From 6f3888f57aa97c223bd67957bb55f53bb27439fc Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 15:27:31 -0500
Subject: [PATCH 01/59] expanded row

---
 .../assets/src/js/getgov/table-members.js     | 50 ++++++++++++-------
 1 file changed, 32 insertions(+), 18 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-members.js b/src/registrar/assets/src/js/getgov/table-members.js
index 75a7c29ac..5e93ecab8 100644
--- a/src/registrar/assets/src/js/getgov/table-members.js
+++ b/src/registrar/assets/src/js/getgov/table-members.js
@@ -87,7 +87,7 @@ export class MembersTable extends BaseTable {
 
     // generate html blocks for domains and permissions for the member
     let domainsHTML = this.generateDomainsHTML(num_domains, member.domain_names, member.domain_urls, member.action_url);
-    let permissionsHTML = this.generatePermissionsHTML(member.permissions, customTableOptions.UserPortfolioPermissionChoices);
+    let permissionsHTML = this.generatePermissionsHTML(member.is_admin, member.permissions, customTableOptions.UserPortfolioPermissionChoices);
 
     // domainsHTML block and permissionsHTML block need to be wrapped with hide/show toggle, Expand
     let showMoreButton = '';
@@ -257,10 +257,11 @@ export class MembersTable extends BaseTable {
     let domainsHTML = '';
 
     // Only generate HTML if the member has one or more assigned domains
+    
+    domainsHTML += "<div class='desktop:grid-col-5 margin-bottom-2 desktop:margin-bottom-0'>";
+    domainsHTML += "<h4 class='font-body-xs margin-y-0'>Domains assigned</h4>";
     if (num_domains > 0) {
-      domainsHTML += "<div class='desktop:grid-col-5 margin-bottom-2 desktop:margin-bottom-0'>";
-      domainsHTML += "<h4 class='font-body-xs margin-y-0'>Domains assigned</h4>";
-      domainsHTML += `<p class='font-body-xs text-base-dark margin-y-0'>This member is assigned to ${num_domains} domain${num_domains > 1 ? 's' : ''}:</p>`;
+      domainsHTML += `<p class='font-body-xs text-base-darker margin-y-0'>This member is assigned to ${num_domains} domain${num_domains > 1 ? 's' : ''}:</p>`;
       domainsHTML += "<ul class='usa-list usa-list--unstyled margin-y-0'>";
 
       // Display up to 6 domains with their URLs
@@ -269,12 +270,14 @@ export class MembersTable extends BaseTable {
       }
 
       domainsHTML += "</ul>";
+    } else {
+      domainsHTML += `<p class='font-body-xs text-base-darker margin-y-0'>This member is assigned to 0 domains.</p>`;
+    }
 
-      // If there are more than 6 domains, display a "View assigned domains" link
-      domainsHTML += `<p class="font-body-xs"><a href="${action_url}/domains">View assigned domains</a></p>`;
+    // If there are more than 6 domains, display a "View assigned domains" link
+    domainsHTML += `<p class="font-body-xs"><a href="${action_url}/domains">View domains assigned</a></p>`;
 
-      domainsHTML += "</div>";
-    }
+    domainsHTML += "</div>";
 
     return domainsHTML;
   }
@@ -387,40 +390,51 @@ export class MembersTable extends BaseTable {
    * - If no relevant permissions are found, the function returns a message stating that the user has no additional permissions.
    * - The resulting HTML always includes a header "Additional permissions for this member" and appends the relevant permission descriptions.
    */
-  generatePermissionsHTML(member_permissions, UserPortfolioPermissionChoices) {
+  generatePermissionsHTML(is_admin, member_permissions, UserPortfolioPermissionChoices) {
     let permissionsHTML = '';
 
     // Define shared classes across elements for easier refactoring
-    let sharedParagraphClasses = "font-body-xs text-base-dark margin-top-1 p--blockquote";
+    let sharedParagraphClasses = "font-body-xs text-base-darker margin-top-1 p--blockquote";
+
+    // Member access
+    if (is_admin) {
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Member access: <strong>Admin</strong></p>`;
+    } else {
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Member access: <strong>Basic</strong></p>`;
+    }
 
     // Check domain-related permissions
     if (member_permissions.includes(UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS)) {
-      permissionsHTML += `<p class='${sharedParagraphClasses}'><strong class='text-base-dark'>Domains:</strong> Can view all organization domains. Can manage domains they are assigned to and edit information about the domain (including DNS settings).</p>`;
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Domains: <strong>Viewer</strong></p>`;
     } else if (member_permissions.includes(UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS)) {
-      permissionsHTML += `<p class='${sharedParagraphClasses}'><strong class='text-base-dark'>Domains:</strong> Can manage domains they are assigned to and edit information about the domain (including DNS settings).</p>`;
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Domains: <strong>Viewer, limited</strong></p>`;
     }
 
     // Check request-related permissions
     if (member_permissions.includes(UserPortfolioPermissionChoices.EDIT_REQUESTS)) {
-      permissionsHTML += `<p class='${sharedParagraphClasses}'><strong class='text-base-dark'>Domain requests:</strong> Can view all organization domain requests. Can create domain requests and modify their own requests.</p>`;
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Domain requests: <strong>Creator</strong></p>`;
     } else if (member_permissions.includes(UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS)) {
-      permissionsHTML += `<p class='${sharedParagraphClasses}'><strong class='text-base-dark'>Domain requests (view-only):</strong> Can view all organization domain requests. Can't create or modify any domain requests.</p>`;
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Domain requests: <strong>Viewer</strong></p>`;
+    } else {
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Domain requests: <strong>No access</strong></p>`;
     }
 
     // Check member-related permissions
     if (member_permissions.includes(UserPortfolioPermissionChoices.EDIT_MEMBERS)) {
-      permissionsHTML += `<p class='${sharedParagraphClasses}'><strong class='text-base-dark'>Members:</strong> Can manage members including inviting new members, removing current members, and assigning domains to members.</p>`;
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Members: <strong>Manager</strong></p>`;
     } else if (member_permissions.includes(UserPortfolioPermissionChoices.VIEW_MEMBERS)) {
-      permissionsHTML += `<p class='${sharedParagraphClasses}'><strong class='text-base-dark'>Members (view-only):</strong> Can view all organizational members. Can't manage any members.</p>`;
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Members: <strong>Viewer</strong></p>`;
+    } else {
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>Members: <strong>No access</strong></p>`;
     }
 
     // If no specific permissions are assigned, display a message indicating no additional permissions
     if (!permissionsHTML) {
-      permissionsHTML += `<p class='${sharedParagraphClasses}'><b>No additional permissions:</b> There are no additional permissions for this member.</p>`;
+      permissionsHTML += `<p class='${sharedParagraphClasses}'>No additional permissions: <strong>There are no additional permissions for this member</strong>.</p>`;
     }
 
     // Add a permissions header and wrap the entire output in a container
-    permissionsHTML = `<div class='desktop:grid-col-7'><h4 class='font-body-xs margin-y-0'>Additional permissions for this member</h4>${permissionsHTML}</div>`;
+    permissionsHTML = `<div class='desktop:grid-col-7'><h4 class='font-body-xs margin-y-0'>Member access and permissions</h4>${permissionsHTML}</div>`;
     
     return permissionsHTML;
   }

From 72a2f6305104119e6f9c138118254e92918aa51f Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 16:18:03 -0500
Subject: [PATCH 02/59] Member profile page

---
 .../src/js/getgov/portfolio-member-page.js    |  2 +-
 src/registrar/forms/portfolio.py              |  2 +-
 .../includes/member_domain_management.html    |  4 +--
 .../includes/member_permissions_summary.html  | 16 ++++++------
 .../templates/includes/summary_item.html      | 26 ++++++++++++-------
 src/registrar/templates/portfolio_member.html |  6 ++---
 src/registrar/tests/test_views_portfolio.py   |  2 +-
 7 files changed, 33 insertions(+), 25 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/portfolio-member-page.js b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
index c96677ebc..95723fc7e 100644
--- a/src/registrar/assets/src/js/getgov/portfolio-member-page.js
+++ b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
@@ -128,7 +128,7 @@ export function initAddNewMemberPageListeners() {
       });
     } else {
       // for admin users, the permissions are always the same
-      appendPermissionInContainer('Domains', 'Viewer, all', permissionDetailsContainer);
+      appendPermissionInContainer('Domains', 'Viewer', permissionDetailsContainer);
       appendPermissionInContainer('Domain requests', 'Creator', permissionDetailsContainer);
       appendPermissionInContainer('Members', 'Manager', permissionDetailsContainer);
     }
diff --git a/src/registrar/forms/portfolio.py b/src/registrar/forms/portfolio.py
index 2725224f1..76a5032da 100644
--- a/src/registrar/forms/portfolio.py
+++ b/src/registrar/forms/portfolio.py
@@ -127,7 +127,7 @@ class BasePortfolioMemberForm(forms.ModelForm):
     domain_permissions = forms.ChoiceField(
         choices=[
             (UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS.value, "Viewer, limited"),
-            (UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS.value, "Viewer, all"),
+            (UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS.value, "Viewer"),
         ],
         widget=forms.RadioSelect,
         required=False,
diff --git a/src/registrar/templates/includes/member_domain_management.html b/src/registrar/templates/includes/member_domain_management.html
index 1e5b29994..2adc3f950 100644
--- a/src/registrar/templates/includes/member_domain_management.html
+++ b/src/registrar/templates/includes/member_domain_management.html
@@ -1,6 +1,6 @@
-<h4 class="margin-bottom-0">Assigned domains</h4>
 {% if domain_count > 0 %}
+    <h4 class="margin-bottom-0">Domains assigned</h4>
     <p class="margin-top-0">{{domain_count}}</p>
 {% else %}
-    <p class="margin-top-0">This member does not manage any domains.{% if manage_button %} To assign this member a domain, click "Manage".{% endif %}</p>
+    <p class="margin-top-0">This member does not manage any domains.{% if manage_button %} To assign this member a domain, click "Edit".{% endif %}</p>
 {% endif %}
diff --git a/src/registrar/templates/includes/member_permissions_summary.html b/src/registrar/templates/includes/member_permissions_summary.html
index 3a91d16f6..8e3dad528 100644
--- a/src/registrar/templates/includes/member_permissions_summary.html
+++ b/src/registrar/templates/includes/member_permissions_summary.html
@@ -9,25 +9,25 @@ <h4 class="margin-bottom-0">Member access</h4>
 
 <h4 class="margin-bottom-0 text-primary">Domains</h4>
 {% if member_has_view_all_domains_portfolio_permission %}
-    <p class="margin-top-0">Viewer, all</p>
+    <p class="margin-top-0">Viewer: Can view all domains for the organization</p>
 {% else %}
-    <p class="margin-top-0">Viewer, limited</p>
+    <p class="margin-top-0">Viewer, limited: Can view only the domains they manage</p>
 {% endif %}
 
 <h4 class="margin-bottom-0 text-primary">Domain requests</h4>
 {% if member_has_edit_request_portfolio_permission %}
-    <p class="margin-top-0">Creator</p>
+    <p class="margin-top-0">Creator: Can view all domain requests for the organization and create requests</p>
 {% elif member_has_view_all_requests_portfolio_permission %}
-    <p class="margin-top-0">Viewer</p>
+    <p class="margin-top-0">Viewer: Can view all domain requests for the organization</p>
 {% else %}
-    <p class="margin-top-0">No access</p>
+    <p class="margin-top-0">No access: Cannot view or create domain requests</p>
 {% endif %}
 
 <h4 class="margin-bottom-0 text-primary">Members</h4>
 {% if member_has_edit_members_portfolio_permission %}
-    <p class="margin-top-0">Manager</p>
+    <p class="margin-top-0">Manager: Can view and manage all member permissions</p>
 {% elif member_has_view_members_portfolio_permission %}
-    <p class="margin-top-0">Viewer</p>
+    <p class="margin-top-0">Viewer: Can view all members permissions</p>
 {% else %}
-    <p class="margin-top-0">No access</p>
+    <p class="margin-top-0">No access: Cannot view member permissions</p>
 {% endif %}
\ No newline at end of file
diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index d062a7b4e..a091e5ab7 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -134,18 +134,26 @@ <h4 class="margin-bottom-05">Invited domain managers</h4>
       {% endif %}
     </div>
 
-    {% if editable and edit_link %}
+    {% if editable and edit_link or view_button %}
       <div class="text-right">
-      <a
-          href="{{ edit_link }}"
+        <a
+          {% if edit_link %} href="{{ edit_link }}" {% endif %}
           class="usa-link usa-link--icon font-sans-sm line-height-sans-4"
-      >
-        <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
-          <use xlink:href="{% static 'img/sprite.svg' %}#{% if manage_button %}settings{% elif view_button %}visibility{% else %}edit{% endif %}"></use>
-        </svg>
-        {% if manage_button %}Manage{% elif view_button %}View{% else %}Edit{% endif %}<span class="sr-only"> {{ title }}</span>
-      </a>
+        >
+          <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
+            <use xlink:href="{% static 'img/sprite.svg' %}#{% if manage_button %}settings{% elif editable and edit_link %}edit{% else %}visibility{% endif %}"></use>
+          </svg>
+          {% if manage_button %}
+            Manage
+          {% elif editable and edit_link %}
+            Edit
+          {% else %}
+            View
+          {% endif %}
+          <span class="sr-only"> {{ title|default:"Page" }}</span>
+        </a>
       </div>
     {% endif %}
+
  </div>
 </section>
diff --git a/src/registrar/templates/portfolio_member.html b/src/registrar/templates/portfolio_member.html
index 709582e71..477599d49 100644
--- a/src/registrar/templates/portfolio_member.html
+++ b/src/registrar/templates/portfolio_member.html
@@ -101,11 +101,11 @@ <h2 class="margin-top-0 margin-bottom-3 break-word">
     {% include "includes/summary_item.html" with title='Member access and permissions' permissions=True value=portfolio_invitation edit_link=edit_url editable=has_edit_members_portfolio_permission %}
   {% endif %}
 
-  {% comment %}view_button is passed below as true in all cases. This is because manage_button logic will trump view_button logic; ie. if manage_button is true, view_button will never be looked at{% endcomment %}
+  {% comment %}view_button is passed below as true in all cases. This is because editable logic will trump view_button logic; ie. if editable is true, view_button will never be looked at{% endcomment %}
   {% if portfolio_permission %}
-    {% include "includes/summary_item.html" with title='Domain management' domain_mgmt=True value=portfolio_permission.get_managed_domains_count edit_link=domains_url editable=True manage_button=has_edit_members_portfolio_permission view_button=True %}
+    {% include "includes/summary_item.html" with title='Domain assignment' domain_mgmt=True value=portfolio_permission.get_managed_domains_count edit_link=domains_url editable=has_edit_members_portfolio_permission view_button=True %}
   {% elif portfolio_invitation %}
-    {% include "includes/summary_item.html" with title='Domain management' domain_mgmt=True value=portfolio_invitation.get_managed_domains_count edit_link=domains_url editable=True manage_button=has_edit_members_portfolio_permission view_button=True %}
+    {% include "includes/summary_item.html" with title='Domain assignment' domain_mgmt=True value=portfolio_invitation.get_managed_domains_count edit_link=domains_url editable=has_edit_members_portfolio_permission view_button=True %}
   {% endif %}
         
 </div>
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 097aa1879..7a664a8c6 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -1063,7 +1063,7 @@ def test_can_view_invitedmember_page_when_user_has_edit_members(self):
         self.assertContains(response, "Invited")
         self.assertContains(response, portfolio_invitation.email)
         self.assertContains(response, "Admin")
-        self.assertContains(response, "Viewer, all")
+        self.assertContains(response, "Viewer")
         self.assertContains(response, "Creator")
         self.assertContains(response, "Manager")
         self.assertContains(

From 891d0f3dbb11bb13d434adb03f47feca1003a894 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 16:21:17 -0500
Subject: [PATCH 03/59] domain assignments page

---
 src/registrar/templates/includes/member_domains_edit_table.html | 2 +-
 src/registrar/templates/includes/member_domains_table.html      | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/includes/member_domains_edit_table.html b/src/registrar/templates/includes/member_domains_edit_table.html
index 0b8ff005a..ac05dc14f 100644
--- a/src/registrar/templates/includes/member_domains_edit_table.html
+++ b/src/registrar/templates/includes/member_domains_edit_table.html
@@ -100,7 +100,7 @@ <h2>
     ></div>
   </div>
   <div class="display-none margin-bottom-4" id="edit-member-domains__no-data">
-    <p>This member does not manage any domains.  Click the Edit domain assignments buttons to assign domains.</p>
+    <p>This member does not manage any domains.</p>
   </div>
   <div class="display-none margin-bottom-4" id="edit-member-domains__no-search-results">
     <p>No results found</p>
diff --git a/src/registrar/templates/includes/member_domains_table.html b/src/registrar/templates/includes/member_domains_table.html
index d7839e485..8e4184814 100644
--- a/src/registrar/templates/includes/member_domains_table.html
+++ b/src/registrar/templates/includes/member_domains_table.html
@@ -95,7 +95,7 @@ <h2>
       ></div>
     </div>
     <div class="display-none margin-bottom-4" id="member-domains__no-data">
-      <p>This member does not manage any domains.  Click the Edit domain assignments buttons to assign domains.</p>
+      <p>This member does not manage any domains.</p>
     </div>
     <div class="display-none margin-bottom-4" id="member-domains__no-search-results">
       <p>No results found</p>

From f44e40a6dfb5b571432cd661419d8df8fede516b Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 16:23:55 -0500
Subject: [PATCH 04/59] member access and permissions page

---
 src/registrar/forms/portfolio.py                                | 2 +-
 .../templates/includes/member_permissions_summary.html          | 2 +-
 src/registrar/templates/portfolio_member_permissions.html       | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/registrar/forms/portfolio.py b/src/registrar/forms/portfolio.py
index 76a5032da..00ccc5c09 100644
--- a/src/registrar/forms/portfolio.py
+++ b/src/registrar/forms/portfolio.py
@@ -202,7 +202,7 @@ def __init__(self, *args, **kwargs):
             "no_access": "Cannot view or create domain requests",
         }
         self.fields["member_permissions"].descriptions = {
-            UserPortfolioPermissionChoices.VIEW_MEMBERS.value: "Can view all members permissions",
+            UserPortfolioPermissionChoices.VIEW_MEMBERS.value: "Can view all member permissions",
             "no_access": "Cannot view member permissions",
         }
 
diff --git a/src/registrar/templates/includes/member_permissions_summary.html b/src/registrar/templates/includes/member_permissions_summary.html
index 8e3dad528..b0407255b 100644
--- a/src/registrar/templates/includes/member_permissions_summary.html
+++ b/src/registrar/templates/includes/member_permissions_summary.html
@@ -27,7 +27,7 @@ <h4 class="margin-bottom-0 text-primary">Members</h4>
 {% if member_has_edit_members_portfolio_permission %}
     <p class="margin-top-0">Manager: Can view and manage all member permissions</p>
 {% elif member_has_view_members_portfolio_permission %}
-    <p class="margin-top-0">Viewer: Can view all members permissions</p>
+    <p class="margin-top-0">Viewer: Can view all member permissions</p>
 {% else %}
     <p class="margin-top-0">No access: Cannot view member permissions</p>
 {% endif %}
\ No newline at end of file
diff --git a/src/registrar/templates/portfolio_member_permissions.html b/src/registrar/templates/portfolio_member_permissions.html
index 2bef5b7af..6d187084b 100644
--- a/src/registrar/templates/portfolio_member_permissions.html
+++ b/src/registrar/templates/portfolio_member_permissions.html
@@ -105,7 +105,7 @@ <h2 class="margin-top-0">Member Access</h2>
       >
         Cancel
       </a>
-      <button type="submit" class="usa-button">Update Member</button>
+      <button type="submit" class="usa-button">Update member</button>
     </div>
   </form>
 </div>

From 77711894b3061e36ba63867f8c99d150b075304a Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 16:29:40 -0500
Subject: [PATCH 05/59] Add a new member page

---
 src/registrar/templates/portfolio_members_add_new.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/portfolio_members_add_new.html b/src/registrar/templates/portfolio_members_add_new.html
index 464eaefce..c3a648bdc 100644
--- a/src/registrar/templates/portfolio_members_add_new.html
+++ b/src/registrar/templates/portfolio_members_add_new.html
@@ -55,7 +55,7 @@ <h2>Who would you like to add to the organization?</h2>
         <h2>What level of access would you like to grant this member?</h2>
       </legend>
 
-      <p class="margin-y-0">Select one <abbr class="usa-hint usa-hint--required" title="required">*</abbr></p>
+      <p class="margin-y-0">Select the level of access for this member. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></p>
 
       {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
         {% input_with_errors form.role %}
@@ -88,7 +88,7 @@ <h3 class="margin-bottom-1">Domain management</h3>
         aria-controls="invite-member-modal"
         data-open-modal
         >Trigger invite member modal</a>
-        <button id="invite_new_member_submit" type="submit" class="usa-button">Invite Member</button>
+        <button id="invite_new_member_submit" type="submit" class="usa-button">Invite member</button>
     </div>
 
   </form>

From 586d83adc172a058e288c1bba7207123ee734cbe Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 16:44:57 -0500
Subject: [PATCH 06/59] Fix unit tests

---
 src/registrar/tests/test_views_portfolio.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 7a664a8c6..7d56e1650 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -952,7 +952,7 @@ def test_can_view_member_page_when_user_has_edit_members(self):
         self.assertContains(response, "Creator")
         self.assertContains(response, "Manager")
         self.assertContains(
-            response, 'This member does not manage any domains. To assign this member a domain, click "Manage"'
+            response, 'This member does not manage any domains. To assign this member a domain, click "Edit"'
         )
 
         # Assert buttons and links within the page are correct
@@ -1067,7 +1067,7 @@ def test_can_view_invitedmember_page_when_user_has_edit_members(self):
         self.assertContains(response, "Creator")
         self.assertContains(response, "Manager")
         self.assertContains(
-            response, 'This member does not manage any domains. To assign this member a domain, click "Manage"'
+            response, 'This member does not manage any domains. To assign this member a domain, click "Edit"'
         )
         # Assert buttons and links within the page are correct
         self.assertContains(response, "wrapper-delete-action")  # test that 3 dot is present

From 1d54fe6b43e1716a20c39ee269408b86c13437a8 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 16:50:54 -0500
Subject: [PATCH 07/59] fix unit tests

---
 src/registrar/tests/test_views_portfolio.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 7d56e1650..c00892eca 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -952,7 +952,7 @@ def test_can_view_member_page_when_user_has_edit_members(self):
         self.assertContains(response, "Creator")
         self.assertContains(response, "Manager")
         self.assertContains(
-            response, 'This member does not manage any domains. To assign this member a domain, click "Edit"'
+            response, 'This member does not manage any domains.'
         )
 
         # Assert buttons and links within the page are correct
@@ -1067,7 +1067,7 @@ def test_can_view_invitedmember_page_when_user_has_edit_members(self):
         self.assertContains(response, "Creator")
         self.assertContains(response, "Manager")
         self.assertContains(
-            response, 'This member does not manage any domains. To assign this member a domain, click "Edit"'
+            response, 'This member does not manage any domains.'
         )
         # Assert buttons and links within the page are correct
         self.assertContains(response, "wrapper-delete-action")  # test that 3 dot is present

From c44c66ae96eebbff82ac1883b7fb79c69f4daf1a Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 17:01:43 -0500
Subject: [PATCH 08/59] wip

---
 src/registrar/assets/src/js/getgov/table-members.js | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-members.js b/src/registrar/assets/src/js/getgov/table-members.js
index 5e93ecab8..e876ce0f9 100644
--- a/src/registrar/assets/src/js/getgov/table-members.js
+++ b/src/registrar/assets/src/js/getgov/table-members.js
@@ -108,7 +108,7 @@ export class MembersTable extends BaseTable {
         </button>
       `;
 
-      showMoreRow.innerHTML = `<td colspan='3' headers="header-member row-header-${unique_id}" class="padding-top-0"><div class='grid-row'>${domainsHTML} ${permissionsHTML}</div></td>`;
+      showMoreRow.innerHTML = `<td colspan='3' headers="header-member row-header-${unique_id}" class="padding-top-0"><div class='grid-row grid-gap-1'>${domainsHTML} ${permissionsHTML}</div></td>`;
       showMoreRow.classList.add('show-more-content');
       showMoreRow.classList.add('display-none');
       showMoreRow.id = unique_id;
@@ -258,7 +258,7 @@ export class MembersTable extends BaseTable {
 
     // Only generate HTML if the member has one or more assigned domains
     
-    domainsHTML += "<div class='desktop:grid-col-5 margin-bottom-2 desktop:margin-bottom-0'>";
+    domainsHTML += "<div class='desktop:grid-col-4 margin-bottom-2 desktop:margin-bottom-0'>";
     domainsHTML += "<h4 class='font-body-xs margin-y-0'>Domains assigned</h4>";
     if (num_domains > 0) {
       domainsHTML += `<p class='font-body-xs text-base-darker margin-y-0'>This member is assigned to ${num_domains} domain${num_domains > 1 ? 's' : ''}:</p>`;
@@ -275,7 +275,7 @@ export class MembersTable extends BaseTable {
     }
 
     // If there are more than 6 domains, display a "View assigned domains" link
-    domainsHTML += `<p class="font-body-xs"><a href="${action_url}/domains">View domains assigned</a></p>`;
+    domainsHTML += `<p class="font-body-xs"><a href="${action_url}/domains">View domain assignments</a></p>`;
 
     domainsHTML += "</div>";
 
@@ -434,7 +434,7 @@ export class MembersTable extends BaseTable {
     }
 
     // Add a permissions header and wrap the entire output in a container
-    permissionsHTML = `<div class='desktop:grid-col-7'><h4 class='font-body-xs margin-y-0'>Member access and permissions</h4>${permissionsHTML}</div>`;
+    permissionsHTML = `<div class='desktop:grid-col-8'><h4 class='font-body-xs margin-y-0'>Member access and permissions</h4>${permissionsHTML}</div>`;
     
     return permissionsHTML;
   }

From d7c76b6d20e612c661a413eace0f150ec25550bd Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 17:03:34 -0500
Subject: [PATCH 09/59] Domain assignments with s

---
 src/registrar/templates/portfolio_member.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/portfolio_member.html b/src/registrar/templates/portfolio_member.html
index 477599d49..46e0cced6 100644
--- a/src/registrar/templates/portfolio_member.html
+++ b/src/registrar/templates/portfolio_member.html
@@ -103,9 +103,9 @@ <h2 class="margin-top-0 margin-bottom-3 break-word">
 
   {% comment %}view_button is passed below as true in all cases. This is because editable logic will trump view_button logic; ie. if editable is true, view_button will never be looked at{% endcomment %}
   {% if portfolio_permission %}
-    {% include "includes/summary_item.html" with title='Domain assignment' domain_mgmt=True value=portfolio_permission.get_managed_domains_count edit_link=domains_url editable=has_edit_members_portfolio_permission view_button=True %}
+    {% include "includes/summary_item.html" with title='Domain assignments' domain_mgmt=True value=portfolio_permission.get_managed_domains_count edit_link=domains_url editable=has_edit_members_portfolio_permission view_button=True %}
   {% elif portfolio_invitation %}
-    {% include "includes/summary_item.html" with title='Domain assignment' domain_mgmt=True value=portfolio_invitation.get_managed_domains_count edit_link=domains_url editable=has_edit_members_portfolio_permission view_button=True %}
+    {% include "includes/summary_item.html" with title='Domain assignments' domain_mgmt=True value=portfolio_invitation.get_managed_domains_count edit_link=domains_url editable=has_edit_members_portfolio_permission view_button=True %}
   {% endif %}
         
 </div>

From fe1780fbb921138e88a2faea6a734b5a2681f30c Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 17:07:56 -0500
Subject: [PATCH 10/59] wip

---
 src/registrar/templates/portfolio_member.html | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/registrar/templates/portfolio_member.html b/src/registrar/templates/portfolio_member.html
index 46e0cced6..b270e03fb 100644
--- a/src/registrar/templates/portfolio_member.html
+++ b/src/registrar/templates/portfolio_member.html
@@ -65,7 +65,7 @@ <h2 class="margin-top-0 margin-bottom-3 break-word">
 
   <form method="post" id="member-delete-form" action="{{ request.path }}/delete"> {% csrf_token %} </form>
   <address>
-    <strong class="text-primary-dark">Last active:</strong>
+    <strong class="text-primary-darker">Last active:</strong>
     {% if member and member.last_login %}
         {{ member.last_login }}
       {% elif portfolio_invitation %}
@@ -75,7 +75,7 @@ <h2 class="margin-top-0 margin-bottom-3 break-word">
       {% endif %}
     <br />
 
-    <strong class="text-primary-dark">Full name:</strong>
+    <strong class="text-primary-darker">Full name:</strong>
     {% if member %}
       {% if member.first_name or member.last_name %}
         {{ member.get_formatted_name }}
@@ -87,7 +87,7 @@ <h2 class="margin-top-0 margin-bottom-3 break-word">
     {% endif %}
     <br />
 
-    <strong class="text-primary-dark">Title or organization role:</strong>
+    <strong class="text-primary-darker">Title or organization role:</strong>
     {% if member and member.title %}
       {{ member.title }}
     {% else %}

From 5216cb4a53ca9e8dc4e4b1aeaed01c60f12ff4ac Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 17:15:28 -0500
Subject: [PATCH 11/59] wip

---
 src/registrar/templates/portfolio_members_add_new.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/portfolio_members_add_new.html b/src/registrar/templates/portfolio_members_add_new.html
index c3a648bdc..715ad53ab 100644
--- a/src/registrar/templates/portfolio_members_add_new.html
+++ b/src/registrar/templates/portfolio_members_add_new.html
@@ -67,7 +67,7 @@ <h2>What level of access would you like to grant this member?</h2>
     <!-- Basic access form -->
     {% include "includes/member_basic_permissions.html" %}
     
-    <h3 class="margin-bottom-1">Domain management</h3>
+    <h3 class="margin-bottom-1">Domain assignments</h3>
 
     <p class="margin-top-0">After you invite this person to your organization, you can assign domain management permissions on their member profile.</p>
 

From e031d04fa5cdb9559a318dcce806b412b35ced6a Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 17:23:18 -0500
Subject: [PATCH 12/59] lint

---
 src/registrar/tests/test_views_portfolio.py | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index c00892eca..e45f65f6f 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -951,9 +951,7 @@ def test_can_view_member_page_when_user_has_edit_members(self):
         self.assertContains(response, "Admin")
         self.assertContains(response, "Creator")
         self.assertContains(response, "Manager")
-        self.assertContains(
-            response, 'This member does not manage any domains.'
-        )
+        self.assertContains(response, "This member does not manage any domains.")
 
