From 6bfbb4662bcfbe2d2d9dd4eb8b9233ffaa388b6c Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Sun, 28 Sep 2025 01:18:50 -0500
Subject: [PATCH 01/14] Return org roles from protected route

---
 src/api/routes/protected.ts       | 22 +++++++++++++++++++++-
 src/common/types/organizations.ts |  1 -
 2 files changed, 21 insertions(+), 2 deletions(-)

diff --git a/src/api/routes/protected.ts b/src/api/routes/protected.ts
index 6ca72ff4..65079927 100644
--- a/src/api/routes/protected.ts
+++ b/src/api/routes/protected.ts
@@ -1,6 +1,11 @@
 import { FastifyPluginAsync } from "fastify";
 import rateLimiter from "api/plugins/rateLimiter.js";
 import { withRoles, withTags } from "api/components/index.js";
+import { getUserOrgRoles } from "api/functions/organizations.js";
+import {
+  UnauthenticatedError,
+  UnauthorizedError,
+} from "common/errors/index.js";
 
 const protectedRoute: FastifyPluginAsync = async (fastify, _options) => {
   await fastify.register(rateLimiter, {
@@ -20,7 +25,22 @@ const protectedRoute: FastifyPluginAsync = async (fastify, _options) => {
     },
     async (request, reply) => {
       const roles = await fastify.authorize(request, reply, [], false);
-      reply.send({ username: request.username, roles: Array.from(roles) });
+      const { username, log: logger } = request;
+      const { dynamoClient } = fastify;
+      if (!username) {
+        throw new UnauthenticatedError({ message: "Username not found." });
+      }
+      const orgRolesPromise = getUserOrgRoles({
+        username,
+        dynamoClient,
+        logger,
+      });
+      const orgRoles = await orgRolesPromise;
+      reply.send({
+        username: request.username,
+        roles: Array.from(roles),
+        orgRoles,
+      });
     },
   );
 };
diff --git a/src/common/types/organizations.ts b/src/common/types/organizations.ts
index 8cde314f..7a6978a2 100644
--- a/src/common/types/organizations.ts
+++ b/src/common/types/organizations.ts
@@ -18,7 +18,6 @@ export const orgLinkEntry = z.object({
 
 export const enforcedOrgLeadEntry = orgLeadEntry.extend({ name: z.string().min(1), title: z.string().min(1) })
 
-
 export const getOrganizationInfoResponse = z.object({
   id: z.enum(AllOrganizationList),
   description: z.optional(z.string()),

From 6806bab0aa956782d643f608cf2a160c2ead1fc6 Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Sun, 28 Sep 2025 01:25:42 -0500
Subject: [PATCH 02/14] Expose orgRoles in auth context

---
 src/ui/components/AuthContext/index.tsx | 87 ++++++++++++++++++++++---
 1 file changed, 77 insertions(+), 10 deletions(-)

diff --git a/src/ui/components/AuthContext/index.tsx b/src/ui/components/AuthContext/index.tsx
index db8ee07d..4bca534d 100644
--- a/src/ui/components/AuthContext/index.tsx
+++ b/src/ui/components/AuthContext/index.tsx
@@ -14,23 +14,30 @@ import React, {
   useCallback,
 } from "react";
 
-import { CACHE_KEY_PREFIX, setCachedResponse } from "../AuthGuard/index.js";
+import {
+  CACHE_KEY_PREFIX,
+  setCachedResponse,
+  getCachedResponse,
+} from "../AuthGuard/index.js";
 
 import FullScreenLoader from "./LoadingScreen.js";
 
 import { getRunEnvironmentConfig, ValidServices } from "@ui/config.js";
 import { transformCommaSeperatedName } from "@common/utils.js";
 import { useApi } from "@ui/util/api.js";
+import { OrgRoleDefinition } from "@common/roles.js";
 
 interface AuthContextDataWrapper {
   isLoggedIn: boolean;
   userData: AuthContextData | null;
+  orgRoles: OrgRoleDefinition[];
   loginMsal: CallableFunction;
   logout: CallableFunction;
   getToken: CallableFunction;
   logoutCallback: CallableFunction;
   getApiToken: CallableFunction;
   setLoginStatus: CallableFunction;
+  refreshOrgRoles: () => Promise<void>;
 }
 
 export type AuthContextData = {
@@ -54,27 +61,66 @@ export const AuthProvider: React.FC<AuthProviderProps> = ({ children }) => {
   const { instance, inProgress, accounts } = useMsal();
   const [userData, setUserData] = useState<AuthContextData | null>(null);
   const [isLoggedIn, setIsLoggedIn] = useState<boolean>(false);
+  const [orgRoles, setOrgRoles] = useState<OrgRoleDefinition[]>([]);
   const checkRoute =
     getRunEnvironmentConfig().ServiceConfiguration.core.authCheckRoute;
   if (!checkRoute) {
     throw new Error("no check route found!");
   }
 
+  const api = useApi("core");
+
   const navigate = (path: string) => {
     window.location.href = path;
   };
 
+  // Function to fetch and update org roles
+  const fetchOrgRoles = useCallback(async () => {
+    try {
+      // Check cache first
+      const cachedData = await getCachedResponse("core", checkRoute);
+      if (cachedData?.data?.orgRoles) {
+        setOrgRoles(cachedData.data.orgRoles || []);
+        return cachedData.data.orgRoles;
+      }
+
+      // Fetch fresh data if not in cache
+      const result = await api.get(checkRoute);
+      await setCachedResponse("core", checkRoute, result.data);
+
+      if (result.data?.orgRoles) {
+        setOrgRoles(result.data.orgRoles || []);
+        return result.data.orgRoles;
+      }
+
+      return [];
+    } catch (error) {
+      console.error("Failed to fetch org roles:", error);
+      return [];
+    }
+  }, [api, checkRoute]);
+
+  // Refresh org roles on demand
+  const refreshOrgRoles = useCallback(async () => {
+    // Clear cache to force fresh fetch
+    const cacheKey = `${CACHE_KEY_PREFIX}core_${checkRoute}`;
+    sessionStorage.removeItem(cacheKey);
+    await fetchOrgRoles();
+  }, [checkRoute, fetchOrgRoles]);
+
   useEffect(() => {
     const handleRedirect = async () => {
       const response = await instance.handleRedirectPromise();
       if (response) {
-        handleMsalResponse(response);
+        await handleMsalResponse(response);
       } else if (accounts.length > 0) {
         setUserData({
           email: accounts[0].username,
           name: transformCommaSeperatedName(accounts[0].name || ""),
         });
         setIsLoggedIn(true);
+        // Fetch org roles when user is already logged in
+        await fetchOrgRoles();
       }
     };
 
@@ -84,7 +130,7 @@ export const AuthProvider: React.FC<AuthProviderProps> = ({ children }) => {
   }, [inProgress, accounts, instance]);
 
   const handleMsalResponse = useCallback(
-    (response: AuthenticationResult) => {
+    async (response: AuthenticationResult) => {
       if (response?.account) {
         if (!accounts.length) {
           // If accounts array is empty, try silent authentication
@@ -99,9 +145,15 @@ export const AuthProvider: React.FC<AuthProviderProps> = ({ children }) => {
                   email: accounts[0].username,
                   name: transformCommaSeperatedName(accounts[0].name || ""),
                 });
-                const api = useApi("core");
+
+                // Fetch and cache auth data including orgRoles
                 const result = await api.get(checkRoute);
                 await setCachedResponse("core", checkRoute, result.data);
+
+                if (result.data?.orgRoles) {
+                  setOrgRoles(result.data.orgRoles || []);
+                }
+
                 setIsLoggedIn(true);
               }
             })
@@ -112,10 +164,13 @@ export const AuthProvider: React.FC<AuthProviderProps> = ({ children }) => {
           email: accounts[0].username,
           name: transformCommaSeperatedName(accounts[0].name || ""),
         });
+
+        // Fetch org roles after successful authentication
+        await fetchOrgRoles();
         setIsLoggedIn(true);
       }
     },
-    [accounts, instance],
+    [accounts, instance, api, checkRoute, fetchOrgRoles],
   );
 
   const getApiToken = useCallback(
@@ -203,9 +258,15 @@ export const AuthProvider: React.FC<AuthProviderProps> = ({ children }) => {
             ...request,
             account: accounts[0],
           });
-          const api = useApi("core");
+
+          // Fetch and cache auth data including orgRoles
           const result = await api.get(checkRoute);
           await setCachedResponse("core", checkRoute, result.data);
+
+          if (result.data?.orgRoles) {
+            setOrgRoles(result.data.orgRoles || []);
+          }
+
           setIsLoggedIn(true);
         } catch (error) {
           if (error instanceof InteractionRequiredAuthError) {
@@ -224,7 +285,7 @@ export const AuthProvider: React.FC<AuthProviderProps> = ({ children }) => {
         });
       }
     },
-    [instance, checkRoute, setIsLoggedIn, setCachedResponse],
+    [instance, checkRoute, api],
   );
 
   const setLoginStatus = useCallback((val: boolean) => {
@@ -234,26 +295,32 @@ export const AuthProvider: React.FC<AuthProviderProps> = ({ children }) => {
   const logout = useCallback(async () => {
     try {
       clearAuthCache();
+      setOrgRoles([]); // Clear org roles on logout
       await instance.logoutRedirect();
     } catch (error) {
       console.error("Logout failed:", error);
     }
-  }, [instance, userData]);
-  const logoutCallback = () => {
+  }, [instance]);
+
+  const logoutCallback = useCallback(() => {
     setIsLoggedIn(false);
     setUserData(null);
-  };
+    setOrgRoles([]); // Clear org roles on logout callback
+  }, []);
+
   return (
     <AuthContext.Provider
       value={{
         isLoggedIn,
         userData,
+        orgRoles,
         setLoginStatus,
         loginMsal,
         logout,
         getToken,
         logoutCallback,
         getApiToken,
+        refreshOrgRoles,
       }}
     >
       {inProgress !== InteractionStatus.None ? (

From 4911db5af573c406386183dc1fe37fb7dfb6dc5f Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Sun, 28 Sep 2025 01:59:26 -0500
Subject: [PATCH 03/14] Support the at least one org manager role, show UI

