From 5fd3121efb50bbe9c55651435b37a9332eb5c133 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 20 Mar 2026 13:57:40 +0100
Subject: [PATCH 01/31] Add interactive service layer documentation for CSV
 upload

Add admin-only developer tool page at /backoffice/dev/service-docs that
provides interactive documentation for CSV upload service functions.
Disabled in production for security.

Features:
- Documents import_respondents_from_csv, import_targets_from_csv,
  get_or_create_csv_config, and update_csv_config services
- Shows code references, parameters, return types, and error cases
- Interactive "Try It" sections to execute services directly
- Sample data loading for testing
- Tab navigation with URL query parameter sync
- Adds x-cloak CSS rule for Alpine.js CSP build compatibility

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../features/backoffice-csv-upload.feature    |  20 +
 .../entrypoints/blueprints/backoffice.py      | 257 +++++-
 backend/static/backoffice/src/main.css        |  12 +
 .../templates/backoffice/assembly_data.html   |  10 +-
 .../templates/backoffice/components/tabs.html |  14 +-
 .../templates/backoffice/service_docs.html    | 795 ++++++++++++++++++
 backend/tests/bdd/test_backoffice.py          |  26 +
 7 files changed, 1125 insertions(+), 9 deletions(-)
 create mode 100644 backend/features/backoffice-csv-upload.feature
 create mode 100644 backend/templates/backoffice/service_docs.html

diff --git a/backend/features/backoffice-csv-upload.feature b/backend/features/backoffice-csv-upload.feature
new file mode 100644
index 00000000..10607212
--- /dev/null
+++ b/backend/features/backoffice-csv-upload.feature
@@ -0,0 +1,20 @@
+Feature: Backoffice CSV Upload
+  As an administrator
+  I want to upload CSV files for assemblies
+  So that I can import participant data without using Google Spreadsheets.
+
+  Scenario: Targets tab appears when CSV data source is selected
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Test Assembly"
+    When I visit the assembly data page for "CSV Test Assembly"
+    And I select "CSV file" from the data source selector
+    Then I should see a "Targets" tab in the assembly navigation
+    And the "Targets" tab should be disabled
+
+  Scenario: Targets tab disappears when switching to Google Spreadsheet
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Switch Assembly"
+    When I visit the assembly data page for "CSV Switch Assembly" with source "csv"
+    Then I should see a "Targets" tab in the assembly navigation
+    When I select "Google Spreadsheet" from the data source selector
+    Then I should not see a "Targets" tab in the assembly navigation
diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index ff61ad40..f66fb5b3 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -1,13 +1,15 @@
 """ABOUTME: Backoffice routes for admin UI using Pines UI + Tailwind CSS
 ABOUTME: Provides /backoffice/* routes for dashboard, assembly CRUD, data source, and team members"""
 
+import traceback
 import uuid
+from typing import Any
 
-from flask import Blueprint, current_app, flash, jsonify, redirect, render_template, request, url_for
+from flask import Blueprint, abort, current_app, flash, jsonify, redirect, render_template, request, url_for
 from flask.typing import ResponseReturnValue
 from flask_login import current_user, login_required
 
-from opendlp import bootstrap
+from opendlp import bootstrap, config
 from opendlp.bootstrap import get_email_adapter, get_template_renderer, get_url_generator
 from opendlp.domain.value_objects import AssemblyRole
 from opendlp.entrypoints.forms import (
@@ -21,10 +23,14 @@
     create_assembly,
     get_assembly_gsheet,
     get_assembly_with_permissions,
+    get_or_create_csv_config,
+    import_targets_from_csv,
     update_assembly,
+    update_csv_config,
 )
-from opendlp.service_layer.exceptions import InsufficientPermissions, NotFoundError
+from opendlp.service_layer.exceptions import InsufficientPermissions, InvalidSelection, NotFoundError
 from opendlp.service_layer.permissions import has_global_admin
+from opendlp.service_layer.respondent_service import import_respondents_from_csv
 from opendlp.service_layer.user_service import get_user_assemblies, grant_user_assembly_role, revoke_user_assembly_role
 from opendlp.translations import gettext as _
 
@@ -504,3 +510,248 @@ def search_demo() -> ResponseReturnValue:
     ]
 
     return jsonify(results), 200
+
+
+# =============================================================================
+# Service Layer Documentation (Admin-only developer tools)
+# =============================================================================
+
+
+@backoffice_bp.route("/dev/service-docs")
+@login_required
+def service_docs() -> ResponseReturnValue:
+    """Interactive service layer documentation page for CSV upload services.
+
+    Admin-only page that provides interactive testing of service layer functions.
+    Disabled in production for security.
+    """
+    # Disable in production - developer tools should not be available
+    if config.is_production():
+        abort(404)
+
+    if not has_global_admin(current_user):
+        flash(_("You don't have permission to access developer tools"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+
+    # Get active tab from query parameter, default to 'respondents'
+    active_tab = request.args.get("tab", "respondents")
+    valid_tabs = ["respondents", "targets", "config"]
+    if active_tab not in valid_tabs:
+        active_tab = "respondents"
+
+    # Get all assemblies for the dropdown (admin can see all via get_user_assemblies)
+    uow = bootstrap.bootstrap()
+    assemblies = get_user_assemblies(uow, current_user.id)
+
+    return render_template("backoffice/service_docs.html", assemblies=assemblies, active_tab=active_tab), 200
+
+
+@backoffice_bp.route("/dev/service-docs/execute", methods=["POST"])
+@login_required
+def service_docs_execute() -> ResponseReturnValue:
+    """Execute a service layer function for testing.
+
+    Accepts JSON with service name and parameters, returns JSON result.
+    Disabled in production for security.
+    """
+    # Disable in production - developer tools should not be available
+    if config.is_production():
+        abort(404)
+
+    if not has_global_admin(current_user):
+        return jsonify({"status": "error", "error": "Unauthorized", "error_type": "InsufficientPermissions"}), 403
+
+    try:
+        data = request.get_json()
+        if not data:
+            return jsonify({"status": "error", "error": "No JSON data provided", "error_type": "ValidationError"}), 400
+
+        service_name = data.get("service")
+        params = data.get("params", {})
+
+        result = _execute_service(service_name, params)
+        return jsonify(result), 200
+
+    except Exception as e:
+        current_app.logger.error(f"Service docs execute error: {e}")
+        current_app.logger.exception("Full traceback:")
+        return jsonify({
+            "status": "error",
+            "error": str(e),
+            "error_type": type(e).__name__,
+            "traceback": traceback.format_exc(),
+        }), 500
+
+
+def _handle_import_respondents(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
+    """Handle import_respondents_from_csv service call."""
+    assembly_id = uuid.UUID(params["assembly_id"])
+    csv_content = params["csv_content"]
+    replace_existing = params.get("replace_existing", False)
+    id_column = params.get("id_column") or None
+
+    with uow:
+        try:
+            respondents, errors, resolved_id_column = import_respondents_from_csv(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+                csv_content=csv_content,
+                replace_existing=replace_existing,
+                id_column=id_column,
+            )
+            return {
+                "status": "success",
+                "imported_count": len(respondents),
+                "errors": errors,
+                "id_column_used": resolved_id_column,
+                "sample_respondents": [
+                    {
+                        "external_id": r.external_id,
+                        "attributes": r.attributes,
+                        "email": r.email,
+                        "consent": r.consent,
+                        "eligible": r.eligible,
+                        "can_attend": r.can_attend,
+                    }
+                    for r in respondents[:5]  # Show first 5 as sample
+                ],
+            }
+        except InvalidSelection as e:
+            return {"status": "error", "error": str(e), "error_type": "InvalidSelection"}
+        except InsufficientPermissions as e:
+            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
+        except NotFoundError as e:
+            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
+
+
+def _handle_import_targets(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
+    """Handle import_targets_from_csv service call."""
+    assembly_id = uuid.UUID(params["assembly_id"])
+    csv_content = params["csv_content"]
+    replace_existing = params.get("replace_existing", True)
+
+    with uow:
+        try:
+            categories = import_targets_from_csv(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+                csv_content=csv_content,
+                replace_existing=replace_existing,
+            )
+            return {
+                "status": "success",
+                "categories_count": len(categories),
+                "total_values_count": sum(len(c.values) for c in categories),
+                "categories": [
+                    {
+                        "name": c.name,
+                        "values": [
+                            {
+                                "value": v.value,
+                                "min": v.min,
+                                "max": v.max,
+                                "min_flex": v.min_flex,
+                                "max_flex": v.max_flex,
+                            }
+                            for v in c.values
+                        ],
+                    }
+                    for c in categories
+                ],
+            }
+        except InvalidSelection as e:
+            return {"status": "error", "error": str(e), "error_type": "InvalidSelection"}
+        except InsufficientPermissions as e:
+            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
+        except NotFoundError as e:
+            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
+
+
+def _handle_get_csv_config(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
+    """Handle get_or_create_csv_config service call."""
+    assembly_id = uuid.UUID(params["assembly_id"])
+
+    with uow:
+        try:
+            csv_config = get_or_create_csv_config(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+            )
+            return {
+                "status": "success",
+                "config": {
+                    "assembly_csv_id": str(csv_config.assembly_csv_id) if csv_config.assembly_csv_id else None,
+                    "assembly_id": str(csv_config.assembly_id),
+                    "id_column": csv_config.id_column,
+                    "check_same_address": csv_config.check_same_address,
+                    "check_same_address_cols": csv_config.check_same_address_cols,
+                    "columns_to_keep": csv_config.columns_to_keep,
+                    "selection_algorithm": csv_config.selection_algorithm,
+                    "settings_confirmed": csv_config.settings_confirmed,
+                    "last_import_filename": csv_config.last_import_filename,
+                    "last_import_timestamp": csv_config.last_import_timestamp.isoformat()
+                    if csv_config.last_import_timestamp
+                    else None,
+                    "created_at": csv_config.created_at.isoformat() if csv_config.created_at else None,
+                    "updated_at": csv_config.updated_at.isoformat() if csv_config.updated_at else None,
+                },
+            }
+        except InsufficientPermissions as e:
+            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
+        except NotFoundError as e:
+            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
+
+
+def _handle_update_csv_config(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
+    """Handle update_csv_config service call."""
+    assembly_id = uuid.UUID(params["assembly_id"])
+    settings = {k: v for k, v in params.items() if k not in ("assembly_id",)}
+
+    with uow:
+        try:
+            csv_config = update_csv_config(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+                **settings,
+            )
+            return {
+                "status": "success",
+                "config": {
+                    "assembly_csv_id": str(csv_config.assembly_csv_id) if csv_config.assembly_csv_id else None,
+                    "assembly_id": str(csv_config.assembly_id),
+                    "id_column": csv_config.id_column,
+                    "check_same_address": csv_config.check_same_address,
+                    "check_same_address_cols": csv_config.check_same_address_cols,
+                    "columns_to_keep": csv_config.columns_to_keep,
+                    "selection_algorithm": csv_config.selection_algorithm,
+                    "settings_confirmed": csv_config.settings_confirmed,
+                    "updated_at": csv_config.updated_at.isoformat() if csv_config.updated_at else None,
+                },
+            }
+        except InsufficientPermissions as e:
+            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
+        except NotFoundError as e:
+            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
+
+
+# Mapping of service names to their handler functions
+_SERVICE_HANDLERS: dict[str, Any] = {
+    "import_respondents_from_csv": _handle_import_respondents,
+    "import_targets_from_csv": _handle_import_targets,
+    "get_or_create_csv_config": _handle_get_csv_config,
+    "update_csv_config": _handle_update_csv_config,
+}
+
+
+def _execute_service(service_name: str, params: dict[str, Any]) -> dict[str, Any]:
+    """Execute a service layer function and return the result as JSON-serializable dict."""
+    handler = _SERVICE_HANDLERS.get(service_name)
+    if handler is None:
+        return {"status": "error", "error": f"Unknown service: {service_name}", "error_type": "ValidationError"}
+
+    uow = bootstrap.bootstrap()
+    return handler(uow, params)
diff --git a/backend/static/backoffice/src/main.css b/backend/static/backoffice/src/main.css
index 3d95365c..93b9479c 100644
--- a/backend/static/backoffice/src/main.css
+++ b/backend/static/backoffice/src/main.css
@@ -2,6 +2,18 @@
 @tailwind components;
 @tailwind utilities;
 
+/* ========================================
+   Alpine.js Utilities
+   ======================================== */
+
+/*
+ * Hide elements with x-cloak until Alpine.js initializes.
+ * This prevents flash of unstyled content for modals, dropdowns, etc.
+ */
+[x-cloak] {
+    display: none !important;
+}
+
 /*
  * Design Tokens are loaded separately in templates:
  * - tokens/primitive.css (raw color values + @font-face + font family primitives)
diff --git a/backend/templates/backoffice/assembly_data.html b/backend/templates/backoffice/assembly_data.html
index 458198cd..804ba608 100644
--- a/backend/templates/backoffice/assembly_data.html
+++ b/backend/templates/backoffice/assembly_data.html
@@ -27,12 +27,14 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
         {{ _("Manage data for this assembly") }}
     </p>
 
+    {% set source_param = "?source=" ~ data_source if data_source else "" %}
     {{ tabs(
     items=[
-    {"label": _("Details"), "href": url_for('backoffice.view_assembly', assembly_id=assembly.id)},
-    {"label": _("Data"), "href": url_for('backoffice.view_assembly_data', assembly_id=assembly.id), "active": true},
-    {"label": _("Selection"), "href": url_for('gsheets.view_assembly_selection', assembly_id=assembly.id)},
-    {"label": _("Team Members"), "href": url_for('backoffice.view_assembly_members', assembly_id=assembly.id)}
+    {"label": _("Details"), "href": url_for('backoffice.view_assembly', assembly_id=assembly.id) ~ source_param},
+    {"label": _("Data"), "href": url_for('backoffice.view_assembly_data', assembly_id=assembly.id) ~ source_param, "active": true}
+    ] + ([{"label": _("Targets"), "href": "#", "disabled": true}] if data_source == "csv" else []) + [
+    {"label": _("Selection"), "href": url_for('gsheets.view_assembly_selection', assembly_id=assembly.id) ~ source_param},
+    {"label": _("Team Members"), "href": url_for('backoffice.view_assembly_members', assembly_id=assembly.id) ~ source_param}
     ],
     aria_label=_("Assembly sections")
     ) }}
diff --git a/backend/templates/backoffice/components/tabs.html b/backend/templates/backoffice/components/tabs.html
index 3194763a..764a0fa2 100644
--- a/backend/templates/backoffice/components/tabs.html
+++ b/backend/templates/backoffice/components/tabs.html
@@ -8,6 +8,7 @@
         - label: Display text (required)
         - href: Link URL (required)
         - active: Whether this tab is currently active (optional, default false)
+        - disabled: Whether this tab is disabled/unclickable (optional, default false)
         - Any additional attributes are passed through to the anchor element (e.g., data-proto)
 
     aria_label: Accessible label for the navigation (required)
@@ -18,6 +19,7 @@
             items=[
                 {"label": "Details", "href": url_for('backoffice.view_assembly', assembly_id=assembly.id), "active": true},
                 {"label": "Data", "href": "#", "data-proto": "click:show:data-panel"},
+                {"label": "Targets", "href": "#", "disabled": true},
                 {"label": "Selection", "href": "#"},
                 {"label": "Team Members", "href": url_for('backoffice.view_assembly_members', assembly_id=assembly.id)}
             ],
@@ -31,12 +33,20 @@
                 {# Build extra attributes string from non-standard keys #}
                 {% set extra_attrs = [] %}
                 {% for key, value in item.items() %}
-                    {% if key not in ['label', 'href', 'active'] %}
+                    {% if key not in ['label', 'href', 'active', 'disabled'] %}
                         {% set _ = extra_attrs.append(key ~ '="' ~ value ~ '"') %}
                     {% endif %}
                 {% endfor %}
                 <li>
-                    {% if item.active %}
+                    {% if item.disabled %}
+                        {# Disabled tab - rendered as non-clickable span #}
+                        <span class="inline-block px-4 py-3 text-body-md font-medium -mb-px cursor-not-allowed"
+                              style="color: var(--color-secondary-text); opacity: 0.5; border-bottom: 2px solid transparent;"
+                              data-disabled="true"
+                              {{ extra_attrs | join(' ') | safe }}>
+                            {{ item.label }}
+                        </span>
+                    {% elif item.active %}
                         {# Active tab - directive handles scroll preservation #}
                         <a href="{{ item.href }}"
                            class="inline-block px-4 py-3 text-body-md font-medium -mb-px"
diff --git a/backend/templates/backoffice/service_docs.html b/backend/templates/backoffice/service_docs.html
new file mode 100644
index 00000000..5d5a69eb
--- /dev/null
+++ b/backend/templates/backoffice/service_docs.html
@@ -0,0 +1,795 @@
+{#
+ABOUTME: Interactive service layer documentation page for CSV upload services
+ABOUTME: Provides testing console with code references, sample data, and execution
+#}
+{% extends "backoffice/base_page.html" %}
+
+{% from "backoffice/components/breadcrumbs.html" import breadcrumbs %}
+{% from "backoffice/components/button.html" import button %}
+{% from "backoffice/components/card.html" import card, card_body, card_footer %}
+{% from "backoffice/components/alert.html" import alert %}
+{% from "backoffice/components/tabs.html" import tabs %}
+
+{% block title %}{{ _("Service Layer Documentation") }}{% endblock %}
+
+{% block breadcrumb_section %}
+    <div class="mb-6">
+        {{ breadcrumbs([
+        {"label": _("Dashboard"), "href": url_for('backoffice.dashboard')},
+        {"label": _("Developer Tools")},
+        {"label": _("Service Docs")}
+        ]) }}
+    </div>
+{% endblock %}
+
+{% block page_content %}
+    {# Main Alpine.js controller for the entire page #}
+    <div x-data="serviceDocsController()" x-cloak>
+        {# Page Header #}
+        <div class="mb-8">
+            <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">
+                <span class="mr-2">📚</span>{{ _("Service Layer Documentation") }}
+            </h1>
+            <p class="text-body-lg" style="color: var(--color-secondary-text);">
+                {{ _("Interactive testing console for CSV upload services. Execute service functions directly and inspect responses.") }}
+            </p>
+            <p class="text-body-sm mt-2" style="color: var(--color-warning-600);">
+                <span class="font-semibold">⚠️ {{ _("Admin Only") }}:</span>
+                {{ _("This page allows direct database modifications. Use with caution.") }}
+            </p>
+        </div>
+
+        {# Tabs for service categories #}
+        {{ tabs(
+        items=[
+        {"label": _("Respondents"), "href": url_for('backoffice.service_docs', tab='respondents'), "active": active_tab == 'respondents'},
+        {"label": _("Targets"), "href": url_for('backoffice.service_docs', tab='targets'), "active": active_tab == 'targets'},
+        {"label": _("CSV Config"), "href": url_for('backoffice.service_docs', tab='config'), "active": active_tab == 'config'}
+        ],
+        aria_label=_("Service categories")
+        ) }}
+
+        {# ===== RESPONDENTS TAB ===== #}
+        {% if active_tab == 'respondents' %}
+            <div>
+            {# import_respondents_from_csv #}
+                {% call card(title="import_respondents_from_csv()", composed=true) %}
+                    {% call card_body() %}
+                    {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                respondent_service.py:63
+                            </code>
+                            <div class="flex gap-2">
+                                <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-warning-100); color: var(--color-warning-600);">
+                                    🔒 can_manage_assembly()
+                                </span>
+                                <button @click="copyToClipboard('respondent_service.py:63')"
+                                        class="text-body-sm px-2 py-1 rounded transition-colors"
+                                        style="background-color: var(--color-subtle-background-panels);">
+                                    📋 Copy
+                                </button>
+                            </div>
+                        </div>
+
+                    {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Imports respondents from CSV with flexible column mapping. Extracts special fields (consent, eligible, can_attend, email) and stores remaining columns as attributes.") }}
+                        </p>
+
+                    {# Parameters Table #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <div class="overflow-x-auto">
+                                <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                    <thead style="background-color: var(--color-subtle-background-panels);">
+                                        <tr>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Name</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Type</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Required</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Description</th>
+                                        </tr>
+                                    </thead>
+                                    <tbody>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">assembly_id</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UUID</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Target assembly ID</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">csv_content</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">str</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">CSV file contents (UTF-8)</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">replace_existing</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">bool</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">❌</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Delete existing respondents before import (default: false)</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono">id_column</td>
+                                            <td class="px-3 py-2">str | None</td>
+                                            <td class="px-3 py-2">❌</td>
+                                            <td class="px-3 py-2">Column name for respondent ID (default: first column)</td>
+                                        </tr>
+                                    </tbody>
+                                </table>
+                            </div>
+                        </div>
+
+                    {# Returns #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Returns") }}</h4>
+                            <code class="text-body-sm px-2 py-1 rounded block" style="background-color: var(--color-subtle-background-panels);">
+                                tuple[list[Respondent], list[str], str]  →  (respondents, errors, resolved_id_column)
+                            </code>
+                        </div>
+
+                    {# Error Cases #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Error Cases") }}</h4>
+                            <ul class="list-disc list-inside text-body-sm space-y-1" style="color: var(--color-body-text);">
+                                <li><code class="px-1 rounded" style="background-color: var(--color-error-100);">InvalidSelection</code> — CSV has no header, missing id_column, or parsing fails</li>
+                                <li><code class="px-1 rounded" style="background-color: var(--color-error-100);">InsufficientPermissions</code> — User lacks can_manage_assembly() permission</li>
+                                <li><code class="px-1 rounded" style="background-color: var(--color-error-100);">NotFoundError</code> — Assembly or user not found</li>
+                            </ul>
+                        </div>
+
+                    {# Try It Section #}
+                        <div class="pt-4" style="border-top: 1px solid var(--color-borders-dividers);">
+                            <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
+                                <span class="mr-2">🧪</span>{{ _("Try It") }}
+                            </h4>
+
+                        {# Assembly Select #}
+                            <div class="mb-4">
+                                <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Assembly") }}</label>
+                                <select x-model="forms.import_respondents.assembly_id"
+                                        class="w-full px-3 py-2 rounded-lg text-body-md"
+                                        style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
+                                    <option value="">{{ _("Select an assembly...") }}</option>
+                                    {% for assembly in assemblies %}
+                                        <option value="{{ assembly.id }}">{{ assembly.title }}</option>
+                                    {% endfor %}
+                                </select>
+                            </div>
+
+                        {# CSV Content #}
+                            <div class="mb-4">
+                                <div class="flex items-center justify-between mb-1">
+                                    <label class="text-label-md" style="color: var(--color-headings);">{{ _("CSV Content") }}</label>
+                                    <button @click="loadSampleData('import_respondents')"
+                                            class="text-body-sm px-2 py-1 rounded transition-colors"
+                                            style="background-color: var(--color-info-100); color: var(--color-info-600);">
+                                        📄 {{ _("Load Sample") }}
+                                    </button>
+                                </div>
+                                <textarea x-model="forms.import_respondents.csv_content"
+                                          rows="8"
+                                          class="w-full px-3 py-2 rounded-lg text-body-sm font-mono"
+                                          style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);"
+                                          placeholder="external_id,name,email,gender,consent&#10;001,Alice Smith,alice@example.com,Female,true&#10;002,Bob Jones,bob@example.com,Male,true"></textarea>
+                            </div>
+
+                        {# Options Row #}
+                            <div class="flex gap-4 mb-4">
+                                <div class="flex items-center gap-2">
+                                    <input type="checkbox" x-model="forms.import_respondents.replace_existing" id="resp_replace"
+                                           class="rounded" style="accent-color: var(--color-primary-action);">
+                                    <label for="resp_replace" class="text-body-sm" style="color: var(--color-body-text);">
+                                        {{ _("Replace existing") }}
+                                        <span class="text-body-sm" style="color: var(--color-error-600);">(⚠️ destructive)</span>
+                                    </label>
+                                </div>
+                                <div class="flex-1">
+                                    <input type="text" x-model="forms.import_respondents.id_column"
+                                           class="w-full px-3 py-2 rounded-lg text-body-sm"
+                                           style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);"
+                                           placeholder="{{ _('ID Column (leave empty for first column)') }}">
+                                </div>
+                            </div>
+
+                        {# Action Buttons #}
+                            <div class="flex gap-2 mb-4">
+                                <button @click="executeService('import_respondents_from_csv', forms.import_respondents)"
+                                        :disabled="loading.import_respondents"
+                                        class="px-4 py-2 rounded-lg text-button-lg transition-all"
+                                        style="background-color: var(--color-primary-action); color: var(--color-page-background);">
+                                    <span x-show="!loading.import_respondents">▶️ {{ _("Execute") }}</span>
+                                    <span x-show="loading.import_respondents">⏳ {{ _("Running...") }}</span>
+                                </button>
+                                <button @click="resetForm('import_respondents')"
+                                        class="px-4 py-2 rounded-lg text-button-lg transition-all"
+                                        style="background-color: transparent; color: var(--color-headings); border: 1px solid var(--color-borders-dividers);">
+                                    🔄 {{ _("Reset") }}
+                                </button>
+                            </div>
+
+                        {# Response Display #}
+                            <template x-if="responses.import_respondents">
+                                <div class="rounded-lg p-4" :style="responses.import_respondents.status === 'success' ? 'background-color: var(--color-success-100); border: 1px solid var(--color-success-400);' : 'background-color: var(--color-error-100); border: 1px solid var(--color-error-400);'">
+                                    <div class="flex items-center justify-between mb-2">
+                                        <span class="text-heading-sm" :style="responses.import_respondents.status === 'success' ? 'color: var(--color-success-600);' : 'color: var(--color-error-600);'">
+                                            <span x-text="responses.import_respondents.status === 'success' ? '✅ Success' : '❌ Error'"></span>
+                                        </span>
+                                        <button @click="copyToClipboard(JSON.stringify(responses.import_respondents, null, 2))"
+                                                class="text-body-sm px-2 py-1 rounded"
+                                                style="background-color: var(--color-page-background);">
+                                            📋 {{ _("Copy JSON") }}
+                                        </button>
+                                    </div>
+                                <pre class="text-body-sm font-mono overflow-x-auto whitespace-pre-wrap" style="color: var(--color-body-text);" x-text="JSON.stringify(responses.import_respondents, null, 2)"></pre>
+                                </div>
+                            </template>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+            </div>
+        {% endif %}
+
+        {# ===== TARGETS TAB ===== #}
+        {% if active_tab == 'targets' %}
+            <div>
+            {# import_targets_from_csv #}
+                {% call card(title="import_targets_from_csv()", composed=true) %}
+                    {% call card_body() %}
+                    {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                assembly_service.py:501
+                            </code>
+                            <div class="flex gap-2">
+                                <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-warning-100); color: var(--color-warning-600);">
+                                    🔒 can_manage_assembly()
+                                </span>
+                                <button @click="copyToClipboard('assembly_service.py:501')"
+                                        class="text-body-sm px-2 py-1 rounded transition-colors"
+                                        style="background-color: var(--color-subtle-background-panels);">
+                                    📋 Copy
+                                </button>
+                            </div>
+                        </div>
+
+                    {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Imports target categories from CSV using sortition-algorithms library. Parses and validates category definitions with min/max quotas.") }}
+                        </p>
+
+                    {# Parameters Table #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <div class="overflow-x-auto">
+                                <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                    <thead style="background-color: var(--color-subtle-background-panels);">
+                                        <tr>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Name</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Type</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Required</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Description</th>
+                                        </tr>
+                                    </thead>
+                                    <tbody>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">assembly_id</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UUID</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Target assembly ID</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">csv_content</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">str</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">CSV with columns: feature, value, min, max, [min_flex, max_flex]</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono">replace_existing</td>
+                                            <td class="px-3 py-2">bool</td>
+                                            <td class="px-3 py-2">❌</td>
+                                            <td class="px-3 py-2">Always replaces (default: true)</td>
+                                        </tr>
+                                    </tbody>
+                                </table>
+                            </div>
+                        </div>
+
+                    {# Returns #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Returns") }}</h4>
+                            <code class="text-body-sm px-2 py-1 rounded block" style="background-color: var(--color-subtle-background-panels);">
+                                list[TargetCategory]  →  List of imported categories with their values
+                            </code>
+                        </div>
+
+                    {# CSV Format Example #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("CSV Format") }}</h4>
+                        <pre class="text-body-sm font-mono p-3 rounded-lg overflow-x-auto" style="background-color: var(--color-subtle-background-panels); color: var(--color-body-text);">feature,value,min,max,min_flex,max_flex
+Gender,Male,3,7,0,2
+Gender,Female,3,7,0,2
+Age,18-30,2,5,1,1
+Age,31-50,2,5,1,1
+Age,51+,2,5,1,1</pre>
+                        </div>
+
+                    {# Try It Section #}
+                        <div class="pt-4" style="border-top: 1px solid var(--color-borders-dividers);">
+                            <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
+                                <span class="mr-2">🧪</span>{{ _("Try It") }}
+                            </h4>
+
+                        {# Assembly Select #}
+                            <div class="mb-4">
+                                <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Assembly") }}</label>
+                                <select x-model="forms.import_targets.assembly_id"
+                                        class="w-full px-3 py-2 rounded-lg text-body-md"
+                                        style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
+                                    <option value="">{{ _("Select an assembly...") }}</option>
+                                    {% for assembly in assemblies %}
+                                        <option value="{{ assembly.id }}">{{ assembly.title }}</option>
+                                    {% endfor %}
+                                </select>
+                            </div>
+
+                        {# CSV Content #}
+                            <div class="mb-4">
+                                <div class="flex items-center justify-between mb-1">
+                                    <label class="text-label-md" style="color: var(--color-headings);">{{ _("CSV Content") }}</label>
+                                    <button @click="loadSampleData('import_targets')"
+                                            class="text-body-sm px-2 py-1 rounded transition-colors"
+                                            style="background-color: var(--color-info-100); color: var(--color-info-600);">
+                                        📄 {{ _("Load Sample") }}
+                                    </button>
+                                </div>
+                                <textarea x-model="forms.import_targets.csv_content"
+                                          rows="8"
+                                          class="w-full px-3 py-2 rounded-lg text-body-sm font-mono"
+                                          style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);"
+                                          placeholder="feature,value,min,max&#10;Gender,Male,3,7&#10;Gender,Female,3,7"></textarea>
+                            </div>
+
+                        {# Warning about replace #}
+                            <div class="mb-4 p-3 rounded-lg" style="background-color: var(--color-warning-100); border: 1px solid var(--color-warning-400);">
+                                <p class="text-body-sm" style="color: var(--color-warning-600);">
+                                    ⚠️ {{ _("This operation always replaces existing targets for the selected assembly.") }}
+                                </p>
+                            </div>
+
+                        {# Action Buttons #}
+                            <div class="flex gap-2 mb-4">
+                                <button @click="executeService('import_targets_from_csv', forms.import_targets)"
+                                        :disabled="loading.import_targets"
+                                        class="px-4 py-2 rounded-lg text-button-lg transition-all"
+                                        style="background-color: var(--color-primary-action); color: var(--color-page-background);">
+                                    <span x-show="!loading.import_targets">▶️ {{ _("Execute") }}</span>
+                                    <span x-show="loading.import_targets">⏳ {{ _("Running...") }}</span>
+                                </button>
+                                <button @click="resetForm('import_targets')"
+                                        class="px-4 py-2 rounded-lg text-button-lg transition-all"
+                                        style="background-color: transparent; color: var(--color-headings); border: 1px solid var(--color-borders-dividers);">
+                                    🔄 {{ _("Reset") }}
+                                </button>
+                            </div>
+
+                        {# Response Display #}
+                            <template x-if="responses.import_targets">
+                                <div class="rounded-lg p-4" :style="responses.import_targets.status === 'success' ? 'background-color: var(--color-success-100); border: 1px solid var(--color-success-400);' : 'background-color: var(--color-error-100); border: 1px solid var(--color-error-400);'">
+                                    <div class="flex items-center justify-between mb-2">
+                                        <span class="text-heading-sm" :style="responses.import_targets.status === 'success' ? 'color: var(--color-success-600);' : 'color: var(--color-error-600);'">
+                                            <span x-text="responses.import_targets.status === 'success' ? '✅ Success' : '❌ Error'"></span>
+                                        </span>
+                                        <button @click="copyToClipboard(JSON.stringify(responses.import_targets, null, 2))"
+                                                class="text-body-sm px-2 py-1 rounded"
+                                                style="background-color: var(--color-page-background);">
+                                            📋 {{ _("Copy JSON") }}
+                                        </button>
+                                    </div>
+                                <pre class="text-body-sm font-mono overflow-x-auto whitespace-pre-wrap" style="color: var(--color-body-text);" x-text="JSON.stringify(responses.import_targets, null, 2)"></pre>
+                                </div>
+                            </template>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+            </div>
+        {% endif %}
+
+        {# ===== CSV CONFIG TAB ===== #}
+        {% if active_tab == 'config' %}
+            <div>
+                <div class="space-y-6">
+                {# get_or_create_csv_config #}
+                    {% call card(title="get_or_create_csv_config()", composed=true) %}
+                        {% call card_body() %}
+                        {# Code Reference #}
+                            <div class="flex items-center justify-between mb-4">
+                                <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                    assembly_service.py:613
+                                </code>
+                                <div class="flex gap-2">
+                                    <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-success-100); color: var(--color-success-600);">
+                                        👁️ can_view_assembly()
+                                    </span>
+                                </div>
+                            </div>
+
+                        {# Description #}
+                            <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                                {{ _("Retrieves existing CSV config or creates a default one if none exists. Safe to call multiple times.") }}
+                            </p>
+
+                        {# Parameters #}
+                            <div class="mb-6">
+                                <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                                <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                    <tbody>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">assembly_id</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UUID</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Target assembly ID</td>
+                                        </tr>
+                                    </tbody>
+                                </table>
+                            </div>
+
+                        {# Returns #}
+                            <div class="mb-6">
+                                <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Returns") }}</h4>
+                                <code class="text-body-sm px-2 py-1 rounded block" style="background-color: var(--color-subtle-background-panels);">
+                                    AssemblyCSV  →  Configuration object with all CSV settings
+                                </code>
+                            </div>
+
+                        {# Try It Section #}
+                            <div class="pt-4" style="border-top: 1px solid var(--color-borders-dividers);">
+                                <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
+                                    <span class="mr-2">🧪</span>{{ _("Try It") }}
+                                </h4>
+
+                                <div class="mb-4">
+                                    <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Assembly") }}</label>
+                                    <select x-model="forms.get_csv_config.assembly_id"
+                                            class="w-full px-3 py-2 rounded-lg text-body-md"
+                                            style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
+                                        <option value="">{{ _("Select an assembly...") }}</option>
+                                        {% for assembly in assemblies %}
+                                            <option value="{{ assembly.id }}">{{ assembly.title }}</option>
+                                        {% endfor %}
+                                    </select>
+                                </div>
+
+                                <div class="flex gap-2 mb-4">
+                                    <button @click="executeService('get_or_create_csv_config', forms.get_csv_config)"
+                                            :disabled="loading.get_csv_config"
+                                            class="px-4 py-2 rounded-lg text-button-lg transition-all"
+                                            style="background-color: var(--color-primary-action); color: var(--color-page-background);">
+                                        <span x-show="!loading.get_csv_config">▶️ {{ _("Execute") }}</span>
+                                        <span x-show="loading.get_csv_config">⏳ {{ _("Running...") }}</span>
+                                    </button>
+                                </div>
+
+                                <template x-if="responses.get_csv_config">
+                                    <div class="rounded-lg p-4" :style="responses.get_csv_config.status === 'success' ? 'background-color: var(--color-success-100); border: 1px solid var(--color-success-400);' : 'background-color: var(--color-error-100); border: 1px solid var(--color-error-400);'">
+                                        <div class="flex items-center justify-between mb-2">
+                                            <span class="text-heading-sm" :style="responses.get_csv_config.status === 'success' ? 'color: var(--color-success-600);' : 'color: var(--color-error-600);'">
+                                                <span x-text="responses.get_csv_config.status === 'success' ? '✅ Success' : '❌ Error'"></span>
+                                            </span>
+                                            <button @click="copyToClipboard(JSON.stringify(responses.get_csv_config, null, 2))"
+                                                    class="text-body-sm px-2 py-1 rounded"
+                                                    style="background-color: var(--color-page-background);">
+                                                📋 {{ _("Copy JSON") }}
+                                            </button>
+                                        </div>
+                                    <pre class="text-body-sm font-mono overflow-x-auto whitespace-pre-wrap" style="color: var(--color-body-text);" x-text="JSON.stringify(responses.get_csv_config, null, 2)"></pre>
+                                    </div>
+                                </template>
+                            </div>
+                        {% endcall %}
+                    {% endcall %}
+
+                {# update_csv_config #}
+                    {% call card(title="update_csv_config()", composed=true) %}
+                        {% call card_body() %}
+                        {# Code Reference #}
+                            <div class="flex items-center justify-between mb-4">
+                                <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                    assembly_service.py:643
+                                </code>
+                                <div class="flex gap-2">
+                                    <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-warning-100); color: var(--color-warning-600);">
+                                        🔒 can_manage_assembly()
+                                    </span>
+                                </div>
+                            </div>
+
+                        {# Description #}
+                            <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                                {{ _("Updates CSV configuration settings. Only provided fields are updated.") }}
+                            </p>
+
+                        {# Parameters #}
+                            <div class="mb-6">
+                                <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                                <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                    <thead style="background-color: var(--color-subtle-background-panels);">
+                                        <tr>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Name</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Type</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">Description</th>
+                                        </tr>
+                                    </thead>
+                                    <tbody>
+                                        <tr><td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">assembly_id</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UUID</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Target assembly</td></tr>
+                                        <tr><td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">id_column</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">str</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Column name for respondent ID</td></tr>
+                                        <tr><td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">check_same_address</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">bool</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Enable address deduplication</td></tr>
+                                        <tr><td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">check_same_address_cols</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">list[str]</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Address columns to check</td></tr>
+                                        <tr><td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">columns_to_keep</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">list[str]</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Columns to preserve in output</td></tr>
+                                        <tr><td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">selection_algorithm</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">str</td><td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Algorithm: "maximin", "random", etc.</td></tr>
+                                        <tr><td class="px-3 py-2 font-mono">settings_confirmed</td><td class="px-3 py-2">bool</td><td class="px-3 py-2">Mark settings as confirmed</td></tr>
+                                    </tbody>
+                                </table>
+                            </div>
+
+                        {# Try It Section #}
+                            <div class="pt-4" style="border-top: 1px solid var(--color-borders-dividers);">
+                                <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
+                                    <span class="mr-2">🧪</span>{{ _("Try It") }}
+                                </h4>
+
+                                <div class="grid grid-cols-1 md:grid-cols-2 gap-4 mb-4">
+                                    <div>
+                                        <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Assembly") }}</label>
+                                        <select x-model="forms.update_csv_config.assembly_id"
+                                                class="w-full px-3 py-2 rounded-lg text-body-md"
+                                                style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
+                                            <option value="">{{ _("Select...") }}</option>
+                                            {% for assembly in assemblies %}
+                                                <option value="{{ assembly.id }}">{{ assembly.title }}</option>
+                                            {% endfor %}
+                                        </select>
+                                    </div>
+                                    <div>
+                                        <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("ID Column") }}</label>
+                                        <input type="text" x-model="forms.update_csv_config.id_column"
+                                               class="w-full px-3 py-2 rounded-lg text-body-md"
+                                               style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);"
+                                               placeholder="external_id">
+                                    </div>
+                                    <div>
+                                        <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Selection Algorithm") }}</label>
+                                        <select x-model="forms.update_csv_config.selection_algorithm"
+                                                class="w-full px-3 py-2 rounded-lg text-body-md"
+                                                style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
+                                            <option value="">{{ _("Select...") }}</option>
+                                            <option value="maximin">maximin</option>
+                                            <option value="random">random</option>
+                                            <option value="legacy">legacy</option>
+                                        </select>
+                                    </div>
+                                    <div class="flex items-center gap-4 pt-6">
+                                        <label class="flex items-center gap-2">
+                                            <input type="checkbox" x-model="forms.update_csv_config.check_same_address"
+                                                   style="accent-color: var(--color-primary-action);">
+                                            <span class="text-body-sm">{{ _("Check same address") }}</span>
+                                        </label>
+                                        <label class="flex items-center gap-2">
+                                            <input type="checkbox" x-model="forms.update_csv_config.settings_confirmed"
+                                                   style="accent-color: var(--color-primary-action);">
+                                            <span class="text-body-sm">{{ _("Settings confirmed") }}</span>
+                                        </label>
+                                    </div>
+                                </div>
+
+                                <div class="flex gap-2 mb-4">
+                                    <button @click="executeService('update_csv_config', forms.update_csv_config)"
+                                            :disabled="loading.update_csv_config"
+                                            class="px-4 py-2 rounded-lg text-button-lg transition-all"
+                                            style="background-color: var(--color-primary-action); color: var(--color-page-background);">
+                                        <span x-show="!loading.update_csv_config">▶️ {{ _("Execute") }}</span>
+                                        <span x-show="loading.update_csv_config">⏳ {{ _("Running...") }}</span>
+                                    </button>
+                                    <button @click="resetForm('update_csv_config')"
+                                            class="px-4 py-2 rounded-lg text-button-lg transition-all"
+                                            style="background-color: transparent; color: var(--color-headings); border: 1px solid var(--color-borders-dividers);">
+                                        🔄 {{ _("Reset") }}
+                                    </button>
+                                </div>
+
+                                <template x-if="responses.update_csv_config">
+                                    <div class="rounded-lg p-4" :style="responses.update_csv_config.status === 'success' ? 'background-color: var(--color-success-100); border: 1px solid var(--color-success-400);' : 'background-color: var(--color-error-100); border: 1px solid var(--color-error-400);'">
+                                        <div class="flex items-center justify-between mb-2">
+                                            <span class="text-heading-sm" :style="responses.update_csv_config.status === 'success' ? 'color: var(--color-success-600);' : 'color: var(--color-error-600);'">
+                                                <span x-text="responses.update_csv_config.status === 'success' ? '✅ Success' : '❌ Error'"></span>
+                                            </span>
+                                            <button @click="copyToClipboard(JSON.stringify(responses.update_csv_config, null, 2))"
+                                                    class="text-body-sm px-2 py-1 rounded"
+                                                    style="background-color: var(--color-page-background);">
+                                                📋 {{ _("Copy JSON") }}
+                                            </button>
+                                        </div>
+                                    <pre class="text-body-sm font-mono overflow-x-auto whitespace-pre-wrap" style="color: var(--color-body-text);" x-text="JSON.stringify(responses.update_csv_config, null, 2)"></pre>
+                                    </div>
+                                </template>
+                            </div>
+                        {% endcall %}
+                    {% endcall %}
+                </div>
+            </div>
+        {% endif %}
+
+        {# Toast Notification #}
+        <div x-cloak x-show="toast.show" x-transition
+             class="fixed bottom-4 right-4 z-50 px-4 py-3 rounded-lg shadow-lg"
+             :style="toast.type === 'success' ? 'background-color: var(--color-success-100); border: 1px solid var(--color-success-400); color: var(--color-success-600);' : 'background-color: var(--color-info-100); border: 1px solid var(--color-info-400); color: var(--color-info-600);'">
+            <span x-text="toast.message"></span>
+        </div>
+    </div>
+
+    <script nonce="{{ csp_nonce }}">
+        function serviceDocsController() {
+            return {
+                toast: { show: false, message: '', type: 'info' },
+
+            // Form state for each service
+                forms: {
+                    import_respondents: {
+                        assembly_id: '',
+                        csv_content: '',
+                        replace_existing: false,
+                        id_column: ''
+                    },
+                    import_targets: {
+                        assembly_id: '',
+                        csv_content: '',
+                        replace_existing: true
+                    },
+                    get_csv_config: {
+                        assembly_id: ''
+                    },
+                    update_csv_config: {
+                        assembly_id: '',
+                        id_column: '',
+                        check_same_address: true,
+                        selection_algorithm: '',
+                        settings_confirmed: false
+                    }
+                },
+
+            // Loading state for each service
+                loading: {
+                    import_respondents: false,
+                    import_targets: false,
+                    get_csv_config: false,
+                    update_csv_config: false
+                },
+
+            // Response data for each service
+                responses: {
+                    import_respondents: null,
+                    import_targets: null,
+                    get_csv_config: null,
+                    update_csv_config: null
+                },
+
+            // Sample data for each service
+                sampleData: {
+                    import_respondents: `external_id,name,email,gender,age_group,consent,eligible
+R001,Alice Smith,alice@example.com,Female,18-30,true,true
+R002,Bob Johnson,bob@example.com,Male,31-50,true,true
+R003,Carol Williams,carol@example.com,Female,51+,true,true
+R004,David Brown,david@example.com,Male,18-30,true,true
+R005,Eve Davis,eve@example.com,Female,31-50,true,true`,
+                    import_targets: `feature,value,min,max,min_flex,max_flex
+Gender,Male,3,7,0,2
+Gender,Female,3,7,0,2
+Age,18-30,2,5,1,1
+Age,31-50,2,5,1,1
+Age,51+,2,5,1,1`
+                },
+
+                loadSampleData(formKey) {
+                    if (formKey === 'import_respondents') {
+                        this.forms.import_respondents.csv_content = this.sampleData.import_respondents;
+                    } else if (formKey === 'import_targets') {
+                        this.forms.import_targets.csv_content = this.sampleData.import_targets;
+                    }
+                    this.showToast('Sample data loaded', 'success');
+                },
+
+                resetForm(formKey) {
+                    if (formKey === 'import_respondents') {
+                        this.forms.import_respondents = {
+                            assembly_id: '',
+                            csv_content: '',
+                            replace_existing: false,
+                            id_column: ''
+                        };
+                        this.responses.import_respondents = null;
+                    } else if (formKey === 'import_targets') {
+                        this.forms.import_targets = {
+                            assembly_id: '',
+                            csv_content: '',
+                            replace_existing: true
+                        };
+                        this.responses.import_targets = null;
+                    } else if (formKey === 'update_csv_config') {
+                        this.forms.update_csv_config = {
+                            assembly_id: '',
+                            id_column: '',
+                            check_same_address: true,
+                            selection_algorithm: '',
+                            settings_confirmed: false
+                        };
+                        this.responses.update_csv_config = null;
+                    }
+                },
+
+                async executeService(serviceName, params) {
+                // Map service name to loading/response key
+                    const keyMap = {
+                        'import_respondents_from_csv': 'import_respondents',
+                        'import_targets_from_csv': 'import_targets',
+                        'get_or_create_csv_config': 'get_csv_config',
+                        'update_csv_config': 'update_csv_config'
+                    };
+                    const key = keyMap[serviceName];
+
+                // Validate required fields
+                    if (!params.assembly_id) {
+                        this.responses[key] = { status: 'error', error: 'Please select an assembly', error_type: 'ValidationError' };
+                        return;
+                    }
+
+                    this.loading[key] = true;
+                    this.responses[key] = null;
+
+                    try {
+                        const response = await fetch('{{ url_for("backoffice.service_docs_execute") }}', {
+                            method: 'POST',
+                            headers: {
+                                'Content-Type': 'application/json',
+                            },
+                            body: JSON.stringify({
+                                service: serviceName,
+                                params: params
+                            })
+                        });
+
+                        const data = await response.json();
+                        this.responses[key] = data;
+
+                        if (data.status === 'success') {
+                            this.showToast('Service executed successfully', 'success');
+                        }
+                    } catch (error) {
+                        this.responses[key] = {
+                            status: 'error',
+                            error: error.message,
+                            error_type: 'NetworkError'
+                        };
+                    } finally {
+                        this.loading[key] = false;
+                    }
+                },
+
+                async copyToClipboard(text) {
+                    try {
+                        await navigator.clipboard.writeText(text);
+                        this.showToast('Copied to clipboard!', 'success');
+                    } catch (err) {
+                        this.showToast('Failed to copy', 'error');
+                    }
+                },
+
+                showToast(message, type = 'info') {
+                    this.toast = { show: true, message, type };
+                    setTimeout(() => {
+                        this.toast.show = false;
+                    }, 3000);
+                }
+            };
+        }
+    </script>
+{% endblock %}
diff --git a/backend/tests/bdd/test_backoffice.py b/backend/tests/bdd/test_backoffice.py
index 33c2b875..14cd6a9f 100644
--- a/backend/tests/bdd/test_backoffice.py
+++ b/backend/tests/bdd/test_backoffice.py
@@ -20,6 +20,7 @@
 scenarios("../../features/backoffice-assembly.feature")
 scenarios("../../features/backoffice-assembly-members.feature")
 scenarios("../../features/backoffice-assembly-gsheet.feature")
+scenarios("../../features/backoffice-csv-upload.feature")
 
 
 # Store assembly data between steps
@@ -1112,3 +1113,28 @@ def try_access_assembly_selection_page(page: Page, title: str, test_database):
 def see_assembly_selection_page(page: Page):
     """Verify we're on the assembly selection page."""
     expect(page).to_have_url(re.compile(r".*/backoffice/assembly/.*/selection"))
+
+
+# CSV Upload Tests
+
+
+@then(parsers.parse('I should see a "{tab_name}" tab in the assembly navigation'))
+def see_tab_in_navigation(page: Page, tab_name: str):
+    """Verify a specific tab is visible in the assembly navigation."""
+    tab = page.locator("nav[aria-label] a, nav[aria-label] span").filter(has_text=tab_name)
+    expect(tab).to_be_visible()
+
+
+@then(parsers.parse('the "{tab_name}" tab should be disabled'))
+def tab_should_be_disabled(page: Page, tab_name: str):
+    """Verify a specific tab is disabled (shown as span, not a link)."""
+    # Disabled tabs are rendered as spans with data-disabled attribute, not links
+    disabled_tab = page.locator("nav[aria-label] span[data-disabled='true']").filter(has_text=tab_name)
+    expect(disabled_tab).to_be_visible()
+
+
+@then(parsers.parse('I should not see a "{tab_name}" tab in the assembly navigation'))
+def should_not_see_tab_in_navigation(page: Page, tab_name: str):
+    """Verify a specific tab is not visible in the assembly navigation."""
+    tab = page.locator("nav[aria-label] a, nav[aria-label] span").filter(has_text=tab_name)
+    expect(tab).to_have_count(0)

From 9bbe2ada64a795ad7758364b8e060921b077600e Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 20 Mar 2026 15:41:53 +0100
Subject: [PATCH 02/31] Fix Alpine.js CSP compatibility in service docs page

- Replace nested x-model paths with flat properties (CSP build limitation)
- Update execute/reset/sample loader methods to use flat properties
- Add X-CSRFToken header to fetch request for CSRF protection
- Add x-cloak to loading spinners to prevent flash

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../templates/backoffice/service_docs.html    | 236 +++++++++++-------
 1 file changed, 140 insertions(+), 96 deletions(-)

diff --git a/backend/templates/backoffice/service_docs.html b/backend/templates/backoffice/service_docs.html
index 5d5a69eb..84bbfae5 100644
--- a/backend/templates/backoffice/service_docs.html
+++ b/backend/templates/backoffice/service_docs.html
@@ -64,7 +64,7 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">
                                 <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-warning-100); color: var(--color-warning-600);">
                                     🔒 can_manage_assembly()
                                 </span>
-                                <button @click="copyToClipboard('respondent_service.py:63')"
+                                <button @click="copyRespondentServiceRef()"
                                         class="text-body-sm px-2 py-1 rounded transition-colors"
                                         style="background-color: var(--color-subtle-background-panels);">
                                     📋 Copy
@@ -147,7 +147,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                         {# Assembly Select #}
                             <div class="mb-4">
                                 <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Assembly") }}</label>
-                                <select x-model="forms.import_respondents.assembly_id"
+                                <select x-model="importRespondentsAssemblyId"
                                         class="w-full px-3 py-2 rounded-lg text-body-md"
                                         style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
                                     <option value="">{{ _("Select an assembly...") }}</option>
@@ -161,13 +161,13 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                             <div class="mb-4">
                                 <div class="flex items-center justify-between mb-1">
                                     <label class="text-label-md" style="color: var(--color-headings);">{{ _("CSV Content") }}</label>
-                                    <button @click="loadSampleData('import_respondents')"
+                                    <button @click="loadRespondentsSample()"
                                             class="text-body-sm px-2 py-1 rounded transition-colors"
                                             style="background-color: var(--color-info-100); color: var(--color-info-600);">
                                         📄 {{ _("Load Sample") }}
                                     </button>
                                 </div>
-                                <textarea x-model="forms.import_respondents.csv_content"
+                                <textarea x-model="importRespondentsCsvContent"
                                           rows="8"
                                           class="w-full px-3 py-2 rounded-lg text-body-sm font-mono"
                                           style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);"
@@ -177,7 +177,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                         {# Options Row #}
                             <div class="flex gap-4 mb-4">
                                 <div class="flex items-center gap-2">
-                                    <input type="checkbox" x-model="forms.import_respondents.replace_existing" id="resp_replace"
+                                    <input type="checkbox" x-model="importRespondentsReplaceExisting" id="resp_replace"
                                            class="rounded" style="accent-color: var(--color-primary-action);">
                                     <label for="resp_replace" class="text-body-sm" style="color: var(--color-body-text);">
                                         {{ _("Replace existing") }}
@@ -185,7 +185,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                     </label>
                                 </div>
                                 <div class="flex-1">
-                                    <input type="text" x-model="forms.import_respondents.id_column"
+                                    <input type="text" x-model="importRespondentsIdColumn"
                                            class="w-full px-3 py-2 rounded-lg text-body-sm"
                                            style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);"
                                            placeholder="{{ _('ID Column (leave empty for first column)') }}">
@@ -194,14 +194,14 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
 
                         {# Action Buttons #}
                             <div class="flex gap-2 mb-4">
-                                <button @click="executeService('import_respondents_from_csv', forms.import_respondents)"
+                                <button @click="executeImportRespondents()"
                                         :disabled="loading.import_respondents"
                                         class="px-4 py-2 rounded-lg text-button-lg transition-all"
                                         style="background-color: var(--color-primary-action); color: var(--color-page-background);">
                                     <span x-show="!loading.import_respondents">▶️ {{ _("Execute") }}</span>
-                                    <span x-show="loading.import_respondents">⏳ {{ _("Running...") }}</span>
+                                    <span x-cloak x-show="loading.import_respondents">⏳ {{ _("Running...") }}</span>
                                 </button>
-                                <button @click="resetForm('import_respondents')"
+                                <button @click="resetImportRespondents()"
                                         class="px-4 py-2 rounded-lg text-button-lg transition-all"
                                         style="background-color: transparent; color: var(--color-headings); border: 1px solid var(--color-borders-dividers);">
                                     🔄 {{ _("Reset") }}
@@ -215,7 +215,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                         <span class="text-heading-sm" :style="responses.import_respondents.status === 'success' ? 'color: var(--color-success-600);' : 'color: var(--color-error-600);'">
                                             <span x-text="responses.import_respondents.status === 'success' ? '✅ Success' : '❌ Error'"></span>
                                         </span>
-                                        <button @click="copyToClipboard(JSON.stringify(responses.import_respondents, null, 2))"
+                                        <button @click="copyImportRespondentsResponse()"
                                                 class="text-body-sm px-2 py-1 rounded"
                                                 style="background-color: var(--color-page-background);">
                                             📋 {{ _("Copy JSON") }}
@@ -245,7 +245,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                 <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-warning-100); color: var(--color-warning-600);">
                                     🔒 can_manage_assembly()
                                 </span>
-                                <button @click="copyToClipboard('assembly_service.py:501')"
+                                <button @click="copyAssemblyServiceTargetsRef()"
                                         class="text-body-sm px-2 py-1 rounded transition-colors"
                                         style="background-color: var(--color-subtle-background-panels);">
                                     📋 Copy
@@ -323,7 +323,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                         {# Assembly Select #}
                             <div class="mb-4">
                                 <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Assembly") }}</label>
-                                <select x-model="forms.import_targets.assembly_id"
+                                <select x-model="importTargetsAssemblyId"
                                         class="w-full px-3 py-2 rounded-lg text-body-md"
                                         style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
                                     <option value="">{{ _("Select an assembly...") }}</option>
@@ -337,13 +337,13 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                             <div class="mb-4">
                                 <div class="flex items-center justify-between mb-1">
                                     <label class="text-label-md" style="color: var(--color-headings);">{{ _("CSV Content") }}</label>
-                                    <button @click="loadSampleData('import_targets')"
+                                    <button @click="loadTargetsSample()"
                                             class="text-body-sm px-2 py-1 rounded transition-colors"
                                             style="background-color: var(--color-info-100); color: var(--color-info-600);">
                                         📄 {{ _("Load Sample") }}
                                     </button>
                                 </div>
-                                <textarea x-model="forms.import_targets.csv_content"
+                                <textarea x-model="importTargetsCsvContent"
                                           rows="8"
                                           class="w-full px-3 py-2 rounded-lg text-body-sm font-mono"
                                           style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);"
@@ -359,14 +359,14 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
 
                         {# Action Buttons #}
                             <div class="flex gap-2 mb-4">
-                                <button @click="executeService('import_targets_from_csv', forms.import_targets)"
+                                <button @click="executeImportTargets()"
                                         :disabled="loading.import_targets"
                                         class="px-4 py-2 rounded-lg text-button-lg transition-all"
                                         style="background-color: var(--color-primary-action); color: var(--color-page-background);">
                                     <span x-show="!loading.import_targets">▶️ {{ _("Execute") }}</span>
-                                    <span x-show="loading.import_targets">⏳ {{ _("Running...") }}</span>
+                                    <span x-cloak x-show="loading.import_targets">⏳ {{ _("Running...") }}</span>
                                 </button>
-                                <button @click="resetForm('import_targets')"
+                                <button @click="resetImportTargets()"
                                         class="px-4 py-2 rounded-lg text-button-lg transition-all"
                                         style="background-color: transparent; color: var(--color-headings); border: 1px solid var(--color-borders-dividers);">
                                     🔄 {{ _("Reset") }}
@@ -380,7 +380,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                         <span class="text-heading-sm" :style="responses.import_targets.status === 'success' ? 'color: var(--color-success-600);' : 'color: var(--color-error-600);'">
                                             <span x-text="responses.import_targets.status === 'success' ? '✅ Success' : '❌ Error'"></span>
                                         </span>
-                                        <button @click="copyToClipboard(JSON.stringify(responses.import_targets, null, 2))"
+                                        <button @click="copyImportTargetsResponse()"
                                                 class="text-body-sm px-2 py-1 rounded"
                                                 style="background-color: var(--color-page-background);">
                                             📋 {{ _("Copy JSON") }}
@@ -450,7 +450,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
 
                                 <div class="mb-4">
                                     <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Assembly") }}</label>
-                                    <select x-model="forms.get_csv_config.assembly_id"
+                                    <select x-model="getCsvConfigAssemblyId"
                                             class="w-full px-3 py-2 rounded-lg text-body-md"
                                             style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
                                         <option value="">{{ _("Select an assembly...") }}</option>
@@ -461,12 +461,12 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                 </div>
 
                                 <div class="flex gap-2 mb-4">
-                                    <button @click="executeService('get_or_create_csv_config', forms.get_csv_config)"
+                                    <button @click="executeGetCsvConfig()"
                                             :disabled="loading.get_csv_config"
                                             class="px-4 py-2 rounded-lg text-button-lg transition-all"
                                             style="background-color: var(--color-primary-action); color: var(--color-page-background);">
                                         <span x-show="!loading.get_csv_config">▶️ {{ _("Execute") }}</span>
-                                        <span x-show="loading.get_csv_config">⏳ {{ _("Running...") }}</span>
+                                        <span x-cloak x-show="loading.get_csv_config">⏳ {{ _("Running...") }}</span>
                                     </button>
                                 </div>
 
@@ -476,7 +476,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                             <span class="text-heading-sm" :style="responses.get_csv_config.status === 'success' ? 'color: var(--color-success-600);' : 'color: var(--color-error-600);'">
                                                 <span x-text="responses.get_csv_config.status === 'success' ? '✅ Success' : '❌ Error'"></span>
                                             </span>
-                                            <button @click="copyToClipboard(JSON.stringify(responses.get_csv_config, null, 2))"
+                                            <button @click="copyGetCsvConfigResponse()"
                                                     class="text-body-sm px-2 py-1 rounded"
                                                     style="background-color: var(--color-page-background);">
                                                 📋 {{ _("Copy JSON") }}
@@ -541,7 +541,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                 <div class="grid grid-cols-1 md:grid-cols-2 gap-4 mb-4">
                                     <div>
                                         <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Assembly") }}</label>
-                                        <select x-model="forms.update_csv_config.assembly_id"
+                                        <select x-model="updateCsvConfigAssemblyId"
                                                 class="w-full px-3 py-2 rounded-lg text-body-md"
                                                 style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
                                             <option value="">{{ _("Select...") }}</option>
@@ -552,14 +552,14 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                     </div>
                                     <div>
                                         <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("ID Column") }}</label>
-                                        <input type="text" x-model="forms.update_csv_config.id_column"
+                                        <input type="text" x-model="updateCsvConfigIdColumn"
                                                class="w-full px-3 py-2 rounded-lg text-body-md"
                                                style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);"
                                                placeholder="external_id">
                                     </div>
                                     <div>
                                         <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Selection Algorithm") }}</label>
-                                        <select x-model="forms.update_csv_config.selection_algorithm"
+                                        <select x-model="updateCsvConfigAlgorithm"
                                                 class="w-full px-3 py-2 rounded-lg text-body-md"
                                                 style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
                                             <option value="">{{ _("Select...") }}</option>
@@ -570,12 +570,12 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                     </div>
                                     <div class="flex items-center gap-4 pt-6">
                                         <label class="flex items-center gap-2">
-                                            <input type="checkbox" x-model="forms.update_csv_config.check_same_address"
+                                            <input type="checkbox" x-model="updateCsvConfigCheckSameAddress"
                                                    style="accent-color: var(--color-primary-action);">
                                             <span class="text-body-sm">{{ _("Check same address") }}</span>
                                         </label>
                                         <label class="flex items-center gap-2">
-                                            <input type="checkbox" x-model="forms.update_csv_config.settings_confirmed"
+                                            <input type="checkbox" x-model="updateCsvConfigSettingsConfirmed"
                                                    style="accent-color: var(--color-primary-action);">
                                             <span class="text-body-sm">{{ _("Settings confirmed") }}</span>
                                         </label>
@@ -583,14 +583,14 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                 </div>
 