         # Assert buttons and links within the page are correct
         self.assertContains(response, "wrapper-delete-action")  # test that 3 dot is present
@@ -1066,9 +1064,7 @@ def test_can_view_invitedmember_page_when_user_has_edit_members(self):
         self.assertContains(response, "Viewer")
         self.assertContains(response, "Creator")
         self.assertContains(response, "Manager")
-        self.assertContains(
-            response, 'This member does not manage any domains.'
-        )
+        self.assertContains(response, "This member does not manage any domains.")
         # Assert buttons and links within the page are correct
         self.assertContains(response, "wrapper-delete-action")  # test that 3 dot is present
         self.assertContains(response, "sprite.svg#edit")  # test that Edit link is present

From 819fd35e591f2db7af19191e792d0c73e1a9780e Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 18:04:17 -0500
Subject: [PATCH 13/59] remove last active on member page

---
 src/registrar/templates/portfolio_member.html | 10 ----------
 1 file changed, 10 deletions(-)

diff --git a/src/registrar/templates/portfolio_member.html b/src/registrar/templates/portfolio_member.html
index b270e03fb..b4b54291b 100644
--- a/src/registrar/templates/portfolio_member.html
+++ b/src/registrar/templates/portfolio_member.html
@@ -65,16 +65,6 @@ <h2 class="margin-top-0 margin-bottom-3 break-word">
 
   <form method="post" id="member-delete-form" action="{{ request.path }}/delete"> {% csrf_token %} </form>
   <address>
-    <strong class="text-primary-darker">Last active:</strong>
-    {% if member and member.last_login %}
-        {{ member.last_login }}
-      {% elif portfolio_invitation %}
-        Invited
-      {% else %}
-        ⎯
-      {% endif %}
-    <br />
-
     <strong class="text-primary-darker">Full name:</strong>
     {% if member %}
       {% if member.first_name or member.last_name %}

From aa253a85dad9602c82e84786a4b3efb2c560c4d1 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Mon, 10 Feb 2025 18:09:13 -0500
Subject: [PATCH 14/59] wip

---
 src/registrar/assets/src/js/getgov/table-members.js | 2 +-
 src/registrar/tests/test_views_portfolio.py         | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-members.js b/src/registrar/assets/src/js/getgov/table-members.js
index e876ce0f9..bb2d8c185 100644
--- a/src/registrar/assets/src/js/getgov/table-members.js
+++ b/src/registrar/assets/src/js/getgov/table-members.js
@@ -108,7 +108,7 @@ export class MembersTable extends BaseTable {
         </button>
       `;
 
-      showMoreRow.innerHTML = `<td colspan='3' headers="header-member row-header-${unique_id}" class="padding-top-0"><div class='grid-row grid-gap-1'>${domainsHTML} ${permissionsHTML}</div></td>`;
+      showMoreRow.innerHTML = `<td colspan='4' headers="header-member row-header-${unique_id}" class="padding-top-0"><div class='grid-row grid-gap-2'>${domainsHTML} ${permissionsHTML}</div></td>`;
       showMoreRow.classList.add('show-more-content');
       showMoreRow.classList.add('display-none');
       showMoreRow.id = unique_id;
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index e45f65f6f..052155bb0 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -956,7 +956,7 @@ def test_can_view_member_page_when_user_has_edit_members(self):
         # Assert buttons and links within the page are correct
         self.assertContains(response, "wrapper-delete-action")  # test that 3 dot is present
         self.assertContains(response, "sprite.svg#edit")  # test that Edit link is present
-        self.assertContains(response, "sprite.svg#settings")  # test that Manage link is present
+        self.assertContains(response, "sprite.svg#edit")  # test that Manage link is present
         self.assertNotContains(response, "sprite.svg#visibility")  # test that View link is not present
 
     @less_console_noise_decorator
@@ -1068,7 +1068,7 @@ def test_can_view_invitedmember_page_when_user_has_edit_members(self):
         # Assert buttons and links within the page are correct
         self.assertContains(response, "wrapper-delete-action")  # test that 3 dot is present
         self.assertContains(response, "sprite.svg#edit")  # test that Edit link is present
-        self.assertContains(response, "sprite.svg#settings")  # test that Manage link is present
+        self.assertContains(response, "sprite.svg#edit")  # test that Manage link is present
         self.assertNotContains(response, "sprite.svg#visibility")  # test that View link is not present
 
     @less_console_noise_decorator

From 8d0f50f491e778471979fc02cbac86bf595600d2 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Tue, 11 Feb 2025 12:48:40 -0500
Subject: [PATCH 15/59] add member modal

---
 src/registrar/templates/portfolio_members_add_new.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/portfolio_members_add_new.html b/src/registrar/templates/portfolio_members_add_new.html
index 715ad53ab..d58508ac2 100644
--- a/src/registrar/templates/portfolio_members_add_new.html
+++ b/src/registrar/templates/portfolio_members_add_new.html
@@ -104,7 +104,7 @@ <h3 class="margin-bottom-1">Domain assignments</h3>
             <h2 class="usa-modal__heading" id="invite-member-heading">
                 Invite this member to the organization?
             </h2>
-            <h3>Member information and permissions</h3>
+            <h3>Member access and permissions</h3>
             <!-- Display email as a header and access level -->
             <h4 class="margin-bottom-0">Email</h4>
             <p class="margin-top-0" id="modalEmail"></p>
@@ -123,7 +123,7 @@ <h4 class="margin-bottom-0">Member Access</h4>
                     <li class="usa-button-group__item">
                         <button
                             type="button"
-                            class="usa-button usa-button--unstyled"
+                            class="usa-button usa-button--unstyled padding-105 text-center"
                             data-close-modal
                             onclick="closeModal()"
                         >

From e2c4808fe613e7f553cb6e836805bcb435717464 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Tue, 11 Feb 2025 14:12:11 -0500
Subject: [PATCH 16/59] Member access and permissions page

---
 .../django/forms/widgets/multiple_input.html         |  2 +-
 .../templates/includes/member_basic_permissions.html | 12 ++++++------
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/src/registrar/templates/django/forms/widgets/multiple_input.html b/src/registrar/templates/django/forms/widgets/multiple_input.html
index af98e898b..8b8d7a620 100644
--- a/src/registrar/templates/django/forms/widgets/multiple_input.html
+++ b/src/registrar/templates/django/forms/widgets/multiple_input.html
@@ -21,7 +21,7 @@
         {% if field and field.field and field.field.descriptions %}
           {% with description=field.field.descriptions|get_dict_value:option.value %}
             {% if description %}
-                <p class="margin-0 margin-top-1 font-body-2xs">{{ description }}</p>
+                <p class="margin-0 font-body-2xs">{{ description }}</p>
             {% endif %}
           {% endwith %}
         {% endif %}
diff --git a/src/registrar/templates/includes/member_basic_permissions.html b/src/registrar/templates/includes/member_basic_permissions.html
index c84f3de09..876618fbb 100644
--- a/src/registrar/templates/includes/member_basic_permissions.html
+++ b/src/registrar/templates/includes/member_basic_permissions.html
@@ -3,18 +3,18 @@
     <h2>What permissions do you want to add?</h2>
     <p>Configure the permissions for this member. Basic members cannot manage member permissions or organization metadata.</p>
 
-    <h3 class="margin-bottom-0">Domains <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
-      {% with group_classes="bg-gray-1 border-bottom-2px border-base-lighter padding-bottom-2 margin-top-0" add_legend_class="usa-sr-only" %}
+    <h3 class="margin-bottom-neg-1 margin-top-4">Domains <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
+      {% with group_classes="bg-gray-1 border-base-lighter padding-bottom-2 margin-top-0" add_legend_class="usa-sr-only" label_classes="margin-top-1" %}
         {% input_with_errors form.domain_permissions %}
       {% endwith %}
 
-    <h3 class="margin-bottom-0">Domain requests <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
-      {% with group_classes="bg-gray-1 border-bottom-2px border-base-lighter padding-bottom-2 margin-top-0" add_legend_class="usa-sr-only" %}
+    <h3 class="margin-bottom-neg-1">Domain requests <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
+      {% with group_classes="bg-gray-1 border-base-lighter padding-bottom-2 margin-top-0" add_legend_class="usa-sr-only" label_classes="margin-top-1" %}
         {% input_with_errors form.domain_request_permissions %}
       {% endwith %}
 
-    <h3 class="margin-bottom-0">Members <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
-      {% with group_classes="bg-gray-1 border-bottom-2px border-base-lighter padding-bottom-2 margin-top-0" add_legend_class="usa-sr-only" %}
+    <h3 class="margin-bottom-neg-1">Members <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
+      {% with group_classes="bg-gray-1 border-base-lighter padding-bottom-2 margin-top-0" add_legend_class="usa-sr-only" label_classes="margin-top-1" %}
         {% input_with_errors form.member_permissions %}
       {% endwith %}
 </div>

From 0aeaae5e1a94fca86fcf9b89efad2c7aef2a7ba7 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Tue, 11 Feb 2025 17:44:40 -0500
Subject: [PATCH 17/59] Align kebob

---
 src/registrar/assets/src/sass/_theme/_accordions.scss | 2 +-
 src/registrar/templates/portfolio_member.html         | 4 +++-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/src/registrar/assets/src/sass/_theme/_accordions.scss b/src/registrar/assets/src/sass/_theme/_accordions.scss
index ca9990ca9..736a2bbd4 100644
--- a/src/registrar/assets/src/sass/_theme/_accordions.scss
+++ b/src/registrar/assets/src/sass/_theme/_accordions.scss
@@ -37,7 +37,7 @@
 }
 
 .usa-accordion--more-actions .usa-accordion__content {
-    top: 30px;
+    top: 25px;
 }
 
 // Special positioning for the kabob menu popup in the last row on a given page
diff --git a/src/registrar/templates/portfolio_member.html b/src/registrar/templates/portfolio_member.html
index b4b54291b..087f7b73a 100644
--- a/src/registrar/templates/portfolio_member.html
+++ b/src/registrar/templates/portfolio_member.html
@@ -31,7 +31,7 @@
   <h1 class="margin-bottom-3">Manage member</h1>
 
   <div class="tablet:display-flex tablet:flex-justify">
-    <h2 class="margin-top-0 margin-bottom-3 break-word">
+    <h2 class="margin-top-0 margin-bottom-3 break-word flex-align-self-baseline">
       {% if member %}
         {{ member.email }}
       {% elif portfolio_invitation %}
@@ -46,6 +46,7 @@ <h2 class="margin-top-0 margin-bottom-3 break-word">
         data-member-id="{{ member.id }}"
         data-num-domains="{{ portfolio_permission.get_managed_domains_count }}"
         data-member-email="{{ member.email }}"
+        class="flex-align-self-baseline"
       >
         <!-- JS should inject member kebob here -->
         </div>
@@ -56,6 +57,7 @@ <h2 class="margin-top-0 margin-bottom-3 break-word">
         data-member-id="{{ portfolio_invitation.id }}"
         data-num-domains="{{ portfolio_invitation.get_managed_domains_count }}"
         data-member-email="{{ portfolio_invitation.email }}"
+        class="flex-align-self-baseline"
       >
         <!-- JS should inject invited kebob here -->
       </div>

From 76b72d19627af77fe21e27c7c34597d82aaf0250 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 12 Feb 2025 15:49:12 -0500
Subject: [PATCH 18/59] kebob

---
 .../assets/src/js/getgov/portfolio-member-page.js    |  2 +-
 src/registrar/assets/src/js/getgov/table-base.js     |  6 +++---
 .../assets/src/sass/_theme/_accordions.scss          | 12 +++++++++++-
 src/registrar/templates/portfolio_member.html        | 10 ++++++++++
 4 files changed, 25 insertions(+), 5 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/portfolio-member-page.js b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
index 95723fc7e..602fbc65e 100644
--- a/src/registrar/assets/src/js/getgov/portfolio-member-page.js
+++ b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
@@ -18,7 +18,7 @@ export function initPortfolioNewMemberPageToggle() {
             const unique_id = `${member_type}-${member_id}`;
     
             let cancelInvitationButton = member_type === "invitedmember" ? "Cancel invitation" : "Remove member";
-            wrapperDeleteAction.innerHTML = generateKebabHTML('remove-member', unique_id, cancelInvitationButton, `More Options for ${member_name}`);
+            wrapperDeleteAction.innerHTML = generateKebabHTML('remove-member', unique_id, cancelInvitationButton, `More Options for ${member_name}`, "usa-icon--large");
     
             // This easter egg is only for fixtures that dont have names as we are displaying their emails
             // All prod users will have emails linked to their account
diff --git a/src/registrar/assets/src/js/getgov/table-base.js b/src/registrar/assets/src/js/getgov/table-base.js
index ce4397887..f36fbc7b1 100644
--- a/src/registrar/assets/src/js/getgov/table-base.js
+++ b/src/registrar/assets/src/js/getgov/table-base.js
@@ -79,7 +79,7 @@ export function addModal(id, ariaLabelledby, ariaDescribedby, modalHeading, moda
  * @param {string} modal_button_text - The action button's text
  * @param {string} screen_reader_text - A screen reader helper
  */
-export function generateKebabHTML(action, unique_id, modal_button_text, screen_reader_text) {
+export function generateKebabHTML(action, unique_id, modal_button_text, screen_reader_text, icon_class) {
   const generateModalButton = (mobileOnly = false) => `
     <a 
       role="button" 
@@ -108,12 +108,12 @@ export function generateKebabHTML(action, unique_id, modal_button_text, screen_r
           aria-controls="more-actions-${unique_id}"
           aria-label="${screen_reader_text}"
         >
-          <svg class="usa-icon top-2px" aria-hidden="true" focusable="false" role="img" width="24">
+          <svg class="usa-icon${icon_class ? " " + icon_class : ""}" aria-hidden="true" focusable="false" role="img" width="24">
             <use xlink:href="/public/img/sprite.svg#more_vert"></use>
           </svg>
         </button>
       </div>
-      <div id="more-actions-${unique_id}" class="usa-accordion__content usa-prose shadow-1 left-auto right-neg-1" hidden>
+      <div id="more-actions-${unique_id}" class="usa-accordion__content usa-prose shadow-1 left-auto right-0" hidden>
         <h2>More options</h2>
         ${generateModalButton()} <!-- Desktop button -->
       </div>
diff --git a/src/registrar/assets/src/sass/_theme/_accordions.scss b/src/registrar/assets/src/sass/_theme/_accordions.scss
index 736a2bbd4..6651b3ac0 100644
--- a/src/registrar/assets/src/sass/_theme/_accordions.scss
+++ b/src/registrar/assets/src/sass/_theme/_accordions.scss
@@ -5,12 +5,22 @@
     display: inline-block;
     width: auto;
     position: relative;
+    .usa-accordion__button {
+        border-radius: units(.5);
+    }
+    .usa-accordion__button:focus {
+        outline-offset: 0;
+        outline-width: 3px;
+    }
     .usa-accordion__button[aria-expanded=false],
     .usa-accordion__button[aria-expanded=false]:hover,
     .usa-accordion__button[aria-expanded=true],
     .usa-accordion__button[aria-expanded=true]:hover {
         background-image: none;
     }
+    .usa-accordion__button[aria-expanded=true] {
+        background-color: color('primary-lighter');
+    }
     .usa-accordion__content {
         // Note, width is determined by a custom width class on one of the children
         position: absolute;
@@ -37,7 +47,7 @@
 }
 
 .usa-accordion--more-actions .usa-accordion__content {
-    top: 25px;
+    top: 28px;
 }
 
 // Special positioning for the kabob menu popup in the last row on a given page
diff --git a/src/registrar/templates/portfolio_member.html b/src/registrar/templates/portfolio_member.html
index 087f7b73a..36765a0cd 100644
--- a/src/registrar/templates/portfolio_member.html
+++ b/src/registrar/templates/portfolio_member.html
@@ -67,6 +67,16 @@ <h2 class="margin-top-0 margin-bottom-3 break-word flex-align-self-baseline">
 
   <form method="post" id="member-delete-form" action="{{ request.path }}/delete"> {% csrf_token %} </form>
   <address>
+    <strong class="text-primary-dark">Last active:</strong>
+    {% if member and member.last_login %}
+        {{ member.last_login|date:"F j, Y" }}
+      {% elif portfolio_invitation %}
+        Invited
+      {% else %}
+        ⎯
+      {% endif %}
+    <br />
+
     <strong class="text-primary-darker">Full name:</strong>
     {% if member %}
       {% if member.first_name or member.last_name %}

From acc5eae5d927306ed370f15aef9c309e0bb3b326 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 12 Feb 2025 15:59:22 -0500
Subject: [PATCH 19/59] wip

---
 .../templates/includes/member_basic_permissions.html        | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/registrar/templates/includes/member_basic_permissions.html b/src/registrar/templates/includes/member_basic_permissions.html
index 876618fbb..0526461d4 100644
--- a/src/registrar/templates/includes/member_basic_permissions.html
+++ b/src/registrar/templates/includes/member_basic_permissions.html
@@ -1,6 +1,6 @@
 {% load field_helpers %}
 <div id="member-basic-permissions" class="margin-top-2">
-    <h2>What permissions do you want to add?</h2>
+    <h2>Member permissions</h2>
     <p>Configure the permissions for this member. Basic members cannot manage member permissions or organization metadata.</p>
 
     <h3 class="margin-bottom-neg-1 margin-top-4">Domains <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
@@ -8,12 +8,12 @@ <h3 class="margin-bottom-neg-1 margin-top-4">Domains <abbr class="usa-hint usa-h
         {% input_with_errors form.domain_permissions %}
       {% endwith %}
 
-    <h3 class="margin-bottom-neg-1">Domain requests <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
+    <h3 class="margin-bottom-neg-1 margin-top-2">Domain requests <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
       {% with group_classes="bg-gray-1 border-base-lighter padding-bottom-2 margin-top-0" add_legend_class="usa-sr-only" label_classes="margin-top-1" %}
         {% input_with_errors form.domain_request_permissions %}
       {% endwith %}
 
-    <h3 class="margin-bottom-neg-1">Members <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
+    <h3 class="margin-bottom-neg-1  margin-top-2">Members <abbr class="usa-hint usa-hint--required" title="required">*</abbr></h3>
       {% with group_classes="bg-gray-1 border-base-lighter padding-bottom-2 margin-top-0" add_legend_class="usa-sr-only" label_classes="margin-top-1" %}
         {% input_with_errors form.member_permissions %}
       {% endwith %}

From 3c1f663651103e2216658667adc6fe1c1680c9a2 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 12 Feb 2025 16:10:04 -0500
Subject: [PATCH 20/59] wip

---
 src/registrar/assets/src/js/getgov/table-base.js          | 2 +-
 src/registrar/templates/portfolio_member_permissions.html | 2 +-
 src/registrar/templates/portfolio_members_add_new.html    | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-base.js b/src/registrar/assets/src/js/getgov/table-base.js
index f36fbc7b1..6444f6879 100644
--- a/src/registrar/assets/src/js/getgov/table-base.js
+++ b/src/registrar/assets/src/js/getgov/table-base.js
@@ -85,7 +85,7 @@ export function generateKebabHTML(action, unique_id, modal_button_text, screen_r
       role="button" 
       id="button-trigger-${action}-${unique_id}"
       href="#toggle-${action}-${unique_id}"
-      class="usa-button usa-button--unstyled text-no-underline late-loading-modal-trigger margin-top-2 line-height-sans-5 text-secondary ${mobileOnly ? 'visible-mobile-flex' : ''}"
+      class="usa-button usa-button--unstyled text-underline late-loading-modal-trigger margin-top-2 line-height-sans-5 text-secondary ${mobileOnly ? 'visible-mobile-flex' : ''}"
       aria-controls="toggle-${action}-${unique_id}"
       data-open-modal
     >
diff --git a/src/registrar/templates/portfolio_member_permissions.html b/src/registrar/templates/portfolio_member_permissions.html
index 6d187084b..40e35c8a7 100644
--- a/src/registrar/templates/portfolio_member_permissions.html
+++ b/src/registrar/templates/portfolio_member_permissions.html
@@ -78,7 +78,7 @@ <h2 class="margin-top-1">Member</h2>
   <!-- Member access radio buttons (Toggles other sections) -->
   <fieldset class="usa-fieldset">
     <legend>
-      <h2 class="margin-top-0">Member Access</h2>
+      <h2 class="margin-top-0">Member access</h2>
     </legend>
 
     <em>Select the level of access for this member. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></em>
diff --git a/src/registrar/templates/portfolio_members_add_new.html b/src/registrar/templates/portfolio_members_add_new.html
index d58508ac2..71c917dbd 100644
--- a/src/registrar/templates/portfolio_members_add_new.html
+++ b/src/registrar/templates/portfolio_members_add_new.html
@@ -109,7 +109,7 @@ <h3>Member access and permissions</h3>
             <h4 class="margin-bottom-0">Email</h4>
             <p class="margin-top-0" id="modalEmail"></p>
 
-            <h4 class="margin-bottom-0">Member Access</h4>
+            <h4 class="margin-bottom-0">Member access</h4>
             <p class="margin-top-0" id="modalAccessLevel"></p>
 
             <!-- Dynamic Permissions Details -->

From 859484c83698122c9da029676b4c403b187a5a24 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 12 Feb 2025 16:21:35 -0500
Subject: [PATCH 21/59] wip

---
 src/registrar/assets/src/js/getgov/table-base.js      | 4 ++--
 src/registrar/assets/src/sass/_theme/_accordions.scss | 5 ++++-
 src/registrar/assets/src/sass/_theme/_base.scss       | 8 ++++++++
 3 files changed, 14 insertions(+), 3 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-base.js b/src/registrar/assets/src/js/getgov/table-base.js
index 6444f6879..bf561fa1f 100644
--- a/src/registrar/assets/src/js/getgov/table-base.js
+++ b/src/registrar/assets/src/js/getgov/table-base.js
@@ -99,7 +99,7 @@ export function generateKebabHTML(action, unique_id, modal_button_text, screen_r
   // Main kebab structure
   const kebab = `
     ${generateModalButton(true)} <!-- Mobile button -->
-    <div class="usa-accordion usa-accordion--more-actions margin-right-2 hidden-mobile-flex">
+    <div class="usa-accordion usa-accordion--more-actions margin-right-2 margin-top-3px hidden-mobile-flex">
       <div class="usa-accordion__heading">
         <button
           type="button"
@@ -113,7 +113,7 @@ export function generateKebabHTML(action, unique_id, modal_button_text, screen_r
           </svg>
         </button>
       </div>
-      <div id="more-actions-${unique_id}" class="usa-accordion__content usa-prose shadow-1 left-auto right-0" hidden>
+      <div id="more-actions-${unique_id}" class="usa-accordion__content usa-prose shadow-1 left-auto right-0${icon_class === 'usa-icon--large' ? ' top-28px' : ''}" hidden>
         <h2>More options</h2>
         ${generateModalButton()} <!-- Desktop button -->
       </div>
diff --git a/src/registrar/assets/src/sass/_theme/_accordions.scss b/src/registrar/assets/src/sass/_theme/_accordions.scss
index 6651b3ac0..803a4510a 100644
--- a/src/registrar/assets/src/sass/_theme/_accordions.scss
+++ b/src/registrar/assets/src/sass/_theme/_accordions.scss
@@ -47,7 +47,10 @@
 }
 
 .usa-accordion--more-actions .usa-accordion__content {
-    top: 28px;
+    top: 20px;
+    &.top-28px {
+        top: 28px;
+    }
 }
 
 // Special positioning for the kabob menu popup in the last row on a given page
diff --git a/src/registrar/assets/src/sass/_theme/_base.scss b/src/registrar/assets/src/sass/_theme/_base.scss
index be3b89baf..e7ea1fcb6 100644
--- a/src/registrar/assets/src/sass/_theme/_base.scss
+++ b/src/registrar/assets/src/sass/_theme/_base.scss
@@ -275,3 +275,11 @@ abbr[title] {
 .width-quarter {
   width: 25%;
 }
+
+.margin-top-3px {
+  margin-top: 3px;
+}
+
+.top-28px {
+  top: 28px;
+}

From 594c9f9d17203c9fd359feff0754f6e356f3053a Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 12 Feb 2025 16:26:34 -0500
Subject: [PATCH 22/59] wip

---
 src/registrar/templates/portfolio_member.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/portfolio_member.html b/src/registrar/templates/portfolio_member.html
index 36765a0cd..1b9ffd653 100644
--- a/src/registrar/templates/portfolio_member.html
+++ b/src/registrar/templates/portfolio_member.html
@@ -67,7 +67,7 @@ <h2 class="margin-top-0 margin-bottom-3 break-word flex-align-self-baseline">
 
   <form method="post" id="member-delete-form" action="{{ request.path }}/delete"> {% csrf_token %} </form>
   <address>
-    <strong class="text-primary-dark">Last active:</strong>
+    <strong class="text-primary-darker">Last active:</strong>
     {% if member and member.last_login %}
         {{ member.last_login|date:"F j, Y" }}
       {% elif portfolio_invitation %}

From 6189f6d08210d263667bf5af054d625377ed6ff2 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 12 Feb 2025 18:46:04 -0500
Subject: [PATCH 23/59] refactor modal layout

---
 .../src/js/getgov/portfolio-member-page.js    | 25 +++++++++++--------
 .../portfolio_member_permissions.html         |  2 +-
 .../templates/portfolio_members_add_new.html  |  9 +++----
 3 files changed, 19 insertions(+), 17 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/portfolio-member-page.js b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
index 602fbc65e..d1a40de9b 100644
--- a/src/registrar/assets/src/js/getgov/portfolio-member-page.js
+++ b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
@@ -101,7 +101,7 @@ export function initAddNewMemberPageListeners() {
 
       permissionSections.forEach(section => {
         // Find the <h3> element text
-        const sectionTitle = section.textContent;
+        const sectionTitle = section.textContent.trim().replace(/\*$/, "") + ": ";
 
         // Find the associated radio buttons container (next fieldset)
         const fieldset = section.nextElementSibling;
@@ -128,25 +128,30 @@ export function initAddNewMemberPageListeners() {
       });
     } else {
       // for admin users, the permissions are always the same
-      appendPermissionInContainer('Domains', 'Viewer', permissionDetailsContainer);
-      appendPermissionInContainer('Domain requests', 'Creator', permissionDetailsContainer);
-      appendPermissionInContainer('Members', 'Manager', permissionDetailsContainer);
+      appendPermissionInContainer('Domains: ', 'Viewer', permissionDetailsContainer);
+      appendPermissionInContainer('Domain requests: ', 'Creator', permissionDetailsContainer);
+      appendPermissionInContainer('Members: ', 'Manager', permissionDetailsContainer);
     }
   }
 
   function appendPermissionInContainer(sectionTitle, permissionDisplay, permissionContainer) {
+    console.log(sectionTitle)
     // Create new elements for the content
-    const titleElement = document.createElement("h4");
+    const elementContainer = document.createElement("p");
+    elementContainer.classList.add("margin-top-0", "margin-bottom-1");
+
+    const titleElement = document.createElement("strong");
     titleElement.textContent = sectionTitle;
-    titleElement.classList.add("text-primary", "margin-bottom-0");
+    titleElement.classList.add("text-primary-darker");
 
-    const permissionElement = document.createElement("p");
+    const permissionElement = document.createElement("span");
     permissionElement.textContent = permissionDisplay;
-    permissionElement.classList.add("margin-top-0");
 
     // Append to the content container
-    permissionContainer.appendChild(titleElement);
-    permissionContainer.appendChild(permissionElement);
+    elementContainer.appendChild(titleElement);
+    elementContainer.appendChild(permissionElement);
+
+    permissionContainer.appendChild(elementContainer);
   }
 
   /*
diff --git a/src/registrar/templates/portfolio_member_permissions.html b/src/registrar/templates/portfolio_member_permissions.html
index 40e35c8a7..f611b3659 100644
--- a/src/registrar/templates/portfolio_member_permissions.html
+++ b/src/registrar/templates/portfolio_member_permissions.html
@@ -83,7 +83,7 @@ <h2 class="margin-top-0">Member access</h2>
 
     <em>Select the level of access for this member. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></em>
 
-    {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
+    {% with group_classes="margin-top-0" add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
       {% input_with_errors form.role %}
     {% endwith %}
 
diff --git a/src/registrar/templates/portfolio_members_add_new.html b/src/registrar/templates/portfolio_members_add_new.html
index 71c917dbd..7c9125b79 100644
--- a/src/registrar/templates/portfolio_members_add_new.html
+++ b/src/registrar/templates/portfolio_members_add_new.html
@@ -57,7 +57,7 @@ <h2>What level of access would you like to grant this member?</h2>
 
       <p class="margin-y-0">Select the level of access for this member. <abbr class="usa-hint usa-hint--required" title="required">*</abbr></p>
 
-      {% with add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
+      {% with group_classes="margin-top-0" add_class="usa-radio__input--tile" add_legend_class="usa-sr-only" %}
         {% input_with_errors form.role %}
       {% endwith %}
     </fieldset>
@@ -105,12 +105,9 @@ <h2 class="usa-modal__heading" id="invite-member-heading">
                 Invite this member to the organization?
             </h2>
             <h3>Member access and permissions</h3>
-            <!-- Display email as a header and access level -->
-            <h4 class="margin-bottom-0">Email</h4>
-            <p class="margin-top-0" id="modalEmail"></p>
 
-            <h4 class="margin-bottom-0">Member access</h4>
-            <p class="margin-top-0" id="modalAccessLevel"></p>
+            <p class="margin-bottom-1"><strong class="text-primary-darker">Email:</strong> <span id="modalEmail"></span></p>
+            <p class="margin-top-0 margin-bottom-1"><strong class="text-primary-darker">Member access:</strong> <span id="modalAccessLevel"></span></p>
 
             <!-- Dynamic Permissions Details -->
             <div id="permission_details"></div>

From 2c62d8a497cece2d10d0639fcc3aae9539728a9d Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 12 Feb 2025 18:57:17 -0500
Subject: [PATCH 24/59] change hash to apostrophe

---
 src/registrar/assets/src/js/getgov/portfolio-member-page.js | 1 -
 src/registrar/views/portfolios.py                           | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/portfolio-member-page.js b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
index d1a40de9b..0510c875d 100644
--- a/src/registrar/assets/src/js/getgov/portfolio-member-page.js
+++ b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
@@ -135,7 +135,6 @@ export function initAddNewMemberPageListeners() {
   }
 
   function appendPermissionInContainer(sectionTitle, permissionDisplay, permissionContainer) {
-    console.log(sectionTitle)
     // Create new elements for the content
     const elementContainer = document.createElement("p");
     elementContainer.classList.add("margin-top-0", "margin-bottom-1");
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 0f93ec8e1..db9dc2359 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -127,7 +127,7 @@ def post(self, request, pk):
         if active_requests_count > 0:
             # If they have any in progress requests
             error_message = mark_safe(  # nosec
-                "This member can't be removed from the organization because they have an active domain request. "
+                "This member can’t be removed from the organization because they have an active domain request. "
                 f"Please <a class='usa-link' href='{support_url}' target='_blank'>contact us</a> to remove this member."
             )
         elif member.is_only_admin_of_portfolio(portfolio_member_permission.portfolio):

From 67fb33610246cebe7f27acb1701dc8bd269d0db6 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 11:47:26 -0500
Subject: [PATCH 25/59] apostrophe

---
 src/registrar/views/portfolios.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index db9dc2359..b3f234924 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -127,7 +127,7 @@ def post(self, request, pk):
         if active_requests_count > 0:
             # If they have any in progress requests
             error_message = mark_safe(  # nosec
-                "This member can’t be removed from the organization because they have an active domain request. "
+                "This member can\u0027t be removed from the organization because they have an active domain request. "
                 f"Please <a class='usa-link' href='{support_url}' target='_blank'>contact us</a> to remove this member."
             )
         elif member.is_only_admin_of_portfolio(portfolio_member_permission.portfolio):

From 6ce45d990674cd6df465ae259415b74cf0a21a93 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 11:48:52 -0500
Subject: [PATCH 26/59] apostrophe

---
 src/registrar/views/portfolios.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index b3f234924..2fdafe9ca 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -127,7 +127,7 @@ def post(self, request, pk):
         if active_requests_count > 0:
             # If they have any in progress requests
             error_message = mark_safe(  # nosec
-                "This member can\u0027t be removed from the organization because they have an active domain request. "
+                "This member can\u2019t be removed from the organization because they have an active domain request. "
                 f"Please <a class='usa-link' href='{support_url}' target='_blank'>contact us</a> to remove this member."
             )
         elif member.is_only_admin_of_portfolio(portfolio_member_permission.portfolio):

From 153e9ffa1a554b75ff6d90cbf03d1e8d2c355f33 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 12:40:14 -0500
Subject: [PATCH 27/59] adjust paddings on tables, portfolio

---
 src/registrar/assets/src/js/getgov/table-domain-requests.js | 2 +-
 src/registrar/templates/portfolio_base.html                 | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-domain-requests.js b/src/registrar/assets/src/js/getgov/table-domain-requests.js
index 8556b714f..f14041b22 100644
--- a/src/registrar/assets/src/js/getgov/table-domain-requests.js
+++ b/src/registrar/assets/src/js/getgov/table-domain-requests.js
@@ -117,7 +117,7 @@ export class DomainRequestsTable extends BaseTable {
         ${request.status}
       </td>
       <td class="width--action-column">
-        <div class="tablet:display-flex tablet:flex-row flex-wrap">
+        <div class="tablet:display-flex tablet:flex-row">
           <a href="${actionUrl}" ${customTableOptions.hasAdditionalActions ? "class='margin-right-2'" : ''}>
             <svg class="usa-icon top-1px" aria-hidden="true" focusable="false" role="img" width="24">
               <use xlink:href="/public/img/sprite.svg#${request.svg_icon}"></use>
diff --git a/src/registrar/templates/portfolio_base.html b/src/registrar/templates/portfolio_base.html
index ec7c0c22b..28e8b60e0 100644
--- a/src/registrar/templates/portfolio_base.html
+++ b/src/registrar/templates/portfolio_base.html
@@ -9,7 +9,7 @@
             {# the entire logged in page goes here #}
             
             <div class="grid-row {% if not is_widescreen_centered %}max-width--grid-container{% endif %}">
-              <div class="desktop:grid-col-10 {% if not is_widescreen_centered %}tablet:grid-col-11 {% else %}tablet:padding-left-4 tablet:padding-right-4 tablet:grid-col-12 desktop:grid-offset-1{% endif %}">
+              <div class="desktop:grid-col-10{% if not is_widescreen_centered %} tablet:grid-col-11{% else %} tablet:grid-col-12 desktop:grid-offset-1{% endif %}">
             
                 {% block portfolio_content %}{% endblock %}
             

From 7dc1cb073d42ee8aa8b2f1cb4c9db0eaa407ee37 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 13:34:31 -0500
Subject: [PATCH 28/59] =?UTF-8?q?Change=20Can't=20to=20Can=E2=80=99t=20in?=
 =?UTF-8?q?=20a=20bunch=20of=20error=20messages?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/registrar/models/domain.py                     |  6 +++---
 src/registrar/models/domain_request.py             |  2 +-
 .../templates/includes/banner-system-outage.html   |  2 +-
 src/registrar/tests/test_admin.py                  | 14 +++++++-------
 src/registrar/tests/test_email_invitations.py      |  4 ++--
 src/registrar/tests/test_nameserver_error.py       |  2 +-
 src/registrar/tests/test_views_domain.py           |  2 +-
 src/registrar/tests/test_views_portfolio.py        | 10 +++++++---
 src/registrar/utility/errors.py                    |  8 ++++----
 src/registrar/views/portfolios.py                  |  2 +-
 10 files changed, 28 insertions(+), 24 deletions(-)

diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index 649b3f93d..d738b6bcc 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -780,7 +780,7 @@ def statuses(self) -> list[str]:
         try:
             return self._get_property("statuses")
         except KeyError:
-            logger.error("Can't retrieve status from domain info")
+            logger.error("Can’t retrieve status from domain info")
             return []
 
     @statuses.setter  # type: ignore
@@ -857,7 +857,7 @@ def _update_domain_with_contact(self, contact: PublicContact, rem=False):
             if rem:
                 action = "remove"
 
-            raise Exception("Can't %s the contact of type %s" % (action, contact.contact_type))
+            raise Exception("Can’t %s the contact of type %s" % (action, contact.contact_type))
 
     @Cache
     def security_contact(self) -> PublicContact | None:
@@ -2087,7 +2087,7 @@ def _get_hosts(self, hosts):
 
     def _get_or_create_public_contact(self, public_contact: PublicContact):
         """Tries to find a PublicContact object in our DB.
-        If it can't, it'll create it. Returns PublicContact"""
+        If it can’t, it'll create it. Returns PublicContact"""
         db_contact = PublicContact.objects.filter(
             registry_id=public_contact.registry_id,
             contact_type=public_contact.contact_type,
diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index 1cca3742f..9d93fa578 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -862,7 +862,7 @@ def delete_and_clean_up_domain(self, called_from):
             self.approved_domain = None
         except Exception as err:
             logger.error(err)
-            logger.error(f"Can't query an approved domain while attempting {called_from}")
+            logger.error(f"Can’t query an approved domain while attempting {called_from}")
 
         # Delete the suborg as long as this is the only place it is used
         self._cleanup_dangling_suborg()
diff --git a/src/registrar/templates/includes/banner-system-outage.html b/src/registrar/templates/includes/banner-system-outage.html
index 60fc4eb03..638cb6843 100644
--- a/src/registrar/templates/includes/banner-system-outage.html
+++ b/src/registrar/templates/includes/banner-system-outage.html
@@ -5,7 +5,7 @@ <h3 class="usa-alert__heading">
             System outage
         </h3>
         <p class="usa-alert__text maxw-none">
-            Oct 16, 24:00 UTC: We're investigating an outage on the .gov registrar. The .gov zone and individual domains remain online. However, you can't request a new domain or manage an existing one at this time.
+            Oct 16, 24:00 UTC: We're investigating an outage on the .gov registrar. The .gov zone and individual domains remain online. However, you can’t request a new domain or manage an existing one at this time.
         </p>
       </div>
     </div>
diff --git a/src/registrar/tests/test_admin.py b/src/registrar/tests/test_admin.py
index 9447d211f..cfdc866d0 100644
--- a/src/registrar/tests/test_admin.py
+++ b/src/registrar/tests/test_admin.py
@@ -526,7 +526,7 @@ def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_s
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can't send invitation email. No email is associated with your user account."
+            request, "Can’t send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -595,7 +595,7 @@ def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_s
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can't send invitation email. No email is associated with your user account."
+            request, "Can’t send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -661,7 +661,7 @@ def test_add_domain_invitation_when_user_existing_portfolio_member_raises_except
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can't send invitation email. No email is associated with your user account."
+            request, "Can’t send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -943,7 +943,7 @@ def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_se
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can't send invitation email. No email is associated with your user account."
+            request, "Can’t send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -1010,7 +1010,7 @@ def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_se
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can't send invitation email. No email is associated with your user account."
+            request, "Can’t send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -1076,7 +1076,7 @@ def test_add_domain_invitation_when_user_existing_portfolio_email_raises_excepti
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can't send invitation email. No email is associated with your user account."
+            request, "Can’t send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -1484,7 +1484,7 @@ def test_save_exception_missing_email_error(self, mock_messages_error, mock_send
         # Assert that messages.error was called with the correct message
         mock_messages_error.assert_called_once_with(
             request,
-            "Can't send invitation email. No email is associated with your user account.",
+            "Can’t send invitation email. No email is associated with your user account.",
         )
 
     @less_console_noise_decorator
diff --git a/src/registrar/tests/test_email_invitations.py b/src/registrar/tests/test_email_invitations.py
index 77a8c402f..4d9e286aa 100644
--- a/src/registrar/tests/test_email_invitations.py
+++ b/src/registrar/tests/test_email_invitations.py
@@ -531,7 +531,7 @@ def test_send_portfolio_invitation_email_missing_requestor_email(self, mock_get_
             send_portfolio_invitation_email(self.email, self.requestor, self.portfolio, is_admin_invitation)
 
         self.assertIn(
-            "Can't send invitation email. No email is associated with your user account.", str(context.exception)
+            "Can’t send invitation email. No email is associated with your user account.", str(context.exception)
         )
 
     @less_console_noise_decorator
@@ -869,7 +869,7 @@ def test_missing_email_error(self, mock_send_removal_emails, mock_get_requestor_
         mock_get_requestor_email.assert_called_once_with(self.requestor, portfolio=self.portfolio)
         mock_send_removal_emails.assert_not_called()  # Should not proceed if email retrieval fails
         self.assertEqual(
-            str(context.exception), "Can't send invitation email. No email is associated with your user account."
+            str(context.exception), "Can’t send invitation email. No email is associated with your user account."
         )
 
     @less_console_noise_decorator
diff --git a/src/registrar/tests/test_nameserver_error.py b/src/registrar/tests/test_nameserver_error.py
index be9a26f6f..35e218fd2 100644
--- a/src/registrar/tests/test_nameserver_error.py
+++ b/src/registrar/tests/test_nameserver_error.py
@@ -20,7 +20,7 @@ def test_with_only_code(self):
         """Test NameserverError when no ip address
         and no nameserver is passed"""
         nameserver = "nameserver val"
-        expected = "You can't have more than 13 nameservers."
+        expected = "You can’t have more than 13 nameservers."
 
         nsException = NameserverError(code=nsErrorCodes.TOO_MANY_HOSTS, nameserver=nameserver)
         self.assertEqual(nsException.message, expected)
diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index b84d284d8..de1d53ebb 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -1331,7 +1331,7 @@ def test_domain_invitation_email_displays_error(self):
             self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
             add_page.form.submit()
 
-            expected_message_content = "Can't send invitation email. No email is associated with your user account."
+            expected_message_content = "Can’t send invitation email. No email is associated with your user account."
 