---
 src/api/functions/authorization.ts        | 23 +++++-
 src/api/plugins/auth.ts                   |  1 +
 src/common/roles.ts                       |  4 +-
 src/ui/Router.tsx                         |  5 ++
 src/ui/components/AppShell/index.tsx      | 10 ++-
 src/ui/components/AuthGuard/index.tsx     | 21 ++++++
 src/ui/pages/organization/OrgInfoPage.tsx | 86 +++++++++++++++++++++++
 7 files changed, 145 insertions(+), 5 deletions(-)
 create mode 100644 src/ui/pages/organization/OrgInfoPage.tsx

diff --git a/src/api/functions/authorization.ts b/src/api/functions/authorization.ts
index a19a09d0..03978954 100644
--- a/src/api/functions/authorization.ts
+++ b/src/api/functions/authorization.ts
@@ -25,6 +25,7 @@ import { getUserOrgRoles } from "./organizations.js";
 export async function getUserRoles(
   dynamoClient: DynamoDBClient,
   userId: string,
+  logger: FastifyBaseLogger,
 ): Promise<AppRoles[]> {
   const tableName = `${genericConfig.IAMTablePrefix}-assignments`;
   const command = new GetItemCommand({
@@ -39,17 +40,33 @@ export async function getUserRoles(
       message: "Could not get user roles",
     });
   }
+  // get user org roles and return if they lead at least one org
+  let baseRoles: AppRoles[];
+  try {
+    const orgRoles = await getUserOrgRoles({
+      username: userId,
+      dynamoClient,
+      logger,
+    });
+    const leadsOneOrg = orgRoles.filter((x) => x.role === "LEAD").length > 0;
+    baseRoles = leadsOneOrg ? [AppRoles.AT_LEAST_ONE_ORG_MANAGER] : [];
+  } catch (e) {
+    logger.error(e);
+    baseRoles = [];
+  }
+
   if (!response.Item) {
-    return [];
+    return baseRoles;
   }
   const items = unmarshall(response.Item) as { roles: AppRoles[] | ["all"] };
   if (!("roles" in items)) {
-    return [];
+    return baseRoles;
   }
   if (items.roles[0] === "all") {
     return allAppRoles;
   }
-  return items.roles as AppRoles[];
+
+  return [...new Set([...baseRoles, ...items.roles])] as AppRoles[];
 }
 
 export async function getGroupRoles(
diff --git a/src/api/plugins/auth.ts b/src/api/plugins/auth.ts
index 5f00c346..90ea16b2 100644
--- a/src/api/plugins/auth.ts
+++ b/src/api/plugins/auth.ts
@@ -352,6 +352,7 @@ const authPlugin: FastifyPluginAsync = async (fastify, _options) => {
               const userAuth = await getUserRoles(
                 fastify.dynamoClient,
                 request.username,
+                request.log,
               );
               for (const role of userAuth) {
                 userRoles.add(role);
diff --git a/src/common/roles.ts b/src/common/roles.ts
index a7e93d7d..b2656929 100644
--- a/src/common/roles.ts
+++ b/src/common/roles.ts
@@ -20,7 +20,8 @@ export enum AppRoles {
   VIEW_INTERNAL_MEMBERSHIP_LIST = "view:internalMembershipList",
   VIEW_EXTERNAL_MEMBERSHIP_LIST = "view:externalMembershipList",
   MANAGE_EXTERNAL_MEMBERSHIP_LIST = "manage:externalMembershipList",
-  ALL_ORG_MANAGER = "manage:orgDefinitions"
+  ALL_ORG_MANAGER = "manage:orgDefinitions",
+  AT_LEAST_ONE_ORG_MANAGER = "manage:someOrg"
 }
 export const orgRoles = ["LEAD", "MEMBER"] as const;
 export type OrgRole = typeof orgRoles[number];
@@ -51,4 +52,5 @@ export const AppRoleHumanMapper: Record<AppRoles, string> = {
   [AppRoles.VIEW_EXTERNAL_MEMBERSHIP_LIST]: "External Membership List Viewer",
   [AppRoles.MANAGE_EXTERNAL_MEMBERSHIP_LIST]: "External Membership List Manager",
   [AppRoles.ALL_ORG_MANAGER]: "Organization Definition Manager",
+  [AppRoles.AT_LEAST_ONE_ORG_MANAGER]: "Manager of at least one org",
 }
diff --git a/src/ui/Router.tsx b/src/ui/Router.tsx
index 30bbfc53..1a89220e 100644
--- a/src/ui/Router.tsx
+++ b/src/ui/Router.tsx
@@ -29,6 +29,7 @@ import { ViewLogsPage } from "./pages/logs/ViewLogs.page";
 import { TermsOfService } from "./pages/tos/TermsOfService.page";
 import { ManageApiKeysPage } from "./pages/apiKeys/ManageKeys.page";
 import { ManageExternalMembershipPage } from "./pages/membershipLists/MembershipListsPage";
+import { OrgInfoPage } from "./pages/organization/OrgInfoPage";
 
 const ProfileRediect: React.FC = () => {
   const location = useLocation();
@@ -208,6 +209,10 @@ const authenticatedRouter = createBrowserRouter([
     path: "/apiKeys",
     element: <ManageApiKeysPage />,
   },
+  {
+    path: "/orgInfo",
+    element: <OrgInfoPage />,
+  },
   // Catch-all route for authenticated users shows 404 page
   {
     path: "*",
diff --git a/src/ui/components/AppShell/index.tsx b/src/ui/components/AppShell/index.tsx
index 117f2026..ceeb3093 100644
--- a/src/ui/components/AppShell/index.tsx
+++ b/src/ui/components/AppShell/index.tsx
@@ -23,6 +23,7 @@ import {
   IconKey,
   IconExternalLink,
   IconUser,
+  IconInfoCircle,
 } from "@tabler/icons-react";
 import { ReactNode } from "react";
 import { useNavigate } from "react-router-dom";
@@ -101,7 +102,7 @@ export const navItems = [
   },
   {
     link: "/membershipLists",
-    name: "Membership Lists",
+    name: "Membership",
     icon: IconUser,
     description: null,
     validRoles: [
@@ -109,6 +110,13 @@ export const navItems = [
       AppRoles.MANAGE_EXTERNAL_MEMBERSHIP_LIST,
     ],
   },
+  {
+    link: "/orgInfo",
+    name: "Organization Info",
+    icon: IconInfoCircle,
+    description: null,
+    validRoles: [AppRoles.AT_LEAST_ONE_ORG_MANAGER],
+  },
 ];
 
 export const extLinks = [
diff --git a/src/ui/components/AuthGuard/index.tsx b/src/ui/components/AuthGuard/index.tsx
index cff61d68..a2ba9c81 100644
--- a/src/ui/components/AuthGuard/index.tsx
+++ b/src/ui/components/AuthGuard/index.tsx
@@ -84,6 +84,27 @@ export const clearAuthCache = () => {
   }
 };
 
+/**
+ * Retrieves the user's roles from the session cache for a specific service.
+ * @param service The service to check the cache for.
+ * @param route The authentication check route.
+ * @returns A promise that resolves to an array of roles, or null if not found in cache.
+ */
+export const getUserRoles = async (
+  service: ValidService,
+): Promise<string[] | null> => {
+  const { authCheckRoute } =
+    getRunEnvironmentConfig().ServiceConfiguration[service];
+  if (!authCheckRoute) {
+    throw new Error("no auth check route");
+  }
+  const cachedData = await getCachedResponse(service, authCheckRoute);
+  if (cachedData?.data?.roles && Array.isArray(cachedData.data.roles)) {
+    return cachedData.data.roles;
+  }
+  return null;
+};
+
 export const AuthGuard: React.FC<
   {
     resourceDef: ResourceDefinition;
diff --git a/src/ui/pages/organization/OrgInfoPage.tsx b/src/ui/pages/organization/OrgInfoPage.tsx
new file mode 100644
index 00000000..b0e88898
--- /dev/null
+++ b/src/ui/pages/organization/OrgInfoPage.tsx
@@ -0,0 +1,86 @@
+import { useState, useEffect } from "react";
+import { Title, Stack, Container, Grid } from "@mantine/core";
+import { AuthGuard, getUserRoles } from "@ui/components/AuthGuard";
+import { useApi } from "@ui/util/api";
+import { AppRoles } from "@common/roles";
+import { notifications } from "@mantine/notifications";
+import { IconAlertCircle } from "@tabler/icons-react";
+import FullScreenLoader from "@ui/components/AuthContext/LoadingScreen";
+import { AxiosError } from "axios";
+import { AllOrganizationList } from "@acm-uiuc/js-shared";
+import { useAuth } from "@ui/components/AuthContext";
+
+type AcmOrg = (typeof AllOrganizationList)[number];
+
+export const OrgInfoPage = () => {
+  const api = useApi("core");
+  const { orgRoles } = useAuth();
+  const [manageableOrgs, setManagableOrgs] = useState<AcmOrg[] | null>(null);
+
+  const getCurrentInformation = async (org: AcmOrg) => {
+    try {
+      const result = await api.post<{
+        members: string[];
+        notMembers: string[];
+      }>(`/api/v1/organization/${org}`);
+      return result.data;
+    } catch (error: any) {
+      console.error("Failed to check get org info:", error);
+      notifications.show({
+        title: `Failed to get information for ${org}.`,
+        message: "Please try again or contact support.",
+        color: "red",
+        icon: <IconAlertCircle size={16} />,
+      });
+      throw error;
+    }
+  };
+
+  useEffect(() => {
+    (async () => {
+      const appRoles = await getUserRoles("core");
+      if (appRoles?.includes(AppRoles.ALL_ORG_MANAGER)) {
+        setManagableOrgs(AllOrganizationList);
+        return;
+      }
+      setManagableOrgs(
+        orgRoles.filter((x) => x.role === "LEAD").map((x) => x.org),
+      );
+    })();
+  }, [orgRoles]);
+
+  if (!manageableOrgs) {
+    return <FullScreenLoader />;
+  }
+  if (manageableOrgs.length === 0) {
+    // Need to show access denied.
+    return (
+      <AuthGuard
+        resourceDef={{
+          service: "core",
+          validRoles: [AppRoles.AT_LEAST_ONE_ORG_MANAGER],
+        }}
+      >
+        {null}
+      </AuthGuard>
+    );
+  }
+  return (
+    <Container fluid m="lg">
+      <Grid>
+        <Grid.Col span={{ base: 12, lg: 6 }}>
+          <AuthGuard
+            resourceDef={{
+              service: "core",
+              validRoles: [],
+            }}
+          >
+            <Stack>
+              <Title order={2}>Manage Organization Info</Title>
+            </Stack>
+          </AuthGuard>
+        </Grid.Col>
+      </Grid>
+    </Container>
+  );
+};

From 5aeccd9c82f949d6a7b710e07269419b7de421db Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Sun, 28 Sep 2025 01:59:47 -0500
Subject: [PATCH 04/14] add a comment

---
 src/common/roles.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/common/roles.ts b/src/common/roles.ts
index b2656929..3c0f9e07 100644
--- a/src/common/roles.ts
+++ b/src/common/roles.ts
@@ -21,7 +21,7 @@ export enum AppRoles {
   VIEW_EXTERNAL_MEMBERSHIP_LIST = "view:externalMembershipList",
   MANAGE_EXTERNAL_MEMBERSHIP_LIST = "manage:externalMembershipList",
   ALL_ORG_MANAGER = "manage:orgDefinitions",
-  AT_LEAST_ONE_ORG_MANAGER = "manage:someOrg"
+  AT_LEAST_ONE_ORG_MANAGER = "manage:someOrg" // THIS IS A FAKE ROLE - DO NOT ASSIGN IT MANUALLY
 }
 export const orgRoles = ["LEAD", "MEMBER"] as const;
 export type OrgRole = typeof orgRoles[number];

From 8f0b94a1e0e662ece69f702c217d2aff84acfe94 Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Sun, 28 Sep 2025 02:01:03 -0500
Subject: [PATCH 05/14] remove at least one org manager from all roles