                                 <div class="flex gap-2 mb-4">
-                                    <button @click="executeService('update_csv_config', forms.update_csv_config)"
+                                    <button @click="executeUpdateCsvConfig()"
                                             :disabled="loading.update_csv_config"
                                             class="px-4 py-2 rounded-lg text-button-lg transition-all"
                                             style="background-color: var(--color-primary-action); color: var(--color-page-background);">
                                         <span x-show="!loading.update_csv_config">▶️ {{ _("Execute") }}</span>
-                                        <span x-show="loading.update_csv_config">⏳ {{ _("Running...") }}</span>
+                                        <span x-cloak x-show="loading.update_csv_config">⏳ {{ _("Running...") }}</span>
                                     </button>
-                                    <button @click="resetForm('update_csv_config')"
+                                    <button @click="resetUpdateCsvConfig()"
                                             class="px-4 py-2 rounded-lg text-button-lg transition-all"
                                             style="background-color: transparent; color: var(--color-headings); border: 1px solid var(--color-borders-dividers);">
                                         🔄 {{ _("Reset") }}
@@ -603,7 +603,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                                             <span class="text-heading-sm" :style="responses.update_csv_config.status === 'success' ? 'color: var(--color-success-600);' : 'color: var(--color-error-600);'">
                                                 <span x-text="responses.update_csv_config.status === 'success' ? '✅ Success' : '❌ Error'"></span>
                                             </span>
-                                            <button @click="copyToClipboard(JSON.stringify(responses.update_csv_config, null, 2))"
+                                            <button @click="copyUpdateCsvConfigResponse()"
                                                     class="text-body-sm px-2 py-1 rounded"
                                                     style="background-color: var(--color-page-background);">
                                                 📋 {{ _("Copy JSON") }}
@@ -628,34 +628,28 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
     </div>
 
     <script nonce="{{ csp_nonce }}">
-        function serviceDocsController() {
-            return {
+        // Register component with Alpine before initialization
+        document.addEventListener('alpine:init', () => {
+            Alpine.data('serviceDocsController', () => ({
                 toast: { show: false, message: '', type: 'info' },
 
-            // Form state for each service
-                forms: {
-                    import_respondents: {
-                        assembly_id: '',
-                        csv_content: '',
-                        replace_existing: false,
-                        id_column: ''
-                    },
-                    import_targets: {
-                        assembly_id: '',
-                        csv_content: '',
-                        replace_existing: true
-                    },
-                    get_csv_config: {
-                        assembly_id: ''
-                    },
-                    update_csv_config: {
-                        assembly_id: '',
-                        id_column: '',
-                        check_same_address: true,
-                        selection_algorithm: '',
-                        settings_confirmed: false
-                    }
-                },
+                // Flat form properties for CSP-compatible Alpine.js (x-model cannot use nested paths)
+                // Import Respondents form
+                importRespondentsAssemblyId: '',
+                importRespondentsCsvContent: '',
+                importRespondentsReplaceExisting: false,
+                importRespondentsIdColumn: '',
+                // Import Targets form
+                importTargetsAssemblyId: '',
+                importTargetsCsvContent: '',
+                // Get CSV Config form
+                getCsvConfigAssemblyId: '',
+                // Update CSV Config form
+                updateCsvConfigAssemblyId: '',
+                updateCsvConfigIdColumn: '',
+                updateCsvConfigCheckSameAddress: true,
+                updateCsvConfigAlgorithm: '',
+                updateCsvConfigSettingsConfirmed: false,
 
             // Loading state for each service
                 loading: {
@@ -689,43 +683,6 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
 Age,51+,2,5,1,1`
                 },
 
-                loadSampleData(formKey) {
-                    if (formKey === 'import_respondents') {
-                        this.forms.import_respondents.csv_content = this.sampleData.import_respondents;
-                    } else if (formKey === 'import_targets') {
-                        this.forms.import_targets.csv_content = this.sampleData.import_targets;
-                    }
-                    this.showToast('Sample data loaded', 'success');
-                },
-
-                resetForm(formKey) {
-                    if (formKey === 'import_respondents') {
-                        this.forms.import_respondents = {
-                            assembly_id: '',
-                            csv_content: '',
-                            replace_existing: false,
-                            id_column: ''
-                        };
-                        this.responses.import_respondents = null;
-                    } else if (formKey === 'import_targets') {
-                        this.forms.import_targets = {
-                            assembly_id: '',
-                            csv_content: '',
-                            replace_existing: true
-                        };
-                        this.responses.import_targets = null;
-                    } else if (formKey === 'update_csv_config') {
-                        this.forms.update_csv_config = {
-                            assembly_id: '',
-                            id_column: '',
-                            check_same_address: true,
-                            selection_algorithm: '',
-                            settings_confirmed: false
-                        };
-                        this.responses.update_csv_config = null;
-                    }
-                },
-
                 async executeService(serviceName, params) {
                 // Map service name to loading/response key
                     const keyMap = {
@@ -750,6 +707,7 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                             method: 'POST',
                             headers: {
                                 'Content-Type': 'application/json',
+                                'X-CSRFToken': '{{ csrf_token() }}'
                             },
                             body: JSON.stringify({
                                 service: serviceName,
@@ -788,8 +746,94 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
                     setTimeout(() => {
                         this.toast.show = false;
                     }, 3000);
+                },
+
+                // Specific execute methods for CSP-compatible Alpine.js (no string arguments)
+                // Build params from flat properties
+                executeImportRespondents() {
+                    this.executeService('import_respondents_from_csv', {
+                        assembly_id: this.importRespondentsAssemblyId,
+                        csv_content: this.importRespondentsCsvContent,
+                        replace_existing: this.importRespondentsReplaceExisting,
+                        id_column: this.importRespondentsIdColumn
+                    });
+                },
+                executeImportTargets() {
+                    this.executeService('import_targets_from_csv', {
+                        assembly_id: this.importTargetsAssemblyId,
+                        csv_content: this.importTargetsCsvContent,
+                        replace_existing: true
+                    });
+                },
+                executeGetCsvConfig() {
+                    this.executeService('get_or_create_csv_config', {
+                        assembly_id: this.getCsvConfigAssemblyId
+                    });
+                },
+                executeUpdateCsvConfig() {
+                    this.executeService('update_csv_config', {
+                        assembly_id: this.updateCsvConfigAssemblyId,
+                        id_column: this.updateCsvConfigIdColumn,
+                        check_same_address: this.updateCsvConfigCheckSameAddress,
+                        selection_algorithm: this.updateCsvConfigAlgorithm,
+                        settings_confirmed: this.updateCsvConfigSettingsConfirmed
+                    });
+                },
+
+                // Specific reset methods - reset flat properties
+                resetImportRespondents() {
+                    this.importRespondentsAssemblyId = '';
+                    this.importRespondentsCsvContent = '';
+                    this.importRespondentsReplaceExisting = false;
+                    this.importRespondentsIdColumn = '';
+                    this.responses.import_respondents = null;
+                },
+                resetImportTargets() {
+                    this.importTargetsAssemblyId = '';
+                    this.importTargetsCsvContent = '';
+                    this.responses.import_targets = null;
+                },
+                resetUpdateCsvConfig() {
+                    this.updateCsvConfigAssemblyId = '';
+                    this.updateCsvConfigIdColumn = '';
+                    this.updateCsvConfigCheckSameAddress = true;
+                    this.updateCsvConfigAlgorithm = '';
+                    this.updateCsvConfigSettingsConfirmed = false;
+                    this.responses.update_csv_config = null;
+                },
+
+                // Specific sample data loaders - use flat properties
+                loadRespondentsSample() {
+                    this.importRespondentsCsvContent = this.sampleData.import_respondents;
+                    this.showToast('Sample data loaded', 'success');
+                },
+                loadTargetsSample() {
+                    this.importTargetsCsvContent = this.sampleData.import_targets;
+                    this.showToast('Sample data loaded', 'success');
+                },
+
+                // Copy response JSON
+                copyImportRespondentsResponse() {
+                    this.copyToClipboard(JSON.stringify(this.responses.import_respondents, null, 2));
+                },
+                copyImportTargetsResponse() {
+                    this.copyToClipboard(JSON.stringify(this.responses.import_targets, null, 2));
+                },
+                copyGetCsvConfigResponse() {
+                    this.copyToClipboard(JSON.stringify(this.responses.get_csv_config, null, 2));
+                },
+                copyUpdateCsvConfigResponse() {
+                    this.copyToClipboard(JSON.stringify(this.responses.update_csv_config, null, 2));
+                },
+
+                // Copy code references
+                copyRespondentServiceRef() {
+                    this.copyToClipboard('respondent_service.py:63');
+                },
+                copyAssemblyServiceTargetsRef() {
+                    this.copyToClipboard('assembly_service.py:501');
                 }
-            };
-        }
+            }));
+        });
     </script>
 {% endblock %}

From 7288758a33469d80e115520a7911b83b97341d99 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 20 Mar 2026 18:10:13 +0100
Subject: [PATCH 03/31] Add frontend patterns documentation page

- Create /backoffice/dev/patterns route for interactive pattern docs
- Add patterns.html with dropdown pattern examples (URL select, inline state)
- Include live examples, code snippets, CSP notes, and implementation index
- Update AGENTS.md with Alpine.js CSP constraints reference

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/AGENTS.md                             |   8 +
 .../entrypoints/blueprints/backoffice.py      |  34 ++
 backend/templates/backoffice/patterns.html    | 391 ++++++++++++++++++
 3 files changed, 433 insertions(+)
 create mode 100644 backend/templates/backoffice/patterns.html

diff --git a/backend/AGENTS.md b/backend/AGENTS.md
index d9e7ab80..a96ecda4 100644
--- a/backend/AGENTS.md
+++ b/backend/AGENTS.md
@@ -246,3 +246,11 @@ When working on frontend issues, see:
 - [GOV.UK Components](docs/agent/govuk_components.md) - Component usage and HTML examples
 - [Frontend Testing](docs/agent/frontend_testing.md) - Playwright MCP debugging workflows
 - [Migration Notes](docs/agent/migration_notes.md) - Bootstrap to GOV.UK conversion guide
+
+**IMPORTANT - Before implementing Alpine.js components:**
+
+Check the interactive patterns documentation at `/backoffice/dev/patterns` (dev only) or read the template at `templates/backoffice/patterns.html`. This documents CSP-compatible patterns for dropdowns, forms, and AJAX with working examples and links to existing implementations. Key constraints:
+
+- `x-model` must use flat properties (`x-model="selected"` not `x-model="form.field"`)
+- `@click` handlers cannot have string arguments (`@click="doThing()"` not `@click="doThing('arg')"`)
+- AJAX requests must include `X-CSRFToken` header
diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index f66fb5b3..79197895 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -755,3 +755,37 @@ def _execute_service(service_name: str, params: dict[str, Any]) -> dict[str, Any
 
     uow = bootstrap.bootstrap()
     return handler(uow, params)
+
+
+# =============================================================================
+# Frontend Patterns Documentation (Admin-only developer tools)
+# =============================================================================
+
+
+@backoffice_bp.route("/dev/patterns")
+@login_required
+def patterns() -> ResponseReturnValue:
+    """Interactive frontend patterns documentation page.
+
+    Admin-only page that documents Alpine.js patterns, form handling,
+    and other frontend patterns used in the backoffice.
+    Disabled in production for security.
+    """
+    if config.is_production():
+        abort(404)
+
+    if not has_global_admin(current_user):
+        flash(_("You don't have permission to access developer tools"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+
+    # Get active tab from query parameter, default to 'dropdown'
+    active_tab = request.args.get("tab", "dropdown")
+    valid_tabs = ["dropdown", "form", "ajax"]
+    if active_tab not in valid_tabs:
+        active_tab = "dropdown"
+
+    # Get assemblies for live examples
+    uow = bootstrap.bootstrap()
+    assemblies = get_user_assemblies(uow, current_user.id)
+
+    return render_template("backoffice/patterns.html", assemblies=assemblies, active_tab=active_tab), 200
diff --git a/backend/templates/backoffice/patterns.html b/backend/templates/backoffice/patterns.html
new file mode 100644
index 00000000..28a12034
--- /dev/null
+++ b/backend/templates/backoffice/patterns.html
@@ -0,0 +1,391 @@
+{#
+ABOUTME: Interactive frontend patterns documentation page
+ABOUTME: Documents Alpine.js patterns, form handling, and AJAX with live examples and code
+#}
+{% extends "backoffice/base_page.html" %}
+
+{% from "backoffice/components/breadcrumbs.html" import breadcrumbs %}
+{% from "backoffice/components/card.html" import card, card_body %}
+{% from "backoffice/components/tabs.html" import tabs %}
+
+{% block title %}{{ _("Frontend Patterns") }}{% endblock %}
+
+{% block breadcrumb_section %}
+    <div class="mb-6">
+        {{ breadcrumbs([
+        {"label": _("Dashboard"), "href": url_for('backoffice.dashboard')},
+        {"label": _("Developer Tools")},
+        {"label": _("Patterns")}
+        ]) }}
+    </div>
+{% endblock %}
+
+{% block page_content %}
+    <div x-data="patternsController()" x-cloak>
+        {# Page Header #}
+        <div class="mb-8">
+            <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">
+                <span class="mr-2">🎨</span>{{ _("Frontend Patterns") }}
+            </h1>
+            <p class="text-body-lg" style="color: var(--color-secondary-text);">
+                {{ _("Living documentation for Alpine.js patterns used in the backoffice. Each pattern includes working examples, code snippets, and links to implementations.") }}
+            </p>
+            <p class="text-body-sm mt-2" style="color: var(--color-info-600);">
+                <span class="font-semibold">💡 {{ _("Tip") }}:</span>
+                {{ _("These patterns are CSP-compatible and work with the Alpine.js CSP build.") }}
+            </p>
+        </div>
+
+        {# Tabs for pattern categories #}
+        {{ tabs(
+        items=[
+        {"label": _("Dropdown"), "href": url_for('backoffice.patterns', tab='dropdown'), "active": active_tab == 'dropdown'},
+        {"label": _("Form State"), "href": url_for('backoffice.patterns', tab='form'), "active": active_tab == 'form'},
+        {"label": _("AJAX"), "href": url_for('backoffice.patterns', tab='ajax'), "active": active_tab == 'ajax'}
+        ],
+        aria_label=_("Pattern categories")
+        ) }}
+
+        {# ===== DROPDOWN PATTERN ===== #}
+        {% if active_tab == 'dropdown' %}
+            <div class="space-y-6">
+                {# URL Select Pattern #}
+                {% call card(title="URL Select (Navigation Dropdown)", composed=true) %}
+                    {% call card_body() %}
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("A dropdown that navigates to a URL when selection changes. Uses the reusable <code>urlSelect</code> Alpine component with focus restoration for keyboard users.") | safe }}
+                        </p>
+
+                        {# When to Use #}
+                        <div class="mb-6 p-4 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("When to Use") }}</h4>
+                            <ul class="list-disc list-inside text-body-sm space-y-1" style="color: var(--color-body-text);">
+                                <li>{{ _("Dropdown selection triggers a page navigation/reload") }}</li>
+                                <li>{{ _("Value is passed as URL query parameter") }}</li>
+                                <li>{{ _("Server-side rendering based on selection") }}</li>
+                            </ul>
+                        </div>
+
+                        {# Live Example #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
+                                <span class="mr-2">🧪</span>{{ _("Live Example") }}
+                            </h4>
+                            <div class="p-4 rounded-lg" style="background-color: var(--color-subtle-background-panels); border: 1px solid var(--color-borders-dividers);">
+                                <div class="max-w-md"
+                                     x-data="urlSelect({ baseUrl: '{{ url_for('backoffice.patterns', tab='dropdown') }}', paramName: 'demo', initialValue: '{{ request.args.get('demo', '') }}' })">
+                                    <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Select an option") }}</label>
+                                    <select x-model="selected"
+                                            @change="navigate($event)"
+                                            data-focus-id="demo-select"
+                                            class="w-full px-3 py-2 rounded-lg text-body-md"
+                                            style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
+                                        <option value="">{{ _("Choose...") }}</option>
+                                        <option value="option1">{{ _("Option 1") }}</option>
+                                        <option value="option2">{{ _("Option 2") }}</option>
+                                        <option value="option3">{{ _("Option 3") }}</option>
+                                    </select>
+                                    {% if request.args.get('demo') %}
+                                        <p class="text-body-sm mt-2" style="color: var(--color-success-600);">
+                                            ✅ {{ _("Selected: %(value)s (see URL)", value=request.args.get('demo')) }}
+                                        </p>
+                                    {% endif %}
+                                </div>
+                            </div>
+                        </div>
+
+                        {# Code Example #}
+                        <div class="mb-6">
+                            <div class="flex items-center justify-between mb-2">
+                                <h4 class="text-heading-sm" style="color: var(--color-headings);">{{ _("Code") }}</h4>
+                                <button @click="copyUrlSelectCode()"
+                                        class="text-body-sm px-2 py-1 rounded transition-colors"
+                                        style="background-color: var(--color-subtle-background-panels);">
+                                    📋 {{ _("Copy") }}
+                                </button>
+                            </div>
+                            <pre class="text-body-sm font-mono p-4 rounded-lg overflow-x-auto" style="background-color: var(--color-subtle-background-panels); color: var(--color-body-text);">&lt;div x-data="urlSelect({
+    baseUrl: '{% raw %}{{ url_for(...) }}{% endraw %}',
+    paramName: 'source',
+    initialValue: '{% raw %}{{ current_value }}{% endraw %}'
+})"&gt;
+    &lt;select x-model="selected"
+            @change="navigate($event)"
+            data-focus-id="my-select"&gt;
+        &lt;option value=""&gt;Choose...&lt;/option&gt;
+        &lt;option value="opt1"&gt;Option 1&lt;/option&gt;
+    &lt;/select&gt;
+&lt;/div&gt;</pre>
+                        </div>
+
+                        {# CSP Notes #}
+                        <div class="mb-6 p-4 rounded-lg" style="background-color: var(--color-warning-100); border: 1px solid var(--color-warning-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-warning-600);">⚠️ {{ _("CSP Compatibility Notes") }}</h4>
+                            <ul class="list-disc list-inside text-body-sm space-y-1" style="color: var(--color-body-text);">
+                                <li><strong>x-model must use flat properties</strong> — <code>x-model="selected"</code> works, <code>x-model="form.field"</code> does NOT</li>
+                                <li><strong>Component options via object</strong> — Pass config as object to <code>Alpine.data()</code>, not inline expressions</li>
+                                <li><strong>No string arguments in handlers</strong> — <code>@click="doThing()"</code> works, <code>@click="doThing('arg')"</code> does NOT</li>
+                            </ul>
+                        </div>
+
+                        {# Implementation Index #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
+                                <span class="mr-2">📍</span>{{ _("Implementations") }}
+                            </h4>
+                            <div class="overflow-x-auto">
+                                <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                    <thead style="background-color: var(--color-subtle-background-panels);">
+                                        <tr>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">{{ _("File") }}</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">{{ _("Line") }}</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">{{ _("Usage") }}</th>
+                                        </tr>
+                                    </thead>
+                                    <tbody>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">static/backoffice/js/alpine-components.js</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">229</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Component definition</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">templates/backoffice/assembly_data.html</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">47</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Data source selector</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono">templates/backoffice/patterns.html</td>
+                                            <td class="px-3 py-2">—</td>
+                                            <td class="px-3 py-2">This documentation page</td>
+                                        </tr>
+                                    </tbody>
+                                </table>
+                            </div>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+
+                {# Inline State Dropdown Pattern #}
+                {% call card(title="Inline State Dropdown (Form Binding)", composed=true) %}
+                    {% call card_body() %}
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("A dropdown that binds to Alpine.js state for use in forms or interactive components. Does NOT navigate — stores value in component state.") }}
+                        </p>
+
+                        {# When to Use #}
+                        <div class="mb-6 p-4 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("When to Use") }}</h4>
+                            <ul class="list-disc list-inside text-body-sm space-y-1" style="color: var(--color-body-text);">
+                                <li>{{ _("Selection is part of a larger form") }}</li>
+                                <li>{{ _("Value used in AJAX request or local computation") }}</li>
+                                <li>{{ _("No page reload needed") }}</li>
+                            </ul>
+                        </div>
+
+                        {# Live Example #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
+                                <span class="mr-2">🧪</span>{{ _("Live Example") }}
+                            </h4>
+                            <div class="p-4 rounded-lg" style="background-color: var(--color-subtle-background-panels); border: 1px solid var(--color-borders-dividers);">
+                                <div class="max-w-md">
+                                    <label class="text-label-md block mb-1" style="color: var(--color-headings);">{{ _("Assembly") }}</label>
+                                    <select x-model="demoAssemblyId"
+                                            class="w-full px-3 py-2 rounded-lg text-body-md"
+                                            style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
+                                        <option value="">{{ _("Select an assembly...") }}</option>
+                                        {% for assembly in assemblies %}
+                                            <option value="{{ assembly.id }}">{{ assembly.title }}</option>
+                                        {% endfor %}
+                                    </select>
+                                    <p class="text-body-sm mt-2" style="color: var(--color-secondary-text);">
+                                        {{ _("Selected ID:") }} <code x-text="demoAssemblyId || '(none)'" class="px-1 rounded" style="background-color: var(--color-subtle-background-panels);"></code>
+                                    </p>
+                                </div>
+                            </div>
+                        </div>
+
+                        {# Code Example #}
+                        <div class="mb-6">
+                            <div class="flex items-center justify-between mb-2">
+                                <h4 class="text-heading-sm" style="color: var(--color-headings);">{{ _("Code") }}</h4>
+                                <button @click="copyInlineSelectCode()"
+                                        class="text-body-sm px-2 py-1 rounded transition-colors"
+                                        style="background-color: var(--color-subtle-background-panels);">
+                                    📋 {{ _("Copy") }}
+                                </button>
+                            </div>
+                            <pre class="text-body-sm font-mono p-4 rounded-lg overflow-x-auto" style="background-color: var(--color-subtle-background-panels); color: var(--color-body-text);">// In your Alpine component, declare FLAT property:
+Alpine.data('myComponent', () =&gt; ({
+    assemblyId: '',  // Flat property
+    // NOT: form: { assemblyId: '' }  // Nested - won't work with CSP
+
+    executeAction() {
+        // Use the flat property
+        fetch('/api/endpoint', {
+            body: JSON.stringify({ assembly_id: this.assemblyId })
+        });
+    }
+}));
+
+// In template:
+&lt;select x-model="assemblyId"&gt;
+    &lt;option value=""&gt;Select...&lt;/option&gt;
+    {% raw %}{% for a in assemblies %}{% endraw %}
+        &lt;option value="{% raw %}{{ a.id }}{% endraw %}"&gt;{% raw %}{{ a.title }}{% endraw %}&lt;/option&gt;
+    {% raw %}{% endfor %}{% endraw %}
+&lt;/select&gt;</pre>
+                        </div>
+
+                        {# CSP Notes #}
+                        <div class="mb-6 p-4 rounded-lg" style="background-color: var(--color-error-100); border: 1px solid var(--color-error-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-error-600);">🚫 {{ _("Common Mistake") }}</h4>
+                            <pre class="text-body-sm font-mono p-2 rounded" style="background-color: var(--color-page-background);">// ❌ THIS DOES NOT WORK with CSP build:
+x-model="forms.import.assembly_id"
+
+// ✅ USE FLAT PROPERTIES INSTEAD:
+x-model="importAssemblyId"</pre>
+                            <p class="text-body-sm mt-2" style="color: var(--color-body-text);">
+                                {{ _("The CSP-compatible Alpine.js build cannot evaluate nested property paths in x-model directives.") }}
+                            </p>
+                        </div>
+
+                        {# Implementation Index #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
+                                <span class="mr-2">📍</span>{{ _("Implementations") }}
+                            </h4>
+                            <div class="overflow-x-auto">
+                                <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                    <thead style="background-color: var(--color-subtle-background-panels);">
+                                        <tr>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">{{ _("File") }}</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">{{ _("Line") }}</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">{{ _("Usage") }}</th>
+                                        </tr>
+                                    </thead>
+                                    <tbody>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">templates/backoffice/service_docs.html</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">150, 326, 453, 544</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Service form dropdowns</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono">templates/backoffice/assembly_data.html</td>
+                                            <td class="px-3 py-2">244</td>
+                                            <td class="px-3 py-2">Team member selector</td>
+                                        </tr>
+                                    </tbody>
+                                </table>
+                            </div>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+            </div>
+        {% endif %}
+
+        {# ===== FORM STATE PATTERN ===== #}
+        {% if active_tab == 'form' %}
+            <div class="space-y-6">
+                {% call card(title="Form State Pattern", composed=true) %}
+                    {% call card_body() %}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Documentation for form state patterns coming soon...") }}
+                        </p>
+                    {% endcall %}
+                {% endcall %}
+            </div>
+        {% endif %}
+
+        {# ===== AJAX PATTERN ===== #}
+        {% if active_tab == 'ajax' %}
+            <div class="space-y-6">
+                {% call card(title="AJAX with CSRF Pattern", composed=true) %}
+                    {% call card_body() %}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Documentation for AJAX patterns coming soon...") }}
+                        </p>
+                    {% endcall %}
+                {% endcall %}
+            </div>
+        {% endif %}
+
+        {# Toast Notification #}
+        <div x-cloak x-show="toast.show" x-transition
+             class="fixed bottom-4 right-4 z-50 px-4 py-3 rounded-lg shadow-lg"
+             :style="toast.type === 'success' ? 'background-color: var(--color-success-100); border: 1px solid var(--color-success-400); color: var(--color-success-600);' : 'background-color: var(--color-info-100); border: 1px solid var(--color-info-400); color: var(--color-info-600);'">
+            <span x-text="toast.message"></span>
+        </div>
+    </div>
+
+    <script nonce="{{ csp_nonce }}">
+        document.addEventListener('alpine:init', () => {
+            Alpine.data('patternsController', () => ({
+                toast: { show: false, message: '', type: 'info' },
+
+                // Demo state for inline select example
+                demoAssemblyId: '',
+
+                // Code snippets for copying
+                urlSelectCode: '<div x-data="urlSelect({\n' +
+                '    baseUrl: \'$url_for(...)$\',\n' +
+                '    paramName: \'source\',\n' +
+                '    initialValue: \'$current_value$\'\n' +
+                '})">\n' +
+                '    <select x-model="selected"\n' +
+                '            @change="navigate($event)"\n' +
+                '            data-focus-id="my-select">\n' +
+                '        <option value="">Choose...</option>\n' +
+                '        <option value="opt1">Option 1</option>\n' +
+                '    </select>\n' +
+                '</div>',
+
+                inlineSelectCode: '// In your Alpine component, declare FLAT property:\n' +
+                'Alpine.data(\'myComponent\', () => ({\n' +
+                '    assemblyId: \'\',  // Flat property\n' +
+                '    // NOT: form: { assemblyId: \'\' }  // Nested - won\'t work with CSP\n' +
+                '\n' +
+                '    executeAction() {\n' +
+                '        fetch(\'/api/endpoint\', {\n' +
+                '            body: JSON.stringify({ assembly_id: this.assemblyId })\n' +
+                '        });\n' +
+                '    }\n' +
+                '}));\n' +
+                '\n' +
+                '// In template:\n' +
+                '<select x-model="assemblyId">\n' +
+                '    <option value="">Select...</option>\n' +
+                '    {{ "{%" }} for a in assemblies {{ "%}" }}\n' +
+                '        <option value="{{ "{{" }} a.id {{ "}}" }}">{{ "{{" }} a.title {{ "}}" }}</option>\n' +
+                '    {{ "{%" }} endfor {{ "%}" }}\n' +
+                '</select>',
+
+                showToast(message, type) {
+                    this.toast = { show: true, message: message, type: type };
+                    setTimeout(() => {
+                        this.toast.show = false;
+                    }, 3000);
+                },
+
+                async copyToClipboard(text) {
+                    try {
+                        await navigator.clipboard.writeText(text);
+                        this.showToast('Copied to clipboard!', 'success');
+                    } catch (err) {
+                        this.showToast('Failed to copy', 'error');
+                    }
+                },
+
+                copyUrlSelectCode() {
+                    this.copyToClipboard(this.urlSelectCode);
+                },
+
+                copyInlineSelectCode() {
+                    this.copyToClipboard(this.inlineSelectCode);
+                }
+            }));
+        });
+    </script>
+{% endblock %}

From e4b917570c0b561bd8d293f75256d1fea6ad2bbe Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 20 Mar 2026 18:24:34 +0100
Subject: [PATCH 04/31] Fix urlSelect to properly concatenate query params

- Use & separator when URL already has query params, otherwise use ?
- Fixes URL like ?tab=dropdown?demo=option (invalid) becoming ?tab=dropdown&demo=option
- Add server-side selected attributes to patterns page dropdown

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/static/backoffice/js/alpine-components.js | 4 +++-
 backend/templates/backoffice/patterns.html        | 6 +++---
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/backend/static/backoffice/js/alpine-components.js b/backend/static/backoffice/js/alpine-components.js
index 0d05f3ca..69364b0a 100644
--- a/backend/static/backoffice/js/alpine-components.js
+++ b/backend/static/backoffice/js/alpine-components.js
@@ -238,7 +238,9 @@ document.addEventListener("alpine:init", function () {
                 // Build URL - skip query param if value is empty
                 var url = baseUrl;
                 if (this.selected) {
-                    url += "?" + paramName + "=" + encodeURIComponent(this.selected);
+                    // Use & if URL already has query params, otherwise use ?
+                    var separator = url.indexOf("?") !== -1 ? "&" : "?";
+                    url += separator + paramName + "=" + encodeURIComponent(this.selected);
                 }
 
                 // Add focus hash if element has focus (keyboard navigation)
diff --git a/backend/templates/backoffice/patterns.html b/backend/templates/backoffice/patterns.html
index 28a12034..1389a664 100644
--- a/backend/templates/backoffice/patterns.html
+++ b/backend/templates/backoffice/patterns.html
@@ -82,9 +82,9 @@ <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
                                             class="w-full px-3 py-2 rounded-lg text-body-md"
                                             style="background-color: var(--color-page-background); border: 1px solid var(--color-borders-dividers); color: var(--color-body-text);">
                                         <option value="">{{ _("Choose...") }}</option>
-                                        <option value="option1">{{ _("Option 1") }}</option>
-                                        <option value="option2">{{ _("Option 2") }}</option>
-                                        <option value="option3">{{ _("Option 3") }}</option>
+                                        <option value="option1" {% if request.args.get('demo') == 'option1' %}selected{% endif %}>{{ _("Option 1") }}</option>
+                                        <option value="option2" {% if request.args.get('demo') == 'option2' %}selected{% endif %}>{{ _("Option 2") }}</option>
+                                        <option value="option3" {% if request.args.get('demo') == 'option3' %}selected{% endif %}>{{ _("Option 3") }}</option>
                                     </select>
                                     {% if request.args.get('demo') %}
                                         <p class="text-body-sm mt-2" style="color: var(--color-success-600);">

From 2f820b6571d1fb1dd61e4b5851412625c897f646 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 20 Mar 2026 18:37:38 +0100
Subject: [PATCH 05/31] Add developer tools dashboard

- Create /backoffice/dev route with cards linking to dev tools
- Links to Service Docs, Frontend Patterns, and Component Showcase
- Admin-only, disabled in production
- Update breadcrumbs in service_docs and patterns to link to dev dashboard

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../entrypoints/blueprints/backoffice.py      |  23 ++++
 .../templates/backoffice/dev_dashboard.html   | 108 ++++++++++++++++++
 backend/templates/backoffice/patterns.html    |   2 +-
 .../templates/backoffice/service_docs.html    |   2 +-
 4 files changed, 133 insertions(+), 2 deletions(-)
 create mode 100644 backend/templates/backoffice/dev_dashboard.html

diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index 79197895..08eee98e 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -512,6 +512,29 @@ def search_demo() -> ResponseReturnValue:
     return jsonify(results), 200
 
 
+# =============================================================================
+# Developer Tools Dashboard (Admin-only)
+# =============================================================================
+
+
+@backoffice_bp.route("/dev")
+@login_required
+def dev_dashboard() -> ResponseReturnValue:
+    """Developer tools dashboard.
+
+    Admin-only page that links to all developer tools.
+    Disabled in production for security.
+    """
+    if config.is_production():
+        abort(404)
+
+    if not has_global_admin(current_user):
+        flash(_("You don't have permission to access developer tools"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+
+    return render_template("backoffice/dev_dashboard.html"), 200
+
+
 # =============================================================================
 # Service Layer Documentation (Admin-only developer tools)
 # =============================================================================
diff --git a/backend/templates/backoffice/dev_dashboard.html b/backend/templates/backoffice/dev_dashboard.html
new file mode 100644
index 00000000..511e291b
--- /dev/null
+++ b/backend/templates/backoffice/dev_dashboard.html
@@ -0,0 +1,108 @@
+{#
+ABOUTME: Developer tools dashboard for admin users
+ABOUTME: Links to service docs, frontend patterns, and component showcase
+#}
+{% extends "backoffice/base_page.html" %}
+{% from "backoffice/components/card.html" import link_card %}
+{% from "backoffice/components/breadcrumbs.html" import breadcrumbs %}
+
+{% block title %}{{ _("Developer Tools") }}{% endblock %}
+
+{% block breadcrumb_section %}
+    <div class="mb-6">
+        {{ breadcrumbs([
+        {"label": _("Dashboard"), "href": url_for('backoffice.dashboard')},
+        {"label": _("Developer Tools")}
+        ]) }}
+    </div>
+{% endblock %}
+
+{% block page_content %}
+    <h1 style="color: var(--color-headings);" class="text-display-lg mb-2">
+        <span class="mr-2">🛠️</span>{{ _("Developer Tools") }}
+    </h1>
+    <p style="color: var(--color-secondary-text);" class="text-body-lg mb-8">
+        {{ _("Interactive documentation and testing tools for development.") }}
+    </p>
+
+    {# Warning banner #}
+    <div class="mb-8 p-4 rounded-lg" style="background-color: var(--color-warning-100); border: 1px solid var(--color-warning-400);">
+        <p class="text-body-md" style="color: var(--color-warning-600);">
+            <strong>⚠️ {{ _("Development Only") }}</strong> —
+            {{ _("These tools are disabled in production and only available to admin users.") }}
+        </p>
+    </div>
+
+    {# Developer Tools Cards #}
+    <section>
+        <h2 style="color: var(--color-headings);" class="text-heading-lg mb-6">{{ _("Documentation & Testing") }}</h2>
+
+        <div class="grid grid-cols-1 md:grid-cols-2 lg:grid-cols-3 gap-6">
+            {# Service Layer Docs #}
+            {% call link_card(
+            href=url_for('backoffice.service_docs'),
+            title=_("Service Layer Docs"),
+            subtitle=_("CSV Upload Services"),
+            id="service-docs-card"
+            ) %}
+            <p style="color: var(--color-body-text);" class="text-body-md mb-4">
+                {{ _("Interactive documentation for CSV upload service layer functions. Test import_respondents, import_targets, and CSV config services.") }}
+            </p>
+            <p style="color: var(--color-secondary-text);" class="text-body-sm">
+                📄 {{ _("4 services documented") }}
+            </p>
+{% endcall %}
+
+            {# Frontend Patterns #}
+{% call link_card(
+href=url_for('backoffice.patterns'),
+title=_("Frontend Patterns"),
+subtitle=_("Alpine.js & CSP Guidelines"),
+id="patterns-card"
+) %}
+<p style="color: var(--color-body-text);" class="text-body-md mb-4">
+    {{ _("Living documentation for CSP-compatible Alpine.js patterns. Includes dropdown bindings, form state, and AJAX with working examples.") }}
+</p>
+<p style="color: var(--color-secondary-text);" class="text-body-sm">
+    🎨 {{ _("Patterns with implementation index") }}
+</p>
+{% endcall %}
+
+            {# Component Showcase #}
+{% call link_card(
+href=url_for('backoffice.showcase'),
+title=_("Component Showcase"),
+subtitle=_("Design System Reference"),
+id="showcase-card"
+) %}
+<p style="color: var(--color-body-text);" class="text-body-md mb-4">
+    {{ _("Visual reference for all backoffice UI components. Buttons, cards, forms, modals, typography, and color tokens.") }}
+</p>
+<p style="color: var(--color-secondary-text);" class="text-body-sm">
+    🧩 {{ _("All components in one place") }}
+</p>
+{% endcall %}
+</div>
+</section>
+
+    {# Quick Links #}
+<section class="mt-12">
+    <h2 style="color: var(--color-headings);" class="text-heading-lg mb-4">{{ _("Quick Reference") }}</h2>
+    <div class="p-4 rounded-lg" style="background-color: var(--color-subtle-background-panels); border: 1px solid var(--color-borders-dividers);">
+        <ul class="space-y-2 text-body-md" style="color: var(--color-body-text);">
+            <li>
+                <strong>CLAUDE.md</strong> —
+                {{ _("Project guidance for AI assistants (includes Alpine.js CSP constraints)") }}
+            </li>
+            <li>
+                <strong>docs/agent/</strong> —
+                {{ _("Agent-specific documentation for frontend, testing, and code quality") }}
+            </li>
+            <li>
+                <strong>static/backoffice/js/alpine-components.js</strong> —
+                {{ _("Reusable Alpine.js components (urlSelect, autocomplete, modal)") }}
+            </li>
+        </ul>
+    </div>
+</section>
+{% endblock %}
diff --git a/backend/templates/backoffice/patterns.html b/backend/templates/backoffice/patterns.html
index 1389a664..ea228334 100644
--- a/backend/templates/backoffice/patterns.html
+++ b/backend/templates/backoffice/patterns.html
@@ -14,7 +14,7 @@
     <div class="mb-6">
         {{ breadcrumbs([
         {"label": _("Dashboard"), "href": url_for('backoffice.dashboard')},
-        {"label": _("Developer Tools")},
+        {"label": _("Developer Tools"), "href": url_for('backoffice.dev_dashboard')},
         {"label": _("Patterns")}
         ]) }}
     </div>
diff --git a/backend/templates/backoffice/service_docs.html b/backend/templates/backoffice/service_docs.html
index 84bbfae5..8efae99a 100644
--- a/backend/templates/backoffice/service_docs.html
+++ b/backend/templates/backoffice/service_docs.html
@@ -16,7 +16,7 @@
     <div class="mb-6">
         {{ breadcrumbs([
         {"label": _("Dashboard"), "href": url_for('backoffice.dashboard')},
-        {"label": _("Developer Tools")},
+        {"label": _("Developer Tools"), "href": url_for('backoffice.dev_dashboard')},
         {"label": _("Service Docs")}
         ]) }}
     </div>

From e3171cc3f56f6ee9bcd4d48697a4599b7858880b Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 20 Mar 2026 20:58:34 +0100
Subject: [PATCH 06/31] Add file upload UI component and pattern documentation

UI Component:
- Add file_input macro to components/input.html
- Supports label, hint, error, accept, required, disabled
- Tailwind styling with file: pseudo-class for button

Pattern Documentation:
- Add File Upload tab to frontend patterns page
- Document architecture (UI -> Flask route -> service layer)
- Live demo with client-side file validation and preview
- Template and Flask route code examples
- Implementation index linking to existing code

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../entrypoints/blueprints/backoffice.py      |   2 +-
 .../backoffice/components/input.html          |  92 +++++-
 backend/templates/backoffice/patterns.html    | 310 +++++++++++++++++-
 3 files changed, 400 insertions(+), 4 deletions(-)

diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index 08eee98e..a7c37b4c 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -803,7 +803,7 @@ def patterns() -> ResponseReturnValue:
 
     # Get active tab from query parameter, default to 'dropdown'
     active_tab = request.args.get("tab", "dropdown")
-    valid_tabs = ["dropdown", "form", "ajax"]
+    valid_tabs = ["dropdown", "form", "ajax", "file-upload"]
     if active_tab not in valid_tabs:
         active_tab = "dropdown"
 
diff --git a/backend/templates/backoffice/components/input.html b/backend/templates/backoffice/components/input.html
index 48bf8787..ff236d15 100644
--- a/backend/templates/backoffice/components/input.html
+++ b/backend/templates/backoffice/components/input.html
@@ -1,6 +1,6 @@
 {#
-ABOUTME: Text input component macro for backoffice design system
-ABOUTME: Supports text, email, password, number inputs with label and optional hint/error
+ABOUTME: Form input component macros for backoffice design system
+ABOUTME: Supports text, email, password, number, textarea, select, checkbox, radio, and file inputs
 #}
 
 {% macro first_error(errors) %}
@@ -421,3 +421,91 @@
         {% endif %}
     </fieldset>
 {% endmacro %}
+
+
+{% macro file_input(name, label="", hint="", error="", accept="", required=false, disabled=false, id="", classes="", attrs="") %}
+    {#
+    File input component using semantic design tokens.
+
+    This is a stateless UI component. For file upload handling logic
+    (form submission, reading content, validation), see the File Upload
+    pattern in /backoffice/dev/patterns.
+
+    Args:
+        name: Input name attribute (required)
+        label: Label text displayed above the input
+        hint: Help text displayed below the label
+        error: Error message (displays input in error state)
+        accept: Comma-separated list of accepted file types (e.g., ".csv", ".csv,.xlsx", "text/csv")
+        required: Boolean to mark field as required
+        disabled: Boolean to disable the input
+        id: Optional id attribute (defaults to name)
+        classes: Additional CSS classes for the input
+        attrs: Additional HTML attributes (e.g., 'x-model="file"' for Alpine.js binding)
+
+    Usage:
+        {# Basic file input #}
+    {{ file_input("csv_file", label="CSV File", accept=".csv", required=true) }}
+
+        {# With hint and error #}
+    {{ file_input(
+    "import_file",
+    label="Import File",
+    hint="Select a CSV file containing respondent data",
+    accept=".csv",
+    error=first_error(form.csv_file.errors)
+    ) }}
+
+        {# With Alpine.js binding #}
+    {{ file_input(
+    "csv_file",
+    label="CSV File",
+    accept=".csv",
+    attrs='@change="onFileSelect($event)"'
+    ) }}
+    #}
+    {% set input_id = id if id else name %}
+    {% set has_error = error | length > 0 %}
+
+    <div class="flex flex-col gap-1.5">
+        {# Label #}
+        {% if label %}
+            <label for="{{ input_id }}" class="text-label-lg" style="color: var(--color-headings);">
+                {{ label }}
+                {% if required %}<span style="color: var(--color-primary-action);">*</span>{% endif %}
+            </label>
+        {% endif %}
+
+        {# Hint text #}
+        {% if hint %}
+            <p class="text-body-sm" style="color: var(--color-secondary-text);">{{ hint }}</p>
+        {% endif %}
+
+        {# File input with custom styling #}
+        <div class="relative">
+            <input
+                type="file"
+                name="{{ name }}"
+                id="{{ input_id }}"
+                {% if accept %}accept="{{ accept }}"{% endif %}
+                {% if required %}required{% endif %}
+                {% if disabled %}disabled{% endif %}
+                {% if attrs %}{{ attrs | safe }}{% endif %}
+                class="text-body-md w-full transition-all duration-150 focus:outline-none focus:ring-2 focus:ring-offset-2 file:mr-4 file:py-2.5 file:px-4 file:rounded-lg file:border-0 file:text-button-md file:cursor-pointer {{ classes }}"
+                style="
+                       color: var(--color-body-text);
+                       --tw-ring-color: {% if has_error %}var(--color-primary-action){% else %}var(--color-focus-ring){% endif %};
+                       {% if disabled %}
+                           color: var(--color-placeholder-text);
+                           cursor: not-allowed;
+                       {% endif %}
+                      "
+            />
+        </div>
+
+        {# Error message #}
+        {% if has_error %}
+            <p class="text-body-sm" style="color: var(--color-primary-action);">{{ error }}</p>
+        {% endif %}
+    </div>
+{% endmacro %}
diff --git a/backend/templates/backoffice/patterns.html b/backend/templates/backoffice/patterns.html
index ea228334..0e88d20d 100644
--- a/backend/templates/backoffice/patterns.html
+++ b/backend/templates/backoffice/patterns.html
@@ -41,7 +41,8 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">
         items=[
         {"label": _("Dropdown"), "href": url_for('backoffice.patterns', tab='dropdown'), "active": active_tab == 'dropdown'},
         {"label": _("Form State"), "href": url_for('backoffice.patterns', tab='form'), "active": active_tab == 'form'},
-        {"label": _("AJAX"), "href": url_for('backoffice.patterns', tab='ajax'), "active": active_tab == 'ajax'}
+        {"label": _("AJAX"), "href": url_for('backoffice.patterns', tab='ajax'), "active": active_tab == 'ajax'},
+        {"label": _("File Upload"), "href": url_for('backoffice.patterns', tab='file-upload'), "active": active_tab == 'file-upload'}
         ],
         aria_label=_("Pattern categories")
         ) }}
@@ -312,6 +313,211 @@ <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
             </div>
         {% endif %}
 
+        {# ===== FILE UPLOAD PATTERN ===== #}
+        {% if active_tab == 'file-upload' %}
+            <div class="space-y-6">
+                {# File Upload Pattern #}
+                {% call card(title="CSV File Upload Pattern", composed=true) %}
+                    {% call card_body() %}
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Pattern for uploading CSV files with client-side validation and server-side processing. The file is read as text and passed to service layer functions.") }}
+                        </p>
+
+                        {# Architecture Overview #}
+                        <div class="mb-6 p-4 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("Architecture") }}</h4>
+                            <ul class="list-disc list-inside text-body-sm space-y-1" style="color: var(--color-body-text);">
+                                <li><strong>{{ _("UI Component") }}:</strong> <code>file_input</code> {{ _("macro in") }} <code>components/input.html</code></li>
+                                <li><strong>{{ _("Form submission") }}:</strong> <code>enctype="multipart/form-data"</code></li>
+                                <li><strong>{{ _("Server reads file") }}:</strong> <code>file.read().decode("utf-8-sig")</code></li>
+                                <li><strong>{{ _("Service layer") }}:</strong> {{ _("Receives CSV content as string, not file object") }}</li>
+                            </ul>
+                        </div>
+
+                        {# Live Example #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
+                                <span class="mr-2">🧪</span>{{ _("Live Example") }}
+                            </h4>
+                            <div class="p-4 rounded-lg" style="background-color: var(--color-subtle-background-panels); border: 1px solid var(--color-borders-dividers);">
+                                <form class="max-w-md space-y-4"
+                                      x-data="fileUploadDemo()"
+                                      @submit.prevent="handleSubmit()">
+                                    {# File Input #}
+                                    <div class="flex flex-col gap-1.5">
+                                        <label for="demo-file" class="text-label-lg" style="color: var(--color-headings);">
+                                            {{ _("CSV File") }}
+                                            <span style="color: var(--color-primary-action);">*</span>
+                                        </label>
+                                        <p class="text-body-sm" style="color: var(--color-secondary-text);">
+                                            {{ _("Select a CSV file to see the pattern in action") }}
+                                        </p>
+                                        <input
+                                            type="file"
+                                            id="demo-file"
+                                            accept=".csv"
+                                            @change="onFileSelect($event)"
+                                            class="text-body-md w-full transition-all duration-150 focus:outline-none focus:ring-2 focus:ring-offset-2 file:mr-4 file:py-2.5 file:px-4 file:rounded-lg file:border-0 file:text-button-md file:cursor-pointer"
+                                            style="color: var(--color-body-text); --tw-ring-color: var(--color-focus-ring);"
+                                        />
+                                    </div>
+
+                                    {# File info display #}
+                                    <div x-show="fileName" x-cloak class="p-3 rounded-lg" style="background-color: var(--color-success-100); border: 1px solid var(--color-success-400);">
+                                        <p class="text-body-sm" style="color: var(--color-success-600);">
+                                            <strong>{{ _("Selected") }}:</strong> <span x-text="fileName"></span>
+                                            (<span x-text="fileSize"></span>)
+                                        </p>
+                                        <p class="text-body-sm mt-1" style="color: var(--color-success-600);">
+                                            <strong>{{ _("Preview") }}:</strong> <span x-text="preview"></span>
+                                        </p>
+                                    </div>
+
+                                    {# Error display #}
+                                    <div x-show="error" x-cloak class="p-3 rounded-lg" style="background-color: var(--color-error-100); border: 1px solid var(--color-error-400);">
+                                        <p class="text-body-sm" style="color: var(--color-error-600);" x-text="error"></p>
+                                    </div>
+
+                                    {# Submit button (demo only) #}
+                                    <button type="submit"
+                                            :disabled="!fileName"
+                                            class="px-4 py-2.5 rounded-lg text-button-md transition-all duration-150"
+                                            :style="fileName ? 'background-color: var(--color-primary-action); color: white; cursor: pointer;' : 'background-color: var(--color-subtle-background-panels); color: var(--color-placeholder-text); cursor: not-allowed;'">
+                                        {{ _("Upload (Demo)") }}
+                                    </button>
+                                </form>
+                            </div>
+                        </div>
+
+                        {# Code Example - Template #}
+                        <div class="mb-6">
+                            <div class="flex items-center justify-between mb-2">
+                                <h4 class="text-heading-sm" style="color: var(--color-headings);">{{ _("Template Code") }}</h4>
+                                <button @click="copyFileUploadTemplateCode()"
+                                        class="text-body-sm px-2 py-1 rounded transition-colors"
+                                        style="background-color: var(--color-subtle-background-panels);">
+                                    📋 {{ _("Copy") }}
+                                </button>
+                            </div>
+                            <pre class="text-body-sm font-mono p-4 rounded-lg overflow-x-auto" style="background-color: var(--color-subtle-background-panels); color: var(--color-body-text);">{% raw %}{# Import the component #}
+{% from "backoffice/components/input.html" import file_input %}
+
+{# Form with multipart encoding #}
+&lt;form method="post"
+      action="{{ url_for('...') }}"
+      enctype="multipart/form-data"&gt;
+    {{ form.hidden_tag() }}
+
+    {{ file_input(
+        "csv_file",
+        label="CSV File",
+        hint="Select a CSV file to upload",
+        accept=".csv",
+        required=true,
+        error=first_error(form.csv_file.errors)
+    ) }}
+
+    &lt;button type="submit"&gt;Upload&lt;/button&gt;
+&lt;/form&gt;{% endraw %}</pre>
+                        </div>
+
+                        {# Code Example - Flask Route #}
+                        <div class="mb-6">
+                            <div class="flex items-center justify-between mb-2">
+                                <h4 class="text-heading-sm" style="color: var(--color-headings);">{{ _("Flask Route Code") }}</h4>
+                                <button @click="copyFileUploadRouteCode()"
+                                        class="text-body-sm px-2 py-1 rounded transition-colors"
+                                        style="background-color: var(--color-subtle-background-panels);">
+                                    📋 {{ _("Copy") }}
+                                </button>
+                            </div>
+                            <pre class="text-body-sm font-mono p-4 rounded-lg overflow-x-auto" style="background-color: var(--color-subtle-background-panels); color: var(--color-body-text);"># Flask-WTF Form
+class UploadCsvForm(FlaskForm):
+    csv_file = FileField(
+        _l("CSV File"),
+        validators=[
+            FileRequired(message=_l("Please select a file")),
+            FileAllowed(["csv"], message=_l("Only CSV files allowed")),
+        ],
+    )
+
+# Route handler
+@bp.route("/upload", methods=["POST"])
+def upload_csv():
+    form = UploadCsvForm()
+
+    if not form.validate_on_submit():
+        # Re-render form with errors
+        return render_template("...", form=form)
+
+    # Read file content as string
+    csv_file = form.csv_file.data
+    csv_content = csv_file.read().decode("utf-8-sig")
+    filename = csv_file.filename or "unknown.csv"
+
+    # Pass to service layer (content as string, not file)
+    result = import_from_csv(uow, csv_content=csv_content)
+
+    flash(_("Imported successfully"), "success")
+    return redirect(url_for("..."))</pre>
+                        </div>
+
+                        {# Key Points #}
+                        <div class="mb-6 p-4 rounded-lg" style="background-color: var(--color-warning-100); border: 1px solid var(--color-warning-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-warning-600);">⚠️ {{ _("Key Points") }}</h4>
+                            <ul class="list-disc list-inside text-body-sm space-y-1" style="color: var(--color-body-text);">
+                                <li><strong>enctype="multipart/form-data"</strong> — {{ _("Required for file uploads") }}</li>
+                                <li><strong>utf-8-sig</strong> — {{ _("Handles BOM (byte order mark) in CSV files from Excel") }}</li>
+                                <li><strong>{{ _("Service layer receives string") }}</strong> — {{ _("Not the file object, for testability") }}</li>
+                                <li><strong>{{ _("CSRF token") }}</strong> — {{ _("form.hidden_tag() includes it automatically") }}</li>
+                            </ul>
+                        </div>
+
+                        {# Implementation Index #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
+                                <span class="mr-2">📍</span>{{ _("Implementations") }}
+                            </h4>
+                            <div class="overflow-x-auto">
+                                <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                    <thead style="background-color: var(--color-subtle-background-panels);">
+                                        <tr>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">{{ _("File") }}</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">{{ _("Line") }}</th>
+                                            <th class="px-3 py-2 text-left" style="border-bottom: 1px solid var(--color-borders-dividers);">{{ _("Usage") }}</th>
+                                        </tr>
+                                    </thead>
+                                    <tbody>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">templates/backoffice/components/input.html</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">426</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">file_input macro</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">src/opendlp/entrypoints/forms.py</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">552</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UploadRespondentsCsvForm</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">src/opendlp/entrypoints/blueprints/respondents.py</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">92</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">upload_respondents_csv route</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono">templates/respondents/view_respondents.html</td>
+                                            <td class="px-3 py-2">27</td>
+                                            <td class="px-3 py-2">File upload form (old design)</td>
+                                        </tr>
+                                    </tbody>
+                                </table>
+                            </div>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+            </div>
+        {% endif %}
+
         {# Toast Notification #}
         <div x-cloak x-show="toast.show" x-transition
              class="fixed bottom-4 right-4 z-50 px-4 py-3 rounded-lg shadow-lg"
@@ -384,6 +590,108 @@ <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
 
                 copyInlineSelectCode() {
                     this.copyToClipboard(this.inlineSelectCode);
+                },
+
+                // File upload pattern code snippets
+                fileUploadTemplateCode: '{{ "{%" }} from "backoffice/components/input.html" import file_input {{ "%}" }}\n\n' +
+                '<form method="post"\n' +
+                '      action="{{ "{{" }} url_for(\'...\') {{ "}}" }}"\n' +
+                '      enctype="multipart/form-data">\n' +
+                '    {{ "{{" }} form.hidden_tag() {{ "}}" }}\n\n' +
+                '    {{ "{{" }} file_input(\n' +
+                '        "csv_file",\n' +
+                '        label="CSV File",\n' +
+                '        hint="Select a CSV file to upload",\n' +
+                '        accept=".csv",\n' +
+                '        required=true,\n' +
+                '        error=first_error(form.csv_file.errors)\n' +
+                '    ) {{ "}}" }}\n\n' +
+                '    <button type="submit">Upload</button>\n' +
+                '</form>',
+
+                fileUploadRouteCode: '# Flask-WTF Form\n' +
+                'class UploadCsvForm(FlaskForm):\n' +
+                '    csv_file = FileField(\n' +
+                '        _l("CSV File"),\n' +
+                '        validators=[\n' +
+                '            FileRequired(message=_l("Please select a file")),\n' +
+                '            FileAllowed(["csv"], message=_l("Only CSV files allowed")),\n' +
+                '        ],\n' +
+                '    )\n\n' +
+                '# Route handler\n' +
+                '@bp.route("/upload", methods=["POST"])\n' +
+                'def upload_csv():\n' +
+                '    form = UploadCsvForm()\n\n' +
+                '    if not form.validate_on_submit():\n' +
+                '        # Re-render form with errors\n' +
+                '        return render_template("...", form=form)\n\n' +
+                '    # Read file content as string\n' +
+                '    csv_file = form.csv_file.data\n' +
+                '    csv_content = csv_file.read().decode("utf-8-sig")\n' +
+                '    filename = csv_file.filename or "unknown.csv"\n\n' +
+                '    # Pass to service layer (content as string, not file)\n' +
+                '    result = import_from_csv(uow, csv_content=csv_content)\n\n' +
+                '    flash(_("Imported successfully"), "success")\n' +
+                '    return redirect(url_for("..."))',
+
+                copyFileUploadTemplateCode() {
+                    this.copyToClipboard(this.fileUploadTemplateCode);
+                },
+
+                copyFileUploadRouteCode() {
+                    this.copyToClipboard(this.fileUploadRouteCode);
+                }
+            }));
+
+            // File upload demo component
+            Alpine.data('fileUploadDemo', () => ({
+                fileName: '',
+                fileSize: '',
+                preview: '',
+                error: '',
+
+                onFileSelect(event) {
+                    var file = event.target.files[0];
+                    this.error = '';
+                    this.preview = '';
+
+                    if (!file) {
+                        this.fileName = '';
+                        this.fileSize = '';
+                        return;
+                    }
+
+                    // Validate file type
+                    if (!file.name.endsWith('.csv')) {
+                        this.error = 'Please select a CSV file';
+                        this.fileName = '';
+                        this.fileSize = '';
+                        event.target.value = '';
+                        return;
+                    }
+
+                    this.fileName = file.name;
+                    this.fileSize = this.formatFileSize(file.size);
+
+                    // Read first 200 chars for preview
+                    var reader = new FileReader();
+                    var self = this;
+                    reader.onload = function(e) {
+                        var content = e.target.result;
+                        self.preview = content.substring(0, 200) + (content.length > 200 ? '...' : '');
+                    };
+                    reader.readAsText(file);
+                },
+
+                formatFileSize(bytes) {
+                    if (bytes < 1024) return bytes + ' bytes';
+                    if (bytes < 1024 * 1024) return (bytes / 1024).toFixed(1) + ' KB';
+                    return (bytes / (1024 * 1024)).toFixed(1) + ' MB';
+                },
+
+                handleSubmit() {
+                    // Demo only - show toast
+                    alert('Demo: Would submit file "' + this.fileName + '" to server.\n\nIn real implementation, form would POST to server with enctype="multipart/form-data".');
                 }
             }));
         });

From a1f27b4a54a6843ce4cd40a6385510242751dba6 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 20 Mar 2026 21:04:25 +0100
Subject: [PATCH 07/31] Add file_input to component showcase

- Add file_input to input component showcase
- Show basic, required with hint, error, and disabled states
- Update description and code example to include file_input

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../backoffice/showcase/input_component.html  | 45 +++++++++++++++----
 1 file changed, 36 insertions(+), 9 deletions(-)

diff --git a/backend/templates/backoffice/showcase/input_component.html b/backend/templates/backoffice/showcase/input_component.html
index b72666d7..45faa584 100644
--- a/backend/templates/backoffice/showcase/input_component.html
+++ b/backend/templates/backoffice/showcase/input_component.html
@@ -1,16 +1,16 @@
 {#
 ABOUTME: Showcase section for input component
-ABOUTME: Displays text input and textarea variants with usage examples
+ABOUTME: Displays text input, textarea, and file input variants with usage examples
 #}
 {% from "backoffice/components/showcase_section.html" import showcase_section, showcase_title, showcase_description, showcase_example, showcase_tokens %}
-{% from "backoffice/components/input.html" import input, textarea %}
+{% from "backoffice/components/input.html" import input, textarea, file_input %}
 
 {% macro input_section() %}
     {% call showcase_section() %}
         {{ showcase_title("Input Component") }}
-        {{ showcase_description("Text inputs and textareas with labels, hints, and error states.") }}
+        {{ showcase_description("Text inputs, textareas, and file inputs with labels, hints, and error states.") }}
 
-        {% call showcase_example('{% from "backoffice/components/input.html" import input, textarea %}
+        {% call showcase_example('{% from "backoffice/components/input.html" import input, textarea, file_input %}
 
             {# Basic text input #}
             {{ input("title", label="Assembly Title", placeholder="Enter title...") }}
@@ -19,15 +19,13 @@
             {{ input("email", label="Email", type="email", required=true,
             hint="We will send confirmation to this address.") }}
 