             # Assert that the error message was called with the correct argument
             mock_error.assert_called_once_with(
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 052155bb0..176437b5c 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -1696,12 +1696,16 @@ def test_portfolio_member_delete_view_members_table_active_requests(self, send_r
             self.assertEqual(response.status_code, 400)  # Bad request due to active requests
             support_url = "https://get.gov/contact/"
             expected_error_message = (
-                "This member can't be removed from the organization because they have an active domain request. "
+                "This member can\u2019t be removed from the organization because they have an active domain request. "
                 f"Please <a class='usa-link' href='{support_url}' target='_blank'>contact us</a> "
                 "to remove this member."
             )
 
-            self.assertContains(response, expected_error_message, status_code=400)
+            # The curly apostrophe \u2019 requires us to do a bit more work before we can assert
+            response_json = json.loads(response.content.decode("utf-8"))
+            self.assertEqual(response.status_code, 400)  # Ensure it's a bad request
+            self.assertIn("error", response_json)  # Ensure the "error" key exists
+            self.assertEqual(response_json["error"], expected_error_message)  # Compare actual vs expected message
 
             # assert that send_portfolio_admin_removal_emails is not called
             send_removal_emails.assert_not_called()
@@ -1956,7 +1960,7 @@ def test_portfolio_member_delete_view_manage_members_page_active_requests(self):
 
                 support_url = "https://get.gov/contact/"
                 expected_error_message = (
-                    "This member can't be removed from the organization because they have an active domain request. "
+                    "This member can’t be removed from the organization because they have an active domain request. "
                     f"Please <a class='usa-link' href='{support_url}' target='_blank'>contact us</a> "
                     "to remove this member."
                 )
diff --git a/src/registrar/utility/errors.py b/src/registrar/utility/errors.py
index 0a6f00c36..c7a353f67 100644
--- a/src/registrar/utility/errors.py
+++ b/src/registrar/utility/errors.py
@@ -48,13 +48,13 @@ class MissingEmailError(InvitationError):
 
     def __init__(self, email=None, domain=None, portfolio=None):
         # Default message if no additional info is provided
-        message = "Can't send invitation email. No email is associated with your user account."
+        message = "Can’t send invitation email. No email is associated with your user account."
 
         # Customize message based on provided arguments
         if email and domain:
-            message = f"Can't send email to '{email}' on domain '{domain}'. No email exists for the requestor."
+            message = f"Can’t send email to '{email}' on domain '{domain}'. No email exists for the requestor."
         elif email and portfolio:
-            message = f"Can't send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor."
+            message = f"Can’t send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor."
 
         super().__init__(message)
 
@@ -201,7 +201,7 @@ class NameserverError(Exception):
         NameserverErrorCodes.MISSING_IP: ("Using your domain for a name server requires an IP address."),
         NameserverErrorCodes.GLUE_RECORD_NOT_ALLOWED: ("Name server address does not match domain name"),
         NameserverErrorCodes.INVALID_IP: ("{}: Enter an IP address in the required format."),
-        NameserverErrorCodes.TOO_MANY_HOSTS: ("You can't have more than 13 nameservers."),
+        NameserverErrorCodes.TOO_MANY_HOSTS: ("You can’t have more than 13 nameservers."),
         NameserverErrorCodes.MISSING_HOST: ("You must provide a name server to enter an IP address."),
         NameserverErrorCodes.INVALID_HOST: ("Enter a name server in the required format, like ns1.example.com"),
         NameserverErrorCodes.DUPLICATE_HOST: (
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 2fdafe9ca..be91cc06a 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -935,7 +935,7 @@ def _handle_exceptions(self, exception, portfolio, email):
         elif isinstance(exception, MissingEmailError):
             messages.error(self.request, str(exception))
             logger.error(
-                f"Can't send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor.",
+                f"Can’t send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor.",
                 exc_info=True,
             )
         else:

From d64ebab978f99549a48026b6c54e3426e0f18535 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 13:48:36 -0500
Subject: [PATCH 29/59] Revert apostrophe work

---
 src/registrar/models/domain.py                     |  6 +++---
 src/registrar/models/domain_request.py             |  2 +-
 .../templates/includes/banner-system-outage.html   |  2 +-
 src/registrar/tests/test_admin.py                  | 14 +++++++-------
 src/registrar/tests/test_email_invitations.py      |  4 ++--
 src/registrar/tests/test_nameserver_error.py       |  2 +-
 src/registrar/tests/test_views_domain.py           |  2 +-
 src/registrar/tests/test_views_portfolio.py        | 10 +++-------
 src/registrar/utility/errors.py                    |  8 ++++----
 src/registrar/views/portfolios.py                  |  2 +-
 10 files changed, 24 insertions(+), 28 deletions(-)

diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index d738b6bcc..649b3f93d 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -780,7 +780,7 @@ def statuses(self) -> list[str]:
         try:
             return self._get_property("statuses")
         except KeyError:
-            logger.error("Can’t retrieve status from domain info")
+            logger.error("Can't retrieve status from domain info")
             return []
 
     @statuses.setter  # type: ignore
@@ -857,7 +857,7 @@ def _update_domain_with_contact(self, contact: PublicContact, rem=False):
             if rem:
                 action = "remove"
 
-            raise Exception("Can’t %s the contact of type %s" % (action, contact.contact_type))
+            raise Exception("Can't %s the contact of type %s" % (action, contact.contact_type))
 
     @Cache
     def security_contact(self) -> PublicContact | None:
@@ -2087,7 +2087,7 @@ def _get_hosts(self, hosts):
 
     def _get_or_create_public_contact(self, public_contact: PublicContact):
         """Tries to find a PublicContact object in our DB.
-        If it can’t, it'll create it. Returns PublicContact"""
+        If it can't, it'll create it. Returns PublicContact"""
         db_contact = PublicContact.objects.filter(
             registry_id=public_contact.registry_id,
             contact_type=public_contact.contact_type,
diff --git a/src/registrar/models/domain_request.py b/src/registrar/models/domain_request.py
index 9d93fa578..1cca3742f 100644
--- a/src/registrar/models/domain_request.py
+++ b/src/registrar/models/domain_request.py
@@ -862,7 +862,7 @@ def delete_and_clean_up_domain(self, called_from):
             self.approved_domain = None
         except Exception as err:
             logger.error(err)
-            logger.error(f"Can’t query an approved domain while attempting {called_from}")
+            logger.error(f"Can't query an approved domain while attempting {called_from}")
 
         # Delete the suborg as long as this is the only place it is used
         self._cleanup_dangling_suborg()
diff --git a/src/registrar/templates/includes/banner-system-outage.html b/src/registrar/templates/includes/banner-system-outage.html
index 638cb6843..60fc4eb03 100644
--- a/src/registrar/templates/includes/banner-system-outage.html
+++ b/src/registrar/templates/includes/banner-system-outage.html
@@ -5,7 +5,7 @@ <h3 class="usa-alert__heading">
             System outage
         </h3>
         <p class="usa-alert__text maxw-none">
-            Oct 16, 24:00 UTC: We're investigating an outage on the .gov registrar. The .gov zone and individual domains remain online. However, you can’t request a new domain or manage an existing one at this time.
+            Oct 16, 24:00 UTC: We're investigating an outage on the .gov registrar. The .gov zone and individual domains remain online. However, you can't request a new domain or manage an existing one at this time.
         </p>
       </div>
     </div>
diff --git a/src/registrar/tests/test_admin.py b/src/registrar/tests/test_admin.py
index cfdc866d0..9447d211f 100644
--- a/src/registrar/tests/test_admin.py
+++ b/src/registrar/tests/test_admin.py
@@ -526,7 +526,7 @@ def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_s
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can’t send invitation email. No email is associated with your user account."
+            request, "Can't send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -595,7 +595,7 @@ def test_add_domain_invitation_when_user_not_portfolio_member_raises_exception_s
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can’t send invitation email. No email is associated with your user account."
+            request, "Can't send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -661,7 +661,7 @@ def test_add_domain_invitation_when_user_existing_portfolio_member_raises_except
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can’t send invitation email. No email is associated with your user account."
+            request, "Can't send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -943,7 +943,7 @@ def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_se
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can’t send invitation email. No email is associated with your user account."
+            request, "Can't send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -1010,7 +1010,7 @@ def test_add_domain_invitation_when_user_not_portfolio_email_raises_exception_se
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can’t send invitation email. No email is associated with your user account."
+            request, "Can't send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -1076,7 +1076,7 @@ def test_add_domain_invitation_when_user_existing_portfolio_email_raises_excepti
 
         # Assert error message
         mock_messages_error.assert_called_once_with(
-            request, "Can’t send invitation email. No email is associated with your user account."
+            request, "Can't send invitation email. No email is associated with your user account."
         )
 
         # Assert the invitations were saved
@@ -1484,7 +1484,7 @@ def test_save_exception_missing_email_error(self, mock_messages_error, mock_send
         # Assert that messages.error was called with the correct message
         mock_messages_error.assert_called_once_with(
             request,
-            "Can’t send invitation email. No email is associated with your user account.",
+            "Can't send invitation email. No email is associated with your user account.",
         )
 
     @less_console_noise_decorator
diff --git a/src/registrar/tests/test_email_invitations.py b/src/registrar/tests/test_email_invitations.py
index 4d9e286aa..77a8c402f 100644
--- a/src/registrar/tests/test_email_invitations.py
+++ b/src/registrar/tests/test_email_invitations.py
@@ -531,7 +531,7 @@ def test_send_portfolio_invitation_email_missing_requestor_email(self, mock_get_
             send_portfolio_invitation_email(self.email, self.requestor, self.portfolio, is_admin_invitation)
 
         self.assertIn(
-            "Can’t send invitation email. No email is associated with your user account.", str(context.exception)
+            "Can't send invitation email. No email is associated with your user account.", str(context.exception)
         )
 
     @less_console_noise_decorator
@@ -869,7 +869,7 @@ def test_missing_email_error(self, mock_send_removal_emails, mock_get_requestor_
         mock_get_requestor_email.assert_called_once_with(self.requestor, portfolio=self.portfolio)
         mock_send_removal_emails.assert_not_called()  # Should not proceed if email retrieval fails
         self.assertEqual(
-            str(context.exception), "Can’t send invitation email. No email is associated with your user account."
+            str(context.exception), "Can't send invitation email. No email is associated with your user account."
         )
 
     @less_console_noise_decorator
diff --git a/src/registrar/tests/test_nameserver_error.py b/src/registrar/tests/test_nameserver_error.py
index 35e218fd2..be9a26f6f 100644
--- a/src/registrar/tests/test_nameserver_error.py
+++ b/src/registrar/tests/test_nameserver_error.py
@@ -20,7 +20,7 @@ def test_with_only_code(self):
         """Test NameserverError when no ip address
         and no nameserver is passed"""
         nameserver = "nameserver val"
-        expected = "You can’t have more than 13 nameservers."
+        expected = "You can't have more than 13 nameservers."
 
         nsException = NameserverError(code=nsErrorCodes.TOO_MANY_HOSTS, nameserver=nameserver)
         self.assertEqual(nsException.message, expected)
diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index de1d53ebb..b84d284d8 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -1331,7 +1331,7 @@ def test_domain_invitation_email_displays_error(self):
             self.app.set_cookie(settings.SESSION_COOKIE_NAME, session_id)
             add_page.form.submit()
 
-            expected_message_content = "Can’t send invitation email. No email is associated with your user account."
+            expected_message_content = "Can't send invitation email. No email is associated with your user account."
 
             # Assert that the error message was called with the correct argument
             mock_error.assert_called_once_with(
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 176437b5c..052155bb0 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -1696,16 +1696,12 @@ def test_portfolio_member_delete_view_members_table_active_requests(self, send_r
             self.assertEqual(response.status_code, 400)  # Bad request due to active requests
             support_url = "https://get.gov/contact/"
             expected_error_message = (
-                "This member can\u2019t be removed from the organization because they have an active domain request. "
+                "This member can't be removed from the organization because they have an active domain request. "
                 f"Please <a class='usa-link' href='{support_url}' target='_blank'>contact us</a> "
                 "to remove this member."
             )
 
-            # The curly apostrophe \u2019 requires us to do a bit more work before we can assert
-            response_json = json.loads(response.content.decode("utf-8"))
-            self.assertEqual(response.status_code, 400)  # Ensure it's a bad request
-            self.assertIn("error", response_json)  # Ensure the "error" key exists
-            self.assertEqual(response_json["error"], expected_error_message)  # Compare actual vs expected message
+            self.assertContains(response, expected_error_message, status_code=400)
 
             # assert that send_portfolio_admin_removal_emails is not called
             send_removal_emails.assert_not_called()
@@ -1960,7 +1956,7 @@ def test_portfolio_member_delete_view_manage_members_page_active_requests(self):
 
                 support_url = "https://get.gov/contact/"
                 expected_error_message = (
-                    "This member can’t be removed from the organization because they have an active domain request. "
+                    "This member can't be removed from the organization because they have an active domain request. "
                     f"Please <a class='usa-link' href='{support_url}' target='_blank'>contact us</a> "
                     "to remove this member."
                 )
diff --git a/src/registrar/utility/errors.py b/src/registrar/utility/errors.py
index c7a353f67..0a6f00c36 100644
--- a/src/registrar/utility/errors.py
+++ b/src/registrar/utility/errors.py
@@ -48,13 +48,13 @@ class MissingEmailError(InvitationError):
 
     def __init__(self, email=None, domain=None, portfolio=None):
         # Default message if no additional info is provided
-        message = "Can’t send invitation email. No email is associated with your user account."
+        message = "Can't send invitation email. No email is associated with your user account."
 
         # Customize message based on provided arguments
         if email and domain:
-            message = f"Can’t send email to '{email}' on domain '{domain}'. No email exists for the requestor."
+            message = f"Can't send email to '{email}' on domain '{domain}'. No email exists for the requestor."
         elif email and portfolio:
-            message = f"Can’t send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor."
+            message = f"Can't send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor."
 
         super().__init__(message)
 
@@ -201,7 +201,7 @@ class NameserverError(Exception):
         NameserverErrorCodes.MISSING_IP: ("Using your domain for a name server requires an IP address."),
         NameserverErrorCodes.GLUE_RECORD_NOT_ALLOWED: ("Name server address does not match domain name"),
         NameserverErrorCodes.INVALID_IP: ("{}: Enter an IP address in the required format."),
-        NameserverErrorCodes.TOO_MANY_HOSTS: ("You can’t have more than 13 nameservers."),
+        NameserverErrorCodes.TOO_MANY_HOSTS: ("You can't have more than 13 nameservers."),
         NameserverErrorCodes.MISSING_HOST: ("You must provide a name server to enter an IP address."),
         NameserverErrorCodes.INVALID_HOST: ("Enter a name server in the required format, like ns1.example.com"),
         NameserverErrorCodes.DUPLICATE_HOST: (
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index be91cc06a..2fdafe9ca 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -935,7 +935,7 @@ def _handle_exceptions(self, exception, portfolio, email):
         elif isinstance(exception, MissingEmailError):
             messages.error(self.request, str(exception))
             logger.error(
-                f"Can’t send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor.",
+                f"Can't send email to '{email}' for portfolio '{portfolio}'. No email exists for the requestor.",
                 exc_info=True,
             )
         else:

From 34914b4da4ae6249828bb64da585c7598488f05f Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 14:08:48 -0500
Subject: [PATCH 30/59] revert apostrophe work

---
 src/registrar/views/portfolios.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 2fdafe9ca..0f93ec8e1 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -127,7 +127,7 @@ def post(self, request, pk):
         if active_requests_count > 0:
             # If they have any in progress requests
             error_message = mark_safe(  # nosec
-                "This member can\u2019t be removed from the organization because they have an active domain request. "
+                "This member can't be removed from the organization because they have an active domain request. "
                 f"Please <a class='usa-link' href='{support_url}' target='_blank'>contact us</a> to remove this member."
             )
         elif member.is_only_admin_of_portfolio(portfolio_member_permission.portfolio):

From 1b4f09ec767ec11b134a73e0527d019f70249e24 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 14:36:47 -0500
Subject: [PATCH 31/59] Domain managers page

---
 src/registrar/templates/domain_users.html | 19 ++++++++++++-------
 src/registrar/views/domain.py             | 15 ---------------
 2 files changed, 12 insertions(+), 22 deletions(-)

diff --git a/src/registrar/templates/domain_users.html b/src/registrar/templates/domain_users.html
index c6e6baa93..aa39a994e 100644
--- a/src/registrar/templates/domain_users.html
+++ b/src/registrar/templates/domain_users.html
@@ -33,21 +33,26 @@ <h1>Domain managers</h1>
   </p>
   {% else %}
   <p>
-  Domain managers can update all information related to a domain within the
-  .gov registrar, including contact details, senior official, security email, and DNS name servers.
+  Domain managers can update all information related to a domain, including contact details, senior official, security email, and DNS name servers.
   </p>
   {% endif %}
 
   <ul class="usa-list">
-    <li>There is no limit to the number of domain managers you can add.</li>
-    <li>After adding a domain manager, an email invitation will be sent to that user with
-      instructions on how to set up an account.</li>
+    <li>There is no limit on the number of domain managers you can add.</li>
     <li>All domain managers must keep their contact information updated and be responsive if contacted by the .gov team.</li>
-    {% if not portfolio %}<li>All domain managers will be notified when updates are made to this domain.</li>{% endif %}
-    <li>Domains must have at least one domain manager. You can’t remove yourself as a domain manager if you’re the only one assigned to this domain.
+    <li>All domain managers will be notified when updates are made to this domain and when managers are added or removed.</li>
+    <li>Domains must have at least one manager. You can’t remove yourself if you’re the only one assigned to this domain.
     {% if portfolio %} Add another domain manager before you remove yourself from this domain.{% endif %}</li>
   </ul>
 
+  {% if domain_manager_roles and domain_manager_roles|length == 1 %}
+    <div class="usa-alert usa-alert--info usa-alert--slim">
+      <div class="usa-alert__body">
+        This domain has only one manager. Consider adding another manager to ensure the domain has continuous oversight and support.
+      </div>
+    </div>
+  {% endif %}
+
   {% if domain_manager_roles %}
   <section class="section-outlined" id="domain-managers">
   <table class="usa-table usa-table--borderless usa-table--stacked dotgov-table--stacked dotgov-table">
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 089bbe1a9..34a4957c2 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -1116,21 +1116,6 @@ def get_context_data(self, **kwargs):
 
         return context
 
-    def get(self, request, *args, **kwargs):
-        """Get method for DomainUsersView."""
-        # Call the parent class's `get` method to get the response and context
-        response = super().get(request, *args, **kwargs)
-
-        # Ensure context is available after the parent call
-        context = response.context_data if hasattr(response, "context_data") else {}
-
-        # Check if context contains `domain_managers_roles` and its length is 1
-        if context.get("domain_manager_roles") and len(context["domain_manager_roles"]) == 1:
-            # Add an info message
-            messages.info(request, "This domain has one manager. Adding more can prevent issues.")
-
-        return response
-
     def _add_domain_manager_roles_to_context(self, context, portfolio):
         """Add domain_manager_roles to context separately, as roles need admin indicator."""
 

From 95a3fd157b3d1379ad3b5950888521ffb55eb465 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 14:43:29 -0500
Subject: [PATCH 32/59] Add a manager

---
 src/registrar/templates/domain_add_user.html | 19 ++++++++++---------
 src/registrar/templates/domain_users.html    |  3 +--
 2 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/src/registrar/templates/domain_add_user.html b/src/registrar/templates/domain_add_user.html
index 04565f61e..5c350f720 100644
--- a/src/registrar/templates/domain_add_user.html
+++ b/src/registrar/templates/domain_add_user.html
@@ -42,17 +42,18 @@
   {% endblock breadcrumb %}
 
   <h1>Add a domain manager</h1>
-{% if has_organization_feature_flag %}
+  {% if portfolio %}
+    <p>
+      Provide an email address for the domain manager you’d like to add. 
+      They’ll need to access the registrar using a Login.gov account that’s associated with this email address. 
+      Domain managers can be a member of only one .gov organization.
+    </p>
+  {% else %}
   <p>
-    You can add another user to help manage your domain. Users can only be a member of one .gov organization, 
-    and they'll need to sign in with their Login.gov account.
+      Provide an email address for the domain manager you’d like to add. 
+      They’ll need to access the registrar using a Login.gov account that’s associated with this email address.
   </p>
-{% else %}
- <p>
-    You can add another user to help manage your domain. They will need to sign in to the .gov registrar with 
-    their Login.gov account.
- </p>
-{% endif %}
+  {% endif %}
 
   <form class="usa-form usa-form--large" method="post" novalidate>
     {% csrf_token %}
diff --git a/src/registrar/templates/domain_users.html b/src/registrar/templates/domain_users.html
index aa39a994e..2ae13f7d5 100644
--- a/src/registrar/templates/domain_users.html
+++ b/src/registrar/templates/domain_users.html
@@ -41,8 +41,7 @@ <h1>Domain managers</h1>
     <li>There is no limit on the number of domain managers you can add.</li>
     <li>All domain managers must keep their contact information updated and be responsive if contacted by the .gov team.</li>
     <li>All domain managers will be notified when updates are made to this domain and when managers are added or removed.</li>
-    <li>Domains must have at least one manager. You can’t remove yourself if you’re the only one assigned to this domain.
-    {% if portfolio %} Add another domain manager before you remove yourself from this domain.{% endif %}</li>
+    <li>Domains must have at least one manager. You can’t remove yourself if you’re the only one assigned to this domain.</li>
   </ul>
 
   {% if domain_manager_roles and domain_manager_roles|length == 1 %}

From de808dc7f1993e75f5180be4618d9cad03ab7d87 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 14:49:21 -0500
Subject: [PATCH 33/59] Fix unit tests

---
 src/registrar/tests/test_views_domain.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index b84d284d8..477ce043a 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -772,7 +772,7 @@ def test_domain_managers(self):
         # assert that the non-portfolio view contains Role column and doesn't contain Admin
         self.assertContains(response, "Role</th>")
         self.assertNotContains(response, "Admin")
-        self.assertContains(response, "This domain has one manager. Adding more can prevent issues.")
+        self.assertContains(response, "This domain has one manager. Consider adding another manager")
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
@@ -783,7 +783,7 @@ def test_domain_managers_portfolio_view(self):
         # assert that the portfolio view doesn't contain Role column and does contain Admin
         self.assertNotContains(response, "Role</th>")
         self.assertContains(response, "Admin")
-        self.assertContains(response, "This domain has one manager. Adding more can prevent issues.")
+        self.assertContains(response, "This domain has one manager. Consider adding another manager")
 
     @less_console_noise_decorator
     def test_domain_user_add(self):

From d819456c1f6be875c328f48c6a95d0a7eff44f1b Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 15:05:36 -0500
Subject: [PATCH 34/59] Copy edit to domain assignment

---
 src/registrar/templates/portfolio_member_domains.html     | 2 +-
 .../templates/portfolio_member_domains_edit.html          | 8 +++++---
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/src/registrar/templates/portfolio_member_domains.html b/src/registrar/templates/portfolio_member_domains.html
index d1ec1ce15..76d48c20b 100644
--- a/src/registrar/templates/portfolio_member_domains.html
+++ b/src/registrar/templates/portfolio_member_domains.html
@@ -52,7 +52,7 @@ <h1>Domain assignments</h1>
     </div>
 
     <p class="margin-top-0 margin-bottom-4 maxw-none">
-        A domain manager can be assigned to any domain across the organization. Domain managers can change domain information, adjust DNS settings, and invite or assign other domain managers to their assigned domains.
+        Members can update information related to their assigned domains, including security email and DNS name servers. They can also invite other managers to those domains.
     </p>
 
     {% include "includes/member_domains_table.html" %}
diff --git a/src/registrar/templates/portfolio_member_domains_edit.html b/src/registrar/templates/portfolio_member_domains_edit.html
index 55caf4339..a03414648 100644
--- a/src/registrar/templates/portfolio_member_domains_edit.html
+++ b/src/registrar/templates/portfolio_member_domains_edit.html
@@ -41,9 +41,11 @@
     <section id="domain-assignments-edit-view">
         <h1>Edit domain assignments</h1>
 
-        <p class="margin-top-0 margin-bottom-4 maxw-none">
-            A domain manager can be assigned to any domain across the organization. Domain managers can change domain information, adjust DNS settings, and invite or assign other domain managers to their assigned domains.
-            When you save this form the member will get an email to notify them of any changes.
+        <p class="margin-top-0 maxw-none">
+            Use the checkboxes to add or remove domain assignments for this member. Then proceed to the next step to confirm and save your changes.
+        </p>
+        <p class="margin-bottom-4 maxw-none">
+            Domains must have at least one domain manager. You can't remove this member from a domain if they’re the only one assigned to it.
         </p>
 
         {% include "includes/member_domains_edit_table.html" %}

From 6f97e438e3baebc8774b8b1d9113bc2351637258 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 15:08:09 -0500
Subject: [PATCH 35/59] Fix th background in regular td

---
 src/registrar/assets/src/sass/_theme/_tables.scss | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/assets/src/sass/_theme/_tables.scss b/src/registrar/assets/src/sass/_theme/_tables.scss
index 37ae22b1b..993214e8b 100644
--- a/src/registrar/assets/src/sass/_theme/_tables.scss
+++ b/src/registrar/assets/src/sass/_theme/_tables.scss
@@ -118,7 +118,7 @@ th {
 }
 
 .usa-table--bg-transparent {
-  td, thead th {
+  td, th, thead th {
     background-color: transparent;
   }
 }

From 2506198c926c0e89b859b91c12ecc939f9641544 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 15:16:52 -0500
Subject: [PATCH 36/59] Sanitize domainName for table kebob

---
 src/registrar/assets/src/js/getgov/helpers.js               | 6 ++++++
 src/registrar/assets/src/js/getgov/table-domain-requests.js | 6 +++---
 2 files changed, 9 insertions(+), 3 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/helpers.js b/src/registrar/assets/src/js/getgov/helpers.js
index 7d1449bac..ecad7a873 100644
--- a/src/registrar/assets/src/js/getgov/helpers.js
+++ b/src/registrar/assets/src/js/getgov/helpers.js
@@ -96,3 +96,9 @@ export function submitForm(form_id) {
         console.error("Form '" + form_id + "' not found.");
     }
 }
+
+export function stripHtmlTags(input) {
+    const tempDiv = document.createElement("div");
+    tempDiv.innerHTML = input;
+    return tempDiv.textContent || tempDiv.innerText || "";
+}
diff --git a/src/registrar/assets/src/js/getgov/table-domain-requests.js b/src/registrar/assets/src/js/getgov/table-domain-requests.js
index f14041b22..a410fcf59 100644
--- a/src/registrar/assets/src/js/getgov/table-domain-requests.js
+++ b/src/registrar/assets/src/js/getgov/table-domain-requests.js
@@ -1,4 +1,4 @@
-import { hideElement, showElement, getCsrfToken } from './helpers.js';
+import { hideElement, showElement, getCsrfToken, stripHtmlTags } from './helpers.js';
 import { uswdsInitializeModals, uswdsUnloadModals } from './helpers-uswds.js';
 
 import { BaseTable, addModal, generateKebabHTML } from './table-base.js';
@@ -98,9 +98,9 @@ export class DomainRequestsTable extends BaseTable {
 
       // Request is deletable, modal and modalTrigger are built. Now check if we are on the portfolio requests page (by seeing if there is a portfolio value) and enhance the modalTrigger accordingly
       if (this.portfolioValue) {
-
+        const sanitizedDomainName = stripHtmlTags(domainName);
         // 2nd path (org model): Just a modal trigger on mobile for org users or kebab + accordion with nested modal trigger on desktop for org users
-        modalTrigger = generateKebabHTML('delete-domain', request.id, 'Delete', domainName);
+        modalTrigger = generateKebabHTML('delete-domain', request.id, 'Delete', sanitizedDomainName);
       }
     }
 

From 75c2c27e0a2698d6bb1be963e3288ff1ca916801 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 15:34:55 -0500
Subject: [PATCH 37/59] Domain assignments review page

---
 src/registrar/assets/src/js/getgov/helpers.js |  5 ++++
 .../src/js/getgov/table-domain-requests.js    |  1 +
 .../js/getgov/table-edit-member-domains.js    | 29 ++++++-------------
 .../portfolio_member_domains_edit.html        | 10 ++-----
 4 files changed, 18 insertions(+), 27 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/helpers.js b/src/registrar/assets/src/js/getgov/helpers.js
index ecad7a873..024d1986e 100644
--- a/src/registrar/assets/src/js/getgov/helpers.js
+++ b/src/registrar/assets/src/js/getgov/helpers.js
@@ -97,8 +97,13 @@ export function submitForm(form_id) {
     }
 }
 
+/**
+ * Helper function to strip HTML tags
+ * THIS IS NOT SUITABLE FOR SANITIZING DANGEROUS STRINGS
+ */
 export function stripHtmlTags(input) {
     const tempDiv = document.createElement("div");
+    // NOTE: THIS IS NOT SUITABLE FOR SANITIZING DANGEROUS STRINGS
     tempDiv.innerHTML = input;
     return tempDiv.textContent || tempDiv.innerText || "";
 }
diff --git a/src/registrar/assets/src/js/getgov/table-domain-requests.js b/src/registrar/assets/src/js/getgov/table-domain-requests.js
index a410fcf59..e0105c70d 100644
--- a/src/registrar/assets/src/js/getgov/table-domain-requests.js
+++ b/src/registrar/assets/src/js/getgov/table-domain-requests.js
@@ -98,6 +98,7 @@ export class DomainRequestsTable extends BaseTable {
 
       // Request is deletable, modal and modalTrigger are built. Now check if we are on the portfolio requests page (by seeing if there is a portfolio value) and enhance the modalTrigger accordingly
       if (this.portfolioValue) {
+        // NOTE: THIS IS NOT SUITABLE FOR SANITIZING DANGEROUS STRINGS
         const sanitizedDomainName = stripHtmlTags(domainName);
         // 2nd path (org model): Just a modal trigger on mobile for org users or kebab + accordion with nested modal trigger on desktop for org users
         modalTrigger = generateKebabHTML('delete-domain', request.id, 'Delete', sanitizedDomainName);
diff --git a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
index 19e36c902..ef055cc28 100644
--- a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
+++ b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
@@ -260,35 +260,24 @@ export class EditMemberDomainsTable extends BaseTable {
     // Clear existing content
     domainAssignmentSummary.innerHTML = '';
 