---
 src/common/roles.ts | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/common/roles.ts b/src/common/roles.ts
index 3c0f9e07..1f0f8e0e 100644
--- a/src/common/roles.ts
+++ b/src/common/roles.ts
@@ -21,8 +21,9 @@ export enum AppRoles {
   VIEW_EXTERNAL_MEMBERSHIP_LIST = "view:externalMembershipList",
   MANAGE_EXTERNAL_MEMBERSHIP_LIST = "manage:externalMembershipList",
   ALL_ORG_MANAGER = "manage:orgDefinitions",
-  AT_LEAST_ONE_ORG_MANAGER = "manage:someOrg" // THIS IS A FAKE ROLE - DO NOT ASSIGN IT MANUALLY
+  AT_LEAST_ONE_ORG_MANAGER = "manage:someOrg" // THIS IS A FAKE ROLE - DO NOT ASSIGN IT MANUALLY - only used for permissioning
 }
+export const PSUEDO_ROLES = [AppRoles.AT_LEAST_ONE_ORG_MANAGER]
 export const orgRoles = ["LEAD", "MEMBER"] as const;
 export type OrgRole = typeof orgRoles[number];
 export type OrgRoleDefinition = {
@@ -32,7 +33,7 @@ export type OrgRoleDefinition = {
 
 export const allAppRoles = Object.values(AppRoles).filter(
   (value) => typeof value === "string",
-);
+).filter(value => !PSUEDO_ROLES.includes(value)); // don't assign psuedo roles by default
 
 export const AppRoleHumanMapper: Record<AppRoles, string> = {
   [AppRoles.EVENTS_MANAGER]: "Events Manager",

From 81cd435ee4b20cfc548986f58138ef4c8409f23d Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Sun, 28 Sep 2025 02:06:14 -0500
Subject: [PATCH 06/14] Add select dropdown

---
 src/ui/pages/organization/OrgInfoPage.tsx | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/src/ui/pages/organization/OrgInfoPage.tsx b/src/ui/pages/organization/OrgInfoPage.tsx
index b0e88898..df3a6a28 100644
--- a/src/ui/pages/organization/OrgInfoPage.tsx
+++ b/src/ui/pages/organization/OrgInfoPage.tsx
@@ -1,5 +1,5 @@
 import { useState, useEffect } from "react";
-import { Title, Stack, Container, Grid } from "@mantine/core";
+import { Title, Stack, Container, Grid, Select } from "@mantine/core";
 import { AuthGuard, getUserRoles } from "@ui/components/AuthGuard";
 import { useApi } from "@ui/util/api";
 import { AppRoles } from "@common/roles";
@@ -16,6 +16,7 @@ export const OrgInfoPage = () => {
   const api = useApi("core");
   const { orgRoles } = useAuth();
   const [manageableOrgs, setManagableOrgs] = useState<AcmOrg[] | null>(null);
+  const [selectedOrg, setSelectedOrg] = useState<AcmOrg | null>(null);
 
   const getCurrentInformation = async (org: AcmOrg) => {
     try {
@@ -78,6 +79,13 @@ export const OrgInfoPage = () => {
             <Stack>
               <Title order={2}>Manage Organization Info</Title>
             </Stack>
+            <Select
+              label="Select an organization you have access to"
+              placeholder="Select organization"
+              data={manageableOrgs}
+              value={selectedOrg}
+              onChange={setSelectedOrg}
+            />
           </AuthGuard>
         </Grid.Col>
       </Grid>

From ccd3aff1205ed48ceeb59ba43b9ebabbb070a0eb Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Sun, 28 Sep 2025 02:16:12 -0500
Subject: [PATCH 07/14] Make sure that leadsEntraGroupId can't be modified by
 patch request

---
 src/common/types/organizations.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/common/types/organizations.ts b/src/common/types/organizations.ts
index 7a6978a2..1b9d83e7 100644
--- a/src/common/types/organizations.ts
+++ b/src/common/types/organizations.ts
@@ -27,7 +27,7 @@ export const getOrganizationInfoResponse = z.object({
   leadsEntraGroupId: z.optional(z.string().min(1)).meta({ description: `Only returned for users with the ${AppRoleHumanMapper[AppRoles.ALL_ORG_MANAGER]} role.` })
 })
 
-export const setOrganizationMetaBody = getOrganizationInfoResponse.omit({ id: true, leads: true });
+export const setOrganizationMetaBody = getOrganizationInfoResponse.omit({ id: true, leads: true, leadsEntraGroupId: true });
 export const patchOrganizationLeadsBody = z.object({
   add: z.array(enforcedOrgLeadEntry),
   remove: z.array(z.string())

From ec8f742e8a61ff4a4a289830388e9a07f1857ddb Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Tue, 30 Sep 2025 22:26:45 -0500
Subject: [PATCH 08/14] Integrate org metadata management UI

---
 src/api/routes/organizations.ts               |   2 +-
 src/common/types/organizations.ts             |   2 +
 src/ui/Router.tsx                             |   2 +-
 .../ManageOrganizationForm.test.tsx           | 390 ++++++++++++++++++
 .../organization/ManageOrganizationForm.tsx   | 226 ++++++++++
 src/ui/pages/organization/OrgInfo.page.tsx    | 175 ++++++++
 src/ui/pages/organization/OrgInfoPage.tsx     |  94 -----
 7 files changed, 795 insertions(+), 96 deletions(-)
 create mode 100644 src/ui/pages/organization/ManageOrganizationForm.test.tsx
 create mode 100644 src/ui/pages/organization/ManageOrganizationForm.tsx
 create mode 100644 src/ui/pages/organization/OrgInfo.page.tsx
 delete mode 100644 src/ui/pages/organization/OrgInfoPage.tsx

diff --git a/src/api/routes/organizations.ts b/src/api/routes/organizations.ts
index 6f041871..b58f5167 100644
--- a/src/api/routes/organizations.ts
+++ b/src/api/routes/organizations.ts
@@ -5,6 +5,7 @@ import { withRoles, withTags } from "api/components/index.js";
 import { z } from "zod/v4";
 import {
   getOrganizationInfoResponse,
+  ORG_DATA_CACHED_DURATION,
   patchOrganizationLeadsBody,
   setOrganizationMetaBody,
 } from "common/types/organizations.js";
@@ -46,7 +47,6 @@ import { getRoleCredentials } from "api/functions/sts.js";
 import { SQSClient } from "@aws-sdk/client-sqs";
 import { sendSqsMessagesInBatches } from "api/functions/sqs.js";
 
-export const ORG_DATA_CACHED_DURATION = 300;
 export const CLIENT_HTTP_CACHE_POLICY = `public, max-age=${ORG_DATA_CACHED_DURATION}, stale-while-revalidate=${Math.floor(ORG_DATA_CACHED_DURATION * 1.1)}, stale-if-error=3600`;
 
 const organizationsPlugin: FastifyPluginAsync = async (fastify, _options) => {
diff --git a/src/common/types/organizations.ts b/src/common/types/organizations.ts
index 1b9d83e7..0d046b58 100644
--- a/src/common/types/organizations.ts
+++ b/src/common/types/organizations.ts
@@ -32,3 +32,5 @@ export const patchOrganizationLeadsBody = z.object({
   add: z.array(enforcedOrgLeadEntry),
   remove: z.array(z.string())
 });
+
+export const ORG_DATA_CACHED_DURATION = 300;
diff --git a/src/ui/Router.tsx b/src/ui/Router.tsx
index 1a89220e..98048cee 100644
--- a/src/ui/Router.tsx
+++ b/src/ui/Router.tsx
@@ -29,7 +29,7 @@ import { ViewLogsPage } from "./pages/logs/ViewLogs.page";
 import { TermsOfService } from "./pages/tos/TermsOfService.page";
 import { ManageApiKeysPage } from "./pages/apiKeys/ManageKeys.page";
 import { ManageExternalMembershipPage } from "./pages/membershipLists/MembershipListsPage";
-import { OrgInfoPage } from "./pages/organization/OrgInfoPage";
+import { OrgInfoPage } from "./pages/organization/OrgInfo.page";
 