-            {# Input with error state #}
-            {{ input("title", label="Title", value=form.title, error=errors.title) }}
-
             {# Textarea #}
             {{ textarea("question", label="Assembly Question", rows=6,
             placeholder="What question will the assembly address?") }}
 
-            {# Disabled input #}
-            {{ input("id", label="Assembly ID", value=assembly.id, disabled=true) }}') %}
+            {# File input for CSV upload #}
+            {{ file_input("csv_file", label="CSV File", accept=".csv", required=true,
+            hint="Select a CSV file to upload") }}') %}
             <div class="grid grid-cols-1 md:grid-cols-2 gap-6">
                 {# Basic Input #}
                 <div class="flex flex-col gap-2">
@@ -82,6 +80,35 @@ <h3 class="text-heading-md mt-8 mb-4" style="color: var(--color-headings);">Text
                     {{ textarea("demo-textarea-value", label="Description", value="This is some pre-filled content that demonstrates how the textarea handles existing text.", rows=4) }}
                 </div>
             </div>
+
+            {# File Input Section #}
+            <h3 class="text-heading-md mt-8 mb-4" style="color: var(--color-headings);">File Input</h3>
+
+            <div class="grid grid-cols-1 md:grid-cols-2 gap-6">
+                {# Basic File Input #}
+                <div class="flex flex-col gap-2">
+                    <span class="text-label-md" style="color: var(--color-secondary-text);">Basic File Input</span>
+                    {{ file_input("demo-file-basic", label="CSV File", accept=".csv") }}
+                </div>
+
+                {# Required File Input with Hint #}
+                <div class="flex flex-col gap-2">
+                    <span class="text-label-md" style="color: var(--color-secondary-text);">Required with Hint</span>
+                    {{ file_input("demo-file-required", label="Import File", accept=".csv", required=true, hint="Select a CSV file containing respondent data") }}
+                </div>
+
+                {# File Input with Error #}
+                <div class="flex flex-col gap-2">
+                    <span class="text-label-md" style="color: var(--color-secondary-text);">Error State</span>
+                    {{ file_input("demo-file-error", label="CSV File", accept=".csv", error="Please select a valid CSV file") }}
+                </div>
+
+                {# Disabled File Input #}
+                <div class="flex flex-col gap-2">
+                    <span class="text-label-md" style="color: var(--color-secondary-text);">Disabled</span>
+                    {{ file_input("demo-file-disabled", label="CSV File", accept=".csv", disabled=true) }}
+                </div>
+            </div>
         {% endcall %}
 
         {{ showcase_tokens([

From 64b92d8bba713737e753b27d831dd6df38778207 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Sun, 22 Mar 2026 11:07:21 +0100
Subject: [PATCH 08/31] Fix file_input macro docstring causing RecursionError

The DjHTML linter reformatted the usage examples in a way that
broke Jinja comment parsing, causing the examples to be executed
as actual code. Simplified to plain text examples matching the
pattern used by other macros.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../backoffice/components/input.html          | 22 +++----------------
 1 file changed, 3 insertions(+), 19 deletions(-)

diff --git a/backend/templates/backoffice/components/input.html b/backend/templates/backoffice/components/input.html
index ff236d15..c573f699 100644
--- a/backend/templates/backoffice/components/input.html
+++ b/backend/templates/backoffice/components/input.html
@@ -444,25 +444,9 @@
         attrs: Additional HTML attributes (e.g., 'x-model="file"' for Alpine.js binding)
 
     Usage:
-        {# Basic file input #}
-    {{ file_input("csv_file", label="CSV File", accept=".csv", required=true) }}
-
-        {# With hint and error #}
-    {{ file_input(
-    "import_file",
-    label="Import File",
-    hint="Select a CSV file containing respondent data",
-    accept=".csv",
-    error=first_error(form.csv_file.errors)
-    ) }}
-
-        {# With Alpine.js binding #}
-    {{ file_input(
-    "csv_file",
-    label="CSV File",
-    accept=".csv",
-    attrs='@change="onFileSelect($event)"'
-    ) }}
+        file_input("csv_file", label="CSV File", accept=".csv", required=true)
+        file_input("import_file", label="Import File", hint="Select a CSV file", accept=".csv", error=first_error(form.csv_file.errors))
+        file_input("csv_file", label="CSV File", accept=".csv", attrs='@change="onFileSelect($event)"')
     #}
     {% set input_id = id if id else name %}
     {% set has_error = error | length > 0 %}

From 85b49f8758521dbcbe23ce0fd231bf2308431cd5 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Sun, 22 Mar 2026 17:10:25 +0100
Subject: [PATCH 09/31] Add Targets and Respondents tabs to assembly navigation

- Add shared assembly_tabs macro for consistent tab rendering
- Create Targets page showing gsheet config info or CSV placeholder
- Create Respondents page showing gsheet config info or CSV placeholder
- Add routes: /assembly/<id>/targets and /assembly/<id>/respondents
- Update all assembly templates to use shared tabs macro
- Tabs are always visible but disabled until data source is configured
- For gsheet source: tabs show info about configured sheet tab names
- Add BDD tests for tab visibility and enabled/disabled states
- Add docs/agent/453-csv-upload.md for feature documentation

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/docs/agent/453-csv-upload.md          | 146 ++++++++++++++++
 .../features/backoffice-csv-upload.feature    |  52 +++++-
 .../entrypoints/blueprints/backoffice.py      | 158 +++++++++++++++++-
 .../opendlp/entrypoints/blueprints/gsheets.py |   8 +
 .../templates/backoffice/assembly_data.html   |  19 +--
 .../backoffice/assembly_details.html          |  17 +-
 .../backoffice/assembly_members.html          |  17 +-
 .../backoffice/assembly_respondents.html      |  96 +++++++++++
 .../backoffice/assembly_selection.html        |  16 +-
 .../backoffice/assembly_targets.html          |  96 +++++++++++
 .../backoffice/components/assembly_tabs.html  |  63 +++++++
 backend/tests/bdd/config.py                   |  16 ++
 backend/tests/bdd/test_backoffice.py          |  37 +++-
 13 files changed, 691 insertions(+), 50 deletions(-)
 create mode 100644 backend/docs/agent/453-csv-upload.md
 create mode 100644 backend/templates/backoffice/assembly_respondents.html
 create mode 100644 backend/templates/backoffice/assembly_targets.html
 create mode 100644 backend/templates/backoffice/components/assembly_tabs.html

diff --git a/backend/docs/agent/453-csv-upload.md b/backend/docs/agent/453-csv-upload.md
new file mode 100644
index 00000000..d8724d55
--- /dev/null
+++ b/backend/docs/agent/453-csv-upload.md
@@ -0,0 +1,146 @@
+# 453 CSV Upload Implementation
+
+This document tracks the implementation of the CSV upload feature for assemblies, allowing data import without using Google Spreadsheets.
+
+## Branch: 453-csv-upload
+
+## Overview
+
+The goal is to add CSV file upload capability as an alternative to Google Spreadsheets for managing assembly data. This involves:
+
+1. Adding new tabs (Targets, Respondents) to the assembly navigation
+2. Implementing CSV upload UI components
+3. Creating service layer functions for CSV parsing and import
+4. Building the frontend patterns and documentation
+
+## Implementation Progress
+
+### Phase 1: Tab Navigation (Completed)
+
+Added two new tabs to the assembly view navigation:
+
+- **Targets** - For managing selection target categories (demographic quotas)
+- **Respondents** - For managing participant/respondent data
+
+#### Tab Behavior
+
+| Condition | Targets Tab | Respondents Tab |
+|-----------|-------------|-----------------|
+| No data source configured | Disabled | Disabled |
+| GSheet configured | Enabled (shows info box) | Enabled (shows info box) |
+| CSV source, no upload yet | Disabled | Disabled |
+| CSV source, data uploaded | Enabled | Enabled |
+
+### Files Changed
+
+#### New Files
+
+- `templates/backoffice/components/assembly_tabs.html` - Shared macro for consistent tab rendering
+- `templates/backoffice/assembly_targets.html` - Targets page template
+- `templates/backoffice/assembly_respondents.html` - Respondents page template
+
+#### Modified Files
+
+- `src/opendlp/entrypoints/blueprints/backoffice.py`:
+  - Added `view_assembly_targets()` route
+  - Added `view_assembly_respondents()` route
+  - Updated existing routes to pass tab context (data_source, gsheet, targets_enabled, respondents_enabled)
+
+- `src/opendlp/entrypoints/blueprints/gsheets.py`:
+  - Updated `view_assembly_selection()` to pass tab context
+
+- Template files updated to use `assembly_tabs` macro:
+  - `templates/backoffice/assembly_details.html`
+  - `templates/backoffice/assembly_data.html`
+  - `templates/backoffice/assembly_members.html`
+  - `templates/backoffice/assembly_selection.html`
+
+- BDD tests:
+  - `features/backoffice-csv-upload.feature` - Updated test scenarios
+  - `tests/bdd/test_backoffice.py` - Added new step definitions
+  - `tests/bdd/config.py` - Added URL helpers for new routes
+
+### Phase 2: UI Components (Completed)
+
+Created a file input component (`file_input` macro) in `templates/backoffice/components/input.html` with:
+
+- Label and hint text support
+- Error state display
+- Accept attribute for file type filtering
+- Required and disabled states
+- Alpine.js binding support via attrs parameter
+
+Added file upload pattern documentation to `/backoffice/dev/patterns` page.
+
+### Phase 3: GSheet Info Display (Completed)
+
+For assemblies using Google Sheets as the data source:
+
+- **Targets page**: Shows an info box explaining that targets are configured in Google Sheets, displaying the configured tab names (Categories Tab for initial/replacement selection)
+- **Respondents page**: Shows similar info box with Respondents tab names
+
+### Phase 4: CSV Upload (Pending)
+
+Still to implement:
+
+1. CSV upload form on Targets page (CSV source)
+2. CSV upload form on Respondents page (CSV source)
+3. Integration with existing service layer functions:
+   - `import_targets_from_csv()`
+   - `import_respondents_from_csv()`
+
+## Technical Notes
+
+### Assembly Tabs Macro
+
+The `assembly_tabs` macro centralizes tab rendering logic:
+
+```jinja
+{{ assembly_tabs(
+    assembly=assembly,
+    active_tab="data",
+    data_source=data_source,
+    gsheet=gsheet,
+    targets_enabled=targets_enabled,
+    respondents_enabled=respondents_enabled
+) }}
+```
+
+Parameters:
+- `assembly` - Assembly object
+- `active_tab` - One of: "details", "data", "targets", "respondents", "selection", "members"
+- `data_source` - "gsheet", "csv", or ""
+- `gsheet` - GSheet configuration object (or None)
+- `targets_enabled` - Boolean for tab clickability
+- `respondents_enabled` - Boolean for tab clickability
+
+### Tab Enabled Logic
+
+For GSheet source:
+- Tabs are enabled when `gsheet` configuration exists
+
+For CSV source (future):
+- Targets tab enabled when targets CSV has been uploaded
+- Respondents tab enabled when respondents CSV has been uploaded
+
+### CSP Compatibility
+
+All Alpine.js code follows CSP-compatible patterns:
+- Flat properties only in `x-model` (no nested paths)
+- No string arguments in click handlers
+- CSRF token included in fetch requests via `X-CSRFToken` header
+
+## Related Documents
+
+- [Frontend Patterns Documentation](/backoffice/dev/patterns) - Live examples and patterns
+- [Service Docs](/backoffice/dev/service-docs) - Service layer testing interface
+- [CSV Upload GDS Plan](csv-upload-gds-plan.md) - Original planning document
+- [CSV Upload GDS Research](csv-upload-gds-research.md) - Research notes
+
+## Next Steps
+
+1. Implement CSV upload form on Targets page
+2. Implement CSV upload form on Respondents page
+3. Add success/error feedback after uploads
+4. Add data preview functionality
+5. Run BDD tests to verify all scenarios pass
diff --git a/backend/features/backoffice-csv-upload.feature b/backend/features/backoffice-csv-upload.feature
index 10607212..66925718 100644
--- a/backend/features/backoffice-csv-upload.feature
+++ b/backend/features/backoffice-csv-upload.feature
@@ -3,18 +3,52 @@ Feature: Backoffice CSV Upload
   I want to upload CSV files for assemblies
   So that I can import participant data without using Google Spreadsheets.
 
-  Scenario: Targets tab appears when CSV data source is selected
+  Scenario: Targets and Respondents tabs are always visible
     Given I am logged in as an admin user
-    And there is an assembly called "CSV Test Assembly"
-    When I visit the assembly data page for "CSV Test Assembly"
-    And I select "CSV file" from the data source selector
+    And there is an assembly called "Tab Test Assembly"
+    When I visit the assembly details page for "Tab Test Assembly"
     Then I should see a "Targets" tab in the assembly navigation
+    And I should see a "Respondents" tab in the assembly navigation
     And the "Targets" tab should be disabled
+    And the "Respondents" tab should be disabled
 
-  Scenario: Targets tab disappears when switching to Google Spreadsheet
+  Scenario: Targets tab is disabled when no data source is configured
     Given I am logged in as an admin user
-    And there is an assembly called "CSV Switch Assembly"
-    When I visit the assembly data page for "CSV Switch Assembly" with source "csv"
+    And there is an assembly called "No Data Source Assembly"
+    When I visit the assembly data page for "No Data Source Assembly"
     Then I should see a "Targets" tab in the assembly navigation
-    When I select "Google Spreadsheet" from the data source selector
-    Then I should not see a "Targets" tab in the assembly navigation
+    And the "Targets" tab should be disabled
+    And the "Respondents" tab should be disabled
+
+  Scenario: Targets and Respondents tabs are enabled when gsheet is configured
+    Given I am logged in as an admin user
+    And there is an assembly called "GSheet Configured Assembly"
+    And the assembly "GSheet Configured Assembly" has a gsheet configuration
+    When I visit the assembly details page for "GSheet Configured Assembly"
+    Then I should see a "Targets" tab in the assembly navigation
+    And I should see a "Respondents" tab in the assembly navigation
+    And the "Targets" tab should be enabled
+    And the "Respondents" tab should be enabled
+
+  Scenario: Targets page shows gsheet info when gsheet source is configured
+    Given I am logged in as an admin user
+    And there is an assembly called "GSheet Targets Assembly"
+    And the assembly "GSheet Targets Assembly" has a gsheet configuration
+    When I visit the assembly targets page for "GSheet Targets Assembly"
+    Then I should see "Targets are configured in Google Sheets"
+    And I should see "Categories"
+
+  Scenario: Respondents page shows gsheet info when gsheet source is configured
+    Given I am logged in as an admin user
+    And there is an assembly called "GSheet Respondents Assembly"
+    And the assembly "GSheet Respondents Assembly" has a gsheet configuration
+    When I visit the assembly respondents page for "GSheet Respondents Assembly"
+    Then I should see "Respondents are configured in Google Sheets"
+    And I should see "Respondents"
+
+  Scenario: Targets tab is disabled for CSV source until targets uploaded
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Targets Assembly"
+    When I visit the assembly data page for "CSV Targets Assembly" with source "csv"
+    Then I should see a "Targets" tab in the assembly navigation
+    And the "Targets" tab should be disabled
diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index a7c37b4c..02ec4248 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -104,7 +104,27 @@ def view_assembly(assembly_id: uuid.UUID) -> ResponseReturnValue:
         with uow:
             assembly = get_assembly_with_permissions(uow, assembly_id, current_user.id)
 
-        return render_template("backoffice/assembly_details.html", assembly=assembly), 200
+        # Get gsheet config for tab state
+        gsheet = None
+        try:
+            uow_gsheet = bootstrap.bootstrap()
+            gsheet = get_assembly_gsheet(uow_gsheet, assembly_id, current_user.id)
+        except Exception:  # noqa: S110
+            pass  # No gsheet config exists - this is expected for new assemblies
+
+        # Determine data source and tab enabled states
+        data_source = "gsheet" if gsheet else ""
+        targets_enabled = gsheet is not None
+        respondents_enabled = gsheet is not None
+
+        return render_template(
+            "backoffice/assembly_details.html",
+            assembly=assembly,
+            data_source=data_source,
+            gsheet=gsheet,
+            targets_enabled=targets_enabled,
+            respondents_enabled=respondents_enabled,
+        ), 200
     except InsufficientPermissions as e:
         current_app.logger.warning(f"Insufficient permissions for assembly {assembly_id} user {current_user.id}: {e}")
         # TODO: consider change to "Assembly not found" so as not to leak info
@@ -257,6 +277,12 @@ def view_assembly_data(assembly_id: uuid.UUID) -> ResponseReturnValue:
             # Create form based on mode - form has defaults built in
             gsheet_form = EditAssemblyGSheetForm(obj=gsheet) if gsheet else CreateAssemblyGSheetForm()
 
+        # Determine tab enabled states
+        # For gsheet: enabled if gsheet config exists
+        # For CSV: would be enabled if targets/respondents CSV uploaded (future implementation)
+        targets_enabled = gsheet is not None if data_source == "gsheet" else False
+        respondents_enabled = gsheet is not None if data_source == "gsheet" else False
+
         return render_template(
             "backoffice/assembly_data.html",
             assembly=assembly,
@@ -266,6 +292,8 @@ def view_assembly_data(assembly_id: uuid.UUID) -> ResponseReturnValue:
             gsheet_mode=gsheet_mode,
             gsheet_form=gsheet_form,
             google_service_account_email=google_service_account_email,
+            targets_enabled=targets_enabled,
+            respondents_enabled=respondents_enabled,
         ), 200
     except NotFoundError as e:
         current_app.logger.warning(f"Assembly {assembly_id} not found for user {current_user.id}: {e}")
@@ -282,6 +310,117 @@ def view_assembly_data(assembly_id: uuid.UUID) -> ResponseReturnValue:
         return redirect(url_for("backoffice.dashboard"))
 
 
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/targets")
+@login_required
+def view_assembly_targets(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Backoffice assembly targets page."""
+    try:
+        # Get assembly with permissions
+        uow = bootstrap.bootstrap()
+        with uow:
+            assembly = get_assembly_with_permissions(uow, assembly_id, current_user.id)
+
+        # Determine data source and whether tabs should be enabled
+        gsheet = None
+        try:
+            uow_gsheet = bootstrap.bootstrap()
+            gsheet = get_assembly_gsheet(uow_gsheet, assembly_id, current_user.id)
+        except Exception:  # noqa: S110
+            pass  # No gsheet config exists - this is expected for new assemblies
+
+        # Determine data source
+        if gsheet:
+            data_source = "gsheet"
+        else:
+            data_source = request.args.get("source", "")
+            if data_source not in ("gsheet", "csv", ""):
+                data_source = ""
+
+        # Targets tab is enabled if gsheet exists (for gsheet source)
+        # For CSV source, it would be enabled if targets CSV has been uploaded (future implementation)
+        targets_enabled = gsheet is not None if data_source == "gsheet" else False
+
+        # Respondents tab enabled logic (for now, same as targets for gsheet)
+        respondents_enabled = gsheet is not None if data_source == "gsheet" else False
+
+        return render_template(
+            "backoffice/assembly_targets.html",
+            assembly=assembly,
+            data_source=data_source,
+            gsheet=gsheet,
+            targets_enabled=targets_enabled,
+            respondents_enabled=respondents_enabled,
+        ), 200
+    except NotFoundError as e:
+        current_app.logger.warning(f"Assembly {assembly_id} not found for user {current_user.id}: {e}")
+        flash(_("Assembly not found"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+    except InsufficientPermissions as e:
+        current_app.logger.warning(f"Insufficient permissions for assembly {assembly_id} user {current_user.id}: {e}")
+        flash(_("You don't have permission to view this assembly"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+    except Exception as e:
+        current_app.logger.error(f"View assembly targets error for assembly {assembly_id} user {current_user.id}: {e}")
+        current_app.logger.exception("Full stacktrace:")
+        flash(_("An error occurred while loading assembly targets"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+
+
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/respondents")
+@login_required
+def view_assembly_respondents(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Backoffice assembly respondents page."""
+    try:
+        # Get assembly with permissions
+        uow = bootstrap.bootstrap()
+        with uow:
+            assembly = get_assembly_with_permissions(uow, assembly_id, current_user.id)
+
+        # Determine data source and whether tabs should be enabled
+        gsheet = None
+        try:
+            uow_gsheet = bootstrap.bootstrap()
+            gsheet = get_assembly_gsheet(uow_gsheet, assembly_id, current_user.id)
+        except Exception:  # noqa: S110
+            pass  # No gsheet config exists - this is expected for new assemblies
+
+        # Determine data source
+        if gsheet:
+            data_source = "gsheet"
+        else:
+            data_source = request.args.get("source", "")
+            if data_source not in ("gsheet", "csv", ""):
+                data_source = ""
+
+        # Tab enabled logic
+        targets_enabled = gsheet is not None if data_source == "gsheet" else False
+        respondents_enabled = gsheet is not None if data_source == "gsheet" else False
+
+        return render_template(
+            "backoffice/assembly_respondents.html",
+            assembly=assembly,
+            data_source=data_source,
+            gsheet=gsheet,
+            targets_enabled=targets_enabled,
+            respondents_enabled=respondents_enabled,
+        ), 200
+    except NotFoundError as e:
+        current_app.logger.warning(f"Assembly {assembly_id} not found for user {current_user.id}: {e}")
+        flash(_("Assembly not found"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+    except InsufficientPermissions as e:
+        current_app.logger.warning(f"Insufficient permissions for assembly {assembly_id} user {current_user.id}: {e}")
+        flash(_("You don't have permission to view this assembly"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+    except Exception as e:
+        current_app.logger.error(
+            f"View assembly respondents error for assembly {assembly_id} user {current_user.id}: {e}"
+        )
+        current_app.logger.exception("Full stacktrace:")
+        flash(_("An error occurred while loading assembly respondents"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+
+
 @backoffice_bp.route("/assembly/<uuid:assembly_id>/members")
 @login_required
 def view_assembly_members(assembly_id: uuid.UUID) -> ResponseReturnValue:
@@ -297,6 +436,19 @@ def view_assembly_members(assembly_id: uuid.UUID) -> ResponseReturnValue:
             # Check if current user can manage this assembly
             can_manage_assembly_users = has_global_admin(current_user)
 
+        # Get gsheet config for tab state
+        gsheet = None
+        try:
+            uow_gsheet = bootstrap.bootstrap()
+            gsheet = get_assembly_gsheet(uow_gsheet, assembly_id, current_user.id)
+        except Exception:  # noqa: S110
+            pass  # No gsheet config exists - this is expected for new assemblies
+
+        # Determine data source and tab enabled states
+        data_source = "gsheet" if gsheet else ""
+        targets_enabled = gsheet is not None
+        respondents_enabled = gsheet is not None
+
         add_user_form = AddUserToAssemblyForm()
 
         return render_template(
@@ -306,6 +458,10 @@ def view_assembly_members(assembly_id: uuid.UUID) -> ResponseReturnValue:
             can_manage_assembly_users=can_manage_assembly_users,
             add_user_form=add_user_form,
             current_tab="members",
+            data_source=data_source,
+            gsheet=gsheet,
+            targets_enabled=targets_enabled,
+            respondents_enabled=respondents_enabled,
         ), 200
     except NotFoundError as e:
         current_app.logger.warning(f"Assembly {assembly_id} not found for user {current_user.id}: {e}")
diff --git a/backend/src/opendlp/entrypoints/blueprints/gsheets.py b/backend/src/opendlp/entrypoints/blueprints/gsheets.py
index 5ae930d9..0ee7ae15 100644
--- a/backend/src/opendlp/entrypoints/blueprints/gsheets.py
+++ b/backend/src/opendlp/entrypoints/blueprints/gsheets.py
@@ -209,6 +209,11 @@ def view_assembly_selection(assembly_id: uuid.UUID) -> ResponseReturnValue:
         replacement_modal_open = request.args.get("replacement_modal") == "open" or current_replacement is not None
         edit_number_modal_open = request.args.get("edit_number") == "1"
 
+        # Determine data source and tab enabled states
+        data_source = "gsheet" if gsheet else ""
+        targets_enabled = gsheet is not None
+        respondents_enabled = gsheet is not None
+
         return render_template(
             "backoffice/assembly_selection.html",
             assembly=assembly,
@@ -234,6 +239,9 @@ def view_assembly_selection(assembly_id: uuid.UUID) -> ResponseReturnValue:
             replacement_min_select=replacement_min_select,
             replacement_max_select=replacement_max_select,
             edit_number_modal_open=edit_number_modal_open,
+            data_source=data_source,
+            targets_enabled=targets_enabled,
+            respondents_enabled=respondents_enabled,
         ), 200
     except NotFoundError as e:
         current_app.logger.warning(f"Assembly {assembly_id} not found for selection page: {e}")
diff --git a/backend/templates/backoffice/assembly_data.html b/backend/templates/backoffice/assembly_data.html
index 804ba608..3f027882 100644
--- a/backend/templates/backoffice/assembly_data.html
+++ b/backend/templates/backoffice/assembly_data.html
@@ -6,7 +6,7 @@
 {% from "backoffice/components/breadcrumbs.html" import breadcrumbs %}
 {% from "backoffice/components/button.html" import button %}
 {% from "backoffice/components/input.html" import input, checkbox, radio_group, first_error as e %}
-{% from "backoffice/components/tabs.html" import tabs %}
+{% from "backoffice/components/assembly_tabs.html" import assembly_tabs %}
 
 {% block title %}{{ _("Data") }} - {{ assembly.title }}{% endblock %}
 
@@ -27,16 +27,13 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
         {{ _("Manage data for this assembly") }}
     </p>
 
-    {% set source_param = "?source=" ~ data_source if data_source else "" %}
-    {{ tabs(
-    items=[
-    {"label": _("Details"), "href": url_for('backoffice.view_assembly', assembly_id=assembly.id) ~ source_param},
-    {"label": _("Data"), "href": url_for('backoffice.view_assembly_data', assembly_id=assembly.id) ~ source_param, "active": true}
-    ] + ([{"label": _("Targets"), "href": "#", "disabled": true}] if data_source == "csv" else []) + [
-    {"label": _("Selection"), "href": url_for('gsheets.view_assembly_selection', assembly_id=assembly.id) ~ source_param},
-    {"label": _("Team Members"), "href": url_for('backoffice.view_assembly_members', assembly_id=assembly.id) ~ source_param}
-    ],
-    aria_label=_("Assembly sections")
+    {{ assembly_tabs(
+    assembly=assembly,
+    active_tab="data",
+    data_source=data_source,
+    gsheet=gsheet,
+    targets_enabled=targets_enabled|default(false),
+    respondents_enabled=respondents_enabled|default(false)
     ) }}
 
     {# Data Source Selector #}
diff --git a/backend/templates/backoffice/assembly_details.html b/backend/templates/backoffice/assembly_details.html
index b1cfc30e..bf22f088 100644
--- a/backend/templates/backoffice/assembly_details.html
+++ b/backend/templates/backoffice/assembly_details.html
@@ -5,7 +5,7 @@
 {% extends "backoffice/base_page.html" %}
 {% from "backoffice/components/breadcrumbs.html" import breadcrumbs %}
 {% from "backoffice/components/button.html" import button %}
-{% from "backoffice/components/tabs.html" import tabs %}
+{% from "backoffice/components/assembly_tabs.html" import assembly_tabs %}
 
 {% block title %}{{ assembly.title }} - Assembly{% endblock %}
 
@@ -25,14 +25,13 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
         {{ _("Assembly Details") }}
     </p>
 
-    {{ tabs(
-    items=[
-    {"label": _("Details"), "href": url_for('backoffice.view_assembly', assembly_id=assembly.id), "active": true},
-    {"label": _("Data"), "href": url_for('backoffice.view_assembly_data', assembly_id=assembly.id)},
-    {"label": _("Selection"), "href": url_for('gsheets.view_assembly_selection', assembly_id=assembly.id)},
-    {"label": _("Team Members"), "href": url_for('backoffice.view_assembly_members', assembly_id=assembly.id)}
-    ],
-    aria_label=_("Assembly sections")
+    {{ assembly_tabs(
+    assembly=assembly,
+    active_tab="details",
+    data_source=data_source|default(""),
+    gsheet=gsheet|default(none),
+    targets_enabled=targets_enabled|default(false),
+    respondents_enabled=respondents_enabled|default(false)
     ) }}
 
     {# Assembly Question Section #}
diff --git a/backend/templates/backoffice/assembly_members.html b/backend/templates/backoffice/assembly_members.html
index 3b5cbfec..51156c3b 100644
--- a/backend/templates/backoffice/assembly_members.html
+++ b/backend/templates/backoffice/assembly_members.html
@@ -7,7 +7,7 @@
 {% from "backoffice/components/button.html" import button %}
 {% from "backoffice/components/card.html" import card %}
 {% from "backoffice/components/search_dropdown.html" import search_dropdown %}
-{% from "backoffice/components/tabs.html" import tabs %}
+{% from "backoffice/components/assembly_tabs.html" import assembly_tabs %}
 
 {% block title %}{{ _("Team Members") }} - {{ assembly.title }}{% endblock %}
 
@@ -28,14 +28,13 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
         {{ _("Manage team members for this assembly") }}
     </p>
 
-    {{ tabs(
-    items=[
-    {"label": _("Details"), "href": url_for('backoffice.view_assembly', assembly_id=assembly.id)},
-    {"label": _("Data"), "href": url_for('backoffice.view_assembly_data', assembly_id=assembly.id)},
-    {"label": _("Selection"), "href": url_for('gsheets.view_assembly_selection', assembly_id=assembly.id)},
-    {"label": _("Team Members"), "href": url_for('backoffice.view_assembly_members', assembly_id=assembly.id), "active": true}
-    ],
-    aria_label=_("Assembly sections")
+    {{ assembly_tabs(
+    assembly=assembly,
+    active_tab="members",
+    data_source=data_source|default(""),
+    gsheet=gsheet|default(none),
+    targets_enabled=targets_enabled|default(false),
+    respondents_enabled=respondents_enabled|default(false)
     ) }}
 
     {# Team Members Section #}
diff --git a/backend/templates/backoffice/assembly_respondents.html b/backend/templates/backoffice/assembly_respondents.html
new file mode 100644
index 00000000..994628d0
--- /dev/null
+++ b/backend/templates/backoffice/assembly_respondents.html
@@ -0,0 +1,96 @@
+{#
+ABOUTME: Backoffice assembly respondents page
+ABOUTME: Displays respondent data configuration for assemblies
+#}
+{% extends "backoffice/base_page.html" %}
+{% from "backoffice/components/breadcrumbs.html" import breadcrumbs %}
+{% from "backoffice/components/button.html" import button %}
+{% from "backoffice/components/alert.html" import alert %}
+{% from "backoffice/components/assembly_tabs.html" import assembly_tabs %}
+
+{% block title %}{{ _("Respondents") }} - {{ assembly.title }}{% endblock %}
+
+{% block breadcrumb_section %}
+    <div class="mb-6">
+        {{ breadcrumbs([
+        {"label": _("Dashboard"), "href": url_for('backoffice.dashboard')},
+        {"label": assembly.title, "href": url_for('backoffice.view_assembly', assembly_id=assembly.id)},
+        {"label": _("Respondents")}
+        ]) }}
+    </div>
+{% endblock %}
+
+{% block page_content %}
+    {# Page Heading #}
+    <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assembly.title }}</h1>
+    <p class="text-body-lg mb-6" style="color: var(--color-secondary-text);">
+        {{ _("Manage respondent data for this assembly") }}
+    </p>
+
+    {{ assembly_tabs(
+    assembly=assembly,
+    active_tab="respondents",
+    data_source=data_source,
+    gsheet=gsheet,
+    targets_enabled=targets_enabled,
+    respondents_enabled=respondents_enabled
+    ) }}
+
+    {% if data_source == "gsheet" and gsheet %}
+        {# Google Sheet source - show info about where respondents are configured #}
+        <section class="mb-8">
+            <div class="rounded-lg p-6" style="background-color: var(--color-tables-cards); border: 1px solid var(--color-borders-dividers);">
+                <div class="flex items-start gap-4">
+                    <div class="flex-shrink-0">
+                        <svg class="w-6 h-6" style="color: var(--color-primary-action);" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M13 16h-1v-4h-1m1-4h.01M21 12a9 9 0 11-18 0 9 9 0 0118 0z" />
+                        </svg>
+                    </div>
+                    <div>
+                        <h2 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Respondents are configured in Google Sheets") }}</h2>
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Respondent data (participant information) is stored in your Google Spreadsheet.") }}
+                        </p>
+
+                        <dl class="flex flex-col gap-2">
+                            <div class="flex gap-2">
+                                <dt class="text-body-md font-medium" style="color: var(--color-secondary-text);">{{ _("Initial Selection Respondents Tab:") }}</dt>
+                                <dd class="text-body-md" style="color: var(--color-body-text);">
+                                    <code class="px-2 py-0.5 rounded" style="background-color: var(--color-page-background);">{{ gsheet.select_registrants_tab or _("Not configured") }}</code>
+                                </dd>
+                            </div>
+                            <div class="flex gap-2">
+                                <dt class="text-body-md font-medium" style="color: var(--color-secondary-text);">{{ _("Replacement Respondents Tab:") }}</dt>
+                                <dd class="text-body-md" style="color: var(--color-body-text);">
+                                    <code class="px-2 py-0.5 rounded" style="background-color: var(--color-page-background);">{{ gsheet.replace_registrants_tab or _("Not configured") }}</code>
+                                </dd>
+                            </div>
+                        </dl>
+
+                        <div class="mt-4">
+                            {{ button(_("View Data Configuration"), href=url_for('backoffice.view_assembly_data', assembly_id=assembly.id) ~ "?source=gsheet", variant="outline") }}
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </section>
+    {% elif data_source == "csv" %}
+        {# CSV source - placeholder for future implementation #}
+        <section class="mb-8">
+            {{ alert(_("CSV respondents upload will be implemented here."), variant="info") }}
+        </section>
+    {% else %}
+        {# No data source selected #}
+        <section class="mb-8">
+            {{ alert(_("Please configure a data source in the Data tab first."), variant="warning") }}
+            <div class="mt-4">
+                {{ button(_("Configure Data Source"), href=url_for('backoffice.view_assembly_data', assembly_id=assembly.id), variant="primary") }}
+            </div>
+        </section>
+    {% endif %}
+
+    {# Actions #}
+    <section class="flex gap-4">
+        {{ button(_("Back to Dashboard"), href=url_for('backoffice.dashboard'), variant="outline") }}
+    </section>
+{% endblock %}
diff --git a/backend/templates/backoffice/assembly_selection.html b/backend/templates/backoffice/assembly_selection.html
index 4c107425..ff78dea8 100644
--- a/backend/templates/backoffice/assembly_selection.html
+++ b/backend/templates/backoffice/assembly_selection.html
@@ -7,7 +7,7 @@
 {% from "backoffice/components/button.html" import button %}
 {% from "backoffice/components/card.html" import card, card_body, card_footer %}
 {% from "backoffice/components/alert.html" import alert %}
-{% from "backoffice/components/tabs.html" import tabs %}
+{% from "backoffice/components/assembly_tabs.html" import assembly_tabs %}
 {% block title %}{{ _("Selection") }} - {{ assembly.title }}{% endblock %}
 {% block breadcrumb_section %}
     <div class="mb-6">
@@ -24,13 +24,13 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
     <p class="text-body-lg mb-6" style="color: var(--color-secondary-text);">
         {{ _("Run selection and manage generated outputs") }}
     </p>
-    {{ tabs(items=[
-    {"label": _("Details") , "href": url_for('backoffice.view_assembly', assembly_id=assembly.id)},
-    {"label": _("Data"), "href": url_for('backoffice.view_assembly_data', assembly_id=assembly.id)},
-    {"label": _("Selection"), "href": url_for('gsheets.view_assembly_selection', assembly_id=assembly.id), "active": true},
-    {"label": _("Team Members"), "href": url_for('backoffice.view_assembly_members', assembly_id=assembly.id)}
-    ],
-    aria_label=_("Assembly sections")
+    {{ assembly_tabs(
+    assembly=assembly,
+    active_tab="selection",
+    data_source=data_source|default(""),
+    gsheet=gsheet|default(none),
+    targets_enabled=targets_enabled|default(false),
+    respondents_enabled=respondents_enabled|default(false)
     ) }}
     {# Selection Progress Modal - shown when current_selection parameter is present #}
     {# Pure HTMX approach: server controls close button state, HTMX swaps entire modal content #}
diff --git a/backend/templates/backoffice/assembly_targets.html b/backend/templates/backoffice/assembly_targets.html
new file mode 100644
index 00000000..3b7adc67
--- /dev/null
+++ b/backend/templates/backoffice/assembly_targets.html
@@ -0,0 +1,96 @@
+{#
+ABOUTME: Backoffice assembly targets page
+ABOUTME: Displays target categories configuration for assemblies
+#}
+{% extends "backoffice/base_page.html" %}
+{% from "backoffice/components/breadcrumbs.html" import breadcrumbs %}
+{% from "backoffice/components/button.html" import button %}
+{% from "backoffice/components/alert.html" import alert %}
+{% from "backoffice/components/assembly_tabs.html" import assembly_tabs %}
+
+{% block title %}{{ _("Targets") }} - {{ assembly.title }}{% endblock %}
+
+{% block breadcrumb_section %}
+    <div class="mb-6">
+        {{ breadcrumbs([
+        {"label": _("Dashboard"), "href": url_for('backoffice.dashboard')},
+        {"label": assembly.title, "href": url_for('backoffice.view_assembly', assembly_id=assembly.id)},
+        {"label": _("Targets")}
+        ]) }}
+    </div>
+{% endblock %}
+
+{% block page_content %}
+    {# Page Heading #}
+    <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assembly.title }}</h1>
+    <p class="text-body-lg mb-6" style="color: var(--color-secondary-text);">
+        {{ _("Configure selection targets for this assembly") }}
+    </p>
+
+    {{ assembly_tabs(
+    assembly=assembly,
+    active_tab="targets",
+    data_source=data_source,
+    gsheet=gsheet,
+    targets_enabled=targets_enabled,
+    respondents_enabled=respondents_enabled
+    ) }}
+
+    {% if data_source == "gsheet" and gsheet %}
+        {# Google Sheet source - show info about where targets are configured #}
+        <section class="mb-8">
+            <div class="rounded-lg p-6" style="background-color: var(--color-tables-cards); border: 1px solid var(--color-borders-dividers);">
+                <div class="flex items-start gap-4">
+                    <div class="flex-shrink-0">
+                        <svg class="w-6 h-6" style="color: var(--color-primary-action);" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M13 16h-1v-4h-1m1-4h.01M21 12a9 9 0 11-18 0 9 9 0 0118 0z" />
+                        </svg>
+                    </div>
+                    <div>
+                        <h2 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Targets are configured in Google Sheets") }}</h2>
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Selection targets (demographic categories and quotas) are defined in your Google Spreadsheet.") }}
+                        </p>
+
+                        <dl class="flex flex-col gap-2">
+                            <div class="flex gap-2">
+                                <dt class="text-body-md font-medium" style="color: var(--color-secondary-text);">{{ _("Initial Selection Categories Tab:") }}</dt>
+                                <dd class="text-body-md" style="color: var(--color-body-text);">
+                                    <code class="px-2 py-0.5 rounded" style="background-color: var(--color-page-background);">{{ gsheet.select_targets_tab or _("Not configured") }}</code>
+                                </dd>
+                            </div>
+                            <div class="flex gap-2">
+                                <dt class="text-body-md font-medium" style="color: var(--color-secondary-text);">{{ _("Replacement Categories Tab:") }}</dt>
+                                <dd class="text-body-md" style="color: var(--color-body-text);">
+                                    <code class="px-2 py-0.5 rounded" style="background-color: var(--color-page-background);">{{ gsheet.replace_targets_tab or _("Not configured") }}</code>
+                                </dd>
+                            </div>
+                        </dl>
+
+                        <div class="mt-4">
+                            {{ button(_("View Data Configuration"), href=url_for('backoffice.view_assembly_data', assembly_id=assembly.id) ~ "?source=gsheet", variant="outline") }}
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </section>
+    {% elif data_source == "csv" %}
+        {# CSV source - placeholder for future implementation #}
+        <section class="mb-8">
+            {{ alert(_("CSV targets upload will be implemented here."), variant="info") }}
+        </section>
+    {% else %}
+        {# No data source selected #}
+        <section class="mb-8">
+            {{ alert(_("Please configure a data source in the Data tab first."), variant="warning") }}
+            <div class="mt-4">
+                {{ button(_("Configure Data Source"), href=url_for('backoffice.view_assembly_data', assembly_id=assembly.id), variant="primary") }}
+            </div>
+        </section>
+    {% endif %}
+
+    {# Actions #}
+    <section class="flex gap-4">
+        {{ button(_("Back to Dashboard"), href=url_for('backoffice.dashboard'), variant="outline") }}
+    </section>
+{% endblock %}
diff --git a/backend/templates/backoffice/components/assembly_tabs.html b/backend/templates/backoffice/components/assembly_tabs.html
new file mode 100644
index 00000000..091a52c4
--- /dev/null
+++ b/backend/templates/backoffice/components/assembly_tabs.html
@@ -0,0 +1,63 @@
+{#
+ABOUTME: Shared assembly navigation tabs macro
+ABOUTME: Ensures consistent tab display across all assembly pages
+#}
+{% from "backoffice/components/tabs.html" import tabs %}
+
+{% macro assembly_tabs(assembly, active_tab, data_source="", gsheet=none, targets_enabled=false, respondents_enabled=false) %}
+    {#
+    Render consistent assembly navigation tabs across all assembly pages.
+
+    Args:
+        assembly: The assembly object
+        active_tab: Current active tab - one of: "details", "data", "targets", "respondents", "selection", "members"
+        data_source: Current data source ("gsheet", "csv", or "")
+        gsheet: Google Sheet configuration object (if exists)
+        targets_enabled: Whether the Targets tab should be clickable
+        respondents_enabled: Whether the Respondents tab should be clickable
+
+    Usage:
+        assembly_tabs(assembly, "details")
+        assembly_tabs(assembly, "data", data_source="csv", targets_enabled=false)
+        assembly_tabs(assembly, "targets", data_source="gsheet", gsheet=gsheet, targets_enabled=true)
+    #}
+    {% set source_param = "?source=" ~ data_source if data_source else "" %}
+
+    {{ tabs(
+    items=[
+    {
+    "label": _("Details"),
+    "href": url_for('backoffice.view_assembly', assembly_id=assembly.id) ~ source_param,
+    "active": active_tab == "details"
+    },
+    {
+    "label": _("Data"),
+    "href": url_for('backoffice.view_assembly_data', assembly_id=assembly.id) ~ source_param,
+    "active": active_tab == "data"
+    },
+    {
+    "label": _("Targets"),
+    "href": url_for('backoffice.view_assembly_targets', assembly_id=assembly.id) ~ source_param,
+    "active": active_tab == "targets",
+    "disabled": not targets_enabled
+    },
+    {
+    "label": _("Respondents"),
+    "href": url_for('backoffice.view_assembly_respondents', assembly_id=assembly.id) ~ source_param,
+    "active": active_tab == "respondents",
+    "disabled": not respondents_enabled
+    },
+    {
+    "label": _("Selection"),
+    "href": url_for('gsheets.view_assembly_selection', assembly_id=assembly.id) ~ source_param,
+    "active": active_tab == "selection"
+    },
+    {
+    "label": _("Team Members"),
+    "href": url_for('backoffice.view_assembly_members', assembly_id=assembly.id) ~ source_param,
+    "active": active_tab == "members"
+    }
+    ],
+    aria_label=_("Assembly sections")
+    ) }}
+{% endmacro %}
diff --git a/backend/tests/bdd/config.py b/backend/tests/bdd/config.py
index 0a2a2cf7..308ea277 100644
--- a/backend/tests/bdd/config.py
+++ b/backend/tests/bdd/config.py
@@ -39,6 +39,8 @@ class Urls:
     backoffice_edit_assembly = "{base}/backoffice/assembly/{assembly_id}/edit"
     backoffice_members_assembly = "{base}/backoffice/assembly/{assembly_id}/members"
     backoffice_data_assembly = "{base}/backoffice/assembly/{assembly_id}/data"
+    backoffice_targets_assembly = "{base}/backoffice/assembly/{assembly_id}/targets"
+    backoffice_respondents_assembly = "{base}/backoffice/assembly/{assembly_id}/respondents"
     backoffice_selection_assembly = "{base}/backoffice/assembly/{assembly_id}/selection"
 
     assembly_urls: typing.ClassVar = {
@@ -79,6 +81,20 @@ def backoffice_data_assembly_url(cls, assembly_id: str, source: str = "", mode:
             url += "?" + urllib.parse.urlencode(params)
         return url
 
+    @classmethod
+    def backoffice_targets_assembly_url(cls, assembly_id: str, source: str = "") -> str:
+        url = cls.backoffice_targets_assembly.format(base=cls.base, assembly_id=assembly_id)
+        if source:
+            url += "?" + urllib.parse.urlencode({"source": source})
+        return url
+
+    @classmethod
+    def backoffice_respondents_assembly_url(cls, assembly_id: str, source: str = "") -> str:
+        url = cls.backoffice_respondents_assembly.format(base=cls.base, assembly_id=assembly_id)
+        if source:
+            url += "?" + urllib.parse.urlencode({"source": source})
+        return url
+
     @classmethod
     def backoffice_selection_assembly_url(cls, assembly_id: str) -> str:
         return cls.backoffice_selection_assembly.format(base=cls.base, assembly_id=assembly_id)
diff --git a/backend/tests/bdd/test_backoffice.py b/backend/tests/bdd/test_backoffice.py
index 14cd6a9f..9c9872c7 100644
--- a/backend/tests/bdd/test_backoffice.py
+++ b/backend/tests/bdd/test_backoffice.py
@@ -1121,7 +1121,10 @@ def see_assembly_selection_page(page: Page):
 @then(parsers.parse('I should see a "{tab_name}" tab in the assembly navigation'))
 def see_tab_in_navigation(page: Page, tab_name: str):
     """Verify a specific tab is visible in the assembly navigation."""
-    tab = page.locator("nav[aria-label] a, nav[aria-label] span").filter(has_text=tab_name)
+    # Use the Assembly sections nav specifically to avoid matching breadcrumbs
+    tab = page.locator("nav[aria-label='Assembly sections'] a, nav[aria-label='Assembly sections'] span").filter(
+        has_text=tab_name
+    )
     expect(tab).to_be_visible()
 
 
@@ -1129,12 +1132,40 @@ def see_tab_in_navigation(page: Page, tab_name: str):
 def tab_should_be_disabled(page: Page, tab_name: str):
     """Verify a specific tab is disabled (shown as span, not a link)."""
     # Disabled tabs are rendered as spans with data-disabled attribute, not links
-    disabled_tab = page.locator("nav[aria-label] span[data-disabled='true']").filter(has_text=tab_name)
+    disabled_tab = page.locator("nav[aria-label='Assembly sections'] span[data-disabled='true']").filter(
+        has_text=tab_name
+    )
     expect(disabled_tab).to_be_visible()
 
 
+@then(parsers.parse('the "{tab_name}" tab should be enabled'))
+def tab_should_be_enabled(page: Page, tab_name: str):
+    """Verify a specific tab is enabled (shown as a clickable link)."""
+    # Enabled tabs are rendered as anchor tags, not spans
+    enabled_tab = page.locator("nav[aria-label='Assembly sections'] a").filter(has_text=tab_name)
+    expect(enabled_tab).to_be_visible()
+
+
 @then(parsers.parse('I should not see a "{tab_name}" tab in the assembly navigation'))
 def should_not_see_tab_in_navigation(page: Page, tab_name: str):
     """Verify a specific tab is not visible in the assembly navigation."""
-    tab = page.locator("nav[aria-label] a, nav[aria-label] span").filter(has_text=tab_name)
+    tab = page.locator("nav[aria-label='Assembly sections'] a, nav[aria-label='Assembly sections'] span").filter(
+        has_text=tab_name
+    )
     expect(tab).to_have_count(0)
+
+
+@when(parsers.parse('I visit the assembly targets page for "{title}"'))
+def visit_assembly_targets_page(page: Page, title: str, test_database):
+    """Navigate directly to the assembly targets page."""
+    assembly_id = _assembly_name_id_cache.find_title(title, test_database)
+    if assembly_id:
+        page.goto(Urls.backoffice_targets_assembly_url(assembly_id))
+
+
+@when(parsers.parse('I visit the assembly respondents page for "{title}"'))
+def visit_assembly_respondents_page(page: Page, title: str, test_database):
+    """Navigate directly to the assembly respondents page."""
+    assembly_id = _assembly_name_id_cache.find_title(title, test_database)
+    if assembly_id:
+        page.goto(Urls.backoffice_respondents_assembly_url(assembly_id))

From 4599eb46595047185ee63e64bb922bd8d59c2a2a Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Sun, 22 Mar 2026 21:20:47 +0100
Subject: [PATCH 10/31] Add CSV upload functionality to Data tab

- Add service functions: get_csv_upload_status, delete_targets_for_assembly,
  delete_respondents_for_assembly
- Add routes for uploading/deleting targets and respondents CSV files
- Update assembly_data.html with CSV upload panel showing Target and People
  upload sections with proper state management
- Lock data source selector when CSV data is uploaded
- Enable Targets/Respondents tabs based on uploaded data
- Add BDD tests for CSV upload scenarios
- Include sample CSV files for testing

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/docs/agent/453-csv-upload.md          | 146 -----
 .../agent/453-csv-upload/1-select-source.png  | Bin 0 -> 34435 bytes
 .../453-csv-upload/2-upload-target-csv.png    | Bin 0 -> 19799 bytes
 .../3-upload-respondents-csv.png              | Bin 0 -> 24798 bytes
 .../453-csv-upload/4-both-csvs-uploaded.png   | Bin 0 -> 28667 bytes
 .../agent/453-csv-upload/453-csv-upload.md    | 499 ++++++++++++++++++
 .../453-csv-upload/sample_respondents.csv     |  21 +
 .../agent/453-csv-upload/sample_targets.csv   |  10 +
 .../features/backoffice-csv-upload.feature    |  43 ++
 .../src/opendlp/adapters/sql_repository.py    |   9 +
 .../entrypoints/blueprints/backoffice.py      | 348 ++++++++++--
 .../opendlp/entrypoints/blueprints/gsheets.py |  28 +-
 .../opendlp/service_layer/assembly_service.py | 107 ++++
 .../src/opendlp/service_layer/repositories.py |   5 +
 .../templates/backoffice/assembly_data.html   | 117 +++-
 .../backoffice/assembly_details.html          |   3 +-
 .../backoffice/assembly_members.html          |   3 +-
 .../backoffice/assembly_respondents.html      |   5 +-
 .../backoffice/assembly_selection.html        |  11 +-
 .../backoffice/assembly_targets.html          |   5 +-
 .../backoffice/components/assembly_tabs.html  |   8 +-
 backend/templates/backoffice/patterns.html    |  29 +-
 backend/tests/bdd/test_backoffice.py          |  76 +++
 backend/tests/fakes.py                        |   5 +
 24 files changed, 1258 insertions(+), 220 deletions(-)
 delete mode 100644 backend/docs/agent/453-csv-upload.md
 create mode 100644 backend/docs/agent/453-csv-upload/1-select-source.png
 create mode 100644 backend/docs/agent/453-csv-upload/2-upload-target-csv.png
 create mode 100644 backend/docs/agent/453-csv-upload/3-upload-respondents-csv.png
 create mode 100644 backend/docs/agent/453-csv-upload/4-both-csvs-uploaded.png
 create mode 100644 backend/docs/agent/453-csv-upload/453-csv-upload.md
 create mode 100644 backend/docs/agent/453-csv-upload/sample_respondents.csv
 create mode 100644 backend/docs/agent/453-csv-upload/sample_targets.csv