-    // Append unassigned domains section
-    if (this.removedDomains.length) {
-      const unassignedHeader = document.createElement('h3');
-      unassignedHeader.classList.add('margin-bottom-05', 'h4');
-      unassignedHeader.textContent = 'Unassigned domains';
-      domainAssignmentSummary.appendChild(unassignedHeader);
-      domainAssignmentSummary.appendChild(unassignedDomainsList);
-    }
-
     // Append assigned domains section
     if (this.addedDomains.length) {
       const assignedHeader = document.createElement('h3');
       // Make this h3 look like a h4
       assignedHeader.classList.add('margin-bottom-05', 'h4');
-      assignedHeader.textContent = 'Assigned domains';
+      assignedHeader.textContent = `New assignments (${this.addedDomains.length})`;
       domainAssignmentSummary.appendChild(assignedHeader);
       domainAssignmentSummary.appendChild(assignedDomainsList);
     }
 
-    // Append total assigned domains section
-    const totalHeader = document.createElement('h3');
-    // Make this h3 look like a h4
-    totalHeader.classList.add('margin-bottom-05', 'h4');
-    totalHeader.textContent = 'Total assigned domains';
-    domainAssignmentSummary.appendChild(totalHeader);
-    const totalCount = document.createElement('p');
-    totalCount.classList.add('margin-y-0');
-    totalCount.textContent = totalAssignedDomains;
-    domainAssignmentSummary.appendChild(totalCount);
+    // Append unassigned domains section
+    if (this.removedDomains.length) {
+      const unassignedHeader = document.createElement('h3');
+      unassignedHeader.classList.add('margin-bottom-05', 'h4');
+      unassignedHeader.textContent =`Removed assignments (${this.removedDomains.length})`;
+      domainAssignmentSummary.appendChild(unassignedHeader);
+      domainAssignmentSummary.appendChild(unassignedDomainsList);
+    }
   }
 
   showReadonlyMode() {
diff --git a/src/registrar/templates/portfolio_member_domains_edit.html b/src/registrar/templates/portfolio_member_domains_edit.html
index a03414648..44c65a924 100644
--- a/src/registrar/templates/portfolio_member_domains_edit.html
+++ b/src/registrar/templates/portfolio_member_domains_edit.html
@@ -74,9 +74,9 @@ <h1>Edit domain assignments</h1>
     </section>
 
     <section id="domain-assignments-readonly-view" class="display-none">
-        <h1 class="margin-bottom-3">Review domain assignments</h1>
+        <h1 class="margin-bottom-3">Review and apply domain assignment changes</h1>
 
-        <h2 class="margin-top-0">Would you like to continue with the following domain assignment changes for 
+        <h2 class="margin-top-0 margin-bottom-4">Would you like to continue with the following domain assignment changes for 
             {% if member %}
                 {{ member.email }}
             {% else %}
@@ -84,10 +84,6 @@ <h2 class="margin-top-0">Would you like to continue with the following domain as
             {% endif %}
         </h2>
 
-        <p class="margin-bottom-4">
-            When you save this form the member will get an email to notify them of any changes.
-        </p>
-
         <div id="domain-assignments-summary" class="margin-bottom-5">
              <!-- AJAX will populate this summary -->
               <h3 class="margin-bottom-1 h4">Unassigned domains</h3>
@@ -120,7 +116,7 @@ <h3 class="margin-bottom-0 h4">Assigned domains</h3>
                     type="button"
                     class="usa-button"
                 >
-                    Save
+                    Apply changes
                 </button>
             </li>
         </ul>

From 3e3f6704902af04c727feb1a9596e33ae63ab115 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 15:40:40 -0500
Subject: [PATCH 38/59] Fix unit tests

---
 src/registrar/tests/test_views_domain.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 477ce043a..90969d7d9 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -772,7 +772,7 @@ def test_domain_managers(self):
         # assert that the non-portfolio view contains Role column and doesn't contain Admin
         self.assertContains(response, "Role</th>")
         self.assertNotContains(response, "Admin")
-        self.assertContains(response, "This domain has one manager. Consider adding another manager")
+        self.assertContains(response, "This domain has only one manager. Consider adding another manager")
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
@@ -783,7 +783,7 @@ def test_domain_managers_portfolio_view(self):
         # assert that the portfolio view doesn't contain Role column and does contain Admin
         self.assertNotContains(response, "Role</th>")
         self.assertContains(response, "Admin")
-        self.assertContains(response, "This domain has one manager. Consider adding another manager")
+        self.assertContains(response, "This domain has only one manager. Consider adding another manager")
 
     @less_console_noise_decorator
     def test_domain_user_add(self):

From 5d9ce22fc2644836414a2e6a61dcd85351401fd9 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 16:53:02 -0500
Subject: [PATCH 39/59] cleanup

---
 src/registrar/assets/src/js/getgov/table-members.js           | 4 ++--
 .../templates/includes/member_permissions_summary.html        | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-members.js b/src/registrar/assets/src/js/getgov/table-members.js
index 4bc302852..a1385b294 100644
--- a/src/registrar/assets/src/js/getgov/table-members.js
+++ b/src/registrar/assets/src/js/getgov/table-members.js
@@ -111,13 +111,13 @@ export class MembersTable extends BaseTable {
       </td>
       <td headers="header-action row-header-${unique_id}" class="width--action-column">
         <div class="tablet:display-flex tablet:flex-row flex-align-center">
-          <a href="${member.action_url}">
+          <a href="${member.action_url}" ${customTableOptions.hasAdditionalActions ? "class='margin-right-2'" : ''}>
             <svg class="usa-icon top-1px" aria-hidden="true" focusable="false" role="img" width="24">
               <use xlink:href="/public/img/sprite.svg#${member.svg_icon}"></use>
             </svg>
             ${member.action_label} <span class="usa-sr-only">${member.name}</span>
           </a>
-          <span class="padding-left-1">${customTableOptions.hasAdditionalActions ? kebabHTML : ''}</span>
+          ${customTableOptions.hasAdditionalActions ? kebabHTML : ''}
         </div>
       </td>
     `;
diff --git a/src/registrar/templates/includes/member_permissions_summary.html b/src/registrar/templates/includes/member_permissions_summary.html
index b0407255b..1df2efc57 100644
--- a/src/registrar/templates/includes/member_permissions_summary.html
+++ b/src/registrar/templates/includes/member_permissions_summary.html
@@ -30,4 +30,4 @@ <h4 class="margin-bottom-0 text-primary">Members</h4>
     <p class="margin-top-0">Viewer: Can view all member permissions</p>
 {% else %}
     <p class="margin-top-0">No access: Cannot view member permissions</p>
-{% endif %}
\ No newline at end of file
+{% endif %}

From 85e13b0719a6ad2ffdc801d0ecbbf87e157bbc9b Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 17:30:37 -0500
Subject: [PATCH 40/59] email tweaks

---
 src/registrar/templates/emails/domain_invitation.txt            | 2 +-
 .../templates/emails/domain_manager_deleted_notification.txt    | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/registrar/templates/emails/domain_invitation.txt b/src/registrar/templates/emails/domain_invitation.txt
index a077bff26..925600bcb 100644
--- a/src/registrar/templates/emails/domain_invitation.txt
+++ b/src/registrar/templates/emails/domain_invitation.txt
@@ -16,8 +16,8 @@ associated with the following email address: {{ invitee_email_address }}
 Login.gov provides a simple and secure process for signing in to many government
 services with one account. If you don’t already have one, follow these steps to create
 your Login.gov account <https://login.gov/help/get-started/create-your-account/>.
-{% endif %}
 
+{% endif %}
 
 DOMAIN MANAGEMENT
 As a .gov domain manager, you can add or update information like name servers. You’ll
diff --git a/src/registrar/templates/emails/domain_manager_deleted_notification.txt b/src/registrar/templates/emails/domain_manager_deleted_notification.txt
index fbb1e47cc..e2a566e42 100644
--- a/src/registrar/templates/emails/domain_manager_deleted_notification.txt
+++ b/src/registrar/templates/emails/domain_manager_deleted_notification.txt
@@ -11,6 +11,7 @@ MANAGER REMOVED: {{ manager_removed.email }}
 
 WHY DID YOU RECEIVE THIS EMAIL? 
 You’re listed as a domain manager for {{ domain.name }}, so you’ll receive a notification whenever a domain manager is removed from that domain.
+
 If you have questions or concerns, reach out to the person who removed the domain manager or reply to this email.
 
 THANK YOU

From 7e4a99fd336f914db0f5e0228fa950d05cf12244 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 17:53:19 -0500
Subject: [PATCH 41/59] Change pk to id

---
 src/registrar/templates/portfolio_member_permissions.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/registrar/templates/portfolio_member_permissions.html b/src/registrar/templates/portfolio_member_permissions.html
index f611b3659..d9b6a6bfb 100644
--- a/src/registrar/templates/portfolio_member_permissions.html
+++ b/src/registrar/templates/portfolio_member_permissions.html
@@ -25,9 +25,9 @@
       </li>
       <li class="usa-breadcrumb__list-item">
         {% if member %}
-          {% url 'member' pk=member.pk as back_url %}
+          {% url 'member' pk=member.id as back_url %}
         {% elif invitation %}
-          {% url 'invitedmember' pk=invitation.pk as back_url %}
+          {% url 'invitedmember' pk=invitation.id as back_url %}
         {% endif %}
         <a href="{{ back_url }}" class="usa-breadcrumb__link"><span>Manage member</span></a>
       </li>

From 0c154e537e02b6c38abcd408d9f1d2fb5ad5230b Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 18:17:45 -0500
Subject: [PATCH 42/59] fix Clicking cancel on Member Access and Permissions
 page navigates back to the wrong user

---
 .../portfolio_member_permissions.html         | 24 +++++++++----------
 src/registrar/views/portfolios.py             |  1 +
 2 files changed, 13 insertions(+), 12 deletions(-)

diff --git a/src/registrar/templates/portfolio_member_permissions.html b/src/registrar/templates/portfolio_member_permissions.html
index d9b6a6bfb..351243388 100644
--- a/src/registrar/templates/portfolio_member_permissions.html
+++ b/src/registrar/templates/portfolio_member_permissions.html
@@ -18,24 +18,24 @@
   {% endblock messages%}
   
   <!-- Navigation breadcrumbs -->
-  <nav class="usa-breadcrumb padding-top-0 bg-gray-1" aria-label="Domain request breadcrumb">
-    <ol class="usa-breadcrumb__list">
+  {% url 'members' as url %}
+  {% if portfolio_permission %}
+      {% url 'member' pk=portfolio_permission.id as url2 %}
+  {% else %}
+      {% url 'invitedmember' pk=invitation.id as url2 %}
+  {% endif %}
+  <nav class="usa-breadcrumb padding-top-0 bg-gray-1" aria-label="Portfolio member breadcrumb">
+  <ol class="usa-breadcrumb__list">
       <li class="usa-breadcrumb__list-item">
-        <a href="{% url 'members' %}" class="usa-breadcrumb__link"><span>Members</span></a>
+      <a href="{{ url }}" class="usa-breadcrumb__link"><span>Members</span></a>
       </li>
       <li class="usa-breadcrumb__list-item">
-        {% if member %}
-          {% url 'member' pk=member.id as back_url %}
-        {% elif invitation %}
-          {% url 'invitedmember' pk=invitation.id as back_url %}
-        {% endif %}
-        <a href="{{ back_url }}" class="usa-breadcrumb__link"><span>Manage member</span></a>
+          <a href="{{ url2 }}" class="usa-breadcrumb__link"><span>Manage member</span></a>
       </li>
-      {% comment %} Manage members {% endcomment %}
       <li class="usa-breadcrumb__list-item usa-current" aria-current="page">
         <span>Member access and permissions</span>
       </li>
-    </ol>
+  </ol>
   </nav>
 
   <!-- Page header -->
@@ -98,7 +98,7 @@ <h2 class="margin-top-0">Member access</h2>
     <div class="margin-top-3">
       <a
         type="button"
-        href="{{ back_url }}"
+        href="{{ url2 }}"
         class="usa-button usa-button--outline"
         name="btn-cancel-click"
         aria-label="Cancel editing member"
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 0f93ec8e1..83d44bdfd 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -202,6 +202,7 @@ def get(self, request, pk):
             {
                 "form": form,
                 "member": user,
+                "portfolio_permission": portfolio_permission,
             },
         )
 

From 2bdbe4970d63af8a563cc2adf6ee5df9e83f3669 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 18:21:26 -0500
Subject: [PATCH 43/59] Remove h2 on domains review

---
 .../templates/portfolio_member_domains_edit.html       | 10 +---------
 1 file changed, 1 insertion(+), 9 deletions(-)

diff --git a/src/registrar/templates/portfolio_member_domains_edit.html b/src/registrar/templates/portfolio_member_domains_edit.html
index 44c65a924..6b047f3f2 100644
--- a/src/registrar/templates/portfolio_member_domains_edit.html
+++ b/src/registrar/templates/portfolio_member_domains_edit.html
@@ -74,15 +74,7 @@ <h1>Edit domain assignments</h1>
     </section>
 
     <section id="domain-assignments-readonly-view" class="display-none">
-        <h1 class="margin-bottom-3">Review and apply domain assignment changes</h1>
-
-        <h2 class="margin-top-0 margin-bottom-4">Would you like to continue with the following domain assignment changes for 
-            {% if member %}
-                {{ member.email }}
-            {% else %}
-                {{ portfolio_invitation.email }}
-            {% endif %}
-        </h2>
+        <h1 class="margin-bottom-4">Review and apply domain assignment changes</h1>
 
         <div id="domain-assignments-summary" class="margin-bottom-5">
              <!-- AJAX will populate this summary -->

From 8d36dd67d50bacc55c5800e70c8751e176d80a7b Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 18:23:58 -0500
Subject: [PATCH 44/59] Update copy on domain_users

---
 src/registrar/templates/domain_users.html | 10 +---------
 1 file changed, 1 insertion(+), 9 deletions(-)

diff --git a/src/registrar/templates/domain_users.html b/src/registrar/templates/domain_users.html
index 2ae13f7d5..128ca57ec 100644
--- a/src/registrar/templates/domain_users.html
+++ b/src/registrar/templates/domain_users.html
@@ -25,17 +25,9 @@
 
   <h1>Domain managers</h1>
 
-  {% comment %}Copy below differs depending on whether view is in portfolio mode.{% endcomment %}
-  {% if not portfolio %}
   <p>
-    Domain managers can update all information related to a domain within the
-    .gov registrar, including security email and DNS name servers.
+    Domain managers can update information related to this domain, including security email and DNS name servers.
   </p>
-  {% else %}
-  <p>
-  Domain managers can update all information related to a domain, including contact details, senior official, security email, and DNS name servers.
-  </p>
-  {% endif %}
 
   <ul class="usa-list">
     <li>There is no limit on the number of domain managers you can add.</li>

From 11a7288109a692f96d6e4ba6ef14644ed5cb773c Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 13 Feb 2025 18:33:28 -0500
Subject: [PATCH 45/59] Fix unit test

---
 src/registrar/tests/test_views_domain.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 90969d7d9..0fdc2bd5b 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -675,7 +675,7 @@ def test_domain_renewal_form_domain_manager_edit(self):
             # Simulate clicking on edit button
             edit_page = renewal_page.click(href=edit_button_url, index=1)
             self.assertEqual(edit_page.status_code, 200)
-            self.assertContains(edit_page, "Domain managers can update all information related to a domain")
+            self.assertContains(edit_page, "Domain managers can update information related to this domain")
 
     @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_not_expired_or_expiring(self):

From 29c4dbd0ec268c395eacf97d96df436028f3bac0 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Fri, 14 Feb 2025 12:49:02 -0500
Subject: [PATCH 46/59] Fix race condition in member domains table

---
 .../js/getgov/table-edit-member-domains.js    | 67 +++++++++++++------
 1 file changed, 45 insertions(+), 22 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
index ef055cc28..d4d969bad 100644
--- a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
+++ b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
@@ -24,6 +24,9 @@ export class EditMemberDomainsTable extends BaseTable {
     this.reviewButton = document.getElementById('review-domain-assignments');
     this.backButton = document.getElementById('back-to-edit-domain-assignments');
     this.saveButton = document.getElementById('save-domain-assignments');
+    
+    this.domainAssignmentsLoaded = false; // Flag to track if API request has completed
+    
     this.initializeDomainAssignments();
     this.initCancelEditDomainAssignmentButton();
     this.initEventListeners();
@@ -134,27 +137,37 @@ export class EditMemberDomainsTable extends BaseTable {
    * member. It populates both initialDomainAssignments and initialDomainAssignmentsOnlyMember.
    * It is called once per page load, but not called with subsequent table changes.
    */
-  initializeDomainAssignments() {
+  async initializeDomainAssignments() {
+    if (this.domainAssignmentsLoaded) return; // Prevent multiple calls
+
     const baseUrlValue = this.getBaseUrl()?.innerHTML ?? null;
-    if (!baseUrlValue) return;
-    let searchParams = this.getDomainAssignmentSearchParams(this.portfolioValue);
-    let url = baseUrlValue + "?" + searchParams.toString();
-    fetch(url)
-    .then(response => response.json())
-    .then(data => {
-      if (data.error) {
-        console.error('Error in AJAX call: ' + data.error);
+    if (!baseUrlValue) {
+        console.error("Base URL not found");
         return;
+    }
+
+    try {
+      let searchParams = this.getDomainAssignmentSearchParams(this.portfolioValue);
+      let url = baseUrlValue + "?" + searchParams.toString();
+
+      let response = await fetch(url);
+      let data = await response.json();
+
+      if (data.error) {
+          console.error("Error in AJAX call:", data.error);
+          return;
       }
 
       let dataObjects = this.getDataObjects(data);
-      // Map the id attributes of dataObjects to this.initialDomainAssignments
       this.initialDomainAssignments = dataObjects.map(obj => obj.id);
       this.initialDomainAssignmentsOnlyMember = dataObjects
-        .filter(obj => obj.member_is_only_manager)
-        .map(obj => obj.id);
-    })
-    .catch(error => console.error('Error fetching domain assignments:', error));
+          .filter(obj => obj.member_is_only_manager)
+          .map(obj => obj.id);
+    } catch (error) {
+        console.error("Error fetching domain assignments:", error);
+    }
+
+    this.domainAssignmentsLoaded = true; // Flag as complete whether data was found or not
   }
   /**
    * Initializes listeners on checkboxes in the table. Checkbox listeners are used
@@ -345,13 +358,23 @@ export class EditMemberDomainsTable extends BaseTable {
 
 export function initEditMemberDomainsTable() {
   document.addEventListener('DOMContentLoaded', function() {
-      const isEditMemberDomainsPage = document.getElementById("edit-member-domains");
-      if (isEditMemberDomainsPage) {
-        const editMemberDomainsTable = new EditMemberDomainsTable();
-        if (editMemberDomainsTable.tableWrapper) {
-          // Initial load
-          editMemberDomainsTable.loadTable(1);
-        }
+    const isEditMemberDomainsPage = document.getElementById("edit-member-domains");
+    if (!isEditMemberDomainsPage) return; // Exit if not on the right page
+
+    const editMemberDomainsTable = new EditMemberDomainsTable();
+
+    function attemptInitTable() {
+      if (!editMemberDomainsTable.domainAssignmentsLoaded) {
+        console.warn("initEditMemberDomainsTable called before domain assignments loaded. Retrying later...");
+        setTimeout(attemptInitTable, 50); // Retry with a slight delay
+        return;
       }
-    });
+
+      if (editMemberDomainsTable.tableWrapper) {
+        editMemberDomainsTable.loadTable(1); // Initial load
+      }
+    }
+
+    attemptInitTable(); // Call the function immediately
+  });
 }

From d328c868847ddf97b96edd760c150cf2b0c3a605 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Fri, 14 Feb 2025 12:50:50 -0500
Subject: [PATCH 47/59] rename unsafeStripHtmlTags

---
 src/registrar/assets/src/js/getgov/helpers.js               | 2 +-
 src/registrar/assets/src/js/getgov/table-domain-requests.js | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/helpers.js b/src/registrar/assets/src/js/getgov/helpers.js
index 024d1986e..08be011c2 100644
--- a/src/registrar/assets/src/js/getgov/helpers.js
+++ b/src/registrar/assets/src/js/getgov/helpers.js
@@ -101,7 +101,7 @@ export function submitForm(form_id) {
  * Helper function to strip HTML tags
  * THIS IS NOT SUITABLE FOR SANITIZING DANGEROUS STRINGS
  */
-export function stripHtmlTags(input) {
+export function unsafeStripHtmlTags(input) {
     const tempDiv = document.createElement("div");
     // NOTE: THIS IS NOT SUITABLE FOR SANITIZING DANGEROUS STRINGS
     tempDiv.innerHTML = input;
diff --git a/src/registrar/assets/src/js/getgov/table-domain-requests.js b/src/registrar/assets/src/js/getgov/table-domain-requests.js
index e0105c70d..3b87c246f 100644
--- a/src/registrar/assets/src/js/getgov/table-domain-requests.js
+++ b/src/registrar/assets/src/js/getgov/table-domain-requests.js
@@ -1,4 +1,4 @@
-import { hideElement, showElement, getCsrfToken, stripHtmlTags } from './helpers.js';
+import { hideElement, showElement, getCsrfToken, unsafeStripHtmlTags } from './helpers.js';
 import { uswdsInitializeModals, uswdsUnloadModals } from './helpers-uswds.js';
 
 import { BaseTable, addModal, generateKebabHTML } from './table-base.js';
@@ -99,7 +99,7 @@ export class DomainRequestsTable extends BaseTable {
       // Request is deletable, modal and modalTrigger are built. Now check if we are on the portfolio requests page (by seeing if there is a portfolio value) and enhance the modalTrigger accordingly
       if (this.portfolioValue) {
         // NOTE: THIS IS NOT SUITABLE FOR SANITIZING DANGEROUS STRINGS
-        const sanitizedDomainName = stripHtmlTags(domainName);
+        const sanitizedDomainName = unsafeStripHtmlTags(domainName);
         // 2nd path (org model): Just a modal trigger on mobile for org users or kebab + accordion with nested modal trigger on desktop for org users
         modalTrigger = generateKebabHTML('delete-domain', request.id, 'Delete', sanitizedDomainName);
       }

From 73435a3512221a93d567c4c90de5a73e8aa46d73 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Fri, 14 Feb 2025 13:00:45 -0500
Subject: [PATCH 48/59] Add member email as a section on domains review

---
 .../portfolio_member_domains_edit.html        | 20 +++++++++----------
 1 file changed, 9 insertions(+), 11 deletions(-)

diff --git a/src/registrar/templates/portfolio_member_domains_edit.html b/src/registrar/templates/portfolio_member_domains_edit.html
index 6b047f3f2..572c6cb6e 100644
--- a/src/registrar/templates/portfolio_member_domains_edit.html
+++ b/src/registrar/templates/portfolio_member_domains_edit.html
@@ -76,19 +76,17 @@ <h1>Edit domain assignments</h1>
     <section id="domain-assignments-readonly-view" class="display-none">
         <h1 class="margin-bottom-4">Review and apply domain assignment changes</h1>
 
+        <h3 class="margin-bottom-05 h4">Member</h3>
+        <p class="margin-top-0">
+            {% if member %}
+                {{ member.email }}
+            {% else %}
+                {{ portfolio_invitation.email }}
+            {% endif %}
+        </p>
+
         <div id="domain-assignments-summary" class="margin-bottom-5">
              <!-- AJAX will populate this summary -->
-              <h3 class="margin-bottom-1 h4">Unassigned domains</h3>
-              <ul class="usa-list usa-list--unstyled">
-                <li>item1</li>
-                <li>item2</li>
-              </ul>
-
-              <h3 class="margin-bottom-0 h4">Assigned domains</h3>
-              <ul class="usa-list usa-list--unstyled">
-                <li>item1</li>
-                <li>item2</li>
-              </ul>
         </div>
 
         <ul class="usa-button-group">

From d3ae8d7b44122549eff92ccc9083fc4bbf30f816 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Fri, 14 Feb 2025 13:17:01 -0500
Subject: [PATCH 49/59] email formatting

---
 src/registrar/templates/emails/domain_invitation.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/templates/emails/domain_invitation.txt b/src/registrar/templates/emails/domain_invitation.txt
index 925600bcb..0182036be 100644
--- a/src/registrar/templates/emails/domain_invitation.txt
+++ b/src/registrar/templates/emails/domain_invitation.txt
@@ -8,7 +8,6 @@ To manage domain information, visit the .gov registrar <https://manage.get.gov>.
 
 ----------------------------------------------------------------
 {% if not requested_user %}
-
 YOU NEED A LOGIN.GOV ACCOUNT
 You’ll need a Login.gov account to access the .gov registrar. That account needs to be
 associated with the following email address: {{ invitee_email_address }}
@@ -17,6 +16,7 @@ Login.gov provides a simple and secure process for signing in to many government
 services with one account. If you don’t already have one, follow these steps to create
 your Login.gov account <https://login.gov/help/get-started/create-your-account/>.
 
+
 {% endif %}
 
 DOMAIN MANAGEMENT

From 227ce467a70e0299f4d3ec559cd6bb8a69abb4de Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Fri, 14 Feb 2025 14:12:33 -0500
Subject: [PATCH 50/59] Fix error handling for roles in add new member (remove
 Item 1 in the array did not validate error)

---
 src/registrar/forms/portfolio.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/registrar/forms/portfolio.py b/src/registrar/forms/portfolio.py
index 00ccc5c09..1bee4e236 100644
--- a/src/registrar/forms/portfolio.py
+++ b/src/registrar/forms/portfolio.py
@@ -237,7 +237,11 @@ def clean(self):
             cleaned_data["member_permissions"] = None
 
         # Handle roles
-        cleaned_data["roles"] = [role]
+        # Ensure roles is a list but only if role is valid
+        if role:
+            cleaned_data["roles"] = [role] if isinstance(role, str) else role
+        else:
+            cleaned_data["roles"] = []  # Handle empty form case
 
         # Handle additional_permissions
         valid_fields = self.ROLE_REQUIRED_FIELDS.get(role, [])

From 237b5a8f6442768a6620135432df9b9b69f465e8 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Fri, 14 Feb 2025 15:22:55 -0500
Subject: [PATCH 51/59] Change behavior of no changes detected on domains edit

---
 .../js/getgov/table-edit-member-domains.js    |  6 ++
 src/registrar/tests/test_views_portfolio.py   |  6 +-
 src/registrar/views/portfolios.py             | 96 +++++++++----------
 3 files changed, 57 insertions(+), 51 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
index d4d969bad..6a399300b 100644
--- a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
+++ b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
@@ -291,6 +291,12 @@ export class EditMemberDomainsTable extends BaseTable {
       domainAssignmentSummary.appendChild(unassignedHeader);
       domainAssignmentSummary.appendChild(unassignedDomainsList);
     }
+
+    if (!this.addedDomains.length && !this.removedDomains.length) {
+      const noChangesParagraph = document.createElement('p');
+      noChangesParagraph.textContent = 'No changes were detected. Click the “Back” button to edit this members domain assignments.';
+      domainAssignmentSummary.appendChild(noChangesParagraph);
+    }
   }
 
   showReadonlyMode() {
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 052155bb0..2709e03c2 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -2642,7 +2642,7 @@ def test_post_with_invalid_removed_domains_data(self):
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
     def test_post_with_no_changes(self):
-        """Test that no changes message is displayed when no changes are made."""
+        """Test that success message is displayed when no changes are made."""
         self.client.force_login(self.user)
 
         response = self.client.post(self.url, {})
@@ -2654,7 +2654,7 @@ def test_post_with_no_changes(self):
         self.assertRedirects(response, reverse("member-domains", kwargs={"pk": self.portfolio_permission.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
-        self.assertEqual(str(messages[0]), "No changes detected.")
+        self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
@@ -2983,7 +2983,7 @@ def test_post_with_no_changes(self):
         self.assertRedirects(response, reverse("invitedmember-domains", kwargs={"pk": self.invitation.pk}))
         messages = list(response.wsgi_request._messages)
         self.assertEqual(len(messages), 1)
-        self.assertEqual(str(messages[0]), "No changes detected.")
+        self.assertEqual(str(messages[0]), "The domain assignment changes have been saved.")
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 83d44bdfd..b7040c323 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -314,31 +314,31 @@ def post(self, request, pk):
         if removed_domain_ids is None:
             return redirect(reverse("member-domains", kwargs={"pk": pk}))
 
-        if added_domain_ids or removed_domain_ids:
-            try:
-                self._process_added_domains(added_domain_ids, member, request.user, portfolio)
-                self._process_removed_domains(removed_domain_ids, member)
-                messages.success(request, "The domain assignment changes have been saved.")
-                return redirect(reverse("member-domains", kwargs={"pk": pk}))
-            except IntegrityError:
-                messages.error(
-                    request,
-                    "A database error occurred while saving changes. If the issue persists, "
-                    f"please contact {DefaultUserValues.HELP_EMAIL}.",
-                )
-                logger.error("A database error occurred while saving changes.", exc_info=True)
-                return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))
-            except Exception as e:
-                messages.error(
-                    request,
-                    f"An unexpected error occurred: {str(e)}. If the issue persists, "
-                    f"please contact {DefaultUserValues.HELP_EMAIL}.",
-                )
-                logger.error(f"An unexpected error occurred: {str(e)}", exc_info=True)
-                return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))
-        else:
-            messages.info(request, "No changes detected.")
+        if not added_domain_ids or removed_domain_ids:
+            messages.success(request, "The domain assignment changes have been saved.")
+            return redirect(reverse("member-domains", kwargs={"pk": pk}))
+
+        try:
+            self._process_added_domains(added_domain_ids, member, request.user, portfolio)
+            self._process_removed_domains(removed_domain_ids, member)
+            messages.success(request, "The domain assignment changes have been saved.")
             return redirect(reverse("member-domains", kwargs={"pk": pk}))
+        except IntegrityError:
+            messages.error(
+                request,
+                "A database error occurred while saving changes. If the issue persists, "
+                f"please contact {DefaultUserValues.HELP_EMAIL}.",
+            )
+            logger.error("A database error occurred while saving changes.", exc_info=True)
+            return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))
+        except Exception as e:
+            messages.error(
+                request,
+                f"An unexpected error occurred: {str(e)}. If the issue persists, "
+                f"please contact {DefaultUserValues.HELP_EMAIL}.",
+            )
+            logger.error(f"An unexpected error occurred: {str(e)}", exc_info=True)
+            return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))            
 
     def _parse_domain_ids(self, domain_data, domain_type):
         """
@@ -592,31 +592,31 @@ def post(self, request, pk):
         if removed_domain_ids is None:
             return redirect(reverse("invitedmember-domains", kwargs={"pk": pk}))
 
-        if added_domain_ids or removed_domain_ids:
-            try:
-                self._process_added_domains(added_domain_ids, email, request.user, portfolio)
-                self._process_removed_domains(removed_domain_ids, email)
-                messages.success(request, "The domain assignment changes have been saved.")
-                return redirect(reverse("invitedmember-domains", kwargs={"pk": pk}))
-            except IntegrityError:
-                messages.error(
-                    request,
-                    "A database error occurred while saving changes. If the issue persists, "
-                    f"please contact {DefaultUserValues.HELP_EMAIL}.",
-                )
-                logger.error("A database error occurred while saving changes.", exc_info=True)
-                return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": pk}))
-            except Exception as e:
-                messages.error(
-                    request,
-                    f"An unexpected error occurred: {str(e)}. If the issue persists, "
-                    f"please contact {DefaultUserValues.HELP_EMAIL}.",
-                )
-                logger.error(f"An unexpected error occurred: {str(e)}.", exc_info=True)
-                return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": pk}))
-        else:
-            messages.info(request, "No changes detected.")
+        if not (added_domain_ids or removed_domain_ids):
+            messages.success(request, "The domain assignment changes have been saved.")
+            return redirect(reverse("invitedmember-domains", kwargs={"pk": pk}))
+
+        try:
+            self._process_added_domains(added_domain_ids, email, request.user, portfolio)
+            self._process_removed_domains(removed_domain_ids, email)
+            messages.success(request, "The domain assignment changes have been saved.")
             return redirect(reverse("invitedmember-domains", kwargs={"pk": pk}))
+        except IntegrityError:
+            messages.error(
+                request,
+                "A database error occurred while saving changes. If the issue persists, "
+                f"please contact {DefaultUserValues.HELP_EMAIL}.",
+            )
+            logger.error("A database error occurred while saving changes.", exc_info=True)
+            return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": pk}))
+        except Exception as e:
+            messages.error(
+                request,
+                f"An unexpected error occurred: {str(e)}. If the issue persists, "
+                f"please contact {DefaultUserValues.HELP_EMAIL}.",
+            )
+            logger.error(f"An unexpected error occurred: {str(e)}.", exc_info=True)
+            return redirect(reverse("invitedmember-domains-edit", kwargs={"pk": pk}))
 
     def _parse_domain_ids(self, domain_data, domain_type):
         """

From a1f92a470ef489aa54cb8cd9a68e02fc5eae606b Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Fri, 14 Feb 2025 16:19:56 -0500
Subject: [PATCH 52/59] cleanup