 const ProfileRediect: React.FC = () => {
   const location = useLocation();
diff --git a/src/ui/pages/organization/ManageOrganizationForm.test.tsx b/src/ui/pages/organization/ManageOrganizationForm.test.tsx
new file mode 100644
index 00000000..59b8eebc
--- /dev/null
+++ b/src/ui/pages/organization/ManageOrganizationForm.test.tsx
@@ -0,0 +1,390 @@
+import React from "react";
+import { render, screen, act, waitFor } from "@testing-library/react";
+import userEvent from "@testing-library/user-event";
+import { vi } from "vitest";
+import { MantineProvider } from "@mantine/core";
+import { notifications } from "@mantine/notifications";
+import { ManageOrganizationForm } from "./ManageOrganizationForm";
+import { MemoryRouter } from "react-router-dom";
+
+// Mock the notifications module
+vi.mock("@mantine/notifications", () => ({
+  notifications: {
+    show: vi.fn(),
+  },
+}));
+
+describe("ManageOrganizationForm Tests", () => {
+  const getOrganizationDataMock = vi.fn();
+  const updateOrganizationDataMock = vi.fn();
+
+  const mockOrgData = {
+    description: "Test organization description",
+    website: "https://test.example.com",
+    links: [
+      { type: "DISCORD", url: "https://discord.gg/test" },
+      { type: "SLACK", url: "https://slack.com/test" },
+    ],
+  };
+
+  const renderComponent = async (props = {}) => {
+    await act(async () => {
+      render(
+        <MemoryRouter>
+          <MantineProvider
+            withGlobalClasses
+            withCssVariables
+            forceColorScheme="light"
+          >
+            <ManageOrganizationForm
+              organizationId="ACM"
+              getOrganizationData={getOrganizationDataMock}
+              updateOrganizationData={updateOrganizationDataMock}
+              {...props}
+            />
+          </MantineProvider>
+        </MemoryRouter>,
+      );
+    });
+  };
+
+  beforeEach(() => {
+    vi.clearAllMocks();
+  });
+
+  it("renders loading overlay initially", async () => {
+    getOrganizationDataMock.mockImplementation(
+      () => new Promise(() => {}), // Never resolves
+    );
+    await renderComponent();
+
+    expect(screen.getByTestId("org-loading")).toBeInTheDocument();
+  });
+
+  it("fetches and displays organization data", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgData);
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(getOrganizationDataMock).toHaveBeenCalledWith("ACM");
+    });
+
+    await waitFor(() => {
+      expect(screen.queryByTestId("org-loading")).not.toBeInTheDocument();
+    });
+
+    expect(
+      screen.getByDisplayValue("Test organization description"),
+    ).toBeInTheDocument();
+    expect(
+      screen.getByDisplayValue("https://test.example.com"),
+    ).toBeInTheDocument();
+    expect(
+      screen.getByDisplayValue("https://discord.gg/test"),
+    ).toBeInTheDocument();
+    expect(
+      screen.getByDisplayValue("https://slack.com/test"),
+    ).toBeInTheDocument();
+  });
+
+  it("handles organization data fetch failure", async () => {
+    const notificationsMock = vi.spyOn(notifications, "show");
+    getOrganizationDataMock.mockRejectedValue(new Error("Failed to fetch"));
+
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(notificationsMock).toHaveBeenCalledWith(
+        expect.objectContaining({
+          color: "red",
+          message: "Failed to load organization data",
+        }),
+      );
+    });
+
+    notificationsMock.mockRestore();
+  });
+
+  it("allows editing form fields", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgData);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(
+        screen.getByDisplayValue("Test organization description"),
+      ).toBeInTheDocument();
+    });
+
+    const descriptionField = screen.getByLabelText("Description");
+    await user.clear(descriptionField);
+    await user.type(descriptionField, "Updated description");
+
+    expect(screen.getByDisplayValue("Updated description")).toBeInTheDocument();
+  });
+
+  it("submits form with updated data", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgData);
+    updateOrganizationDataMock.mockResolvedValue(undefined);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(
+        screen.getByDisplayValue("Test organization description"),
+      ).toBeInTheDocument();
+    });
+
+    const descriptionField = screen.getByLabelText("Description");
+    await user.clear(descriptionField);
+    await user.type(descriptionField, "New description");
+
+    const submitButton = screen.getByRole("button", { name: "Save Changes" });
+    await user.click(submitButton);
+
+    await waitFor(() => {
+      expect(updateOrganizationDataMock).toHaveBeenCalledWith({
+        description: "New description",
+        website: "https://test.example.com",
+        links: [
+          { type: "DISCORD", url: "https://discord.gg/test" },
+          { type: "SLACK", url: "https://slack.com/test" },
+        ],
+      });
+    });
+  });
+
+  it("adds a new link", async () => {
+    getOrganizationDataMock.mockResolvedValue({
+      description: "Test",
+      website: "https://test.com",
+      links: [],
+    });
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(
+        screen.getByText(
+          'No links added yet. Click "Add Link" to get started.',
+        ),
+      ).toBeInTheDocument();
+    });
+
+    const addButton = screen.getByRole("button", { name: "Add Link" });
+    await user.click(addButton);
+
+    await waitFor(() => {
+      expect(screen.getByPlaceholderText("Select type")).toBeInTheDocument();
+      expect(screen.getByPlaceholderText("https://...")).toBeInTheDocument();
+    });
+  });
+
+  it("removes a link", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgData);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(
+        screen.getByDisplayValue("https://discord.gg/test"),
+      ).toBeInTheDocument();
+    });
+
+    const removeButtons = screen.getAllByRole("button", { name: "" });
+    const trashButton = removeButtons.find((btn) => btn.querySelector("svg"));
+
+    if (trashButton) {
+      await user.click(trashButton);
+    }
+
+    await waitFor(() => {
+      expect(
+        screen.queryByDisplayValue("https://discord.gg/test"),
+      ).not.toBeInTheDocument();
+    });
+  });
+
+  it("includes only non-empty links on submit", async () => {
+    getOrganizationDataMock.mockResolvedValue({
+      description: "Test",
+      website: "https://test.com",
+      links: [{ type: "DISCORD", url: "https://discord.gg/valid" }],
+    });
+    updateOrganizationDataMock.mockResolvedValue(undefined);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(
+        screen.getByDisplayValue("https://discord.gg/valid"),
+      ).toBeInTheDocument();
+    });
+
+    const submitButton = screen.getByRole("button", { name: "Save Changes" });
+    await user.click(submitButton);
+
+    await waitFor(() => {
+      expect(updateOrganizationDataMock).toHaveBeenCalledWith({
+        description: "Test",
+        website: "https://test.com",
+        links: [{ type: "DISCORD", url: "https://discord.gg/valid" }],
+      });
+    });
+  });
+
+  it("resets form when organization ID changes", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgData);
+    const { rerender } = render(
+      <MemoryRouter>
+        <MantineProvider
+          withGlobalClasses
+          withCssVariables
+          forceColorScheme="light"
+        >
+          <ManageOrganizationForm
+            organizationId="ACM"
+            getOrganizationData={getOrganizationDataMock}
+            updateOrganizationData={updateOrganizationDataMock}
+          />
+        </MantineProvider>
+      </MemoryRouter>,
+    );
+
+    await waitFor(() => {
+      expect(
+        screen.getByDisplayValue("Test organization description"),
+      ).toBeInTheDocument();
+    });
+
+    // Change organization ID
+    const newOrgData = {
+      description: "Different org",
+      website: "https://different.com",
+      links: [],
+    };
+    getOrganizationDataMock.mockResolvedValue(newOrgData);
+
+    await act(async () => {
+      rerender(
+        <MemoryRouter>
+          <MantineProvider
+            withGlobalClasses
+            withCssVariables
+            forceColorScheme="light"
+          >
+            <ManageOrganizationForm
+              organizationId="SIGWeb"
+              getOrganizationData={getOrganizationDataMock}
+              updateOrganizationData={updateOrganizationDataMock}
+            />
+          </MantineProvider>
+        </MemoryRouter>,
+      );
+    });
+
+    await waitFor(() => {
+      expect(getOrganizationDataMock).toHaveBeenCalledWith("SIGWeb");
+    });
+
+    await waitFor(() => {
+      expect(screen.getByDisplayValue("Different org")).toBeInTheDocument();
+    });
+  });
+
+  it("handles missing optional fields", async () => {
+    getOrganizationDataMock.mockResolvedValue({
+      description: undefined,
+      website: undefined,
+      links: undefined,
+    });
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.queryByTestId("org-loading")).not.toBeInTheDocument();
+    });
+
+    expect(screen.getByLabelText("Description")).toHaveValue("");
+    expect(screen.getByLabelText("Website")).toHaveValue("");
+    expect(
+      screen.getByText('No links added yet. Click "Add Link" to get started.'),
+    ).toBeInTheDocument();
+  });
+
+  it("trims whitespace from fields on submit", async () => {
+    getOrganizationDataMock.mockResolvedValue({
+      description: "  Test with spaces  ",
+      website: "  https://test.com  ",
+      links: [],
+    });
+    updateOrganizationDataMock.mockResolvedValue(undefined);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.queryByTestId("org-loading")).not.toBeInTheDocument();
+    });
+
+    const submitButton = screen.getByRole("button", { name: "Save Changes" });
+    await user.click(submitButton);
+
+    await waitFor(() => {
+      expect(updateOrganizationDataMock).toHaveBeenCalledWith({
+        description: "Test with spaces",
+        website: "https://test.com",
+        links: undefined,
+      });
+    });
+  });
+
+  it("converts empty strings to undefined on submit", async () => {
+    getOrganizationDataMock.mockResolvedValue({
+      description: "Test",
+      website: "https://test.com",
+      links: [],
+    });
+    updateOrganizationDataMock.mockResolvedValue(undefined);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.queryByTestId("org-loading")).not.toBeInTheDocument();
+    });
+
+    // Clear the fields
+    const descriptionField = screen.getByLabelText("Description");
+    await user.clear(descriptionField);
+
+    const websiteField = screen.getByLabelText("Website");
+    await user.clear(websiteField);
+
+    const submitButton = screen.getByRole("button", { name: "Save Changes" });
+    await user.click(submitButton);
+
+    await waitFor(() => {
+      expect(updateOrganizationDataMock).toHaveBeenCalledWith({
+        description: undefined,
+        website: undefined,
+        links: undefined,
+      });
+    });
+  });
+
+  it("disables submit button while loading", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgData);
+    updateOrganizationDataMock.mockImplementation(
+      () => new Promise((resolve) => setTimeout(resolve, 1000)),
+    );
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.queryByTestId("org-loading")).not.toBeInTheDocument();
+    });
+
+    const submitButton = screen.getByRole("button", { name: "Save Changes" });
+    await user.click(submitButton);
+
+    expect(submitButton).toBeDisabled();
+  });
+});
diff --git a/src/ui/pages/organization/ManageOrganizationForm.tsx b/src/ui/pages/organization/ManageOrganizationForm.tsx
new file mode 100644
index 00000000..5eece819
--- /dev/null
+++ b/src/ui/pages/organization/ManageOrganizationForm.tsx
@@ -0,0 +1,226 @@
+import React, { useEffect, useState } from "react";
+import {
+  TextInput,
+  Textarea,
+  Button,
+  Group,
+  Box,
+  LoadingOverlay,
+  Alert,
+  Title,
+  Text,
+  ActionIcon,
+  Stack,
+  Select,
+  Paper,
+} from "@mantine/core";
+import { useForm } from "@mantine/form";
+import { notifications } from "@mantine/notifications";
+import { IconPlus, IconTrash, IconInfoCircle } from "@tabler/icons-react";
+import {
+  setOrganizationMetaBody,
+  validOrgLinkTypes,
+} from "@common/types/organizations";
+import { zod4Resolver as zodResolver } from "mantine-form-zod-resolver";
+import * as z from "zod/v4";
+
+type OrganizationData = z.infer<typeof setOrganizationMetaBody>;
+
+interface ManageOrganizationFormProps {
+  organizationId: string;
+  getOrganizationData: (orgId: string) => Promise<OrganizationData>;
+  updateOrganizationData: (data: OrganizationData) => Promise<void>;
+  firstTime?: boolean;
+}
+
+export const ManageOrganizationForm: React.FC<ManageOrganizationFormProps> = ({
+  organizationId,
+  getOrganizationData,
+  updateOrganizationData,
+  firstTime = false,
+}) => {
+  const [orgData, setOrgData] = useState<OrganizationData | null | undefined>(
+    undefined,
+  );
+  const [loading, setLoading] = useState(false);
+
+  const form = useForm({
+    validate: zodResolver(setOrganizationMetaBody),
+    initialValues: {
+      description: undefined,
+      website: undefined,
+      links: undefined,
+    } as OrganizationData,
+  });
+
+  const fetchOrganizationData = async () => {
+    setLoading(true);
+    try {
+      const data = await getOrganizationData(organizationId);
+      setOrgData(data);
+      // Only extract the fields that are allowed in setOrganizationMetaBody
+      // (excludes id, leads, leadsEntraGroupId)