diff --git a/backend/docs/agent/453-csv-upload.md b/backend/docs/agent/453-csv-upload.md
deleted file mode 100644
index d8724d55..00000000
--- a/backend/docs/agent/453-csv-upload.md
+++ /dev/null
@@ -1,146 +0,0 @@
-# 453 CSV Upload Implementation
-
-This document tracks the implementation of the CSV upload feature for assemblies, allowing data import without using Google Spreadsheets.
-
-## Branch: 453-csv-upload
-
-## Overview
-
-The goal is to add CSV file upload capability as an alternative to Google Spreadsheets for managing assembly data. This involves:
-
-1. Adding new tabs (Targets, Respondents) to the assembly navigation
-2. Implementing CSV upload UI components
-3. Creating service layer functions for CSV parsing and import
-4. Building the frontend patterns and documentation
-
-## Implementation Progress
-
-### Phase 1: Tab Navigation (Completed)
-
-Added two new tabs to the assembly view navigation:
-
-- **Targets** - For managing selection target categories (demographic quotas)
-- **Respondents** - For managing participant/respondent data
-
-#### Tab Behavior
-
-| Condition | Targets Tab | Respondents Tab |
-|-----------|-------------|-----------------|
-| No data source configured | Disabled | Disabled |
-| GSheet configured | Enabled (shows info box) | Enabled (shows info box) |
-| CSV source, no upload yet | Disabled | Disabled |
-| CSV source, data uploaded | Enabled | Enabled |
-
-### Files Changed
-
-#### New Files
-
-- `templates/backoffice/components/assembly_tabs.html` - Shared macro for consistent tab rendering
-- `templates/backoffice/assembly_targets.html` - Targets page template
-- `templates/backoffice/assembly_respondents.html` - Respondents page template
-
-#### Modified Files
-
-- `src/opendlp/entrypoints/blueprints/backoffice.py`:
-  - Added `view_assembly_targets()` route
-  - Added `view_assembly_respondents()` route
-  - Updated existing routes to pass tab context (data_source, gsheet, targets_enabled, respondents_enabled)
-
-- `src/opendlp/entrypoints/blueprints/gsheets.py`:
-  - Updated `view_assembly_selection()` to pass tab context
-
-- Template files updated to use `assembly_tabs` macro:
-  - `templates/backoffice/assembly_details.html`
-  - `templates/backoffice/assembly_data.html`
-  - `templates/backoffice/assembly_members.html`
-  - `templates/backoffice/assembly_selection.html`
-
-- BDD tests:
-  - `features/backoffice-csv-upload.feature` - Updated test scenarios
-  - `tests/bdd/test_backoffice.py` - Added new step definitions
-  - `tests/bdd/config.py` - Added URL helpers for new routes
-
-### Phase 2: UI Components (Completed)
-
-Created a file input component (`file_input` macro) in `templates/backoffice/components/input.html` with:
-
-- Label and hint text support
-- Error state display
-- Accept attribute for file type filtering
-- Required and disabled states
-- Alpine.js binding support via attrs parameter
-
-Added file upload pattern documentation to `/backoffice/dev/patterns` page.
-
-### Phase 3: GSheet Info Display (Completed)
-
-For assemblies using Google Sheets as the data source:
-
-- **Targets page**: Shows an info box explaining that targets are configured in Google Sheets, displaying the configured tab names (Categories Tab for initial/replacement selection)
-- **Respondents page**: Shows similar info box with Respondents tab names
-
-### Phase 4: CSV Upload (Pending)
-
-Still to implement:
-
-1. CSV upload form on Targets page (CSV source)
-2. CSV upload form on Respondents page (CSV source)
-3. Integration with existing service layer functions:
-   - `import_targets_from_csv()`
-   - `import_respondents_from_csv()`
-
-## Technical Notes
-
-### Assembly Tabs Macro
-
-The `assembly_tabs` macro centralizes tab rendering logic:
-
-```jinja
-{{ assembly_tabs(
-    assembly=assembly,
-    active_tab="data",
-    data_source=data_source,
-    gsheet=gsheet,
-    targets_enabled=targets_enabled,
-    respondents_enabled=respondents_enabled
-) }}
-```
-
-Parameters:
-- `assembly` - Assembly object
-- `active_tab` - One of: "details", "data", "targets", "respondents", "selection", "members"
-- `data_source` - "gsheet", "csv", or ""
-- `gsheet` - GSheet configuration object (or None)
-- `targets_enabled` - Boolean for tab clickability
-- `respondents_enabled` - Boolean for tab clickability
-
-### Tab Enabled Logic
-
-For GSheet source:
-- Tabs are enabled when `gsheet` configuration exists
-
-For CSV source (future):
-- Targets tab enabled when targets CSV has been uploaded
-- Respondents tab enabled when respondents CSV has been uploaded
-
-### CSP Compatibility
-
-All Alpine.js code follows CSP-compatible patterns:
-- Flat properties only in `x-model` (no nested paths)
-- No string arguments in click handlers
-- CSRF token included in fetch requests via `X-CSRFToken` header
-
-## Related Documents
-
-- [Frontend Patterns Documentation](/backoffice/dev/patterns) - Live examples and patterns
-- [Service Docs](/backoffice/dev/service-docs) - Service layer testing interface
-- [CSV Upload GDS Plan](csv-upload-gds-plan.md) - Original planning document
-- [CSV Upload GDS Research](csv-upload-gds-research.md) - Research notes
-
-## Next Steps
-
-1. Implement CSV upload form on Targets page
-2. Implement CSV upload form on Respondents page
-3. Add success/error feedback after uploads
-4. Add data preview functionality
-5. Run BDD tests to verify all scenarios pass
diff --git a/backend/docs/agent/453-csv-upload/1-select-source.png b/backend/docs/agent/453-csv-upload/1-select-source.png
new file mode 100644
index 0000000000000000000000000000000000000000..1dd046b322f8322583ac6d1b690d829134c3e587
GIT binary patch
literal 34435
zcmeEuXIN8F(;y%Sq6i3x(u)cLg7n@*L_mu49*Q*Sy%P~>QZ0be0wPU>&|9d|R7&Wf
zcSvXfB(y-14eu-JxBGv8?6Y}tb8qfFXXc!lIn&N0G1{6c6yyx#1Ox;Ws*fM)5D*Zd
z2?z+2$S&gV%zfzaCLp+?<*1~jt*WHNrtRrw=jd!pK=3#w*^tyo_s8`tQyo<@s^}N*
z2h!O%Zoha>WkRr~OqHBOOm@5LRkpPXJ)IdO+EUq2k=ERt(Ac@KxRmepOf}ziz4t!l
zmWH#h2pTqd=hC;+rEwT|uRJ_M+H0Gc;080%M?U&dA~vlwfkcW+mRgTBt=?r3T|p2r
zSYCLkP?+SAo6AYS7rr&ulkP<Dv^tep-vqab11p=}G9V*V_{6SBfA>`Y6^@u-mhb(K
zJwmphY;J<Gfc$Sx>|@DFr0k^z3r|E{4Hmpbo5$T~SbM^c*a@DcDX>9_6)H)8Z4z1C
z8L?`02&>e)_2$7QWx1QhtR8j89(zrMn7d}A8t5H1UUPL$WH?HM<Yh1W*Mz*5qzkvn
zjY}<8aUT<K=D$3X!@b5^)q37Wb$zjp3<&xlENT|vNY(N#U*(bF*9!!%)gNLGczS>8
zMBXXfdTN^UlGN*>5mln@a@Q{Dk<lBr`%KoH(ZZkW-%wu=Q@;7uGMS>6)r9{Cyj$rj
zrAM_9HLbX%mzkWXuluaiO-~lT7eJ1r!;|bG+^1gE`7ir|nS6pk1y(Pf-q%_$KahJ^
zhTRgpW~~v;Nhj&Ca6zmn!npCfB4fRf0bT6v4$pFtTM8wK$+q9aZAdr$;CC<DbSK!W
z9=*A6q!VfoTqtEYu9TBK2fT54j5EcP=Auu>>r2$(<<T8sitFPZ6-H@P1*;w*#-R#d
z1NmG9dg58ix-WFpv-8X{E&3}fPS20O46c(HMf;cY$xB&maap{%M;2>v6247J{eqNe
z0jc{f?P~r@XEw(TS45=WdX^;{foIaCj#iHsH<{jy%yCA*B(%w}uO45aRazoK2X$r>
z`~pRl^Jofn6oC`iY_hfT-d<o)%pm=y$lqvqz^fW1^O%^Do%1+Kg~%x4ex#X^J_eV?
z`m9CB?EAwj_kXtCoQP9Yx26(Ix}kRE&g4R5od7akrL|c8E58KkAyeE^vFrkMPNqA^
zJ$XQ}PEuLt7VGMY{{Z2BIO(r<SeH<Dr^2;J(s?;;W}YR!X)1}uQg;@9B&oe`IG<aq
zo4&z#dll|_o4A%kYr^6a#k-u`SlX!tPSGvVnMggodaRiIbHH%auRg~0n{x8o>6@{Z
zjB?Z0OkXm0^jmV3c^L_h5sZ%uex-KmOeowLcpWs}vUt%xcI%Lfbo~lI7y$ap^Nt*D
z0_TTotv3hn#s!bsEo&tAy;m2i{54^A)Jau&tdld$T@zawD^2iaI}yEqz>|-Iyeu<m
z@w|*9XoVXA0CP}4eVGlxDS{AiDXPV@hUv(0kYIk(Do4j6d)0k3f?$s6O5Mqo7njNi
zYVNbp&tGi}lP4pxVk7See|G<7AczE3&-8?}vW-alidvgm*;Tz4_bjCgF9x*{4iKcZ
zUD~-ULCOEJc>cPXZ07t;1fg523bEp2GG;4|i_v$jBP7`P$w+sVUnY^=x~}?YDCx<=
z*W7O=zCZX(YaFk~HkHJ%tg?LHlSneEic|be&|~^v*N$IUb5o2e$3J!Q7Wt`I?;ydD
zsQEy6(9watfy_K1C08H8QpF-0mZbvz#EcNGqQCIrV%N9c`zmqayJg&bBt5Om<7Qup
zdE38~NqxN}2k$W=9gA=3j*+0TUrKN%iCVl=M+J(6cBU@S`HNa4g1!kX9qzE4UJlc|
z&mlq8NEZB!_`w}3shkhmkH%Fc9!gLg>ToSkym|bL+9jIBUEmH)WlUvsPjq_pNpyG2
zRtIT^#kH7c3Z87oNuM4Q>Btp*s0yo!@{aS48Bq;X8DmR-YyQ1$nYQA+*+YKL?K`Zu
z0UYvofS(<ne&x1!&;2@D=v~FjitwR_^$KgBgFiplbt#k^@qaGnLs*?*q9Uu&q!E&r
zlVer7P(+=}KKKFrw6q+s^tDSi{!oNDO*URdJ@2k#k0ZpP+fm#RjPPy{odIP%fEEZ8
zzy`F2wuj~%g+wz&j?*~$0@9Mx_R~^DK*HQtcrT_3eti0!+lJ|xnWeYW)2gr4{w72v
z^(M(CQPrhR`_F}|yB$;<;f?~svn3&#Coxx5yG^(rt9-6}Y!B&I%_Myi=h(I^7||Qi
z%iKHMt7-nJG@c(IZd$A72X;+&P0UKjDz^AEd!<ROi8GLyFV41avC`9+*ND^zX2kmF
zM&f(|Rics9C)bWVYPWrr^^=X*eRb5~8ekM>*(ydR^j*-%cEHlTn@YS&JWepfwQgdk
z%Ifg(%$r%x2u}4!EH{oJ)X$%}(K?CrI6$5jKLwY^ctn@?`iJkTF1gaA#I&f^{4jZ!
zd&fNgi7r4lX3b>SCSPkJ(3xL4)x2M>6DcSxbXin4%|+Nr_{720Cd<;|Su^xBfn@Zh
z%^R!ou}__!x`#$Q8&{lrOnT-@xDA+!`HJ@q?7z;MOc`+*3)Hxlg<9vjwb$OQDypt`
zQLo*v%(OGL4eCsA=q~RmpL*su$WrZB39SHEwamYes*`@qBqmvv$PxF8={B>z=z0TZ
z-<u7id7}+~Xv_-jg5L7TJSw<q1@V5c_z~zPrgNfC5*84(S0X57^R0_E-jQK%sB=~s
zp|j>`%NOFjGag{W*xl^z<4y;0^=(?{@@Cww887MFs)R&ArknbkdfJCL`)qQ%eG>S&
z(kkP;#@@}}oR@@FPV6<MLJXT>gy5D&<|eO3zaaUW_QIMnuHAK{a;tJgAQw62X6HGP
zxsqn)P`gl~7M_+9>~$;$E)$zr?>p^`WI^r`zzG6cb6(WS2+T6g?ke!zzg2dt?A~K8
zZuUYBglk!VyPdm>yH>R6_peDyIj;tG2J~}a$6dkfEs=9HtJGp#n|c!WWcV97PD5XX
zyps9kC?h53e44gf%UQya_lDvr+iTY9JL{TN8mKA+$R=8FP%v3A(Ym{%KS7qJJ1+fN
ztu#_2SmE^bk?EzHOFv(wJbYyR+*)IC>T~PoQB`J|M_M0*7lJFSDsI&aM!bLfp+Y#%
z&w8N4held=MkiJmtWoh%#Ac}eN8~#%F4m9VK5%^SydR&G^1eoT>m8e#_HBd)yuj_r
zHubMp8xhcl*iY4;_{$UhtB*V)wYt{hxIW5#bP|G8oL2m-Xt*t-8nLYG>u`{=Su6Qe
z65@&WeCK(%@@8-7*Hv|&&yqvBx*GZYA13*|lIVJ*@&hzX#Y<FJ_~(igXy4JsA2;l%
zwCFn)pK1nxTWhl`=4VhHYozuL(4>BcOh<XIwchTCwg~y&Z}yk$t9!-Ln=B8SB&Q{(
zRyn+e;WfRLA8H*e;HOE)qn8UWdtN^^ST?I_K<t0}9H9{#N8blP%|nv5pT~;Eu5`la
zg9K(PhyfhNLp9!;Llo*Q@1xa1@A>fG<Hb}xsoR8YcLxKoA#=atR$O?e4V^7i&F-29
zxFpYgSs$G&zHBIOBpj-NF*%rgTMdS382gp>Ry+3ut_QB56MjYi>Y_+tG;lrAd!z4B
zEtKs!_b4}BUA%eb)}*&%C2qChUYDs_ZSXkHM4*l7_Zl?M#+Qn%jxCZY)~(0W9;>AN
zl%moUeksV)M)ii`T&WtgUc8D%pKI<6@AE+uTNhZ?h%Ei#MWoADudh=ziPd0l`El?x
z4%J=73T7sgAMi}_DnoJ=gTz>@S$K+6*6qg*MV^Uzi`)^fVZACnJ+wUIjj%5O`H7~B
z8nO&ZS1fYxBR=JZbdx9Uv!pU_%e@I$RP1@5V#>vp(dfyusyDT^Gi(pMgk4#_iTr3|
zAJQ)d+LQ7-GVBLaz-OSa+J<Ttbl+C3k_*yhpI(Mv!~)egJ|b6&LELUp=i(=|z^;(v
zejXRUF`NS5HiLM`?gw^L490Vbd$~0qHO(I;)~?RondYz0^(oja9h~_hzlj}(EzEi>
zTg*3&op>C&$x_MrA87CH=)ym#pj2!VHCSOX9sxtsbkjb&YaIod&}UFNUwT{-2Hpj)
zfdbJzIPh53CD}}YWdXDWe~|6YbC?qhcCTr$$!~7C>G-H-IkOG2ewcA+FLx`%|I`D`
zHB|5m>I+J5eg&+bNrl0<XugwRT8M6FGrI^8_}5=12oxfC;_v!dQx8OWa`}_o@B!xz
zs0@8&0x%C!XFe@RT#E#X!wAP)E)X~sLLZZ`rCn8M<WlHPVEz(rUyt=F_(HWXVd*pg
zM>TryxV=U{LC4Rvn`Z0ykhD($2?a=B?y1iSzQIQruWgM~?KCt9c<|R`1jK|41SI$?
zLi`~|$oS{_5g|9hh5y_qA|QxzBq09XMiYNNdnMtIvp)YlUw9iyK#Ko%4S)D&6P>pv
zLT6t%za~6uNua2!q^gQP>)LqQ+PZo<xOr19&fLS_xa9uW*o%PR`t7rWP*vyF4j%rP
zqn?qsk;W4#8#fnzt7mT3w*3As?q_faWc;P@moB#6R&4$*&aPfk{<0kZX(5HbKD#Zz
z!S<gf-cGU{MjF~|N^YLEY-0TP`R{Yck+ZR}$#_1qlhS$k=y!MgH(3q`Z*O-g0RcZh
zKYl-9em75h0YOPgNrC%90zyLf@Gb6n1-N=!`QLN(;`}d=b2txey=*)k-Mt;%T-nax
zT3NgKc*}BdoFV%2`tLYx{T=^ea`pN>E&K!p&YlPe^4}Nu0~_B}=IpMNwxhqTv++Ym
z7d*}IIOIg`-<SDM`~Ty~UyT3sH2T|9TukWSp8q`g-+StN*?KCux!_TH%l&27@6P`|
z{M}JT;B4mqP~yL2{?A=Jo#n`71pe?$j(j-kNfe%qOpXt=^zdiAkp1WN9skLVKhDnh
z;~u591Whgh0pFDBLq$D*!p#|TcQbg%+%9QV-YWq%?$@RIjPGYAg<}+Ynh{SZv~^si
z?tHi}Ku^79w5Hri577~(Bm5aZ^5ls&i|P6}@z+>24>Ij{Vks)b!|7>ainYQCx8I?j
z2n|2vU=~$lzC@L0RPp%5TfV2)YN6YN*dEd-NbHQPJ)nQ_q?Z5^lm*+9tUKDS#K|If
zjuyEo=>2UDd=6J5VktmTmnx`@s!OLzkjC%&EaP4h5RtLHz<*RJWXCGBNUj5qkNjpj
zX2D|iLUyY6cBb0>8m6|Vk^`A8Di9D7Q=NU7+*Zh*yA?o$xua+=LJ=1FDCtW0Z!q_0
z*aqCL$%ci#%N9<HRFLO<9I5!<Zeb~xL~aeVxLb{x2f{N`GWDc2PYt_65t^qzo=Nk^
zizZXm?R%NdfM?1}9#Ta82M_)uESL=63wW>%@}jpBSXO$W&v7=`|BRSzAdHCO5=wd?
zM)$$_(5MvH42g)*^$lix*ME=p49Yq&8LHUp6Ww`FJdFBlYy;5I73=cfz|O$xaVca2
zGHFWAvEw0pPbLTpE#;?=RsM@2TZ)hfv!3A)@n<A26iV?JynO17`2ImLdWi~Q2!F`?
zU#k5Fs3)FupyHlRYwADLq$<>Wq0l15Wy1b<W=Xtw3})v1*JJ-d;e(&psN^8|Kl3uf
zV}P%FmK*(p;tQSy;Qkncf9AEU_Ci74Fg3RGAL40e;wR>#S@nOLbYV{}V1E2i6_*S^
zefbD0HQx|(okpNfPG;ukQ;OG}WbccM!%@RiQ>IR^*IQbdQd@WK+?k%Jw4Xtt;s9Q5
zA8bwzre+Sdrg#tXuKhy^-)rAR23VPyy=-je3jISbT)?;npC;+<0JJ`)NiAGul9)e0
z&TRN@e&;`8VPy2m&0T?&S^~XMma^*kl>hKdgWka?8=M(*dA0h)6|yX)G<tU&T<y>u
z(wzW}bS0$>m910&+SzqcT$#SsHCjLn@!j&4m6dh%^&MlD3zpbK7XSMGhAS9?9Y_HD
z!-1+wg?1v$GwrXICW;L@)_QOErSipzzrdFAH9|VY$-n3p-5G$%R91TBH0ii)_C1o&
zUQHc}kBmBum|W^^p<k`Z-_2O@-FKN;&-Jl4-^_SxGu61#xai|>Wg^8herlKL4=J*h
zh{<oJgp;aVZfX*b1ij<ZG8e5#FvegpoSo>kwY6^tThgz6#`0T$UWz_EDhW?4^ufLc
zxL#p<^6+p|@bgM17}7d@@l_1h?zoatyJ0n~L9}^p0WeZI(onrRI5=25IU)Ijn;-k`
zRheC83tfrgmd_I#V}S6m)T2j_$U{Ov++#)Y=-V&}IXMe`>GX7!Ke8FtPvtO~&^$}u
zw=FZrG|SPsCY>%mr!&1)YrY|D-yi84SYm$Q50lm7JC*WTS6TQNVsanXIXAmlaN$cF
z+yqgBP~6a2PhctGR<<9`*KqAgxp#Zm=PgLvVYUv~cml3TVGt3if&l~XKO3&=OLyCc
z%Q3GG6fp6iy>muV)3$V}GK=LLwac~moLx(%x?=i9G*iX|T<I?^(*KbF1^Y|SjzevW
zm_zz(A;Xi$2Ib}+Tbis=BGd_Muz`VQYtt>A4X)V$R#p%<veBv595Tny?t3H}8KP$C
zwPsZR$^0ZNtglnjB{NVD$ElLQxBf+o{A>JJ-lzH{A5&K5+M4Q3L~&vWhm{wTe5eeA
z)7QE?TL)82zqHHu2DzAPhFKX?&?9*gY+8SnkmtSm3bPQrQuPca`An{G@3G;|^EOC=
z>HU)qn%E25{!H;6r$>5%$pvW&0E}oN(SpBgx>llE_|w57U$ZqKkEfY=BixS-RcR2W
z1Fl{jgiWgzpWwgBZOW7R7OmGFq>$6X{uLl$Vw02xnt}xG>P}>v8(=J6Ui@ib0y2^Y
zC@2;HW6nb}$p(&SXlT$4zi^H_Zr-~q=j&XglK0I)Zl+(?N%twb=cBNefJrwN1Mr0S
zZJUTpkCn6_r!vir_7cs~Ml#pd;Pmk>j?y(L%E^PV&n7jspvhAo({^?4Y7Dx|{MEDH
zKPu>6z({Dr?(wNSI*4ME=m#6_NZ!9s<=VYA>_r6E2@7R<%u6ta**`&}A0(Bw0*e%I
ztzo1OvKsF&3V2LuT`tuJD*(bOUIrwqg*At?uvq{~B+)+<fQLwEl(=x3v~hur!J+~n
z-&6HEhDNv~>W?uzGcCrU_sjLxH8WtPBiE9ZqPk)o@27mqUD`GBmC;m*(e?A)nxyH{
z{u!57>TpH6`K;v^n++WxZ^}lgH#1$IRgv^MW2%Hk_fX)X%@3v!^}U$xatLxfc=yNy
z-*zll@_np;O{S70Z+u?E_+1td{I9ymWFIJF4w><JB)!H%FJOU^Ua)`d7aXJeXc3q1
z<d-~nwQlQIamyBhm$}P#$Zvag4Oc!|TBa*26YMs=GFG}jGIIE>@j1jEnpJkvJdzN4
zsv17IK74V;LuE~xhK8oor+e+uE<bK(#{%e=)iz*(t2Xp19+y29?a$ZP^J5(1Z;=xn
zFcGc6h|l_O9+gV}FhB7xVc3{&3&(<jO7=ksOk^NS2aCO-j5JfYh~)7@|B(z%PRhcM
zppy;PlY>nx#Qnzmf7G7~em)8<(-X$oPHsett@<H)Zj#I7I{IoPy*b}-L+KZq1j~T_
zc?2dnZuPdBtf?Dn^@AIp%5K;B=v(yCC5#M0e)T=BfDQ~K0fv*SJ{-j>P8-0Bs|^?t
z#o(9dn3(q6`<?K>Jz=3=c{?U^0^?0VTIHJjcEx*x>7Uf@bSB9B_Ce0<d8R^sShMFk
zC2O-3fxdPTD@kRZZ&I?BoS4}4m)ay*le>nk4Q_MIRD~P$z7zUY7eY~pXXPcn-J-6)
z>d@TLV^<+RbCjaKZR~vN6(~_^Yn}}@dg?ACA#r0BCfT9f*1Rekg4Pp!F=j%$ydlUx
zHa7djNIE2Hz9WVPD@~Gqs)++d@{=$7JXu-(F$CZkGpUw#1F<+{O8X&yg<%?X5u3of
z<B9UgN#N%8?CIc_!Mcmo=eivsb7nmImlopw>ISOs1$a9y2WBjO^pAt`34c$Sh36k9
z<Nr7N{{;DeO+pmzgke{DQZqxj$==f#m0L#)Q<9vo6@_d`qL0Mr7XLks!+z=1v`TBc
zA9<}mlZ&TCVHW8<)s+tCZV6i=-mea5d@gAw92R<2fI<B?nZnF2<DF~tuNC`UV)Svn
z!B^Vfu%(pn{<?6f%@l|vEOZLMaXtFClg@kx9~W8CSD9-?DYTe_uWbDGt;00w*ao&o
zc&F^(%Gq;v^siR_8^63z=*FY)JH73iNONnzEpelj=l8<4JSL+;2!NbshJ<eqxZRb1
z$NAsbpjC*LZ2%BS-$YmNBzunBXZ7Ll;A(|WA-g3597+StRA`AAfAS|Z@efNOL2Jol
zs?swveemks=4j!$cMV=W*aHClSAWlFQY(8c3>!{~p+7|ACPuQ&Nw_v2+Z`U&Vr6Ox
zaZ8E7shQwCu2X2AubR5t7pS@4+?Jg{2B4xu)PKFGpm8c=s%A@kQ`?p063WY~$cX#5
zH{~6DX22mxEG2Th+y;q+V4EOI3DOTN!Snjv`UxR$;41$(a3O+zx({@!XLM3hJ8QBJ
zQkD&CUOf)k_MHm>8tuz$4JF};SxUU|J75Z1;TWh=m?N4}VLb-3e@_gf<C_bd0!OeN
zw2`(j7)p-rqfoCv%5;O5^9YO?w7vZYhx59M{NhZAF#cEf9wQN^={j&T{sHiaJ@tdj
z04hW+6{zU9qO>$77r8eucaYvf_wt|sci^V>z{ws^BtY)2pTK-l3fab<D6uvf@V5*F
z@yV_tBeV#|&<AQHJfn}o%H<>n#?enz^Do`ihH;S_fCEP0SO=Kd9G5nu?3ZzqDuX^N
zWyn_Ik+@La&yYhLTzO-JiBcA&E$G8le>I*OtiM+n|9Ukwm*`YF6gL;?vsORaskvZD
z(bC`K-;Wt&-SPt*|0F!jp#(ZSg~rkgGz4Ln%1*R^{@{~Q047=4N4*Iz8fwvjf8^RG
z?7_vAKJi)Zqs+C}@^ak#r>iwCbW`Iuv}BLlU&{Br)Y`q<xN|ChJy_dxC(J|922nqG
zoGsO8z{sr2%6cP;m9d+&BPX76Qi&17Kx<L#HvI@Q0_bK5+$pv~s;~y!Y8)F+s~s_^
z5{oaYM$b!q9qo!|-G*#8-;bQ^@+t&X51Uk9m6k72*_$-+F>^sSZ<JayenfmIF;5KK
z(v5z-G<h^Chdn~AealaG<wxN*`XWFXlDbUxcIb$2_Sim4tEDJ;lOs3afqm!FXhP81
zR;}=nx((U+1PQ{Plcd$;&Q&6%TGT@U`o}9Z>RaJci&G3+MyBhphk~kdam=9Y?eHz@
z^k-6WlfWUM+Ri<k>I=I4;r=7P(?i0lSg;mD@C&ok&k9?}L&!F8!*6>(Gc4*fHHvi?
zbfaU>;ht2fS%7KkWJ=E<Ov-id_+;0$Wp$uVPW!6*u>aI)s&jR$+ii>Dgo$I*1ng3x
zJd5w)Qh;cG?dk4#e^>Fr?lu-_T)WpVTMB_p$sUZe!<uTQW{$THB$#nO4Jqs9jx*;<
zeG9FneNnNrf4!8nGZDviB?gZiGh>w7T<eAPnwyE1o;8Ou9d$unGIa1OB(6K=<SuvU
zKmn9H{tmy|;H6p|O0jO%yZ5-&!tIJ0U6Z3Wfd&6SZD8K8^PW@rTeISXjri_iE%~La
zLz_tk)T7Q-&5P*uTwg8O{oDZ+FUKo5RfR7KfTgasW+JSJVsjVgKq}E6ed>^<FiaG(
zl~K&i#;@-^)#oFp(9|>cMupHtNWl;!fk?RE%P4SDCY3yHDU=*lU5p&Ia*kF`oRmz2
zo9Wf>d?Pxp3Ttk@kj)&})HYb!><TN|zKfs<_Y7<9eGdnVUl@Z&(C4>vF+2LAwq)*&
zgVG^Jhnmgt%Gqw$Wd39=`luaDvT=x9;I(EmQyw;hvajMqDYH6AjWA!d{9;S=7rhJ#
zOYtuz7ebuCRZLqiO)o)?<ysBY;&hzfbG*NjQT+%6Wku^x4#Ga5MU))X18HnJW!^W~
z+<o}N9N0IwBK@8mwSQ4z={bd;vYXy!Z0C>t$;N6qo^jy8g#CsZEC$XokSOY(aGsPA
zvB<s~hNW)~DuJBN+WH|2a5wrL+M`_ETN<D1`(u&P+jXG6M#OBuhRfkXB2N7f>s0DN
zFVNcnvk07UL12<hw}v0-*#V@t`A>(T(`aC5_=W{+$wKn5A_#iew7|)z)D&vmk~l2_
zRQd1`js=;{RF0V+hEa5idB~SIuGRzHolgBX<d2{a7)#(Q@PZkE<Nc6U@Lq}doHuS6
zFxB|n8=Gu6GhHlCxiPvykCE9m@!{i7+jEgm82hqUDOnX-vL7D{h8Q-rk%lzYk2jh`
zW#;yGkL3x9Y)?|a=%LWA(dnkyUkh!1(*iA8b9AmD>;rBXQA?8F!Ae;paoRNm5IbIt
ztgff)QLmxsKY;o*YGlt{goWMyZRQAwN~rK@!HB?jt9UbaO=S4beHU)L#f+rCU3{Aw
zVSoFF#CZs$fIS0?1H)CP96Lc>B~2tcekO#_j6csA$wcsmF?{dYrF+-sd+P2r6Ff=$
z&6OT}It@5s{%b7bepsl}^hdhiMlJ<R5QhELbf6*YMTE)s6ux;L^Usr^jyWA(<87ku
zhmXYP4g@zj6@vb*|IlN6ChpO?kl1-^_i8+t(K}3zFYp~MXy5#kgeqjiCl3juzHH(%
zft8idZk?;CY=*EWL>Te8;NhmAH677C+o}8>O2hBI-*2l7XXL4QGOtV~ubXZO_E{};
zL5sIQ`Q|^54N6T`O6ylAMR>CX&Jn**pdc!`fO(KJ-;Bf1AnV~-mjw$uA?BB<9otkE
zUu!@b8ZzA00c+L3QWapYJZ)@srhK-=o(um;!rt!IsT-qB^WLc-KCW|~jktPwN#z}1
z>A<(wnAdwzK7EIS+YvV(Ou1k4?cfQ{ErxO-C2`YZE{S`?h5c$G+04JZCdT*R1+R~N
zrCe>XjqpUigMAlkdmoCKQdB0Z7MOmuVz07oziz-SbZd{a^eeD=?%Pw`efboNsXeIk
z#G)K_HxbIZDE@aY?Ib#+=<Vi{(vvpI(0MyMyLF4r)ASb-JB@*b&nL}hic!>zyp4l9
z8ng<Arab%Q9!uq4WUn6@uLsE3)x)df%Job~omi694Du$&(XRC?*AL4RLwZY$+JLH8
zlTQC6H5vGlcm`U6k1KR16Mm+NIx#frMM5iEBQDcV^MIPYwyHmGFCR-)`2J?r_e6zt
z1)#65SjLtQ%sdrTX_u!#?|;0KYL4G&Av<t^x2(llJ~-#B<;_c<uc81!Th&Qp9+-WY
z0H>H{wLw^_Mc|JTbI4eUMN`9AX_d;KxU5i#%_kd(Jw2vEfB`Md32SQ=X2kuO(uP-1
z6N3PL!_2*Ncg}zu4>&ofM8KgUckXA;IM&NarKO;N>oc+n_uQEMoQz4pFuky5qTnqA
z4FZm%%o()LX2$qzjMXRe8eZR?A4W*tWIdN>qkf_yB79CEiV3rF3fINdJE;HwUHS=f
zMbe{?!M{>$h<9!+B+;X{EW_k#tx96zyZ$V?nKO?%Eu=k?!bjj`LZ(3W2y@S%y-Ld-
zSls^H2QHz1Oo!kV$HC=s0sL;@fYn}OKM&XbeM(d<mgia7OGzL<R|3ercDpX*$Drnu
zOfq=Ml(|^(_}Mu6uGzEvrmYbYKUxf*C#w4qtFH=IV#C_n&00rY(3Es=A|uoE(9VXC
z7@9&{Sa|7bLTJ-!{hcmKNIOj;9jws{mgyQqN9fx}GdiFMuc*g~9e(T8O5OD7X?4Li
zwxk@VGnM4j*48ec;&px30~~WIGv@6>rr(q&Bo?B3%#0|gZ(0p|BLEpL(2UBigpwY=
zQ%PtDX$N@ErAu9ZiG2bU5j1KFYaWvjJ1Ao`CwpIwoq;sZU)2a6rl{H(4)Y~Lxou+T
zk;`jb>K9KwBX3~|0%HCc4I{i10JhEj-ar2p)2wAqcZ20dK<obgKAqq9QCI8J^0Jdz
znBP0b=?2@UY()w|p1%Z$bb+{nSd2FtvREoPtPhg|6dKT~8I{S?F+HG|W9*8NzjR|C
zbk!LpJux{7`sFCN?uQ;pY)@Mf?Sp!ZuW9tf6m3U|OEC2ID`INga5LJhcVgC2QY`9V
zy6K)rwmtLq)AqH%(z;x5Jt}{Ba{}~ge{(X#eo#Xi9TbJU<nz3sdAERD%}HuqL*LM~
zzfN<5%<aW#fiT2(+q?F}YoI{bgZ+ORM#Wb61k8LkXuIhpbWorXy<RMu=&`<Bgm?Ai
z>YugrVQQ~GI*`}?ASI`NgQcPN{yYHM-yaz&)^(H<qYbVJbhSO~htm6QPwQ?LACIWm
zqUJxax`9L~Y^G$^YnKk@c*i=m5@ZB#j+J!lDBC=bH;J0;a7xR{;&(pXQE4Af11N7i
zJyD$->yoQ4d(>o**)MBcP~Q6}q}ndtMcF`#bf0+w$QEbgvu^M8oO#_oU(B^J)HHGZ
zS)m+*;gW+nez*=y`?`>4yJ4XVi=D9~AY}5_MbYzh_d?+UF$!9`&QFe_TZS<rc*m<g
zS?aWX3gx>Yj|~4&7eC44ukZdbxD>|FJ}Z+Eu=<2dW+_`YtSFwD6n)(}N)aPKQp&)E
zbn*!tIb~3Hq1Eo*qD7cefor5#rAez}!#zg3;khvKpIa2s{qUPW7K6p|>d2$M$DYn5
zT5WZ7CG9Vd#})U(O+#}XzU&P$eC2kBrQfC-otQ+K*mOA!)OTKgZnM%!58!Lu?P4TG
zU;M^-KJ)?0Fufw_P?rT(yS4DB4RA|yK9u!+snF)$u2xo{5K4C)pInu{>d1$=0J;iz
ztC0^Y%+aw&ML=^Fno37f)$VDTt#P5RzK91mdz|=h=7zeK*e-SP0&b0_h9^D=g)Gt=
zK+%$SPE$P#@XK85s7B2&238=sG<|$jzphu6KQSQ*-1u=UJ&&mG8uV97eEK{A`F40~
zIM4!hS4b^(u%5T`M?HTna5=GE;zxP%1Jnz7pz&RO?vD*Lz?+75<rxf%R7^>0>u&;)
zd1JZ0p4CzsW;^nB&IftTNhj9;T@<jGKZ!?$VdA02Hv<XH&_S@1%A9YuOX|c}4ztaa
zXoBCn5{tV$H8xq()ni7J`eQalS{D{GH~m!r(!-{h(wZ?^+$~tXsDs8XKO~{kY0S$M
zw2pEN3;AgY|GH#Qb!V%;dvCq|weLW6y6Z-CcY+^wv}R;ns#HsC#K5V{!<w`@MqXb#
zGjFcLNk@7jwOALUBaH^PV5OwdFF*Zpe>A8bXEyBp<OPq=AvUIIEqOk~$G%j(jJikH
zO$3nbQd|!%3(9N3rzJOe$e+_qKfgk^Kf0k)B>g=7icX0+f(bK}mfXWi-{;u98jj_4
z8ag%(j2+7kSbQr(T0NNf^E5rp?G@Z4w|{2#;fHvV?LZfsjSpj=+2+)Ok>xq-OL%90
zDp0?mdYmy`$0tz9_O_!#_x|IA(64P?=O!+Dm#9d`Z)jEpuy%*^0638;86-Ac{Rr#>
zzd7?|Xh{CObuMJx`Iq0K<jQb}w_z$f5FA36S998+C0brH+}twcvRRGv1EZK{4s=|S
z6NHi7WAZ;<>-veLRFBTsS6$76a5vpH)~j_x#A<r2X-ccvKK;_yRt}B`NN&iLMvgP+
z0Z%*1cT7Uw9X7xO^E$Xm9>M*`Oi$O2#M?ipwM;Cz%@pkyXa2n2BBu^}itc~k5|lWW
z!@&wkZ0=WaRA$g^W@zu{(zMcPk?>K`43ynq6)j!Gyw#$78;jRQ0be!!w##ws*`b~{
zcekqh>)c_PM&W-F@d`_4PKqNk*R7zy%#Y+vlbp&d(X-;=+?N_F@w`X;K0WIDhEH+N
zn$Z2njeetdzt<=L_KG^r_QR4*RS;!6J!9{kog~rZq3R{Z7`05BdatqoZzNBfBYPRl
zX`=wWJU%8~|A-kDFjb#gQRXoUn{<?;8!gf*+Q`|qcrT@yE$`Ot_J<Y5L@v|_@%3kZ
zN6dCJsTR^mw4Q?W@<Hd|qdrG`Y;|9~o?{2U0-9d73IFMH>C9!^gF~Zi#{yxQcQQ=J
z7g+Xi9Y1`>mZYH~&qHTq9ZFilHBTuE8AJ`Ux@=YCwG3mce+OI&Tx57Rr1J618u8=)
zoQfB|C<p{Hvp!mEZfIz@(lzoYE+hMV9d9)84n^1$dVfP#Ad*nZP(d2~bDwKqd)le@
z<L{kqg`hKkX=2a~e0j387#~Q$c-tF(XS}j?&uG1g@LLBxs(~vfgw|xmMV^~XzS~Kv
z*<jVl-JUx2Oqu;Y8tsHoEv-b;de7UE=sp|!JLg_Q7e1BObF?VFH*zfGDqQ{X^11ip
z&hL|rn{)z4Fq`<Ij=jFz!u#r~QBvo0Vhaiz36qmVPXOL)GQCk~p#k&2U;W0u#dn6>
z5>OALCH{G-aevGd8OiACUTjdpq0+*1t@}L59(IL9=n|@$MaNI5k%w90y)Vj#HG~Lr
zwXrVa+HdV!m4|mPK}?vM#!{DBZX!$#<Q5;<?;%Q=vFT?6xM?$pLS$XX%W~R_B$`C<
z({V&0{uBX>@ShFEQFW$>87R45rU2YuAMIJIk~BP@N471#$Gu#D1r6^2oYn3g*r|Ww
zoS9A}Iwa^+0f2AAQUbX&x}+&-OYWrJ3qIZ8vvCBi+X~GwV*Nc%?>PK8ao-{?v#Wp<
zT5Pa)7(6)yT23oWEA8TS*ER9nS6a2yK1WIr#(U;khFmg~MhD_cJYN2+EGBv1Fg!D(
zkqs23P&wbM2#X~9Opa2War`d2_FWObzL`Rr<EGxEroKDRlZxT9n{Mr~Low>sD*rnV
zqz1IobLH{H0h&zm3wD^Zjq_4qHt<dAs1~&M75ZMd=>tq0Fyx@u*dDy3sglU#V_M^S
z2^S+OR|=<Dikex7>7L%)%$TYUDqv)2<`R(%S+8Pb3>lXdJl=XnZ(+~YYVIeb@a#`^
zDf=QmYzyhD4aJ}t@-y86yGYkTGgwLS`S6ow4e|QicR*?)On5HfG6ijKaWfb!Far93
z4wZ0iJK{pi(Ghv=*9wXHd}F?GTp=B>t}3k;tao2t=2Tf+4y#dHWA8$Cu)q4Cb6stp
z_iF3A29mlB%^7d+KThcSHT-(okY8Ho=h+Xwd6*J5HQjIS7n$i(VgWf!KXLPly3>5~
zCGG+z<trOfl@<#bNfNB-MR^)DqF#=$%sfDJ5`G~7PR@_C$*dlhUz>X}&PXC%+Ktb)
z%sPKHhtw<=T<`#98D7U%ifk&~JNFHes_|@}LpD@ewMV9n<+lb#QH}sU9It%}oqS_x
zSz?Y3X+K0a@UvDyw|9zjhJ30R=ccAMXzLOaWE&k0Eg+{$*!TxRB#-Y(tMxry+r`jr
zZZo1kK|)Tp8@8lfTX+U)wP>nR*492MJIYy6g^u1*Sl84r6Zx|(p>z4!HG~sgH4<T{
zR$g9NVF{V1yh1UvbW!XuiePU29f;rwx)sPrePn7Xd&dv8AEQvOAdjt5+!$}LO_vT`
z9RGB@R32bqtbm`UhzBh5r{-T3Wqb)Qdp@|}JS3ugj2WW?*<I08BW(P2sCBGGh$5N9
za01Pozo1yQ&>Q1f=71gPV-SBn5gp?_nIf?PSi!|JpM!Id-YfYKEW){k)qPH1Hsw@m
zQvDkEL0_6x_K%FGovkvw$pBlL6iGufFzL#%W60x-7EaB%Z>i6g)TWFLwcQA7Ujj*v
zxU}Tg-q+-+<n6!b8NG;B<DJ~<W<vQPV`6=AO9I#~9~m$oo<g>)&;O{HuV+efau85%
zt=#7~qnbZ69@DudLO!k1-CTpXo<_dz6P1N`)W&WTACdpG59SXk5|}h;e|{mPM8j)C
zBYH@KdyT|d1vHY0N{RbZZKTJUgkM}<tRW$azTf7CLp!zyc(b#9)k5`<%{q2fyl(qH
zp>uWRur=QdwH!$~ALqdY+&Dt~8@<bZp83?8fX^@d=+}!OhX`F#b(*0KC2UPbo}44M
zD1G<!%iIGnQHx5uzD072zx7Qb5Ah)o7=kPuLED;1Gp@{SV2>u14XK)(4l`qQ+!oOm
zteb9!Yr;RI*9*b31l-)<staHd&~QPhStE17>|+Pbyd~~?4)|Ef+7i59WZ^XY!Nkzh
zLYkB%^*Vmz+!K{r^NHk-R7WWET)^;Yz7(7UD1>40+77Q`$<Lp@z#Dlo6r)@36^m9^
z@Q(yJ;MG6zt`|O&lfKlrY0o|YH~<n6obTGa!}mzP(ri|+)Kk~9|I=&scaH&{vv3^K
z&UdeQR$!@Sz2jqTJyGz@+WOhvKc);Xh5MA1-mI9?QhuTkYzhxP&1ATo^C$lPer5*T
z@QQT0%t~oB)~2<en$4%ctMs=0d2zxq)%RNiu%fpO?-DQ1e$ij=shgRZ(Zt;}1Q9$v
z7ehi~23~w-%?R)aK*i=0B~Nm$tF!CRRP_p?00XV-lQp+<O2%9DpuoWCpUJ#<!#t{N
zY4N+Mk-?ekFfn0Vz=YY~fC=zQXx4}kB69)h^d*1fvFZ#O$q~Lr;fmjEz;@GNM(Fdq
z>u$%Bfu+}4#=I~_<`r_@Mn|?TZ!t@fdIehS&b^*4C9_?%<u0K?E|`+0zT~g99w-N&
zz-H^t*UI3fKt|ne=d5Q<7F@CWvGAvi(k$||HoHe(YMTwfHatIk_f+7(;>7Ai*8Nk=
zHV}9;cqlPGm^k`RN>&q3Kd`NNgZEwHGlv_k9~LTfq#JaZXse#cjrYrNBHifiaH|cs
zEk1Wc(9s8rVsJcIYNOa^qV8aN(pcUUVqqEsA1e2kV}vG5`R_LFo{sge!fb;1LS6R8
z1)U1Ik3KNN1f^ZQo`)DXyVTe@<;n%Rf=fa?%|?q0o4TUS_2?79Fme=Lyc>3ur=3dc
z@1R!xsV}lQTf*cARqx!|vMfwn3-dMtimcl{p^aOMe0|NJ>hZbgqdJmg5BdEPJ?AS<
zHsE(Q<1z;ha0krW#4((-Fm9>@m*?ZUM~c;V_=M##V71^ottelz5z}hqXH?qS^q(%6
z7OajrSr6DO3EW_mH)%OCl1bQCuNmH`D{T3BGJDv(L-RlCeLT(>y*%``&C<+GF*m`O
z;6`n&&6nDxF|JbGCbj7<i|(xwIgx`Fwb2PdCmQ)KpTJUUn=YR*m2NEbSQy!Yo9k}R
z2?t?+zTFbFkTIy<8<%o+l}%Z9+8>);eLd9$UGhLpqbDQ`+`85G<2O*#lN~lY{}im1
z6MZB_$D6yJB!;e!w)m>x7J#oJcm@jogh^y<1LXKDY~1K2l<-AciE~*d2y4JE&<$(e
zxfq3(MhemMbxT0hhcAJIj;ATe+h|8B{Y}5A<5OGwHNP^+P(4%H=M}4X;4){xOa3nd
zXSjxF@kieFTN{%0xyQYonT74tng;Y^?q_td2Jc)BkY^q{&uEjeCFzDm5~JmVR_G49
z7+b#IRc)}PK@{xe{*zD@JFA7QG&Ye_VfWzz!Q%CQZy6I1W#YG`LA!Lf2cS3JFZ|UI
z>-Yj#aBN917ZK){*vMaEi)i7CMQxn$BvHJ1zClc-kj)>4qa+}};Vd)vUl9-}5S*1c
zZ)K7;Caf@a3vdR#6N&r$?AFa>4O^&?$@lNvcPn(bpV>al)5+<5EY0wUJum4s_e90v
zY!+_Y4=3xkE!n>?5C9Fx+=IxoW*#;|_okPE=HSEI4akk=tXnLvi#iy>^hw7i3zKur
zL!j5UoQ-wu5~>^Y-;hPW`1|g7uW;=W=EJAg6CvqW-O3kwR2tH6qinjK_{IF&N{;Xn
z#>g%Zg?hSCexz*ZglRl9UgM4J_PqQ>llY;+-#7mgg$KBAas226xfY5VO!omk;8inj
zpRVRd2gtG!as2bfCBJxu1>U~Vxwiz<tOWS+S5M#kHU5soMA;*%`5GZL)t`6Rz_p|S
zO2Ro-zkB75PI8{2yqfaFFZA>NP9wUN<kDjVfNHRFu2llltR6MKJKX(ssM^oCWCPiJ
zq=tI+Pumw{r=&#J&^W@`V-}2MJAIA&RAP#dG0#STsl9q8-~O>HO!Ob@gw)ac_~zxW
z_vU{3g2tUN3#0afIn%&;#JhihDoj)1$H;C!R}8%~N$cP!Zu_0_+n8SUKTYs>)$!B;
zTrbDQl%vB_o1UK}Zr8@$6*h*vOf(sz4b*l08g3BrFOA@Mpz@@uo1x|FttO1so>j%D
zFIAFXL&8+(z^ssH{q%ppE6@_(Lgl`=HU;RLKsRa39px1pWMRhhi_!lw=o1H94l7+U
zRj@b)G$Cfc$7ER95lTi-toF~0!^rTEIOoZ>1lp`Y_XN8`i#9uHYgtV;znK5!^tIb~
znUKix?b>W<@lBJ??#W-95%AJ?<V~y2CI&J=BhqO8GVm2%EaX}2QY8=U+1|rpnd+QX
zS<*@@yzh&$SDpk_pA@7zE4StX{v9a)OT2g}x4zyo&80bQ+j{mSS@6g(<oX|&_=~U`
z)JX%0)cFIm58GOv;}}e<oQhl|%H*ozi+ul`&O=2!_A3Pe!wdInNEdP6*KB;3m!C=p
zqWy0i=$QX2YGn3!PA|wvum4Nf7i4A}__?YR7j*wSz=v!Zc$tgZ+bneZmt`F8F~kpe
zP_od<_Nc29rRI>$fwpkp^^v>k>0%{$8mavi<^g$mkKZif{d%%}m)WWxZ*QyH!B&3S
z7U|?QAf&9(tsjN$<F>YDD!Z$_^b?rERDeg=p!5UmNy-U&qr|b&E=AI5thHJ@bUX_G
zGs0%s2Q;d0Z<W)|C*8Gqqz+;ax1m{xq{3CWY#2<nxPfl3WGweO7U>ow3@q+0b-VPe
z_W2UYSH2ido~VRC-I{hIOVAqv5U`aJuVHiJZS^dfZ(f6#Zvm3NsKTx3`r)B`RhtQI
z(CdFC?I9664Z1)JRI}28a|Hw+e8gbjphtrK*B;25);OmyzpP(o_A?q?AH8QJqq1o-
z(xRafvfX%`Z~LlnYY<Yq0$Iy1bc>5{^V=G?qUlboolD`bUax*`+)m0uHZqxODxQA0
zRjWDOj6p(tZLp_dPC01zU(2c|t33iUN8wZ1gYWo50(&yK5|>Pxt(AKS<UI5(LXK_I
zg}w4O+IzrFt8sPnH9*|HVUX?k{V9s@ZHs7heqZ_&z=*~i6!;Tg$nNB)U+T=<;9dUY
zqY#Pw^(}h_i`==uo)pYMx_*&CAItN}5r@sfe>LT)I@_}cK+=bvpe)%f%IJ{S*w3o(
zq@D(oTPNS9YivFgbC`d~Dtjt;k5x1CIcMaR^4^caQ*30t>6fp^t>w~(%uS9Kmvjq5
z$K@HtCvCLk94W<InF?)sr`)DaXzmy#6oYFNsmcujUK;Zzg>o4Z9^d3nmT7`WmJ+{c
zZ`$?0?Mzd63~Sn!Q)f}44AAp2@AbQYKByLu$4%d)w`sj~qHn0|AN=E!vRJkj>r_}K
z+3R05S~6DB<#K`Fj7%WDB{R64_5>FOf4Gf~SSi3wOBP!v%#>E+?0C<#Hf133lEe(>
zxq412BzyG)kr+W0dYI{#K~Ss@&KhlN5urlSItsIq*PiYribg3wa`lSH*k$lPN~?TF
zRaIcgbStVLEl2LkrQM#0S8_^H+|iC^W*(h%DUs0j@6l#AupUP{R`i<B$OP452IwO*
zj<OcQNw1D~Q80ep-h)D#YaE8VB0k)T_>g~iN>J)HQ_;DPK{p0)>TSb97^H7FON$co
zDc1tT!K`ozsD-`!gj*=|#Np`SDE#{aP?t(Gqnk)%*H`n(t~*VKS<I529YSqnfg}(X
ze1fKC$+8V@B*gZ$TR>%y#gFX!hqxOCoq^x)k)Yelc(MJ9UZ|68*aEJRHV2A^DK4`r
z1HttNCNTRk==KEQAaU=TJIg`TUVC%77UNh+rG5E@R_2!{R>7hH%hVUl)ag6om#k#X
z)W5!Cw=iVWi-WL+F8Gwz@(x_=e$3*Wx~CjI(jI?z_sW!=mFyM8rNfMZ4-9vZRv4AP
z%5?FA!uMBl5#xtma1(=9>nLWC@8oly>Xr_)R*Y;%Zr@V{c9@lEBc@&+@3{<qi>M)G
zXNEl>NZ~gfQ=1Nj#LB|^;52BN%R7B>H*2hqJ*UEV5;olG+9E1w1)g&3$ZTZSop^PU
zpP-Au&NLk|BrEY`gkR$BQ$-T(ZnipcK9XQ>U|L|O&ArmM@bSeJs$<k9uHG}R4}+9e
zzp#|80rAx=tZ?l@36Iz#GbC$ndaQ}Cxbj*|?{iWv9vh2qA1@ATx!gv#`umX2uu|_q
zB@P+gnkRS+i>yg5(<fLGl)I7-TP9+iavvGLnQ~paZD;{pp{wm_1q2>$yV+75VnzM=
zB2{E%(KFOui<f6q$yBY6uEf8W^4XBuMHBWjIV(pe+Yl^3EN5l7N-xv$JR5yJR@FFv
zGnvry?gNn5&c$!R2Uc0zeCCrph9&DAd)IGhZ3@Hf<x9=OKj4VQtM6WnjN67E-MrRi
zPW0MCs4qP9skiX0Xg)`(oviIa+$a#YMJ#n<@#V=)$jX@M1-R4=*DA|4B6U(Fc#U<Z
z^O``*xV!|ejjF_WE_msc{L~7PtcUtWWO!?Gp8Fe)et(URLU||VIO;#PDa@UdN+?I3
zY2h|2dvBzLURSMQl=f$`o@j~9!VZr1XI<=LnTu~{U0ZgJFCNah#V=H^C=MfDVV^Ut
zXGE91nE(K{<kv%W=7soAu~96ZP~ERjJK`CIujkyF;+PJi`{r&UfAB%Dt4Xp$M#-0h
zKI^VOb!1QQ4Z)?ZIFBW(I&u<e<&9^-Sy!pG5?cU><ou_@3=4NeOt=wIO{llR7bWBZ
zD+08WBS4PX-pJV*a>dO(zZSE{2rYt^S_|OJ%xsAYWwAF@R_xlv9ylw|nQ3a7Qr_D-
zP24*O?PzcIzSTIU0ODIMeBT#6|52X`H?5pwpDulcF9W=Y5T_tvsfjlW&Vgno7+MAI
zWc#@1EC>hhSWZQ>SB4_`*>@Zxlb9p-L|&BHNl@Bs-(1||Mao|&?=K%FScX0~QlkB(
zbn$A{ZFwA%S<^|cc4^yvZ-=s7rtY9zm8k<4YIrKUG6ie!KnaQ5L#1%1_YoVfBJae<
z@I&RCY}_xt;B#1x>p;@V9;v7Dl^2xBeb1#ptB1dsEB>p>6(p{aeH;LwhPB3McDHE9
zXd5Kik^)|&yxcSJ&sk$XP-4AdA$W~rOPEZDT$<q`YB3Zz27#VT`fVa)kgQtizM64z
zvPke%R-{bZl|gROoKUYYqW;{Iy+nDbu(>8f0SJxN1JvZzaP7Icft-x`J);OUx=hle
z;<e#S?Sk(GQK3H;JCRx7=A&;1iXY}Kxw-GYy`4$6%HOWS8cd~#(4E$?94hXAqJ(;#
z8ljSz!@`;ar7flHk+tw|yJQGJ=ynL5uHuWl1U9enMMmerGIJhKFo=3u-NJs0;X_4b
z-wRA}yiuZv=+}<6w7d058%XycIdU|QEF@CRgESICa(Q9bBC27nK7ZGPQfB*2tN?0a
zJH3pPx}IsgWv)iiTloE2@B>g*a6*_<HcP+T`@4qyVr}D}?6HJ5NNO#=%G;O^PC=Qe
z$JCV~HWA4J_<z{hdbQ9xbL(|*0tiCl$iCQ;DcW<>Rpfd-%>$dC^yp@*k8~U@WHKj-
z9G{(ee8uG=tU3ai<EniwtU8>Immi1;k?b-NQ@-3&sQ<^wc*Pr*bSb1u2m0bM)^g}p
zs>M4Nr@-hn3fm_VBnvh>uUDhk3b>u7K1J*m3fX~f8gcX8H3?c$5Rh#XrM4Kl$g(>@
zRvR6BBQ-|~MJ&uzxH#iyI(4vRKHjsgU;OpZ3tC_26ZncX!k>i_d}z-a^6Uq7+AsVM
z&-yPsu{x%?LPS3KMfADEc4JhtXKIf472<<j(GDP|zx&-@$GU+f#?8TkISd`sRl7S`
zPNk53w2ex57sW;>J<Gz~`6ObSZAz$EJQV={pD9JG%@7uL?kj5nWuYPP8MuEvMB(XL
zD&Ay4(K!-v0tGuO?C?M`yd@b_Vcu4!M$=YLS7+~-?{>3}F=mA#4U%~M3~xYL@C!;y
z?37-gofIn#8n8zUaQjafO8{h^Z3OlH2y=>BklLWmoy$`qt+in3(u8tKB=uC%WayH6
zu)Mv)*l&FEhHZv`9pYxRQo9VX8SBLn-ArlHS8_1hH=mTZE@cE*e$hlexepoa`9Oc2
z;iKqtm~SMnU&alrQv0q+Z{`2Nma8AWC2(L9ZF@GwKN~IEzjlmt+A)bxOa4mJh<(yD
z@tTz9DI$WRfAX7=KZ{<Tc$4fmjT>^*#t3Lc9Sd0ww7t6i*K#?ZeW##J^<C`U7k5kV
z_H&orRMR1wT@ZISItpG1Hun3lC~SoAGR&b|x35#7yKxyceG<WfKvJb#p;#b%M(zPX
z3|F4cF8{!mXd;Ho3STo*GKjTV-G39&Omj?CH+_#y>-AK_eOhF=c*dG&!2Ls=SE06_
zWw$ORiuNdOJ{D0Kr-6T^L$|vpf8XZciI8hgy20O}RNfY`l+WH7AOjizP_%#H`WDUI
zWsC@c8<PaC@Xq?AGP1V7!;pm)$oojpMb@UnEA=-eyd7G#KjjF~c3p;QPQR+&x!$;!
zOSRfDz>E~}ppUW_IsH~v0#BlIkiB|k7*WT{E{|z__2^Nbl+UK>SLHdfUC^M`-(cl`
zwfB~BQMKQ@xTtgs(v1ozGL+QNse*zJkCb#HokMp@iAcvti9vU_fD(fu-3&bgL&prv
zoXz+Dd(`Lu=6ueJb6$Pl?GMA=`;N8md#&rb*1Cy!u5#W)cU~)^vT{H#>{e0w?y2yw
z_%zhAhl_W=n67=f>QvkiyQN|vO@^_ZsT&qy*5A;cJc{bDAR-VM&~i}~h$}_CnzUzo
zZy3WGY%a(W*<BFS<|d>F<$T<#B}bkibuy3WGCXf$d^1X82AXjhIaDZ2^S{zHMUSSf
za^@Oe06kfBeD8XLCU1dkuq;gXY-Xz3afwo{LF+^6WbFsSN=+2xdS2q5rXuevR6OcB
z>H(#U+RXwJ!pMg<45s`gaO!A3COi5YXi)+4Ok<Hx3;|_HXA+BpT0Bf@fp>MRTg^V`
z5;CZZI_1-#XQ}f>Y*_I-Jc)*R1dnqg?42dT<zOzm0oPEjCyON`#b#5)`E3joj+hA5
z<#&M>4tFRVL?Z0%!ky0YtPG=&iGLcV$mM!rJ)Q>v^Ylo6X*OZF^PLg&*dR_1agVct
zfI~VoPkM+Wka1p{nX8db`h5~<^@QN9HFrxRV9^YUG-V}%hkzPhhU@J#FFj8%<i(aN
z`q82f7RQFXth}<&n>={s{P3+!>i4>{AbRdYJ~BSxMtBE5xSJ|;Icn@YSOT&Zx2}JE
z$8?uP-hn7U4nYACHIDjF#9%XfI%*s1a}gFH`vsXELzBa)tT4ww_?8jJ_EZr{z}AZO
zkKK`zP!eK}dhcT$^6_cosM7m$#+;G$Ot_g*?&to9pZOruvJA&4t9x68YPlfP-3S-9
zHcUt2_mg<}NYr)uNL0%!jIHf!c9GMS9<!DCYXr(ZyppH-e+0`Rr+27s<Y{((35$jA
zCg!Joq&eV1kWpG-Uv*blPzx(PgDJfobm@}b3_~BO(WRda-+Ll7SQA5A7)LEf4i8?2
z&fBtuS`pB*jjS$du_3MerK-<&7w_XcY4>2<34^zV4x{q!KorhJRI%DU>mta=t~P?L
zk_18KahQ0iutotj8AY8+rzT38l2!yN+x>u{ZaG%g+LM@KE>AoQZsjj=P&LulT14fh
z2oDJ;kg&4Oofx6O&}1n>v%S-O?uJW~Gvx*>mR+?NRf8{X7P`U>k+OYWU@|;5+to(A
zRF@lQ4bN}%NkV_~$PK#)nq1WIX(R1f-dc;Xw0WlGJtcE|Nm(uhbNX8${TX-om<wT;
z4XJgf1x)-%c;y2N#k$*kgOl~LU)#@E!g!P5;@sYGAcToe=&Q8vs%8uP7(bUFU;_c4
zqYkxyyX;*_@(;sh@&A(Zt`CwQXYsA%>)N2Uij%Y`+8nb%`iQVFSP@;1*pn{&Z29tG
zuj+x;ZJDYTXnq18E8lSX*GS`W`n?<X=-47l5|rLN$$U^PNwlzZa5%dkp*As65FdyP
zPRqKwi|>72t|Bv-JWTH+6eWe}^mZe8OoF48xH2gEF8&!iW`N%ONM%;Wy-HiYT62(~
zCr~7gTMzIML_jhkXcwNa2vD0F$V~B+6w`Bh7?mmNn)kSp?{JFFqR(eIWJ#Uu!IGIl
zLWuDm=czwKSDK+ue?~81JjdmD7EnDt!W+KVFh?KG^la8$HzLnyP*0SKfQI}&cAm+-
zr*UNo{yFLE*H%8pDOYb}Gmi0ZhT$TvfpY_WE(sxB&`3&3zhrVa0(9%}YZRfIT%_w}
zTCT*1diQgcKgKZUatsNFybm*|MrkoY+<mQ3p4=sVX|k`^K1#<8RIt*$(qwy+^9m_C
zSg^xPq`#<Nd|DRIFDl6~&$q*Scvi({-P=fG#sK1M356YufWBavqLu2@Q1?xmp0g23
zBD%VVsL1J<XxJ57_Ertz5Y|gGmKo#8AT@JuB2pD8$d!%fYgzvK>9;o|Yj8NjbLxW)
zZ9TUVZ4RBFo(4v#Zhp~OqlV9JR=PoVTGWEimMvavR6Dm;bnmfV7htSch-AsdH=QKy
z>+ndzj0nV+g-U$**0$%^v~=rG5~uMDO==uj%TD;AQCk82nb*tFTQ=A@uziHXG?k5Q
z)@qWLyzklMvpnFV>_%BY;NWoE?YY(&;=r8|!HYW+c;s@a>44K_?%AVYG<=`@^+zIB
zQVP^QrU3dIZlZDmN~j%5YWc1tDrm8FDLe-jKn{y+X_L$^w2^^i&6E-5uR?Pa)6L@v
z?R`K8U8CGP^gASiv}+v7Qc9lZ5)LFvzD|^ji>nmjo|dvR6x}ZwaID$rq{tqpXnE`K
zyiR!(M5<<e{rF_YJX6d1XI@`6C}}ysA$gM}!(?HhbQiU*X^mT2g2{Y<ve~@yW4h6)
zZy-UCkV3}$^rEXCvrlzb24%Uzo_kcD%!jbbYalO62J<0lNHflCxEUU+C=5!P21qXA
zt-Cuw+pAgY*6W83s8)s*-^X3p<UQ+UrAm-&80mf*7ULgaaraaT^TqF}8Fq?7+v?4k
z*PxKPOKVG_djrh@<OcF<R=^Sq0X>tMU#AOUug8^>Q4H*a`czuNx{P}mq*PsY{azW*
z4$&zhnDE1tb6K;4;PnPLb)!qvhudD}ljU6xKTF=o)5RVnp~g^ujPKJ+EU(+{-Bv77
z&)X~UM3L4PZpTG-WbEdXlrY)d?65z!AVUfOHU&lL|HTe}+rbv8!<hgD$yqEp-Kb`)
zRjT9NS^EP|>R6QrpkTN3+eboAi3O!!*~w&h#w@8$Q5$@5C-+Awt+-T6Y^O8*0inin
zaO4G1S9sVjb9Ph{$IY$lUya=66_DE-Y*oGcKgbPnL~wYZV#cF*rQhEe09l3-J=`Gd
z98vr2W&qgwLtdb@G~YB{vi$BYfX-7X16V0hr0lCd;QwfOMNW=9sFw9#@ZX^PCH~3*
zprs0ehtK}?wi_e>SQ;*z%oOzpWEf0z9l&ZSL-P{<^|seqK+|~MX8e@+H?kTH^n;2l
zfc95JefhR<MWAVUgN41E{{U70VG|U9euSBB6#VOLw`hT;5nJ7PK=H3m6J4U;*Ok~+
z{-7+BIr0FMU6WVjqwDV=5$L@<70?e31~l)#-u8cShylnT2*AiLHA1WXN!?Xe1J;j{
z@5FZ?0T#CEb6L|jVXJSnOBgL|l?{vy?7jQW2oTPvO8e~V*=+$}BXzIWN<Z~Xy))Fv
zeds~uUqKCjR|Vk$XKL*M@%@}<DsZ>==6Iz=9}*gbbv;M}Dnxj1Dj7aN&p5YF?aVdb
zcb;!a1w)+F-`sj+_<$AebqSN6LypFDUpT<jR@y%^Kpu<#GK+Kd4$^1(6{aB&r8a+K
zppZoCP?k7!^xNFYEIdFc04=!?wI91jbH}^Xp#GRc&!Q-!9fzH<pD4?zw;D*54*<37
zhUykQzUd6qp$I|U=!ya=l=#K(v@g7<efhkFoG`Lr;+?`ZX8;`E8;@$RJ-y)5ZaEiU
zK;Gol>R^`ft%2;Xd~L8j&YwBm9{{!9d6MZZI1NHi9moj!pSn0tR+z0ft4#bdDs%Y`
za~Ig{Ibq1WG^lS(*KhZs?=?aS>EeVJv2;hW=Nkp?ZIr9@&g};YCyM~S3id)qr&zBI
z=O9w<naGB69&Fby_$ozF94$^IrigVF-C(kM{z>O3_5KSwXQTX)cFaz5>)FA2-wXET
z{3W{k2Hr-^UPn)%vaIw&MsCcbm3LlFl(8c0^8sDZygN(=^7Z0J*sl)($3s;$lH+r*
z{vwf0ro{Gp{xOgTH{C-_g9Ot0NE~j{wr-0d#y+RbK~Swb;7BWn*@o}q<t8Y_fc<rt
zv)$->@>%xtkUSx(Y_G$OX9Fqs(&oJ3@u~d!!jOR&8XmHFj~De$IaXiad?BIZw*^=R
zw~2X1nd!B`3=8f^%KCfdEk6SKymZTrw-pr`xRO97vdzn{?p+-cq9x4r>n;m7imgaF
zXSjy2(E9<H8F_D*OronGOEhdhkl}_GqO_i1%QR>ls6*2Qx=eZ<$d&P1oCeeoMw8c+
zb3P{r2>ewT4e%XYE{V916Jdute7)!iXpljMu$5stRi8YC|Ju)w+GXuzG3F1y)H%)=
z_LI*T0;$MCx0X|1I1$G|Jw*yPCrpAohbnRbwY6-=sIwnBj`0`}{pu~q1|U!O;5+Qn
z!)4@=R%Vitkt{rn6*5&e5Bq?$khyGH0YeGFvUt-f`fYT!MDaixNPL)`QE26!TLV49
zX|AdEg*Xelq<dU8&eYfeng=pu_t{@@#f2jFXSnV~_PPx6TOMFg?afE^lzES{5A3z%
zFszauktYI1O+O=`LM3*H@zPY*JlhCC>!ABpPlE!?Ci>jg1{w8C{Bsxfd^1JuW@p{`
z$$b3QGHm$Sdw*7`kcx|8Sy`k!`uCPJ$Gh8aw`*owM2=VvXHS({8N*(4hB;1FbjHUY
z1m3V{B@c>qh;@HLV2C;glL|2JiZ>7hQD)aGMvyf6o+DNwSXn2WBjHJ~56=opf^gUb
zY82cX+cUj#zQ;}qwa8jQmS5b|8(;~t9^^iAGh&x;={RZ!Ou;EGQ5OB-bC`P}*FQ^}
z%iiTahdJDFY~4eZ)-QPF2kfeY@O%6!Mv5E!;PK)}An&o(WAn#U;5lWx^4{_>0H1;J
zSf%-U??aH2-zhl8Wl6)yBOVn*l9xXJtn-wi4Ul<?+3j2M*gnml2k*3uN<p?(hOa8q
zp=ldXZ6~<_Ktf<DXMiu5h<dES)xv)AT?mat%Trg(He^A+u0%g4T~RN=9w8$wZnmsE
zbG6c)rsqd(^j8!~NY#z}t!@C1#7&}9V(F%;VX_EiOE(58+K>y(kvjoZx!hh4&C^?N
z@bE?ZhWBcm7i2@dS6ek@&kCRY{nw&X<U{mnL81fpWMO83%7j(Q!(}<=>JGjj$hah(
zv!v_2M$XIRJ5Q=Cso*79ig8@=k@Wi7Z^>Ci`(u_@HkkWno1QQ?*Bi@-G4j%)L2ak`
z_F;;d%keNuW~rYs!|Z{lonuOQnQRNFF6prn{m~|+8i9`5K!$_Q<!vv;<!kn)6l~q^
zUEi`lO^BrZ!nOY9YI5Ybwx*0#%3U3@8W?5U2#kQ+QGA&6R<~qqce+SIGQky66`-6(
zK)fpT7ddjOs*>lQQ=6aesq3utBSb4A$rzW(D3}N+WzH)Q*CrU(!;8qb0vAIFXKiqD
zE%mbF#N-sh#V+gTGSQe!F~_Yq1zFs5f6}uu5XlT=Az-57-b#-QIewX0`0c4QlYmvU
zR@2{n1skhAlx1fR1U>qr&Y23JNSeOj93VbDdPuGL4Aw3=yf+|dJ8EI%+}lVn%oqVC
z|Dj)PEoqTtp%xuCXIxdtJl^7SP(n%8NV~zjzITU#Ih%fgSCt`Y&pFz&N~<tgsba(i
zoG1qnP+E&AkdyD;zI0H#(*<Defl^iy%p%rtMNvXsKD;Jn*&_3{%BCl<Ny@VONFoE7
zlJ4S)o#(%nb%7B14|QS;P2GZ|y(mSG#&r0iH+*q~m57pZ-i~s43PZSeK8d&cNw<7Q
zp$19=CHubhyyWk%U+lWIk%3(=HWX|dy(ZVPoZB|L>=={`OT1m3ubLm|b4BfFWJ`Si
ztXG-ecg#s;gpmec(QGA5TB|JeyQ_Q5aX9B0c~?|kuM;MRLv~^|0?zmP*vN=az!WjQ
zRNvXi=*k_Ys>)=>iSw2fq<tn!cR7SxDOkb2WKVWs#6J}`l<*JDdgB<&U~x~{NG&+3
z`y)>18jo}+d!zae@Q`q=*@ffEK4~Hq2pHk`^FtDXuzfMzeeK(7SFyLwvR`&iF#Q}e
z*sG+uT^y}bYw!RvY>GMFo<~Z$bA@v?X6>>^?yR&f5m5G~^;Kf4JU;5)%#)@{*`bpq
zrL1S>f$_IUzI+?SO3}9h>N!eA0PE*mE7C8g$<v5^DdyOe$cHLwM?Z31I&#k?fz$S4
zZBEm;8Bx~Uf^pTkLh!a3+G1ww)1r!%@jKf8H1T1nGuU<gmZ_=tO0O5k<5n@pY40Iw
zrf!TR&u*?CrMMHatoy~zP5!_8!$OwV-nK|VHkV~i7sJ-G8+TEqv92z&EF#Jkx_OHD
zC}45-x>!XYOwc2i(Z>_?;WdQU2D$~3Cdz|?=&@J7BV3<!^X_?%he4;-*P%i4%_nV`
zSpyreAXUrb#oZ(Eg$6IxL`L|QnF&4o{3_y%VB&Eq|K{X=3lS!im9AV`afl9NjO?W>
z7|+o+i>5;H>6T^3#;-4MDAhE0F-G?KETW`EIu?9DUY)a2@hnZ<?Mh`a!l%rp3;L0Z
zj6oC(UeEKDiRtV5Dovw?F5(0BH;bLH64v9y*CtCv5>$SLwTnN9!bMdV=+Q`n#9W!y
zZ&X7>FqeF3y^Z>y{YR8+>L+r(^Xf}@iBR3<r#ZnKYbX4>Xun+z-|`mpCmQzMd@SxN
z7Q>}%WW^G`YW5`D$(xj3;BdOe5mEa^jwG^Qv0Wfsqk3&9M+<(jz}42qL`D`)D@pBb
za)F*#2er})it&2$8c)ilelR}_i@>T$glX*`&&a$|Z12!U&H;O|T0uy})r9<EP!>l%
zivRiDZxSA_EZ9_w-dV+b9BF3_csFuL8i5$ik!mzCiPBm#tSA@#=I^?;fWQ@w*vN>w
zo&Uh^+Q$;I?FJq38uPsiiX>8d7)3LLm?%F<FiXhY8tEkVn2%$nEEgpM*PZmS2TAOG
zZCqm6WtVPCpqB0oX*%m94q#BQT!-OR@%lXAKw>Bv7AZ)yAGT8{!OCM*nY<FEk!=zo
zFIXZMMB~QVWl5vrNN)-t1CGzuopPPp;S|oN(bOScl6@s2`*@}%8-PX;5#nd3;Uep2
zUV3olKKYxCarz0o2w8kVM*OrWmxORcLc~FDSR<+(7r01=<nZ2I^P6jioHSth4hIwq
z2@l*9*$=+BR&|W-4C|Q|-_n9v{(PjAda>rudHtKv{*(*LIkPFQA`2epIu1{B6`bWF
z4KT*6rkS)zPne*_cR5Rlk^T}&$*NZ-$jJ5E$+0WG{wz_`jk)@?1t`G{x&QI>cA>;Q
z86(9V#V*CB@6yTW(C6%!chz0J?BD54{Fho%XBPP=1ZW=~{`djcTvDgxmKo$fy!s<d
zlTsYVdHqXm%m_K;ig?vXabI$-8V;-WqSmdMidN!K???9|kb}pnq9PQ`kg}KofR}C=
zc+nAD8$b&wW);o)uC<kb-SRe;6M{|5?;dVe7Wd784s9`^iOpoRUujKfw`ZTppC$y^
zFY-jls+d)z`<JOv)^~Si=~1pzaf%LuaaVd~JSE+I0cXeE^EJ0j7j4S55jL5n*?@Pv
zJsH>2zV|_+-X}^g$K~{s@gCas3l(U)EM3gvzbnpE%pokhXtLc%iAu`>lg)l?WDHo8
zCNx>!=>(j<oDtCTrkcJSwsx2G;Q0g7Yf%#bZ@7N0SP-V4Zri|BGuTYiEc3k-<Xgsf
zNF5bOfilg5&E2&w&o7<_iGHyC@ICmpCP@JH{&i+|TC`;)+d-EicM6!bQ}s5aa3_Si
zyPXef<VM)L-UTJE6zM6E678iDqZ9mj9_W(BaW@avjsi5ZKHR2)_f>F>h%b$K&wkv1
zlVh2!z@k4J$|ULNhy$P%f&UZobOdoz*(gHu55p*BU6wO&qm*>$p{3`=4HN>0=)c0X
zsPNN7P9qdU=NAE2qsJ#~bE+^cOODZL7u-b_ihJfzbpen*V2Yv42eB?7Xo0EuB>AXi
z8y?E#KQosnN9)%ak!wrBnvnQ~IG~W`aNsOl7PXxqNZ)=6z{K&O{Yhuvl*a0gE+O|c
zE~z}2-$s#@Z7&eJZTAk2yz9UHsRZ0MVk1YjzB8uW|5X>*%hw`}A(4z{icmXAzN$t7
zCM9WM%V=ZgI(1c`rlG72+eRZ`Zs@}@Sm*G-ridXiZsB4{fN(uml_>relV0ZmuJ6@N
zftnaI_1Pz8wog_Nv>CK0S~N1&MBvup=GZZ5ccZO`pv5qC$up(`V3OoKqH>Y_OMIP*
z&{>Ae9wAJ`#Y(n2eH@hUuu&{@JzWt;K@`Ab%8!>9B=+;w0zPQ~lQ-Em@md!wTkbez
z={eb0zV1B8Uly1c#9*dU*qb~nQ7_*8sVE*(4|jTQH?Zh<V}jnTLso)c$_cDUhy)E9
z$)^&-9`uBIqj;jQJ}q||8i@W%?A5!oFH3Sqmd23R_AJpHy39t1C&Tj2V_rUTUQi=U
za^Z{xpG4bkpNG`q!)B3XoDe=~Yu4dkBL2ai&yZ&)+BGtXh`0r>C7y=ihO;DYHG&=*
zcs!%9f{^O>Z&G1O5MFb>x{WhS_R~a*B8DT2U69U(w#!+BYPVj`w06HpO?bfCWYQ+D
zDnRsU6A8CLxnh@VwAY8(Ao5&k2gCshvH8iy`a1*_0whm-w>HU-NtHymOm&Nyyco_U
zynK%~A6WZK;)B*x4ydL&ELa6R2<JUne7*8h-3KLYKG5_Ht-n}oC8zyn+1YfOEVQ1@
zT&DsPhwon?kRWmrW19f_dxu$~j$66Kl|4r<t~M)Y)6lW>#CruKG0LC;a>h{is4}^m
zio?weEc#Zxo5ReT8N<q~$R72vmD#!JE9TsRhz8Twj*mm3n30i!;nBVK%aa~JA}&dr
zk4p(xl_nU<;PgzY6Wpr;FfAAUS$tx;vzA1#dQK&UWRPKjp=LH1tNlw55iJ>VtL5m%
z@UHPL_4^6San>F|wTGXHpE>TjHI+z)5mI_>KHy{`!&yM4EYsgmFG<z0XK17sUE{n$
zJ#9_^g}u%pygF^gV%DTV1Wxmb5EqUek}BM={MIJYf47TYm}sm*xJaG3WpJF3QJ?CK
zg=3O_q@8ev)%9F03px&K&5#NgM#EPe__xWfrX5{39~e8ihaT3D%X$4J>ca9>M?(K%
z*WXbZG{oO6cHNi&rJ!o?Ku;G;Lm~RqD-85A(4b*t_lJNz1%XClba!iHck?)&zO|m|
z3PYDMQst0_kY^5p4e|z!`U!`{n{a$Elv1^Ryp*oX9Y#JXt7yom2sTWmwZ`+MWHdhi
z8A;VGFhHef>u_t0Fi$XnM>$6wG{w|%&i^0~9Oyfg*RR#>rRTEKRZ(rOU92J0bJ|QM
zuxtJzGLF%RNj2Kpk7>$0{Ym6%nBAzMYU-zc!^3kxJ2l9E&Nly&IT$I>m_%~$ve44<
zI0vzpF=Y`-TD|jn?&jBIX60hP<~_GU{RsJ5UDY@j{WQA!#>lm|89^@IlU|&)Hjf8I
zFhlj6?ndS({Z7hv|9&5|GAn}5Q$5pxa1fN(eq_11SB;eayV>D!*lTivJmZiZc_dSK
ziMpK+skdcMdWKLG;>HqKV4G)xChqx!Dqaaa(L@LOTU1*sdfHx~h`(>xBR$ZEfzdNP
zHPyX8G>0S%Z%r61gugCa$Z2)VWX-fZQ`8s7YA-S9SkB#@DA%WP@y(U1roX6mrAc)o
z8^J!>S!Jp=XxcDMJIG#5D0Gc-0wnUhNLh@XAw(dIicAC?0Vq|FLTPoW0b$Q<+s$*V
zRKz|lmVnF5&!d7MM0sujHg`&<ZK~N^<Aq8E^ivddIFDnuUCJ`bQX-~uCUGP;?=s9-
zPa7a7C3*)x&>Bq}om60dDdMO&0B{cG5i*$bgc?x{xA?p(-}E+gcUba!=j?RN1KtK+
zgC!Zra)kMtv+rRC&;uVPd{Mf^InR$=d=0K0KZ@XRPj4dfy`MW$+SJ0u5>@^U2wL`C
zy=k@;mU4fXjKCa+bRU6c2@P{b287)_EHq5@3MPWV215=vO$d4~8O}3ylxQcsWGDJQ
zrI5-(O5Qtm`wCi3;Z+5<S6`9hIUAqg8EeD^IhA)wSblN@0p0-=vz&2Z^KJ0WMm2PN
zWX}88_`P;v`XOl-CyPyZvBdYc^pd-k;3c<0cNPt!N8M48382@!k;(6_x-ChYLOQYG
zrhUOi#-2>KvCV|%UJ_8+bQQCaQ}Z`REQ&#{6rDxRg&}y9Z8YQf96fvvB8u|+jC8}S
z@%Kr@U#TQSMA(O36rNg;Xpy)uiDu6%cA?XKlME|9!{fN-)$xWK_eduQCa%m3T(5J0
zo-JRr97HqM%L&rGdfHYW3?GWm-lxscD9R*+HXiGxe|vkeEJIrxxEB%V$B>G}kW3N|
z$HSr!eI_Qm2H<P`CMJe*hBSU=WP<H7qmJkZM3RG3*xn}n{u!}_dGmQz<3UMMCqlGN
zPYySJ?rSSpwIE7o7hVA}j1uKNhtR*~#I2<Zr@~zCyUJAGuQCUp&n%-YmkgFX->VFf
zIB85Y;v+)sA53a3weF6;05Q0WzO@a$4!hmg;Zw*t<kiR~q4S>5YUxA+@3B&hIW&m*
zJZHj=<<!DM9Py9a$8q)hrQj&B?hC2myN!bWT@`(g`UBZlX^Uwz_zTQNGUvHCTlwqE
z)U=W%_nN#4nulezII6NyK6PJj%)ZBPrDD6$us*or(5^l<mKbv|rb1T|2Dc30|1K2&
zi7kQqeL%xVE0PpL{Tw4(zEP$&R=<ey&s(5re%fCK@AYkKY}GOeLnQ2oAWS7qz~5#3
zgchLXtU)>1<&>iSXE&q@$7;5A``y!q#OXpYu5Di4@woH$j|X$ihQ+e6|F8gn`V|?D
zZ8sX_p(Zl9I{Uz^fpM6%L7X<qSrgu7^N{?dH+$F&D?Apq&msEwS181>11O~XWZY|c
zuM%foX+=q+I(7>-yk>8RULpS{Z=fq2!1~iQ!khk$>Q_Djz<x2iPXhnO?`Z&7-%OZ#
zEAn4xf6pBNs-G<U*z^k-xV+%d0LX=?ugV{oe?hI67gSjQVPKK`e(O)+H&uurKyk3&
zp~-XlHwoYXq#h(b$^4}LFOK8CjsAZ((f~z_Z41C`_k2w@6IS;8H??(xJ>)eJP_ajR
za*12*2K$qEz5m}l0e1(c$32<*H*uv5Bx1;Yf7(hQ@DBnC7{=?@fVJ|hOpQ(c*|{6{
z0ozgrA2BujVRG_{cK|}{wT-UDZ-x$_)M_p%we6qwi+>s%amFPnmunRN<d3Ftd<X1G
zvqrl-<ku$#*xfD5OV-NA>w(xGRv+@;#{M6UEK$seoZCu8j%0w;cg3*|P`rH8A)~;y
zg3RqdX4{1#WQ6FVI|>N|qU)mXLCTB%*M%(yJ=zAE?)>?0)WDpAuBJMXU)sUQ{`2i$
za~l&2Ozd(ds)DUFJWx+FQHtlE`&=>rva@~g4nHSES5b}=R@VFLkyI1F^Wd2c)3K?*
z-8Hrz3csyFAoDWig?sc`-X%?Wx9XGbKfiGZU7AZ=HQRfO)Dg<jm}m9BOjJM}u$i>g
zn%jd<)i-zsea1fg`e`{zzJ=rhC=5S2Y}CxPGOL+#H^u5(`gb7Vgzlbl0=pbgj-Rax
z;B>x}JViNFKN2WCGh%?nB=Za%NULXxezfX;JrAUR_}QhX?EQ@Bb-&?=nroh@vK%)5
zTK<qth1~V<ro_%<?dT6Pq}`AAG0zHapoO{$vwpo_nM3vZ^7D;L;sJfcZptj~MCKu;
z^6DPHNt^$8%_EutplI_VM*X7V<=9<jIkWs)$I<Ds*5l~|9iWE3Q`X*UnoeQ=eVxPc
z7cf6(4|+lh7Rz?fi?#5;H-(R~`$2zKyn9~u*AxjIuj!*VhWYreb)BT~He(AxGhkGU
z1<V6stzTssQ<lYv%O!XOl?^C$XmrzQH5g;4<;i2`)@XY4&*;iuH&^B`j*x9#7&54-
zF>G|34mjGW6|s3bGwwL!u)lIr3XpPCpN;NozsDWd{agsd%=yaTTF4nj7KpbGp6R#x
z#>-%4-N#GxwLd>=?LBjfKQ<UpW3OceLnOOHoeAg9VRFYu;v(B541%oCEz=_PG_<BU
zP7!`~G+|Pzy)JM(-)ynngeZ%xgXXol03@DYgDcHvAZ6!)U!h%GW-^fEbZ73?Ki0)@
zRfvm<PO)9}=;iULMIye``M?j868E$+F^_(#X7W&69Hf^52{t99V68~zd8+Rl-fcPX
zX6(%!btdn%$vum@OZqqv8D69g9j@Z?h?w9ewTS%5BJDjw!7l3{>9#@?y#o~9pL}z>
zT@QzMt>jU1uTGo4&%hf#cMhZ_4trSvOIAJgR)$rpa8{9O^s~Ps6y?affD{}n<;DF3
zR<Ofqw64R!+K||3kwU7BpBLB@{gzeArT>_9(uN_|YWNMYnJgo}-5XruX3tleUe-w9
zSWJCYf0$5l1DA@abO7d16<1!T6h+zT4rM&C^sv~Az&2a-=~b<KMfSub3((#TKp#>o
zruBzh<a1~yOT{CS@g2pGGtIF0w58{lsZJfQU;yQKb^CVhoS)ask<WfZ-PhM~PjjWM
zHh;XY)hV3;1Q9wRvcI=_`Pmyp>Up@K!Hi>o9uafs*9za8H3j&>`tKIK)169$OGk3o
zI{hLpv1^?=4MrXS`CNbsf5D>dQ*vYjriJByjyr2DJf8F6$-UqXRSVi~@)WcCVcCq{
zVj0i(IS3xX9XF$pL(iP2*n`fO!tZ?nvLWJ2G%|kFt)$%+3p`f_du+UJ#`Q8E=x2?W
z7R)+EKi*(o9&5*$g?ReCZ;ofcR*{kd_4iVrK=+Dh_IWgOYVK8ARgae%OvQ`O+X4hY
zHRby!)d08NED^-S570?9FQ0#&es%L+DMAFM2k__)u$?)t#SVpmFd)}vesF(n$i8i)
zT(`cgRIl*|@mUGclFx1)VJSfFIeD@w=?xXeBqNKVfuWtQ({Fe*oleAGZp1MM8Uu8@
zm|53#8>$>hxMZFtd_7^t83GS_kEu>&1mB<Wa;UGhAD>iX58UuFzw<PEV_GBUZtdz|
z#%LQFZEru7A0dr)#fX=V|6V0JsEJ7Pps2_eol=7bJj(!|XlKIpwC!ce-Q(SEO8swd
z`5YhgtYk~N8xG3Ke1`@cOG=^i+v!beYIa%LFNSTi#GP};J{rwbDG0)HMP_)dF-P0>
zfYN}J=)#Z+Dos;iH9&{h{h91F<5-WMiU%Y1$A0n1x*E1r_Be&gTzfjkDVK5MdvzLk
z@WoBVtY!ils)L0JvunVoHyWI`s7qTk()VTTvu^Y2OrSh(9r|R>MwDO7VREA@)!W-^
zx`wh;BHVjIAjc7Vj@mBj3@bGYBiK-q#aMhH8SpWB`uXpV`K5+u#kEeOz55H<3tQtK
z?W4^6H3D$~pZ_{zLrhi{(4aLTTMht+R(mI&xf%N;_)4)Z_9&^`te!I-K)vb37>=6V
zseIhPaBG3n*2&_;n*xTDsht&>;?8aMVErGK$4h<e`rl~zw(-N|tp?LOzv-4(+L&^@
z1&SC32$(&1`FHinJhP2S&_(=%my;vHR>R1+Xgk3xO&&Y^c_<LY#c!QWh{P>mX~FR-
z%5J0_cfa)N)HZ6?dBRi3r*|ep3Hk9NXt{?NbGEK>JdG%yi8kxz_ssk`&f<#ItPASe
zX~Q_#FlfcGOZxVdH6J(0e^5^w&WQu#(_-hSFeZy@Svfr5^aqgZP0LjF0G3>09nVxY
z7qjaRR3T6k+i8WwFM(#CrGp{4<i4A?{mxd+%5oQ_0LUpz%(1GN8XR<DltR_M&}+qH
zP9|5qBIv)C^Sxjj;NaZ02eTyy2)G?S0<w#pK;Nm1hz$~?r6BEQ%<*<9pn=gTbI?DL
zhTQ~cxv@J>8E`>)iC(#Wb<HArllA1x;vEvU_BqfU%c93~cBKZjbvGudH+Fw&C*T2s
zOJ83kQ1NCqheyJHqhe2RF9y!zFkUhxX0`P<vy?~lYA4?2{>{4vcr5&E(e9KPoLjmV
ztxOut`tHcrT8E<&lUKT94iqgO3ZXmiDMNqDjyRl%!Xri!SqgC7UF@Yn?Rdil3l)La
zW)hLo2kp?rk?eK{;FFeEY+|fj#B7i0nuJ&^RC{SkFD;+N((<`cJRpHP5qaiyR#<Nv
z*vNYTIi@~!+zTxF8_?dRMc{aa&V#m2)wW}UMK9k)`|+}Cln_ntAD^$ctw(Ky%T}*S
zkL}ropVuhP`Z~_kY_h*-aN(3byk{h(5xL?bZoXd_vok%=9mNd0OM6de@RJz?u49R3
z?tnwJgQ{~|eW!x47o}Qxp=H}`7wDPC-WNPivKPYx)0|+y3A+Vm8|PV89|FT7by|Hr
zZ6s=(FzH8uZD}*LyI?uX4K4b>1C5EYVL#m5EXr`ftJ~I~J+M`sQOaSLY9Mwl?c4KD
zO|0opH6b2}fUwx?(KR#wQ}>Q)e9ApR0WbYqhXLQve7`qBS2Yg)2w6(cHX_bg?S}D!
zK6e2xEI<y{k=*>&eCiW<qM<^D5%f+^4u0OuGd=Sz<QnxW?L!tfTJ(K`x|;K|17`TF
z9QKgLk8FM$SX>)UPZkM>snL@P?-s2mfdg<_s2e=jhjVmLZRpGT$`!FLx{H2+z|str
z4Cu8U&a|UlDVX=~t}@A(Ge%CpzI2GNMA^v!$A-YkUJ=9l8qwaT5XK)K!zx5WiGu#$
zxSv@0F^GQFxnLzyF>iXB>fTl++I8g$iP~i?fbhTxr{m!nXZ#<@ZuHBt;do<8A1G(+
zBlhG-;l<`(NOpX%HdlUx0!ppECWVberUxXBSWBQ*scUZ+;HGSk!ek$qY)pL69{{vQ
zR*AKah+LBdck)@{%|xLyyGN2yv$sFQRs+5w-XQuvy1D<)k9AeMVkT5+Ou;U-vAs}#
z5{ery!OmP}0!RH!qu#l&8C5N}9?CR6*_mrK0z<r`7fyfzW$Qq4^32@HSel8i)wj2M
zbobF;UmQ(9jf)<qwA3#!t!~fPjvC<*u$1}3O%v~#ddDMxuSBHWef}*=D4?m{wcEE`
zySUgW0LZsx%X@NsvJMU0zpGQS@g!41$i?vxjPj0Ng}~4jzNC(o3-_>kYz?sX@plRV
z<$&0Ux(#R6d6jbSf^C?^d#27w0ZiHoNacJB)Dpc;wr86A5Ht1V%p!=TbYLS{E8CuI
z8}h@R8SnV)FMCe{Y~(rTi0Zn4(N);+#m)=LO6+_%G5p#DFlDQA1~nf}R^v7k9<}-&
zwWKE2k?qbl`_+G@S(2aMnFAXwn40=fVapN#erHk$YxVWU33!T<MM6*u=T=do)0!Ej
zq2%O`vuPZ;XPh4{Zr&5!5g=Qz5!j1X{QHlj{@2mO;Sp*$Cd-b!)&U@U7Q%UdCaJ4Z
zH<4{8`0l}?^K8RcgBsg}zu!v40SoQ%MJT=)i_rdU^|vlj7K~~^FqxB%*c?(qNV|%L
z-(QHa>SDj))$e^23Z0?&RB$ZwGJ<gCe*Nt7{vly|#}@la3o3Xw^Zd*?v>3~FFS5Id
zCuyw;Qw@_G_^cYgC7`lazYrKj_0Hg!Xulf}xphXcT{!LrA9UOonHIcxTVzR4o65xe
z`N}xg!>q=Ev9Dp3(t-mng(tm<YSDvISuq+94%T3hsMvu;c^7NTK}I>J7WK_3_>>Jd
zi$KC~0j&Cpor~8}pe4C^%XuHve_1ijm{Dl<%bAE}bcXv~_!Z}+uKG!!JZOb|Wv}l^
zVCVjVN3v&U!WE_XjXBLs{+K73()i7!?K4-94`+SWS&xGf10B5&XBzU{`%Dkhg~SLl
zl6KnLlUBcFkb<e*=ayz|D%?2|19wTj+x(88qnWSn-95}Gb7Q$KP`!0}`(_n#<y#7=
zKID_Zj&!4;u@75Wfb*=xi+CmIrVB^v$J-g9Z_INDANr)H==;#|pLSBPNH5Np_&K-w
z3V2vCD<8h)(>7utp?ve#TVW*_L_%w()Sf;qzSlXc5n;ozdK>YWB;?$7fKGsv++x2E
zsL))h^m6#`hpaxB?c4D-god-Pal2E{L6>UUF1B87Wv{<@DoE+?B8}hP^wz%r!?8@S
z5jZ-jjmUD|td2QX!S=YHyX<{=8=7hFw7psSEP~`_mB9mhDS@QE?yO>1`qGxqd1YN4
z#oi%1SD2<<A^ru+R1C#Z0G{~l>xouoj(hVmi)kvcX&qNiCy!Bbrc+hcm1{$paCr|W
zh)>@zYp+s&P%@;chA88c>5HU~(d+oHxTIg6?o#Wt=(*BAUY+Pm_kTZ{P05YlT@8Mm
zS~DcUG59tYI5p(J8I00w6-2and;B2)7I<|TbH;A+;Y*2Z3aWucMg*@>R(G9((#?$q
z+1!yELMLxN_vap`*QtaIr`c6v0a00F-6?<jx|5PyOZclPXY&F<FWhcYcNyyre+6!^
z0!|+!ZO2&`24Oo#(4)Vmx#jebR{yoMYWz$F#!6@{l<#^ogWhK}*xXn9IHtW?xeesT
zuE%cTl6u$bCx|xIKWG<q1KlZlsQ)|M!!m~qsBYlu&9*iNLV%ciRZxBFmwvco70?;u
z+%i5Yk7xqOkKk9P{C|)i`RvPr6CyufZYW-&0?H33{@BsifInFbKZZo61A%=s-e=!`
zEHFe_1wfmgJ%M;r>L|*!tgE&D0*xA40Ep7W_#ow--@QEOyJFq2Uq3}#0Bf}?nc<L%
zCUCc}Sko`D9>-Ps%Q_<FF`L-em!fJ$gXjGJY>BUlh{KgPf+QR>9cSw9Q!oE~jUx>K
z{DwUfwu$Or$OUkra9xq>kRD`U2?&NMU#haJEOuRgIsVCWDa+$e-L`xj5%9de4_1GM
zpO?>}5(b*bsr32P?-96!T(LlZ`q=$ye>LboTMZ{SfM*ETeEK&yx10zJ)On@uz@P2<
r?}LAj#(&57m!tCEq4?hq#X03ilVNsSBLBS0^K~DoJXJ1JG!6Y<_!h@A