---
 .../assets/src/js/getgov/table-edit-member-domains.js          | 2 +-
 src/registrar/templates/emails/domain_invitation.txt           | 3 ---
 2 files changed, 1 insertion(+), 4 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
index 6a399300b..1bfae0842 100644
--- a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
+++ b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
@@ -294,7 +294,7 @@ export class EditMemberDomainsTable extends BaseTable {
 
     if (!this.addedDomains.length && !this.removedDomains.length) {
       const noChangesParagraph = document.createElement('p');
-      noChangesParagraph.textContent = 'No changes were detected. Click the “Back” button to edit this members domain assignments.';
+      noChangesParagraph.textContent = "No changes were detected. Click the “Back” button to edit this member’s domain assignments.";
       domainAssignmentSummary.appendChild(noChangesParagraph);
     }
   }
diff --git a/src/registrar/templates/emails/domain_invitation.txt b/src/registrar/templates/emails/domain_invitation.txt
index 0182036be..092ff629c 100644
--- a/src/registrar/templates/emails/domain_invitation.txt
+++ b/src/registrar/templates/emails/domain_invitation.txt
@@ -15,10 +15,7 @@ associated with the following email address: {{ invitee_email_address }}
 Login.gov provides a simple and secure process for signing in to many government
 services with one account. If you don’t already have one, follow these steps to create
 your Login.gov account <https://login.gov/help/get-started/create-your-account/>.
-
-
 {% endif %}
-
 DOMAIN MANAGEMENT
 As a .gov domain manager, you can add or update information like name servers. You’ll
 also serve as a contact for the domains you manage. Please keep your contact

From 66c0d88aeba68435c069c816c41b50cec1caa052 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Fri, 14 Feb 2025 16:45:09 -0500
Subject: [PATCH 53/59] cleanup

---
 src/registrar/views/portfolios.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index b7040c323..9bd615b66 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -314,7 +314,7 @@ def post(self, request, pk):
         if removed_domain_ids is None:
             return redirect(reverse("member-domains", kwargs={"pk": pk}))
 
-        if not added_domain_ids or removed_domain_ids:
+        if not (added_domain_ids or removed_domain_ids):
             messages.success(request, "The domain assignment changes have been saved.")
             return redirect(reverse("member-domains", kwargs={"pk": pk}))
 

From 51ec885c0c0a4bb5f7cfc60898d331aae007f76f Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Fri, 14 Feb 2025 16:46:02 -0500
Subject: [PATCH 54/59] lint

---
 src/registrar/views/portfolios.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 9bd615b66..91c0f0987 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -338,7 +338,7 @@ def post(self, request, pk):
                 f"please contact {DefaultUserValues.HELP_EMAIL}.",
             )
             logger.error(f"An unexpected error occurred: {str(e)}", exc_info=True)
-            return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))            
+            return redirect(reverse("member-domains-edit", kwargs={"pk": pk}))
 
     def _parse_domain_ids(self, domain_data, domain_type):
         """

From f61138208b82122f6041a38b34161b8ef200a29b Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Tue, 18 Feb 2025 16:50:17 -0500
Subject: [PATCH 55/59] Simplify JS

---
 .../js/getgov/table-edit-member-domains.js    | 34 +++++--------------
 1 file changed, 9 insertions(+), 25 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
index 1bfae0842..fb862ed42 100644
--- a/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
+++ b/src/registrar/assets/src/js/getgov/table-edit-member-domains.js
@@ -23,13 +23,13 @@ export class EditMemberDomainsTable extends BaseTable {
     this.readonlyModeContainer = document.getElementById('domain-assignments-readonly-view');
     this.reviewButton = document.getElementById('review-domain-assignments');
     this.backButton = document.getElementById('back-to-edit-domain-assignments');
-    this.saveButton = document.getElementById('save-domain-assignments');
-    
-    this.domainAssignmentsLoaded = false; // Flag to track if API request has completed
-    
-    this.initializeDomainAssignments();
+    this.saveButton = document.getElementById('save-domain-assignments'); 
+  }
+  async init() {
+    await this.initializeDomainAssignments();
     this.initCancelEditDomainAssignmentButton();
     this.initEventListeners();
+    return this;
   }
   getBaseUrl() {
     return document.getElementById("get_member_domains_json_url");
@@ -138,8 +138,6 @@ export class EditMemberDomainsTable extends BaseTable {
    * It is called once per page load, but not called with subsequent table changes.
    */
   async initializeDomainAssignments() {
-    if (this.domainAssignmentsLoaded) return; // Prevent multiple calls
-
     const baseUrlValue = this.getBaseUrl()?.innerHTML ?? null;
     if (!baseUrlValue) {
         console.error("Base URL not found");
@@ -166,8 +164,6 @@ export class EditMemberDomainsTable extends BaseTable {
     } catch (error) {
         console.error("Error fetching domain assignments:", error);
     }
-
-    this.domainAssignmentsLoaded = true; // Flag as complete whether data was found or not
   }
   /**
    * Initializes listeners on checkboxes in the table. Checkbox listeners are used
@@ -245,8 +241,6 @@ export class EditMemberDomainsTable extends BaseTable {
   }
 
   updateReadonlyDisplay() {
-    let totalAssignedDomains = this.getCheckedDomains().length;
-
     // Create unassigned domains list
     const unassignedDomainsList = document.createElement('ul');
     unassignedDomainsList.classList.add('usa-list', 'usa-list--unstyled');
@@ -363,24 +357,14 @@ export class EditMemberDomainsTable extends BaseTable {
 }
 
 export function initEditMemberDomainsTable() {
-  document.addEventListener('DOMContentLoaded', function() {
+  document.addEventListener('DOMContentLoaded', async function() {
     const isEditMemberDomainsPage = document.getElementById("edit-member-domains");
     if (!isEditMemberDomainsPage) return; // Exit if not on the right page
 
-    const editMemberDomainsTable = new EditMemberDomainsTable();
+    const editMemberDomainsTable = await new EditMemberDomainsTable().init();
 
-    function attemptInitTable() {
-      if (!editMemberDomainsTable.domainAssignmentsLoaded) {
-        console.warn("initEditMemberDomainsTable called before domain assignments loaded. Retrying later...");
-        setTimeout(attemptInitTable, 50); // Retry with a slight delay
-        return;
-      }
-
-      if (editMemberDomainsTable.tableWrapper) {
-        editMemberDomainsTable.loadTable(1); // Initial load
-      }
+    if (editMemberDomainsTable.tableWrapper) {
+      editMemberDomainsTable.loadTable(1); // Initial load
     }
-
-    attemptInitTable(); // Call the function immediately
   });
 }

From c7ea0f8f33ff351a7ccbd28ac69f3960a032eb2d Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Tue, 18 Feb 2025 17:03:52 -0500
Subject: [PATCH 56/59] Simplify form clean

---
 src/registrar/forms/portfolio.py | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/src/registrar/forms/portfolio.py b/src/registrar/forms/portfolio.py
index 1bee4e236..36818b371 100644
--- a/src/registrar/forms/portfolio.py
+++ b/src/registrar/forms/portfolio.py
@@ -236,13 +236,6 @@ def clean(self):
         if cleaned_data.get("member_permissions") == "no_access":
             cleaned_data["member_permissions"] = None
 
-        # Handle roles
-        # Ensure roles is a list but only if role is valid
-        if role:
-            cleaned_data["roles"] = [role] if isinstance(role, str) else role
-        else:
-            cleaned_data["roles"] = []  # Handle empty form case
-
         # Handle additional_permissions
         valid_fields = self.ROLE_REQUIRED_FIELDS.get(role, [])
         additional_permissions = {cleaned_data.get(field) for field in valid_fields if cleaned_data.get(field)}

From 8d0dc69859e4e4dab6b1c50d347c489065f852e0 Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 19 Feb 2025 10:22:45 -0500
Subject: [PATCH 57/59] Add back roles in cleaned data member form

---
 src/registrar/forms/portfolio.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/registrar/forms/portfolio.py b/src/registrar/forms/portfolio.py
index 36818b371..1a0fe6edf 100644
--- a/src/registrar/forms/portfolio.py
+++ b/src/registrar/forms/portfolio.py
@@ -218,6 +218,9 @@ def clean(self):
         cleaned_data = super().clean()
         role = cleaned_data.get("role")
 
+        # handle role
+        cleaned_data["roles"] = [role] if role else []
+
         # Get required fields for the selected role. Then validate all required fields for the role.
         required_fields = self.ROLE_REQUIRED_FIELDS.get(role, [])
         for field_name in required_fields:

From 282c9a6e6340e6aa80b79f48dfc630666ed9a60b Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Wed, 19 Feb 2025 11:01:03 -0500
Subject: [PATCH 58/59] use model display methods for permissions descriptions
 in member form

---
 .github/workflows/delete-and-recreate-db.yaml |   6 +-
 src/registrar/assets/js/get-gov-reports.js    | 179 ----------------
 .../assets/src/js/getgov-admin/analytics.js   | 177 ++++++++++++++++
 .../src/js/getgov-admin/helpers-admin.js      |  10 +
 .../assets/src/js/getgov-admin/main.js        |   4 +
 .../assets/src/sass/_theme/_admin.scss        |  40 +++-
 src/registrar/config/settings.py              |   1 +
 src/registrar/context_processors.py           |  11 -
 src/registrar/fixtures/fixtures_users.py      |   7 +
 src/registrar/forms/portfolio.py              |  92 +++++++--
 src/registrar/models/domain.py                |   5 +-
 src/registrar/models/portfolio_invitation.py  |  91 ++++++++
 src/registrar/models/user.py                  |  48 +----
 .../models/user_portfolio_permission.py       |  91 ++++++++
 .../models/utility/portfolio_helper.py        | 155 ++++++++++++++
 src/registrar/templates/admin/analytics.html  | 195 +++++++++++-------
 .../admin/analytics_graph_table.html          |  26 +++
 src/registrar/templates/admin/base_site.html  |   1 -
 .../portfolio/portfolio_members_table.html    |   6 -
 src/registrar/templates/domain_detail.html    |  10 +-
 src/registrar/templates/domain_sidebar.html   |   2 +-
 .../emails/action_needed_reasons/bad_name.txt |   2 +-
 .../questionable_senior_official.txt          |   2 +-
 .../templates/emails/domain_invitation.txt    |   2 +-
 .../emails/domain_manager_notification.txt    |   2 +-
 .../emails/domain_request_withdrawn.txt       |   2 +-
 .../portfolio_admin_addition_notification.txt |   2 +-
 .../portfolio_admin_removal_notification.txt  |   2 +-
 .../templates/emails/portfolio_invitation.txt |   2 +-
 .../templates/emails/portfolio_update.txt     |  35 ++++
 .../emails/portfolio_update_subject.txt       |   1 +
 .../emails/status_change_approved.txt         |   2 +-
 .../emails/submission_confirmation.txt        |   2 +-
 .../emails/transition_domain_invitation.txt   |   4 +-
 .../emails/update_to_approved_domain.txt      |   2 +-
 .../templates/includes/domains_table.html     |   6 +-
 .../includes/member_permissions_summary.html  |  30 +--
 src/registrar/templatetags/custom_filters.py  |   9 -
 src/registrar/tests/test_email_invitations.py |  77 ++++++-
 src/registrar/tests/test_emails.py            |  76 +++++++
 src/registrar/tests/test_models.py            |  61 ------
 src/registrar/tests/test_reports.py           |   2 +
 src/registrar/tests/test_views_domain.py      |  39 +---
 src/registrar/tests/test_views_portfolio.py   | 113 ++++++++--
 src/registrar/utility/email.py                |  18 ++
 src/registrar/utility/email_invitations.py    |  43 ++++
 src/registrar/views/domain.py                 |   3 +-
 src/registrar/views/portfolios.py             |   6 +
 src/registrar/views/report_views.py           |  70 +++++--
 49 files changed, 1234 insertions(+), 538 deletions(-)
 delete mode 100644 src/registrar/assets/js/get-gov-reports.js
 create mode 100644 src/registrar/assets/src/js/getgov-admin/analytics.js
 create mode 100644 src/registrar/templates/admin/analytics_graph_table.html
 create mode 100644 src/registrar/templates/emails/portfolio_update.txt
 create mode 100644 src/registrar/templates/emails/portfolio_update_subject.txt

diff --git a/.github/workflows/delete-and-recreate-db.yaml b/.github/workflows/delete-and-recreate-db.yaml
index ecdf54bbc..979f20826 100644
--- a/.github/workflows/delete-and-recreate-db.yaml
+++ b/.github/workflows/delete-and-recreate-db.yaml
@@ -1,8 +1,8 @@
 # This workflow can be run from the CLI
 #     gh workflow run reset-db.yaml -f environment=ENVIRONMENT
 
-name: Reset database
-run-name: Reset database for ${{ github.event.inputs.environment }}
+name: Delete and Recreate database
+run-name: Delete and Recreate for ${{ github.event.inputs.environment }}
 
 on:
   workflow_dispatch:
@@ -53,7 +53,7 @@ jobs:
          sudo apt-get update
          sudo apt-get install cf8-cli
          cf api api.fr.cloud.gov
-         cf auth "$CF_USERNAME" "$CF_PASSWORD"
+         cf auth "$cf_username" "$cf_password"
          cf target -o cisa-dotgov -s $DESTINATION_ENVIRONMENT   
 
 
diff --git a/src/registrar/assets/js/get-gov-reports.js b/src/registrar/assets/js/get-gov-reports.js
deleted file mode 100644
index b82a5574f..000000000
--- a/src/registrar/assets/js/get-gov-reports.js
+++ /dev/null
@@ -1,179 +0,0 @@
-
-/** An IIFE for admin in DjangoAdmin to listen to clicks on the growth report export button,
- * attach the seleted start and end dates to a url that'll trigger the view, and finally
- * redirect to that url.
- * 
- * This function also sets the start and end dates to match the url params if they exist
-*/
-(function () {
-    // Function to get URL parameter value by name
-    function getParameterByName(name, url) {
-        if (!url) url = window.location.href;
-        name = name.replace(/[\[\]]/g, '\\$&');
-        var regex = new RegExp('[?&]' + name + '(=([^&#]*)|&|#|$)'),
-            results = regex.exec(url);
-        if (!results) return null;
-        if (!results[2]) return '';
-        return decodeURIComponent(results[2].replace(/\+/g, ' '));
-    }
-
-    // Get the current date in the format YYYY-MM-DD
-    let currentDate = new Date().toISOString().split('T')[0];
-
-    // Default the value of the start date input field to the current date
-    let startDateInput = document.getElementById('start');
-
-    // Default the value of the end date input field to the current date
-    let endDateInput = document.getElementById('end');
-
-    let exportButtons = document.querySelectorAll('.exportLink');
-
-    if (exportButtons.length > 0) {
-        // Check if start and end dates are present in the URL
-        let urlStartDate = getParameterByName('start_date');
-        let urlEndDate = getParameterByName('end_date');
-
-        // Set input values based on URL parameters or current date
-        startDateInput.value = urlStartDate || currentDate;
-        endDateInput.value = urlEndDate || currentDate;
-
-        exportButtons.forEach((btn) => {
-            btn.addEventListener('click', function () {
-                // Get the selected start and end dates
-                let startDate = startDateInput.value;
-                let endDate = endDateInput.value;
-                let exportUrl = btn.dataset.exportUrl;
-
-                // Build the URL with parameters
-                exportUrl += "?start_date=" + startDate + "&end_date=" + endDate;
-
-                // Redirect to the export URL
-                window.location.href = exportUrl;
-            });
-        });
-    }
-
-})();
-
-
-/** An IIFE to initialize the analytics page
-*/
-(function () {
-
-    /**
-     * Creates a diagonal stripe pattern for chart.js
-     * Inspired by https://stackoverflow.com/questions/28569667/fill-chart-js-bar-chart-with-diagonal-stripes-or-other-patterns
-     * and https://github.com/ashiguruma/patternomaly
-     * @param {string} backgroundColor - Background color of the pattern
-     * @param {string} [lineColor="white"] - Color of the diagonal lines
-     * @param {boolean} [rightToLeft=false] - Direction of the diagonal lines
-     * @param {number} [lineGap=1] - Gap between lines
-     * @returns {CanvasPattern} A canvas pattern object for use with backgroundColor
-     */
-    function createDiagonalPattern(backgroundColor, lineColor, rightToLeft=false, lineGap=1) {
-        // Define the canvas and the 2d context so we can draw on it
-        let shape = document.createElement("canvas");
-        shape.width = 20;
-        shape.height = 20;
-        let context = shape.getContext("2d");
-
-        // Fill with specified background color
-        context.fillStyle = backgroundColor;
-        context.fillRect(0, 0, shape.width, shape.height);
-
-        // Set stroke properties
-        context.strokeStyle = lineColor;
-        context.lineWidth = 2;
-
-        // Rotate canvas for a right-to-left pattern
-        if (rightToLeft) {
-            context.translate(shape.width, 0);
-            context.rotate(90 * Math.PI / 180);
-        };
-
-        // First diagonal line
-        let halfSize = shape.width / 2;
-        context.moveTo(halfSize - lineGap, -lineGap);
-        context.lineTo(shape.width + lineGap, halfSize + lineGap);
-
-        // Second diagonal line (x,y are swapped)
-        context.moveTo(-lineGap, halfSize - lineGap);
-        context.lineTo(halfSize + lineGap, shape.width + lineGap);
-
-        context.stroke();
-        return context.createPattern(shape, "repeat");
-    }
-
-    function createComparativeColumnChart(canvasId, title, labelOne, labelTwo) {
-        var canvas = document.getElementById(canvasId);
-        if (!canvas) {
-            return
-        }
-
-        var ctx = canvas.getContext("2d");
-
-        var listOne = JSON.parse(canvas.getAttribute('data-list-one'));
-        var listTwo = JSON.parse(canvas.getAttribute('data-list-two'));
-
-        var data = {
-            labels: ["Total", "Federal", "Interstate", "State/Territory", "Tribal", "County", "City", "Special District", "School District", "Election Board"],
-            datasets: [
-                {
-                    label: labelOne,
-                    backgroundColor: "rgba(255, 99, 132, 0.3)",
-                    borderColor: "rgba(255, 99, 132, 1)",
-                    borderWidth: 1,
-                    data: listOne,
-                    // Set this line style to be rightToLeft for visual distinction
-                    backgroundColor: createDiagonalPattern('rgba(255, 99, 132, 0.3)', 'white', true)
-                },
-                {
-                    label: labelTwo,
-                    backgroundColor: "rgba(75, 192, 192, 0.3)",
-                    borderColor: "rgba(75, 192, 192, 1)",
-                    borderWidth: 1,
-                    data: listTwo,
-                    backgroundColor: createDiagonalPattern('rgba(75, 192, 192, 0.3)', 'white')
-                },
-            ],
-        };
-
-        var options = {
-            responsive: true,
-            maintainAspectRatio: false,
-            plugins: {
-                legend: {
-                    position: 'top',
-                },
-                title: {
-                    display: true,
-                    text: title
-                }
-            },
-            scales: {
-                y: {
-                    beginAtZero: true,
-                },
-            },
-        };
-
-        new Chart(ctx, {
-            type: "bar",
-            data: data,
-            options: options,
-        });
-    }
-
-    function initComparativeColumnCharts() {
-        document.addEventListener("DOMContentLoaded", function () {
-            createComparativeColumnChart("myChart1", "Managed domains", "Start Date", "End Date");
-            createComparativeColumnChart("myChart2", "Unmanaged domains", "Start Date", "End Date");
-            createComparativeColumnChart("myChart3", "Deleted domains", "Start Date", "End Date");
-            createComparativeColumnChart("myChart4", "Ready domains", "Start Date", "End Date");
-            createComparativeColumnChart("myChart5", "Submitted requests", "Start Date", "End Date");
-            createComparativeColumnChart("myChart6", "All requests", "Start Date", "End Date");
-        });
-    };
-
-    initComparativeColumnCharts();
-})();
diff --git a/src/registrar/assets/src/js/getgov-admin/analytics.js b/src/registrar/assets/src/js/getgov-admin/analytics.js
new file mode 100644
index 000000000..47bc81388
--- /dev/null
+++ b/src/registrar/assets/src/js/getgov-admin/analytics.js
@@ -0,0 +1,177 @@
+import { debounce } from '../getgov/helpers.js';
+import { getParameterByName } from './helpers-admin.js';
+
+/** This function also sets the start and end dates to match the url params if they exist
+*/
+function initAnalyticsExportButtons() {
+    // Get the current date in the format YYYY-MM-DD
+    let currentDate = new Date().toISOString().split('T')[0];
+
+    // Default the value of the start date input field to the current date
+    let startDateInput = document.getElementById('start');
+
+    // Default the value of the end date input field to the current date
+    let endDateInput = document.getElementById('end');
+
+    let exportButtons = document.querySelectorAll('.exportLink');
+
+    if (exportButtons.length > 0) {
+        // Check if start and end dates are present in the URL
+        let urlStartDate = getParameterByName('start_date');
+        let urlEndDate = getParameterByName('end_date');
+
+        // Set input values based on URL parameters or current date
+        startDateInput.value = urlStartDate || currentDate;
+        endDateInput.value = urlEndDate || currentDate;
+
+        exportButtons.forEach((btn) => {
+            btn.addEventListener('click', function () {
+                // Get the selected start and end dates
+                let startDate = startDateInput.value;
+                let endDate = endDateInput.value;
+                let exportUrl = btn.dataset.exportUrl;
+
+                // Build the URL with parameters
+                exportUrl += "?start_date=" + startDate + "&end_date=" + endDate;
+
+                // Redirect to the export URL
+                window.location.href = exportUrl;
+            });
+        });
+    }
+};
+
+/**
+     * Creates a diagonal stripe pattern for chart.js
+     * Inspired by https://stackoverflow.com/questions/28569667/fill-chart-js-bar-chart-with-diagonal-stripes-or-other-patterns
+     * and https://github.com/ashiguruma/patternomaly
+     * @param {string} backgroundColor - Background color of the pattern
+     * @param {string} [lineColor="white"] - Color of the diagonal lines
+     * @param {boolean} [rightToLeft=false] - Direction of the diagonal lines
+     * @param {number} [lineGap=1] - Gap between lines
+     * @returns {CanvasPattern} A canvas pattern object for use with backgroundColor
+     */
+function createDiagonalPattern(backgroundColor, lineColor, rightToLeft=false, lineGap=1) {
+    // Define the canvas and the 2d context so we can draw on it
+    let shape = document.createElement("canvas");
+    shape.width = 20;
+    shape.height = 20;
+    let context = shape.getContext("2d");
+
+    // Fill with specified background color
+    context.fillStyle = backgroundColor;
+    context.fillRect(0, 0, shape.width, shape.height);
+
+    // Set stroke properties
+    context.strokeStyle = lineColor;
+    context.lineWidth = 2;
+
+    // Rotate canvas for a right-to-left pattern
+    if (rightToLeft) {
+        context.translate(shape.width, 0);
+        context.rotate(90 * Math.PI / 180);
+    };
+
+    // First diagonal line
+    let halfSize = shape.width / 2;
+    context.moveTo(halfSize - lineGap, -lineGap);
+    context.lineTo(shape.width + lineGap, halfSize + lineGap);
+
+    // Second diagonal line (x,y are swapped)
+    context.moveTo(-lineGap, halfSize - lineGap);
+    context.lineTo(halfSize + lineGap, shape.width + lineGap);
+
+    context.stroke();
+    return context.createPattern(shape, "repeat");
+}
+
+function createComparativeColumnChart(id, title, labelOne, labelTwo) {
+    var canvas = document.getElementById(id);
+    if (!canvas) {
+        return
+    }
+
+    var ctx = canvas.getContext("2d");
+    var listOne = JSON.parse(canvas.getAttribute('data-list-one'));
+    var listTwo = JSON.parse(canvas.getAttribute('data-list-two'));
+
+    var data = {
+        labels: ["Total", "Federal", "Interstate", "State/Territory", "Tribal", "County", "City", "Special District", "School District", "Election Board"],
+        datasets: [
+            {
+                label: labelOne,
+                backgroundColor: "rgba(255, 99, 132, 0.3)",
+                borderColor: "rgba(255, 99, 132, 1)",
+                borderWidth: 1,
+                data: listOne,
+                // Set this line style to be rightToLeft for visual distinction
+                backgroundColor: createDiagonalPattern('rgba(255, 99, 132, 0.3)', 'white', true)
+            },
+            {
+                label: labelTwo,
+                backgroundColor: "rgba(75, 192, 192, 0.3)",
+                borderColor: "rgba(75, 192, 192, 1)",
+                borderWidth: 1,
+                data: listTwo,
+                backgroundColor: createDiagonalPattern('rgba(75, 192, 192, 0.3)', 'white')
+            },
+        ],
+    };
+
+    var options = {
+        responsive: true,
+        maintainAspectRatio: false,
+        plugins: {
+            legend: {
+                position: 'top',
+            },
+            title: {
+                display: true,
+                text: title
+            }
+        },
+        scales: {
+            y: {
+                beginAtZero: true,
+            },
+        },
+    };
+    return new Chart(ctx, {
+        type: "bar",
+        data: data,
+        options: options,
+    });
+}
+
+/** An IIFE to initialize the analytics page
+*/
+export function initAnalyticsDashboard() {
+    const analyticsPageContainer = document.querySelector('.analytics-dashboard-charts');
+    if (analyticsPageContainer) {
+        document.addEventListener("DOMContentLoaded", function () {
+            initAnalyticsExportButtons();
+
+            // Create charts and store each instance of it
+            const chartInstances = new Map();
+            const charts = [
+                { id: "managed-domains-chart", title: "Managed domains" },
+                { id: "unmanaged-domains-chart", title: "Unmanaged domains" },
+                { id: "deleted-domains-chart", title: "Deleted domains" },
+                { id: "ready-domains-chart", title: "Ready domains" },
+                { id: "submitted-requests-chart", title: "Submitted requests" },
+                { id: "all-requests-chart", title: "All requests" }
+            ];
+            charts.forEach(chart => {
+                if (chartInstances.has(chart.id)) chartInstances.get(chart.id).destroy();
+                chartInstances.set(chart.id, createComparativeColumnChart(chart.id, chart.title, "Start Date", "End Date"));
+            });
+
+            // Add resize listener to each chart
+            window.addEventListener("resize", debounce(() => {
+                chartInstances.forEach((chart) => {
+                    if (chart?.canvas) chart.resize();
+                });
+            }, 200));
+        });
+    }
+};
diff --git a/src/registrar/assets/src/js/getgov-admin/helpers-admin.js b/src/registrar/assets/src/js/getgov-admin/helpers-admin.js
index ff618a67d..8055e29d3 100644
--- a/src/registrar/assets/src/js/getgov-admin/helpers-admin.js
+++ b/src/registrar/assets/src/js/getgov-admin/helpers-admin.js
@@ -22,3 +22,13 @@ export function addOrRemoveSessionBoolean(name, add){
         sessionStorage.removeItem(name); 
     }
 }
+
+export function getParameterByName(name, url) {
+    if (!url) url = window.location.href;
+    name = name.replace(/[\[\]]/g, '\\$&');
+    var regex = new RegExp('[?&]' + name + '(=([^&#]*)|&|#|$)'),
+        results = regex.exec(url);
+    if (!results) return null;
+    if (!results[2]) return '';
+    return decodeURIComponent(results[2].replace(/\+/g, ' '));
+}
diff --git a/src/registrar/assets/src/js/getgov-admin/main.js b/src/registrar/assets/src/js/getgov-admin/main.js
index 64be572b2..5c6de20ab 100644
--- a/src/registrar/assets/src/js/getgov-admin/main.js
+++ b/src/registrar/assets/src/js/getgov-admin/main.js
@@ -15,6 +15,7 @@ import { initDomainFormTargetBlankButtons } from './domain-form.js';
 import { initDynamicPortfolioFields } from './portfolio-form.js';
 import { initDynamicDomainInformationFields } from './domain-information-form.js';
 import { initDynamicDomainFields } from './domain-form.js';
+import { initAnalyticsDashboard } from './analytics.js';
 
 // General
 initModals();
@@ -41,3 +42,6 @@ initDynamicPortfolioFields();
 
 // Domain information
 initDynamicDomainInformationFields();
+
+// Analytics dashboard
+initAnalyticsDashboard();
diff --git a/src/registrar/assets/src/sass/_theme/_admin.scss b/src/registrar/assets/src/sass/_theme/_admin.scss
index 322e94bf0..a15d1eabe 100644
--- a/src/registrar/assets/src/sass/_theme/_admin.scss
+++ b/src/registrar/assets/src/sass/_theme/_admin.scss
@@ -558,13 +558,18 @@ details.dja-detail-table {
         background-color: transparent;
     }
 
+    thead tr {
+        background-color: var(--darkened-bg);
+    }
+
     td, th {
         padding-left: 12px;
-        border: none
+        border: none;
+        background-color: var(--darkened-bg);
+        color: var(--body-quiet-color);
     }
 
     thead > tr > th {
-        border-radius: 4px;
         border-top: none;
         border-bottom: none;
     }
@@ -946,3 +951,34 @@ ul.add-list-reset {
     background-color: transparent !important; 
     }
 }
+
+@media (min-width: 1080px) {
+    .analytics-dashboard-charts {
+        // Desktop layout - charts in top row, details in bottom row
+        display: grid;
+        gap: 2rem;
+        // Equal columns each gets 1/2 of the space
+        grid-template-columns: minmax(0, 1fr) minmax(0, 1fr);
+        grid-template-areas:
+            "chart1 chart2"
+            "details1 details2"
+            "chart3 chart4"
+            "details3 details4"
+            "chart5 chart6"
+            "details5 details6";
+
+        .chart-1 { grid-area: chart1; }
+        .chart-2 { grid-area: chart2; }
+        .chart-3 { grid-area: chart3; }
+        .chart-4 { grid-area: chart4; }
+        .chart-5 { grid-area: chart5; }
+        .chart-6 { grid-area: chart6; }
+        .details-1 { grid-area: details1; }
+        .details-2 { grid-area: details2; }
+        .details-3 { grid-area: details3; }
+        .details-4 { grid-area: details4; }
+        .details-5 { grid-area: details5; }
+        .details-6 { grid-area: details6; }
+    }
+
+}
diff --git a/src/registrar/config/settings.py b/src/registrar/config/settings.py
index 78439188e..fa4c2d8dc 100644
--- a/src/registrar/config/settings.py
+++ b/src/registrar/config/settings.py
@@ -107,6 +107,7 @@
 # Controls production specific feature toggles
 IS_PRODUCTION = env_is_production
 SECRET_ENCRYPT_METADATA = secret_encrypt_metadata
+BASE_URL = env_base_url
 
 # Applications are modular pieces of code.
 # They are provided by Django, by third-parties, or by yourself.
diff --git a/src/registrar/context_processors.py b/src/registrar/context_processors.py
index a078c81ac..4e17b7fa1 100644
--- a/src/registrar/context_processors.py
+++ b/src/registrar/context_processors.py
@@ -68,19 +68,9 @@ def portfolio_permissions(request):
         "has_organization_requests_flag": False,
         "has_organization_members_flag": False,
         "is_portfolio_admin": False,
-        "has_domain_renewal_flag": False,
     }
     try:
         portfolio = request.session.get("portfolio")
-
-        # These feature flags will display and doesn't depend on portfolio
-        portfolio_context.update(
-            {
-                "has_organization_feature_flag": True,
-                "has_domain_renewal_flag": request.user.has_domain_renewal_flag(),
-            }
-        )
-
         if portfolio:
             return {
                 "has_view_portfolio_permission": request.user.has_view_portfolio_permission(portfolio),
@@ -95,7 +85,6 @@ def portfolio_permissions(request):
                 "has_organization_requests_flag": request.user.has_organization_requests_flag(),
                 "has_organization_members_flag": request.user.has_organization_members_flag(),
                 "is_portfolio_admin": request.user.is_portfolio_admin(portfolio),
-                "has_domain_renewal_flag": request.user.has_domain_renewal_flag(),
             }
         return portfolio_context
 
diff --git a/src/registrar/fixtures/fixtures_users.py b/src/registrar/fixtures/fixtures_users.py
index 876bc9fb5..fdaa1c135 100644
--- a/src/registrar/fixtures/fixtures_users.py
+++ b/src/registrar/fixtures/fixtures_users.py
@@ -171,6 +171,13 @@ class UserFixture:
             "email": "gina.summers@ecstech.com",
             "title": "Scrum Master",
         },
+        {
+            "username": "89f2db87-87a2-4778-a5ea-5b27b585b131",
+            "first_name": "Jaxon",
+            "last_name": "Silva",
+            "email": "jaxon.silva@cisa.dhs.gov",
+            "title": "Designer",
+        },
     ]
 
     STAFF = [
diff --git a/src/registrar/forms/portfolio.py b/src/registrar/forms/portfolio.py
index 1a0fe6edf..5aef09389 100644
--- a/src/registrar/forms/portfolio.py
+++ b/src/registrar/forms/portfolio.py
@@ -13,7 +13,16 @@
     Portfolio,
     SeniorOfficial,
 )
-from registrar.models.utility.portfolio_helper import UserPortfolioPermissionChoices, UserPortfolioRoleChoices
+from registrar.models.utility.portfolio_helper import (
+    UserPortfolioPermissionChoices,
+    UserPortfolioRoleChoices,
+    get_domain_requests_description_display,
+    get_domain_requests_display,
+    get_domains_description_display,
+    get_domains_display,
+    get_members_description_display,
+    get_members_display,
+)
 
 logger = logging.getLogger(__name__)
 
@@ -126,8 +135,16 @@ class BasePortfolioMemberForm(forms.ModelForm):
 
     domain_permissions = forms.ChoiceField(
         choices=[
-            (UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS.value, "Viewer, limited"),
-            (UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS.value, "Viewer"),
+            (
+                UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS.value,
+                get_domains_display(UserPortfolioRoleChoices.ORGANIZATION_MEMBER, None),
+            ),
+            (
+                UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS.value,
+                get_domains_display(
+                    UserPortfolioRoleChoices.ORGANIZATION_MEMBER, [UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS]
+                ),
+            ),
         ],
         widget=forms.RadioSelect,
         required=False,
@@ -139,9 +156,19 @@ class BasePortfolioMemberForm(forms.ModelForm):
 
     domain_request_permissions = forms.ChoiceField(
         choices=[
-            ("no_access", "No access"),
-            (UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS.value, "Viewer"),
-            (UserPortfolioPermissionChoices.EDIT_REQUESTS.value, "Creator"),
+            ("no_access", get_domain_requests_display(UserPortfolioRoleChoices.ORGANIZATION_MEMBER, None)),
+            (
+                UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS.value,
+                get_domain_requests_display(
+                    UserPortfolioRoleChoices.ORGANIZATION_MEMBER, [UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS]
+                ),
+            ),
+            (
+                UserPortfolioPermissionChoices.EDIT_REQUESTS.value,
+                get_domain_requests_display(
+                    UserPortfolioRoleChoices.ORGANIZATION_MEMBER, [UserPortfolioPermissionChoices.EDIT_REQUESTS]
+                ),
+            ),
         ],
         widget=forms.RadioSelect,
         required=False,
@@ -153,8 +180,13 @@ class BasePortfolioMemberForm(forms.ModelForm):
 
     member_permissions = forms.ChoiceField(
         choices=[
-            ("no_access", "No access"),
-            (UserPortfolioPermissionChoices.VIEW_MEMBERS.value, "Viewer"),
+            ("no_access", get_members_display(UserPortfolioRoleChoices.ORGANIZATION_MEMBER, None)),
+            (
+                UserPortfolioPermissionChoices.VIEW_MEMBERS.value,
+                get_members_display(
+                    UserPortfolioRoleChoices.ORGANIZATION_MEMBER, [UserPortfolioPermissionChoices.VIEW_MEMBERS]
+                ),
+            ),
         ],
         widget=forms.RadioSelect,
         required=False,
@@ -191,19 +223,31 @@ def __init__(self, *args, **kwargs):
 