+      form.setValues({
+        description: data.description,
+        website: data.website,
+        links: data.links || [],
+      });
+    } catch (e) {
+      console.error(e);
+      setOrgData(null);
+      notifications.show({
+        color: "red",
+        message: "Failed to load organization data",
+      });
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  useEffect(() => {
+    // Reset form state when organization changes
+    setOrgData(undefined);
+    setLoading(false);
+    form.reset();
+
+    // Fetch new organization data
+    fetchOrganizationData();
+  }, [organizationId]);
+
+  const handleSubmit = async () => {
+    if (!orgData) {
+      return;
+    }
+    setLoading(true);
+    try {
+      const values = form.values;
+
+      // Only send the fields allowed by setOrganizationMetaBody schema
+      // (description, website, links - NO id, leads, or leadsEntraGroupId)
+      const cleanedData: OrganizationData = {
+        description: values.description?.trim() || undefined,
+        website: values.website?.trim() || undefined,
+        links:
+          values.links && values.links.length > 0
+            ? values.links.filter((link) => link.url.trim() && link.type)
+            : undefined,
+      };
+
+      await updateOrganizationData(cleanedData);
+    } catch (e) {
+      console.error(e);
+    } finally {
+      setLoading(false);
+    }
+  };
+
+  const addLink = () => {
+    form.insertListItem("links", { type: "OTHER", url: "" });
+  };
+
+  const removeLink = (index: number) => {
+    form.removeListItem("links", index);
+  };
+
+  if (orgData === undefined) {
+    return <LoadingOverlay visible data-testid="org-loading" />;
+  }
+
+  return (
+    <>
+      <Box>
+        <form
+          onSubmit={(e) => {
+            e.preventDefault();
+            handleSubmit();
+          }}
+        >
+          <Textarea
+            label="Description"
+            description="A brief description of your organization"
+            placeholder="We are a student organization focused on..."
+            {...form.getInputProps("description")}
+            autosize
+            minRows={3}
+            maxRows={6}
+            mb="md"
+          />
+
+          <TextInput
+            label="Website"
+            description="Your organization's website URL"
+            placeholder="https://example.com"
+            {...form.getInputProps("website")}
+            mb="md"
+          />
+
+          <Paper withBorder p="md" mb="md">
+            <Group justify="space-between" mb="sm">
+              <div>
+                <Text fw={500}>Social & Communication Links</Text>
+                <Text size="sm" c="dimmed">
+                  Add links to your social media and communication platforms
+                </Text>
+              </div>
+              <Button
+                leftSection={<IconPlus size={16} />}
+                onClick={addLink}
+                variant="light"
+                size="sm"
+              >
+                Add Link
+              </Button>
+            </Group>
+
+            {form.values.links && form.values.links.length > 0 ? (
+              <Stack gap="md">
+                {form.values.links.map((_, index) => (
+                  <Group key={index} align="start" gap="sm">
+                    <Select
+                      label="Type"
+                      placeholder="Select type"
+                      data={validOrgLinkTypes.map((type) => ({
+                        value: type,
+                        label: type.charAt(0) + type.slice(1).toLowerCase(),
+                      }))}
+                      {...form.getInputProps(`links.${index}.type`)}
+                      style={{ flex: 1, minWidth: 150 }}
+                      required
+                    />
+
+                    <TextInput
+                      label="URL"
+                      placeholder="https://..."
+                      {...form.getInputProps(`links.${index}.url`)}
+                      style={{ flex: 2, minWidth: 250 }}
+                      required
+                    />
+
+                    <ActionIcon
+                      color="red"
+                      variant="light"
+                      onClick={() => removeLink(index)}
+                      mt={28}
+                    >
+                      <IconTrash size={16} />
+                    </ActionIcon>
+                  </Group>
+                ))}
+              </Stack>
+            ) : (
+              <Text size="sm" c="dimmed" ta="center" py="md">
+                No links added yet. Click "Add Link" to get started.
+              </Text>
+            )}
+          </Paper>
+
+          <Group mt="md">
+            <Button type="submit" loading={loading} disabled={loading}>
+              Save Changes
+            </Button>
+          </Group>
+        </form>
+      </Box>
+    </>
+  );
+};
diff --git a/src/ui/pages/organization/OrgInfo.page.tsx b/src/ui/pages/organization/OrgInfo.page.tsx
new file mode 100644
index 00000000..4a47699f
--- /dev/null
+++ b/src/ui/pages/organization/OrgInfo.page.tsx
@@ -0,0 +1,175 @@
+import { useState, useEffect } from "react";
+import { Title, Stack, Container, Select } from "@mantine/core";
+import { AuthGuard, getUserRoles } from "@ui/components/AuthGuard";
+import { useApi } from "@ui/util/api";
+import { AppRoles } from "@common/roles";
+import { notifications } from "@mantine/notifications";
+import { IconAlertCircle } from "@tabler/icons-react";
+import FullScreenLoader from "@ui/components/AuthContext/LoadingScreen";
+import { AllOrganizationList } from "@acm-uiuc/js-shared";
+import { useAuth } from "@ui/components/AuthContext";
+import { ManageOrganizationForm } from "./ManageOrganizationForm";
+import {
+  ORG_DATA_CACHED_DURATION,
+  setOrganizationMetaBody,
+} from "@common/types/organizations";
+import * as z from "zod/v4";
+import { useSearchParams } from "react-router-dom";
+
+type AcmOrg = (typeof AllOrganizationList)[number];
+type OrganizationData = z.infer<typeof setOrganizationMetaBody>;
+
+export const OrgInfoPage = () => {
+  const api = useApi("core");
+  const { orgRoles } = useAuth();
+  const [searchParams, setSearchParams] = useSearchParams();
+  const [manageableOrgs, setManagableOrgs] = useState<AcmOrg[] | null>(null);
+
+  // Get org from URL query parameter
+  const orgFromUrl = searchParams.get("org") as AcmOrg | null;
+  const [selectedOrg, setSelectedOrg] = useState<AcmOrg | null>(orgFromUrl);
+
+  const getOrganizationData = async (
+    org: AcmOrg,
+  ): Promise<OrganizationData> => {
+    try {
+      const response = await api.get(
+        `/api/v1/organizations/${org}?ts=${Date.now()}`,
+      );
+      return response.data;
+    } catch (error: any) {
+      console.error("Failed to get org info:", error);
+      notifications.show({
+        title: `Failed to get information for ${org}.`,
+        message: "Please try again or contact support.",
+        color: "red",
+        icon: <IconAlertCircle size={16} />,
+      });
+      throw error;
+    }
+  };
+
+  const updateOrganizationData = async (
+    org: AcmOrg,
+    data: OrganizationData,
+  ): Promise<void> => {
+    try {
+      await api.post(`/api/v1/organizations/${org}/meta`, data);
+      notifications.show({
+        title: `${org} updated`,
+        message: `Changes may take up to ${ORG_DATA_CACHED_DURATION / 60} minutes to reflect to all users.`,
+        color: "green",
+      });
+    } catch (error: any) {
+      console.error("Failed to update org info:", error);
+
+      // Extract error message if available
+      const errorMessage =
+        error.response?.data?.message || "Please try again or contact support.";
+
+      notifications.show({
+        title: `Failed to update information for ${org}.`,
+        message: errorMessage,
+        color: "red",
+        icon: <IconAlertCircle size={16} />,
+      });
+      throw error;
+    }
+  };
+
+  useEffect(() => {
+    (async () => {
+      const appRoles = await getUserRoles("core");
+      if (appRoles?.includes(AppRoles.ALL_ORG_MANAGER)) {
+        setManagableOrgs(AllOrganizationList);
+        return;
+      }
+      setManagableOrgs(
+        orgRoles.filter((x) => x.role === "LEAD").map((x) => x.org),
+      );
+    })();
+  }, [orgRoles]);
+
+  // Update URL when selected org changes
+  const handleOrgChange = (org: AcmOrg | null) => {
+    setSelectedOrg(org);
+    if (org) {
+      setSearchParams({ org });
+    } else {
+      setSearchParams({});
+    }
+  };
+
+  // Initialize selected org from URL on mount
+  useEffect(() => {
+    if (orgFromUrl && manageableOrgs?.includes(orgFromUrl)) {
+      setSelectedOrg(orgFromUrl);
+    } else if (
+      orgFromUrl &&
+      manageableOrgs &&
+      !manageableOrgs.includes(orgFromUrl)
+    ) {
+      // Clear invalid org from URL
+      setSearchParams({});
+      setSelectedOrg(null);
+    }
+  }, [manageableOrgs, orgFromUrl]);
+
+  if (!manageableOrgs) {
+    return <FullScreenLoader />;
+  }
+
+  if (manageableOrgs.length === 0) {
+    // Need to show access denied.
+    return (
+      <AuthGuard
+        resourceDef={{
+          service: "core",
+          validRoles: [AppRoles.AT_LEAST_ONE_ORG_MANAGER],
+        }}
+      >
+        {null}
+      </AuthGuard>
+    );
+  }
+
+  return (
+    <Container size="lg" py="md">
+      <AuthGuard
+        resourceDef={{
+          service: "core",
+          validRoles: [
+            AppRoles.AT_LEAST_ONE_ORG_MANAGER,
+            AppRoles.ALL_ORG_MANAGER,
+          ],
+        }}
+      >
+        <Stack gap="lg">
+          <div>
+            <Title order={2}>Manage Organization Info</Title>
+            <Select
+              label="Select an organization"
+              description="Only organizations you have permission to manage are shown."
+              placeholder="Select organization"
+              data={manageableOrgs}
+              value={selectedOrg}
+              onChange={handleOrgChange}
+              mt="md"
+              maw={400}
+            />
+          </div>
+
+          {selectedOrg && (
+            <ManageOrganizationForm
+              organizationId={selectedOrg}
+              getOrganizationData={getOrganizationData}
+              updateOrganizationData={(data) =>
+                updateOrganizationData(selectedOrg, data)
+              }
+            />
+          )}
+        </Stack>
+      </AuthGuard>
+    </Container>
+  );
+};
diff --git a/src/ui/pages/organization/OrgInfoPage.tsx b/src/ui/pages/organization/OrgInfoPage.tsx
deleted file mode 100644
index df3a6a28..00000000
--- a/src/ui/pages/organization/OrgInfoPage.tsx
+++ /dev/null
@@ -1,94 +0,0 @@
-import { useState, useEffect } from "react";
-import { Title, Stack, Container, Grid, Select } from "@mantine/core";
-import { AuthGuard, getUserRoles } from "@ui/components/AuthGuard";
-import { useApi } from "@ui/util/api";
-import { AppRoles } from "@common/roles";
-import { notifications } from "@mantine/notifications";
-import { IconAlertCircle } from "@tabler/icons-react";
-import FullScreenLoader from "@ui/components/AuthContext/LoadingScreen";
-import { AxiosError } from "axios";
-import { AllOrganizationList } from "@acm-uiuc/js-shared";
-import { useAuth } from "@ui/components/AuthContext";
-
-type AcmOrg = (typeof AllOrganizationList)[number];
-
-export const OrgInfoPage = () => {
-  const api = useApi("core");
-  const { orgRoles } = useAuth();
-  const [manageableOrgs, setManagableOrgs] = useState<AcmOrg[] | null>(null);
-  const [selectedOrg, setSelectedOrg] = useState<AcmOrg | null>(null);
-
-  const getCurrentInformation = async (org: AcmOrg) => {
-    try {
-      const result = await api.post<{
-        members: string[];
-        notMembers: string[];
-      }>(`/api/v1/organization/${org}`);
-      return result.data;
-    } catch (error: any) {
-      console.error("Failed to check get org info:", error);
-      notifications.show({
-        title: `Failed to get information for ${org}.`,
-        message: "Please try again or contact support.",
-        color: "red",
-        icon: <IconAlertCircle size={16} />,
-      });
-      throw error;
-    }
-  };
-
-  useEffect(() => {
-    (async () => {
-      const appRoles = await getUserRoles("core");
-      if (appRoles?.includes(AppRoles.ALL_ORG_MANAGER)) {
-        setManagableOrgs(AllOrganizationList);
-        return;
-      }
-      setManagableOrgs(
-        orgRoles.filter((x) => x.role === "LEAD").map((x) => x.org),
-      );
-    })();
-  }, [orgRoles]);
-
-  if (!manageableOrgs) {
-    return <FullScreenLoader />;
-  }
-  if (manageableOrgs.length === 0) {
-    // Need to show access denied.
-    return (
-      <AuthGuard
-        resourceDef={{
-          service: "core",
-          validRoles: [AppRoles.AT_LEAST_ONE_ORG_MANAGER],
-        }}
-      >
-        {null}
-      </AuthGuard>
-    );
-  }
-  return (
-    <Container fluid m="lg">
-      <Grid>
-        <Grid.Col span={{ base: 12, lg: 6 }}>
-          <AuthGuard
-            resourceDef={{
-              service: "core",
-              validRoles: [],
-            }}
-          >
-            <Stack>
-              <Title order={2}>Manage Organization Info</Title>
-            </Stack>
-            <Select
-              label="Select an organization you have access to"
-              placeholder="Select organization"
-              data={manageableOrgs}
-              value={selectedOrg}
-              onChange={setSelectedOrg}
-            />
-          </AuthGuard>
-        </Grid.Col>
-      </Grid>
-    </Container>
-  );
-};