literal 0
HcmV?d00001

diff --git a/backend/docs/agent/453-csv-upload/2-upload-target-csv.png b/backend/docs/agent/453-csv-upload/2-upload-target-csv.png
new file mode 100644
index 0000000000000000000000000000000000000000..7b1e9331e19fafb796c3ed25d34b859fd836bfb5
GIT binary patch
literal 19799
zcmeIZbyQSu+b=$VG!in>jmppsGSq-lQiCAfh=6o=iy%lzDLI04OGyqAqJVTa(%lWi
zZ+xCF@xJfxuXEN}>#VaL*4ne{zT&>(zCQcfn|DwpnY%a?H~;|PuAJ=C=Kug2@)#u)
z3j=wjfV8p)0KikWc=7})_v8s3)WP<Zg_S7)Ap0&(15;D=7fGtlb2%)+5Wm=-BszwN
zezAnwfE6jixTrf=4}ZLY8OxB~*R2gPl+us@>gl0qS>@yxv4u`nu#u?6I+q%1OuYfr
ztg}uhZ6yg`UMzKrFC_~*Zcziss8K($kq)BLDJOD9-o-XlmQ^x}Nkzq5Mx`)B3xMQA
z*=J-h0@wmKraO`>0V)*<)GxFz*Ds5ubRMW<p+M5<l}MT2xD#I90Zg&Q{@O#KYp1j2
z7B$FfvZNo1dxA+{q&};_Z=*iz#NRMtOHA7lcuWs?nFyilz5^-4++9aCdNg3vXzpL8
z_8?kvouJfKe@cz0WsklxNWf0%?X$EPM7Yx8G+%!(A9_G1eL+MfJPPe0j#iQ3;^n7^
zOTAr(xIo8|#%CQLf`8;0zjgQg$jh%AWI+gz$&!(lC_n>*%0In0Wa(^w{`OJMhKkPT
z08B>=O~Odk`5!x&$C}Y}TvW!4A-rFzqlwT2q{u%Q#@+3t)#muM)b^x+z`jD02q<Xi
zs4K?rVmD<;?m*+}=gSavbO!6YOz)JN$vfaqVdM6N&^oeohAIbq#IZN@f53guSTTh0
zzL5Panm}%lR^3kt%4#0<`(Y1T97_2fKnf${On(NNV6M9^F=LptMVQGQN247-_fhxC
z0c(sr`3#%(CBq$JjCUZ$aBd03CJHPKY4Mj>9kKtanMjzuXz#7%11a!ev*GLrrzvSe
zYpJGZnWFmRCM7X3GZNtS?eXBLTPd43Sbu{_KbjpYO#Liy3zNtX6Loe|wJ8xlE5M4*
zV$Ejxt?O#4AsxUW3cIDz-jAFrdSIF{X!tP{3-Lx45BOvb_0+Q!2G~stE@e^TX~`{)
zpfiCfXMRAVkx0gDlHjP*IAoOz7LmO}K+kv*EQ6{U#PwEJ^TowwD(y=+kM7T>cwFt@
z$w%Ky$Qu)KN0B|ldo(ut_8aGBxJ+Zdcmc;_%p<DzbNQmPM4waa((K}TB)$nrJ%2#E
zxZu`<auA5Q8-uX+v9rusd5bwC2Bl`1W1Ap+{HMr{hGP@c%q5V`w$b*5`bcy6CCPU|
zW%I^}KME4ej35MXe3p@agMad^np!nNK>W2qfAH>a%2jeP@vWrwFhfeQiF-N$)Gb|x
zOeKz*yhDJI5$*ya%hrgT?VeE25%?brv#^aLCd^el173r)0+tw@CG91SCFRuyubuZ^
zgRkZl<9^4=^OWt5>K?ZemYqER+z+Y@D+?0_<ZVTs9vre{UDgJaXu}<FF9D59ng#~b
z-3HYqCV=y06a(yFxI-n?u|+RnX5HxXbA8yN-Cz)4nhNjR8J-_@380dThI9tM&R-l0
z)rbzKCGaH|xknoMa5a?zX4!XCDBiR0&r0ys{MZeJb1*!=qx1k0zhiIXJ|^G@$e$t6
z6-}8TUq-QQl({1zi$!h3fDyuM9Q2ru0}FFUDj*8$0g0S+UzEbrP*C*fPsuMpt#CEE
z@hFOUnRzY;RH5K<M!{%LS<>BmCw|7DyMt2UDwa-s?Gn}Ik0~ORBzb!+%;{^e^djOj
zUM$m;(}?<~$`q$lFY}g@qJ6~p(bUN$^FDB=1jL5k(KtV%TX2W9Ij;m<fGxJvp@}&Z
zUf=faF|pZPgdKYDAM9_0X>Yq*6K3zb@#{yXHF3@zZPT3N`YUlUJSMEe@@l#x`N#<T
z`6E<%MDFp^$9IpOGtJ(OmVHTN9YSNr`G~meU0Fy+NK(jINZY%O7R(m?d+%OC9OzD>
z(q&Pfi{*YS_b(52dhhgZK+Z#Eh%V`a-p}vzz^}2oPdOO39??EDU=V-g`^8+P0Hhxa
z3Ju|j`5N#wu<vO#WaW$3m)EM+Ibs8DuLYb@Dw4HjL>225y)!?5HY%FUCCZ@h{aCD0
zRBA9+@Iy5Gh>to^G+ahLli8xfqSn04LeQdk*{OzqGA&iIJDW3mxJS8ft8dzZhd+hy
zB$45_dtzMTL1F@58ZQWs6(fQBlgdw!3DrwoLnlj>@`4ICZPdbQ?Kth=iXzK{*Sr;N
z<}wyb7M%T4h2BbM@9^c?w3%dOzLd$D)pp6HU@E+~_&(1a)EU%C-Pzx%q?cY4&S4;^
zQ>ErwY?EXYnHrIrub)1JSO2V@(Sw@pz3J~iWe!@bnwXlynzYhnkuwp5k(%Iio0d!>
z+XI=^v$e1T`Te66gTYI~Mgc6IpWK?JJ%)B|go5RQ@41t0zKw2|8y(3`Mo%#YG0IER
zke$>Ly?$v6wB+kBuT{xcDK33yA5z-s7PuofXG0wS4lY;uOFJgxkzSU9s)6de743eL
zEag!TD-PiVy)LoVO>SNuTz=I=YhFv<Gjki0R73rj4c+Gv=z{?!(MF|1>8<H)eFF}4
z3sxQ49n*y%b*g-}`~!8ff+_8BO(reQN}CcN;|$y8D(3RsifU{5s)MqWS30Jitr6yJ
zr5&Z?FI{_SDqPFDzZRFnXZ*n5gk`A&gvuis-tSU9q<+D_TEqA|dQEdibIq;$-2!k{
zZGK>8->ZCKIkq=nI*t6Ib@aE;uzT=cAvf5h=?5^}f?}_)bxLaa`HF)no43{Wh`R}8
zTZ5gm-Thh{m-^WsPLx}fBZaLSWwpVz6ZKv79nF1=zfCgQoFh1x63gB@4#mun&j@vw
zjqcSa)M_*gqZGsIsOuf;Ts_6f&3KhWY}&qIiY<zvrdf+oH&{*cO&2y$`@Hf&g|ooV
z5F`kO%M?UpwabLnCe7v^U<u&f_}Q;Ygma2&Y6rr`^`PWI3A-#4h(3p5*`~zZ?v<Uj
zopOlI&w{AA&u@CRdtQ7VKKbEA4}UvNyhtR#w66A;U4)~K;oRqq_ZyLP3lXrG)p_Dh
z6=NYoX7pVZx=`ARN2^NZiu>iuX(l1uz1(r!k;ZK;T@j+hZSRxrRS9n@dO^-Zk9Dvs
zvD@FoKb1CqZLIib{7d7PK{;w-Y2}Z+vtD0~zCNht4vPKo@hfkpt8q_@GqJGh<nu7q
zV#TkY_)Pk$f4z-yWTO4l^pWAC16O!dd~BugMhx9E=)+~jrEFV;Eu!5wYeC&l5$P4_
z9Ho(N7032(m4B?hXZj@e$&#n`>-pFAuQd-v<bvj<T+9#S*Q<n7glZj59bz1g7NYn1
zcJbw%zX<iIsw!r6eH`O(jJn?e&T?1O5iFFU;h4^a0AqmRCpFtL@D~>O=SuFyja9I(
zGn4x*E0|{H-BDfUDHh_6E1hjY--E<Eo6NAyDmn#{>J1O;g(if?7a1J;mnu8UK319Q
zFP%r74C3bCI*^>J&+C@gEFUy|2~rGuPx{+nf2KBS>vb4^*h1?tsVC>u*E<FbT78vH
z>wS0S;jtmleAt~i*jX>i6~3(xZ?$<DAiSq{-!E9RPH0%^%jq)fxm(9g=dBKo<>P9I
zYx4RiUT7bVeW)lNR@8DW>a4Kp@L2U&IE~m1+5K@ho>JZBSS|X6eFYE9VOlyPTwbtY
z^1+ysMcL(I4f_wBXH{M!ETbMKIzKB<S=REtZnSKmkJE0*PS`JEb`kIk-*t`OJg<|l
z$<F{+o~nh*DE_v|m}Gt3t8HpMoH`&%dW5lQUEo+SUKv?Y>?A%?JaM_-R!&<?jV0dW
z5an31$&{ZaKx0h9k}I=nHgv@IlHZB%kzge)zVJlf{G`*eS$3K$e-gh2O|S6RKcIu<
z^bGGdoX7*31nMoZX!k!79kKB`Oiamj4lIjm<15?!X1>^ng?aMLPbOyGT>@!)VAo@f
zuHw5(likBrH5D|czc;F$SZ`V%kcx2d>F?K#42Tt7EI)+HGjU+*BNlKj+fVYNHO7k{
z>ekwe9(c6f?G0xVbhK?auAe!ItXiCYG{I4w;heo*)H|6czK$3fo}IFv*Pp2$I<r5r
z6(tmNJB03Rt1hL>?8}%&D$)*%*t_>l+@EmXS!u~m>3-QQ=0bXzd$IImsj}PmwBxdP
zC>2{Yg>#<sRG-7sbo=$N<?t|jeQ&+%^nCrvapio<_uAE?<Rde&2i|Vy_NPpJ*}L5?
zX-N%le5)rDhKHGmf1+Q&QOTgx);s{WYFvN^4?w}q=8KYA8o?QEx>)}q<91rfDc-2T
zOqx9Pd3NN=TVKIplo2=@z%r*>7M(5;A5zBzX^WuF3pA@nIA-S&&W;*d_AKq!Ic?j9
zo+_M%PdDqpo;#yAkNcu<Vg~HVPjg2jpD;pAHRWC@Dgs!L$5?<nC=>v6<Pi#T6GNfA
zK9)uS0nq++9TflwwgBAuXN(eZ|MxEnx&5X2_a5!TTL32V>>hG+gP~rHM#F)jT^*x@
zBJTktRG-MnA@`~#4yL9yj^?&bP_lJG<OOUySuIBZfaKxd4MpzxgKZ@LAqzE4Crw2K
zu!*fThtW%0V^a<{YrDUE03vQ+<e{~xlM$VpwUvz{*iDq-Un9WC<G+_V8R-5s#K}^W
zK~oV*_r%u0lum$yi-U_n42O=6PQ>BmEAaED(*KYn&qNu_ot*5zoSd$%t{kqs9JUT-
zoZLb}LY!PYoIE`2$Pw(0?lw+FZtOOWjQ?hG#pkK1qltrsos)&F4c%Y9M#i?zPNED9
ze+6Ct{aa5{H;WrdHje*H3pqi~zjrvfIk-5lc_T?h{$2$`E!<44w4Pd6BW;G1A;v4j
zC-SfH|KrY$#9Ne_H<W^ck8e}ny7S*DUpSgNJh8P#igXgYao0b@w{QMKD8l)7=C>^I
zZ!`bvD$>qkI3k?aJ`=+cj|iwmx{=D_sj?b!j|{SZ{k0;0LCEdz9=Sa%E!GMiK<>Te
zo=T{>p{!3@+fi$Hx9!YXV25wC&%fKIYmMUamz5j4_bQzga}1lj!>2bE^OuF2oBzY_
zVLXJtRuq!(qVeu>v46nZaKedi!Zi<gm|)RI8ZYvZM3T+)Z6hI@1o;QPXvtr^Jdd&O
zzOR8ZUM4smiOD(~dJG@=xJn-x9j&_`7w9KnraB(lXhsOMy#=6R(fM8d+(D(p0;1j(
zW4OLT=jTUC2c4lsLAgT+0sQmx><$+2ne2%F71>_~cW}-LZWz(|LEZuUC9$!EZ>R_%
zeh~l5+k6N?M08LPy%FYZ9SA|&;<v;DP#+?BKYXx$E&VS?RCEO9ZO*W#evr>^-ca9~
z3mpX3czIhxtXM2UP;68Q+HDoEfXB4AIs4y3K@GZh&*k=10RE_#Xty~-86YsIWE1`^
zlMo_}<a=eGe`)r=Y9zV?$n5dXTv1h3ae<YiV;L)OECU|Uzm!nR&cTuOL0OYvK}gIe
zI4L#NMP9z`;&VL7VC{^DhfB7;zNSDL(amIjhCx>S1HfZJO_g~Ys!?15mD3d!73zu_
zE3kGlvXMCgWd*97SgXmirNza`B0a&!=)wyEgPsn%fbWt*REPA}P8f)TD59ZLN^q5q
zj%rnvlq|yq`1z|peL72?8m@JA(j{Ifn~`Da!vliBl_#gUN}{5oN{rZJkC>P;YPwFl
zDTw6C6w;VEZ&`3&0hZ-2>FSz5Nlwo3dbg)XU%Wy_`0UI!R2t(nEMm>30Re>OWa!(3
z_PzEGNGU#g<_^41;jJ=OS;>07`Lf<wA>)CE1|hfLQS<x?qE;HLW*Z)x{0yKb&>tiG
zqEcD}nDd~jBEELW>DT#5#B~t#xS?i?LUV>zXsD^fvmQ*U@EyqbHx=pWsX$BbLCedn
z*sGtB*nw;n<q}iHbYrF6@$TNO>FU~$I&0<x52K=IDl3IQXVSCy;2(S#9vPW1p!5B0
z0F0}rxBOAK!ULIy($dnC%gbU0)Zt&3sWMePtmo#=G7h(d$UDnxa&w<B9YxCck2KsX
zemQBK7atzF{1Tn_8R<~BSv&5n1c+|5AOL=u8b33FYig!ByXw16-+z$PpZ^;?XVj+N
z?>+Fnhy;X(H?f|L%}k(k3Bzv?h$|gaV_N%pMx0LSoc<yU0TveSh`9G=X#^AyfN2dD
z*X=j77^Vb)3_ALyg@MU<cfI=(GUjwD`A&NAHhPX$R-QC?p<}aXFj9|k>UgXB7=hD>
zZoBJaqeHt+xr<?S^$Ek}@U%Eoz;&aF?^&_6ot=4gnPZ!STUT!euYC;~<|8j~W@Hx1
z$;ISkZTx|^g~c!0wUw0vcRYf~(=CrtxG!7R+(>D)n{PD%tGjE<N@2vI7#|-nA#;!E
z(WANYUh2!^5yZvZj?ZAPfVaB-tQa*V4b8j$B$<)J!@~$uZ;gu$x6dWdm8r`P*S-zD
zNF7t-95-8fyMb4Kfn9eiX9=;tmERx0u86S6R5GuI&}$Ja5WBz*Mk~3XCEmYWol^&^
z)t9DLGqx;8fdJ65xplpW*zhiv@X64QM$P<Ce?MuOCAGUe?c(RXCKqipF+5;Fzpd$;
zHXv3|QiK-Gm@P`s7_m*esx^zo5f}BXtfNq+i^-J{K$pp&5MVM$Yy0tIa<)16B3&=(
zb;iXQ2BvLT7TdvbcN_`t8kOR&-q=jLu@B<R9;GYthu-X4?Pd<UurwA^=dWHYgHKN0
zuHlzwK~z5%Os=JP@QIvPFHdZKtI1P7cGFzYuqeyb77+c_w<5?;AS!Ut5wUX<=zfq#
z{sE$IolJW-y%8+yleNQ~SVN@FURAc!G{0-7@41FFcR6I@*DT~Km6C8&Rj#^H2s~aW
z{0%-v$p4YTg&mNo{a)d$`YE`ctfN;zgM(`2Uuvqu4wcO!=+~b40+8|#5*TFC4WS--
z=-%00<%$cmst?*An6Bv2d1ZAg&s$I}2)+~u9GF|JyINvcz5bB3I5Lo$(@&+roa|_8
z33Mu%7|6)Y&3zo1o4fKj($2RcS7z1&O;O{S&Fns1$8;8{#c6~h=hr=}#ON{8q>cWX
z06W&I2)bnb*aFw(drH5ar{=}9mom#O6vQgIFGt?JS=#*_Q2D7<dQu$2@kRv1#c9QB
z_`Lo^Z2pm<)=uk8UCrQ}jfrYk6n&0pZf1q|!|JTTN||k$>Xa%yd{l$qv*vPWCMPEm
zXXod-=T9FE=1=JP=7*(<y^NH9F;*fv+n;I${veI-;d%DQp<_X>Xli!(olm~xg5}ee
zR4UVjw;A`JJgGXN{eYYH=F8rP4Ej7l%Ig$|nBWfZL35tw(@CU^+kwNKy__S!#j}he
zgYH`^qZ@ou(mErvL$1!D&TQ+;mZu*?DF(rp0;aM{vExn5q6-n0X+GUXhBH~mcE@NA
zJ6$of1NhFn*4oOM=W$)DHA4{k<iuDuK`*xau?Ca2u5_8~#Ne(nzlWbNr*Db_g$@iE
zA-@X=EC#jIF)J%7*jJagB80o+rCqD}8DRJ&0?zw`%xS5qhq%ek4U;G8*)_$*oCs^c
z<jL@)!^U)(nexPnIt`9&Z1JwGt-*<nX}qTf*ctJHU=5mY<-GWUcHz?m5U_01FsKKA
z(K9%xSD8{X=es@gQrERZb)z?{QBrA0dZRx_uG%5yRbDoUC~MAhno8!B_PET7UtS#x
zmP@z7x#t^dE+$U6yj;i43<z^*k(K(iI==kQEvFA4k;(In2aLBW^QsII8u%1FWS6)p
z&vg7q+5ylntXrg~NGy_*W+^9s3s=Z0`a$UVpYcfEkivYBB375Q`|jP6@tl|rDjWXc
z{Vme}s7Lr8>;3P=9&FLSX=ko&vZduqQd-(k+|*aour=fgk(iVeM#0U?yM|9IwjLiJ
ze~ys+Jn8J}de-gexM$<xF~*OCXH!$D>3bxkq~3^y2<Ff2w6wIYxVT|TrmoJ;Cv{_E
zW4dNbE@tlIN9mo8y9-W(_Ag(S7uYM2<zQT|Q;inD919ps=^Tj-kCi;WDl#&rg`xTP
z_NoZ-eC7Pqf=S%pAAFAZ3(3wVCJ4OEhVBvE-3UkZ7f!FMNf&u*?RqZ8WmlGzoV>qO
zUd|^Y@hp;(Y=k&FEm=f!UsQ}+hE_>~T1UImV-E=>9R@t|0<M8t)VoH9yH%;FQwxiW
zVetn(>m$jRNFZ=<rme$i5Ft(AwGt#5Jng!_{Qk12ywdg(!3{62^-NGUnJyfQ@9L_!
zIJ8+}R<_2)#qD^O?`qv^9^738_igm;p6gi2%P4x`=_x~lokM(Usw6q1Apuz(>m#LQ
z>(sBqQTh0--$_%}oZC<S8XBMvrx}TTpeThjykn5$cO;6gDJ`|Ha@}Ie*xKk-%Rm#$
z$y0xO&wL)@I#;nGa#2xLRomO^jd1k!g^SZfaDfWjhd{y7Pt|C{)imqNl^MwraWWOp
z_@8~YP(VU%tqn3Ns{IWpMfg{9Rbf8<ysE11ipolGxSOUozi3C6ejKF=)*8KVia1vf
ze9>bpmTke>8Y;T~i3r`--R*i=qtJ%E@(*xcAM~f895=YHMQ!HXRly8`W^1IpbY8bs
zZL5TiED8?^T$oo_$QU)OzHxPNNnM9(q<Zj)dXKnH44$Z;XzP@ge{m+k^qOQ-)?xkZ
zC$UDGm4)Bx?>DHm6|cXf;|V0Q(9v`oz+`-#P+6j|AjIdCL?HRWU-EILy#7}e59i(c
zR?M`l8m6nYW0|h#C>~YJT3{LXp9Uv{pkw*(H#iqkD9!aYSY}8hQ${uF^z7((KM`T<
zn}}he`bJGTN%~7&#b`NWlKQ;sBmH!xZ{6Lya!PY@K2<zy%8IJbz5gN!g%#V^ug8>A
zo`W+>E!5uqnF9x_W)yfo%l8;{&CiI-btr$hX0D$2!!${8kB4&5*4VfSzwH3(U8r!P
zU0<k>MbrAy>-u4dLc4J=??79g(4}Pfc?7s{wM3c`-JZ~p+9}00May|{aP|cv-`NTY
zqBXPi7FN5#GwNM4Gth}rjj^sSYANd7m%{AZ&`Ikuo_*2v@^SlmoqE#`ctEwR-4a9T
zmF%pnbFo2<q^^Gc9#?cK^{iDQ@M#NEKWlhJ|KZ*ZZ0q@m%8v^y;C=1d`b0ncP7Ye3
z(r#~t%*7HH9aMYm_${@Dvrl1vt>;m@<jVY?#S$v-O8lzHLS>hlnCZeNg~EHY2AUCF
zy?Wl1y*)xMOyXLITnwC{E(d?fuZk@Fb!^a*8s_Ea-t6Cy)k>eff${nYFP1n*3kGW{
zC<F6+<#{1{wm-V5n@?=zI#8k9Z)#QMv}zu#vm4QX4lqjGcKoWEf`|8EI)>VFvO>db
zJd0vwucrs9`*ipGxbYW(sHk^C{g419wu)y((1r$+*o2wH^RIZkSZhX%w23w^B@zSB
z#+x7#n=A(3Lr%iO3*Q5@KDp3r-Jr&BW@uS!r}o9??0W|X2d(f7m{hqoSH7Y$%Ie1C
zhWMHwa6gvb`dP;BzMwF_3WG443aCaB$?B?GMPbHVV$L}_JVXQ6IR-Z{W}5wSp26U3
zGT1J<q_4B9>-2DR=cV30<13H$=O5Gh3fLeV`ke(AuVW^hCUzBuxT`;E;eLwK5BpG&
zqn(xk_yu1(dKf!J5*8_i+fmUdg5!4HpQKjIu9FyAM5HX*7iak73Kt;pRF;2$`Jmhj
zx{`0-W`v6tQq8|Ot>Uc(_YV9TRA)|!Sh3F<+XrSmi+p&1olYv6%2yLe<NO{|S?s`U
zC?NyCI<?>netCPv7FbystFKrnpJP>aZ6_OCq<Hq|5xz8>L3Cq0%j0dEcX~@0cmW5*
z#(9SRTGZu**y_OAM;hC_8uRgndS3i5?StGauUFW6aK>RKI1Kx5vU(JTO<i1m)Gn)(
zViK&XeC-em*^8S&zXm=qBlOoaAijci3Q8IboQYosj1<3aV9aX{WT(UN&nh}0NbP7A
zbiH6g1dvUc(Qj>;uUTSzl9g27uFFjP3B1WCLI@or5@NldVJ5kj1n?KZB?Qf%tU?8E
zK_{MjbkLtzsm8aE-On;)>nODt-}&0S|6%tZ+x<ThDE^7)IALL7FOmi(CUg%TW8R8;
z2%YfXyVTUf--3dILfMl(KAyn|It*>=7vmBX+{((%o@|8pj%mfvUgseI)tL!e2BD9o
zASZW@iNT!g?DU@9>_63V{+N>Di~}9HNo7I^tOk<h-_+S@1r+H#ra(UQRU>;_h_Wnp
zi#w417(Sey(b1K$G3`kt=FEsdeDR&G$QPz4)pSx+R78AK!i!|uqof#H+Zzb^+qvTm
zCcTx#gdol+Em(<3o037s#&}h2YinBuQLvmK5*{G?Kkov9wT8#Xm$bFjhqyuEsDWKw
zDPkZfAq*g?qoI+Iru1dTc({nt%dU57Y7?JEWH~Sd*)9`<*Lxn-WM<C!)b#)SSt6eB
z-v!FSV7;i$6N5%oQon2F#Kpz8vN4#U&}?5TD_@azE-pLAfdEtAh{W_pi2oDiZW~&V
zW|X0XpEM~>kaZFKG7Gf4{I1JnRprDN<?vR=8_E(T2QwTjVV2h3FCYR;?hJ!5aDgNw
zG!<WZWt;Ac$(F3hfnh4x;R5Dh75NTz@yr}3sAb7KR?<Ht024LnV-UejF~chO%MDh0
zk*NJ88eNg|wY8p>FKjCg6&)RQ7AsIYOXZFt?^lR~#G4_uH#+k2VYDykpja=C-(O>4
zKZvux0xG&FiX8RdPMv+5{`AH#*#&9f{<p!&TJia8BCQx?<F(Zi$oGfqv0IWshhbY>
zB)iKaDA)a|ThXPdM;8Mzva*^8kJ#MHz+C+~E;+wos$u`s$Z8#5P)ux7<~|?J=Wa&E
zvvYHQX&_tA$7GS2Y)Y+E?Tntu$&E-_F|Uy{+cgIDC3^H*@fXhg*IFrVg>ofKl+Mo1
zGT)nX2!MR(a{ZxA{5UltICwxh^L|FvrKP1m{5XkSe0=+Im-`PEa%Hktv7dQ-_#i-;
z*|St#P5Xn9{Iu)8ypCu^&3*_4aqPNI1G&s~I;ee|_wNJVSX6whhQq~ucs}etZ-j}5
zt34QIUH;aNx7Q;k@LwX5<R>2#RP^k?*262$M@tJg@jjqH;Ym$%u_J8GU@{`(wv#kw
z-eUv#?!j_pPCxU9lL2uyeE1}`Znv`NqKX>Hi9uh+tsHKZC4m2HWFZ`MdVEW9NFWX&
zh;KP4d-RqBHDre%C##wJmWC8+$i{>Or^s*VD-?lD(L`kF<EM_eX};6-z>pH|ddyk~
z+_L&0vI&v5VuyFDxMJL=gPQl?Dwo~zdCntb`Bn@zxupnS4pKs(zFT7WtqA+u4tWix
zx-~JF1UeRwV!x^1>XycN*hm=AKTCE?k-IDqSPzUe_0<iSq=O>6CZ7}W+itBr=1`;r
zjQVXp%3B)$Uv4^R3}p5fv2u0fG%vJJH^LOOorOE~N6dM$kbKB5{l?0>NQ@M9#Hto}
zN(34J#Iar7@dy9)c^Pg^{30Q!K<XXel^2i=KxBZ-956x68^e@huE#qg<EDVPfaU`+
zXrTGUm%G>Ft&zTXy_VE5femzU*UAB2**}UEX;odlh<;Ua)S&)31?DS?#!qYznB60T
zdes79|0d=pdx|TP9?0Klaw;v%y@T`UyYSUzKgdHQt7kmUb!m{#5u6-~*P-zI9x{!f
z!3U#DX)fKVZZ%(omTbV&DYZLZNB!A8x()?>_zP9XVQmv(oT3KIax7;CM|tr%?@8N-
zbkLWNe`r{-Fk6aRGYbi|Qs2R0HvVw`N+dKJ^%Dk;>*Vo$*QLPAMTE)bw7i>V@us7O
zuG^=xV^Oq+ZS5P6nQ+(;C#Nb$?-;9U)5NL|XVP``^Ebv_FG7TOd#XBybe0es6;<C@
zGinmXSt_b@wa1T69XT9?IVU%NY|@tLajvC6W=(hOd9K9v5F!nbZTD&T9tbqfIdz%&
z_^7OVY`MteLT55uqi%TeVp?_6a{6rec;q!LqHaTPvqpZZbP;AzagGI4C;s#Jijm*n
z<-nY!Z||~-Cv!Q{;F4)`g}582D4)ld4%_3XpZWc8rCGi>SCX`Tl_4!_Vjxr8tyMa$
zZLimfQIS^L61M%x)(6b?!?$6laLaWV?jC&B^F0!%82!~FFFZ^hcc=VO+(l8x^ac*Q
zMs>Z681<IMD{!{Ed|3C<iaE}3w@>Mec=4emtR#`J?J9&&?sR>GNTloqr+E+Pog{Wl
z5W_vjtV1_@Y(t9DoKs_vuLDPDZMGbP7OSe6ltdN;WLA`)rfkFEu4$g<)otf-!?CGw
zpEE_oNO8JJ{35Lx9H?yY+P9g%=*XHj<We=ZEvrnRy4KezXLW!v1<C;}@!0g8Vckp;
z7g|^AM&#fpBzs1efvrM^1V@0GmKn@4TeZ8QN@oKRzF@7YseI2#VNQf9T-j9b+e!d`
zq#7Ye_We!I9+udc=ikH&_vu=(6&)vLN_Cn$icCn}T_e?J8>>p?$H4&(kT<xms!#W7
z1fMPD1QvExfaix$s`zny$tSBh`3znF$@VLcY7Rkm$IFvw2%821u~g3i@7byDGY_rQ
z)hNrfhRfzIxZ}~eTl=J=l__=WK?1x(nf7ahmr9_LPcH?!^#UsThDPlcVu${yVrzP(
zAeCf$+09{qUg#ia`-kO3+nD$t#A+(S?age83Z&O_5YvQqLDhm0n)9I9=VqxS24Mqz
z9L|l70+$vi8R1?JYIH6f<rCV^!n$RYaZXQE?e*900wY9sGR!5m5XW9?T$U7(Lx4A7
zpW12~mS2%J=)~%~Zo#QGs%lScJ)HLkGMC@U&#ESfx%^i2DVI#~>JVR#%C}qa&SS)J
zX&Bsa?v2e3SD9=^AMphinjR;)?zj0vc%V>#qy9c=YKGTa*QtiA)`>efJ8(kUn{}B5
z>liW{G~F;0alWPEy1yhdS?sIhH4JZZ&n`b}*)gce%=Q%otFR*%fQzQzOVv8rVzV86
zlfILq!%o!W1<m;?7|8FKAhVxx_KLgH(oRSP&%}?kb|2Gv8b_lBM=Woiw=P*Z+j<SE
zyUx<4Ze<^fkfA@o0e+x%>X2o`XiNPlo|!At&NymQF=ySo+?FqxwzZZXO>9j9i_MqG
zbhLWfY6hKconWDQC3u~7092c1L7&5v1;$9<G7!XVVXMAR&qXQUvp-(2X0gm*O#p!y
zT}$`a)ljZhzFabU)^+k*9?m?Lu+9~X8Po3y1bMN0#J(QcslqP?w~<i2N$WtznKk#@
z9jJL@E8<k_xlbBd)0RGMIO1-RT}!u`Gt2@l0sAhFGj4uwgKq^!AL*UwyUx$r)&^%-
zK=YcjKz_Lb>4uEdIOdxM=S8+>sw#FZA(F?mEoRs8;Ge))Vq|z2Z`v{Qd#SGVV$`y-
zT0V)RQZIWS@sh92mmTgKg@;j45?6szB}08|d*XgRR;*N?wPvmlw;nQT*eN22FHnI(
z2vdt4V~fN2mUHFOYBq;H<bsV-*e>UZL)Azr<4S7YY#Gta`gkKo#>F=|-br(HW={Zf
zEi()=xAF+os8pZ`CVenbaUryU#E&bT?(Pj-@=su$K?^EWw6)uUf9XhZ9TMUc6!%4F
zqoM2g<=3uU9&FbmG!hRiJ83=EFeh4<Y{G@x+XprgzDA2-2&Fpk4_bDwk!cn9ny2dz
z2|wppe!V45j`7(a4QKboaXwo}r-gt=k_@VQ#hK-%oiWAE717pUIu~(^Wxd9)L`~)3
z?_d>p?HY`LeD+sUUPGgs9RvmE>P<g1k~g}hz5Hvz+OmbT#%ET1iQ9qZd=g2hLBZ+S
zLZeM)mI+z3qXUeCYu*|S<CBNs;~8L)xwH@ES_hY1Vg^j;kif0FR?fr9Xq+_nAW~eG
z{}D*h=BvFG#gp+YLC)pFA97O}oHkmwwo`QFi`!s6Cuaui+6DO#3024PR7ii&{<j{+
zNUsj>1ApNQ;`dhNji~4grplncN!QF_HR`o(rpUFkC*5L;H1FEKZGNa~Q<laNo^6-0
zP-~DDY`;h^-$lOOp6BEpua0SJ&>!Fk*PgIz_4G>h2#BFM@n}OcI8cp5zGaTIf3Xc)
zQN!)sVp}dPI<<-PsbBkETuYe&$Qom?98{$AZwf^#zN+*9)Hw8KsUB)VD`SxbOwbbD
zL2@zS8u?T&oM>u-?6YMHsjyyK`nu!3c7hVEM29Vk`{oh5MX|*ZX{787K94B)bK=uh
zk0b}83DTm}it1EHtF)=vl`k5#H4(W(?;ziwy31Un)0_uUNs!Oa(XD;SKqF#P%1D?u
zJ23GW_X^UPKR{v#>6$U7@n^6eKhl&(*O+h(_}By$U9q;;_Muu5O?g+Ppp^q^(A)Zb
zKB_BX&9cAsw4hq*f$j@Gh|vp%d)Ke??{XqBrr+gX;NsS6ab3wvl#t?_0|uWUS$TX5
zEx-OmDW?z#ajm@_KMDIwa&Y3tUBA6^c({Fu{1)r-QZDaR763pN^!G!ojY;|U_ceSl
zX96ws7cY2xdgkn3rN5_({+ROnrO87cUah2GW05aoTFJi3e;J7>xc4i{yYY-Wp3OA6
zl-=~cR7sL7cG<@kaw{%dlNxR`f#L!9_Dc1{_@H7;jo#o31G%26{MA(OlCZ12&rx!o
zzDx1Q^WWpGYYBbIh!ex#nJh&d{#!Pe`lq$xh_#wfReTiGJ6MEt$Zw@E(c`gksMiPG
z6CZ#&(dN0XZ`=cV9Mcm5Jw{d%75tFjLLtX%!WuOLnsQaM`@%RIzBT4O_Ab41xIP*)
z<$HP2T9dr?m*KxgvPt-t-U)iR3~T?llz&~s!@|NrBh$ZkHHeVT&Hw`4mb*EJ7(RtS
z$>>W1|1IucHzdBB{UiPFsXq~lgwdN8{C~9nJMIp8+Lg|KPo?kN2_m{D{IALVn++k*
z3**))84)2+T6X=GRHPE*w@&{rRl?s?{GwHS;w((BIJ=Nlu>Y3Eeh}u8^_h3@8q(rJ
zt4p8Lm=xa!T*rpj?jWR#3MCJM!vzlp2k=_AtP%RB7r$%!j;hw5S;iNC8r?#_Wx)#~
zO_!5=)+5A1Cp_!&+kRNI`j+O|%dv6?)v>zQWj$Q!CYaa5{WozsCpynhh7G<LD0(L&
zHkx*vW=~HxD>XZAnf#-M;Uf@UD*5Nx&V#ZQjefY&l8<ANh*QOg8RI_@gVYs9i&};e
z<in@OihZMb&OJh4-ph5S>tQ`6C=#FBQi@k@A}bH+au)Kl8>)Rx2z1$g$r5~{CkvA5
z*$<zaxDh2m#`eTXqSAGA!Ja{&IUh>Xu7eK}iGC-D#<d}f_}bS0i|QC!Nz8Vo)QY|u
zbh^<%UdND4Vs>-V(_(e(Ad@}g@McCHY+UiM9usB7Tl2<7&VYC_hv;V1>U~1s>VX=?
z%`BCWDVDM<9e%AZ9kkdF1})C+yYYsTB+@uf1z+E}A@e}a(?c{)`o<K*r~#5pH7blZ
zWCN^ppn<hqz8n2h2nm7U-f#+u8!~;Qj{3@(MA!0{-}u3L-q{Rb-H;vNVBs8iu!P^3
znF;AXC8rGOTVB^dx?)(>;%2U3dODC(IwgO=4Ou->$NJP~HxbnH9~1o_Gf|^vAo42#
zCh6D0Le;z*6V;9{FTc4wrFPkxiW9IJ;VO~`CER#s>CO)lU{|tGjK13}CUbzqR9042
z|Ng$ySk+dh({j(a32ogHm`WV66-J@t;Cb=jI=M^K(0|YXr@W8Mqzv7BelTHdogH3)
z>JP{AS7yGW@t(EqNJ7bi^LVaP{gkd`S%Mzwdp;-54xf$G3K}tX?~$SPjzvmrhnD(Y
zA{=}XoDsCbE(PcOl5I0PPlEAD7dAK})5NID$l#)4I?#{#1zw`!*Br6-^<dGk64xz)
zK6%di*eQ>--}|${w3)*Omt{^fjsC{WeW&|f!dtQQ46hiBg}sjLzz*{%#u$GpKFxKD
zUwTzLF-IsXiRo|{QHapUCrx?n{pO<rzGAh!L?m=r%4i{9X<aAPChmJtPz%IsdvSr7
zN$E=rldsmDH)#oHjC^&ctCmulZWRS86U~H20#rh~$_p2FPn_`(CLMv7bzhhRB;ULb
z#GD32w!N3=)NJv_E^R%-G?1xoHuc{A-rYf&+97xxdF>H^Ki?sY>$v5!+iuVN{7a9M
zg@g`&cba{I;CDw;p2f-bA*N4@;fSS`{S{@J<vd!%w#>rLw>J8KrfrDt(WW@)6%g@g
zWAdy?0s7c|_odd5KiUzR6vy^*uWP%b$;pSCWCr-3p_&ljoFrY2HabE>D3gL|4Qf1(
zHg~b*FbNO~vd|FnKuw?6z@}~0@WaiE=KUX(;_h^y7KJCV{8Yen{j<Xj-V81s%u$)E
zRi#JAUpi2djW^WxGPt>=)MP7Duhu0l<z5*klQLonO@bkwwbf7D=5+*l&}cld)TbTu
zp}Kt#&2O-dmP`Z{yX{*Ve3tr)r{<4u);md9FN{!>P>`oh6t^wnqM*)fcDXmBRk6!g
zXG#NU?v`~4tCKB`mb<@by|#NhPl$lV?y7Hs$kyQpL&_c5pjNggsii-8@taLsE0Doj
z|LJQx?#XRy?_dOxeS}{ej<;5w!Y_nzniskA3BS)Y6Ns}VP_(i^CX%U+*jq>fFP;P=
zO1;i4&S^|riNhJFT1X`5Uy&#!Kh|ecskw9;z`9Sw^QT@V_@mxWc=ro+E!gFC>|ha+
z89+7J#<6gk<r7HO#)_U?84Lo;M>Wy$DAzO$Xfl?oy@7gZcjCREA(>Kv^3kUQ?qkoc
z2@G{n<;6hnaiyzoV)K-Z4zyo=RFQHWM35k4DM2w2ys@JgE*6gWrnmJ?m4YIdX|=`?
z#cS5EZsaPR=4mi~lVEDdB6Xk3<))}Emm!P9($uiaO={dnQlY<}{Es?Vg#W+RF~P-g
z-I^-=_GMBLmrbXVtyP@z#w{#=!8aDRfqqg^P1eO-Tm`l?*~ns@VLNu+)GKeoej_cM
z<Y}hhObq;SCtvd)(?f!hwHV)du~|S0>ZZxObXCbuk=1{{WD7lr#---bmFGx6bRagu
z0^Dp|9KB^J>#L&w9$CD}ifvitNrBp<>?~6M#DaMo(#v_9n#t{0IAL?^EdTh{KNA^f
zYztGKEj73}kyuOCSJ!E<v2a9J*C*5@=;e>)t^x}B5E)><oZR5Bp4qO!D>MR8L=DFX
zTCp7N%Zp>}&wG(Co#;6CBit$b7`J<EsEArfU_4^CSi%6VpL#iB68YQZne|x%TTz*@
zvGI^co75k-0W-TWaG`!Ri(<h?vWbhH;*7eQv4<cLzFOj|z^%V;&IdX_y7Wq}v>HvW
zv>D~;Ls{a~RS>kDlAZQB9E~<9+xX_Z<^n$W#bmL>tDMbmIn?=AkdpVVg*M!0vfv;h
zEcs;JDip>$UTJi3TJC*TiGKGKe!80Pw6eQoI{u2)@$=ao<U3iRD-7Brjv_Hjbb4+S
zAPJ=W{Lq%0kxNum5C2%udMvimc07^b_u1Yat43di@!^8elYTFB9GpFDp=(H6@-m?5
z_aB{ucWv?6#kSMWcJ7{q-e;xJY**#a*iQPBbTQi1t(TU-Hd*7Ge;)69G3LzJ5$HhP
zk-(`OS*#z^l`JZ}^<FYooD8^oVBF)o&`!EiZJhPej{JFpbTX-YDb3|8^?4U=)q7jj
zDxF0lJ1xW(&h~7a5)@v_ZX)YE>=N`xZ_}=G_ywx`BT!4#F>$Lm3iom(%1(HaV3@$9
zyl|RN7L^?VX3+6PQ)}453HNq`_nAv57xFzXF?0N7i%b2t1iJXgt#rZ|(`6}p?%X->
z=Xe7d@6VPdp1E#LC?*M5Cp)gF#ER=ce;!PzcY>@qUXlDc>JFW;U+PNv<Vj;Z`h0+U
zmEy?$X-P;;+lRc5??P%?cC$)ChD%#L{~T03a*c;~AEd#!5+Y2lwWTll63}GG71G{j
zC{#%nwS?kU7lCpR!~kfi+7^;+aZlhhP*Uw5?sJ^>sifMMIo2%ma2BGAoGX?3M1+;<
zv-;~3PZi0Liq*-YSSZ;ynb8+V>hnB*maHV`58LX=g|Oy5d@LQl*4a>Xm*G#Jq%5_2
zH_JylP-B=qWB@&#WD0{3mf<^E2Q=w|Bd(GV>rLYa9GvFB(~m@tJvY5VQJj$tS~uRk
zw#&0M2QJ#_u_g9+@>ayTwU7RX*o57dosUK#Y1}`%(RQaVHeDTv7P@7sWsFMva-MXC
zw!D|nWnFDBp0SWUsS(1$!whm$?&O*ueFG9sEq5v^`6*$s?a^F}9%MuWzsh$kJlt{t
z&{IH2Cd8dt5wEMtYE;dO7;cnxw^aJF?2pbq8I`g^!AESIlY<EAaoWe?Q;#42j6^vi
z)yQr)6?Pw0dGnUcPv%oI+P>H9@uJV~#KFk&eNfS-Ckj4e{iGVjB+lPHH6TvccmPkS
z|J3Ed2oFNIb`}zbJC0huW{&(34Um+Z6~C$x{+HR13<-LSPD%k_B<^IT^%wHMj?h1b
zc-w+D6VRfyZl)y|VTW}*sUUcXJcw*rX0!}FXe4cmGla)PsQ*VeWyb<|ry(qXBLT%!
zSAu@{B-hwNwUedAM0w6aHYv=L=Fe$<D7=DD&`Ji7hl6v{@XlPOj>)E^L4!hcV$SF{
zXkIz$c5EZppINRb)=yi4A^vvwMBF(BTIcqa-(2ZzcNEVD2GmYQdd^eN!#$G4>(rRj
zhy(YJhs3(2@eq?iIjUZ~w7lf*lfK9ZbDzR!mYxzkF3ZzX+04%F24+tsxeu&Z`N}hl
zIagy5zL1#h@6YZakCh0k!(*-TEfM>lPU52g?#>8ctP<fEZ_^yzRZvt+P)6~n{PtZ?
zT#^q1QOe<~!+l0L-7?M6;2g<+vZLrVVV?X1LIW~j#~9zS_D+VEeyj*-%h#`S%Qe5e
zknqrD!q_;mrD&lOYsif}YP~=`u_c+H9m)RF`(?aCE6fe`IosK%tyhcVQWv{-drJ90
z@dApZg3sGXoIAfWCS2~vNV#btMifLd3WY#V?LwGnr5d%g*h*_OCt|7TADy+ZNtLrt
z#h9_Q<Gwg&`Y-r_i?PQX8lv3-J9}-P2Em)yBl$l2>yItQd=%l?9-f2<2|q>)5sQOt
z$Q%*y4|j%eD2jI~{WtNP%daBhUE~~s5pAM4ME4xriCZ(Cn?PyGuu3`G>(%f&83$TO
zlvzVf#q!k)y$s3K+_#f1H!okTxOuGwj*nGDX8)!X6zwT8KdRm%rO7c7F<p`5-i}Nv
z>VWPmj;BxBqwOae=k`|bEtz$u>+PgsNw0;S26gBr{kJuw#|`<vx^Iu?j00y4w>9qs
z9jpz<2@)>(U(D=O>vy{%bccU0NRyXJxskOUf)>QvJ<~S>njU*VKV20;8|-oxP^XkI
z8E_HYU3!9iPCp4xzIxzZu0>YVX63&>O2aSzNepDWI9>s&X;_;q7VHP(!i;!wy`*LS
z9Z3-I--q7`LJx4Bb&~juTc30HO7ITyDSht1+H@sAlC@SU^9ptrBHJ<AgVbTF<Pt{q
z$$CNmz=@Jrq-L2Do{^fa$a*zfclA8b!-#AM$fTqsv4CD;-#laG{e3?4ao>gK6<PQ;
zqv}*yDJqNZDKuBuxnHNZ0Pg#Tpk%N!OZ{#;tF?`5@mi%>cdFCz_N+doxyTjRX`Dbc
z!Nzek=u^2OMBW+WpaYfH2M^pJatIm{?Vv4lT*C+mYy){^+*9`AYG!w^_~__Be14lB
nuI=?7M*p$V|08j<?W=omz_+P|ijRCV0g#hYdRioD81VlAo)DF)