         # Adds a <p> description beneath each option
         self.fields["domain_permissions"].descriptions = {
-            UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS.value: "Can view only the domains they manage",
-            UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS.value: "Can view all domains for the organization",
+            UserPortfolioPermissionChoices.VIEW_MANAGED_DOMAINS.value: get_domains_description_display(
+                UserPortfolioRoleChoices.ORGANIZATION_MEMBER, None
+            ),
+            UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS.value: get_domains_description_display(
+                UserPortfolioRoleChoices.ORGANIZATION_MEMBER, [UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS]
+            ),
         }
         self.fields["domain_request_permissions"].descriptions = {
             UserPortfolioPermissionChoices.EDIT_REQUESTS.value: (
-                "Can view all domain requests for the organization and create requests"
+                get_domain_requests_description_display(
+                    UserPortfolioRoleChoices.ORGANIZATION_MEMBER, [UserPortfolioPermissionChoices.EDIT_REQUESTS]
+                )
             ),
-            UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS.value: "Can view all domain requests for the organization",
-            "no_access": "Cannot view or create domain requests",
+            UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS.value: (
+                get_domain_requests_description_display(
+                    UserPortfolioRoleChoices.ORGANIZATION_MEMBER, [UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS]
+                )
+            ),
+            "no_access": get_domain_requests_description_display(UserPortfolioRoleChoices.ORGANIZATION_MEMBER, None),
         }
         self.fields["member_permissions"].descriptions = {
-            UserPortfolioPermissionChoices.VIEW_MEMBERS.value: "Can view all member permissions",
-            "no_access": "Cannot view member permissions",
+            UserPortfolioPermissionChoices.VIEW_MEMBERS.value: get_members_description_display(
+                UserPortfolioRoleChoices.ORGANIZATION_MEMBER, [UserPortfolioPermissionChoices.VIEW_MEMBERS]
+            ),
+            "no_access": get_members_description_display(UserPortfolioRoleChoices.ORGANIZATION_MEMBER, None),
         }
 
         # Map model instance values to custom form fields
@@ -338,6 +382,24 @@ def is_change_from_admin_to_member(self) -> bool:
             and UserPortfolioRoleChoices.ORGANIZATION_ADMIN not in new_roles
         )
 
+    def is_change(self) -> bool:
+        """
+        Determines if the form has changed by comparing the initial data
+        with the submitted cleaned data.
+
+        Returns:
+            bool: True if the form has changed, False otherwise.
+        """
+        # Compare role values
+        previous_roles = set(self.initial.get("roles", []))
+        new_roles = set(self.cleaned_data.get("roles", []))
+
+        # Compare additional permissions values
+        previous_permissions = set(self.initial.get("additional_permissions") or [])
+        new_permissions = set(self.cleaned_data.get("additional_permissions") or [])
+
+        return previous_roles != new_roles or previous_permissions != new_permissions
+
 
 class PortfolioMemberForm(BasePortfolioMemberForm):
     """
diff --git a/src/registrar/models/domain.py b/src/registrar/models/domain.py
index 649b3f93d..42310c3bb 100644
--- a/src/registrar/models/domain.py
+++ b/src/registrar/models/domain.py
@@ -41,7 +41,6 @@
 from .public_contact import PublicContact
 
 from .user_domain_role import UserDomainRole
-from waffle.decorators import flag_is_active
 
 logger = logging.getLogger(__name__)
 
@@ -1172,7 +1171,7 @@ def state_display(self, request=None):
         """Return the display status of the domain."""
         if self.is_expired() and (self.state != self.State.UNKNOWN):
             return "Expired"
-        elif flag_is_active(request, "domain_renewal") and self.is_expiring():
+        elif self.is_expiring():
             return "Expiring soon"
         elif self.state == self.State.UNKNOWN or self.state == self.State.DNS_NEEDED:
             return "DNS needed"
@@ -1588,7 +1587,7 @@ def get_state_help_text(self, request=None) -> str:
             # Given expired is not a physical state, but it is displayed as such,
             # We need custom logic to determine this message.
             help_text = "This domain has expired. Complete the online renewal process to maintain access."
-        elif flag_is_active(request, "domain_renewal") and self.is_expiring():
+        elif self.is_expiring():
             help_text = "This domain is expiring soon. Complete the online renewal process to maintain access."
         else:
             help_text = Domain.State.get_help_text(self.state)
diff --git a/src/registrar/models/portfolio_invitation.py b/src/registrar/models/portfolio_invitation.py
index 8feeb0794..fafa99856 100644
--- a/src/registrar/models/portfolio_invitation.py
+++ b/src/registrar/models/portfolio_invitation.py
@@ -9,6 +9,13 @@
     UserPortfolioPermissionChoices,
     UserPortfolioRoleChoices,
     cleanup_after_portfolio_member_deletion,
+    get_domain_requests_description_display,
+    get_domain_requests_display,
+    get_domains_description_display,
+    get_domains_display,
+    get_members_description_display,
+    get_members_display,
+    get_role_display,
     validate_portfolio_invitation,
 )  # type: ignore
 from .utility.time_stamped_model import TimeStampedModel
@@ -85,6 +92,90 @@ def get_portfolio_permissions(self):
         """
         return UserPortfolioPermission.get_portfolio_permissions(self.roles, self.additional_permissions)
 
+    @property
+    def role_display(self):
+        """
+        Returns a human-readable display name for the user's role.
+
+        Uses the `get_role_display` function to determine if the user is an "Admin",
+        "Basic" member, or has no role assigned.
+
+        Returns:
+            str: The display name of the user's role.
+        """
+        return get_role_display(self.roles)
+
+    @property
+    def domains_display(self):
+        """
+        Returns a string representation of the user's domain access level.
+
+        Uses the `get_domains_display` function to determine whether the user has
+        "Viewer" access (can view all domains) or "Viewer, limited" access.
+
+        Returns:
+            str: The display name of the user's domain permissions.
+        """
+        return get_domains_display(self.roles, self.additional_permissions)
+
+    @property
+    def domains_description_display(self):
+        """
+        Returns a string description of the user's domain access level.
+
+        Returns:
+            str: The display name of the user's domain permissions description.
+        """
+        return get_domains_description_display(self.roles, self.additional_permissions)
+
+    @property
+    def domain_requests_display(self):
+        """
+        Returns a string representation of the user's access to domain requests.
+
+        Uses the `get_domain_requests_display` function to determine if the user
+        is a "Creator" (can create and edit requests), a "Viewer" (can only view requests),
+        or has "No access" to domain requests.
+
+        Returns:
+            str: The display name of the user's domain request permissions.
+        """
+        return get_domain_requests_display(self.roles, self.additional_permissions)
+
+    @property
+    def domain_requests_description_display(self):
+        """
+        Returns a string description of the user's access to domain requests.
+
+        Returns:
+            str: The display name of the user's domain request permissions description.
+        """
+        return get_domain_requests_description_display(self.roles, self.additional_permissions)
+
+    @property
+    def members_display(self):
+        """
+        Returns a string representation of the user's access to managing members.
+
+        Uses the `get_members_display` function to determine if the user is a
+        "Manager" (can edit members), a "Viewer" (can view members), or has "No access"
+        to member management.
+
+        Returns:
+            str: The display name of the user's member management permissions.
+        """
+        return get_members_display(self.roles, self.additional_permissions)
+
+    @property
+    def members_description_display(self):
+        """
+        Returns a string description of the user's access to managing members.
+
+        Returns:
+            str: The display name of the user's member management permissions description.
+        """
+        return get_members_description_display(self.roles, self.additional_permissions)
+
     @transition(field="status", source=PortfolioInvitationStatus.INVITED, target=PortfolioInvitationStatus.RETRIEVED)
     def retrieve(self):
         """When an invitation is retrieved, create the corresponding permission.
diff --git a/src/registrar/models/user.py b/src/registrar/models/user.py
index 6f8ee499b..d5476ab9a 100644
--- a/src/registrar/models/user.py
+++ b/src/registrar/models/user.py
@@ -269,10 +269,7 @@ def has_edit_request_portfolio_permission(self, portfolio):
         return self._has_portfolio_permission(portfolio, UserPortfolioPermissionChoices.EDIT_REQUESTS)
 
     def is_portfolio_admin(self, portfolio):
-        return "Admin" in self.portfolio_role_summary(portfolio)
-
-    def has_domain_renewal_flag(self):
-        return flag_is_active_for_user(self, "domain_renewal")
+        return self.has_edit_portfolio_permission(portfolio)
 
     def get_first_portfolio(self):
         permission = self.portfolio_permissions.first()
@@ -280,49 +277,6 @@ def get_first_portfolio(self):
             return permission.portfolio
         return None
 
-    def portfolio_role_summary(self, portfolio):
-        """Returns a list of roles based on the user's permissions."""
-        roles = []
-
-        # Define the conditions and their corresponding roles
-        conditions_roles = [
-            (self.has_edit_portfolio_permission(portfolio), ["Admin"]),
-            (
-                self.has_view_all_domains_portfolio_permission(portfolio)
-                and self.has_any_requests_portfolio_permission(portfolio)
-                and self.has_edit_request_portfolio_permission(portfolio),
-                ["View-only admin", "Domain requestor"],
-            ),
-            (
-                self.has_view_all_domains_portfolio_permission(portfolio)
-                and self.has_any_requests_portfolio_permission(portfolio),
-                ["View-only admin"],
-            ),
-            (
-                self.has_view_portfolio_permission(portfolio)
-                and self.has_edit_request_portfolio_permission(portfolio)
-                and self.has_any_domains_portfolio_permission(portfolio),
-                ["Domain requestor", "Domain manager"],
-            ),
-            (
-                self.has_view_portfolio_permission(portfolio) and self.has_edit_request_portfolio_permission(portfolio),
-                ["Domain requestor"],
-            ),
-            (
-                self.has_view_portfolio_permission(portfolio) and self.has_any_domains_portfolio_permission(portfolio),
-                ["Domain manager"],
-            ),
-            (self.has_view_portfolio_permission(portfolio), ["Member"]),
-        ]
-
-        # Evaluate conditions and add roles
-        for condition, role_list in conditions_roles:
-            if condition:
-                roles.extend(role_list)
-                break
-
-        return roles
-
     def get_portfolios(self):
         return self.portfolio_permissions.all()
 
diff --git a/src/registrar/models/user_portfolio_permission.py b/src/registrar/models/user_portfolio_permission.py
index 5378dc185..0a758ff6a 100644
--- a/src/registrar/models/user_portfolio_permission.py
+++ b/src/registrar/models/user_portfolio_permission.py
@@ -6,6 +6,13 @@
     DomainRequestPermissionDisplay,
     MemberPermissionDisplay,
     cleanup_after_portfolio_member_deletion,
+    get_domain_requests_display,
+    get_domain_requests_description_display,
+    get_domains_display,
+    get_domains_description_display,
+    get_members_display,
+    get_members_description_display,
+    get_role_display,
     validate_user_portfolio_permission,
 )
 from .utility.time_stamped_model import TimeStampedModel
@@ -181,6 +188,90 @@ def get_forbidden_permissions(cls, roles, additional_permissions):
         # This is the same as portfolio_permissions & common_forbidden_perms.
         return portfolio_permissions.intersection(common_forbidden_perms)
 
+    @property
+    def role_display(self):
+        """
+        Returns a human-readable display name for the user's role.
+
+        Uses the `get_role_display` function to determine if the user is an "Admin",
+        "Basic" member, or has no role assigned.
+
+        Returns:
+            str: The display name of the user's role.
+        """
+        return get_role_display(self.roles)
+
+    @property
+    def domains_display(self):
+        """
+        Returns a string representation of the user's domain access level.
+
+        Uses the `get_domains_display` function to determine whether the user has
+        "Viewer" access (can view all domains) or "Viewer, limited" access.
+
+        Returns:
+            str: The display name of the user's domain permissions.
+        """
+        return get_domains_display(self.roles, self.additional_permissions)
+
+    @property
+    def domains_description_display(self):
+        """
+        Returns a string description of the user's domain access level.
+
+        Returns:
+            str: The display name of the user's domain permissions description.
+        """
+        return get_domains_description_display(self.roles, self.additional_permissions)
+
+    @property
+    def domain_requests_display(self):
+        """
+        Returns a string representation of the user's access to domain requests.
+
+        Uses the `get_domain_requests_display` function to determine if the user
+        is a "Creator" (can create and edit requests), a "Viewer" (can only view requests),
+        or has "No access" to domain requests.
+
+        Returns:
+            str: The display name of the user's domain request permissions.
+        """
+        return get_domain_requests_display(self.roles, self.additional_permissions)
+
+    @property
+    def domain_requests_description_display(self):
+        """
+        Returns a string description of the user's access to domain requests.
+
+        Returns:
+            str: The display name of the user's domain request permissions description.
+        """
+        return get_domain_requests_description_display(self.roles, self.additional_permissions)
+
+    @property
+    def members_display(self):
+        """
+        Returns a string representation of the user's access to managing members.
+
+        Uses the `get_members_display` function to determine if the user is a
+        "Manager" (can edit members), a "Viewer" (can view members), or has "No access"
+        to member management.
+
+        Returns:
+            str: The display name of the user's member management permissions.
+        """
+        return get_members_display(self.roles, self.additional_permissions)
+
+    @property
+    def members_description_display(self):
+        """
+        Returns a string description of the user's access to managing members.
+
+        Returns:
+            str: The display name of the user's member management permissions description.
+        """
+        return get_members_description_display(self.roles, self.additional_permissions)
+
     def clean(self):
         """Extends clean method to perform additional validation, which can raise errors in django admin."""
         super().clean()
diff --git a/src/registrar/models/utility/portfolio_helper.py b/src/registrar/models/utility/portfolio_helper.py
index 5feae1cc1..e94733fb6 100644
--- a/src/registrar/models/utility/portfolio_helper.py
+++ b/src/registrar/models/utility/portfolio_helper.py
@@ -79,6 +79,161 @@ class MemberPermissionDisplay(StrEnum):
     NONE = "None"
 
 
+def get_role_display(roles):
+    """
+    Returns a user-friendly display name for a given list of user roles.
+
+    - If the user has the ORGANIZATION_ADMIN role, return "Admin".
+    - If the user has the ORGANIZATION_MEMBER role, return "Basic".
+    - If the user has neither role, return "-".
+
+    Args:
+        roles (list): A list of role strings assigned to the user.
+
+    Returns:
+        str: The display name for the highest applicable role.
+    """
+    if UserPortfolioRoleChoices.ORGANIZATION_ADMIN in roles:
+        return "Admin"
+    elif UserPortfolioRoleChoices.ORGANIZATION_MEMBER in roles:
+        return "Basic"
+    else:
+        return "-"
+
+
+def get_domains_display(roles, permissions):
+    """
+    Determines the display name for a user's domain viewing permissions.
+
+    - If the user has the VIEW_ALL_DOMAINS permission, return "Viewer".
+    - Otherwise, return "Viewer, limited".
+
+    Args:
+        roles (list): A list of role strings assigned to the user.
+        permissions (list): A list of additional permissions assigned to the user.
+
+    Returns:
+        str: A string representing the user's domain viewing access.
+    """
+    UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
+    all_permissions = UserPortfolioPermission.get_portfolio_permissions(roles, permissions)
+    if UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS in all_permissions:
+        return "Viewer"
+    else:
+        return "Viewer, limited"
+
+
+def get_domains_description_display(roles, permissions):
+    """
+    Determines the display description for a user's domain viewing permissions.
+
+    Args:
+        roles (list): A list of role strings assigned to the user.
+        permissions (list): A list of additional permissions assigned to the user.
+
+    Returns:
+        str: A string representing the user's domain viewing access description.
+    """
+    UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
+    all_permissions = UserPortfolioPermission.get_portfolio_permissions(roles, permissions)
+    if UserPortfolioPermissionChoices.VIEW_ALL_DOMAINS in all_permissions:
+        return "Can view all domains for the organization"
+    else:
+        return "Can view only the domains they manage"
+
+
+def get_domain_requests_display(roles, permissions):
+    """
+    Determines the display name for a user's domain request permissions.
+
+    - If the user has the EDIT_REQUESTS permission, return "Creator".
+    - If the user has the VIEW_ALL_REQUESTS permission, return "Viewer".
+    - Otherwise, return "No access".
+
+    Args:
+        roles (list): A list of role strings assigned to the user.
+        permissions (list): A list of additional permissions assigned to the user.
+
+    Returns:
+        str: A string representing the user's domain request access level.
+    """
+    UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
+    all_permissions = UserPortfolioPermission.get_portfolio_permissions(roles, permissions)
+    if UserPortfolioPermissionChoices.EDIT_REQUESTS in all_permissions:
+        return "Creator"
+    elif UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS in all_permissions:
+        return "Viewer"
+    else:
+        return "No access"
+
+
+def get_domain_requests_description_display(roles, permissions):
+    """
+    Determines the display description for a user's domain request permissions.
+
+    Args:
+        roles (list): A list of role strings assigned to the user.
+        permissions (list): A list of additional permissions assigned to the user.
+
+    Returns:
+        str: A string representing the user's domain request access level description.
+    """
+    UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
+    all_permissions = UserPortfolioPermission.get_portfolio_permissions(roles, permissions)
+    if UserPortfolioPermissionChoices.EDIT_REQUESTS in all_permissions:
+        return "Can view all domain requests for the organization and create requests"
+    elif UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS in all_permissions:
+        return "Can view all domain requests for the organization"
+    else:
+        return "Cannot view or create domain requests"
+
+
+def get_members_display(roles, permissions):
+    """
+    Determines the display name for a user's member management permissions.
+
+    - If the user has the EDIT_MEMBERS permission, return "Manager".
+    - If the user has the VIEW_MEMBERS permission, return "Viewer".
+    - Otherwise, return "No access".
+
+    Args:
+        roles (list): A list of role strings assigned to the user.
+        permissions (list): A list of additional permissions assigned to the user.
+
+    Returns:
+        str: A string representing the user's member management access level.
+    """
+    UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
+    all_permissions = UserPortfolioPermission.get_portfolio_permissions(roles, permissions)
+    if UserPortfolioPermissionChoices.EDIT_MEMBERS in all_permissions:
+        return "Manager"
+    elif UserPortfolioPermissionChoices.VIEW_MEMBERS in all_permissions:
+        return "Viewer"
+    else:
+        return "No access"
+
+
+def get_members_description_display(roles, permissions):
+    """
+    Determines the display description for a user's member management permissions.
+
+    Args:
+        roles (list): A list of role strings assigned to the user.
+        permissions (list): A list of additional permissions assigned to the user.
+
+    Returns:
+        str: A string representing the user's member management access level description.
+    """
+    UserPortfolioPermission = apps.get_model("registrar.UserPortfolioPermission")
+    all_permissions = UserPortfolioPermission.get_portfolio_permissions(roles, permissions)
+    if UserPortfolioPermissionChoices.EDIT_MEMBERS in all_permissions:
+        return "Can view and manage all member permissions"
+    elif UserPortfolioPermissionChoices.VIEW_MEMBERS in all_permissions:
+        return "Can view all member permissions"
+    else:
+        return "Cannot view member permissions"
+
+
 def validate_user_portfolio_permission(user_portfolio_permission):
     """
     Validates a UserPortfolioPermission instance. Located in portfolio_helper to avoid circular imports
diff --git a/src/registrar/templates/admin/analytics.html b/src/registrar/templates/admin/analytics.html
index ccfd54d05..fdebff22c 100644
--- a/src/registrar/templates/admin/analytics.html
+++ b/src/registrar/templates/admin/analytics.html
@@ -18,7 +18,7 @@
 
 {% block content %}
 
-  <div id="content-main" class="custom-admin-template">
+  <div id="content-main" class="custom-admin-template analytics-dashboard">
 
     <div class="grid-row grid-gap-2">
       <div class="tablet:grid-col-6 margin-top-2">
@@ -95,7 +95,7 @@ <h2>Growth reports</h2>
                   <input type="date" id="end" name="end" value="2023-12-01" min="2023-12-01" />
               </div>
           </div>
-          <ul class="usa-button-group">
+          <ul class="usa-button-group flex-wrap">
             <li class="usa-button-group__item">
               <button class="usa-button usa-button--dja exportLink" data-export-url="{% url 'export_domains_growth' %}" type="button">
                 <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24" height="24">
@@ -133,80 +133,127 @@ <h2>Growth reports</h2>
             </li>
           </ul>
 
-          <div class="grid-row grid-gap-2 margin-y-2">
-            <div class="grid-col">
-              <canvas id="myChart1" width="400" height="200"
-                aria-label="Chart: {{ data.managed_domains_sliced_at_end_date.0 }} managed domains for {{ data.end_date }}"
-                role="img"
-                data-list-one="{{data.managed_domains_sliced_at_start_date}}"
-                data-list-two="{{data.managed_domains_sliced_at_end_date}}"
-              >
-                <h2>Chart: Managed domains</h2>
-                <p>{{ data.managed_domains_sliced_at_end_date.0 }} managed domains for {{ data.end_date }}</p>
-              </canvas>
-            </div>
-            <div class="grid-col">
-              <canvas id="myChart2" width="400" height="200"
-                aria-label="Chart: {{ data.unmanaged_domains_sliced_at_end_date.0 }} unmanaged domains for {{ data.end_date }}"
-                role="img"
-                data-list-one="{{data.unmanaged_domains_sliced_at_start_date}}"
-                data-list-two="{{data.unmanaged_domains_sliced_at_end_date}}"
-              >
-                <h2>Chart: Unmanaged domains</h2>
-                <p>{{ data.unmanaged_domains_sliced_at_end_date.0 }} unmanaged domains for {{ data.end_date }}</p>
-            </canvas>
-            </div>
-          </div>
+		<div class="analytics-dashboard-charts margin-top-2">
+			{% comment %} Managed/Unmanaged domains {% endcomment %}
+			<div class="chart-1 grid-col">
+				<canvas id="managed-domains-chart" width="400" height="200"
+				aria-label="Chart: {{ data.managed_domains.end_date_count.0 }} managed domains for {{ data.end_date }}"
+				role="img"
+				data-list-one="{{ data.managed_domains.start_date_count }}"
+				data-list-two="{{ data.managed_domains.end_date_count }}"
+				>
+				<h2>Chart: Managed domains</h2>
+				<p>{{ data.managed_domains.end_date_count.0 }} managed domains for {{ data.end_date }}</p>
+				</canvas>
+			</div>
+			<div class="details-1 grid-col margin-bottom-2">
+				<details class="dja-detail-table" aria-role="button" closed>
+				<summary class="dja-details-summary">Details for managed domains</summary>
+				<div class="grid-container margin-left-0 padding-left-0 padding-right-0 dja-details-contents">
+					{% include "admin/analytics_graph_table.html" with data=data property_name="managed_domains" %}
+				</div>
+				</details>
+			</div>
+			<div class="chart-2 grid-col">
+				<canvas id="unmanaged-domains-chart" width="400" height="200"
+				aria-label="Chart: {{ data.unmanaged_domains.end_date_count.0 }} unmanaged domains for {{ data.end_date }}"
+				role="img"
+				data-list-one="{{ data.unmanaged_domains.start_date_count }}"
+				data-list-two="{{ data.unmanaged_domains.end_date_count }}"
+				>
+				<h2>Chart: Unmanaged domains</h2>
+				<p>{{ data.unmanaged_domains.end_date_count.0 }} unmanaged domains for {{ data.end_date }}</p>
+				</canvas>
+			</div>
+			<div class="details-2 grid-col margin-bottom-2">
+				<details class="dja-detail-table" aria-role="button" closed>
+				<summary class="dja-details-summary">Details for unmanaged domains</summary>
+				<div class="grid-container margin-left-0 padding-left-0 padding-right-0 dja-details-contents">
+					{% include "admin/analytics_graph_table.html" with data=data property_name="unmanaged_domains" %}
+				</div>
+				</details>
+			</div>
 
-          <div class="grid-row grid-gap-2 margin-y-2">
-            <div class="grid-col">
-              <canvas id="myChart3" width="400" height="200"
-                aria-label="Chart: {{ data.deleted_domains_sliced_at_end_date.0 }} deleted domains for {{ data.end_date }}"
-                role="img" 
-                data-list-one="{{data.deleted_domains_sliced_at_start_date}}"
-                data-list-two="{{data.deleted_domains_sliced_at_end_date}}"
-              >
-                <h2>Chart: Deleted domains</h2>
-                <p>{{ data.deleted_domains_sliced_at_end_date.0 }} deleted domains for {{ data.end_date }}</p>
-            </canvas>
-            </div>
-            <div class="grid-col">
-              <canvas id="myChart4" width="400" height="200"
-                aria-label="Chart: {{ data.ready_domains_sliced_at_end_date.0 }} ready domains for {{ data.end_date }}"
-                role="img" 
-                data-list-one="{{data.ready_domains_sliced_at_start_date}}"
-                data-list-two="{{data.ready_domains_sliced_at_end_date}}"
-              >
-                <h2>Chart: Ready domains</h2>
-                <p>{{ data.ready_domains_sliced_at_end_date.0 }} ready domains for {{ data.end_date }}</p>
-            </canvas>
-            </div>
-          </div>
+			{% comment %} Deleted/Ready domains {% endcomment %}
+			<div class="chart-3 grid-col">
+				<canvas id="deleted-domains-chart" width="400" height="200"
+				aria-label="Chart: {{ data.deleted_domains.end_date_count.0 }} deleted domains for {{ data.end_date }}"
+				role="img" 
+				data-list-one="{{ data.deleted_domains.start_date_count }}"
+				data-list-two="{{ data.deleted_domains.end_date_count }}"
+				>
+				<h2>Chart: Deleted domains</h2>
+				<p>{{ data.deleted_domains.end_date_count.0 }} deleted domains for {{ data.end_date }}</p>
+				</canvas>
+			</div>
+			<div class="details-3 grid-col margin-bottom-2">
+				<details class="dja-detail-table" aria-role="button" closed>
+				<summary class="dja-details-summary">Details for deleted domains</summary>
+				<div class="grid-container margin-left-0 padding-left-0 padding-right-0 dja-details-contents">
+					{% include "admin/analytics_graph_table.html" with data=data property_name="deleted_domains" %}
+				</div>
+				</details>
+			</div>
+			<div class="chart-4 grid-col">
+				<canvas id="ready-domains-chart" width="400" height="200"
+				aria-label="Chart: {{ data.ready_domains.end_date_count.0 }} ready domains for {{ data.end_date }}"
+				role="img" 
+				data-list-one="{{ data.ready_domains.start_date_count }}"
+				data-list-two="{{ data.ready_domains.end_date_count }}"
+				>
+				<h2>Chart: Ready domains</h2>
+				<p>{{ data.ready_domains.end_date_count.0 }} ready domains for {{ data.end_date }}</p>
+				</canvas>
+			</div>
+			<div class="details-4 grid-col margin-bottom-2">
+				<details class="dja-detail-table" aria-role="button" closed>
+				<summary class="dja-details-summary">Details for ready domains</summary>
+				<div class="grid-container margin-left-0 padding-left-0 padding-right-0 dja-details-contents">
+					{% include "admin/analytics_graph_table.html" with data=data property_name="ready_domains" %}
+				</div>
+				</details>
+			</div>
 
-          <div class="grid-row grid-gap-2 margin-y-2">
-            <div class="grid-col">
-              <canvas id="myChart5" width="400" height="200"
-                aria-label="Chart: {{ data.submitted_requests_sliced_at_end_date.0 }} submitted requests for {{ data.end_date }}"
-                role="img" 
-                data-list-one="{{data.submitted_requests_sliced_at_start_date}}"
-                data-list-two="{{data.submitted_requests_sliced_at_end_date}}"
-              >
-                <h2>Chart: Submitted requests</h2>
-                <p>{{ data.submitted_requests_sliced_at_end_date.0 }} submitted requests for {{ data.end_date }}</p>
-            </canvas>
-            </div>
-            <div class="grid-col">
-              <canvas id="myChart6" width="400" height="200"
-                aria-label="Chart: {{ data.requests_sliced_at_end_date.0 }} requests for {{ data.end_date }}"
-                role="img" 
-                data-list-one="{{data.requests_sliced_at_start_date}}"
-                data-list-two="{{data.requests_sliced_at_end_date}}"
-              >
-                <h2>Chart: All requests</h2>
-                <p>{{ data.requests_sliced_at_end_date.0 }} requests for {{ data.end_date }}</p>
-            </canvas>
-            </div>
-          </div>
+			{% comment %} Requests {% endcomment %}
+			<div class="chart-5 grid-col">
+				<canvas id="submitted-requests-chart" width="400" height="200"
+				aria-label="Chart: {{ data.submitted_requests.end_date_count.0 }} submitted requests for {{ data.end_date }}"
+				role="img" 
+				data-list-one="{{ data.submitted_requests.start_date_count }}"
+				data-list-two="{{ data.submitted_requests.end_date_count }}"
+				>
+				<h2>Chart: Submitted requests</h2>
+				<p>{{ data.submitted_requests.end_date_count.0 }} submitted requests for {{ data.end_date }}</p>
+				</canvas>
+			</div>
+			<div class="details-5 grid-col margin-bottom-2">
+				<details class="dja-detail-table" aria-role="button" closed>
+				<summary class="dja-details-summary">Details for submitted requests</summary>
+				<div class="grid-container margin-left-0 padding-left-0 padding-right-0 dja-details-contents">
+					{% include "admin/analytics_graph_table.html" with data=data property_name="submitted_requests" %}
+				</div>
+				</details>
+			</div>
+			<div class="chart-6 grid-col">
+				<canvas id="all-requests-chart" width="400" height="200"
+				aria-label="Chart: {{ data.requests.end_date_count.0 }} requests for {{ data.end_date }}"
+				role="img" 
+				data-list-one="{{ data.requests.start_date_count }}"
+				data-list-two="{{ data.requests.end_date_count }}"
+				>
+				<h2>Chart: All requests</h2>
+				<p>{{ data.requests.end_date_count.0 }} requests for {{ data.end_date }}</p>
+				</canvas>
+			</div>
+			<div class="details-6 grid-col margin-bottom-2">
+				<details class="dja-detail-table" aria-role="button" closed>
+				<summary class="dja-details-summary">Details for all requests</summary>
+				<div class="grid-container margin-left-0 padding-left-0 padding-right-0 dja-details-contents">
+					{% include "admin/analytics_graph_table.html" with data=data property_name="requests" %}
+				</div>
+				</details>
+			</div>
+		</div>
 
         </div>
       </div>
diff --git a/src/registrar/templates/admin/analytics_graph_table.html b/src/registrar/templates/admin/analytics_graph_table.html
new file mode 100644
index 000000000..5f10da93a
--- /dev/null
+++ b/src/registrar/templates/admin/analytics_graph_table.html
@@ -0,0 +1,26 @@
+<table class="usa-table usa-table--borderless">
+    <thead>
+        <tr>
+            <th scope="col">Type</th>
+            <th scope="col">Start date {{ data.start_date }}</th>
+            <th scope="col">End date {{ data.end_date }} </th>
+        <tr>
+    </thead>
+    <tbody>
+        {% comment %} 
+        This ugly notation is equivalent to data.property_name.start_date_count.index.
+        Or represented in the pure python way: data[property_name]["start_date_count"][index]
+        {% endcomment %}
+        {% with start_counts=data|get_item:property_name|get_item:"start_date_count" end_counts=data|get_item:property_name|get_item:"end_date_count" %}
+            {% for org_count_type in data.org_count_types %}
+                {% with index=forloop.counter %}
+                    <tr>
+                        <th class="padding-left-1" scope="row">{{ org_count_type }}</th>
+                        <td class="padding-left-1">{{ start_counts|slice:index|last }}</td>
+                        <td class="padding-left-1">{{ end_counts|slice:index|last }}</td>
+                    </tr>
+                {% endwith %}
+            {% endfor %}
+        {% endwith %}
+    </tbody>
+</table>
diff --git a/src/registrar/templates/admin/base_site.html b/src/registrar/templates/admin/base_site.html
index b80917bb2..e5b3604b4 100644
--- a/src/registrar/templates/admin/base_site.html
+++ b/src/registrar/templates/admin/base_site.html
@@ -22,7 +22,6 @@
   <script src="{% static 'js/uswds.min.js' %}" defer></script>
   <script src="https://cdn.jsdelivr.net/npm/chart.js"></script>
   <script type="application/javascript" src="{% static 'js/getgov-admin.min.js' %}" defer></script>
-  <script type="application/javascript" src="{% static 'js/get-gov-reports.js' %}" defer></script>
   <script type="application/javascript" src="{% static 'js/dja-collapse.js' %}" defer></script>
 {% endblock %}
 
diff --git a/src/registrar/templates/django/admin/includes/portfolio/portfolio_members_table.html b/src/registrar/templates/django/admin/includes/portfolio/portfolio_members_table.html
index d07e5abf4..6624be95d 100644
--- a/src/registrar/templates/django/admin/includes/portfolio/portfolio_members_table.html
+++ b/src/registrar/templates/django/admin/includes/portfolio/portfolio_members_table.html
@@ -10,7 +10,6 @@
                 <th>Title</th>
                 <th>Email</th>
                 <th>Phone</th>
-                <th>Roles</th>
                 <th>Action</th>
             </tr>
         </thead>
@@ -28,11 +27,6 @@
                     {% endif %}
                 </td>
                 <td>{{ member.user.phone }}</td>
-                <td>
-                    {% for role in member.user|portfolio_role_summary:original %}
-                        <span class="usa-tag bg-primary-dark text-semibold">{{ role }}</span>
-                    {% endfor %}
-                </td>
                 <td class="padding-left-1 text-size-small">
                     {% if member.user.email %}
                     <input aria-hidden="true" class="display-none" value="{{ member.user.email }}" />
diff --git a/src/registrar/templates/domain_detail.html b/src/registrar/templates/domain_detail.html
index 758c43366..57749f038 100644
--- a/src/registrar/templates/domain_detail.html
+++ b/src/registrar/templates/domain_detail.html
@@ -35,7 +35,7 @@ <h2 class="string-wrap">{{ domain.name }}</h2>
             {# UNKNOWN domains would not have an expiration date and thus would show 'Expired' #}
             {% if domain.is_expired and domain.state != domain.State.UNKNOWN %}
               Expired
-            {% elif has_domain_renewal_flag and domain.is_expiring %}
+            {% elif domain.is_expiring %}
               Expiring soon
             {% elif domain.state == domain.State.UNKNOWN or domain.state == domain.State.DNS_NEEDED %}
               DNS needed
@@ -46,17 +46,17 @@ <h2 class="string-wrap">{{ domain.name }}</h2>
 
           {% if domain.get_state_help_text %}
             <p class="margin-y-0 text-primary-darker">
-              {% if has_domain_renewal_flag and domain.is_expired and is_domain_manager %}
+              {% if domain.is_expired and is_domain_manager %}
                 This domain has expired, but it is still online. 
                 {% url 'domain-renewal' pk=domain.id as url %}
                 <a href="{{ url }}" class="usa-link">Renew to maintain access.</a>
-              {% elif has_domain_renewal_flag and domain.is_expiring and is_domain_manager %}
+              {% elif domain.is_expiring and is_domain_manager %}
                 This domain will expire soon. 
                 {% url 'domain-renewal' pk=domain.id as url %}
                 <a href="{{ url }}" class="usa-link">Renew to maintain access.</a>
-              {% elif has_domain_renewal_flag and domain.is_expiring and is_portfolio_user %}
+              {% elif domain.is_expiring and is_portfolio_user %}
                 This domain will expire soon. Contact one of the listed domain managers to renew the domain.
-              {% elif has_domain_renewal_flag and domain.is_expired and is_portfolio_user %}
+              {% elif domain.is_expired and is_portfolio_user %}
                 This domain has expired, but it is still online. Contact one of the listed domain managers to renew the domain.
               {% else %}
                 {{ domain.get_state_help_text }}
diff --git a/src/registrar/templates/domain_sidebar.html b/src/registrar/templates/domain_sidebar.html
index 5946b6859..3302a6a79 100644
--- a/src/registrar/templates/domain_sidebar.html
+++ b/src/registrar/templates/domain_sidebar.html
@@ -81,7 +81,7 @@
       {% endwith %}
 
   
-      {% if has_domain_renewal_flag and is_domain_manager%}
+      {% if is_domain_manager%}
        {% if domain.is_expiring or domain.is_expired %}
           {% with url_name="domain-renewal" %}
             {% include "includes/domain_sidenav_item.html" with item_text="Renewal form" %}
diff --git a/src/registrar/templates/emails/action_needed_reasons/bad_name.txt b/src/registrar/templates/emails/action_needed_reasons/bad_name.txt
index ac563b549..40e5ed899 100644
--- a/src/registrar/templates/emails/action_needed_reasons/bad_name.txt
+++ b/src/registrar/templates/emails/action_needed_reasons/bad_name.txt
@@ -17,7 +17,7 @@ Domains should uniquely identify a government organization and be clear to the g
 
 
 ACTION NEEDED
-First, we need you to identify a new domain name that meets our naming requirements for your type of organization. Then, log in to the registrar and update the name in your domain request. <https://manage.get.gov/> Once you submit your updated request, we’ll resume the adjudication process.
+First, we need you to identify a new domain name that meets our naming requirements for your type of organization. Then, log in to the registrar and update the name in your domain request. <{{ manage_url }}> Once you submit your updated request, we’ll resume the adjudication process.
 
