not form:
+        raise HTTPException(status_code=404, detail="Form not found")
+
+    return ExceptionListResponse(
+        form_key=form.form_key,
+        exception_emails=form.exception_emails or []
+    )
+
+
+@router.post("/exceptions/add", response_model=ExceptionListResponse)
+async def add_exception_email(
+    request: AddExceptionRequest,
+    session_id: str,
+    auth_payload: Dict[str, Any] = Security(auth.verify),
+    db: Session = Depends(get_db),
+):
+    """Add an email to the exception list."""
+    auth0_id = auth_payload.get("sub")
+    if not auth0_id:
+        raise HTTPException(status_code=401, detail="Auth0 ID not found in token")
+
+    user = db.query(User).filter(User.auth0_id == auth0_id).first()
+    if not user:
+        raise HTTPException(status_code=401, detail="User not found")
+
+    admin_user = db.query(AdminUser).filter(AdminUser.user_id == user.id).first()
+    if not admin_user:
+        raise HTTPException(status_code=403, detail="Not an admin")
+
+    if not _validate_session(db, user.id, session_id):
+        raise HTTPException(status_code=403, detail="Session invalidated")
+
+    form = db.query(Form1).filter(Form1.form_key == CURRENT_FORM_KEY).first()
+    if not form:
+        raise HTTPException(status_code=404, detail="Form not found")
+
+    email = request.email.strip().lower()
+    if not email:
+        raise HTTPException(status_code=400, detail="Email cannot be empty")
+
+    current_emails = form.exception_emails or []
+    if email not in [e.lower() for e in current_emails]:
+        form.exception_emails = current_emails + [email]
+        db.commit()
+
+    return ExceptionListResponse(
+        form_key=form.form_key,
+        exception_emails=form.exception_emails or []
+    )
+
+
+@router.post("/exceptions/remove", response_model=ExceptionListResponse)
+async def remove_exception_email(
+    request: RemoveExceptionRequest,
+    session_id: str,
+    auth_payload: Dict[str, Any] = Security(auth.verify),
+    db: Session = Depends(get_db),
+):
+    """Remove an email from the exception list."""
+    auth0_id = auth_payload.get("sub")
+    if not auth0_id:
+        raise HTTPException(status_code=401, detail="Auth0 ID not found in token")
+
+    user = db.query(User).filter(User.auth0_id == auth0_id).first()
+    if not user:
+        raise HTTPException(status_code=401, detail="User not found")
+
+    admin_user = db.query(AdminUser).filter(AdminUser.user_id == user.id).first()
+    if not admin_user:
+        raise HTTPException(status_code=403, detail="Not an admin")
+
+    if not _validate_session(db, user.id, session_id):
+        raise HTTPException(status_code=403, detail="Session invalidated")
+
+    form = db.query(Form1).filter(Form1.form_key == CURRENT_FORM_KEY).first()
+    if not form:
+        raise HTTPException(status_code=404, detail="Form not found")
+
+    email = request.email.strip().lower()
+    current_emails = form.exception_emails or []
+    form.exception_emails = [e for e in current_emails if e.lower() != email]
+    db.commit()
+
+    return ExceptionListResponse(
+        form_key=form.form_key,
+        exception_emails=form.exception_emails or []
+    )
diff --git a/portal-frontend/src/pages/AdminPage.css b/portal-frontend/src/pages/AdminPage.css
@@ -214,3 +214,112 @@
 .export-result p:first-child {
   font-weight: 600;
 }
+
+/* Exceptions Section */
+.admin-exceptions-section {
+  margin-top: 64px;
+  padding-top: 48px;
+  border-top: 1px solid #e0e0e0;
+  text-align: center;
+}
+
+.exceptions-title {
+  font-size: 1.5rem;
+  font-weight: 600;
+  color: #333;
+  margin-bottom: 8px;
+}
+
+.exceptions-description {
+  font-size: 1rem;
+  color: #666;
+  margin-bottom: 24px;
+}
+
+.exception-add-form {
+  display: flex;
+  justify-content: center;
+  gap: 12px;
+  margin-bottom: 24px;
+  flex-wrap: wrap;
+}
+
+.exception-input {
+  padding: 12px 16px;
+  font-size: 1rem;
+  border: 2px solid #e0e0e0;
+  border-radius: 8px;
+  min-width: 300px;
+  outline: none;
+  transition: border-color 0.2s ease;
+}
+
+.exception-input:focus {
+  border-color: #1031d0;
+}
+
+.exception-add-btn {
+  padding: 12px 24px;
+  font-size: 1rem;
+  font-weight: 600;
+}
+
+.exception-list {
+  list-style: none;
+  padding: 0;
+  margin: 0;
+  max-width: 500px;
+  margin: 0 auto;
+}
+
+.exception-item {
+  display: flex;
+  justify-content: space-between;
+  align-items: center;
+  padding: 12px 16px;
+  background: #f8f9fa;
+  border-radius: 8px;
+  margin-bottom: 8px;
+  border: 1px solid #e8e8e8;
+}
+
+.exception-email {
+  font-size: 0.95rem;
+  color: #333;
+  font-family: monospace;
+}
+
+.exception-remove-btn {
+  background: none;
+  border: none;
+  color: #ff5252;
+  font-size: 1.5rem;
+  cursor: pointer;
+  padding: 0 8px;
+  line-height: 1;
+  transition: color 0.2s ease;
+}
+
+.exception-remove-btn:hover {
+  color: #c62828;
+}
+
+.no-exceptions {
+  color: #999;
+  font-style: italic;
+}
+
+@media (max-width: 768px) {
+  .exception-input {
+    min-width: 100%;
+  }
+
+  .exception-add-form {
+    flex-direction: column;
+    align-items: stretch;
+  }
+
+  .exception-add-btn {
+    width: 100%;
+  }
+}
diff --git a/portal-frontend/src/pages/AdminPage.js b/portal-frontend/src/pages/AdminPage.js