literal 0
HcmV?d00001

diff --git a/backend/docs/agent/453-csv-upload/3-upload-respondents-csv.png b/backend/docs/agent/453-csv-upload/3-upload-respondents-csv.png
new file mode 100644
index 0000000000000000000000000000000000000000..80116446970d273a63be105100a65008e88c4860
GIT binary patch
literal 24798
zcmeFZbyQqS(>Dr)1PCEP0|d8$0D-~Xf`@@2gy1d#g1c+b;K7EV!3pl}7CadsxVyXC
zw{xCz63+Xr``>%-x_>;g)@Jtf?y9b?uIl=Ab#H>?<s>m4K6{9OfPf(_C8mIYa1Vrl
zfCxi<0F+c2pO7LTJc62tipooiijvFQSiUncGekg;3W`xiQF+t-G+A9i8Wl6pEBbo^
zIVFu(G^QHDx;SP`1Trd3r*EpBBtD)-U7(J*vIwrGCZeiYPF^A7$LR{jr;5?`B|6G8
zz6iBj46_Nl34FKLt9?SNiF~%ZBnSi~Nb!vLBS_@X&&=T%XgW|SIo+saq(^H=&vfqj
z2<Jptr>9dPFn-vc?M*O6cwG@k@>cD3>$XT-omvSMQ8<l44*$8YGv+Na!VF_{_aP#A
z54k0afOb}^DaFqiQ51?orFjU4h0?qoN8^|!4q5MqGYSNQ&%)$`$iihP2U|$Gpkdu+
zWA8FW>d2Q{Pf9GcW)!j74=F1BIIZOTU!_FdgvzbVvJVBY-}mXG$PdeGinvGfP_<BJ
z<u*R-R`b9n=7a56^Q+!Z0i9p<{GDB4Y#bVXCYVi8S&|YW`S%b$%7|T`(D(Hy_=9q`
zU#oxdL9u<Hf*Jm1sdFFYOeK;WOsq#0$d*wPiFJ=tobZ!Q3`QTB8dLXbmuUVI>k1Vt
zTrM434M7eEs~J;58&XFvPs)hX%T)MnTA%dX*JG9>Mix(DGF$q-k5C`jLu(yxY8Grg
z*+42h9_#sgoVk9g_1{E@YFL%<f@#`qO4zA|3&LXzzkSe0*>YTc{y@Jg%t-ny^4^((
zhmu<kukx7am(*EL0`#9$u{Jml?At%0VSOkGZ1)z~7_%-_`HY#pV(qT#A)N2RXu;eY
zN?P1?uf2wXeuj9#NnB)VZp_E6ntSBJsf1C8S8JPAEAj<uu+rs+T@)-Y6r}l`H?5x^
zXZe_sn`~OF`8#eT>yRVZM4+`dTYC`_M-I<Y`HgbRqu%&RJ;D`TM7nV8NJThE2`HhL
zV{OkZ3M1D~g=T)bM=Fwt(kjAKuYAHF9l$Sz{Dgw)JU|jj#SiSSq4M_nHkr(ziB;p9
z*duUH3*mT(h>RX4O9a8IN1%y$|7zx)P|4;zp?oH8lvCo6#XNy|tS?DcDONGxMXGtk
z6{yKpmYu#M9)CbNh`KTNurkeA_eYr%lqaEIWSqj}UMRF8W!gb8a`?b#*=+e%X{@dM
z_Gt?j)VMip0V498itYw?a-ND~n`7EvQL*NRQ|P_+P{2Vy(FUQQ&~Cz3unv*n6t=n#
zN&A2fZLzHi+fRhCF_wHR(~hv5z3(4g$C?%%7zJ;i(xPlU(q_|6$)}HcxT?0wv<ls5
zblVSc8+o@R8`B>x!&-JQu5s3ZS$3}QWr(gaxGb0t;p=Yr#qkM!)@_|nv09T2`Yl59
zs*1Mu?4Wi{u|C4p8lpB@K$A@+@tMgFgt;x<FA7?zD^??Z2(!eGsxKdTp%o)kf=Th`
z9@l#dp(5#$KWzVC048)vxj$M%3_&StL6U#;s^wMjV@0nQI(#_~Tw4&oBYbW_+e7Dm
z!sL@T_f$h5X^wCW(Xv?*SwsqzM3?eG;B!4cZgM76lznlZ2vq8)(h~3ph}cKE$nkG4
zGjLTy70D+fo-Ii(fo+g@0?MhlB3-5M53tX@^yn}~#6w@3+OhYD)EIL=3zvJz_QS-O
zq83#%EH?e^8fiJHfOoQFQ5wk_TRHwc*n`g2KCooShy7wY#{0d^OJf@O$P8^?i+S_W
z1Xp`iP=1CsbOmwa7%hfb-49qmtHw<6AMA*m$8+M)3QuWeUOe3+y+Zev15<Ki)}y+$
zBEJOb@_vEION>c#i*aL|D$vejL`oT8nFo?uF@tc*g31DW0}}!-1G|E@+fmxJu!9VQ
zZOG3f(xi|S1ao2K-sJ&yA$CE-(k_xe$rC<lers96EsfR?W1`vxk<n;V3V}Q`j9=%|
zX+_h03}lTe^(p-T7poCo&v46l|HeE=aM<ZRr#)gtqMD?DY=f+O=9e$Jh4Z;s=@dU;
zMXw7>v={R`1wv2RNj?jNO3GwDH|aI0Gww3sGAUZKtL2zZNq#w)&73{@9SYxt&zi7u
zB(a}=rtEkA9P|13a~yjL8{H#@2XQR%ufNgh6B}sg*qOdA&#!P&Ln^3Ii%|=xC^S8O
z&sNc8ENQZ8!aOun;4XI=^jNw}jaEuBqfE-EZa_K-1rlP?vc%%o=hsKlH`FJmnN}Fe
zq|K#XrRZ2>kzf&?9G0A?l{WLJ;Z*~b3khS0VgEvzjVgl*ipr=8nFK-jTo`7!3U8W4
zdnT6UvE;_(X7I7h(doMO$gNH@Co1bV78S$qI#yknT;*ILEQuD?<9p@0r&80AGgN+5
zG7_W&=XF@`4J>g@*?W!aUgy0oDhaX<Ea`LlurIx6ffF0lBwg997L^Xt%!0hpeiO8=
zHl&{g9d|Kf;)~N95bW4tVPi$-c=Oqu&6MrZ*g`*9N6Vmb@G9*7h>w1xZpqKIj<hcL
zuuc84S+82}Yyq7TaUNsdv64~#jM}6MttxY+MX`rox@B9{^YYw^8grSd<Fcf8>V~cz
zVa8o0y(N<djz35%9Lokvi^`kkym+hmq=-3r%EKu`4v1+;-g0czQuRk}s?4cuIt>Ob
z<IXEC4bL69l`pSF|HzX_A-wJw@8=nH4md1e;ni>L#0@ohb_nm75noeSw=raNH`^O?
z)+g#}w6eFttFv%unD4YB+N~Tb=-4i+3#glF7-;BigH!eEr+3+hG0}c53$gtfHAgtd
zGgvl$*brBz+&GF@)KpK>U|a9#Dnw|+CdY5lRgEIJB8Ze?E=ba7Hp@O+&`9F(&I755
zzUlJj=?&#=(oJ}c!<5+$>CPd-DuQ$K7q2RQ<{9FdePKp0buo4E3n^MUiX6%{i(+T1
zcUI<B&_MNX`4Nj>e82B~fBR+hywi=M$$u7S1&fn*OOg8pKT|#Bm4~mpFMpZ|Kd+$K
z)#v>xsshT)NQ~FyAIT~}8*=5cN9AiN`hhGzSYlYh^}5;z!US--LK3j6_;zI7gs(oH
zsiRe*_4vk$N$9=TlU<n1XwDdsCc%+_!r12BN_9)AYgqiEKfy}bG9C54x7*|Jy_r@B
zep4h{8qcl|uj%%WvZW=9Z-r69Y`~!rvC)-$+fn4N<Z0GqSF<f4yI2Rln|_00H)$1V
zOeNt?6=&A|(9Vqz+IYcuQ`WlDtJ0p*S{i<7za?=8<CEB}DxTLobv73^Q8uT`k%#bu
z$1?UAJn%PfWU~ff6HK-dc)h$?&a&!U1(Kvpv$?{!QMjS!wR@6HZ%y*9<eZC|t5Qqn
zrjOd!QH+cSBL<9<OoVLL`?~yE{Dk^ijnIrL`ZyCBbWR$0rg$b-C~b#UEBne|RmNJY
zR}tqU=sD;%Pp_1gG|Fq&j$1SQWP?NS`?Zhe>LPaE2Xh23cZ}k@GS8GEYg4MiEA6)6
z7&1-Kfv-GX*fYIgxGslOZ;kGDxoO|H&mM#<n=?!)n`udFJlAwKkD2|tF*1>dt}LX&
z<{^8nb~5p)qG(iB)v>Uz!mQV2!)5s*>>%)<6C;*L$>K~g@~w3RYpTtxM0%(USK~DG
zgq=y*?Mm&7PW4w+Ze#T0F8b=<Dlh0azm{&dZ{MFJ+m@QLUO^dn!oi2(7`t;-FH@VB
z&Rcn*7%C~-Z;?LD@cxIIq4{X?umJw)gB|mH+x*GO@QNZkp|PT=+oP^>vLX^xq3<>k
zw#7TNc`2NvdZhHZk{d=pPuUGP?ASqEm1K|krr=A{c56o2DUKWo9Ll6W_(~V(j@Q!C
z-Mb!!ACtzB><UIYFNpL;$EwrPCf3`~uP9Eg?+qDwqTMVn5$?q68@Uf~rX2D*o+%F$
zVXRIMj#kxHkY4m}SBaYMm>=WwGqGzO)sGDe7GAH>G|A91p=jMKKfLWZ&x=%^ETYk<
zvlcjZ>B9ICO3P(y*?874cN$)`G7Fkws!6xc-YWbt{Z(k|W^8nR#(GI>uHomU^{J%*
zrl8Y_{QlmX)ilW?NyBhivQd6(XZRG}l>PpCdv?;G!Jwc6{%!8{YUgU@pyx&JZPCwU
zG=U`MCFTn)CRf9~_oJqxqc0kMG&s&KHJqPSE+w_pZJZ{a8VORnJ6%~{(89A11|3oo
z8ht%$rsGCOX>q>YzivVzkS8%`MR2M?M{r?9fH+xX$SI~gxkOJB96F)eODVp1G_F0D
zB13YO9lq}G$u){N)^rcSG-puiKKbXz!u7PmU120&KN!{A*k*sloFCUQ{l0osZ?|Xp
z@d9!YI@_k6s$hS=ZPF8w8O7&NW|k!qSYdoLRFQrsD~mu6+@m5OBR)g858NRFmmnh1
z?|TVEI)r<Fl_Mb_1ehQo|6NB8`2O{Y0Ipv&|M|Z6$sYj)_=OEzPN_)$)V>Ewz4y;O
zA`EzjAo503S{nF%qi<tqXklw?X{S5d<_i>{SxKqdA|O1a`E?;mD^TwN{C}D#s@SQ>
zLU{Ep&6#u!EcFbToXo9$@j>8s;stKa4efNvoy^TFY<ZmoDF3R#3*7%IW~L<ntBRee
z0HunoJh`Z)jUhQF6PO81Dfp0_oSfgr;2p1mn8e@Yz%KzxV>>%5US?)TM@J?{HYQ6O
zBW4yJ9v)^eD>EzW3!ugeTW1S9U8ffowp9ON@(&*|LtA|t6DvCtOAGQ}e0B9K?d=38
zDStKe`|}?;4V_H>v}9rXcej8JGXHwQ%)$g_{>>X8<^NU6D{tatXr?M=Vh-pGXhV=4
z%+3E-{r~I9pBC>>s{Enk26Nt}yz}ILQogk{v=Oy52b#1K{4-pC6W@LKHz7asub$u0
z#DCQMS1F)p!H4|JzsF4Q;Uac}12BxlCSp)U;2SWqzdn7yUpnCW^$lE{j9wVdQV0kf
zXVPLKicW}INv_eFZ<AKJnCwHnf{=Q0(9YKUL@ABYP3`Hua=_G&q^hXUFvesuk?2mw
z6m_zk?GipdNzInNzl!)CTP^!OZ+J4t!FOtOd6C>cMoeew7x|UuQs4cAO`Qh5k;Na5
z&pS@r+gK{ZD1P0Ty4b4ty2Eq1wQ6*`BXH^J>6%hESV^CO<*O}le1xh14a<-b@-T5R
z**uI&FVp<q+iP)Nr1>4ajvNt9N*D<{!VB3Uyg6ak?)#46RBz1*VG!8)d^v6?oXkmw
znX7w&=1)Cpa_<K5xhG+QE|z!=lFMOIu&vj!?_#}>sqfVJ?(Nl@agQMV-*hEZsbE6B
zpFgR8H~Ndljyx5-j?iiRk05{X(b+<!gLH;fa7h10y1$u|0HwTMENXvA{7-`fd`J(Y
zO7zWTe|6)Z!U$m$p!Bg$$iF4)4D)I=*iuoC`co00`LDQtjmZC#cH5qU4p&otRK6X`
zl9ge5*C%DWIv`EFYeGOg72)FYZrg-K^g!rxtIVY1Bc920?Xk(>%8T=fqxH$j1}oj!
zoN`wwzvREI?C;^Bq6C}ivbtY<sbh4~ncHBuoT=B$GL1vnFSc8Um%E)G$2d9VYkr#k
zI9X~a^HR}|JQttUuqV3w{YVeH?Mlc6&EUT+i-i)br|YAfabyhM@9M?!miBNKSa3Y9
zwVD?<Io{yl88?0y<%iB(*rS=$o5Zzy^wnJ89L6ch@BWPV>PO+{HT!=XA2Sv~30TCA
zT(HM0PJe%)gXinCJrlXkp4!|O<JF|G7;sB^E16;OBh%{M&XoZH9`mW{=fRmSb^95<
zIWJ-53~Up!2_~1u{-r|4rRg(r^=TxpAFOUyOYmyn6&oCh7V;7N<-;<y=VE7oT9ng?
z!=pzUQR3ogdM!S-@HFvYo8hhTE+rp*TW9CM2xH|3lzKN;LvMg(dW73?6kP(Ehv)5T
z03%0mx6sRg%}j1%Wm=ru<=!|9EN~Jso)7KGGNY=Ey*)p3a9MJ)z75X!q)!(p7Ul=0
zB$JtV366v{GHE!?M^sWtJ!Rx}46wVt4u&W4(2lS;G2QV{Z!}q*VP9#_+lBWZ&W~%#
zAT#mAW#ft6Y!r>>U9K$|pD|q(Uh*$}Q@-(A^;_12+@Q@re@?qyr^d?(E-wGPrhWJ-
zcaruT_0dFEX`zD_wlAU{J(77iCyw&Zn!45u#wbp52<9sajhuiRf2-V4KGzeL0@I`H
zqeNuS1A^b~{L4#GktY2Kvt;=Uh&&Hh`YjXm$4i&bc}<iGHDZPs)hj8pQ#eddDht%B
zR=Bl{`kbJ0lcQDOuD3Iv%o`e3D-Uc3$aH_C-I&|1^i4lC394I7Zc$R(n0}iYV(fVx
zW0TI*GtUi|x71kVn2-f>W<qdD;vz$$50a{!&QgbaZA6C*&N?#u%T;+*RgQ?=l?7@Q
zwQp%dsKh)b%>Om<M4@KPb8>=asjxuDrSWELxnXD?&pCNz_a<XX47!C)^#=B>kSJ4&
zcGJuS1j^K%)1jGG^x}`wzC1E)h?ZO%-qA#h;*~^JFV9|jNfM3s((e$H+={VnqQX?&
zFnYb0omA$|oTx*IO;C}kvHU65<~dex;aE|NX$|p1M{H>KGXj-Q0y0UlV%Cw%8e3g-
zao)?2k*3B*^t?<hzF8w|lf@VtPV<TAQ=4{$T=8H*?H7ET1vdkEv8e^U(wk6}^e4ye
zR7n%lOy)I;c~z&0?+1HN1UMCyv?kxC=!puQtL(h>UxU_6<=5|&+?`E9l-{p#K+C>@
zoHlW;9Aj*(fWGbE(zKbuOtsvW4rF2Ac@u5^<6vRJr4(NK_olPm1EBp6A3mrKgV%Sr
zx2JXAa3lFi3sOwLrHv!9lE&7e8#O1Ag2IzD(|1_glZj7q?IzX+cDtK<?*trjZwX9-
zLL%B&!jU-g$P`0S>xQXW%-$?LOR-^&sZ5QeSgw+G`i;qPg~C$J?Fmh$Dm^s(FVi*!
z##}NjX)_KoHF{(i>yz6x&nMqlI*yOJs9#=Q9v&2IAl|EaUP6}L7#)1D**loF-T3NX
z%Euun>GGwOn%4~6o3b5z3(ZxVR?EVJPApvX#Y--oIki5uX58G^y+sOm!F<0fb5(bH
zVpmBka=VET8=Ctt{DFxKv~PePl<|U0A3_KysvC+rS#7Ofd*k9^=z-p?2A!Z6z(0z~
ze8(84=d4`Lmz*ZvxZJC(*fd|-AjA)k>%xEY;8<dOn-qVlaN1Daxtzs3^HH){Cu{Yb
zieN6|#uD#LN=})Z0oykF-5FSi5)d3bu4)8}W_umh?E6{r0S>Hhw+z~Yv+AU10V%K1
z+Ic;nC^<(dzY*SHxX@3{-;=XDLT*X8LHVWrX&2++OH?sBPcZAkLX1bgRzvAAY~H3@
zDPz9EZFtwpuX|wPmFH-|rA6M1Lc3KcrmNG&Vg&OA^lsS3fi)NVp&@-Cg<&4zyGm}j
zK7-LM8tN?adUs#&tRB6yMAdqNwD5sdO8rKM+?94rY|wzj@*$F!FbSl7UngI?NpLkY
zB<X(7oTD_S8G)HIZe^9L#K}Z4Svu*MXX{ODPTbLz6y-})YlR2x_$FAg8Nt_#tI2iO
zTpDK-(ib?bAL>^VZRKXnv}4<>%VTc*5JWRxKPbYg_V-dNTX7VEqY~A>+`hm$cZ<0L
zDw@Tpe+4cqBFlukGZVS@&My!XW?hbd7lRnHBl=0F2Ml)Jb=Xus0K?Sk6L0(7b(&|g
z!n*La`Lg}H^lOg+2(v>V=}K{TI+nnZhq1eynbqH=ul)c3F22qmT6ae|^#?L8D3nx?
zi1{x4e?|STR{y`V)iHBjR_<zw0>EF*r)xQ6lXy9jfM}4LZS)h9K)upTI#0PsE`iIk
zd;cF``3qzY3SOG2HM)t1X&0w*$;Pu9O3iqCXOa|I>#oByYcw_luaAa?YV9{|2&3@~
zp(%nd`T-VFH8{%#`4g!68}GZE(u#{o?)uW$3*Axx4aUr=l-+9ppdiHE-JOSYzEr2B
z##uoFBo+<KVywYY@oeGWMwJWHc*KUuSpihUoJ~l4^*UaF><yQ>a33Uzm*$0PDRqB}
zrv!t5PfqqKOao*HZ3iovCkkASy=pd>v+`{a`PVe}sksu%-`m^Ud?<^g)cj}u_~cHF
zk(D~f`gEn)_(x(%ersRn!<E%)8kty&yn1?`=|mn|+o?41YaWcErS(m9*x(`n_{4cU
z0I-9_u@rN(q+Vn5HZ0q1!~JYN^gNN%I*Ai93`mfVtoBaC{lQ%%3sFR(I)VAdrQcxi
zYlX-ra4s9ZWiu)@*jy^NUd$Svy*(eEoJ<fWTy+wCH;@>=(#Ml~@zhiF#BT09wO(al
zB=_+{)%r7Zlaa3@<3le6%HH*Vt*3P#=M%jFP-dpX4C=<abA0o5Td?KKx@fGkH88@*
zHB%0wGH<&N*e_(7)+EbK7dt~ubabSd$ig4X<VcB*6PFERgkx`;jY`1tRZ1x1WS_-0
z{-}ZvmE<{m^6dDyX-fitHAQ<*@o;G#r@K%G0zsmB4RNB`6YGQRCu_cAXrOaa-m}S9
ztC((k{q8aID<`#|g_?D5EK!!_J<HRpPN%j)=M!B}?Jbd4m*&H-0IX#T$X(@XaB*4X
zYT@FFZ>C;qkZRwc>H0i{eHfpVXrWaUHyMo|?}uEWc+#*)PE};JRGVqEB;o6K<x!^5
zILjz?d+$arrPb3PZLr*(Xm!%Cq^L~fQKK*s>Uw%v3t?t#JdgJ=WeUHMMY(|{eN{R~
zq;bulY<AC;AqVN2)-$<~SPvHG@S{MY34eJCW>3@6!d{v0HtFwg)B5YMLD7WQfxJP%
zndZcjL=4RG7NV&5Uqdo2A|F^RA5`AlbciA=6lY!g&It=(#WA1#JFJE@2l}Gn=!0rl
zzK~gHW3p$`A~8!NgVv*i<mqU4`4Xf?PhsuI{1bSqEMHbR#1NciiqP$2XGq{b1jQbX
zPWVNlMwNzO3h(7qmCVp?gtGr&UcdxpU|_v;#gZDvA(qB(5dev_D*rJv?;wbdSSvNC
z3F6g@#zoRT<c$z0%{6-!H+vJ6)i>zui}^Ssd&{L!3cu)B+RYt_Y}H=(rJ$JjIsSF(
z^btjD?2oW-WXGMRe7e}@ISJq8FvWyEyjGQLfJVQ@_n{%<XUy!P9;4jr`Cdq}Y#;uw
z1r!!)h!pJm9E_L^D_oiz#~d_%B~FZEFfe|KiO7s>or&UQ>V!xsRK%D*p_&6-5DgTo
zu_kS$j1{AxL)9=+AnQ%z&g#Q_PJz0nUx(RBoy;WR{6jkojRLiYx2;#?+0B}1ISWBM
zk70W<)`Ub(S+JpHNe1JF0YB<%l=C#rbD!J0AOPHg8giDa!O!!N)}kXEbZ|tsfXZ+E
zah8>WQQO1)7`dS19LDbJuuj?dS#fof-}~#dW!w^y);WGtdZ|J8$jF<9m5O95Jm*bl
z{es&-VwCMUzj&~1G8}Kaz*pMi6W+PA&C^k5Jrxb+%@yusP^UG&W{Ca;K9nJN_6bEY
zYi{@^e`YXk%*f=oin&*OXYNlAtcaT~S%KwLJRcO7N&t#Q#i(|4es%97&0(n=T&#|p
z^MBYd013a`V|l((QUfV=&VPY(bWxPgW*x@9L_vaM3+g{^W^S-#Hhss@Etu`${Ea7k
zgM^s4@A&moLn<a%AG2C{j=iA!#nCGbGyGT40$?lI<LbFk=Tae4rNIanx~NKpr+TR#
z?o#)@MoB^WUs7bc+az3E;x9`c`-A6ENEfYJXp`8pX{OTp4T*x(E8fehHF;=SNJ62|
zj?KiMi$3f3u9sp=uNDNtQIc5}9s7D5T51oXmn5kr>x_&3J?DltTcAY+{R|2kOU4Ab
z(1RA%#z1!sRzg^}G)_Vc_|vSG{|811D`U&UwlZ}!fykp3R-q$exrx7hs_^zH!(IH;
z`3rw}pl;uRg<i;?p#XlnVkt+t8*_~L0sOZZ@cr>!J*S=npsb%v)b(Ghm;W;TuTKAK
zQh!|Wf5W2)BEjQ8`f#G&S*A<w7f1vEP{E=-^IdNQ7W2lEK=?A4Zw-cTjF?WuL@mZL
z*6{YH2o)_J|7i4*2hu2N*DnaS(_Z{5&SDdYB2i(34C@}Ca4AwQh4g$lP$3k^>MBPp
zVdp+eXDJx%xf>kFy?@YvH(HTPiao9`rg{k39z%iEzVw?cNcXCf`nx_@<j?&1<Go*r
z(4(!g!K}A=O4+o@PLy5!Fc!A1<D<SF=Y@+b*#w)J8r#*SWj!aEZ&i97$GJ_Ouip+z
z7r02^M`r#zRqmS5obxcMBN#us!gN&GXYpvt0vXj+PN_gGelQy<#2$=tlGgWmBnkkz
zw62;`Y^Fc+8I3C~+&L*;sU-WIH8bFhR+%}c9fUnn>g}$K;{xV$wJHnEjctK!`aEUb
z(yD@vgS)}FI1V-BGq|O!1VGd#KhnfaR{98QY6AW5qYs$AIDH9Y)EJAqxM1oV9Vhd_
z&(!$H;keU1&gKK;e6%&t!jDA@-^@fmFB)v^$kcG{re{>T3!?QQzcP^JM9f{Cp$YUX
zr99?i#T4klV*x(k7FX=v@;(2#=OX!H!Xe}~m>><>2oRD?Egcz4Iv9=qU-_EUab$_N
zuwpEdCnz!%E-o(cO7qDB(uhb@oO-&+l*$U~{$zKvldxju%tvps<+_sz{iLNk^#4Q-
zL^Sre<{Y#rl}bNaDvw_31zt29-$yf%02;19jg_h3PUhS;ceZt<ZdUiP(k-iNrOr8{
zzZ*N=;Sg}>`bg=lzeUACM!6I}6X^^kB6Beuy8NE05t-d|dw9OCi5h=%!@Sgg$hfR`
zizZXYEfLuM&MDRb3;%qy@Y=#uTc#|a?dRQ;f{qO~z!phR3^{z)@VRouM}}RJ76$Cg
zR~xR7Z*B0ROqsZMh&Tx=`_<(9sQk{R{hvpIvh67xFzGZFvD!1wS~gobKHT*^>hJtW
zbuS>i_IM@D+Kj6k(P2)phFC8ntfnl^pYA)!U{dWT(6tl(+rW3o0RuOnR?*9SI`g=m
z5fzV=XA7PmDbHSTm-T0;j)ouFnabA+kL%jlxXh}mQ5x0$Du#cDLo6%;M_tympPyCk
zngRCOD`4qfNUX$1^Dm`h0Rh>x-t1rP)P4dIA`Af|a(BHVRrOcwea5W*uYg`i4diZm
zbSvKcD|SBxVs}|*@6WsWzElP@Aa`S<vK{@eE{OxNKYzcp;x7GvMg8B^syCXb&Sa%|
zkWkwhmeWX{7KcSl)7}C4`uS`lx5csgelphBZN+8QwN}||G9GJB4IU`{(eT3G78>Q(
zEW_Lg)ABg4ips3RDNVWDsq%C=&eIlPGI!nU_LNedaqg%dHqUgGOI;=D${OtF^&CWh
z)`5)+N=F?^`-e*quy=SRsjka<qyK&QDIMf9uT7=;-v;XaYxB%Om~{o~VHAtx3<n-P
zr1l-%cHlpT@-S+@3em6oEL`M`dMemt<J-8!Kl6$MkUJbl?1o7KJD$YOql!7;_0M0*
zss6Dhpmg>DE@)BcfvmZAYep`WQQbfD?ijGmYJftmPx=K+XuG8OW<CQKR5jybTD#kL
z>HlZ}*g=ASqLG242%WVYU5qvfPTLL1262Bt1|cDu9p<Em^_)n%Zmb@23SO+GyPCDt
zOE%tK?`8ve`W&sR$E#G*b)xU6YQvgs2L<9DJa_=FSxruux%gR?b>Uq1Sl_hiYMFT`
z-Y9u|=b(7u%#1eCWh1u^GRySByg4>N|FAB<8F>*v+N>69>UazgH9CF*3UBG>kf+RA
ziI#%P{hRfN1HCvrAkQhWL803#yWNJ<FwE?3nqo)PM286z=Tg5UY(O}*c#Z8`3^waa
zpaaPkjpr*a`+SMv)Z35aL)Unbn$9|yOG7=jO|^S{YCUEO+s2+b$Rtl=xK-l#A7(1l
zm6s!`lZN&0S`hVDodV8#BDknI0;n60qR5dFY~qK;)pLOn5kx%ubDkwgnq<A&dtY{D
zzl*G?jmrdI+s#_;_8V2WLFe`L^?GsJ<6cUXB6LK=cHd9smd?HE@FyO7AIfiUF0;ek
zmZ*40y2|}rq}!^dGZt5RszM*24f{zY>Z_;R9A%f8>nWpd`k~{$BYJPtmZ_<mqMNQe
zsk<9!YxYFl;M3FAd+Hr|fdX+RC7Lr-$7q_vuU8h;O?uKFAGBY#z1|^38hgMwAqNBR
z=sGT+#kC^WwK04<E?z%4WDyiPuV*rkVjp{vl9ajKv1*fDE|Sa{5k9zQOk|(vellJI
znRr>3L)%ClSl=i|49uVVWaxj}A<+Ns7gba6XKWVWD{HFdm~M5*#sKeTzMH<77-knn
zc#tacLiG<V_u~=OW~(+z3@+{is}IXrfv0}u$gyZveX?N}++msbmM%Axn?75HEfoZ3
z=Zubai<A4Jp1cgS1s&^FjnP!Li#?oN;ND^aDU1mqJwR+h&MW`1>%Qx%N)Ywb8pr3#
zpU6Ur?BaVsX{Z9zF4}>u0KC+URtypXaWZf9$C|F^O7^@tze*-2jcgT@-!+im3>!^C
z!vS5nf&4XfvWfMX=UG~^uzJU6O-lH-o~Z|o7VDcuRTq0|Icv-BgmTTmik*?sPDpkW
zSYL1wdJk&fe3Mjn3imCbQaVe_YP@hKKe*&&L470%yV?s7f`kj*IOVkf;a~QO#O52t
zd6B&?3?*8U`(#W%AYOl$CIQtveyw#$yW!pJQDfEh&EpSyN9cnY_}U&6*9%+;j@6af
zSeCAf6zk2SBrwvej%!!7VbbN4;}d=VrR+gpPq&S1(S@!}1NcK6eqxFTn3Qh4PjTuM
zV8rf6Kh7uFKsu26>UnX&2cZetsE<JJry^>)ZEW@79n>M!Fmj2BYLQqUI*Y#H!TtpK
z+XuXo7nX1=x^2IKE@xC6kOCyJSmY(7ub9sa)=gqPM!*@Y$x_lLf%TJuey>p{DkIb~
zG2YiN=?$l$JSnFfFT9KEM`nXf(peyS<n4}Q6W=P0;6ysu+w9a=^OuHE@4s~0`Gn%y
zocvNzXGm8P)gVl|ZI#}e+4`Gym8YO++acCT|0?V9LC>mHz4AtDM!D(?U&iXS$aIFd
zZ-DHo#F=F)7C{)eX3l3Yi|FfMzk~PS*Sx}dO7s|q(aDb2q%T*0s(YSh8r9huPSM0^
z#fI@O1a9;uPtPj9jm7V(8;WHpy2!ILrs<K$dx4_~tG90Y0I$e?A<GOvZeZpoScA7*
zHasW0-SEqXFYpyg-5#_K6_~oZ>_x_VM$5U4qQFz8>#d-{6X{o6N#|AOheNBAo({^j
zhKslFT^rs|zg+mvMf~Yz=jLQLTkf2<1FEKrjg*Fr!}U!8wzo~d^{O#aAG<5GR6`37
zhZF7#4kBXUVn%*o;!g#^l$k=P!Lm7|vAV}0g+N59L&UP)CKDi_S4DjI!U}S;NTj>P
zw17EmU((_m7DTkHUo>XL=r>Qm7t&2;e>fxjom^_qYj`LYhZE!k5ssIq+){nq=K7(T
zI=noZY&YDk#ZyxRA>koZVvMBHt6`ropcq3P?UIJnwK=vsxWUh>d1XJ@7v<h$YiwHr
z{s~ldX`UJG52j!eTs-Grb@!GkM91mLG+&|;*bY1;JkcH;!n^m=Fo~cLTvK;o!+$h)
zuVBU!NXSn+Oq!#$Sc%aPSP*%CBgiEXZYQ>0avicC)#7`vN6yO%uZ*zVAe!O+YHsoo
zeBLvsJml|r^E$P+XxDx6a)^d(O=k9H-BHrKRJH|28a8z{H~R#O+{so>&`geZK8Z}K
zcjt1_ZZ&-~06ae4ok`ZnDDXDu^YX3h_`oNO%g?PD!gyQ-3NWjvg$G@sL6+;VjO|yz
zF9U1|9_u$DhOAS>@rkdM-6n~Tf5oQ3%lqHDWIq$}nmoc5#-+k7rbTkV#i8HIE|)ed
z$8Cq4e3Ky;a_C?sG>fjdK;8=NCMcrduJ-T8A)8f;N;yS};+ViSDN)@B>3+vle$i#W
zK`SN*ig_3nl96}I(s?B={7A<&M5q<nwfS8!2{O7#37#3lfxl)PXXv(mz|yiU2fWjW
zeN^>h;9Q4?w9K^Ij)YoIN8={tht2YE)9CQ#@KeH5#2u9Rq#%!T-hI@qLU2&B25?ME
zHIW?Blc`Ffp>p77r8}<d>!3#tkMb`!R2}<aM9<ty6Q}V>PGEU<`9MlCIe^rK&Q*KE
zxq604OyEah9{sN5v@4FuHz@B!D}#5Yc6Q=LWTpB1Gw1ZJ(m@{E08iPcAiH(jE-l!M
zeKUn<JrUzA@0RSY+-0M~Z2LjB%{tC#)?2N63m&_&w;+=8S#Q1!6Iw_Qt9Cv=mwKhe
zOpDALCO+4rTuEN7-RLGkF(=4ID>a;)b?wxLBPA>c*F7D2%sX@8zrJ2pHUNbxwJz}q
zX>$2WTji{p;7!fzC_KcmP`v7pWggorAfDYi=(5%bPax-#FO2avMPBH&p?bpAOUHE}
zeqR4GTpDM+=3Rs^CTfBn9Jey4fE@A?(^ob!yIgkwizE|6(m6Bqlh77-SZ^&I?Ep_$
zdHcvFup{jBa*5#(bM`se=%ap6vr52p$5{ZlC83LBD_p(`eE<u^x*<8MoG7e!u$MdQ
z>frh%VG=xcdDJ|`bY3Ln^qIAPkhBie4-Ln<p3q2HtAe4Zp3?DCrkt{-{aY=U4r&rh
z^t1)I%niSG5jsx${U~>&-U_MP_(3-iGnOcOqMD{_zDs8QB7LM)8^&ypo)7;pG#Mq2
z6%z?H0~4#Jd4bHZqW94M>y(O;!?wM4zqwKF(`9+4qG*|ONz(Hfk_nqh^VwYAq5DBL
zQljd)c}zb)W<BCDs|DArlzSg79YV7icBcey7_ZgrS`AHZUqxSSX_F2{IcmktxXWHN
zF*m_FzTrdb`Q0xgE7sc`N#llyo%iO?uXa7$MBlx^2bIlun5kJEbsZ|OZoI^-mk)}%
z)rdK7FRI%0{F?oxPeIYG`oJd9b+~It==!2WL+<(_Ld1F5z^Ij4tfj-0dC(kqfy@0M
z&PMLSb?*jcdD&wAt?C}i>N{o`#-O@lwJas0w}V54vW6PvUqXm>7u_r0>edtKUSk_0
zA%avXAbJa<z7CU}-7=}TAlWa?u8+R>o+2}U)YZcod!zeuH%wsXp7Y>+pZQKA%buvC
z&BE(lXEgHBO|2LOn6C<V-2|VH69uMZJig+>(x+E_R$AIU9Xviu6JJSvMWa7BeyE+i
z-$U)|6y!pOqKkb@p1NWF+)vs4Ilj3F_{UQuz4iPup=7^@5C^=^l#rdX>^gWG)Z!UD
z=}E)kSv&IW*SZJrdr-64oG^LagWF?_-crn<?o*PYt?p(%FR(L!{f&e0VkKV)&L5Ot
z&D=)D1&{cl8Cs0lXg{3yF<NN4o`;v~9yU0u;@THKS;-2x5uCo-J8>stF}dyKYfMbe
zJ!!IXcdj_v2vd&Lx}HhMb5OLmxhC@*@nE|g@a<M-C>s0})s(0gG#R(*@!VDPrgvJ~
zgrzmF^wv~6j!FA6j;F9O8ok6utYdeu=@LI4FKEE+c09(5$0Cq6>#fc<`Gra_>F683
z?&^gqo4*zebZF$STG8Khy7IH2h4_P8&`Y2r0-#gKx0C|V%Di`=7MrusarB!~<xE@<
zg~3>p0+V}f`9z(KX+?nF8RnysF6!7fBLdi?Z)d_77@+-&;n%i`lP;mG8_qqI5wOx;
zLjwxdy;R@59CVz6Vhs#$G4dxegA>-@(B9ty8h+nDkR2GadwaF>vt3Y3(g}<5$;`*H
zuq)$aGs(}j<T}!09x-wE2W2#2<dl_)$yoeM$iC9E*7z$J=cwL${)x^*DPl3_F+rEt
z>K=(VYk}ce$tIE*sumJHwekd?YIw)v!DuYFt;p8Lkmdd$PKBRjw>RUtMi;vq1*4LL
zzS{Ut9&;B=oO!N9lF1x5F8Nk?K8$*X3H@h5WX$CK0~0jg01U1&5*B9E5qX<|K&)<z
zo|gb=V30y|M8MJcE?3ix2+S9@9-Yl(L&x0S_hh#*uR_w#X=7Cl_4$N{=<>0yv+9;M
z1qo@CT&u4`DKg`Ml^iM*A~@dNl!Y1v^BThAY`6_bJ{;PP0i!WL*k^hDj!c|T<!8mL
z>4{8ALk%-Y@vg|Y{y{Fs>XZ2PIK2%1EMnhpO#)jPM`8CK%kH`@ekq{!nYS1Dc4fV6
zXiUqWhJlL2&$m6%QJSaX|8#xP-l#Q$sn~dN>lJE4_Se-p_u1&j9@h>(T0WII)v9R1
z<e&7tYdqgO3gc3|{(8_HlnU-9xT5_#C(>*{QJmdM&5xz5>1<fRyfmZ=D<1WsQ91Tf
zX(^M(2aPHbtyyjrFQM&<4`Y!=VS<)&(aAR$1xSDRV}k5|0JHf<%cW>M;|tL<`KMZ`
zNzM?=cfROfZ=wPOD<>7n%yXMKU&Fo!U{Y-1p;=>FD^GVU`gxuj&#$q`Wa+&OmwHad
z5>m~bb`Vm$m5U21!QJw^J=LpSTy<PFR1H^Lo@1c^p!QrSPxXP^RsS^~Q-N#ld!wy4
zK@Odp1HRHuCTV2a$%mPYj25@!)9WR({ISN1EF&|pgOV;_-!Ns|2*;W9wtsOw;(gHA
z>Q~u=hfxIge;=!a;Ub?X!io)ovfp+1lKp7G&cCpshwqCOypiKE3<RS^zCJaW^VV@D
z&_j9BP7%=9a2%+`kK^=iqqlU-cc9bRLphT)Ed*2Ex<SLGQ=wRfsiAx%PD*r|QPdRJ
zE*&WQn$7uhQk%&#*oL=(^DXRq${@+9QB3y2+E2kyxl7I&^=sk9dCTP20t#pTvEW?h
zWqR7}OmL7S_Gnx{Ou~*R=12p$7kaBUQ+051ZzlPEbBc%SJSH<nZ`PUYrwjcE{d``u
zC`_3r%A`c3*F=}H8}46)O7gd;?BzYo!oqp=qv~6!1AnI!n={D48oEAXbhKCMRe}lk
zQIi90%AA})WBg&Gh`aZo>w5RxATu)IXg-LMBE0<MPQ+;;r5Y#pdl^hU?Nlx8WKU3>
zxoMv)WKa2Oku{H1VLPjo+KU{szc?t4W)M?wdS|R&-k{OrCqG~1j;U6jaMJartB1cv
za|B+Z=?6lO8uPtbvV~^$j$VuJ&`0fhY6?Vd6ww!<H9ZUuSc19^<Z%vIrnCoiQG385
zC6`JeoB8jx#hu7r>0;~Ag7${HlOu)PPN(X<NyE{smES_!^@gsizS6qB2AS+hTxGx4
z=Ya-YY`#yw_%O0^T}^5qD>J;I?`K6YWn+0EGy=Lrwe-}dv6->g@Ss<@DyBZZm8J1%
zb!|W2awLvRL6Q*Cf3DnXd$?$s`69;A7vrk@IcHzn%BRJ=2F?+i!rE^iFM3BY4GgE8
z$aatWcL(_oA!-%x-?~h1YQ=G{1k^cE(^xY%p6R))XU4(HO@<EGc6OU?Z|ph=jSN5;
z4a>3Wa9W}B?nLIWE+W{mqmXxT|Gg*t;K|L{7wV-i^oqu4Po5#xE%929aegVEmg-{Q
zQkp@zij3{bd;IwE$|<6QT&l&(XvZ!R#|+@`$|`G3?oQoq<9Y2ZwLGntz<yhaZou(o
zn?TdmLGKVE3US0Xu4{sjXQKm`hEo)H+R9J*I&M~V!Z%Q-TgiQ0@oJB<)w_9#B(lYb
z{0lB9F)EC^o&*_AC0v*v8z3&MSiBU>t1rsmo7v;wr~Kh+8!64(hVqFa#j6~l6PTF5
zQZ{j{k-*K_%GH>TFP^s~1(iy5m=WE;VaEm;rGKdjv-$RLvec}B?n^Sc9I+0c^qY)h
zW375LGS@-L!*uKPaLCT$b4>~$0G~gBqwR7F(#~VmGVEL`J-a%0Afod_LvvCXF^R#X
zh=`RvW!&c7-m59dR`$bBzY@PVux>SzyA2;XD5{p@;Sx9#Qirbh_>JCBKzcC4FQ$vn
z8_REg*o(%dC7mR{AG*LIGo>-Q?LE!QG-B+17>PAQhCPp{H~y1Q^6FA4;oD)7<Y<;m
z*ruuT7q$D9Jh13iU$P!OVEG&#M1sR?VF!VqA%c;jig4t(DZ1Pja8kZ;iNG6xbVP3#
z<ObH)u~dMeo=y#>M=pL1avGcAYTOUKN>2a|DGhM77ta>ADR}9mUwIKjXFcY;QA%N`
zmsz?Q;yUsc8Ot&38g<tvlZT<k7f0)=(HiR4FIkS=4ijek?5RAQp6m&-N~Mx`E5NRn
zXob2@I9*S+%-A&AZi*=uP~CQHNK?vQuQWFc-~138=w)5x?rFEk&1Pil*|R^u1Xj@F
zn$IX8u#6|P<iuzCl(QDBWTQQ$4l&sfqOQp7H+2s70zJ>Qsi4`FaVDExz)E>|l5fhk
z{=ro<<xKE_^jiwZUYJ!V`?6M)+_EEmQL-T1p59h@baOfM=*sIAY~)gd`2%M(#6K!q
z>%nT25-b|09O1*>oJ7zmwT0ajT|5jcAockni*yK@ZuEQ}^2t;0VyIbhVor<$L6m?P
zNAeRfX~@CG3DLIL6nRgH;YOe(LQt?i$ZfcdYnDN|ux}TQKbT@7ol%=c9vgMuOL(O$
zMtKW`=w<=G2_|@)3(a)hsiB>u^Px1u^CqqYRsjwAMS=Qoy|{V>(0W_g`BY~czE8GU
zRM#|A#}YUbna#y3u%)C650ZNh;SCCqa}FhY1*}7&4nQc68_x~n5xfnNrXY(e(!^XM
zAQ!06^-%<oCJzO5k_eJ(0zxZdq}yteV`ZZV(|s{bSbNoAd0rA&S5Gn?^)blC@H2Oq
zp}rGdJnq3gX9!Zf)TfkFe-Wf@R9~<N`JA_CAGTu$o^rX_3uN}9dH1%$9%k>J!L4Fd
zxW`!=nH&m<o&3q!{wor<NHGD8u6Gzw;lHxRT^fI9jUlgeTdS<6>KBN(Kn`w)y;WxO
zh$43Fyzjzlepr)o$vx1}g)5d>D%G85#aqUV%lL%qeMr>L8>2btV@dP&`aVZ|DQ4x{
z@Bf_~!=#&tlh|aTp?N8sSB`(bT|>)BVqx;VuQY`2TIpGu|0e{_KusOyG3JwYo`uuW
zUM5op2qvR$(U|jdCmCHIK*eL0PGu$fW*m+3X@VQeY%}2VUvJ%b_R%JQy}4!Lj$*fJ
zwq*f<`#%vG`BoFM{?IGq(~43V5P#Ol^6s9Ib2@dS$079q@J5gb0`q-`VDn@k1?-&G
zg&gX2y+GLVp=F5~&g#ry9($CLNenN28gB`s0+*yG(&1AK%;1^{Az4Gn&-3EQOx$7+
zS`i|>8uV-fQOz(eCoG$;OEG|4iVX5r5IgW@2~?&XSz55DME#{3XV)sXz3&UX(W}=_
zP9XKV2f*%6$Sn*i0VsI5F8zL#0?e-K`#AbP+4T)z%g3Hl-?I=*=(;kkklvc1E&=!W
zXAd|6NUU2T|4NE}$f^XkafTzyrvFL2ZwUj(MDBfJ2?rYBIVjAP*M)P4nn?b$>jjiH
zVf<3pqt6pQL3EHCA>cKz+uKI$U2X&fqR3zGfNf8^=aU#Fq3ofE%zPC7qNy?QQuqVh
zM+sa~5ExwT^$s6b-O+maiTQmT6*IKU2e6lz><>HQw%)}ofbtm7#nW>TYv*as;HBz*
z;&ktEeV>l@m<GMD>~&b>vXjfoKCN^dNU|NA;!BD8&Sta%Wa7{HyO!MClZ|$m)Jv5Q
zD22Tc5Rs5k6>*&`4p)xgGR#W+GW)#uPm;@_6XsRZ8~HZv_S04KEx?;PMFiH)_Y-Kq
zr^SnKXWIb_#dHTO$g>f$XQF@c=nVDJVLdCvhCG->S**D4)9tj)vkm$W|4N){fcH?6
z<4n!82VbY$+(urJT$#}zX&riO;jgTI7I3sN`eck4ij<w?pr%&uWS#!mtUcrP^cNOn
zR7~>!aG7{c4l6I4o#yx@@n41B5@@KP(2d8T6o2;vll;3JVoOHS^-dw$KV+!vuY|!S
zijKyQ{?Iu*L<MbcIXcSzr~5$F)YnKp(&@FL`oEh)Eq?>h88y|J{?i;HQYbbi&}EXp
zyZozaY7#)lcR8(z^S6|!n8wjwI`EvG?*xD7wsA2b6XUx(pa0VKFUf?{k&&Y$>;pP~
zi-~ER4bTmEIFA15@-rH882eW~cK<(geD{%~98T)${#Gp@!*@EM%l}o?|E8)GAA*>h
zt~^8E*WVc*a(PXiI86uXB9{@S5$M(;VT@1r5Yg@TuB@Ct<BH&2f;pytIt`z3-R5~3
z_iUeo{(cnJ=vVUJ#s}QcqoRWFig9UvTdi=a5MV~08Y8cM8>E-;ePCFTV$=Ru1L~2a
zFnB#YPwkIwW9E>P!xWnpqJJ9*g7*!;{o491!<`oK0AqWo@)7&Djgo&S1GoznzP~Gj
zkC%=DqRi_*W{Z45MGiaadRuTu21QIv2))kpyMlTG+;6JC#@vzNA<&)sjN*3$T?+@S
zn@qXljtuf5!r)x5Ou9RQUSnZGE*8Hk-I3wH%KA$g|8FZR)duW5=UuTrZj>^e#c{b)
zXZe}KbcOTs;+$flc-G@GYkesD^pJJq&%7h76M{^S66JgtCPTz!(f2_FI5FO7beM`w
zp$i<+?xJQCBYMhwBX%)|f**nv)%$0nBmWNdPWI`(IwzA_O=-#)Dm>mCHKG7EC;H;q
zh7OiT?M_ZjMZxQF`7VF#=aEEetPZwp)6yrIp@OPHNS@L)T~ib)1A|h&)aK8E!F#>W
zvlHw4jeEYn%^T{8VL1E|2ONXSh=L08bVL_B6{uM2dkpl%RIRK!lI=bQu~cjV$;PeW
z3LWprXkxg~9|P|U5;kvHx;kW*+8iyC;hM5?KWP+1f419w!}q*DiH{4NA+PLK$*^U4
zh2KrgOSODWf7}y&2w45Wm76X`$_-^Uh{J!xp|WEs>23E^jA|v=&e-(!pS$wFaP5D+
z7?5|#;jD>e^|5p@gN!}ux626U-FJBi8p?*s0EfQTn+vo^TJ-JJDz|!Y)A53zCdCB!
z8uk`$L<bdPt+wM9J0H#@uMBEOm@^NAcj;Z!*v=+DWx6u<;P2`D9J6q>;N%uo{N^#J
zZRBnAHhc4fI}R3#xAq*CQEr%EqKZXH8POh{=hXk%-ma0vRPLj)Z=6%dvuJKos%Oiz
z&K-)y1SUa?SP(g0;C~5;WpWF($|0x8FsV+Ufmj3>H`I!CZaBAtOf<24C=;Eq?o2Ii
z!01Y!E}ZU6CbBGkcQZ&QhNSg{5Dp#YYO?TRo4)P|ztpVU+Q6Ns$?_2g#|wGha6+e_
z(Zl)@xT@IT3i;6I6Rf~lvwDmUquoCPgUYU)%G^SorDh)xr}CXtgj(XQUNn^io1U7|
zK0S2y<F?*}vNeB}8K7itviRp&HXVV|zKJ`vA3F}0vEtK6|HVpPN2WvhDRQNT{YWWE
zvVA|ts6{-_VGgj>ZDXpn(<P)8<JmaxPjoOS6Q@;bIFRV9{<A<m&Qq(=?L2mU=*hUv
z?e&wT6nw@r9j!+0Mzir!^Bzf}!X}Tk+J$G!wFeKc{{xEt0u#dN_vyo7k1B5TbLuP1
z##hTE&l(S^=V0&fp#5s)Yw1a8C0W!GoO-&hA!hCSddM_|SgZM(b(M$JbHK4Iho2ek
z`@pe)mF2}N*aM|uj^PSk{0fmfaf0eT;DsgC!C$g$LObj=Km4{S1n(9g6nwCDe0yg)
zeT5YI2*lFQko*-d9P#8I00=mz&H_3+D-7c1;3##6xvDVux#`$lrzc19=@uT-yc=;!
zfxz*z_z#%!Y8D1Uf_HJ<-KpIW2srt=33sIP2Bf>E>v%Wd^Z;=~wT<(R!QKNR!h_bG
zv^$0n4M3n$fAc$?dO%4Id*nNPH{Q^pqk;@EChw3v5)%d!qSgi9jX+N^AwAD3|4cKO
z1c3mI#dN^G8y6YLVbL6Be*hji7!$F@fP9PTZV>$cfueG7A)IC|ZsehMKO)hH*?|*8
z59!5!k7cSZ5&&2TN0Y{jS4`zp=W5v+m2Qmxj7M`dpy^Io<?Z?}KHUSM(Z3zqI17l}
zeIDz%Z+)bpW^%tx#@Gue_ma!WL-Uc={Iu~KgA<qn+R5*@bP{OE2(SM7+jiFSfcnZa
zB?TH_LUl`Js(;W=4ita^gEn&<XrOz$NEpA{U3(3n9jwBjY&4MU7M}U<b_s%jA;QkI
zR*(P_(voDx{~qE=U^Orq88S=a(|xwh_k#BC2Ff*4Pjn7eOu8~;na$;zF0Kcw%91$G
zBiQwu2u+SHJ<6v`<{iY`p=KVG0w+i5ZFsqcx0|<Xq0R!L6?~6z&6%~$4uca8E3Z%D
z?U$$TO+JM@kl1bg-D)~+jsVQ<X4r832IEQAvZHpH=FpAX&r5i~%#pWUr@fJdqgge{
z>sj-rMh5p&Z_6jj8L`*FGbbhN_VD4q)>WmAY1^VCSJzoxLzz{Yk;xNB?eYNuQ(VsQ
z=%f9rq?ksxQ)T)jE(1e#$A=(3xOK=sK9t%G_~OqQLKE=%<F_nnhmrb1iJT3^Jeqc!
z9aKA;qfmGK+O28)Oj`>zN?3@BtjIqu;~hi~{;p#q%=x}}bjLND_I6L~v*Va`&3;4p
zwOs<)hG;0PJ^Vtn)I@iGgNf|&#O-)yJuuf&>di^~GqR!darR<ufyV9OQaU!*33d2P
z9kgeY`#R?|+_*i14<>fag0WSK!~80x(Nwi|x5QOX`G$Ui=Xu>vDyYz>oy%>8u7wHf
zCNjR0zN7fMLb=Uk=W^RYlwBbzlG0lWXZ3}|W1>;}Fudc(rxxu7+=Q3E-SaaOAhkk>
zLj8`HD15_SsM|B7X+4!{2w%yaM?K)6ZK{wD#^^GcX16fE3wdHFG;teIupf9ZTfLi*
zl&i%e{(e0OKg+$e`EWB^OEnJLu<-o<v~%_0Ot*Wyv>r-@yrtwNFGXonDP~4bi2TUn
zsD_9n<Sp;Un5P~!gtKH7*5fdxV?|zyjT8+PGAB)5=b1G!ZJH5}o!@h=wz;n7I{%)(
z&cD0v-S_AI-rxK4{d~Unb^SUA`es^u?hI&6JM4egb-6<h)vq!Dtxq^y5ca@-Yr%dJ
zsV-^wZns)}TH?U9BpUm0+pWhfO^Ylw+?OJ&;PO|yb?=VSMc8N;wD7Bv2cT&^)8PRR
zzY!naHK@r!kg7g0nJzHqoxBNYy11%uON3eRzfLfAM>bKPo>|EbTrpMDnRVh|Im^rR
zL@VOkcaB=!_hRB3$8KlAv&K&%SY@?)b|meYy8a|4R>K|{%~;$y_wh*Z>*|pAIl4U}
zhhladOvRIeU<+dX>JO6#{I?!8JQt09-z_*)72sKZ2_y2Pu;zkmP=(?V_|#VYX_6Za
zt{5stl*<34V4S46kSR$hf9;K%5X4xhB@~;j$tdk=HN-AQCWm-@XDKy5*(_vNq?p<i
z<=k(}SRxv$GhUU9G%DL5Nw=;Q9<1Nr2$i!_xq!!awU&N7jfHBoC>;qng|ww4jUheY
z<0ezw<_P|C1?aJ2RfD~x)E+k1T4`iROU1O|A;ufV)!^Tef}kpZARwM1RVqt9-u#67
z7Gw6zfhcpMeU5us@++i^M}L2^Zp*uh6FYC&goGVCe9d&kz_Tqt*kX(AjL+&eNYsw&
zeOq!I*rnZG`y`;vD1%PAU|^d$lXeOI*}_9G>6R=k>+Wz%fZdRLRqRnx>D4^T3vVs+
zZVQ%P5B@H93`{G+)4*=!z&)~%_l2HpUT!MqK&^xj&d~X@q7(z$#|sq*Gz$3C$mKL#
zQ0&%yr+K?Y-@8c1<3+q0P#UhX3-6EW_odE)cVZjcM9$v4V7fk&cS31-rS;pT`e!yP
zlg_{!Q^(N8UpiZv8KOru@ACy#eE0OU&JPqdp+>kC&ljfU_8Kb%MON(B0q|e>4a|%g
zUdyzKflhS?b%C#|Uy8AD5-H6K_H-uE&D;nzA?WtS^%1vjyb#PRwG@l<pwQUd1JT82
z-fV3(bo6A=vF5ux`cYesv^NWuZe}>6(#*}m9yH>YOex+e`@2ns@Vy!Xye$a!{H8iH
z;->NdT}e59k*ExEU0W`<CrI2QCTkukpRTD0vZ>~F9t!Hiaj$-HM)PC;DPZwf@~PPh
z%X=^z2i9UvI&->h!tPz;vi(o((}Q-&f8`#hLA^h&eDH+)mI(ily5j@+vH07l0EJJ=
zq#0oL&1TLuFLdMta}=inaeowX>11ft_Y-JR&PD3%XHf-XB&zGWM$7Rh*H0rZTI#IR
zX0))HDND>F4A-+T{OO_7`|6>CYWjw}y<~!VYuPsa8_L40FR0ga?G#{zzB@~$z!K{=
zFTYKxhg_y*-g#Cg)nK^wp-RT*)yEB2DwCG|q38H*kJLqJkLJEreblub3;f>yst56R
zkmQ<)U24CTCL$uTkwY}BD+krmu6rn3cae`z77I%rCurPNibGH^5%Y;7J%5bNB|YC}
zk(8$4==ScV6N(;Lvgo?<jK#YqOu~I3B?L`-xus6*WoM=Gbxw*J=f-s}$M{8yHK~Eo
z&99BR)I`l=4;W7$`i9M|Q4P1;d+_eP^+Z;QZINyMmjz2BKh3$}%kaVTOoM9^|FRi2
z8)XV}RS5f)b)}s7I>*j0!+DW6(Rr%6xm000J5U9{S6pdV5+-i`8zsf9n)Xx>onjc5
zQ|l8wY&vTlHW3vk95imdV2N5yyuBj-8iVvJFeb{1?r5w>%zo=^BF)T6u<*W{CX{#^
z62Ac)d+G0M6*nCsZdw@GJ;Yv5*f3BYas9^~@7)ec1i836{{uKUqe|io(crwm{Vke+
zv3qc%`j1)c-hfhaL;rY2Cu9m}`1yyNxpW8A064f0?2cVA*Gtl~GgDOt|C_03toq>K
z@Wvlmdp`&)l8~vWKNlo>OH@iNaQ_s{N|;sAkR6;d%yZ?WhNW1X36q9R;j%g?r`#;Z
zAyJz(o=x1e-aZ6(l}Z*p7}c)a|3HexO$qk@^a2xbAATbEA(z|-!v<^^+0ODJ3I~ux
z1B4T*aw!Ow#A9>%+QX0q>&{s&WyFr@5W-qLH%P7+7$Dk)+5<$yB8$PrV<>OiyOCGU
z!vjWNVHhzQt47s<;yJ_F%+Ihu24Nf6g9Quy<kEzXY}Nk{lnBlL5}rS!EfU0VSr(+O
zwLJ*dv5@)S&(`@@UX>K2^fkB<2wDrsn0jeZSgv^vi=>J2L}XR*!VHaTm9=UZ8iL*d
zATi>?zF%EiT%J}?jfxi=7ymlf4!{c`pw)g)c+{uU#JfXDoZkJH<E=eRToy1h`wDfb
z;Af~l$t|Fp0aHo(f?eN7c45Cbr>jo`lhpVKbkt{(F!VD*cI*&Glin$R0ZrIYZmrW~
zL+TcGHu&Vt55_%4U4a*`!h8;b-U+a(TMLI{f>vVp|HGJ;l3FCQulIFuUh)LJeU7dH
zpU?#NuTmMV2b-6xQZhCV6+9=UnuMpE4;+ll{ev;8ok}tB4HVnNI!M6aZY$OziT2_`
zQg2*u*#Nl(c_lxpPar=3ELA$BT3s2aPfoM-R!GCtD<jXn?DSHLl!_+EYbVf$9xZ(3
z3{1m=Cre|;cmx-t%d4DRuM%i4UFxihsF=Z~KI%hye1RZ;)h^+nXVgCwDJJQXXKj;X
zI8NCm3VU{L*&$mZR8txFRX<hGUcs=X(2Ud2r%{G-UHODuAhHB;aA)=GczeX^9zymh
zI~a4rSS5X+Ox&T-PM^5i<X7#4?eP@>gsNj)vP{sV+Zlm$ch!gQG~Ps72uc3>u#V}6
zPdk4#*u+t4&(dEwfkc<TC$8W|UQGlelHmbG5=z9Q90r3~3x!Go1u{S~2sF7N#&{JO
zSbzj<akNtQOaNvqxZ#nRB4^nGcCMhgcFn7l<&fR|1Tbm|*1@X+=}rL6ylPpfgj2x)
zef9;7*l@SZXh9VE4fTlqkcZp<hp<4xtpPt9_l+d3Ba>Yot=?<3hUIuMJy&RSJeGE%
z^@6>Hsl9C5YjAjQ-wv>L8MiAx@B=O9sArDs^uZ^vg|v0}-I*~Ro;~0z-5O^HH+#y@
H{u%!UD}n!y