 If you have questions or want to discuss potential domain names, reply to this email.
 
diff --git a/src/registrar/templates/emails/action_needed_reasons/questionable_senior_official.txt b/src/registrar/templates/emails/action_needed_reasons/questionable_senior_official.txt
index ef05e17d7..40d068cd9 100644
--- a/src/registrar/templates/emails/action_needed_reasons/questionable_senior_official.txt
+++ b/src/registrar/templates/emails/action_needed_reasons/questionable_senior_official.txt
@@ -21,7 +21,7 @@ We expect a senior official to be someone in a role of significant, executive re
 ACTION NEEDED
 Reply to this email with a justification for naming {{ domain_request.senior_official.get_formatted_name }} as the senior official. If you have questions or comments, include those in your reply.
 
-Alternatively, you can log in to the registrar and enter a different senior official for this domain request. <https://manage.get.gov/> Once you submit your updated request, we’ll resume the adjudication process.
+Alternatively, you can log in to the registrar and enter a different senior official for this domain request. <{{ manage_url }}> Once you submit your updated request, we’ll resume the adjudication process.
 
 
 THANK YOU
diff --git a/src/registrar/templates/emails/domain_invitation.txt b/src/registrar/templates/emails/domain_invitation.txt
index 092ff629c..837b19228 100644
--- a/src/registrar/templates/emails/domain_invitation.txt
+++ b/src/registrar/templates/emails/domain_invitation.txt
@@ -4,7 +4,7 @@ Hi,{% if requested_user and requested_user.first_name %} {{ requested_user.first
 {{ requestor_email }} has invited you to manage:
 {% for domain in domains %}{{ domain.name }}
 {% endfor %}
-To manage domain information, visit the .gov registrar <https://manage.get.gov>.
+To manage domain information, visit the .gov registrar <{{ manage_url }}>.
 
 ----------------------------------------------------------------
 {% if not requested_user %}
diff --git a/src/registrar/templates/emails/domain_manager_notification.txt b/src/registrar/templates/emails/domain_manager_notification.txt
index c253937e4..b5096a9d8 100644
--- a/src/registrar/templates/emails/domain_manager_notification.txt
+++ b/src/registrar/templates/emails/domain_manager_notification.txt
@@ -15,7 +15,7 @@ The person who received the invitation will become a domain manager once they lo
 associated with the invited email address.
 
 If you need to cancel this invitation or remove the domain manager, you can do that by going to 
-this domain in the .gov registrar <https://manage.get.gov/>.
+this domain in the .gov registrar <{{ manage_url }}>.
 
 
 WHY DID YOU RECEIVE THIS EMAIL? 
diff --git a/src/registrar/templates/emails/domain_request_withdrawn.txt b/src/registrar/templates/emails/domain_request_withdrawn.txt
index fbdf5b4f1..fe026027b 100644
--- a/src/registrar/templates/emails/domain_request_withdrawn.txt
+++ b/src/registrar/templates/emails/domain_request_withdrawn.txt
@@ -11,7 +11,7 @@ STATUS: Withdrawn
 ----------------------------------------------------------------
 
 YOU CAN EDIT YOUR WITHDRAWN REQUEST
-You can edit and resubmit this request by signing in to the registrar <https://manage.get.gov/>.
+You can edit and resubmit this request by signing in to the registrar <{{ manage_url }}>.
 
 
 SOMETHING WRONG?
diff --git a/src/registrar/templates/emails/portfolio_admin_addition_notification.txt b/src/registrar/templates/emails/portfolio_admin_addition_notification.txt
index b8953aa67..9e6da3985 100644
--- a/src/registrar/templates/emails/portfolio_admin_addition_notification.txt
+++ b/src/registrar/templates/emails/portfolio_admin_addition_notification.txt
@@ -16,7 +16,7 @@ The person who received the invitation will become an admin once they log in to
 associated with the invited email address.
 
 If you need to cancel this invitation or remove the admin, you can do that by going to 
-the Members section for your organization <https://manage.get.gov/>.
+the Members section for your organization <{{ manage_url }}>.
 
 
 WHY DID YOU RECEIVE THIS EMAIL? 
diff --git a/src/registrar/templates/emails/portfolio_admin_removal_notification.txt b/src/registrar/templates/emails/portfolio_admin_removal_notification.txt
index 6a536aa49..bf0338c03 100644
--- a/src/registrar/templates/emails/portfolio_admin_removal_notification.txt
+++ b/src/registrar/templates/emails/portfolio_admin_removal_notification.txt
@@ -8,7 +8,7 @@ REMOVED BY: {{ requestor_email }}
 REMOVED ON: {{date}}
 ADMIN REMOVED: {{ removed_email_address }}
 
-You can view this update by going to the Members section for your .gov organization <https://manage.get.gov/>.
+You can view this update by going to the Members section for your .gov organization <{{ manage_url }}>.
 
 ----------------------------------------------------------------
 
diff --git a/src/registrar/templates/emails/portfolio_invitation.txt b/src/registrar/templates/emails/portfolio_invitation.txt
index 775b74c7c..893da153d 100644
--- a/src/registrar/templates/emails/portfolio_invitation.txt
+++ b/src/registrar/templates/emails/portfolio_invitation.txt
@@ -3,7 +3,7 @@ Hi.
 
 {{ requestor_email }} has invited you to {{ portfolio.organization_name }}.
 
-You can view this organization on the .gov registrar <https://manage.get.gov>.
+You can view this organization on the .gov registrar <{{ manage_url }}>.
 
 ----------------------------------------------------------------
 
diff --git a/src/registrar/templates/emails/portfolio_update.txt b/src/registrar/templates/emails/portfolio_update.txt
new file mode 100644
index 000000000..aa13a9fb9
--- /dev/null
+++ b/src/registrar/templates/emails/portfolio_update.txt
@@ -0,0 +1,35 @@
+{% autoescape off %}{# In a text file, we don't want to have HTML entities escaped #}
+Hi,{% if requested_user and requested_user.first_name %} {{ requested_user.first_name }}.{% endif %}
+
+Your permissions were updated in the .gov registrar.
+
+ORGANIZATION: {{ portfolio.organization_name }}
+UPDATED BY: {{ requestor_email }}
+UPDATED ON: {{ date }}
+YOUR PERMISSIONS: {{ permissions.role_display }}
+  Domains - {{ permissions.domains_display }}
+  Domain requests - {{ permissions.domain_requests_display }}
+  Members - {{ permissions.members_display }}
+
+Your updated permissions are now active in the .gov registrar <https://manage.get.gov>.
+
+----------------------------------------------------------------
+
+SOMETHING WRONG?
+If you have questions or concerns, reach out to the person who updated your
+permissions, or reply to this email.
+
+
+THANK YOU
+.Gov helps the public identify official, trusted information. Thank you for using a .gov
+domain.
+
+----------------------------------------------------------------
+
+The .gov team
+Contact us: <https://get.gov/contact/>
+Learn about .gov <https://get.gov>
+
+The .gov registry is a part of the Cybersecurity and Infrastructure Security Agency
+(CISA) <https://cisa.gov/>
+{% endautoescape %}
diff --git a/src/registrar/templates/emails/portfolio_update_subject.txt b/src/registrar/templates/emails/portfolio_update_subject.txt
new file mode 100644
index 000000000..2cd806a73
--- /dev/null
+++ b/src/registrar/templates/emails/portfolio_update_subject.txt
@@ -0,0 +1 @@
+Your permissions were updated in the .gov registrar
\ No newline at end of file
diff --git a/src/registrar/templates/emails/status_change_approved.txt b/src/registrar/templates/emails/status_change_approved.txt
index 821e89e42..635b36cbd 100644
--- a/src/registrar/templates/emails/status_change_approved.txt
+++ b/src/registrar/templates/emails/status_change_approved.txt
@@ -8,7 +8,7 @@ REQUESTED BY: {{ domain_request.creator.email }}
 REQUEST RECEIVED ON: {{ domain_request.last_submitted_date|date }}
 STATUS: Approved
 
-You can manage your approved domain on the .gov registrar <https://manage.get.gov>.
+You can manage your approved domain on the .gov registrar <{{ manage_url }}>.
 
 ----------------------------------------------------------------
 
diff --git a/src/registrar/templates/emails/submission_confirmation.txt b/src/registrar/templates/emails/submission_confirmation.txt
index d9d01ec3e..afbde48d5 100644
--- a/src/registrar/templates/emails/submission_confirmation.txt
+++ b/src/registrar/templates/emails/submission_confirmation.txt
@@ -20,7 +20,7 @@ During our review, we’ll verify that:
 - You work at the organization and/or can make requests on its behalf 
 - Your requested domain meets our naming requirements 
 {% endif %}
-We’ll email you if we have questions. We’ll also email you as soon as we complete our review. You can check the status of your request at any time on the registrar. <https://manage.get.gov>.
+We’ll email you if we have questions. We’ll also email you as soon as we complete our review. You can check the status of your request at any time on the registrar. <{{ manage_url }}>.
 
 
 NEED TO MAKE CHANGES?
diff --git a/src/registrar/templates/emails/transition_domain_invitation.txt b/src/registrar/templates/emails/transition_domain_invitation.txt
index b6773d9e9..14dd626dd 100644
--- a/src/registrar/templates/emails/transition_domain_invitation.txt
+++ b/src/registrar/templates/emails/transition_domain_invitation.txt
@@ -31,7 +31,7 @@ CHECK YOUR .GOV DOMAIN CONTACTS
 
 This is a good time to check who has access to your .gov domain{% if domains|length > 1 %}s{% endif %}. The admin, technical, and billing contacts listed for your domain{% if domains|length > 1 %}s{% endif %} in our old system also received this email. In our new registrar, these contacts are all considered “domain managers.” We no longer have the admin, technical, and billing roles, and you aren’t limited to three domain managers like in the old system. 
 
-    1. Once you have your Login.gov account, sign in to the new registrar at <https://manage.get.gov>.
+    1. Once you have your Login.gov account, sign in to the new registrar at <{{ manage_url }}>.
     2. Click the “Manage” link next to your .gov domain, then click on “Domain managers” to see who has access to your domain. 
     3. If any of these users should not have access to your domain, let us know in a reply to this email.
 
@@ -57,7 +57,7 @@ THANK YOU
 The .gov team
 
 .Gov blog <https://get.gov/updates/> 
-Domain management <https://manage.get.gov>
+Domain management <{{ manage_url }}}>
 Get.gov <https://get.gov>
 
 The .gov registry is a part of the Cybersecurity and Infrastructure Security Agency (CISA) <https://cisa.gov/>
diff --git a/src/registrar/templates/emails/update_to_approved_domain.txt b/src/registrar/templates/emails/update_to_approved_domain.txt
index 99f86ea54..070096f62 100644
--- a/src/registrar/templates/emails/update_to_approved_domain.txt
+++ b/src/registrar/templates/emails/update_to_approved_domain.txt
@@ -8,7 +8,7 @@ UPDATED BY: {{user}}
 UPDATED ON: {{date}}
 INFORMATION UPDATED: {{changes}}
 
-You can view this update in the .gov registrar <https://manage.get.gov/>.
+You can view this update in the .gov registrar <{{ manage_url }}>.
 
 Get help with managing your .gov domain <https://get.gov/help/domain-management/>.
 
diff --git a/src/registrar/templates/includes/domains_table.html b/src/registrar/templates/includes/domains_table.html
index 94cb4ea6d..3cf04a830 100644
--- a/src/registrar/templates/includes/domains_table.html
+++ b/src/registrar/templates/includes/domains_table.html
@@ -9,7 +9,7 @@
 <span id="get_domains_json_url" class="display-none">{{url}}</span>
 
 <!-- Org model banner (org manager can view, domain manager can edit)  -->
-{% if has_domain_renewal_flag and num_expiring_domains > 0 and has_any_domains_portfolio_permission %}
+{% if num_expiring_domains > 0 and has_any_domains_portfolio_permission %}
 <section class="usa-site-alert--slim usa-site-alert--info margin-bottom-2 {% if add_class %}{{ add_class }}{% endif %}" aria-label="Site alert">
   <div class="usa-alert">
     <div class="usa-alert__body">
@@ -75,7 +75,7 @@ <h2 id="domains-header" class="display-inline-block">Domains</h2>
   </div>
 
   <!-- Non org model banner -->
-  {% if has_domain_renewal_flag and num_expiring_domains > 0 and not portfolio %}
+  {% if num_expiring_domains > 0 and not portfolio %}
   <section class="usa-site-alert--slim usa-site-alert--info margin-bottom-2 {% if add_class %}{{ add_class }}{% endif %}" aria-label="Site alert">
     <div class="usa-alert">
       <div class="usa-alert__body">
@@ -173,7 +173,6 @@ <h2>Status</h2>
               >Deleted</label
             >
           </div>
-          {% if has_domain_renewal_flag %}
           <div class="usa-checkbox">
             <input
               class="usa-checkbox__input"
@@ -185,7 +184,6 @@ <h2>Status</h2>
             <label class="usa-checkbox__label" for="filter-status-expiring"
               >Expiring soon</label>
           </div>
-          {% endif %}
         </fieldset>
       </div>
     </div>
diff --git a/src/registrar/templates/includes/member_permissions_summary.html b/src/registrar/templates/includes/member_permissions_summary.html
index 1df2efc57..d84436c8e 100644
--- a/src/registrar/templates/includes/member_permissions_summary.html
+++ b/src/registrar/templates/includes/member_permissions_summary.html
@@ -1,33 +1,11 @@
 <h4 class="margin-bottom-0">Member access</h4>
-{% if permissions.roles and 'organization_admin' in permissions.roles %}
-    <p class="margin-top-0">Admin</p>
-{% elif permissions.roles and 'organization_member' in permissions.roles %}
-    <p class="margin-top-0">Basic</p>
-{% else %}
-    <p class="margin-top-0">⎯</p>
-{% endif %}
+    <p class="margin-top-0">{{ permissions.role_display }}</p>
 
 <h4 class="margin-bottom-0 text-primary">Domains</h4>
-{% if member_has_view_all_domains_portfolio_permission %}
-    <p class="margin-top-0">Viewer: Can view all domains for the organization</p>
-{% else %}
-    <p class="margin-top-0">Viewer, limited: Can view only the domains they manage</p>
-{% endif %}
+    <p class="margin-top-0">{{ permissions.domains_display }}: {{ permissions.domains_description_display }}</p>
 
 <h4 class="margin-bottom-0 text-primary">Domain requests</h4>
-{% if member_has_edit_request_portfolio_permission %}
-    <p class="margin-top-0">Creator: Can view all domain requests for the organization and create requests</p>
-{% elif member_has_view_all_requests_portfolio_permission %}
-    <p class="margin-top-0">Viewer: Can view all domain requests for the organization</p>
-{% else %}
-    <p class="margin-top-0">No access: Cannot view or create domain requests</p>
-{% endif %}
+    <p class="margin-top-0">{{ permissions.domain_requests_display }}: {{ permissions.domain_requests_description_display }}</p>
 
 <h4 class="margin-bottom-0 text-primary">Members</h4>
-{% if member_has_edit_members_portfolio_permission %}
-    <p class="margin-top-0">Manager: Can view and manage all member permissions</p>
-{% elif member_has_view_members_portfolio_permission %}
-    <p class="margin-top-0">Viewer: Can view all member permissions</p>
-{% else %}
-    <p class="margin-top-0">No access: Cannot view member permissions</p>
-{% endif %}
+    <p class="margin-top-0">{{ permissions.members_display }}: {{ permissions.members_description_display }}</p>
diff --git a/src/registrar/templatetags/custom_filters.py b/src/registrar/templatetags/custom_filters.py
index d21678d58..ff73e6dc1 100644
--- a/src/registrar/templatetags/custom_filters.py
+++ b/src/registrar/templatetags/custom_filters.py
@@ -251,15 +251,6 @@ def is_members_subpage(path):
     return get_url_name(path) in url_names
 
 
-@register.filter(name="portfolio_role_summary")
-def portfolio_role_summary(user, portfolio):
-    """Returns the value of user.portfolio_role_summary"""
-    if user and portfolio:
-        return user.portfolio_role_summary(portfolio)
-    else:
-        return []
-
-
 @register.filter(name="display_requesting_entity")
 def display_requesting_entity(domain_request):
     """Workaround for a newline issue in .txt files (our emails) as if statements
diff --git a/src/registrar/tests/test_email_invitations.py b/src/registrar/tests/test_email_invitations.py
index 77a8c402f..981bca6dd 100644
--- a/src/registrar/tests/test_email_invitations.py
+++ b/src/registrar/tests/test_email_invitations.py
@@ -16,6 +16,7 @@
     send_portfolio_admin_addition_emails,
     send_portfolio_admin_removal_emails,
     send_portfolio_invitation_email,
+    send_portfolio_member_permission_update_email,
 )
 
 from api.tests.common import less_console_noise_decorator
@@ -522,7 +523,6 @@ def test_send_portfolio_invitation_email_failure(self, mock_send_templated_email
         "registrar.utility.email_invitations._get_requestor_email",
         side_effect=MissingEmailError("Requestor has no email"),
     )
-    @less_console_noise_decorator
     def test_send_portfolio_invitation_email_missing_requestor_email(self, mock_get_email):
         """Test when requestor has no email"""
         is_admin_invitation = False
@@ -888,3 +888,78 @@ def test_send_email_failure(self, mock_send_removal_emails, mock_get_requestor_e
         mock_get_requestor_email.assert_called_once_with(self.requestor, portfolio=self.portfolio)
         mock_send_removal_emails.assert_called_once_with(self.email, self.requestor.email, self.portfolio)
         self.assertFalse(result)
+
+
+class TestSendPortfolioMemberPermissionUpdateEmail(unittest.TestCase):
+    """Unit tests for send_portfolio_member_permission_update_email function."""
+
+    @patch("registrar.utility.email_invitations.send_templated_email")
+    @patch("registrar.utility.email_invitations._get_requestor_email")
+    def test_send_email_success(self, mock_get_requestor_email, mock_send_email):
+        """Test that the email is sent successfully when there are no errors."""
+        # Mock data
+        requestor = MagicMock()
+        permissions = MagicMock(spec=UserPortfolioPermission)
+        permissions.user.email = "user@example.com"
+        permissions.portfolio.organization_name = "Test Portfolio"
+
+        mock_get_requestor_email.return_value = "requestor@example.com"
+
+        # Call function
+        result = send_portfolio_member_permission_update_email(requestor, permissions)
+
+        # Assertions
+        mock_get_requestor_email.assert_called_once_with(requestor, portfolio=permissions.portfolio)
+        mock_send_email.assert_called_once_with(
+            "emails/portfolio_update.txt",
+            "emails/portfolio_update_subject.txt",
+            to_address="user@example.com",
+            context={
+                "requested_user": permissions.user,
+                "portfolio": permissions.portfolio,
+                "requestor_email": "requestor@example.com",
+                "permissions": permissions,
+                "date": date.today(),
+            },
+        )
+        self.assertTrue(result)
+
+    @patch("registrar.utility.email_invitations.send_templated_email", side_effect=EmailSendingError("Email failed"))
+    @patch("registrar.utility.email_invitations._get_requestor_email")
+    @patch("registrar.utility.email_invitations.logger")
+    def test_send_email_failure(self, mock_logger, mock_get_requestor_email, mock_send_email):
+        """Test that the function returns False and logs an error when email sending fails."""
+        # Mock data
+        requestor = MagicMock()
+        permissions = MagicMock(spec=UserPortfolioPermission)
+        permissions.user.email = "user@example.com"
+        permissions.portfolio.organization_name = "Test Portfolio"
+
+        mock_get_requestor_email.return_value = "requestor@example.com"
+
+        # Call function
+        result = send_portfolio_member_permission_update_email(requestor, permissions)
+
+        # Assertions
+        mock_logger.warning.assert_called_once_with(
+            "Could not send email organization member update notification to %s for portfolio: %s",
+            permissions.user.email,
+            permissions.portfolio.organization_name,
+            exc_info=True,
+        )
+        self.assertFalse(result)
+
+    @patch("registrar.utility.email_invitations._get_requestor_email", side_effect=Exception("Unexpected error"))
+    @patch("registrar.utility.email_invitations.logger")
+    def test_requestor_email_retrieval_failure(self, mock_logger, mock_get_requestor_email):
+        """Test that an exception in retrieving requestor email is logged."""
+        # Mock data
+        requestor = MagicMock()
+        permissions = MagicMock(spec=UserPortfolioPermission)
+
+        # Call function
+        with self.assertRaises(Exception):
+            send_portfolio_member_permission_update_email(requestor, permissions)
+
+        # Assertions
+        mock_logger.warning.assert_not_called()  # Function should fail before logging email failure
diff --git a/src/registrar/tests/test_emails.py b/src/registrar/tests/test_emails.py
index f39f11517..2b7f89ac9 100644
--- a/src/registrar/tests/test_emails.py
+++ b/src/registrar/tests/test_emails.py
@@ -108,6 +108,82 @@ def test_email_with_cc_in_prod(self):
 
         self.assertEqual(["testy2@town.com", "mayor@igorville.gov"], kwargs["Destination"]["CcAddresses"])
 
+    @boto3_mocking.patching
+    @override_settings(IS_PRODUCTION=True, BASE_URL="manage.get.gov")
+    def test_email_production_subject_and_url_check(self):
+        """Test sending an email in production that:
+        1. Does not have a prefix in the email subject (no [MANAGE])
+        2. Uses the production URL in the email body of manage.get.gov still"""
+        with boto3_mocking.clients.handler_for("sesv2", self.mock_client_class):
+            send_templated_email(
+                "emails/update_to_approved_domain.txt",
+                "emails/update_to_approved_domain_subject.txt",
+                "doesnotexist@igorville.com",
+                context={"domain": "test", "user": "test", "date": 1, "changes": "test"},
+                bcc_address=None,
+                cc_addresses=["testy2@town.com", "mayor@igorville.gov"],
+            )
+
+        # check that an email was sent
+        self.assertTrue(self.mock_client.send_email.called)
+
+        # check the call sequence for the email
+        args, kwargs = self.mock_client.send_email.call_args
+        self.assertIn("Destination", kwargs)
+        self.assertIn("CcAddresses", kwargs["Destination"])
+
+        self.assertEqual(["testy2@town.com", "mayor@igorville.gov"], kwargs["Destination"]["CcAddresses"])
+
+        # Grab email subject
+        email_subject = kwargs["Content"]["Simple"]["Subject"]["Data"]
+
+        # Check that the subject does NOT contain a prefix for production
+        self.assertNotIn("[MANAGE]", email_subject)
+        self.assertIn("An update was made to", email_subject)
+
+        # Grab email body
+        email_body = kwargs["Content"]["Simple"]["Body"]["Text"]["Data"]
+
+        # Check that manage_url is correctly set for production
+        self.assertIn("https://manage.get.gov", email_body)
+
+    @boto3_mocking.patching
+    @override_settings(IS_PRODUCTION=False, BASE_URL="https://getgov-rh.app.cloud.gov")
+    def test_email_non_production_subject_and_url_check(self):
+        """Test sending an email in production that:
+        1. Does prefix in the email subject (ie [GETGOV-RH])
+        2. Uses the sandbox url in the email body (ie getgov-rh.app.cloud.gov)"""
+        with boto3_mocking.clients.handler_for("sesv2", self.mock_client_class):
+            send_templated_email(
+                "emails/update_to_approved_domain.txt",
+                "emails/update_to_approved_domain_subject.txt",
+                "doesnotexist@igorville.com",
+                context={"domain": "test", "user": "test", "date": 1, "changes": "test"},
+                bcc_address=None,
+                cc_addresses=["testy2@town.com", "mayor@igorville.gov"],
+            )
+
+        # check that an email was sent
+        self.assertTrue(self.mock_client.send_email.called)
+
+        # check the call sequence for the email
+        args, kwargs = self.mock_client.send_email.call_args
+        self.assertIn("Destination", kwargs)
+        self.assertIn("CcAddresses", kwargs["Destination"])
+        self.assertEqual(["testy2@town.com", "mayor@igorville.gov"], kwargs["Destination"]["CcAddresses"])
+
+        # Grab email subject
+        email_subject = kwargs["Content"]["Simple"]["Subject"]["Data"]
+
+        # Check that the subject DOES contain a prefix of the current sandbox
+        self.assertIn("[GETGOV-RH]", email_subject)
+
+        # Grab email body
+        email_body = kwargs["Content"]["Simple"]["Body"]["Text"]["Data"]
+
+        # Check that manage_url is correctly set of the sandbox
+        self.assertIn("https://getgov-rh.app.cloud.gov", email_body)
+
     @boto3_mocking.patching
     @less_console_noise_decorator
     def test_submission_confirmation(self):
diff --git a/src/registrar/tests/test_models.py b/src/registrar/tests/test_models.py
index 4401b73e8..cd2fe868d 100644
--- a/src/registrar/tests/test_models.py
+++ b/src/registrar/tests/test_models.py
@@ -1191,67 +1191,6 @@ def tearDown(self):
         User.objects.all().delete()
         UserDomainRole.objects.all().delete()
 
-    @patch.object(User, "has_edit_portfolio_permission", return_value=True)
-    def test_portfolio_role_summary_admin(self, mock_edit_org):
-        # Test if the user is recognized as an Admin
-        self.assertEqual(self.user.portfolio_role_summary(self.portfolio), ["Admin"])
-
-    @patch.multiple(
-        User,
-        has_view_all_domains_portfolio_permission=lambda self, portfolio: True,
-        has_any_requests_portfolio_permission=lambda self, portfolio: True,
-        has_edit_request_portfolio_permission=lambda self, portfolio: True,
-    )
-    def test_portfolio_role_summary_view_only_admin_and_domain_requestor(self):
-        # Test if the user has both 'View-only admin' and 'Domain requestor' roles
-        self.assertEqual(self.user.portfolio_role_summary(self.portfolio), ["View-only admin", "Domain requestor"])
-
-    @patch.multiple(
-        User,
-        has_view_all_domains_portfolio_permission=lambda self, portfolio: True,
-        has_any_requests_portfolio_permission=lambda self, portfolio: True,
-    )
-    def test_portfolio_role_summary_view_only_admin(self):
-        # Test if the user is recognized as a View-only admin
-        self.assertEqual(self.user.portfolio_role_summary(self.portfolio), ["View-only admin"])
-
-    @patch.multiple(
-        User,
-        has_view_portfolio_permission=lambda self, portfolio: True,
-        has_edit_request_portfolio_permission=lambda self, portfolio: True,
-        has_any_domains_portfolio_permission=lambda self, portfolio: True,
-    )
-    def test_portfolio_role_summary_member_domain_requestor_domain_manager(self):
-        # Test if the user has 'Member', 'Domain requestor', and 'Domain manager' roles
-        self.assertEqual(self.user.portfolio_role_summary(self.portfolio), ["Domain requestor", "Domain manager"])
-
-    @patch.multiple(
-        User,
-        has_view_portfolio_permission=lambda self, portfolio: True,
-        has_edit_request_portfolio_permission=lambda self, portfolio: True,
-    )
-    def test_portfolio_role_summary_member_domain_requestor(self):
-        # Test if the user has 'Member' and 'Domain requestor' roles
-        self.assertEqual(self.user.portfolio_role_summary(self.portfolio), ["Domain requestor"])
-
-    @patch.multiple(
-        User,
-        has_view_portfolio_permission=lambda self, portfolio: True,
-        has_any_domains_portfolio_permission=lambda self, portfolio: True,
-    )
-    def test_portfolio_role_summary_member_domain_manager(self):
-        # Test if the user has 'Member' and 'Domain manager' roles
-        self.assertEqual(self.user.portfolio_role_summary(self.portfolio), ["Domain manager"])
-
-    @patch.multiple(User, has_view_portfolio_permission=lambda self, portfolio: True)
-    def test_portfolio_role_summary_member(self):
-        # Test if the user is recognized as a Member
-        self.assertEqual(self.user.portfolio_role_summary(self.portfolio), ["Member"])
-
-    def test_portfolio_role_summary_empty(self):
-        # Test if the user has no roles
-        self.assertEqual(self.user.portfolio_role_summary(self.portfolio), [])
-
     @patch("registrar.models.User._has_portfolio_permission")
     def test_has_view_portfolio_permission(self, mock_has_permission):
         mock_has_permission.return_value = True
diff --git a/src/registrar/tests/test_reports.py b/src/registrar/tests/test_reports.py
index bab4f327b..18c98807d 100644
--- a/src/registrar/tests/test_reports.py
+++ b/src/registrar/tests/test_reports.py
@@ -1,4 +1,5 @@
 import io
+from unittest import skip
 from django.test import Client, RequestFactory
 from io import StringIO
 from registrar.models import (
@@ -819,6 +820,7 @@ def setUp(self):
         super().setUp()
         self.factory = RequestFactory()
 
+    @skip("flaky test that needs to be refactored")
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
     @less_console_noise_decorator
diff --git a/src/registrar/tests/test_views_domain.py b/src/registrar/tests/test_views_domain.py
index 0fdc2bd5b..13573c757 100644
--- a/src/registrar/tests/test_views_domain.py
+++ b/src/registrar/tests/test_views_domain.py
@@ -477,7 +477,6 @@ def custom_renew_domain(self):
         self.domain_with_ip.expiration_date = self.expiration_date_one_year_out()
         self.domain_with_ip.save()
 
-    @override_flag("domain_renewal", active=True)
     def test_expiring_domain_on_detail_page_as_domain_manager(self):
         """If a user is a domain manager and their domain is expiring soon,
         user should be able to see the "Renew to maintain access" link domain overview detail box."""
@@ -496,7 +495,6 @@ def test_expiring_domain_on_detail_page_as_domain_manager(self):
             self.assertNotContains(detail_page, "DNS needed")
             self.assertNotContains(detail_page, "Expired")
 
-    @override_flag("domain_renewal", active=True)
     @override_flag("organization_feature", active=True)
     def test_expiring_domain_on_detail_page_in_org_model_as_a_non_domain_manager(self):
         """In org model: If a user is NOT a domain manager and their domain is expiring soon,
@@ -534,7 +532,6 @@ def test_expiring_domain_on_detail_page_in_org_model_as_a_non_domain_manager(sel
             )
             self.assertContains(detail_page, "Contact one of the listed domain managers to renew the domain.")
 
