Release 1.145.1

[odlbot]

Nathan Levesque

• Fix github actions django env vars (Fix github actions django env vars #3463) (2baf9ee3)

James Kachel

• Move call for a content type back into the viewset; fix some n+1 errors (Move call for a content type back into the viewset; fix some n+1 errors #3465) (5c55bef3)
• Update the DRF linter config to look at serialiers in a serializer folder (Update the DRF linter config to look at serialiers in a serializer folder #3458) (edbc084a)
• Add API support for a B2B contract management dashboard (Add API support for a B2B contract management dashboard #3424) (4433791b)
• Fix issues with the program certificate audit courses test (Fix issues with the program certificate audit courses test #3460) (a319db39)

annagav

• Update program requirement box for Public Policy (Update program requirement box for Public Policy #3457) (436b950d)

Asad Ali

• feat: list filter b2b programs (feat: list filter b2b programs #3456) (a0135c87)

[github-actions]

OpenAPI Changes

Show/hide ## Changes for v0.yaml:

## Changes for v0.yaml:
7 changes: 0 error, 0 warning, 7 info
info	[endpoint-added] at head/openapi/specs/v0.yaml	
	in API GET /api/v0/b2b/manager/organizations/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v0.yaml	
	in API GET /api/v0/b2b/manager/organizations/{id}/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v0.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v0.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v0.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/codes/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v0.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/course_runs/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v0.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/course_runs/{course_run_id}/enrollments/
		endpoint added



## Changes for v1.yaml:
7 changes: 0 error, 0 warning, 7 info
info	[endpoint-added] at head/openapi/specs/v1.yaml	
	in API GET /api/v0/b2b/manager/organizations/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v1.yaml	
	in API GET /api/v0/b2b/manager/organizations/{id}/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v1.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v1.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v1.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/codes/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v1.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/course_runs/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v1.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/course_runs/{course_run_id}/enrollments/
		endpoint added



## Changes for v2.yaml:
7 changes: 0 error, 0 warning, 7 info
info	[endpoint-added] at head/openapi/specs/v2.yaml	
	in API GET /api/v0/b2b/manager/organizations/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v2.yaml	
	in API GET /api/v0/b2b/manager/organizations/{id}/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v2.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v2.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v2.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/codes/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v2.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/course_runs/
		endpoint added

info	[endpoint-added] at head/openapi/specs/v2.yaml	
	in API GET /api/v0/b2b/manager/organizations/{parent_lookup_organization}/contracts/{id}/course_runs/{course_run_id}/enrollments/
		endpoint added

Unexpected changes? Ensure your branch is up-to-date with main (consider rebasing).

[sentry]

Bug: The codes action can pass [None] to the serializer if a contract has no discount codes, causing an AttributeError when the serializer tries to access an attribute on None.
_{Severity: HIGH}

Suggested Fix

Add a check to handle the case where discounts.order_by("id").first() returns None. Instead of passing [None] to the serializer, return a response with an empty list [] to represent the absence of codes, which the serializer can handle gracefully.

Prompt for AI Agent

Review the code at the location below. A potential bug has been identified by an AI
agent.
Verify if this is a real issue. If it is, propose a fix; if not, explain why it's not
valid.

Location: b2b/views/v0/manager.py#L249-L255

Potential issue: In the `codes` action of `ManagerContractViewSet`, if a contract has no
learner limit (`max_learners` is falsy) and no associated discount codes, the query
`discounts.order_by("id").first()` returns `None`. This `None` value is then wrapped in
a list and passed to `ManagerEnrollmentCodeSerializer` with `many=True`. The serializer
will then raise an `AttributeError` when it attempts to access an attribute like
`discount_code` on the `None` object, causing the endpoint to crash.

_{Did we get this right? 👍 / 👎 to inform future reviews.}

[sentry]

Bug: The get_queryset in ManagerContractViewSet incorrectly filters out contracts for superusers because it lacks a bypass, even though the permission class grants them access.
_{Severity: MEDIUM}

Suggested Fix

Update ManagerContractViewSet.get_queryset to include a bypass for superusers, similar to the logic in ManagerOrganizationViewSet. If self.request.user.is_superuser is true, return the unfiltered queryset; otherwise, apply the existing filter for regular managers.

Prompt for AI Agent

Review the code at the location below. A potential bug has been identified by an AI
agent.
Verify if this is a real issue. If it is, propose a fix; if not, explain why it's not
valid.

Location: b2b/views/v0/manager.py#L146-L150

Potential issue: The `get_queryset` method in `ManagerContractViewSet` unconditionally
filters contracts to only those where the requesting user is an organization manager.
However, the `IsOrganizationManager` permission class explicitly allows superusers. This
creates a mismatch where a superuser is granted permission but the queryset returns no
results if they are not also explicitly a manager of the organization. This prevents
superusers from viewing contracts they should have access to, unlike in the
`ManagerOrganizationViewSet` which correctly bypasses this filter for superusers.

_{Did we get this right? 👍 / 👎 to inform future reviews.}