literal 0
HcmV?d00001

diff --git a/backend/docs/agent/453-csv-upload/4-both-csvs-uploaded.png b/backend/docs/agent/453-csv-upload/4-both-csvs-uploaded.png
new file mode 100644
index 0000000000000000000000000000000000000000..e646b50e353cff373aba069e0cf55c35bc56a91f
GIT binary patch
literal 28667
zcmeFZWmH^C^EWzJ7y^VL5F|K*LvYs#P6!r)Yam!~cMa|Y50;?8-Cc*^!QI{6<xb8y
z&vVFozuYhHeeYfCKWpvTd%C;2tE;QJeqG&rg5+f-(4W413IG7mr6fh)0RRZ3003Ml
z@Chu1oTY0N06>#75fPD>5)mPlx3M%dF*5)FB!gmAkX03b;-qT4lLCSQy<&!vNXaR^
zVnFJEEiq7RBqETq%lDg}1nvvX`aoSVmDku>T5xJ+Kk|zhg6Aq3aNft*m+Gp_`vU5A
z=@*g?lK39(Hu{7%lKE^8hyZv*@QDn#WALPMUzsA%QFP@bWj{ox!lP}%ztlzWf&7TH
z&d2}*7(VYU^d^}C6e{D1l++(~ABx2^D3pP4kaRLxTv}ge&;uf1o+0Mv2^?t;sU?em
zPIj9q*?6o7GFg%G(pwG-<t00grb$aIlHSjkWPp!fA*6$dkaFbXUHA`FqaRv~z02QI
zL<#R=lv--fzsKx2A*=G^w379IlNNm+CcD1CJ`%u=<kLr15T4Z>i9q>Otw?wMAu;?x
z>)0mtv+ZQdo8B)0U3q%`&aMe;9GZS6pyudo3Gvqj2!LQ|(YtfHzMgmfR6q6<G`{;F
z+dfeRMJTRz9U)(;Mv*cT>VX5<GHatS5je&0zv#xI_mQYG{@j3y6ku3as$ybu>Dp=v
zayVGco8sFLJ9>GNM_$}~8-7UdlUmF>V@Y9P@r01r()9()`6N8G*7c@fd9EiD2!6q1
zy@bG->!;Sx{hFYbRry5-Wrs~EI|ZaLBG#b$vp({!;|A>$eQ3Cm)MXUH<vR~$w;#MJ
zlOo^0EqLOgj)UWDu%6g=1fyVnE)DGPe!V?uU8edKl(TN_uI2$LaAB}u>J1|<fg*I&
zlF`i*E<1_6o?V>uajW4TyLKvN5aQL|qt=dk1q@NX`Fwzk>4glxw6ECq^;x!$8L7#R
z#iqaGcB(EZz$Ox<qs7__pD=240qi%yEf2i+l|;i9S%JTH?feEfP75fdlV$D5Ee<Eu
z|0b991%dc=GIHB%#s-yhdZ_?@Nkj}X@Kt~Wys96wzox3v-9swL$7WW|Zc#Mmo>u&+
z(AUy>AeKnHH)vGTOa3)X`(Y9-`9cMZ+{hP%p)2_UOPJqNtkSGvhhEq4h`pmASzmJ+
zf;;<+d>nmm?qOy6W6K|TQBa<UZiQhM#JyZ(Ma;O5Y~=8n!Lr3tNqMrp;sK|XOU}3@
zeEIEbS}@H$_RJEPV~=Cb|NZ;gdrqNGIwJwc{RG?if<gyLyCJ#+g0s&xe26**bg4^h
zRoTV?lank3n5LcKKMse2T_>BDpBRPgT~H%$qv^2eq!rLbKiyE@VBC<~ZgM*cbsIBW
zm5J?-k!CGFp3=PR1eIUC`#wTb6;d9;2go~!xIR0l%YLZ$DN%2>L45$UY^dt!EDY+@
zmgoa+H{o<p0-9~A2ro^30Ty>Ze1E6?ZQW|j53oRpR&#^qg;D~jVkX92eAeJC1cd)U
z`n2QoM`nDNG^B}I!nerft?=?_Z(84!JbUl;N|*1)6W3O_A;8yGltWZ*3`U>)MI23m
zltuhaILj6Z#MhEQq7URx0%`U9xJem-$VXy6kw6L@De>XRx1zx`QB&Q*nb>M!?@4DO
zU#?25GTXrO1XO^zqFg0$kDp(8>CvE%iG?Yc+OhY%t~KU<86hjo_RGYWtPZFZ9+#oC
zNnAlJ;GHT_oKCdKR)LF<@T9A)k69x0^HB*615$6x>ZE1?B7J*a32y<4;6|@1@_1My
zG>99^XeHbVDPS3;29)MM*crd{!ihsWBCU;S<>HX|7S&spnVcKc0Ca0Z6sG#X`#nKk
zd{T;AlpFox9rY4=l;lTD^FU%NCMvA*pz^@pz@)&NKxoij2Xcq@^PrCq8`7)DbV>Mk
zg1HG5-W36Mp>{!|QZ5qXq)A`2x?5MV%VIP|8NmlsB$PVjLR6la#tH>A+A%c2fvnMG
zK4qVWMQb5jnQob%6wQAKjyiqfw1=xqR+kWvX_Rr#`u_bx(NZpE2HCHKVuhkoot1(v
zfv^j9qOSsB64F_;CcP&0#!wS3lj2RgI*z%tRN=uKrksf(x#5H11rt_|6!xpH<o(WH
zW51q#jb~3|qd}v863>#T&`qOH_)$~W&QzhIpwdYlzOYt3Rz0Ay$n@+JTP4(3!eqmQ
zX=J|8UG^sEnG{r=T2dmjT+*n1Kq>|KZKz4>DvMvAUmsE5NS~}$dQljo4wpvtd&gpn
zB#VgD@YH<m^m(+#H;rHyB8E_d{^fETHF{NK)d^J+alDAda8QIQZ@NWC7N+Hy#P-cj
z$eHx%#g@+4gKi5akhPmd)nG{13JT(?;0k3)wy2pptoU#tITtk#_5(|c6XRXgV}AN*
ziEYZ>Yh168uTWeXWF1)A=k)nVYQ+L8E~r_m>Zf{i29;L!TSXnkpe^+g{cO1@7c)k_
zc&!1!&V3d(R#XnfujXu~Y&XUh`l-6wADaem!;!{(^rJqMj;D8~Lx)Fg8rIBu)q58T
zX_N``8S>ARjSA+~XH==xn5ryFJoGXw+pB3Saw}`irK``%Qw%i>Tsy;!p{2d0Gans)
z5m!2v50({IG%tGb*6>LZa`IF}kcS=<QW7a~Y}bMNqjppmRd<{QgVwN@-mi`>p1M`6
zZN~h{7f-{#>zwN6nQ#s`DP-Z*Z|lMiGkJM3+&M3{`EJX`fWh7DaMD?y0NP|_Z}p<y
z!l7}g%Z}inYO=6%ue?5>eztL-vA2B~+^?SjwGU^c{#qVtJ087=zsNIKK6TO<U$4?M
z0ax7IK-6g4;OHuZZ^S0cZvm}A7F-vEPcs)JYBF13Unp!M@-Xy(Z>DR$xyQLDe@MBH
zsCAe%+b7;X0c-%ATfTc$^E1s8&L2S-m?=sqN?u7)(~$ij-?S)kwlcIbw~`Cg=q`v{
z`R+S(IHdG_;;PGytl577YaNr5diOo|D}KfX@>>sIcVGT=6MkMnv)ivn)!;(%tSEE^
z(qNKGs%_Z{nbV5RH2px9Uo5dK5qi*$fp7sVXlT;&YQB9LH^^=9r3OkBN{?@xsJPxI
zJ(=a1%$CeCDIzR!xdgT)x3Ujq6tygVF<%nO*s>h;hC1xA_!Q^fg(w!wlqIt357++m
zkG7>INo-3XPq1MQi;Rn@;@gWReIrk~DYKDd`St+w*muWoQ1m{%GM%wB!m0Ao+F!0~
zJCr(6FwvB?zU;QFr>u^WU&?P)%)$6PZnv68fv4W)+9ulOVlC=q`1qN$eJ0PaqM}Up
zK*BVmZRCqy-fU+X4X#27V#bAB2zE4f*j3%3M6;4f{;jNYaZB~Lvc<X6jxA&(<H5)Q
z;}jDi+pRvRU#p)`Uz-t%QDq-zQlsv9BhM_)%sRR4$VOFPc|x_Z_Qq}G)fnmzR2!UI
z<yFm!y3Mn;Oh1{BP~3i<)5ZG8gHItGA#0rzxUNj|Wr#ZDYQt4_yTj<x%`t&*JYLx|
zzM{XYcw4hOaR7DGxp!YU4qY>+pH(r_meQovayE}$$lD&9&PP=dQf2dyxl=!%{!&>y
zA*1G4)K_WN>$2^#b{&2kc-(~^N1$wR`94a?x{~#q&4PGFm^4?@9L2PqN%_Ni-K#E*
zH`Q*FbW<++8r@abbUS%vdmVd7GbDSGv)1d#0~j29=#Fvww++&D`5C-b*YCq5Wcn>K
z=IB5DQa3Q4NF5cxy?C;3USL}=Qx#EJY$r5XJo|78tsp5T0tyY;MB0|@Q|G5~66+Du
z<w|TDjbE^T<gjC>;;JHf#y2~>I%l_Ol#}Mjk;I`w{EM$_ndWRWJ;NRPG~$dnp6Ea@
z%6a*9Z%mv9HFa`>4c+?tnXSVSBTtn3wN?E6M13Ro0nW4&UdKz7fnxNHxxtC*x=P~f
z{=I4u^L_I(Tz*D&?bC+IQNg0SP0D6zYDQ%3`?aSJJy-crDl^5Dn)TKKXD(3mUt!c-
zww6tojf)o%)$0pXvy8PF_Bp#nzvl9UcJC)AmgcQjwHF)5Z>%pY1wevM=kiB~iW}(?
zrxFGcG9(lH*3QGTFJ|qJwmNcB20so8I^aI!-feVkR1JDw_dXPlr=kd?Fs(9OYcskU
z9DbTGotSvl_^Z)zVYTt<vT8M@wSM~|`NBw$!rkfC`kHz;=XlT|Evd=Zvvw|iVuBj0
z8|khY9#5XgoE6|yiwbaI1-x~#$drAbhH-<ME;w=yK1?gQMw`-EOp_+M&579Z_vD&@
zn`}k^nEn`)L?ZqA4AMXifrb<1eKxASx6R1|Eluf~4sDz^*d1C1U%$N$TWHt#_Rb!u
zeZ~`x3EAgFdVwVhw!#QDP?a*2kpa-bo`C>FxR(GV*b^M=5`-i8@3S}@4FKV<ba((D
zzyyH!PZ?R*{r4vlcKxRL`;PF%AAk(|^&ECNeS`l`X#~=52>*G83x(wYUMq@7Nx|-l
z`Zfjz7PiKgb_I;7G_V8|D@iq5004*b_XQ{Qj^Yqj|G3F}RXbIgx4in6=8PXcTIv}v
zI+<Jjt_Q&H#0z^gH?aFa>SS(aVaw|zK>k+=UfA>RWF~UbzlzwI3XrSH$dig#+8B^>
zGBPtVlM6m2B_-vz`Dn=dPE`CKa@a2ca$`F?D_$lhM@L6SM>a-F8zUwb9v&VhW>zLv
z)>p6+uWX$y>^?ZXvakjJUCDpy5jC*Yw=uD@GqJQF{ax<|JxhB#0dn%+4gL4?H=hPh
zCjYi%Vf#<FU>#)oox{Y!$jtQLx?!aJzf*bTO`HtO)I?3pVKRfYA;`wV$^TdR|69(#
zEk2@D{g;xPnfWp0qn!VhQpwi9M#Rz_)})=_zr*zp@#D;Y2>F?Q_xzD0{uc9JsW3SU
zKILcn@0bZbMO&Jbh7BX3iKyIr*d3;1e|@@O-@n!2_Z@a|vOKF*y#N3>?xaLtzjuP$
zO>vFXl5pRc@q`rWJV&8oAWek4<EKb+R5JWX0CaF(h3BgeqSWJ?@)GBqoPr<hPMY*)
zW<xA-oOsD|!>k*YocVml^ykzx9+os?--uHO4yYvRvldEgoY!&~B4^2!{<)jWZT)F-
zBK=@!(fUB`wcS`>ZH}Cf$K6)b#cfk{{h)wF-qW9?a43=x_~(&ch!npcby0wXIRG{I
z9%ZsWGCsmT1tI(VUFM(SB_9#7Nu~X#ga0D@ZyiX1`u~0Yt7=tN_@|MSBIaWMZRD?f
z_zspo+h)LrL+bwWy^8z~h9Gduc>iJU?|S1xz2HCol-G#*gPU&vYqZB5fxt_PL*U9j
z{wS3Ew|B4#<h{6`{K2p{CHNaajdfI+;*So~KnM~3V7TQAro0ye{wMk`|A^{uZg40d
zU0w4@=X*0;A=AMx=!dt*@<$dIvnxK0<*7~JzO-I!@fJ<IwP!V(sd^<NyDt;tdARt!
zXI;sp|0_rA+-H-$X^xbFp0YoA;sG*9dYR2$uJ5)CD#+4*a=PqcXJ;Sf)#(lq33!%8
z#OIJ16qGcQD&XiS+9!IqGm)keloPOQH*RfrDxenFSEuXyhjfNm;6rdo2{<(;S$*)4
z3~|UA#uG_M7UHVR>&bB0c&?_xQ6jbK_a)ogHEe3{?%Yk<{n6#dOS$%@E9sjJtNeKR
z1a`ilUZnj|X(S4Ry4UW)!zP+<A0x9!8-qBXkzkx)RMeWBy^*INyf5qdL7H|t$AW=k
z5|@s0|Bv0DXL~aji)i(|yww(sO`qB;xM{J(QYL4EC=Cs!8vN&aV(ATI(WR%~aBFI8
zBr)Qy3O&{ZyC?`05onG_M3f&VKbM?TZo9D;H1!0&9IR1gX2LVVQ+5qy=-J$q#Cg&u
z&#b8MB-!1N63Ed1lBAgoHJP=4y+3KVyIT^UW5-_2!QFwX14-`(V{nP9nVDJF@GCRD
zM76$jc{QH)cLTHX4xSJAQ>ov-)91U5NRNyc@|EkAHmm137}RZ~x~i`svmJl1<;fRq
zB;eBKHgzVrQCBVV2a;7t$1`2aJ=QlZsv!lqcf8AB@PSkk7sfjJ0s_KDrJ=ahaj)g>
zR82ULR!o=~1+L6!P(Vp7e%;s?z8tRarSFJ<pvN8BYtYq7Ab4>1tuM{WtnHx8&ICr^
zS7%bKDV%{)K0`1!li%A!2Qv6fZK`s%3KWeD#^I6=g462bA>6`lAW4ZpH-kF2R?o*;
ztojTw8wbQ`HpyN2X)O23vdHXWL1?N@kd^go^zMA4QLvlocrvGw`_4iSCv%Bl&YC2*
z)8XQKj?cqAa%xc?H|IpPp-oNpJX)DKZ+G!uz8o+h++P?koKZKBAXpAWS5S$WTWDs?
z$&oc9i=<l4B}hWybKL(Fs}<M2^Fx1U{3tojbF4s;-s9s(vu%2vsfj#&V`J%^m%G4G
ztlf<HFC69}0LSf6JIn)x$3pD&hNuT(E+MWg4!n4i!;L5@Ks3M}ZqI$peTiu`-2Q=y
z=&FWTqG;)qNz^Mc-i`Z`%p<+XYBFPBuHLbFce2*j=zUUz0YSB8TDNt`3(`p)j1L3_
zy<U<_Ormmp$`xeOFW|Eopc9V;wMpe2&e*D#!9~!7vX+V*2RW+9ZFIe;iUW4;$}yBL
zH_U>x84Z?S8kAu8>N7}?r?zN+IXWsFp+31C6h!UO!w_T82wv08BC2;>5YR_(sx1a@
zYwbQ~IPWew$Uw_i5fVy!hL)`Hs(4yk`|DAiW*JUzG5PBXqt%}VR{u-y=l)V53t^~p
zS5VQx!XmArySw|;kr4^h4G~E0jlPMPd|qifL3M6vHf5tkNqkPC>_v(P!X9b+ZaGe6
z(Sb(LnG-SM^9`HSp6vb8NDxC7ASi5gQa$?>lA4+DK@5PFB<O7;=94E+Y)Cq4CH}Cu
zlosJ^ooCgEAz4CeWqGP}*v>s!%A@#4Ywt1~dV|wvTU-0t`cej;GwcT15w;i6{Ln1J
zu8Qd`=xHQarH$9<JT71jZ@`?6#d3vg?~&<f<}(eZKZ`SpLQaxaHb`>nfA{M1<0&N$
z>@9Wx*9sRd#2FC~J$V1wM$rz4UbMoE^#<C2O_inCfA43NnXwB3#;~xk{F>f5e4jMb
zYm<wy<b}?CMrKjMhbX310gBjL4LXg%+M~S)4GovIY|05WzG07^N*dZItFN$kb8D!4
z-B?gPP{NQi+oAmw>lp9x<U3>zAENCuX0dH(WyLI%&RG=So2Y8hiLqaL8Z5C?wi~2>
z%dK0hNq>A$>~R<=acC0;!G{uY-PKId=oe+ZjY<Qb73g?sn-)trztTQ2);V_-)%BFT
z+MEyEkZfeA3?@Nlh_{a2Dv33{?XN_nKaY%YPVE^#j%sI+)^}F-U2Ju3Bq0y`a~Psq
zd=P;IX;YHg7~IpPOb9IU7~DN(q|n+fsV*KWA|YAH$tHK#-b51OCOS)1>eT)*vZvw_
z3w&UYk?d9m!!|f-B7<twU1&nWWYnGnK<ryMD$}fdP_j(<aWwMGlqN|PnD=t29Ymt=
z%wRYbq@ro0&)-L5G?Fc&MD&@5r_G=H+_*%cfjE7>(Un>w9YtG2L?lroG4+nRB#iSH
z@#GNkpTkJtjf4`pX4r84r$_E5{{}Eo_B1JcJmxQDAaKK*`y)<|6^}i{3qDirF01mf
zO&YVqAxUP`%dJp80uDnAFmz#f7C-*xZ-4yPP=5ObgC=47f?@HGd^MyTNCWvgrlU^(
z$kBU?W6685*WIvdKb~;@htdC$=>H2k8ZPPe7KR8fW^Ltooep)?Yi$hF%h$7hgD*BO
zLS8$Xz1doNfzu%o9*?m+C6kpd^dRsDH#ZGIi+TP8<pR|x9cXh<5K+*r!F5fS^+XZh
z@apQv@br22oAb5P_I42-#-8vK!rH$3SAJox=d;mM6)QD;k;dWwb`64orCI@)sxsH0
zB(_NKGi>)q&A%+<xo`1Ch;?$Zoo;?;DX`;noKL;JxjDA??Hd}3&BcDYx_2N1-k7OA
zXjNPG<&Oz7R;#rUo367roi1C;%PYDYTgc#9*d7}kgmR}Dbg%}hJ|zeUsQy@r(-;4`
zoa6PsmbR!$$y^yI-*5c3P~Cp}z0N{i?#)43a$fR%?p*!F+d?&4_3#Cl`)0KN_>ny=
zA~aM+shr}9X&DA!5=KPTtclmn76hYCo}r^ljE3s3W;6gN+jJ1kRxNn~vPv-hM-|J|
z2HsZ4{M+C+M-+xnPd?sVpX5;rU?{N>O$@5qbbg_UQ%`Z-uXT0+H#sjfI4i!y$N%{<
zf>Md0P`%#4{3RYY7gM5M_UFsF`h%k7iB&rVXh+9+auIf5y~AElIaA-4k{HvoZKW~R
z;+cH>m{&pE+F0A=sG2jSE9(_TgQ@(stlTvw{&##1yFZHNqI<t-8XEiiXUE&do}GNn
z(wV86V+Nz|=}Ap5F6ve}o9#9_Z($iQ>x<sO9KCZkb=<cx^Gvg0)^?F=4%6|E1U{$}
z(tL?<KKdrq=A`IvYrD{}-B-|nr)ZBROD)P0Jo6U|(`@<HH7#8GQE^jIFkh|M7tXBz
z&i~Ti1BS&2`|Xce+F4a}9ViSnxX&--a`JuqLh&Ph@b!=qS@%_;p%n}kOGxAx$?J*x
znNDI(v}e<R!=sv#zXv(Ydfc3%feaK#IFEU^nP!x#F<pE3tpyC3(zScOHPK*E`PRs$
ztl9Sjv8JOFKc22jMiGaF>CvpcMEKIYL<nVVxJL-}6LAcD<x!xwxp6vC)P#HQNC{=V
zM6cg5ld@WkV!n&{tOW#2OA_|>Z0iNpq1eVw$a?v9lj#J00U@;dno<UU95Dk5eT&@;
z7O>sgieQ+}s6InW!Q(KCa9UD8!HBW@4+y*o?~Q~CBAmAR+AftEF}K7G?Gxs{kE*u&
z(jFw3+)fCu+XSCE>*`ZJpaTS(p-Ko%<FKJEZ3d)RhhDcIQKwF<77u#G>;d`oy2!V|
zo`K(NbWo34sm#7N{Q6Zo&VX*<OGMU2{^|-DnMuhD(Dv9>*~6pakg5{OT5PFeMJR@^
z5D#!j7l8=vzdygSz6Ja06U(~w`FEUMvmmy(AxXxB$gI*nw5e^VI_}O)VV(u7M7S$R
zXn8S5KPM9vXQo2}S|?Xyky;Uwq^0J*&io6V^T<tNnq|n0<^xc!AIrT?MpprzBH1|k
z#L5m6%#s1>_0*%v(DV_lv#J9#fqE`$lMi`+fB=)v$&wGaBV4#KHUtUnmz`uh2wjV8
ziPN9X^xS4LiHyn-fJJY1;4{rUGlN`uczs^~wAa&9kMRWs<7eusSgHhuEehAUq<kp;
z1HUkEc#8=jg=n3?mVt3;RGp@&9UWNlK>os@95qa*cR0;st(BLJ;g>R?RBR63>(pe%
z`$7#z!+Ro(0cvWYnd{QF8f{|dJS@3JI!_^rW9WfLj9fz7lhgvSyQ9-rsq8PBHCS1!
zZC?@)^x7Yv(x*a{w3&9+Io1lbTwTJ$k7<(JG^(|ADqTf(xMYp_G#6hBrh19p0JFl9
zF)(zL1WG@t$hIFOMF!mRw+6E=25B|y9~=z2LmGcQD~j@m@R18STwxc4c0N`kEs7Fj
zIG_GNK=PVZ-b8_#2G5Ynfbp|%CLvX)#g_YVeFN*so#q7MwIipQv3wPy4=fqqrcuH<
z?J>~MKE7@>Aa>R0H>~ggVtNbHc;c~`wXWL^68-QU&E8#%E;7TA_0-XM2;Iq~6}hUJ
zfnl{s668Lxhl$1&IE25*$>!L03><u6@XO0M-A#B-e7Wt}<k6&d$4j5jAbwg@vi226
z=T$~MN@Dxjfugcx&4h=?0Jo$A5$1RpN(;mC84c-^osBgoOiKQB2`vgRl*aQ$msT0h
z275`p;@=zy7=;EBu2)?elQ)g1jS_|KTsx{z(3AeyzK4J?I3{ivE&c}_<ANbCmkbhf
zzke(9LVWoe2K)joh9w^Zztbl$jAwb8QTRCK0|CS6U;dJLN&6VN&69ouY=wDLym&P2
zJvT;#(Sz%xz<)4B0E2^#zapxH|MdhA_%Il~i71yz=3}N@KEr?~*Yz*u$H?^?=5IK;
zNfj3J7*1M(<h@SCg{GfA=AYdMMvpm{8TFW{O>~%0<~JoY9>>(Y#bNa9=}GMG9y8VW
zTPOr~#`KRz?0<y%KSKTAps6iBNZsBD$iw${$kUt_oxv}D$0E&(T^|87*qVyl0fj-;
zD>TAV8irGb;wJskakF8O4)bD?FjRegeG}L!xlp}w+Zfw2@v+WFLIQv=x|lOog5d>E
z@#)%=^X*9$ZS}H=5ACa~MlVRE#pnKr9G7szONjl2hohsTx1d7z)-LlWsqy2*B*sCX
z1zh)kN>@1SO~<al;uOz&tEi|PG6RTRXiyXH@9!%t7eq{S7iX38yQ>`!=IxGuQs;yb
za8>jqCDib+Ah5C?r{bSguwMUR{?Ao85qTLQRpv9wuuy8bB!pqs8cJmHi7pG)*nqJ9
zTpe5fNp6MBTCm%|?$7J9jjYee7?g3AMBImAbbG08VQT1Y>;3VDuit5>B}}Gv!UB(~
z(=fpI31vK+?%~Nr8bi|eEV9QUNs#%r0{_v;NgC%#Ae=Bm)O6#`KEpE*sk?jguW4$Z
zNj%u<9W`dM9n%K^uFQ0TNNL)9?C5;F0C}U&pHw^DEnc^OUsM0_#85H|wA1t&YJtUs
zm846~*TKDcs@gAZL_wrUoQ;)V$ME_X5?V>oC&0d&koQ(8Ybt#nqPlUul$tl^0tq|1
zB*E|$n@*1>wU%SbA#1p{=LJVc1jlC3uN<b&J@xeuQpg}h4aX_YK{%=jEMzfq1A59I
z?M@rj-dho|uuV{1{Q8B7B$>VON3@pxGeiOj$VOs1k*eMAWM*kjYQ)Cl%HM+@`Ob@(
zuZ{SbAv1Z5wQYZ7$u1pdZapIX59dEQp@v0HpX-r!Jn`|xM~jmeBa|+A11J14PTqW;
zzcDD8glD$QKzhC=oCXDs4F(!+HAobwBzhQjR*^x@>2ZH5v1%$JFCD~~yti1@ztZLG
zGy>jYnmxgy>1utvDWVQQhCvShy)7zi^Eco=aqbHy)pZ(Wl<WD5!{F}xQ`t;?q2{RH
zIT0sfIjoT~#`Ljo@<NQm^#(sD4KRHZ7}TD%^pcG*^OfgGhFgzPVwzo_6?d<~yQ9j-
zF6OJq;t!O_D{|e>JZyL?D-$ZxrPqoKtuJ5Ju|5<*-FjJ49+##lxka(l^70CV?(a{Q
zf|-h!lMOU>QCJ@PCkT9_n64Tya$fk8>0|XE^>%<cuDxzNrbm7g4#h4RHl40WzLJ0J
zc%B<ez&uZQ=+R@1jf6m9E}u7i6#lV0{hw-o!+`(4$QJs{J2yACBkj8@VmRM^O@~f(
zTQ$jpMRi`)Jeb02ctlQ;T5zue%wVuI^@0@D$ne>J;7lsT;Yr#Z!`<zMP_zUt3ZdsM
z%9e?or;7^1r7Wf3yz_>Y%68Q-nEG&M&_(LH+;-l673oz8B2qWJccSJ$s^zT%139-o
zV%6HTkUFuZt1~*t*M)$pe?oOueXuPxyXM{(q;m(Kv(;g6?9-r0_21gRh(`s3cODz`
zkh%qAnM#;$j;4-S{LNbn%Ujs*y8#s#F~-+V-td{Z0y%SkE3UVG0!+JaQi@^3B<y4G
zNRo=Kvi1L{FO(UE4lnq0V8nvPc}N1UAc9vv<+A16w-wp04V|30=Nx9tw`vF7EnMby
zwBx&=(2=Zo?XQDI6sMx_TBKGZGF)q=m)Ts6v=iDw#Yv|tBoEvXAG*$dQm1J)^B12;
z5Ia*eQ;Um>r?R?d3VgXvEqji|9^5iHsjAn|bUju);9xmd$I*CyR&1FvL2%;7<VH4U
zKcQtJxKfzPHE?D2Fkamh%UHLW9{9<X;+4I{R9RLmRo79}<PcpSt`=;ca_i-_a_7@X
zoToYrkq|jlP%>ACxO4O}NBU}JwCo!umtP^nNVuAjg11W;)s1S5kvTsptwa&$&#S5p
z;GTyo+%;%lay4J|^ZOq(oD7JC7$>uBU%|##hsk5y`8UIcFFuK8pfs#=6ia1fWT^QL
zfdmzq>UYb=og1wKF@^_?8pck#c+&Pl#RTiq=py5I@yjvw2uXs_72=@#zXvnIeY608
z@|+m=&9@CC$-6FuZ}~-abOIYZgFo9S5P=(R(a`EoZqX_a{_&P)HC<c-w<(_YS3E-S
z0YdOsR)jkyOih=|b~}aD>+G{mn1WFlWZ2d`-Vfm>@b;|=sZi5o>aPB?37s@G7Juua
z1h^04Ohqe*$1>~(aLLT@`VlNWc;QE~gbUACLXY~bLUo$Pve86k1<bX)BGY(1j-%67
z6UB}daIO+eL{FhNV1ni5RI(viuZC@<;y0F_H#6m+4`^K*bo$<d{9PJ6RhMXnW~_Wf
zX%UcM>ux7<5;DUZ5NTB01!7udW{#%d2KZIloGl7S5bE5_ERJ8^08K|TyYH3|WMztq
zraxZz0*fs(@EohXpo18avFN2Dx@dd(t{`Dpc+HlyMd@!T0YMg=vlTUP%j{8c1n&@+
zYZR7FtreH4deG60!YU9goI1=Gngnw0h5`gfZDyVN?T3${rlL}6%A;#XlawI+XlqHD
zLHztcq%O*EyzrO8JcyE^d|fm?0BGn@_hi=xFw?+`1K0-oU}&$^q7{%9)d&q5T9?7l
z<(e30lbhCZ<L@@<xA?&f`h~DZcMEmEAk=x6`Sh80J4&RDCNmBmI8>~QX(jBao0~j!
z@RKjgO7x&omu_IVi+T~3Q<^;T8W{vnKkc%E`Z&tP$<x=#uuoifS0CeQ*}WCE3&C3o
zH?tg)-MwM$jF}JtaNaG24!d8>O|ZJH^~BQN%L?6{D&M;4@Lw)|4if5;s1~UxOsZmk
z?R9#$jbC23?Hb`J1ic$^Z06mWjuO8e4$8^I724_Cl3utBI4$>dUzQBfu)B{JI#AlW
z%pqFndFXg>B^Nj<7Lq~sI8{~Id-@qB?nO;&eKKFHuCRb4*c4Rr{b=u1`16H0YsFx<
z)io;rj28n0T+$ZCF%jj^Fg6QKZpY;4G&e+x7zHN#$Ov9?5-yotHo_T1z0e9QQtnUO
z7okF3_~`)T(9&*I)Fr}nucIC(@y#w(aQJNl@(=1{mSp~9sV++WsH46wVnq`paqyXa
zatEERNE#*>CbS1!o+n%<H`ItXrE?>VBQDo3qJGv;bnvi|vT))Hu~cn&5<cKrHc&C8
zWdMQ8_-V-}iG8X?IcvNtj9sdsw99x4p{>`he%5&31r1BfvHRV4d=*u~Pr7%kuRt&X
z*Pe~f46mtZvgG{ANp<;jy{SbaMYuswRKG8jV_IC#NOb!PV<U-j?y?mlYb9?qUg!SY
zc_UG-&3H!Gd`c&%%(VEf#VyaNhg}9lTCH_Dv32C>&VQF_(*jODJ;fRhlH+4>-#9wR
zemG7f80PZ0RMq5N*5@AgblQ-=Ze3a6TRz6oXyLHDj6N+hYPK8Ltrk42-U8p;4<=7c
ziwPdY%gQ_~#Wu$m-8mU`$y$9<S@;z!1UrHvk$*_Tm0WS$)m~YH2@{xIcg>M?dk1C+
zNLGm!Vo|#m=T;uJrexi|oMa3?Ky<ZiKPp{28lbg=ecWIA8a^~WfW(74L?!uLnz5E*
zP;zl`iGqc%bq6mZwAAVt&ynm)d!l}*bqfFLntkY!WC)(P*UIV=|8fl(e;_pm^quAk
zb6hz71l~<d2)KI(xB0Sj>N_f2+YO2}mdWncJXuRZ`T~9kncLN|-(W4CrRD~Qte`#_
zB5);)yNg;sGLf?<$ojL>I)^^nF`J<NZFIy@mk~1?X{gxtvO5-M6i%zcJhHG?WCW8h
zO;TBj-}R4pr>^`DSI<=g0nUfsOx3<!t)G!k3cAN8Zlx?{-P5k@QePy>N#lYcvYu1D
zBa~y@jn~^ksd6t)WXtj3j=Q*0(o%I$iU=%k(@u&utWc83A?r3ZiMe<@H*&+(p2v;h
zJYywKp)Nc?&@L?!0{QaTSYNkT&V%fAeSl-m!&#?>Bx|wN{j_KNz*Xf$w&OexfAOhY
zEDg7SQk|@hjsrZRQH13}O_24;(vu!^2I1MmHfIqCDWv8XCd?e<EYcCRqnWgA^;gz=
z%e=Y+0IgFi*`Fc-&j@$cd7k4j_1Rc;Na-aX6*8~*v%DNo<W^Z-d+8ZUdv7(=Eka5x
zfw~cSG{Cb$*y<CFtLMA3`rSe}M%ta*ISa7Fdw_iJL~<n2WJL@vghzbWh?}4lGRUJ2
zby~J%?Evb>TjQ)Ohv?kuNqa?dHI<N|rzNg#oJ5t%>Nc>5^o5d;`yJPaJC9<u`Q3(U
zEVpG#_Ns<o01e0?cn_gQU9<*A&I2s-2!RxcLBGXc00_b<Wk(IT{hD8#O7;vyLvpt%
zVOz#F$X`yW8JGZTBh^5SAxMwYj~_EIC!DM4C@dCOYuv@LO^qSlRwI}Oa{jT>bR(E#
z<Oo~SfK&)+;|&a1+CRUF*EtHfx()usnO(uwQ@G(wm-LkZVmx!uwEg8&gGoD$v2O3e
zi2cRJWeiqYqH3O!PIf0p97~}~SFUX~3bYQJ^kLnEx?;E-d%LCeuG~;U@+AG!);P-8
zZlC6v&E1PZSA(jP(!6`id*cVRq#f!$FVGvf=O&DK)9$aw_N(WQs_=VD)8{f>SL-pV
z&2HD;6x^MgJP4*}_y4%P_?cwLu;Q}MrktZlkK<drJAk`>iJQD$WA{EIPSndvWH};9
z9zPIlRlY>^GfHTAC5dUES3XXui3*)d(&A%B{8jqf;ZYq4L5ocLn;JvzDir4IZG8kd
zpKmQc^%^==_0i(>e-MtmX6Z6chB|$0P}ElI(mePan4c4N%ssw<+Y!4qV1R3a)=v#t
zfZ~OeN_w&xTHj&<SPXYoD7ut21H?Nzo%9=yB@%t{niVEA58{91q;lfQ--VP)X>SLC
z;5!UTUw^zJj(G1i1RE(AbB9s2V6mDk^)mZ@j)_d8_XB+4H%4?(R#$8BIXkJEW$$rG
zfk4D3&mMZ|j2^suenNvHva~GoiWHt$Yc}WS1@Hsm5aFyNlsA04qvbw5blV<LHpicc
z3rtGjlR<=cefMIdn=~x1k{GPsXh@zwIOyM33mt1Z?p2<svyR)rm0fW$%DCt2q;M{<
zH1db5Mdc4PunOF)Dh>-hES8?`M$7)}-RRoCgY@DXNlhRu+(S=Io87iU**)DZ>dV<k
z!tH^ep4;M$My3nnn5$i^wAd=orQ#7NNi8*$jg3XQzY8SUKAdagzdYf&M!B^;p*?l(
z(j<T5$PMQs!=+vF>h5YaV0gaRle5zdBt7zmK!1G`or#xA>$YrRpm)4U>y^e0iL2$C
zhtrf|s%<ZXa!Fs@`{9$3MxC4YUoU4x`@c@*w3?j9W)PH9z^`s{whmL4R3Hj_T^8;R
z+f-L|V$vW<0{uE;E9`0$UVPwWHpGZ8GBj03^Oglh($kT7L3D#~2Dp2(igM%LXleBa
zgW7VTWX&~STYsQ}hRZXz;(C5ceDswEVhZD*QK|-F7!tl|^{#<*_=3oF@VA|XxvkLP
zgawS0*uZPYbRC#_2sgmwc<B=EoKPEl^`Ds)ABrYqFiE441=H>i?gs~r+e`+vqX#^e
zOh?Qy?#=5?=tpkI=B>y1Mv9eW?E+B@iTnq?I^610!NIl7M}a6u;8*Up4(^Zk8;Z#Z
zcR-{EIuA|0Blin}CmV&=*0XXh*GF4g^$+aOIjdHu>uC%U8Lqv#RI#_TAmSoJa#gzX
zqhj|u1Ea<P<<`!Sb`;Q;U*RA;Ad4Ya`kbaw-0CiF>ezE5SjX;|xY-&r4$Nt%rHF?$
zVX{xel(^L-<L<ZLGwz~=gi~qt#{IQq6vNbA_f^AcKc*fsfje&fRL)J%N8)<A!}c;l
zWS|eQ3_GI}2qbh`?p=FZ%Jta>M4knB{W1CaR!4@U;9R$apHn!-50tR8rMdbcSG6{Z
z$h8<Y9Kv4mPn>hv;M>;am8jX6eCq(Ob)y91Orrc7S#~4xY!}r9*u}g?_tyDEQP=>8
z9bGz_mrLUXknn>0Blg^U9llYUJnPxsDb(R5r-yOr2_qu`!X2x=#JNik4iR}l%pFG^
zXQ}OCL+wd9%&p?-yCVFgrQG-|Wu{z1q3v)%`!crz&oMjv<cW4+M4*rVVY}YQEs|0a
zV_t_SgIqo;=(t3)V77(C{A$E?A<al~n=^JJswz|?c;abf);BYvf0k{;ltU<R&wIaG
z-D1A1ejo0*75bU+T#;G&-P6bjkJE#E1BLj$H*&;=FZ5PiX(7VKi>L9zWXBygv;*K<
z;fmP=qYvbQ+Zb@dys0&QKNcfwg&FRa?P0M0No&V2%ke6HEcJ<4?W!s6S8~X5lE<|7
zN?$0v92I@@5k^4GeFwvF$w#{6Pl%EY>o3U+5hfK|=OcyqHnd)~`jn`t^y4He_cQa~
z_!_OPX{|apOr!b$f*O`KZ41#@@>>|*;4e#Q?;R7twk0R&YIUL0I?g68t!$}j=Bu<H
zd}*2)AvI6RCsfKQ&iL&GGYbP2wIYP3H=agj$V?vpvoIBS`wa^|Q?m+NIwB$E2XY5|
zIV$XwR^qea2{F_wedSDSQtqo=z7L5inoK)+gSu9QDF74}EMadKpqT@dxCg2&DprpV
zLd07;j42wC6MD7rUF*bs)Cvm;7@B>d*^obdaA<5AeQry?RC3mEu`z{iNW8rSIs2h)
z$O0mr@NnT5kiQ#{@O>xht53v6dO+f&<FF}oKA0vIaliTN)T+{PIaEiW{7f{rTVnx4
zYyjQuu}^CvOE)B(3Sm*<P6h<2rGTFHWhX151eHXcmzO3d#yh}M`2K1f8!mBQxPtO)
z*!H00tWKrVI5O6gGjexcy(5B!fW@X={)tx!NG?hubyvpPdT3Ry(#6Sle#utlebJqu
z<kZ#k!ujWWT8P!I_4Q6UPT$*-VhY%yEO<ng)~gp|UFXN84L~f;mJ_?Y+72}5`BT`M
z^71ac1Q!-Nq?mqQ#kSJQb!Uqb3F16M-`M5)fT9dcqA@MfS40AuqagFfDfV;FLwJ3E
zn(A07*KI@zID=hk9es8X&*dAwsekHB4Yw-5B#jCBk;}Jw@Po6i+&Ky6>;=!*fq|Y^
zOB3|Jj#Y8s&nVR`oqj=-PTre>T{$x^VH?!CBlct2PF-UB?;MLb74EZ&?;FS8%DO-K
zSk(B6EPLCWw(nCTnrvYprOS7K8u^ei`0oharWiabCTXCz>aiW{l(3!3S%Oxw1L3`C
zKKi;Z2pI?vMS?Os%_CtA6(GohMJ=BR3j6N#am!OZbF0NCJZh<QLOb9XBSwvL>Fjdo
zKxV^4j5F_lAqWHf>y7wiI6ngTCqv}}6Jwq9aF2it$G^g9a9vUQT9{{i%y-35O0oAS
zWr|Tj(}7t1(M9(^Tzp;#y~HCZrWSmdxZ08r{4A80DyZZ*u9j^-mt)Z#vALIT$TmOq
zP&Gau^;=5(Hu3J1N22t}5B9MMt))g_S0JFHt+{YFFl=w>cBPx`#7EcZc0(?+@M11<
zFO;_j{j?$nO<~=9EaI6s_tF-1HmY`6(=@<S_+@VD?u#2PDmsGRDbk+iYkQUT9PQ4x
zvZhqopSU8(3~leFfCX*Y50jo#p=+NM4m6?0?V1zehO=LQk<_V9<ac8_cS^kXms@G+
zp6hIBi336pw{{1O7wZz@!;odCJkXZYiuj^TFONaPf%}0p$z==j@)rpdLJs&_kJgLk
zhr82}w0riuR+8J-g3qCN>(D#xqhOVaZ9~F?h34kib6+gkZs&(%rU%xCaS8elXFjZW
zy+SZ44|jzToMff&Ij-9b@@ypkJ_GKS5q#03F@GF)n#JT!D<dnr?q=z6l4Sd}?5&RU
zH;R@T{aHe(MJ@qgs7M!E+Ju`p0R=Ozw;wQ)RY=&^9g}}7Zx$%~vZI4CR(~)R2ybFN
z-Yx|5u7r0WY#xy_j3Z3BPIAT$gkpUMKYlJ{4{=`*gKfWu=u1OW&<kIa`n&}uTF&qB
z6H@J=DCD1AK%}d*=49aueBa+rzixR}Lz=!_PRsLpPbb<4V*E6s`mVfuA(kr>s+hOT
z#hRYWZ*$R}R&Ua!?=;mi05+N;@WHFy^L|L#cR!A*TT%^J@n|&}Gu+<}cp#Ubr+!!)
zaaIP$X_YdqUF7TF8|m|Y*QT0SxF?9O^q5NCVQ{b83#k?_Ee{7qUNe0!k65Kwx^q-1
z=OGj9?*39xt(+cs4k|f1Ael-j5;Xn6;o4qS`S3pI+3?}z{N0#kVh4|NlkzL0n-I^-
zqy|L#RG_$9Jt%ovOGy1lnjB(P;?(5IZJxa1=2!F0np>60^Qt$0>u3Ei!Th1WT@P)}
zD!0dv6t~qSo+H@I%Yn^MP2u%}`)0TN1g`@{f45Mhx`-0AOeL9$2L&RDqQX-m_SG-k
z?UzmRH(^dk;VeBLAX+=Tc3rs9CO(Nd>QQN8jekK-$hYjyo}nv8aY*3}A`OlGy%H_d
zZsd)?AHYvLN(?U1C1ibqKa<r0@j4VqL_GFQ2xrBQ4>agtPn&CyplP=<dk$N-t1%?<
zm&^041z;f>Ohpk>r#08Yn`}>j_yc+snW(o-j8rr|^H_JP7)HZO@=@R^%(OP6NEY;;
zWVpG!FeuTa^$^O?`dYjFRZiVd(y0u)oW<6!MlfE>HcQ8N*3FzDF*0CiVBLZ9v;shD
zX-El3Zn!yU77B@G8{h^n3@twi0C&k?d~XZ;GE|iOmr^Ps;-%e^k>iD^ydQb+wIN(i
zCd0n$N}PZ#q8MSv&-l?XFg7O6JY#V6`3W0Y1;Vv}1luB`i!{6l@2Iz&Qvmv?N4INC
zo;+t47dbPQ%>tg`to3~f`pK+KdfCrj_u?^%+4FSKrj`DDtLx_6apU6_>S(x+mjv9v
zyRlE=KQM=vQ1m+GtR1K<ibs;<dy@q)iSN41p&A;2U+p5W?0cpTM6vL4o5A6FEsD&=
zZt=A*X3>d^zpWJ2?JP;J!!@Sm7dgl$fhDAyG-f685-*4QgIflntST*yP1iPweyW;a
zQ*0LxL+{hp*NID;M}i-=$jAd5Is%9kvL#Sr5J9AF9><A22_MkFjChWrL|wRT-uj4L
zj3x=rR52^81Bpwz=f2<-{w|wa7oOf1(wNbx#|tdKx9#sNl>ZJ$zlKF-vo~v7trb_Z
z{W3bkA_*uZk{Oa~ROwnwEy8Cvm)FIi<CeiPduDsu_lSCCtQOYepus-jl3j{(S{8Bq
zdNM-1jiqnD+TMA^m|)Vxh(P3-2h`f0r-Qe%&EQvvq0f*H^hs`1Q;~k+-coy0qret9
zp@|78x_w7k&vXDsQyRFWnMQ9<@CkGPm=ZKXrnTZ~eNH8rAx8vh6EQy-Nc6D?ehgae
z{uO;6j1YrkO*42icaXSd`J3}Y&)XFeIi0(0m2xm{lKGWkH~~JFOozm5!?gQ|Mza*-
zgT+`|_VboRJvVYRJxzbGKSEbR=T-0>VIX#Lt)z7Q3U4tcuBLv2M9X*mS!ngIn2-#p
zGvYk`B<L!Azh++n9uzqER+~*6cr@h#+jCu;;_N`si?0YZ_eEZLZr$(12xZhKI+D><
z_O+JPeH$$_Ou}tN8lqRk!};CH><KJ@e{-jbO*)q|Pk?jU06PL=QTE>>AThB0F3Pa|
z2G~FZxH66A0k-_KE71S5GXQ&WDD#G>=>Ngaz|+X=^JE9<zxOG^KfsP}>^s7ah26Lh
zy+_3+mD%Ij`wP&+p%AviTAVw89oK^WiAF9C?11sK?ewd^ojJEZZ1b#c;R;54@mlfK
zW*p$^0roD~!-G7x^b!C-m;3ugu)R5y8X|*~jiU=*1UW2-I^qOK^oEQRq_$xK4+mxr
z#PXSbYUf2PLolAIfR(tv$m;z)){Y)UfUS%TAtTa%C<IRZFv<ZAMWCIN;geI{3<cMA
zJEJrRy7hCk`pbjVTn`Ud_4d5$xTU~gqmgU=cA;G3#pn&6<yfsqQW-4|?Kdy@r!=rH
z4#cA7`)j*)bgt2a5jCnex<9{Anw;-WVO7?==~aWBg8VAv>5=8kFe?C$Ok^jo-sI*y
zL(l#ZU{YU8{~iK|gf0Kqm#!`n8Yx2k&YabMQeer`Ou7J*=33MLDfd5e`9Grv@;qL*
zCqfU+=M%#mbpKI#nBKSeK1D-E&zfkoFcyyIiStu>Mq1o(t$ux0{BWQeXO90!iLp1|
zd3#<lX~#Rv8N8V>RpIffX!I|V|F7o5^!!@91u)E2Ka8&MuR(mfff>YHb40=SzwPWV
zV{-@V0=AO0w)}rv-d`zCX@>6LpG592NQ^(K(z^+h+3U2w$WG)R^ZH%yrUx8?<i!El
z^v8c`zd;s&c#vyDl{&J2YWrQUU9%Tl=FLSE$0NJ@W{HSK>RwJi2YS@CIvp6_cQ@TH
zABkp&3&u{<RIEkde;9;SIR`W3t$X*6=r8`Z_P^L6fU&c%`-V&OUr~7P<1%~MJqVWh
zKVs)J491S7Ll!~$Bfc+C@gQ}cBx)j$*!dqZ{v+N0vtq1-@AgM07(P7oH?Oi-?`yAi
zwkS(=S`H$~o^x<@|H^B>{jsoZ?UBlSYe7UEeM%aF<4y(J)vi7UfX>JwK~IVr&%ahY
z+~0JLL_4^`fOvL0h7kWN^$M%u@g<)}iX^YAhx7><lviptl@&J4Oef6jyp<I{oZ{$F
zesueBj>YS3TtTnWzm}zYj7Y`cCEpoKZ`m)>eRx>c(B&JYVWF1jaVa7jKmE#m8OxJ-
zIfhoa7xr4|$w)1p0MA-XG(j<2+wt{8v!H_E+4k5>pUyMVj8~?|mzrgd^!(|2%!DC8
znc38_-JJcyD}kd9eP=6D3J`;=;MFRF=xka_mAwj%q{V>TFLLIFhdYvPk8n9Qqk%ph
zYU2V;XInvx4BCqY&xgP(=ewf%rbOguJ%CAN0gVPyN7*Bbpka1~uS5W5yo8c?x@8zL
zHQ(Ae+(GS4mfHNLXu5Mo{BX5nbg0W*&M;mY;Jo4$LZxbV2C9`T7BEQe@-DM83L|9@
zYf1<M$SSZmnEb<+-Q$vmv(4kyILOgm4jxY}FMc<ZBl&`f(<t+^WvgDr=OC{ZTGh@-
zVPmrQ%)(_4_iV#oC?8ma_UI_M{X!J5g^}TWnQfN*q?gzDN13NzLuj9X;yUXtW-NC)
z4?<I!S(cYG|FvS+#6Tv`=Our)EVjAUPe#hj@>C)9ay_pU5hN^gq)`N<Mnn}BWAWOp
zoS47L)$9bc@m@@uo^0u?o!zMZJ8Qrp@q(F6;3%3fLw*G(;N9uI_uUbc<z7O#+LUC`
z#g_Y}=ONA)494pmsS1W$4Fnrz!6JiTaNE-iS{6F2oeSkZs$wX~?W(X^N|(6}<(zX|
z*p^Yuk)5&ItDIQxB=)=wl3_C<E;af2CFB@7p=mppeRs~MJCfo!A1jp2A7KgGbi8Hh
zWf~Yf;U^|09?%iGT2<uKa@i_lc|{NVn~X=374~Kgq!1It$V~F`Wl!-E-YX%Nr=_sX
z!dp{^+SJcGA~ledo437jT5%SQ_9qjE$Aq{gOsa>-SEelRZGk8cXZ%ITJXfm`oZ1^P
z`ADdOQ9{J#YR+(;|HWl6b%8*UJ|RUqjD7{Qu}|Am?fnSY`FHx2hj<5JF?+pD&XRuj
zuWdlQ_kechfF*)r?mar$(&+(*%Rlt{)C)54B$BwKJovFX$}6-0-eLAF|B(js4eu5P
zcpe+-w{+M{PM*;DM_LmsttrL!@q7RggSiGV<`DXSz1%m5J1oteZ{v|qf_MkRd`++}
zj>_W>T*K0?9R_kAtJw>fFMZL<Q1m$M43>7bm#p}B@adl7LFjzcG#{sJ!#vIQ3{TD<
zW{%D5^&YXj=5g96%yo@c+sZy3;~zA-fLx%V^&e?4UzlsTk^G0S{y!_gmKIdA=?dDT
zl~Eq=@87?7$mL|`a0-s(D%H<hKiw@`iK#ew#us5rJ7&b?^`6W2**`s<BtOib(3Wn#
z9y4{Zlh@5j$<8Elm@Nf!IPs#Aq^Vc_0Pi?tt>9i33M`~B3hvvk=*V|c{vrD+*icld
z+ij=9Whx#wHftkD9vp~N|2@#&-Z0Iz^N1&a@HS((R6cnUsXb>quJPBXdBfrS&fECk
zndeRfv1q<Kx0^Aq4x8kXj$@FbS1ypO->)<M%4Mm|`*3?QVkCHySaHyF6Hc>%fW%8?
z1@lPj<|hT^13fA_9-2iXy-dx?)gPwMW?*Nmj(hc8Zdaq_sK#x_lvK>C-C~FaudC{x
zqn^gJOc|x6G{+C53h)(Qh~a9*%-_skWIJijCm@r!F>AS>jp=`~TytJwIoLBDFZj7o
zzf!AQ9dozu*qqdK99zsDEXqeLon+a!no{()$ngFV8LSK3-I$y}JQi!++xd&8c!w#2
zcz(NNyJ4v-@53Pxj4<+fx*--gURy*I-pjXZ(6!*ZT_YjsiY29d<*{d^c0jd31Pp$8
z?OV=>j9sVk>V9GO^c<vTe7hxfOMbZ7SaSR<3(uy(aJ<CvT;UMNRcS@_al=u<g~Rl+
zDm<cr8nroRwlQ=iSA?N=W&j1omJx|5r<bp9wGz^`pjQkAKY(TX2zIQE<6)E$9vE@8
z8jgVV!B?&qk1{AoF3|J-B#oNa&CNyp#|K0|uXea_x%8`!h^uslwFDXo{5a@NXqCKw
z-4S7m41&BQ#<@9<6*dXfU9dlEPSbfUmPZ*8l=^?QbKYM~He25hO=3fkDjiV~rHE94
zKr9p$g9x_}sW%-V(n}z85UEkY073{DiU>#xNDtB_K!hkr=%Ivwh!9GUk|*b!d%gd_
z`~32(b$+|nnrqFvu9?|;&;EY)3>HRueq1G4NU?vyxjJ=ZXBjtahixT2gI+?bkQG+v
z0?CSNxf=FL);!YPfdgnAO?yp(qaIm9_EmX8Jp_dQW0e0F;Ksts+aoN=ws!D{%8?J0
z?yfhOSU7xDPuRZ*`|yJY3mb`G01~aqemKw_kJ>nl-?*h6yvPGk0NdQXl~V-E3nF{$
zotaDAbtA7?-GVTG4o;KLau`#0GuaC1`}vlhUw7H!IG`rtURqgqjD8KM5(o4_OE-8l
zOvK|t(6N8}E?m%d(3}o&itt&Gz9*NmNUElQzaVsjSzLR8TfKio=0bxHW~`J$Uja$g
z3aR<Ej-cw8J@DqXk|tkTds)iJ%D*|0sBw=w<s~261+v8FI1Ph|cc78S+3uu(s&}oV
zjienDC_9kwj^0hAm0<EJll>I1R`nuaM}g;f;T5ACw}@Znk=i-czjB^6$>TAWefHrp
z*PZ|hK*LHR@L~`jkNYP+usf0u<q?ZhC(G@6+~zz^=7*)%kV;Iwago0n)(#Q_oe9R1
z)Ygn3O9evMHJHYw(c9S!@QWscA8FbGoyG%HSn%<bi&5qFc)h8x_0|as1R3YyF<K6t
z(8agPNrwHb?mDxEC7F9!%dL)_WLx+hEIuA!32NSG#LWq>l05Mdb+pw$45D)=tdJH4
zF-0D1%^kN7dZR7D*ttCd(fO(7h_Yl7%RD-hJ865V#I%rz@-q=m3G)2)55lFu%P+d+
zx&i)G$q-wWsIK>1+(sRo5|?<Ms_=;{yBknbXFs#0a$M9$obUbonnwr;J;trM<dg)F
zU8RD*989`7Hg@ya9u?w`J(4E7mI2O|)PIe52P4tm9ey2M-ZH;*i*4;q&=<Kz+}g5@
z!M+n{_#8If$nCY?MsT}a{{V5`aojOXafk>>#tW`|-g$`Ho7rvKU5wQKHe4FX`J*ym
z`uHi6jV!*G?m6ANwmXrWykxQUbi|9!%QkVR$#TeZjrod36V7_0ovXNJcc<>%M`T@C
z)xoD*Iw_@-uBC1&YIHqF$;Tf<PIlhSMh*&W3&lB)3;l^Yl^#XMWr8OotSLd|q>-Y?
zw@T0^wN^&5aF6!=rh}xbr2EQkSwhN3^D0DDR7^GOuhr|h@iq6A_C~B8S5IAU<pn<;
z*ndK1tftc5l+$f<r(5WGG+HXLP`{a4vqcgf6}A^0J6yJ6&V7il)A=+1p&ga2thH22
z19=~<6(|4cd8<RR*9~wYjXeSF?P!|ZXYS0Zj$Dk?RDsFmKB@4o$&(^yJV>wmZS^c*
zB#B$nE*WB{62&X}F5RFv?d8Ltmkmljh=3V)vSJmvuNG@LY}{4jm(W;B-mkVp-JdP6
z;}q1hEyhv{0c-JT!m#8-b1TMH7LO#lut93=m4*;nmuws7O!mjA*da|r8>L_kHYkYX
z+6{=)+<HQq%v?Ng2cmmXNGH77CPoKyiPS^;Y5*uuKtDj49W?tPciRB_d4~||LUa|8
zu%<}ng2mMHvc<u%4@h=!W#=0TvAf?zpv5pDg5f@OJ!aRoe^Z8+Udt16YBh1!f!%0B
zi}m(SUs!lb)SVoct~e@usx*x21Lw<L$-^1hm}A)U)V$q<y`HHs;x6e~^O{ES=?Z?Z
zYYVkKAaoScEE6?w!}l3k=cEm*UhlgKY<=g%_B}u&Z5VIz3ACXptC8?3>0)n$257s#
zmVdO=m20^A*K@$F@TBNyzLfbADa_I!!}x>ft)*Ygf`G~9Gzcqdzvxa2J5l1R{GP(z
zq!h)gr{%8V`xVO}BB79%%pu8rf&BzpmB(FNAX|&!`;`*ad-J6{PlT^NJFsN1N{MIG
zWO$As#qiAM0&>OiJj-^EO_}w*Z=D>}<B2nnq$2`8W@YXWy5!n%iew3x>QWI&h)Oj_
zfx*iK>B4NX<cJi>9zU$YYV!5+WIT5SLnmqI@~ZQc*(e~!g83j|Y5wq41vd4ohDRsv
z0ht39U4Jtybh#iwl&w%pxl+}hlO5H42s~qk3No@z+r;UR75SsHcWue4f$vVa<k)g_
zgk7toYl0=9n&t<myWH=y47TZ!gDzX#X^O=MsF4I($*Lvfj#h|@SVhBpn$AeFa$AP$
zfR;m7>61Zr;|zOzgqE_t+feRv;njQ+(Z2+v;oVgOytzBQAB)I4r|OylG*0Cb_$4r=
z>N)x<aa*OyT%1iFC1Wv|P4^Zh6e-0i86t*sc5@AF9VP2C6J5+P)h4at;2(P0-%DDl
zvL4e(Gu~cG=q;LeXz<&e9MVXW@Mw`y<c`n0`me9POW!I=$5%-;X3=i;aMwH8%T~f1
zK!Wb_8g~h()+{r1T;87L^a@~xMoBJjD?Ty)AoGrV|0K9Y=)SXC<W7mYCdgr&ksaJe
zqZQKR3im$cO=%S+E%s`dJqy>kBCz@cbkY+a)}BC0@w&5!FK-L&D)sbI=2?Vq${Fqn
zLa+ka8JXm>;FWK=v98rl>L{0Q*$In=Mz3P?)7cH89RZ0{+5q1bMpqVV<M_9o-PN|~
z52+eqc|l)H_tx{F<L|{jRV-aaZA36nWK2jPljj;H^ODXEk{{PnpR~GZc!pK<3yl#D
zDWO><3^wx(@AtYGq>l2nX+Vb%FHe@1U~(d<NU32qW-G6p1HyeIX?Sl4q^UUN*Z=57
zl#j$QLOy?_MbLvUSg0IE9<ru=xTU)3Ql(($wove0S96N7jgnwebicuD>+Mi?-@gF(
z^-4tMaGy2Q3Q4^_5Zt|(=_VUbuX)ur7+4UYFu&uK14r}j<Urvu$0t5(D6}rT_G%^;
zEWbCe<bKJ8_jjExO*7qgvT)9nC@D0;{4ooqitRvdXSW*!N0#!5XcZ-oP1o(?0+_#J
zX;J0ob_)Cwt3c`8rhsA8D<KF+7+ops0)*ML^trMKAGT@TxbE!|?Y1$D88YSHFHzX4
znoh-ss@vwGe|4!}Nx(Zje&X}v+@AZO`M8Hu%TV9o=FhF_$759~Lf{`m1k)#ZM~Lk=
zw4*wG<L<SiUaBT0t%qi<;-}`1fzrO6!{?0Uz?f2JB0-?c3g$^@ADsR%tdOGHGOe(c
zA@)e?4F>bG*H#RCDXi1BjXjV{<blJTSW`G!U^$3QdnYBg8))}wEc1`bl@8-%>_}_X
zr$=vD!)K>)9^5x8pr}2cs}y)MsG^7BWf3Q@y`1v;tBf)?Z$Bv;uX6H?Nx<y!3!G6v
z^+oe4k@!9%{a@puD`Or|Eoqa7NLO>X<VtsFLn@#n^!!5C^~<*#Ui{f;2st5yY}8xK
zD_2qxd_ZCCbz9GZAA5&L9}?#(?A7&MdeNkH6OaPl(6QSoGW#*8ZEs6Kd(Ha`dxumc
zot~O@D2M!GL53%w#n4aLfn#YbLur}8C^D5L+dOj2tJ*?3FohWB0ty*Fg9z0_Rp$Zq
zGSN5%P+s69_7ve@le;a8J1U`e__cE6tm()HshRQjZY@WtQsMqN<^)IkR3Y%?&Y(N(
zFQkPgx>i;0oyFc}{Tz^08yNrEQER?qx7$eBgs;sCQuYNfa<7N_Pa>S}$#qFPidRVq
zPf5Z>Op*B}OcHX3IoVm#2k-gib~<81td2tQLEYwM$tmppxYn6hsrL}-_z3yO0t8BE
zhHHtwifLSa7B$HW=jyBRgr6-A(0TdTs<Wdlr<fkv4HsJ~4hCK`@s-h|+q}ME^Xf*I
zADvw>f)x<t?c#=(IY?8?t;4M;%w+nJj1D?6(fsAnzES19OhhC!RBiuQS(XU8f$@W=
zuKhh=(rH1uU%YmGzt+4_FIQ+XbV!3Oj+DvRDHSPo07>;j+}<{h73^&b4D;zThlr^S
zB6-`-`XI5|AuBSp^aKou5+FaiA2#k`p<43H&hQ&H#QI{?!xD6j8AiAsp(BJu&S*A2
zF7yd~awF>DQYzHys$IJj+rr7<$m+Q#<>ng^Ucnoz%YcJ93nltL-u_R@rze>80&puK
z7osT<8Pk($-DXj2V#tjiPGmWrd^066Bx~gV^~mSa|0(ymy4%pGr*R1SW&3rOXU|G7
z{|F(pZOO*4PkfelE{}yXWKz0lj|VJyq*YAy{=DYO%1WR*HCDH|{%f&O(j)3+3>A_}
z9&8-!Xm<^lUW)1pUvhF(lfK11W@dw!9Bsd4bZGB}-U|<!(a{e~0^E@%XT_g21UpWP
zc>HMTs=&`{zo{Umw2VD%8)gRvp7#>8P5ZLaM{~}d77TP=kVCPQ#cwf9%rXT|l`|z3
zW_hJQ)AgZ$>Okv{Hjan61G2B(6aJ5e);@dO<PP9(=ee%(PGa3T-xaf5?Z1RB#;Ki@
z&Oq|TQFJ$KRHD32^V>_PJUvV26LI8}&67R#kmv_UyvBbsdi$Dh^bPFg0~?>uZuE!4
zPdVdO^{w>i5A6;8M4;zZEl;z??DJ*F-+y|kW9pEKP-`J^r9nuTBd2qx@^g6&$0V~;
z?8fknLXq?DoFqzQd_x8QrizWrTM%7jPkGkx3A5itU@Zo$TcleWD9a5059YO{-<ew?
zicwwKvX`&D^_$c|_M6h5WTrNqauXi+m(eTu@E0J_p)06jzq<+19E7Pcl5BHq99$72
z#+&Ot8>?U|v>o|q^v{$Fh<F3$EU-o6%&iyZ?<pC@B8|Z7{k{?gd!jFa{EH{+&t*GY
zh#x*x><B2RCC<}pPEI7-69~XNc9@@zyFjJtBP&Bmo)h*MLZA$SOP%dPhq2fF0m2KT
zGV`h@-|-ETEF+z;J1y-+tcC)ue3sWWm5#Yt%;F<_;8*M|eI0hz{#p;G4%1f0nS=SY
z_ANo@Z5p0CvihbIr}pA|j8Cu?{*`c$UaN<;?-~Lcb7K5T(149};n7QN8%e8I`YZVX
zS^f6P;(<>ES&q7BT>T<0x#3vRxJI|SG+*I)V7IQ#L<iRfb1zRH`Im;Fe}5oM;PT|T
z7l6%`vK;2#K!&`zXwLM{#-8Nqf2dLPN1^v;!3?1?5$NoyXXEc&NZ3Y<e+Qc^d&a!z
z=@_uh8NM+u0V8mGVsdYzo)g`2{v#2;QXitC6&>qRt#s>-LhNkECv!f%<t^2^CLr4L
zx{w?8+<>aw{!`lyj@9BJPF~c_sd=&H5WSV5CZ|T<e(1OOrVV^R$Uv98P2BZj5$G2w
z9OFBIE$+d)^r27CL$jda8*?#`-Rg1U_PR3&MbO^BTV3!$bG93d1f>dG>Hj@5g#1B$
zAFx#5ruOk<Vw$={u;Bx(?}^OD4Nc@>;73NmIVp(LKpT7J$#JZzDX4*QXo|<{mi7AY
z0gv0C8DLG_gazmG5YQ;JC916@*)jWS4Kuo<D}L9zAHvlBWoxvE%ygE$;(ORr2bI8t
z?qvtiS~C{|^NxyXv>BqVj(!m<L(pSP$Q2gNG%GMgr{j&nwJZH?;)a5px@p!NQs6w+
z{XPK%#ZQGSEf{pTnTa>?M$C(mCL8_fk>&M&cRt6FAUYRs9cLm|o{K%}WBSlrUmsGC
zXnkkYXZ^lEBbjf{gd4!U1+#!`M>MIqtew02*r}1{9%W%`b(Y#YKb*wM<THyDNp_Vi
zjD8>`tZ~9MILSr-Xah-AuC_V4#G}2Oe}KBK>w2yv*YDm@<WpAGo1O{U?2{#ZD>bL@
zA3e&?2CONuwn}5Yo8s$rxSM29B)0;x7ji<4U*tYujtTb>eFUd$T`*Kj5=NRoPYcgY
z>UQb?qW!0l*~?<r9&Ik8yvyEUiJRU;rgvX59DX#zJ@Za5Isp#kFyUm&D@l)Z+Oa1?
zrOY`|u2?B}^iNCQJfK=!_WP5S{L=6FS6`4myjL!9*s%E)fBjqh?5(N-$(Et*^Ks`<
z1Wh;fW@){ZPM9($FC>~GR!F((oxDxG>c_l2`bsH+<NIB1#AWo>FMiQ6)!%hBmWPMm
zW!s)-f_+1R)^6Ket)>j)?*)7B-Lo}RJG#7oZ;FXqEDJm5k)5Nc+`sv~mFd|T>k%RJ
zM96!uUeWO4P+uo;7`_eE8Ur!5aew4?mykDHe#(x=ulBmis+hFc*|;4!(}c0tZAfOh
z4Zjwuy~5hI7i?KohTA^*X(k(gHUB`s36V)iPq)jR^6s7E9#0QsdnvkCrI=-E%$KU0
zCl7Mq)RQxtS7V<1D+qZL<gLVcky?}&2N;uTvw$j~G@nw)GZr7(TMeEG54J-=goqnR
zGA)bG<at8EX=#TW51QIpN7*tz-6qRQC?7#D!m@%Iy~b<0^s7@6heVkczh4<ie!1Pb
zMI+HQAW;m~8B3||O>2}<NP)sy_VokBDxM?B2IkLN;u0(mpB{TgPiqQ6AKcrN<=r5X
za|PTl^0HJM5m<6P!HJz~Em_0(;Svbd+hTW0WVje=q+&u328*P*j9h{q`<&~db-K9S
zioGwyc{u|q1neh#e3G{(tB{eYPM%+@a0{!{v<^atR^{3Or3dSS6^MK%C^=<Gi#KfL
z+qjaw8=eN9HuRPJg{=Fz(+^wU-V80%eO5P!Rg8say@jS~*xPfzq<k)a(H@<gCdsXO
z>zKZ86joM<dnBvmyB{TxWf8{F?id8cP)pkRn&5;CS~Z3p!|RXPF`00=!u{spiz41i
z5-Wz=uzIHQQdlQk*dF1lw{na6%0-9$QN~sTG)lvueYQ1Yf>0Y7VQ4*nJJ;M4q<%&m
zr_2syW2MuEbCh%!l%?0aZn0wIPbVo)TwuSdJuaBM#NvpP?)wAtYFg~+65wM-HAko&
ze}G5Pqf^oq{fvVhu0PsQK7hj59yVlRtP~~-#1eGjZb>AY<u2c<1=7@Vu0gL7qo2Dw
zWZIhR(tT-m6&MO44r>q>c!$3J?sLfimWx*#5irfbW!2kxk*X(wQU`;)Ls*jm0v&P!
zcUC&;>*I4Utm3fJap40uUosDoPrRY%fdTJaT?jHwLwI$T)!{BIhI=g+Zu!wBn@87&
zu6guZl&#m}H;clfXQ;<s4z0)9Rot}a=GD8qB;9vYMcZ<t^g1_48@iDwioUKL5chhs
zq;)aYvGSMK>eLi_cbc9=MFS+!Q(q+f#cGB-0XGHY@of^4P%EYYjjI(Rxd(dhSX0%m
zYI{$X43eT3)@8M06)>ily^OtynWK7ii_MU|0o%0G4cj*w_Znsc1SR=J9XSid!C4p*
z7o3=C&f%23VMmx@uRMMF^x`5TEdOvbLV`a0*ds?p^eo|bkk7xrd@Pow^j1zwsV}br
zI+Q4YFT5c16>Vrh`*Mb_v=hal2MFZn2JxW8my^u*q@jqx{SzjI0Evp_J_-K;mA!Y^
z3d8-P)XnbWoEa<~dJ(NB*(*><&w_i*#HC~bui(P^hoQQ^8s<0iSrLlT2$VY*tV#i1
zGV8JCI<Lmh88TBi`1NB$QR~;yhM-vREvVs+dl>G%9W{c}O$}bTcw4rZlBv{{aCcY;
zex~F>tt9y==PJT5@^lIdQqh~qfRVlMuVw1X`+$)$ou1Ht_!QWag{C}nf?8RyHZy=(
z(F+)f-2bNdAFP(Y&f-kyneKn4ESjy*ayNJT@xMWaL)5?9_WqaK@*-ABx3);8r>nqJ
z%|k_RxF^|(2-11<szg&SUC1Ul$Y^x!UaxZ1jGpSqNTYCS<W0fMYZ>8()Z!$%)&FB(
zeO!zggM-KmB}2y*pfwi;^FYnAf>!?&bp5A?cFQVd`!>YE$qx;j{{?mr|4Tf%1pe<6
o&wm*4e~~e(fZ+d+xgY7H^0c_p)Hgq|s#gJb4Ip<u-g1cf9|X0rQUCw|