-    @override_flag("domain_renewal", active=True)
     @override_flag("organization_feature", active=True)
     def test_expiring_domain_on_detail_page_in_org_model_as_a_domain_manager(self):
         """Inorg model: If a user is a domain manager and their domain is expiring soon,
@@ -555,7 +552,6 @@ def test_expiring_domain_on_detail_page_in_org_model_as_a_domain_manager(self):
             )
             self.assertContains(detail_page, "Renew to maintain access")
 
-    @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_and_sidebar_expiring(self):
         """If a user is a domain manager and their domain is expiring soon,
         user should be able to see Renewal Form on the sidebar."""
@@ -584,7 +580,6 @@ def test_domain_renewal_form_and_sidebar_expiring(self):
             self.assertEqual(response.status_code, 200)
             self.assertContains(response, f"Renew {self.domain_to_renew.name}")
 
-    @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_and_sidebar_expired(self):
         """If a user is a domain manager and their domain is expired,
         user should be able to see Renewal Form on the sidebar."""
@@ -614,7 +609,6 @@ def test_domain_renewal_form_and_sidebar_expired(self):
             self.assertEqual(response.status_code, 200)
             self.assertContains(response, f"Renew {self.domain_to_renew.name}")
 
-    @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_your_contact_info_edit(self):
         """Checking that if a user is a domain manager they can edit the
         Your Profile portion of the Renewal Form."""
@@ -634,7 +628,6 @@ def test_domain_renewal_form_your_contact_info_edit(self):
             self.assertEqual(edit_page.status_code, 200)
             self.assertContains(edit_page, "Review the details below and update any required information")
 
-    @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_security_email_edit(self):
         """Checking that if a user is a domain manager they can edit the
         Security Email portion of the Renewal Form."""
@@ -657,7 +650,6 @@ def test_domain_renewal_form_security_email_edit(self):
             self.assertEqual(edit_page.status_code, 200)
             self.assertContains(edit_page, "A security contact should be capable of evaluating")
 
-    @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_domain_manager_edit(self):
         """Checking that if a user is a domain manager they can edit the
         Domain Manager portion of the Renewal Form."""
@@ -677,7 +669,6 @@ def test_domain_renewal_form_domain_manager_edit(self):
             self.assertEqual(edit_page.status_code, 200)
             self.assertContains(edit_page, "Domain managers can update information related to this domain")
 
-    @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_not_expired_or_expiring(self):
         """Checking that if the user's domain is not expired or expiring that user should not be able
         to access /renewal and that it should receive a 403."""
@@ -686,7 +677,6 @@ def test_domain_renewal_form_not_expired_or_expiring(self):
             renewal_page = self.client.get(reverse("domain-renewal", kwargs={"pk": self.domain_not_expiring.id}))
             self.assertEqual(renewal_page.status_code, 403)
 
-    @override_flag("domain_renewal", active=True)
     def test_domain_renewal_form_does_not_appear_if_not_domain_manager(self):
         """If user is not a domain manager and tries to access /renewal, user should receive a 403."""
         with patch.object(Domain, "is_expired", self.custom_is_expired_true), patch.object(
@@ -695,7 +685,6 @@ def test_domain_renewal_form_does_not_appear_if_not_domain_manager(self):
             renewal_page = self.client.get(reverse("domain-renewal", kwargs={"pk": self.domain_no_domain_manager.id}))
             self.assertEqual(renewal_page.status_code, 403)
 
-    @override_flag("domain_renewal", active=True)
     def test_ack_checkbox_not_checked(self):
         """If user don't check the checkbox, user should receive an error message."""
         # Grab the renewal URL
@@ -707,7 +696,6 @@ def test_ack_checkbox_not_checked(self):
         error_message = "Check the box if you read and agree to the requirements for operating a .gov domain."
         self.assertContains(response, error_message)
 
-    @override_flag("domain_renewal", active=True)
     def test_ack_checkbox_checked(self):
         """If user check the checkbox and submits the form,
         user should be redirected Domain Over page with an updated by 1 year expiration date"""
@@ -2992,26 +2980,15 @@ def tearDown(self):
             pass
         super().tearDown()
 
-    # Remove test_without_domain_renewal_flag when domain renewal is released as a feature
     @less_console_noise_decorator
-    @override_flag("domain_renewal", active=False)
-    def test_without_domain_renewal_flag(self):
-        self.client.force_login(self.user)
-        domains_page = self.client.get("/")
-        self.assertNotContains(domains_page, "will expire soon")
-        self.assertNotContains(domains_page, "Expiring soon")
-
-    @less_console_noise_decorator
-    @override_flag("domain_renewal", active=True)
-    def test_domain_renewal_flag_single_domain(self):
+    def test_domain_with_single_domain(self):
         self.client.force_login(self.user)
         domains_page = self.client.get("/")
         self.assertContains(domains_page, "One domain will expire soon")
         self.assertContains(domains_page, "Expiring soon")
 
     @less_console_noise_decorator
-    @override_flag("domain_renewal", active=True)
-    def test_with_domain_renewal_flag_mulitple_domains(self):
+    def test_with_mulitple_domains(self):
         today = datetime.now()
         expiring_date = (today + timedelta(days=30)).strftime("%Y-%m-%d")
         self.domain_with_another_expiring, _ = Domain.objects.get_or_create(
@@ -3027,8 +3004,7 @@ def test_with_domain_renewal_flag_mulitple_domains(self):
         self.assertContains(domains_page, "Expiring soon")
 
     @less_console_noise_decorator
-    @override_flag("domain_renewal", active=True)
-    def test_with_domain_renewal_flag_no_expiring_domains(self):
+    def test_with_no_expiring_domains(self):
         UserDomainRole.objects.filter(user=self.user, domain=self.domain_with_expired_date).delete()
         UserDomainRole.objects.filter(user=self.user, domain=self.domain_with_expiring_soon_date).delete()
         self.client.force_login(self.user)
@@ -3036,18 +3012,16 @@ def test_with_domain_renewal_flag_no_expiring_domains(self):
         self.assertNotContains(domains_page, "will expire soon")
 
     @less_console_noise_decorator
-    @override_flag("domain_renewal", active=True)
     @override_flag("organization_feature", active=True)
-    def test_domain_renewal_flag_single_domain_w_org_feature_flag(self):
+    def test_single_domain_w_org_feature_flag(self):
         self.client.force_login(self.user)
         domains_page = self.client.get("/")
         self.assertContains(domains_page, "One domain will expire soon")
         self.assertContains(domains_page, "Expiring soon")
 
     @less_console_noise_decorator
-    @override_flag("domain_renewal", active=True)
     @override_flag("organization_feature", active=True)
-    def test_with_domain_renewal_flag_mulitple_domains_w_org_feature_flag(self):
+    def test_with_mulitple_domains_w_org_feature_flag(self):
         today = datetime.now()
         expiring_date = (today + timedelta(days=31)).strftime("%Y-%m-%d")
         self.domain_with_another_expiring_org_model, _ = Domain.objects.get_or_create(
@@ -3063,9 +3037,8 @@ def test_with_domain_renewal_flag_mulitple_domains_w_org_feature_flag(self):
         self.assertContains(domains_page, "Expiring soon")
 
     @less_console_noise_decorator
-    @override_flag("domain_renewal", active=True)
     @override_flag("organization_feature", active=True)
-    def test_with_domain_renewal_flag_no_expiring_domains_w_org_feature_flag(self):
+    def test_no_expiring_domains_w_org_feature_flag(self):
         UserDomainRole.objects.filter(user=self.user, domain=self.domain_with_expired_date).delete()
         UserDomainRole.objects.filter(user=self.user, domain=self.domain_with_expiring_soon_date).delete()
         self.client.force_login(self.user)
diff --git a/src/registrar/tests/test_views_portfolio.py b/src/registrar/tests/test_views_portfolio.py
index 2709e03c2..291a9aebb 100644
--- a/src/registrar/tests/test_views_portfolio.py
+++ b/src/registrar/tests/test_views_portfolio.py
@@ -3966,7 +3966,10 @@ def tearDown(self):
     @override_flag("organization_members", active=True)
     @patch("registrar.views.portfolios.send_portfolio_admin_addition_emails")
     @patch("registrar.views.portfolios.send_portfolio_admin_removal_emails")
-    def test_edit_member_permissions_basic_to_admin(self, mock_send_removal_emails, mock_send_addition_emails):
+    @patch("registrar.views.portfolios.send_portfolio_member_permission_update_email")
+    def test_edit_member_permissions_basic_to_admin(
+        self, mock_send_update_email, mock_send_removal_emails, mock_send_addition_emails
+    ):
         """Tests converting a basic member to admin with full permissions."""
         self.client.force_login(self.user)
 
@@ -3981,6 +3984,7 @@ def test_edit_member_permissions_basic_to_admin(self, mock_send_removal_emails,
 
         # return indicator that notification emails sent successfully
         mock_send_addition_emails.return_value = True
+        mock_send_update_email.return_value = True
 
         response = self.client.post(
             reverse("member-permissions", kwargs={"pk": basic_permission.id}),
@@ -4000,6 +4004,8 @@ def test_edit_member_permissions_basic_to_admin(self, mock_send_removal_emails,
         mock_send_addition_emails.assert_called_once()
         # assert removal emails are not sent
         mock_send_removal_emails.assert_not_called()
+        # assert update email sent
+        mock_send_update_email.assert_called_once()
 
         # Get the arguments passed to send_portfolio_admin_addition_emails
         _, called_kwargs = mock_send_addition_emails.call_args
@@ -4009,14 +4015,22 @@ def test_edit_member_permissions_basic_to_admin(self, mock_send_removal_emails,
         self.assertEqual(called_kwargs["requestor"], self.user)
         self.assertEqual(called_kwargs["portfolio"], self.portfolio)
 
+        # Get the arguments passed to send_portfolio_member_permission_update_email
+        _, called_kwargs = mock_send_update_email.call_args
+
+        # Assert the update notification email content
+        self.assertEqual(called_kwargs["requestor"], self.user)
+        self.assertEqual(called_kwargs["permissions"], basic_permission)
+
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
     @patch("django.contrib.messages.warning")
     @patch("registrar.views.portfolios.send_portfolio_admin_addition_emails")
     @patch("registrar.views.portfolios.send_portfolio_admin_removal_emails")
+    @patch("registrar.views.portfolios.send_portfolio_member_permission_update_email")
     def test_edit_member_permissions_basic_to_admin_notification_fails(
-        self, mock_send_removal_emails, mock_send_addition_emails, mock_messages_warning
+        self, mock_send_update_email, mock_send_removal_emails, mock_send_addition_emails, mock_messages_warning
     ):
         """Tests converting a basic member to admin with full permissions.
         Handle when notification emails fail to send."""
@@ -4033,6 +4047,7 @@ def test_edit_member_permissions_basic_to_admin_notification_fails(
 
         # At least one notification email failed to send
         mock_send_addition_emails.return_value = False
+        mock_send_update_email.return_value = False
 
         response = self.client.post(
             reverse("member-permissions", kwargs={"pk": basic_permission.id}),
@@ -4052,6 +4067,8 @@ def test_edit_member_permissions_basic_to_admin_notification_fails(
         mock_send_addition_emails.assert_called_once()
         # assert no removal emails are sent
         mock_send_removal_emails.assert_not_called()
+        # assert update email sent
+        mock_send_update_email.assert_called_once()
 
         # Get the arguments passed to send_portfolio_admin_addition_emails
         _, called_kwargs = mock_send_addition_emails.call_args
@@ -4061,18 +4078,32 @@ def test_edit_member_permissions_basic_to_admin_notification_fails(
         self.assertEqual(called_kwargs["requestor"], self.user)
         self.assertEqual(called_kwargs["portfolio"], self.portfolio)
 
-        # Assert warning message is called correctly
-        mock_messages_warning.assert_called_once()
-        warning_args, _ = mock_messages_warning.call_args
-        self.assertIsInstance(warning_args[0], WSGIRequest)
-        self.assertEqual(warning_args[1], "Could not send email notification to existing organization admins.")
+        # Get the arguments passed to send_portfolio_member_permission_update_email
+        _, called_kwargs = mock_send_update_email.call_args
+
+        # Assert the update notification email content
+        self.assertEqual(called_kwargs["requestor"], self.user)
+        self.assertEqual(called_kwargs["permissions"], basic_permission)
+
+        # Assert that messages.warning is called twice
+        self.assertEqual(mock_messages_warning.call_count, 2)
+
+        # Extract the actual messages sent
+        warning_messages = [call_args[0][1] for call_args in mock_messages_warning.call_args_list]
+
+        # Check for the expected messages
+        self.assertIn("Could not send email notification to existing organization admins.", warning_messages)
+        self.assertIn(f"Could not send email notification to {basic_member.email}.", warning_messages)
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
     @patch("registrar.views.portfolios.send_portfolio_admin_addition_emails")
     @patch("registrar.views.portfolios.send_portfolio_admin_removal_emails")
-    def test_edit_member_permissions_admin_to_admin(self, mock_send_removal_emails, mock_send_addition_emails):
+    @patch("registrar.views.portfolios.send_portfolio_member_permission_update_email")
+    def test_edit_member_permissions_admin_to_admin(
+        self, mock_send_update_email, mock_send_removal_emails, mock_send_addition_emails
+    ):
         """Tests updating an admin without changing permissions."""
         self.client.force_login(self.user)
 
@@ -4082,6 +4113,7 @@ def test_edit_member_permissions_admin_to_admin(self, mock_send_removal_emails,
             user=admin_member,
             portfolio=self.portfolio,
             roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
+            additional_permissions=[],
         )
 
         response = self.client.post(
@@ -4094,16 +4126,20 @@ def test_edit_member_permissions_admin_to_admin(self, mock_send_removal_emails,
         # Verify redirect and success message
         self.assertEqual(response.status_code, 302)
 
-        # assert addition and removal emails are not sent to portfolio admins
+        # assert update, addition and removal emails are not sent to portfolio admins
         mock_send_addition_emails.assert_not_called()
         mock_send_removal_emails.assert_not_called()
+        mock_send_update_email.assert_not_called()
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
     @patch("registrar.views.portfolios.send_portfolio_admin_addition_emails")
     @patch("registrar.views.portfolios.send_portfolio_admin_removal_emails")
-    def test_edit_member_permissions_basic_to_basic(self, mock_send_removal_emails, mock_send_addition_emails):
+    @patch("registrar.views.portfolios.send_portfolio_member_permission_update_email")
+    def test_edit_member_permissions_basic_to_basic(
+        self, mock_send_update_email, mock_send_removal_emails, mock_send_addition_emails
+    ):
         """Tests updating an admin without changing permissions."""
         self.client.force_login(self.user)
 
@@ -4116,6 +4152,8 @@ def test_edit_member_permissions_basic_to_basic(self, mock_send_removal_emails,
             additional_permissions=[UserPortfolioPermissionChoices.VIEW_ALL_REQUESTS],
         )
 
+        mock_send_update_email.return_value = True
+
         response = self.client.post(
             reverse("member-permissions", kwargs={"pk": basic_permission.id}),
             {
@@ -4132,13 +4170,25 @@ def test_edit_member_permissions_basic_to_basic(self, mock_send_removal_emails,
         # assert addition and removal emails are not sent to portfolio admins
         mock_send_addition_emails.assert_not_called()
         mock_send_removal_emails.assert_not_called()
+        # assert update email is sent to updated member
+        mock_send_update_email.assert_called_once()
+
+        # Get the arguments passed to send_portfolio_member_permission_update_email
+        _, called_kwargs = mock_send_update_email.call_args
+
+        # Assert the email content
+        self.assertEqual(called_kwargs["requestor"], self.user)
+        self.assertEqual(called_kwargs["permissions"], basic_permission)
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
     @patch("registrar.views.portfolios.send_portfolio_admin_addition_emails")
     @patch("registrar.views.portfolios.send_portfolio_admin_removal_emails")
-    def test_edit_member_permissions_admin_to_basic(self, mock_send_removal_emails, mock_send_addition_emails):
+    @patch("registrar.views.portfolios.send_portfolio_member_permission_update_email")
+    def test_edit_member_permissions_admin_to_basic(
+        self, mock_send_update_email, mock_send_removal_emails, mock_send_addition_emails
+    ):
         """Tests converting an admin to basic member."""
         self.client.force_login(self.user)
 
@@ -4149,8 +4199,9 @@ def test_edit_member_permissions_admin_to_basic(self, mock_send_removal_emails,
             portfolio=self.portfolio,
             roles=[UserPortfolioRoleChoices.ORGANIZATION_ADMIN],
         )
-
+        print(admin_permission)
         mock_send_removal_emails.return_value = True
+        mock_send_update_email.return_value = True
 
         response = self.client.post(
             reverse("member-permissions", kwargs={"pk": admin_permission.id}),
@@ -4169,7 +4220,8 @@ def test_edit_member_permissions_admin_to_basic(self, mock_send_removal_emails,
         admin_permission.refresh_from_db()
         self.assertEqual(admin_permission.roles, [UserPortfolioRoleChoices.ORGANIZATION_MEMBER])
 
-        # assert removal emails are sent to portfolio admins
+        # assert removal emails and update email are sent to portfolio admins
+        mock_send_update_email.assert_called_once()
         mock_send_addition_emails.assert_not_called()
         mock_send_removal_emails.assert_called_once()
 
@@ -4181,14 +4233,22 @@ def test_edit_member_permissions_admin_to_basic(self, mock_send_removal_emails,
         self.assertEqual(called_kwargs["requestor"], self.user)
         self.assertEqual(called_kwargs["portfolio"], self.portfolio)
 
+        # Get the arguments passed to send_portfolio_member_permission_update_email
+        _, called_kwargs = mock_send_update_email.call_args
+
+        # Assert the email content
+        self.assertEqual(called_kwargs["requestor"], self.user)
+        self.assertEqual(called_kwargs["permissions"], admin_permission)
+
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
     @override_flag("organization_members", active=True)
     @patch("django.contrib.messages.warning")
     @patch("registrar.views.portfolios.send_portfolio_admin_addition_emails")
     @patch("registrar.views.portfolios.send_portfolio_admin_removal_emails")
+    @patch("registrar.views.portfolios.send_portfolio_member_permission_update_email")
     def test_edit_member_permissions_admin_to_basic_notification_fails(
-        self, mock_send_removal_emails, mock_send_addition_emails, mock_messages_warning
+        self, mock_send_update_email, mock_send_removal_emails, mock_send_addition_emails, mock_messages_warning
     ):
         """Tests converting an admin to basic member."""
         self.client.force_login(self.user)
@@ -4204,6 +4264,7 @@ def test_edit_member_permissions_admin_to_basic_notification_fails(
 
         # False return indicates that at least one notification email failed to send
         mock_send_removal_emails.return_value = False
+        mock_send_update_email.return_value = False
 
         response = self.client.post(
             reverse("member-permissions", kwargs={"pk": admin_permission.id}),
@@ -4222,9 +4283,10 @@ def test_edit_member_permissions_admin_to_basic_notification_fails(
         admin_permission.refresh_from_db()
         self.assertEqual(admin_permission.roles, [UserPortfolioRoleChoices.ORGANIZATION_MEMBER])
 
-        # assert removal emails are sent to portfolio admins
+        # assert update email and removal emails are sent to portfolio admins
         mock_send_addition_emails.assert_not_called()
         mock_send_removal_emails.assert_called_once()
+        mock_send_update_email.assert_called_once()
 
         # Get the arguments passed to send_portfolio_admin_removal_emails
         _, called_kwargs = mock_send_removal_emails.call_args
@@ -4234,11 +4296,22 @@ def test_edit_member_permissions_admin_to_basic_notification_fails(
         self.assertEqual(called_kwargs["requestor"], self.user)
         self.assertEqual(called_kwargs["portfolio"], self.portfolio)
 
-        # Assert warning message is called correctly
-        mock_messages_warning.assert_called_once()
-        warning_args, _ = mock_messages_warning.call_args
-        self.assertIsInstance(warning_args[0], WSGIRequest)
-        self.assertEqual(warning_args[1], "Could not send email notification to existing organization admins.")
+        # Get the arguments passed to send_portfolio_member_permission_update_email
+        _, called_kwargs = mock_send_update_email.call_args
+
+        # Assert the email content
+        self.assertEqual(called_kwargs["requestor"], self.user)
+        self.assertEqual(called_kwargs["permissions"], admin_permission)
+
+        # Assert that messages.warning is called twice
+        self.assertEqual(mock_messages_warning.call_count, 2)
+
+        # Extract the actual messages sent
+        warning_messages = [call_args[0][1] for call_args in mock_messages_warning.call_args_list]
+
+        # Check for the expected messages
+        self.assertIn("Could not send email notification to existing organization admins.", warning_messages)
+        self.assertIn(f"Could not send email notification to {admin_member.email}.", warning_messages)
 
     @less_console_noise_decorator
     @override_flag("organization_feature", active=True)
diff --git a/src/registrar/utility/email.py b/src/registrar/utility/email.py
index 40601cdc7..94e87a96b 100644
--- a/src/registrar/utility/email.py
+++ b/src/registrar/utility/email.py
@@ -3,6 +3,7 @@
 import boto3
 import logging
 import textwrap
+import re
 from datetime import datetime
 from django.apps import apps
 from django.conf import settings
@@ -48,6 +49,21 @@ def send_templated_email(  # noqa
         No valid recipient addresses are provided
     """
 
+    if context is None:
+        context = {}
+
+    env_base_url = settings.BASE_URL
+    # The regular expression is to get both http (localhost) and https (everything else)
+    env_name = re.sub(r"^https?://", "", env_base_url).split(".")[0]
+    # If NOT in prod, add env to the subject line
+    # IE adds [GETGOV-RH] if we are in the -RH sandbox
+    prefix = f"[{env_name.upper()}] " if not settings.IS_PRODUCTION else ""
+    # If NOT in prod, update instances of "manage.get.gov" links to point to
+    # current environment, ie "getgov-rh.app.cloud.gov"
+    manage_url = env_base_url if not settings.IS_PRODUCTION else "https://manage.get.gov"
+
+    context["manage_url"] = manage_url
+
     # by default assume we can send to all addresses (prod has no whitelist)
     sendable_cc_addresses = cc_addresses
 
@@ -70,8 +86,10 @@ def send_templated_email(  # noqa
     if email_body:
         email_body.strip().lstrip("\n")
 
+    # Update the subject to have prefix here versus every email
     subject_template = get_template(subject_template_name)
     subject = subject_template.render(context=context)
+    subject = f"{prefix}{subject}"
 
     try:
         ses_client = boto3.client(
diff --git a/src/registrar/utility/email_invitations.py b/src/registrar/utility/email_invitations.py
index de21b2a61..7ddab65f1 100644
--- a/src/registrar/utility/email_invitations.py
+++ b/src/registrar/utility/email_invitations.py
@@ -226,6 +226,49 @@ def send_portfolio_invitation_email(email: str, requestor, portfolio, is_admin_i
     return all_admin_emails_sent
 
 
+def send_portfolio_member_permission_update_email(requestor, permissions: UserPortfolioPermission):
+    """
+    Sends an email notification to a portfolio member when their permissions are updated.
+
+    This function retrieves the requestor's email and sends a templated email to the affected user,
+    notifying them of changes to their portfolio permissions.
+
+    Args:
+        requestor (User): The user initiating the permission update.
+        permissions (UserPortfolioPermission): The updated permissions object containing the affected user
+                                              and the portfolio details.
+
+    Returns:
+        bool: True if the email was sent successfully, False if an EmailSendingError occurred.
+
+    Raises:
+        MissingEmailError: If the requestor has no email associated with their account.
+    """
+    requestor_email = _get_requestor_email(requestor, portfolio=permissions.portfolio)
+    try:
+        send_templated_email(
+            "emails/portfolio_update.txt",
+            "emails/portfolio_update_subject.txt",
+            to_address=permissions.user.email,
+            context={
+                "requested_user": permissions.user,
+                "portfolio": permissions.portfolio,
+                "requestor_email": requestor_email,
+                "permissions": permissions,
+                "date": date.today(),
+            },
+        )
+    except EmailSendingError:
+        logger.warning(
+            "Could not send email organization member update notification to %s " "for portfolio: %s",
+            permissions.user.email,
+            permissions.portfolio.organization_name,
+            exc_info=True,
+        )
+        return False
+    return True
+
+
 def send_portfolio_admin_addition_emails(email: str, requestor, portfolio: Portfolio):
     """
     Notifies all portfolio admins of the provided portfolio of a newly invited portfolio admin
diff --git a/src/registrar/views/domain.py b/src/registrar/views/domain.py
index 34a4957c2..4f7d7848e 100644
--- a/src/registrar/views/domain.py
+++ b/src/registrar/views/domain.py
@@ -366,7 +366,7 @@ def post(self, request, pk):
             return HttpResponseRedirect(reverse("domain", kwargs={"pk": pk}))
 
         # if not valid, render the template with error messages
-        # passing editable, has_domain_renewal_flag, and is_editable for re-render
+        # passing editable and is_editable for re-render
         return render(
             request,
             "domain_renewal.html",
@@ -374,7 +374,6 @@ def post(self, request, pk):
                 "domain": domain,
                 "form": form,
                 "is_editable": True,
-                "has_domain_renewal_flag": True,
                 "is_domain_manager": True,
             },
         )
diff --git a/src/registrar/views/portfolios.py b/src/registrar/views/portfolios.py
index 91c0f0987..b32c35677 100644
--- a/src/registrar/views/portfolios.py
+++ b/src/registrar/views/portfolios.py
@@ -20,6 +20,7 @@
     send_portfolio_admin_addition_emails,
     send_portfolio_admin_removal_emails,
     send_portfolio_invitation_email,
+    send_portfolio_member_permission_update_email,
 )
 from registrar.utility.errors import MissingEmailError
 from registrar.utility.enums import DefaultUserValues
@@ -213,6 +214,11 @@ def post(self, request, pk):
         removing_admin_role_on_self = False
         if form.is_valid():
             try:
+                if form.is_change():
+                    if not send_portfolio_member_permission_update_email(
+                        requestor=request.user, permissions=form.instance
+                    ):
+                        messages.warning(self.request, f"Could not send email notification to {user.email}.")
                 if form.is_change_from_member_to_admin():
                     if not send_portfolio_admin_addition_emails(
                         email=portfolio_permission.user.email,
diff --git a/src/registrar/views/report_views.py b/src/registrar/views/report_views.py
index 1b9198c79..596e69a5c 100644
--- a/src/registrar/views/report_views.py
+++ b/src/registrar/views/report_views.py
@@ -126,28 +126,54 @@ def get(self, request):
             # include it in the larger context dictionary so it's available in the template rendering context.
             # This ensures that the admin interface styling and behavior are consistent with other admin pages.
             **admin.site.each_context(request),
-            data=dict(
-                user_count=models.User.objects.all().count(),
-                domain_count=models.Domain.objects.all().count(),
-                ready_domain_count=models.Domain.objects.filter(state=models.Domain.State.READY).count(),
-                last_30_days_applications=last_30_days_applications.count(),
-                last_30_days_approved_applications=last_30_days_approved_applications.count(),
-                average_application_approval_time_last_30_days=avg_approval_time_display,
-                managed_domains_sliced_at_start_date=managed_domains_sliced_at_start_date,
-                unmanaged_domains_sliced_at_start_date=unmanaged_domains_sliced_at_start_date,
-                managed_domains_sliced_at_end_date=managed_domains_sliced_at_end_date,
-                unmanaged_domains_sliced_at_end_date=unmanaged_domains_sliced_at_end_date,
-                ready_domains_sliced_at_start_date=ready_domains_sliced_at_start_date,
-                deleted_domains_sliced_at_start_date=deleted_domains_sliced_at_start_date,
-                ready_domains_sliced_at_end_date=ready_domains_sliced_at_end_date,
-                deleted_domains_sliced_at_end_date=deleted_domains_sliced_at_end_date,
-                requests_sliced_at_start_date=requests_sliced_at_start_date,
-                submitted_requests_sliced_at_start_date=submitted_requests_sliced_at_start_date,
-                requests_sliced_at_end_date=requests_sliced_at_end_date,
-                submitted_requests_sliced_at_end_date=submitted_requests_sliced_at_end_date,
-                start_date=start_date,
-                end_date=end_date,
-            ),
+            data={
+                # Tracks what kind of orgs we are keeping count of.
+                # Used for the details table beneath the graph.
+                "org_count_types": [
+                    "Total",
+                    "Federal",
+                    "Interstate",
+                    "State/Territory",
+                    "Tribal",
+                    "County",
+                    "City",
+                    "Special District",
+                    "School District",
+                    "Election Board",
+                ],
+                "user_count": models.User.objects.all().count(),
+                "domain_count": models.Domain.objects.all().count(),
+                "ready_domain_count": models.Domain.objects.filter(state=models.Domain.State.READY).count(),
+                "last_30_days_applications": last_30_days_applications.count(),
+                "last_30_days_approved_applications": last_30_days_approved_applications.count(),
+                "average_application_approval_time_last_30_days": avg_approval_time_display,
+                "managed_domains": {
+                    "start_date_count": managed_domains_sliced_at_start_date,
+                    "end_date_count": managed_domains_sliced_at_end_date,
+                },
+                "unmanaged_domains": {
+                    "start_date_count": unmanaged_domains_sliced_at_start_date,
+                    "end_date_count": unmanaged_domains_sliced_at_end_date,
+                },
+                "ready_domains": {
+                    "start_date_count": ready_domains_sliced_at_start_date,
+                    "end_date_count": ready_domains_sliced_at_end_date,
+                },
+                "deleted_domains": {
+                    "start_date_count": deleted_domains_sliced_at_start_date,
+                    "end_date_count": deleted_domains_sliced_at_end_date,
+                },
+                "requests": {
+                    "start_date_count": requests_sliced_at_start_date,
+                    "end_date_count": requests_sliced_at_end_date,
+                },
+                "submitted_requests": {
+                    "start_date_count": submitted_requests_sliced_at_start_date,
+                    "end_date_count": submitted_requests_sliced_at_end_date,
+                },
+                "start_date": start_date,
+                "end_date": end_date,
+            },
         )
         return render(request, "admin/analytics.html", context)
 

From 3795e1405885a56823bb775463b3c860516bd71c Mon Sep 17 00:00:00 2001
From: Rachid Mrad <rachid.mrad@ecstech.com>
Date: Thu, 20 Feb 2025 22:08:11 -0500
Subject: [PATCH 59/59] refactor summary_item

---
 .../src/js/getgov/portfolio-member-page.js    |  2 +-
 .../assets/src/sass/_theme/_accordions.scss   |  2 +
 .../templates/includes/summary_item.html      | 41 ++++++++++---------
 3 files changed, 25 insertions(+), 20 deletions(-)

diff --git a/src/registrar/assets/src/js/getgov/portfolio-member-page.js b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
index 0510c875d..96961e5dc 100644
--- a/src/registrar/assets/src/js/getgov/portfolio-member-page.js
+++ b/src/registrar/assets/src/js/getgov/portfolio-member-page.js
@@ -100,7 +100,7 @@ export function initAddNewMemberPageListeners() {
       const permissionSections = document.querySelectorAll(`#${permission_details_div_id} > h3`);
 
       permissionSections.forEach(section => {
-        // Find the <h3> element text
+        // Find the <h3> element text, strip out the '*'
         const sectionTitle = section.textContent.trim().replace(/\*$/, "") + ": ";
 
         // Find the associated radio buttons container (next fieldset)
diff --git a/src/registrar/assets/src/sass/_theme/_accordions.scss b/src/registrar/assets/src/sass/_theme/_accordions.scss
index 803a4510a..86b8779ab 100644
--- a/src/registrar/assets/src/sass/_theme/_accordions.scss
+++ b/src/registrar/assets/src/sass/_theme/_accordions.scss
@@ -47,6 +47,8 @@
 }
 
 .usa-accordion--more-actions .usa-accordion__content {
+    // We need to match the height of the trigger button
+    // to align the 'popup' underneath
     top: 20px;
     &.top-28px {
         top: 28px;
diff --git a/src/registrar/templates/includes/summary_item.html b/src/registrar/templates/includes/summary_item.html
index a091e5ab7..0ce7910bb 100644
--- a/src/registrar/templates/includes/summary_item.html
+++ b/src/registrar/templates/includes/summary_item.html
@@ -134,25 +134,28 @@ <h4 class="margin-bottom-05">Invited domain managers</h4>
       {% endif %}
     </div>
 
-    {% if editable and edit_link or view_button %}
-      <div class="text-right">
-        <a
-          {% if edit_link %} href="{{ edit_link }}" {% endif %}
-          class="usa-link usa-link--icon font-sans-sm line-height-sans-4"
-        >
-          <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
-            <use xlink:href="{% static 'img/sprite.svg' %}#{% if manage_button %}settings{% elif editable and edit_link %}edit{% else %}visibility{% endif %}"></use>
-          </svg>
-          {% if manage_button %}
-            Manage
-          {% elif editable and edit_link %}
-            Edit
-          {% else %}
-            View
-          {% endif %}
-          <span class="sr-only"> {{ title|default:"Page" }}</span>
-        </a>
-      </div>
+    {% comment %}We have conditions where an edit_link is set but editable can be true or false{% endcomment %}
+    {% if edit_link %}
+      {% if manage_button or editable or view_button %}
+        <div class="text-right">
+          <a
+            href="{{ edit_link }}"
+            class="usa-link usa-link--icon font-sans-sm line-height-sans-4"
+          >
+            <svg class="usa-icon" aria-hidden="true" focusable="false" role="img" width="24">
+              <use xlink:href="{% static 'img/sprite.svg' %}#{% if manage_button %}settings{% elif editable %}edit{% else %}visibility{% endif %}"></use>
+            </svg>
+            {% if manage_button %}
+              Manage
+            {% elif editable %}
+              Edit
+            {% else %}
+              View
+            {% endif %}
+            <span class="sr-only"> {{ title|default:"Page" }}</span>
+          </a>
+        </div>
+      {% endif %}
     {% endif %}
 
  </div>