From d1d437507fb93da1b0a6f235b0033bf07b81c429 Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Tue, 30 Sep 2025 22:48:18 -0500
Subject: [PATCH 09/14] Add the ability to manage leads of orgs

---
 .../ManageOrganizationForm.test.tsx           | 426 ++++++++++++++++++
 .../organization/ManageOrganizationForm.tsx   | 324 ++++++++++++-
 src/ui/pages/organization/OrgInfo.page.tsx    |  32 ++
 3 files changed, 779 insertions(+), 3 deletions(-)

diff --git a/src/ui/pages/organization/ManageOrganizationForm.test.tsx b/src/ui/pages/organization/ManageOrganizationForm.test.tsx
index 59b8eebc..5e13fb80 100644
--- a/src/ui/pages/organization/ManageOrganizationForm.test.tsx
+++ b/src/ui/pages/organization/ManageOrganizationForm.test.tsx
@@ -388,3 +388,429 @@ describe("ManageOrganizationForm Tests", () => {
     expect(submitButton).toBeDisabled();
   });
 });
+
+describe("ManageOrganizationForm - Lead Management Tests", () => {
+  const getOrganizationDataMock = vi.fn();
+  const updateOrganizationDataMock = vi.fn();
+  const updateLeadsMock = vi.fn();
+
+  const mockOrgDataWithLeads = {
+    description: "Test organization",
+    website: "https://test.com",
+    links: [],
+    leads: [
+      {
+        name: "John Doe",
+        username: "jdoe@illinois.edu",
+        title: "Chair",
+      },
+      {
+        name: "Jane Smith",
+        username: "jsmith@illinois.edu",
+        title: "Vice Chair",
+      },
+    ],
+  };
+
+  const renderComponent = async (props = {}) => {
+    await act(async () => {
+      render(
+        <MemoryRouter>
+          <MantineProvider
+            withGlobalClasses
+            withCssVariables
+            forceColorScheme="light"
+          >
+            <ManageOrganizationForm
+              organizationId="ACM"
+              getOrganizationData={getOrganizationDataMock}
+              updateOrganizationData={updateOrganizationDataMock}
+              updateLeads={updateLeadsMock}
+              {...props}
+            />
+          </MantineProvider>
+        </MemoryRouter>,
+      );
+    });
+  };
+
+  beforeEach(() => {
+    vi.clearAllMocks();
+  });
+
+  it("displays existing leads", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+      expect(screen.getByText("jdoe@illinois.edu")).toBeInTheDocument();
+      expect(screen.getByText("Chair")).toBeInTheDocument();
+      expect(screen.getByText("Jane Smith")).toBeInTheDocument();
+      expect(screen.getByText("jsmith@illinois.edu")).toBeInTheDocument();
+      expect(screen.getByText("Vice Chair")).toBeInTheDocument();
+    });
+  });
+
+  it("shows 'No leads found' when there are no leads", async () => {
+    getOrganizationDataMock.mockResolvedValue({
+      description: "Test",
+      website: "https://test.com",
+      links: [],
+      leads: [],
+    });
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("No leads found.")).toBeInTheDocument();
+    });
+  });
+
+  it("adds a new lead to the queue", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Fill in new lead form
+    await user.type(screen.getByLabelText("Lead Name"), "Bob Wilson");
+    await user.type(
+      screen.getByLabelText("Lead Email"),
+      "bwilson@illinois.edu",
+    );
+    await user.type(screen.getByLabelText("Lead Title"), "Treasurer");
+
+    // Click Add Lead button
+    const addButton = screen.getByRole("button", { name: "Add Lead" });
+    await user.click(addButton);
+
+    // Check that the lead is queued
+    await waitFor(() => {
+      expect(screen.getByText("Bob Wilson")).toBeInTheDocument();
+      expect(screen.getByText("bwilson@illinois.edu")).toBeInTheDocument();
+      expect(screen.getByText("Treasurer")).toBeInTheDocument();
+      expect(screen.getByText("Queued for addition")).toBeInTheDocument();
+    });
+  });
+
+  it("validates email format when adding lead", async () => {
+    const notificationsMock = vi.spyOn(notifications, "show");
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Fill in form with invalid email
+    await user.type(screen.getByLabelText("Lead Name"), "Bob Wilson");
+    await user.type(screen.getByLabelText("Lead Email"), "invalid-email");
+    await user.type(screen.getByLabelText("Lead Title"), "Treasurer");
+
+    const addButton = screen.getByRole("button", { name: "Add Lead" });
+    await user.click(addButton);
+
+    await waitFor(() => {
+      expect(notificationsMock).toHaveBeenCalledWith(
+        expect.objectContaining({
+          title: "Invalid Email",
+          message: "Please enter a valid email address.",
+          color: "orange",
+        }),
+      );
+    });
+
+    notificationsMock.mockRestore();
+  });
+
+  it("prevents adding duplicate leads", async () => {
+    const notificationsMock = vi.spyOn(notifications, "show");
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Try to add existing lead
+    await user.type(screen.getByLabelText("Lead Name"), "John Doe");
+    await user.type(screen.getByLabelText("Lead Email"), "jdoe@illinois.edu");
+    await user.type(screen.getByLabelText("Lead Title"), "Member");
+
+    const addButton = screen.getByRole("button", { name: "Add Lead" });
+    await user.click(addButton);
+
+    await waitFor(() => {
+      expect(notificationsMock).toHaveBeenCalledWith(
+        expect.objectContaining({
+          title: "Duplicate Lead",
+          message: "This user is already a lead or queued for addition.",
+          color: "orange",
+        }),
+      );
+    });
+
+    notificationsMock.mockRestore();
+  });
+
+  it("queues a lead for removal", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Find and click the Remove button for John Doe
+    const removeButtons = screen.getAllByRole("button", { name: "Remove" });
+    await user.click(removeButtons[0]);
+
+    // Check that the lead is queued for removal
+    await waitFor(() => {
+      expect(screen.getByText("Queued for removal")).toBeInTheDocument();
+    });
+  });
+
+  it("cancels a queued removal", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Queue for removal
+    const removeButtons = screen.getAllByRole("button", { name: "Remove" });
+    await user.click(removeButtons[0]);
+
+    await waitFor(() => {
+      expect(screen.getByText("Queued for removal")).toBeInTheDocument();
+    });
+
+    // Cancel the removal
+    const cancelButton = screen.getByRole("button", { name: "Cancel" });
+    await user.click(cancelButton);
+
+    await waitFor(() => {
+      expect(screen.queryByText("Queued for removal")).not.toBeInTheDocument();
+      expect(screen.getAllByText("Active").length).toBeGreaterThan(0);
+    });
+  });
+
+  it("cancels a queued addition", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Add a new lead
+    await user.type(screen.getByLabelText("Lead Name"), "Bob Wilson");
+    await user.type(
+      screen.getByLabelText("Lead Email"),
+      "bwilson@illinois.edu",
+    );
+    await user.type(screen.getByLabelText("Lead Title"), "Treasurer");
+    await user.click(screen.getByRole("button", { name: "Add Lead" }));
+
+    await waitFor(() => {
+      expect(screen.getByText("Bob Wilson")).toBeInTheDocument();
+    });
+
+    // Cancel the addition
+    const cancelAddButton = screen.getByRole("button", { name: "Cancel Add" });
+    await user.click(cancelAddButton);
+
+    await waitFor(() => {
+      expect(screen.queryByText("Bob Wilson")).not.toBeInTheDocument();
+    });
+  });
+
+  it("opens confirmation modal when saving lead changes", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Add a new lead
+    await user.type(screen.getByLabelText("Lead Name"), "Bob Wilson");
+    await user.type(
+      screen.getByLabelText("Lead Email"),
+      "bwilson@illinois.edu",
+    );
+    await user.type(screen.getByLabelText("Lead Title"), "Treasurer");
+    await user.click(screen.getByRole("button", { name: "Add Lead" }));
+
+    // Click save lead changes
+    const saveButton = screen.getByRole("button", {
+      name: /Save Lead Changes/,
+    });
+    await user.click(saveButton);
+
+    // Check modal appears
+    await waitFor(() => {
+      expect(screen.getByText("Confirm Changes")).toBeInTheDocument();
+      expect(screen.getByText("Leads to Add:")).toBeInTheDocument();
+    });
+  });
+
+  it("saves lead changes when confirmed", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    updateLeadsMock.mockResolvedValue(undefined);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Add a new lead
+    await user.type(screen.getByLabelText("Lead Name"), "Bob Wilson");
+    await user.type(
+      screen.getByLabelText("Lead Email"),
+      "bwilson@illinois.edu",
+    );
+    await user.type(screen.getByLabelText("Lead Title"), "Treasurer");
+    await user.click(screen.getByRole("button", { name: "Add Lead" }));
+
+    // Queue a removal
+    const removeButtons = screen.getAllByRole("button", { name: "Remove" });
+    await user.click(removeButtons[0]);
+
+    // Open modal and confirm
+    const saveButton = screen.getByRole("button", {
+      name: /Save Lead Changes/,
+    });
+    await user.click(saveButton);
+
+    await waitFor(() => {
+      expect(screen.getByText("Confirm Changes")).toBeInTheDocument();
+    });
+
+    const confirmButton = screen.getByRole("button", {
+      name: "Confirm and Save",
+    });
+    await user.click(confirmButton);
+
+    // Verify the update function was called correctly
+    await waitFor(() => {
+      expect(updateLeadsMock).toHaveBeenCalledWith(
+        [
+          {
+            name: "Bob Wilson",
+            username: "bwilson@illinois.edu",
+            title: "Treasurer",
+          },
+        ],
+        ["jdoe@illinois.edu"],
+      );
+    });
+  });
+
+  it("disables save button when no changes are queued", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    const saveButton = screen.getByRole("button", {
+      name: /Save Lead Changes/,
+    });
+    expect(saveButton).toBeDisabled();
+  });
+
+  it("clears form fields after adding a lead", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Fill in and submit form
+    const nameInput = screen.getByLabelText("Lead Name");
+    const emailInput = screen.getByLabelText("Lead Email");
+    const titleInput = screen.getByLabelText("Lead Title");
+
+    await user.type(nameInput, "Bob Wilson");
+    await user.type(emailInput, "bwilson@illinois.edu");
+    await user.type(titleInput, "Treasurer");
+    await user.click(screen.getByRole("button", { name: "Add Lead" }));
+
+    // Check that fields are cleared
+    await waitFor(() => {
+      expect(nameInput).toHaveValue("");
+      expect(emailInput).toHaveValue("");
+      expect(titleInput).toHaveValue("");
+    });
+  });
+
+  it("shows error notification when all fields are not filled", async () => {
+    const notificationsMock = vi.spyOn(notifications, "show");
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    const user = userEvent.setup();
+    await renderComponent();
+
+    await waitFor(() => {
+      expect(screen.getByText("John Doe")).toBeInTheDocument();
+    });
+
+    // Try to add without filling all fields
+    await user.type(screen.getByLabelText("Lead Name"), "Bob Wilson");
+    await user.click(screen.getByRole("button", { name: "Add Lead" }));
+
+    await waitFor(() => {
+      expect(notificationsMock).toHaveBeenCalledWith(
+        expect.objectContaining({
+          title: "Invalid Input",
+          message: "All fields are required to add a lead.",
+          color: "orange",
+        }),
+      );
+    });
+
+    notificationsMock.mockRestore();
+  });
+
+  it("does not show lead management section when updateLeads is not provided", async () => {
+    getOrganizationDataMock.mockResolvedValue(mockOrgDataWithLeads);
+    await act(async () => {
+      render(
+        <MemoryRouter>
+          <MantineProvider
+            withGlobalClasses
+            withCssVariables
+            forceColorScheme="light"
+          >
+            <ManageOrganizationForm
+              organizationId="ACM"
+              getOrganizationData={getOrganizationDataMock}
+              updateOrganizationData={updateOrganizationDataMock}
+            />
+          </MantineProvider>
+        </MemoryRouter>,
+      );
+    });
+
+    await waitFor(() => {
+      expect(screen.queryByTestId("org-loading")).not.toBeInTheDocument();
+    });
+
+    expect(screen.queryByText("Organization Leads")).not.toBeInTheDocument();
+  });
+});
diff --git a/src/ui/pages/organization/ManageOrganizationForm.tsx b/src/ui/pages/organization/ManageOrganizationForm.tsx
index 5eece819..c1b21042 100644
--- a/src/ui/pages/organization/ManageOrganizationForm.tsx
+++ b/src/ui/pages/organization/ManageOrganizationForm.tsx
@@ -13,11 +13,17 @@ import {
   Stack,
   Select,
   Paper,
+  Table,
+  Badge,
+  Avatar,
+  Modal,
+  Divider,
 } from "@mantine/core";
 import { useForm } from "@mantine/form";
 import { notifications } from "@mantine/notifications";
-import { IconPlus, IconTrash, IconInfoCircle } from "@tabler/icons-react";
+import { IconPlus, IconTrash, IconUserPlus } from "@tabler/icons-react";
 import {
+  LeadEntry,
   setOrganizationMetaBody,
   validOrgLinkTypes,
 } from "@common/types/organizations";
@@ -28,8 +34,11 @@ type OrganizationData = z.infer<typeof setOrganizationMetaBody>;
 
 interface ManageOrganizationFormProps {
   organizationId: string;
-  getOrganizationData: (orgId: string) => Promise<OrganizationData>;
+  getOrganizationData: (
+    orgId: string,
+  ) => Promise<OrganizationData & { leads?: LeadEntry[] }>;
   updateOrganizationData: (data: OrganizationData) => Promise<void>;
+  updateLeads?: (toAdd: LeadEntry[], toRemove: string[]) => Promise<void>;
   firstTime?: boolean;
 }
 
@@ -37,13 +46,24 @@ export const ManageOrganizationForm: React.FC<ManageOrganizationFormProps> = ({
   organizationId,
   getOrganizationData,
   updateOrganizationData,
-  firstTime = false,
+  updateLeads,
 }) => {
   const [orgData, setOrgData] = useState<OrganizationData | null | undefined>(
     undefined,
   );
   const [loading, setLoading] = useState(false);
 
+  // Lead management state
+  const [currentLeads, setCurrentLeads] = useState<LeadEntry[]>([]);
+  const [toAdd, setToAdd] = useState<LeadEntry[]>([]);
+  const [toRemove, setToRemove] = useState<string[]>([]);
+  const [confirmModalOpen, setConfirmModalOpen] = useState(false);
+
+  // New lead form state
+  const [newLeadName, setNewLeadName] = useState("");
+  const [newLeadEmail, setNewLeadEmail] = useState("");
+  const [newLeadTitle, setNewLeadTitle] = useState("");
+
   const form = useForm({
     validate: zodResolver(setOrganizationMetaBody),
     initialValues: {
@@ -58,6 +78,10 @@ export const ManageOrganizationForm: React.FC<ManageOrganizationFormProps> = ({
     try {
       const data = await getOrganizationData(organizationId);
       setOrgData(data);
+      setCurrentLeads(data.leads || []);
+      setToAdd([]);
+      setToRemove([]);
+
       // Only extract the fields that are allowed in setOrganizationMetaBody
       // (excludes id, leads, leadsEntraGroupId)
       form.setValues({
@@ -82,11 +106,99 @@ export const ManageOrganizationForm: React.FC<ManageOrganizationFormProps> = ({
     setOrgData(undefined);
     setLoading(false);
     form.reset();
+    setCurrentLeads([]);
+    setToAdd([]);
+    setToRemove([]);
+    setNewLeadName("");
+    setNewLeadEmail("");
+    setNewLeadTitle("");
 
     // Fetch new organization data
     fetchOrganizationData();
   }, [organizationId]);
 
+  const handleAddLead = () => {
+    if (!newLeadName.trim() || !newLeadEmail.trim() || !newLeadTitle.trim()) {
+      notifications.show({
+        title: "Invalid Input",
+        message: "All fields are required to add a lead.",
+        color: "orange",
+      });
+      return;
+    }
+
+    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+    if (!emailRegex.test(newLeadEmail)) {
+      notifications.show({
+        title: "Invalid Email",
+        message: "Please enter a valid email address.",
+        color: "orange",
+      });
+      return;
+    }
+
+    if (
+      currentLeads.some((lead) => lead.username === newLeadEmail) ||
+      toAdd.some((lead) => lead.username === newLeadEmail)
+    ) {
+      notifications.show({
+        title: "Duplicate Lead",
+        message: "This user is already a lead or queued for addition.",
+        color: "orange",
+      });
+      return;
+    }
+
+    setToAdd((prev) => [
+      ...prev,
+      {
+        name: newLeadName.trim(),
+        username: newLeadEmail.trim(),
+        title: newLeadTitle.trim(),
+      },
+    ]);
+
+    setNewLeadName("");
+    setNewLeadEmail("");
+    setNewLeadTitle("");
+  };
+
+  const handleQueueRemove = (email: string) => {
+    if (!toRemove.includes(email)) {
+      setToRemove((prev) => [...prev, email]);
+    }
+  };
+
+  const handleCancelRemove = (email: string) => {
+    setToRemove((prev) => prev.filter((e) => e !== email));
+  };
+
+  const handleCancelAdd = (email: string) => {
+    setToAdd((prev) => prev.filter((lead) => lead.username !== email));
+  };
+
+  const handleSaveLeads = async () => {
+    if (!updateLeads) {
+      notifications.show({
+        title: "Feature Not Available",
+        message: "Lead management is not available for this organization.",
+        color: "orange",
+      });
+      return;
+    }
+
+    setLoading(true);
+    try {
+      await updateLeads(toAdd, toRemove);
+      await fetchOrganizationData();
+    } catch (error) {
+      console.error(error);
+    } finally {
+      setLoading(false);
+      setConfirmModalOpen(false);
+    }
+  };
+
   const handleSubmit = async () => {
     if (!orgData) {
       return;
@@ -122,6 +234,11 @@ export const ManageOrganizationForm: React.FC<ManageOrganizationFormProps> = ({
     form.removeListItem("links", index);
   };
 
+  const allDisplayLeads = [
+    ...currentLeads.map((lead) => ({ ...lead, isNew: false })),
+    ...toAdd.map((lead) => ({ ...lead, isNew: true })),
+  ];
+
   if (orgData === undefined) {
     return <LoadingOverlay visible data-testid="org-loading" />;
   }
@@ -220,6 +337,207 @@ export const ManageOrganizationForm: React.FC<ManageOrganizationFormProps> = ({
             </Button>
           </Group>
         </form>
+
+        {updateLeads && (
+          <>
+            <Divider my="xl" />
+
+            <Paper withBorder p="md" mb="md">
+              <Title order={4} mb="md">
+                Organization Leads
+              </Title>
+              <Text size="sm" c="dimmed" mb="md">
+                Manage who has leadership permissions for this organization
+              </Text>
+
+              <Table verticalSpacing="sm" highlightOnHover>
+                <Table.Thead>
+                  <Table.Tr>
+                    <Table.Th>Lead</Table.Th>
+                    <Table.Th>Title</Table.Th>
+                    <Table.Th>Status</Table.Th>
+                    <Table.Th>Actions</Table.Th>
+                  </Table.Tr>
+                </Table.Thead>
+                <Table.Tbody>
+                  {allDisplayLeads.length === 0 ? (
+                    <Table.Tr>
+                      <Table.Td colSpan={4}>
+                        <Text c="dimmed" size="sm" ta="center">
+                          No leads found.
+                        </Text>
+                      </Table.Td>
+                    </Table.Tr>
+                  ) : (
+                    allDisplayLeads.map((lead) => {
+                      const isQueuedForRemoval = toRemove.includes(
+                        lead.username,
+                      );
+                      return (
+                        <Table.Tr key={lead.username}>
+                          <Table.Td>
+                            <Group gap="sm">
+                              <Avatar name={lead.name} color="initials" />
+                              <div>
+                                <Text fz="sm" fw={500}>
+                                  {lead.name}
+                                </Text>
+                                <Text fz="xs" c="dimmed">
+                                  {lead.username}
+                                </Text>
+                              </div>
+                            </Group>
+                          </Table.Td>
+                          <Table.Td>{lead.title}</Table.Td>
+                          <Table.Td>
+                            {isQueuedForRemoval ? (
+                              <Badge color="red" variant="light">
+                                Queued for removal
+                              </Badge>
+                            ) : lead.isNew ? (
+                              <Badge color="blue" variant="light">
+                                Queued for addition
+                              </Badge>
+                            ) : (
+                              <Badge color="green" variant="light">
+                                Active
+                              </Badge>
+                            )}
+                          </Table.Td>
+                          <Table.Td>
+                            {isQueuedForRemoval ? (
+                              <Button
+                                color="yellow"
+                                variant="light"
+                                size="xs"
+                                onClick={() =>
+                                  handleCancelRemove(lead.username)
+                                }
+                              >
+                                Cancel
+                              </Button>
+                            ) : lead.isNew ? (
+                              <Button
+                                color="red"
+                                variant="light"
+                                size="xs"
+                                leftSection={<IconTrash size={14} />}
+                                onClick={() => handleCancelAdd(lead.username)}
+                              >
+                                Cancel Add
+                              </Button>
+                            ) : (
+                              <Button
+                                color="red"
+                                variant="light"
+                                size="xs"
+                                onClick={() => handleQueueRemove(lead.username)}
+                                leftSection={<IconTrash size={14} />}
+                              >
+                                Remove
+                              </Button>
+                            )}
+                          </Table.Td>
+                        </Table.Tr>
+                      );
+                    })
+                  )}
+                </Table.Tbody>
+              </Table>
+
+              <Stack gap="xs" mt="md">
+                <TextInput
+                  label="Lead Name"
+                  placeholder="John Doe"
+                  value={newLeadName}
+                  onChange={(e) => setNewLeadName(e.currentTarget.value)}
+                />
+                <TextInput
+                  label="Lead Email"
+                  description="Please use their Illinois email!"
+                  placeholder="email@illinois.edu"
+                  value={newLeadEmail}
+                  onChange={(e) => setNewLeadEmail(e.currentTarget.value)}
+                />
+                <TextInput
+                  label="Lead Title"
+                  placeholder="Chair"
+                  value={newLeadTitle}
+                  onChange={(e) => setNewLeadTitle(e.currentTarget.value)}
+                />
+              </Stack>
+
+              <Button
+                mt="md"
+                leftSection={<IconUserPlus size={16} />}
+                onClick={handleAddLead}
+                disabled={loading}
+              >
+                Add Lead
+              </Button>
+
+              <Button
+                fullWidth
+                color="blue"
+                mt="xl"
+                onClick={() => setConfirmModalOpen(true)}
+                disabled={(!toAdd.length && !toRemove.length) || loading}
+                loading={loading}
+              >
+                Save Lead Changes ({toAdd.length} Additions, {toRemove.length}{" "}
+                Removals)
+              </Button>
+            </Paper>
+
+            <Modal
+              opened={confirmModalOpen}
+              onClose={() => setConfirmModalOpen(false)}
+              title="Confirm Changes"
+              centered
+            >
+              {toAdd.length > 0 && (
+                <Box mb="md">
+                  <Text fw={500} size="sm" mb="xs">
+                    Leads to Add:
+                  </Text>
+                  {toAdd.map((lead) => (
+                    <Text key={lead.username} fz="sm">
+                      - {lead.name} ({lead.username}) - {lead.title}
+                    </Text>
+                  ))}
+                </Box>
+              )}
+              {toRemove.length > 0 && (
+                <Box>
+                  <Text fw={500} size="sm" mb="xs">
+                    Leads to Remove:
+                  </Text>
+                  {toRemove.map((email) => (
+                    <Text key={email} fz="sm" c="red">
+                      - {email}
+                    </Text>
+                  ))}
+                </Box>
+              )}
+              <Group justify="flex-end" mt="lg">
+                <Button
+                  variant="outline"
+                  onClick={() => setConfirmModalOpen(false)}
+                  disabled={loading}
+                >
+                  Cancel
+                </Button>
+                <Button
+                  onClick={handleSaveLeads}
+                  loading={loading}
+                  color="blue"
+                >
+                  Confirm and Save
+                </Button>
+              </Group>
+            </Modal>
+          </>
+        )}
       </Box>
     </>
   );
diff --git a/src/ui/pages/organization/OrgInfo.page.tsx b/src/ui/pages/organization/OrgInfo.page.tsx
index 4a47699f..73996ffa 100644
--- a/src/ui/pages/organization/OrgInfo.page.tsx
+++ b/src/ui/pages/organization/OrgInfo.page.tsx
@@ -10,6 +10,7 @@ import { AllOrganizationList } from "@acm-uiuc/js-shared";
 import { useAuth } from "@ui/components/AuthContext";
 import { ManageOrganizationForm } from "./ManageOrganizationForm";
 import {
+  LeadEntry,
   ORG_DATA_CACHED_DURATION,
   setOrganizationMetaBody,
 } from "@common/types/organizations";
@@ -76,7 +77,35 @@ export const OrgInfoPage = () => {
       throw error;
     }
   };
+  const updateLeads = async (
+    org: AcmOrg,
+    toAdd: LeadEntry[],
+    toRemove: string[],
+  ): Promise<void> => {
+    try {
+      await api.patch(`/api/v1/organizations/${org}/leads`, {
+        add: toAdd,
+        remove: toRemove,
+      });
+      notifications.show({
+        title: `${org} leads updated`,
+        message: `Changes may take up to ${ORG_DATA_CACHED_DURATION / 60} minutes to reflect to all users.`,
+        color: "green",
+      });
+    } catch (error: any) {
+      console.error("Failed to update org leads:", error);
+      const errorMessage =
+        error.response?.data?.message || "Please try again or contact support.";
 
+      notifications.show({
+        title: `Failed to update leads for ${org}.`,
+        message: errorMessage,
+        color: "red",
+        icon: <IconAlertCircle size={16} />,
+      });
+      throw error;
+    }
+  };
   useEffect(() => {
     (async () => {
       const appRoles = await getUserRoles("core");
@@ -166,6 +195,9 @@ export const OrgInfoPage = () => {
               updateOrganizationData={(data) =>
                 updateOrganizationData(selectedOrg, data)
               }
+              updateLeads={(toAdd, toRemove) =>
+                updateLeads(selectedOrg, toAdd, toRemove)
+              }
             />
           )}
         </Stack>

From 6e33b2c427055ce378a2c5667d887162d5d1f1d9 Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Tue, 30 Sep 2025 22:48:51 -0500
Subject: [PATCH 10/14] Require lead emails to be on the illinois.edu domain

---
 src/common/types/organizations.ts | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/src/common/types/organizations.ts b/src/common/types/organizations.ts
index 0d046b58..08ab6342 100644
--- a/src/common/types/organizations.ts
+++ b/src/common/types/organizations.ts
@@ -5,11 +5,16 @@ import { z } from "zod/v4";
 
 export const orgLeadEntry = z.object({
   name: z.optional(z.string()),
-  username: z.email(),
+  username: z.email().refine(
+    (email) => email.endsWith('@illinois.edu'),
+    { message: 'Email must be from the @illinois.edu domain' }
+  ),
   title: z.optional(z.string())
 })
 
-export const validOrgLinkTypes = ["DISCORD", "CAMPUSWIRE", "SLACK", "NOTION", "MATRIX", "OTHER"] as const as [string, ...string[]];
+export type LeadEntry = z.infer<typeof orgLeadEntry>;
+
+export const validOrgLinkTypes = ["DISCORD", "CAMPUSWIRE", "SLACK", "NOTION", "MATRIX", "INSTAGRAM", "OTHER"] as const as [string, ...string[]];
 
 export const orgLinkEntry = z.object({
   type: z.enum(validOrgLinkTypes),

From 77bbb2249b5b9910a897c5aa902e3cb11e4044f7 Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Tue, 30 Sep 2025 22:55:21 -0500
Subject: [PATCH 11/14] Fix unit tests

---
 src/api/functions/organizations.ts | 8 ++++++--
 tests/unit/auth.test.ts            | 2 ++
 tests/unit/vitest.setup.ts         | 7 ++++++-
 3 files changed, 14 insertions(+), 3 deletions(-)

diff --git a/src/api/functions/organizations.ts b/src/api/functions/organizations.ts
index b01eba97..d8361de5 100644
--- a/src/api/functions/organizations.ts
+++ b/src/api/functions/organizations.ts
@@ -57,7 +57,11 @@ export async function getOrgInfo({
   };
   try {
     const responseMarshall = await dynamoClient.send(query);
-    if (!responseMarshall.Items || responseMarshall.Items.length === 0) {
+    if (
+      !responseMarshall ||
+      !responseMarshall.Items ||
+      responseMarshall.Items.length === 0
+    ) {
       logger.debug(
         `Could not find SIG information for ${id}, returning default.`,
       );
@@ -126,7 +130,7 @@ export async function getUserOrgRoles({
   });
   try {
     const response = await dynamoClient.send(query);
-    if (!response.Items) {
+    if (!response || !response.Items) {
       return [];
     }
     const unmarshalled = response.Items.map((x) => unmarshall(x)).map(
diff --git a/tests/unit/auth.test.ts b/tests/unit/auth.test.ts
index 1cb4a27c..e91db96f 100644
--- a/tests/unit/auth.test.ts
+++ b/tests/unit/auth.test.ts
@@ -59,6 +59,7 @@ describe("Test authentication", () => {
     expect(jsonBody).toEqual({
       username: "infra-unit-test@acm.illinois.edu",
       roles: allAppRoles,
+      orgRoles: [],
     });
   });
 
@@ -75,6 +76,7 @@ describe("Test authentication", () => {
     expect(jsonBody).toEqual({
       username: "infra-unit-test-nogrp@acm.illinois.edu",
       roles: [AppRoles.TICKETS_SCANNER],
+      orgRoles: [],
     });
   });
 
diff --git a/tests/unit/vitest.setup.ts b/tests/unit/vitest.setup.ts
index ab7e6ec5..35b40114 100644
--- a/tests/unit/vitest.setup.ts
+++ b/tests/unit/vitest.setup.ts
@@ -147,7 +147,12 @@ vi.mock(
 );
 
 ddbMock.on(QueryCommand).callsFake((command) => {
-  if (command.input.TableName === genericConfig.UserInfoTable) {
+  if (command.TableName === genericConfig.SigInfoTableName) {
+    return Promise.resolve({
+      Items: [],
+    });
+  }
+  if (command.TableName === genericConfig.UserInfoTable) {
     const requestedEmail = command.input.ExpressionAttributeValues[":pk"].S;
     const mockMembershipData = {
       "valid@illinois.edu": {

From 4ee754f667321b6703b1b5c83db27cad7ed941ca Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Tue, 30 Sep 2025 22:59:59 -0500
Subject: [PATCH 12/14] Make / go to /home

---
 src/ui/Router.tsx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/ui/Router.tsx b/src/ui/Router.tsx
index 98048cee..fad72141 100644
--- a/src/ui/Router.tsx
+++ b/src/ui/Router.tsx
@@ -127,7 +127,7 @@ const authenticatedRouter = createBrowserRouter([
   ...commonRoutes,
   {
     path: "/",
-    element: <AcmAppShell>{null}</AcmAppShell>,
+    element: <Navigate to="/home" replace />,
   },
   {
     path: "/login",

From 675cd8eab17648fbd1fba805264d802ba21a20c9 Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Tue, 30 Sep 2025 23:02:22 -0500
Subject: [PATCH 13/14] Update live tests

---
 tests/live/clearSession.test.ts | 2 +-
 tests/live/protected.test.ts    | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/tests/live/clearSession.test.ts b/tests/live/clearSession.test.ts
index 4d7e4542..f9374a20 100644
--- a/tests/live/clearSession.test.ts
+++ b/tests/live/clearSession.test.ts
@@ -30,7 +30,7 @@ describe("Session clearing tests", { timeout: 30000 }, async () => {
     expect(clearResponse.status).toBe(201);
     // token should be revoked
     // add a sleep because delay shouldn't fail the pipeline
-    await new Promise((r) => setTimeout(r, 1000));
+    await new Promise((r) => setTimeout(r, 2000));
     const responseFail = await fetch(`${baseEndpoint}/api/v1/protected`, {
       method: "GET",
       headers: {
diff --git a/tests/live/protected.test.ts b/tests/live/protected.test.ts
index bf03546b..5fd8e3ff 100644
--- a/tests/live/protected.test.ts
+++ b/tests/live/protected.test.ts
@@ -29,6 +29,7 @@ describe("Role checking live API tests", async () => {
     expect(responseBody).toStrictEqual({
       username: "infra@acm.illinois.edu",
       roles: allAppRoles,
+      orgRoles: [],
     });
   });
 });

From 522f163706a76a628dccdc1e01bc3b4e540d7447 Mon Sep 17 00:00:00 2001
From: Dev Singh <dev@devksingh.com>
Date: Tue, 30 Sep 2025 23:10:52 -0500
Subject: [PATCH 14/14] Fix live test

---
 tests/live/clearSession.test.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/tests/live/clearSession.test.ts b/tests/live/clearSession.test.ts
index f9374a20..aef20647 100644
--- a/tests/live/clearSession.test.ts
+++ b/tests/live/clearSession.test.ts
@@ -19,6 +19,7 @@ describe("Session clearing tests", { timeout: 30000 }, async () => {
     expect(responseBody).toStrictEqual({
       username: "infra@acm.illinois.edu",
       roles: allAppRoles,
+      orgRoles: [],
     });
     // user logs out
     const clearResponse = await fetch(`${baseEndpoint}/api/v1/clearSession`, {