literal 0
HcmV?d00001

diff --git a/backend/docs/agent/453-csv-upload/453-csv-upload.md b/backend/docs/agent/453-csv-upload/453-csv-upload.md
new file mode 100644
index 00000000..fe5aa925
--- /dev/null
+++ b/backend/docs/agent/453-csv-upload/453-csv-upload.md
@@ -0,0 +1,499 @@
+# 453 CSV Upload Implementation
+
+This document tracks the implementation of the CSV upload feature for assemblies, allowing data import without using Google Spreadsheets.
+
+## Branch: 453-csv-upload
+
+## Overview
+
+The goal is to add CSV file upload capability as an alternative to Google Spreadsheets for managing assembly data. This involves:
+
+1. Adding new tabs (Targets, Respondents) to the assembly navigation
+2. Implementing CSV upload UI on the Data tab
+3. Integration with existing service layer functions for CSV parsing and import
+4. Building the frontend patterns and documentation
+
+---
+
+## Phase 4: CSV Upload on Data Tab
+
+### Figma Prototype Flow
+
+The Figma prototype (see images 1-4 in this folder) shows the following flow:
+
+![1-select-source.png](1-select-source.png) - Data source dropdown with options
+![2-upload-target-csv.png](2-upload-target-csv.png) - Target upload active, People disabled
+![3-upload-respondents-csv.png](3-upload-respondents-csv.png) - After Target upload, People becomes active
+![4-both-csvs-uploaded.png](4-both-csvs-uploaded.png) - Both uploaded, showing file info
+
+### Mermaid Flowchart
+
+```mermaid
+flowchart TD
+    subgraph DataTab["Data Tab"]
+        A[User visits Data tab] --> B{Data source<br/>selector}
+
+        B -->|Select CSV| C[Show CSV Upload Section]
+        B -->|Select GSheet| G[Show GSheet Config Form]
+        B -->|Already locked| D{Check existing config}
+
+        D -->|CSV config exists| C
+        D -->|GSheet config exists| G
+
+        C --> E[CSV Files Upload Panel]
+    end
+
+    subgraph CSVPanel["CSV Files Upload Panel"]
+        E --> F{Targets<br/>uploaded?}
+
+        F -->|No| H[Target Section:<br/>Upload Data button ACTIVE]
+        F -->|Yes| I[Target Section:<br/>Show file info + Delete/Replace buttons]
+
+        H --> J[People Section:<br/>Upload Data button DISABLED]
+        I --> K{Respondents<br/>uploaded?}
+
+        K -->|No| L[People Section:<br/>Upload Data button ACTIVE]
+        K -->|Yes| M[People Section:<br/>Show file info + Delete/Replace buttons]
+    end
+
+    subgraph UploadFlow["Upload Flow"]
+        H -->|Click Upload| U1[Open file picker]
+        U1 --> U2[POST to upload endpoint]
+        U2 --> U3{Upload success?}
+        U3 -->|Yes| U4[Flash success message<br/>Lock data source selector<br/>Refresh page]
+        U3 -->|No| U5[Flash error message<br/>Show form with errors]
+        U4 --> I
+
+        L -->|Click Upload| V1[Open file picker]
+        V1 --> V2[POST to upload endpoint]
+        V2 --> V3{Upload success?}
+        V3 -->|Yes| V4[Flash success message<br/>Refresh page]
+        V3 -->|No| V5[Flash error message]
+        V4 --> M
+    end
+
+    subgraph DeleteReplace["Delete/Replace Actions"]
+        I -->|Delete data| D1[Confirm dialog]
+        D1 -->|Confirm| D2[DELETE targets<br/>Reset to upload state]
+
+        I -->|Replace Data| R1[Open file picker]
+        R1 --> R2[POST with replace_existing=true]
+
+        M -->|Delete data| D3[Confirm dialog]
+        D3 -->|Confirm| D4[DELETE respondents<br/>Reset to upload state]
+
+        M -->|Replace Data| R3[Open file picker]
+        R3 --> R4[POST with replace_existing=true]
+    end
+
+    subgraph LockLogic["Data Source Lock Logic"]
+        U4 -->|First CSV uploaded| LOCK[Disable data source selector]
+        D2 -->|Check if any CSV remains| CHECK{Any data<br/>remaining?}
+        D4 --> CHECK
+        CHECK -->|No targets AND no respondents| UNLOCK[Re-enable data source selector]
+        CHECK -->|Some data remains| KEEP[Keep selector locked]
+    end
+```
+
+### State Machine
+
+```mermaid
+stateDiagram-v2
+    [*] --> NoSource: Initial state
+
+    NoSource --> CSVSelected: User selects CSV
+    NoSource --> GSheetSelected: User selects GSheet
+
+    CSVSelected --> TargetsUploaded: Upload targets CSV
+    TargetsUploaded --> BothUploaded: Upload respondents CSV
+
+    TargetsUploaded --> CSVSelected: Delete targets
+    BothUploaded --> TargetsUploaded: Delete respondents
+    BothUploaded --> RespondentsOnly: Delete targets
+    RespondentsOnly --> NoSource: Delete respondents
+
+    note right of CSVSelected
+        Data source selector: ENABLED
+        Target upload: ACTIVE
+        People upload: DISABLED
+    end note
+
+    note right of TargetsUploaded
+        Data source selector: LOCKED
+        Target section: Shows file info
+        People upload: ACTIVE
+    end note
+
+    note right of BothUploaded
+        Data source selector: LOCKED
+        Both sections: Show file info
+        Tabs enabled: Targets, Respondents
+    end note
+```
+
+---
+
+## Implementation Plan
+
+### Step 1: Backend - Extend AssemblyCSV Domain Model
+
+The existing `AssemblyCSV` model tracks `last_import_filename` and `last_import_timestamp` but these are for respondents only. We need to track targets separately.
+
+**Current fields:**
+- `last_import_filename: str` - Respondents filename
+- `last_import_timestamp: datetime | None` - Respondents timestamp
+
+**New fields to add:**
+- `targets_filename: str` - Targets CSV filename
+- `targets_uploaded_at: datetime | None` - Targets upload timestamp
+- `targets_uploaded_by: uuid.UUID | None` - User who uploaded targets
+- `respondents_filename: str` - Rename from `last_import_filename`
+- `respondents_uploaded_at: datetime | None` - Rename from `last_import_timestamp`
+- `respondents_uploaded_by: uuid.UUID | None` - User who uploaded respondents
+
+**Alternative approach:** Use existing `TargetCategory` and `Respondent` counts to determine upload status:
+- Targets uploaded = `len(get_targets_for_assembly(...)) > 0`
+- Respondents uploaded = `len(uow.respondents.get_by_assembly_id(...)) > 0`
+
+This avoids schema changes but loses filename/timestamp metadata.
+
+**Recommendation:** Keep it simple - use counts to determine if data exists. We can add metadata fields later if needed.
+
+### Step 2: Backend - Add Service Functions
+
+Create/update in `assembly_service.py`:
+
+```python
+def get_csv_upload_status(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+) -> dict:
+    """Get CSV upload status for an assembly.
+
+    Returns:
+        {
+            "has_targets": bool,
+            "targets_count": int,
+            "has_respondents": bool,
+            "respondents_count": int,
+            "csv_config": AssemblyCSV | None,
+        }
+    """
+```
+
+Existing functions to reuse:
+- `get_or_create_csv_config()` - Get/create CSV config
+- `import_targets_from_csv()` - Import targets from CSV content
+- `import_respondents_from_csv()` (in `respondent_service.py`) - Import respondents
+
+Functions to add:
+- `delete_targets_for_assembly()` - Delete all targets for an assembly
+- `delete_respondents_for_assembly()` - Delete all respondents for an assembly (already exists as part of import with `replace_existing=True`)
+
+### Step 3: Backend - Add Routes to Backoffice Blueprint
+
+Add to `backoffice.py`:
+
+```python
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/data/upload-targets", methods=["POST"])
+def upload_targets_csv(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Handle targets CSV upload from Data tab."""
+
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/data/upload-respondents", methods=["POST"])
+def upload_respondents_csv(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Handle respondents CSV upload from Data tab."""
+
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/data/delete-targets", methods=["POST"])
+def delete_targets(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Delete all targets for an assembly."""
+
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/data/delete-respondents", methods=["POST"])
+def delete_respondents(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Delete all respondents for an assembly."""
+```
+
+### Step 4: Frontend - Update Data Tab Template
+
+Update `assembly_data.html` to show CSV upload panel when `data_source == "csv"`:
+
+```jinja
+{% if data_source == "csv" %}
+    <section class="mb-8">
+        <h2 class="text-heading-lg mb-4">{{ _("CSV Files Upload") }}</h2>
+
+        {# Target Upload Section #}
+        <div class="mb-6">
+            <h3 class="text-heading-md mb-2">{{ _("Target") }}</h3>
+            {% if has_targets %}
+                {# Show file info with Delete/Replace buttons #}
+                <div class="flex items-center gap-4">
+                    <dl class="flex gap-8">
+                        <div>
+                            <dt class="text-label-sm">{{ _("File name") }}</dt>
+                            <dd>{{ targets_filename or "CSV" }}</dd>
+                        </div>
+                        <div>
+                            <dt class="text-label-sm">{{ _("Uploaded on") }}</dt>
+                            <dd>{{ targets_uploaded_at | format_date }}</dd>
+                        </div>
+                        <div>
+                            <dt class="text-label-sm">{{ _("Uploaded by") }}</dt>
+                            <dd>{{ targets_uploaded_by_name }}</dd>
+                        </div>
+                    </dl>
+                    <div class="flex gap-2">
+                        {{ button(_("Delete data"), variant="outline", ...) }}
+                        {{ button(_("Replace Data"), variant="primary", ...) }}
+                    </div>
+                </div>
+            {% else %}
+                {# Show Upload button #}
+                <form method="POST" enctype="multipart/form-data"
+                      action="{{ url_for('backoffice.upload_targets_csv', assembly_id=assembly.id) }}">
+                    {{ targets_form.hidden_tag() }}
+                    {{ file_input("targets_csv", label="", accept=".csv") }}
+                    {{ button(_("Upload Data"), type="submit", variant="primary") }}
+                </form>
+            {% endif %}
+        </div>
+
+        <hr class="my-6">
+
+        {# People/Respondents Upload Section #}
+        <div class="mb-6">
+            <h3 class="text-heading-md mb-2">{{ _("People") }}</h3>
+            {% if has_respondents %}
+                {# Show file info with Delete/Replace buttons #}
+                ...
+            {% elif has_targets %}
+                {# Show Upload button (enabled after targets uploaded) #}
+                <form method="POST" enctype="multipart/form-data"
+                      action="{{ url_for('backoffice.upload_respondents_csv', assembly_id=assembly.id) }}">
+                    ...
+                </form>
+            {% else %}
+                {# Show disabled Upload button #}
+                {{ button(_("Upload Data"), disabled=true, variant="secondary") }}
+            {% endif %}
+        </div>
+    </section>
+{% endif %}
+```
+
+### Step 5: Update Data Source Lock Logic
+
+Modify `view_assembly_data()` in `backoffice.py`:
+
+```python
+# Current logic:
+if gsheet:
+    data_source = "gsheet"
+    data_source_locked = True
+
+# New logic:
+csv_status = get_csv_upload_status(uow, user_id, assembly_id)
+if gsheet:
+    data_source = "gsheet"
+    data_source_locked = True
+elif csv_status["has_targets"] or csv_status["has_respondents"]:
+    data_source = "csv"
+    data_source_locked = True  # Lock once any CSV data exists
+else:
+    data_source = request.args.get("source", "")
+    data_source_locked = False
+```
+
+### Step 6: Update Tab Enabled Logic
+
+Modify tab enabled logic in all routes:
+
+```python
+# Current logic:
+targets_enabled = gsheet is not None if data_source == "gsheet" else False
+
+# New logic:
+if data_source == "gsheet":
+    targets_enabled = gsheet is not None
+    respondents_enabled = gsheet is not None
+elif data_source == "csv":
+    csv_status = get_csv_upload_status(...)
+    targets_enabled = csv_status["has_targets"]
+    respondents_enabled = csv_status["has_respondents"]
+else:
+    targets_enabled = False
+    respondents_enabled = False
+```
+
+### Step 7: Add BDD Tests
+
+Add scenarios to `features/backoffice-csv-upload.feature`:
+
+```gherkin
+Scenario: CSV upload section appears when CSV source selected
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Upload Test"
+    When I visit the assembly data page for "CSV Upload Test" with source "csv"
+    Then I should see "CSV Files Upload"
+    And I should see a "Target" section
+    And I should see a "People" section
+
+Scenario: Target upload is active, People upload is disabled initially
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Initial State"
+    When I visit the assembly data page for "CSV Initial State" with source "csv"
+    Then the Target "Upload Data" button should be enabled
+    And the People "Upload Data" button should be disabled
+
+Scenario: After uploading targets, People upload becomes active
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Targets Uploaded"
+    And the assembly "CSV Targets Uploaded" has targets uploaded
+    When I visit the assembly data page for "CSV Targets Uploaded"
+    Then I should see the Target file info
+    And the People "Upload Data" button should be enabled
+    And the data source selector should be disabled
+
+Scenario: Data source selector locks after first CSV upload
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Lock Test"
+    And the assembly "CSV Lock Test" has targets uploaded
+    When I visit the assembly data page for "CSV Lock Test"
+    Then the data source selector should be disabled
+```
+
+---
+
+## Implementation Progress
+
+### Phase 1: Tab Navigation (Completed)
+
+Added two new tabs to the assembly view navigation:
+
+- **Targets** - For managing selection target categories (demographic quotas)
+- **Respondents** - For managing participant/respondent data
+
+#### Tab Behavior
+
+| Condition | Targets Tab | Respondents Tab |
+|-----------|-------------|-----------------|
+| No data source configured | Disabled | Disabled |
+| GSheet configured | Enabled (shows info box) | Enabled (shows info box) |
+| CSV source, no upload yet | Disabled | Disabled |
+| CSV source, targets uploaded | Enabled | Disabled |
+| CSV source, both uploaded | Enabled | Enabled |
+
+### Phase 2: UI Components (Completed)
+
+Created a file input component (`file_input` macro) in `templates/backoffice/components/input.html`.
+
+### Phase 3: GSheet Info Display (Completed)
+
+For assemblies using Google Sheets as the data source, info boxes show the configured tab names.
+
+### Phase 4: CSV Upload (In Progress)
+
+See implementation plan above.
+
+---
+
+## Existing Service Layer Functions
+
+### Targets
+
+```python
+# assembly_service.py
+
+def import_targets_from_csv(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+    csv_content: str,
+    replace_existing: bool = False,
+) -> list[TargetCategory]:
+    """Import target categories from CSV.
+
+    CSV format: feature, value, min, max, min_flex, max_flex
+    """
+
+def get_targets_for_assembly(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+) -> list[TargetCategory]:
+    """Get all target categories for an assembly."""
+```
+
+### Respondents
+
+```python
+# respondent_service.py
+
+def import_respondents_from_csv(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+    csv_content: str,
+    replace_existing: bool = False,
+    id_column: str | None = None,
+) -> tuple[list[Respondent], list[str], str]:
+    """Import respondents from CSV.
+
+    Returns: (respondents, errors, resolved_id_column)
+    """
+```
+
+### CSV Config
+
+```python
+# assembly_service.py
+
+def get_or_create_csv_config(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+) -> AssemblyCSV:
+    """Get or create CSV configuration for an assembly."""
+
+def update_csv_config(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+    **kwargs,
+) -> AssemblyCSV:
+    """Update CSV configuration fields."""
+```
+
+---
+
+## Technical Notes
+
+### Form Handling
+
+Use existing forms from `forms.py`:
+- `UploadTargetsCsvForm` - Simple file upload
+- `UploadRespondentsCsvForm` - File upload + id_column + replace_existing
+
+### File Upload Pattern
+
+From `/backoffice/dev/patterns`:
+1. Form with `enctype="multipart/form-data"`
+2. Use `file_input` macro for styled input
+3. Read file with `utf-8-sig` encoding (handles Excel BOM)
+4. Pass content string to service layer
+
+### CSP Compatibility
+
+All Alpine.js code follows CSP-compatible patterns:
+- Flat properties only in `x-model`
+- No string arguments in click handlers
+- CSRF token in fetch requests
+
+---
+
+## Related Documents
+
+- [Frontend Patterns Documentation](/backoffice/dev/patterns) - Live examples
+- [Service Docs](/backoffice/dev/service-docs) - Service layer testing
+- [CSV Upload GDS Plan](../csv-upload-gds-plan.md) - Original planning
+- [CSV Upload GDS Research](../csv-upload-gds-research.md) - Research notes
diff --git a/backend/docs/agent/453-csv-upload/sample_respondents.csv b/backend/docs/agent/453-csv-upload/sample_respondents.csv
new file mode 100644
index 00000000..30fb5052
--- /dev/null
+++ b/backend/docs/agent/453-csv-upload/sample_respondents.csv
@@ -0,0 +1,21 @@
+ID,Name,Email,Gender,Age,Region
+1,Alice Smith,alice@example.com,Female,18-35,North
+2,Bob Johnson,bob@example.com,Male,36-55,South
+3,Carol Williams,carol@example.com,Female,56+,East
+4,David Brown,david@example.com,Male,18-35,West
+5,Emma Davis,emma@example.com,Female,36-55,North
+6,Frank Miller,frank@example.com,Male,56+,South
+7,Grace Wilson,grace@example.com,Female,18-35,East
+8,Henry Moore,henry@example.com,Male,36-55,West
+9,Iris Taylor,iris@example.com,Female,56+,North
+10,Jack Anderson,jack@example.com,Male,18-35,South
+11,Kate Thomas,kate@example.com,Female,36-55,East
+12,Leo Jackson,leo@example.com,Male,56+,West
+13,Mia White,mia@example.com,Female,18-35,North
+14,Noah Harris,noah@example.com,Male,36-55,South
+15,Olivia Martin,olivia@example.com,Female,56+,East
+16,Peter Garcia,peter@example.com,Male,18-35,West
+17,Quinn Martinez,quinn@example.com,Female,36-55,North
+18,Ryan Robinson,ryan@example.com,Male,56+,South
+19,Sophia Clark,sophia@example.com,Female,18-35,East
+20,Thomas Rodriguez,thomas@example.com,Male,36-55,West
diff --git a/backend/docs/agent/453-csv-upload/sample_targets.csv b/backend/docs/agent/453-csv-upload/sample_targets.csv
new file mode 100644
index 00000000..5ff117f2
--- /dev/null
+++ b/backend/docs/agent/453-csv-upload/sample_targets.csv
@@ -0,0 +1,10 @@
+feature,value,min,max,min_flex,max_flex
+Gender,Male,4,6,4,6
+Gender,Female,4,6,4,6
+Age,18-35,3,5,3,5
+Age,36-55,3,5,3,5
+Age,56+,2,4,2,4
+Region,North,2,4,2,4
+Region,South,2,4,2,4
+Region,East,2,4,2,4
+Region,West,2,4,2,4
diff --git a/backend/features/backoffice-csv-upload.feature b/backend/features/backoffice-csv-upload.feature
index 66925718..3e4347b4 100644
--- a/backend/features/backoffice-csv-upload.feature
+++ b/backend/features/backoffice-csv-upload.feature
@@ -52,3 +52,46 @@ Feature: Backoffice CSV Upload
     When I visit the assembly data page for "CSV Targets Assembly" with source "csv"
     Then I should see a "Targets" tab in the assembly navigation
     And the "Targets" tab should be disabled
+
+  # CSV Upload Panel Tests
+
+  Scenario: CSV upload section appears when CSV source is selected
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Upload Section Test"
+    When I visit the assembly data page for "CSV Upload Section Test" with source "csv"
+    Then I should see "CSV Files Upload"
+    And I should see "Target"
+    And I should see "People"
+
+  Scenario: Target upload button is active and People upload is disabled initially
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Initial Upload State"
+    When I visit the assembly data page for "CSV Initial Upload State" with source "csv"
+    Then the Target upload button should be enabled
+    And the People upload button should be disabled
+
+  Scenario: After uploading targets, People upload becomes active
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV With Targets"
+    And the assembly "CSV With Targets" has targets uploaded
+    When I visit the assembly data page for "CSV With Targets"
+    Then the People upload button should be enabled
+    And the data source selector should be disabled
+
+  Scenario: Targets tab is enabled after targets uploaded
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Targets Tab Enable"
+    And the assembly "CSV Targets Tab Enable" has targets uploaded
+    When I visit the assembly data page for "CSV Targets Tab Enable"
+    Then the "Targets" tab should be enabled
+    And the "Respondents" tab should be disabled
+
+  Scenario: Both tabs enabled after both CSVs uploaded
+    Given I am logged in as an admin user
+    And there is an assembly called "CSV Both Uploaded"
+    And the assembly "CSV Both Uploaded" has targets uploaded
+    And the assembly "CSV Both Uploaded" has respondents uploaded
+    When I visit the assembly data page for "CSV Both Uploaded"
+    Then the "Targets" tab should be enabled
+    And the "Respondents" tab should be enabled
+    And the data source selector should be disabled
diff --git a/backend/src/opendlp/adapters/sql_repository.py b/backend/src/opendlp/adapters/sql_repository.py
index 9f95a70e..8ba877c8 100644
--- a/backend/src/opendlp/adapters/sql_repository.py
+++ b/backend/src/opendlp/adapters/sql_repository.py
@@ -909,6 +909,15 @@ def delete(self, item: Respondent) -> None:
     def bulk_add(self, items: list[Respondent]) -> None:
         self.session.bulk_save_objects(items)
 
+    def delete_all_for_assembly(self, assembly_id: uuid.UUID) -> int:
+        """Delete all respondents for an assembly."""
+        respondents = self.get_by_assembly_id(assembly_id)
+        count = len(respondents)
+        for respondent in respondents:
+            self.session.delete(respondent)
+        self.session.flush()
+        return count
+
     def bulk_mark_as_selected(
         self,
         assembly_id: uuid.UUID,
diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index 02ec4248..1916fda9 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -21,8 +21,11 @@
 )
 from opendlp.service_layer.assembly_service import (
     create_assembly,
+    delete_respondents_for_assembly,
+    delete_targets_for_assembly,
     get_assembly_gsheet,
     get_assembly_with_permissions,
+    get_csv_upload_status,
     get_or_create_csv_config,
     import_targets_from_csv,
     update_assembly,
@@ -112,10 +115,19 @@ def view_assembly(assembly_id: uuid.UUID) -> ResponseReturnValue:
         except Exception:  # noqa: S110
             pass  # No gsheet config exists - this is expected for new assemblies
 
+        # Get CSV status
+        csv_status = None
+        try:
+            uow_csv = bootstrap.bootstrap()
+            csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
+        except Exception:  # noqa: S110
+            pass  # No CSV data - expected for new assemblies
+
         # Determine data source and tab enabled states
-        data_source = "gsheet" if gsheet else ""
-        targets_enabled = gsheet is not None
-        respondents_enabled = gsheet is not None
+        data_source, _locked = _determine_data_source(gsheet, csv_status)
+        targets_enabled, respondents_enabled, selection_enabled = _get_tab_enabled_states(
+            data_source, gsheet, csv_status
+        )
 
         return render_template(
             "backoffice/assembly_details.html",
@@ -124,6 +136,7 @@ def view_assembly(assembly_id: uuid.UUID) -> ResponseReturnValue:
             gsheet=gsheet,
             targets_enabled=targets_enabled,
             respondents_enabled=respondents_enabled,
+            selection_enabled=selection_enabled,
         ), 200
     except InsufficientPermissions as e:
         current_app.logger.warning(f"Insufficient permissions for assembly {assembly_id} user {current_user.id}: {e}")
@@ -200,6 +213,35 @@ def edit_assembly(assembly_id: uuid.UUID) -> ResponseReturnValue:
         return redirect(url_for("backoffice.dashboard"))
 
 
+def _determine_data_source(gsheet: Any, csv_status: dict[str, Any] | None) -> tuple[str, bool]:
+    """Determine data source and whether it's locked based on existing configs."""
+    if gsheet:
+        return "gsheet", True
+    if csv_status and (csv_status.get("has_targets") or csv_status.get("has_respondents")):
+        return "csv", True
+    # No config exists - allow user to choose source from query param
+    data_source = request.args.get("source", "")
+    if data_source not in ("gsheet", "csv", ""):
+        data_source = ""
+    return data_source, False
+
+
+def _get_tab_enabled_states(
+    data_source: str, gsheet: Any, csv_status: dict[str, Any] | None
+) -> tuple[bool, bool, bool]:
+    """Determine whether targets, respondents, and selection tabs should be enabled."""
+    if data_source == "gsheet":
+        enabled = gsheet is not None
+        return enabled, enabled, enabled
+    if data_source == "csv":
+        has_targets = csv_status.get("has_targets", False) if csv_status else False
+        has_respondents = csv_status.get("has_respondents", False) if csv_status else False
+        # Selection requires both targets and respondents
+        selection_enabled = has_targets and has_respondents
+        return has_targets, has_respondents, selection_enabled
+    return False, False, False
+
+
 @backoffice_bp.route("/assembly/<uuid:assembly_id>/update-number-to-select", methods=["POST"])
 @login_required
 def update_number_to_select(assembly_id: uuid.UUID) -> ResponseReturnValue:
@@ -238,11 +280,6 @@ def update_number_to_select(assembly_id: uuid.UUID) -> ResponseReturnValue:
 def view_assembly_data(assembly_id: uuid.UUID) -> ResponseReturnValue:
     """Backoffice assembly data page."""
     try:
-        # Initialize context
-        gsheet = None
-        gsheet_mode = "new"
-        gsheet_form = None
-        data_source_locked = False
         google_service_account_email = current_app.config.get("GOOGLE_SERVICE_ACCOUNT_EMAIL", "UNKNOWN")
 
         # Get assembly with permissions
@@ -250,38 +287,37 @@ def view_assembly_data(assembly_id: uuid.UUID) -> ResponseReturnValue:
         with uow:
             assembly = get_assembly_with_permissions(uow, assembly_id, current_user.id)
 
-        # Always check if gsheet config exists - if so, lock to gsheet source
+        # Get gsheet config if exists
+        gsheet = None
         try:
             uow_gsheet = bootstrap.bootstrap()
             gsheet = get_assembly_gsheet(uow_gsheet, assembly_id, current_user.id)
         except Exception as gsheet_error:
             current_app.logger.error(f"Error loading gsheet config: {gsheet_error}")
-            current_app.logger.exception("Gsheet loading stacktrace:")
-            gsheet = None
 
-        # If gsheet config exists, force gsheet source and lock the selector
-        if gsheet:
-            data_source = "gsheet"
-            data_source_locked = True
-        else:
-            # No config exists - allow user to choose source from query param
-            data_source = request.args.get("source", "")
-            if data_source not in ("gsheet", "csv", ""):
-                data_source = ""
+        # Get CSV upload status
+        try:
+            uow_csv = bootstrap.bootstrap()
+            csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
+        except Exception as csv_error:
+            current_app.logger.error(f"Error loading CSV status: {csv_error}")
+            csv_status = {"has_targets": False, "targets_count": 0, "has_respondents": False, "respondents_count": 0}
+
+        # Determine data source and locking
+        data_source, data_source_locked = _determine_data_source(gsheet, csv_status)
 
         # Set up gsheet form if gsheet source is selected
+        gsheet_mode = "new"
+        gsheet_form = None
         if data_source == "gsheet":
             mode_param = request.args.get("mode", "")
-            # Config exists: default to view, allow edit. No config: always show new form
             gsheet_mode = ("edit" if mode_param == "edit" else "view") if gsheet else "new"
-            # Create form based on mode - form has defaults built in
             gsheet_form = EditAssemblyGSheetForm(obj=gsheet) if gsheet else CreateAssemblyGSheetForm()
 
         # Determine tab enabled states
-        # For gsheet: enabled if gsheet config exists
-        # For CSV: would be enabled if targets/respondents CSV uploaded (future implementation)
-        targets_enabled = gsheet is not None if data_source == "gsheet" else False
-        respondents_enabled = gsheet is not None if data_source == "gsheet" else False
+        targets_enabled, respondents_enabled, selection_enabled = _get_tab_enabled_states(
+            data_source, gsheet, csv_status
+        )
 
         return render_template(
             "backoffice/assembly_data.html",
@@ -294,6 +330,8 @@ def view_assembly_data(assembly_id: uuid.UUID) -> ResponseReturnValue:
             google_service_account_email=google_service_account_email,
             targets_enabled=targets_enabled,
             respondents_enabled=respondents_enabled,
+            selection_enabled=selection_enabled,
+            csv_status=csv_status,
         ), 200
     except NotFoundError as e:
         current_app.logger.warning(f"Assembly {assembly_id} not found for user {current_user.id}: {e}")
@@ -310,6 +348,199 @@ def view_assembly_data(assembly_id: uuid.UUID) -> ResponseReturnValue:
         return redirect(url_for("backoffice.dashboard"))
 
 
+# =============================================================================
+# CSV Upload Routes
+# =============================================================================
+
+
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/data/upload-targets", methods=["POST"])
+@login_required
+def upload_targets_csv(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Upload targets CSV file for an assembly."""
+    try:
+        # Check if file was uploaded
+        if "file" not in request.files:
+            flash(_("No file selected"), "error")
+            return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+        file = request.files["file"]
+        if file.filename == "":
+            flash(_("No file selected"), "error")
+            return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+        # Read CSV content
+        csv_content = file.read().decode("utf-8")
+
+        # Import targets using service function
+        uow = bootstrap.bootstrap()
+        with uow:
+            categories = import_targets_from_csv(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+                csv_content=csv_content,
+                replace_existing=True,
+            )
+
+        flash(
+            _("Targets uploaded successfully: %(count)d categories", count=len(categories)),
+            "success",
+        )
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+    except InvalidSelection as e:
+        current_app.logger.warning(f"Invalid CSV format for targets upload assembly {assembly_id}: {e}")
+        flash(_("Invalid CSV format: %(error)s", error=str(e)), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+    except InsufficientPermissions as e:
+        current_app.logger.warning(
+            f"Insufficient permissions to upload targets for assembly {assembly_id} user {current_user.id}: {e}"
+        )
+        flash(_("You don't have permission to upload targets"), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+    except NotFoundError as e:
+        current_app.logger.warning(f"Assembly {assembly_id} not found for targets upload: {e}")
+        flash(_("Assembly not found"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+    except Exception as e:
+        current_app.logger.error(f"Upload targets error for assembly {assembly_id} user {current_user.id}: {e}")
+        current_app.logger.exception("Full stacktrace:")
+        flash(_("An error occurred while uploading targets"), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/data/delete-targets", methods=["POST"])
+@login_required
+def delete_targets(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Delete all targets for an assembly."""
+    try:
+        uow = bootstrap.bootstrap()
+        with uow:
+            count = delete_targets_for_assembly(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+            )
+
+        flash(_("Targets deleted: %(count)d categories removed", count=count), "success")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+    except InsufficientPermissions as e:
+        current_app.logger.warning(
+            f"Insufficient permissions to delete targets for assembly {assembly_id} user {current_user.id}: {e}"
+        )
+        flash(_("You don't have permission to delete targets"), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+    except NotFoundError as e:
+        current_app.logger.warning(f"Assembly {assembly_id} not found for targets deletion: {e}")
+        flash(_("Assembly not found"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+    except Exception as e:
+        current_app.logger.error(f"Delete targets error for assembly {assembly_id} user {current_user.id}: {e}")
+        current_app.logger.exception("Full stacktrace:")
+        flash(_("An error occurred while deleting targets"), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/data/upload-respondents", methods=["POST"])
+@login_required
+def upload_respondents_csv(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Upload respondents (people) CSV file for an assembly."""
+    try:
+        # Check if file was uploaded
+        if "file" not in request.files:
+            flash(_("No file selected"), "error")
+            return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+        file = request.files["file"]
+        if file.filename == "":
+            flash(_("No file selected"), "error")
+            return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+        # Read CSV content
+        csv_content = file.read().decode("utf-8")
+
+        # Import respondents using service function
+        uow = bootstrap.bootstrap()
+        with uow:
+            respondents, errors, _id_column = import_respondents_from_csv(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+                csv_content=csv_content,
+                replace_existing=True,
+            )
+
+        if errors:
+            flash(
+                _(
+                    "Respondents uploaded with warnings: %(count)d imported, %(errors)d errors",
+                    count=len(respondents),
+                    errors=len(errors),
+                ),
+                "warning",
+            )
+        else:
+            flash(
+                _("Respondents uploaded successfully: %(count)d imported", count=len(respondents)),
+                "success",
+            )
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+    except InvalidSelection as e:
+        current_app.logger.warning(f"Invalid CSV format for respondents upload assembly {assembly_id}: {e}")
+        flash(_("Invalid CSV format: %(error)s", error=str(e)), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+    except InsufficientPermissions as e:
+        current_app.logger.warning(
+            f"Insufficient permissions to upload respondents for assembly {assembly_id} user {current_user.id}: {e}"
+        )
+        flash(_("You don't have permission to upload respondents"), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+    except NotFoundError as e:
+        current_app.logger.warning(f"Assembly {assembly_id} not found for respondents upload: {e}")
+        flash(_("Assembly not found"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+    except Exception as e:
+        current_app.logger.error(f"Upload respondents error for assembly {assembly_id} user {current_user.id}: {e}")
+        current_app.logger.exception("Full stacktrace:")
+        flash(_("An error occurred while uploading respondents"), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+
+@backoffice_bp.route("/assembly/<uuid:assembly_id>/data/delete-respondents", methods=["POST"])
+@login_required
+def delete_respondents(assembly_id: uuid.UUID) -> ResponseReturnValue:
+    """Delete all respondents for an assembly."""
+    try:
+        uow = bootstrap.bootstrap()
+        with uow:
+            count = delete_respondents_for_assembly(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+            )
+
+        flash(_("Respondents deleted: %(count)d removed", count=count), "success")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+    except InsufficientPermissions as e:
+        current_app.logger.warning(
+            f"Insufficient permissions to delete respondents for assembly {assembly_id} user {current_user.id}: {e}"
+        )
+        flash(_("You don't have permission to delete respondents"), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+    except NotFoundError as e:
+        current_app.logger.warning(f"Assembly {assembly_id} not found for respondents deletion: {e}")
+        flash(_("Assembly not found"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+    except Exception as e:
+        current_app.logger.error(f"Delete respondents error for assembly {assembly_id} user {current_user.id}: {e}")
+        current_app.logger.exception("Full stacktrace:")
+        flash(_("An error occurred while deleting respondents"), "error")
+        return redirect(url_for("backoffice.view_assembly_data", assembly_id=assembly_id, source="csv"))
+
+
 @backoffice_bp.route("/assembly/<uuid:assembly_id>/targets")
 @login_required
 def view_assembly_targets(assembly_id: uuid.UUID) -> ResponseReturnValue:
@@ -328,20 +559,21 @@ def view_assembly_targets(assembly_id: uuid.UUID) -> ResponseReturnValue:
         except Exception:  # noqa: S110
             pass  # No gsheet config exists - this is expected for new assemblies
 
-        # Determine data source
-        if gsheet:
-            data_source = "gsheet"
-        else:
-            data_source = request.args.get("source", "")
-            if data_source not in ("gsheet", "csv", ""):
-                data_source = ""
+        # Get CSV status
+        csv_status = None
+        try:
+            uow_csv = bootstrap.bootstrap()
+            csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
+        except Exception:  # noqa: S110
+            pass  # No CSV data - expected for new assemblies
 
-        # Targets tab is enabled if gsheet exists (for gsheet source)
-        # For CSV source, it would be enabled if targets CSV has been uploaded (future implementation)
-        targets_enabled = gsheet is not None if data_source == "gsheet" else False
+        # Determine data source
+        data_source, _locked = _determine_data_source(gsheet, csv_status)
 
-        # Respondents tab enabled logic (for now, same as targets for gsheet)
-        respondents_enabled = gsheet is not None if data_source == "gsheet" else False
+        # Tab enabled states
+        targets_enabled, respondents_enabled, selection_enabled = _get_tab_enabled_states(
+            data_source, gsheet, csv_status
+        )
 
         return render_template(
             "backoffice/assembly_targets.html",
@@ -350,6 +582,7 @@ def view_assembly_targets(assembly_id: uuid.UUID) -> ResponseReturnValue:
             gsheet=gsheet,
             targets_enabled=targets_enabled,
             respondents_enabled=respondents_enabled,
+            selection_enabled=selection_enabled,
         ), 200
     except NotFoundError as e:
         current_app.logger.warning(f"Assembly {assembly_id} not found for user {current_user.id}: {e}")
@@ -384,17 +617,21 @@ def view_assembly_respondents(assembly_id: uuid.UUID) -> ResponseReturnValue:
         except Exception:  # noqa: S110
             pass  # No gsheet config exists - this is expected for new assemblies
 
+        # Get CSV status
+        csv_status = None
+        try:
+            uow_csv = bootstrap.bootstrap()
+            csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
+        except Exception:  # noqa: S110
+            pass  # No CSV data - expected for new assemblies
+
         # Determine data source
-        if gsheet:
-            data_source = "gsheet"
-        else:
-            data_source = request.args.get("source", "")
-            if data_source not in ("gsheet", "csv", ""):
-                data_source = ""
+        data_source, _locked = _determine_data_source(gsheet, csv_status)
 
-        # Tab enabled logic
-        targets_enabled = gsheet is not None if data_source == "gsheet" else False
-        respondents_enabled = gsheet is not None if data_source == "gsheet" else False
+        # Tab enabled states
+        targets_enabled, respondents_enabled, selection_enabled = _get_tab_enabled_states(
+            data_source, gsheet, csv_status
+        )
 
         return render_template(
             "backoffice/assembly_respondents.html",
@@ -403,6 +640,7 @@ def view_assembly_respondents(assembly_id: uuid.UUID) -> ResponseReturnValue:
             gsheet=gsheet,
             targets_enabled=targets_enabled,
             respondents_enabled=respondents_enabled,
+            selection_enabled=selection_enabled,
         ), 200
     except NotFoundError as e:
         current_app.logger.warning(f"Assembly {assembly_id} not found for user {current_user.id}: {e}")
@@ -444,10 +682,19 @@ def view_assembly_members(assembly_id: uuid.UUID) -> ResponseReturnValue:
         except Exception:  # noqa: S110
             pass  # No gsheet config exists - this is expected for new assemblies
 
+        # Get CSV status
+        csv_status = None
+        try:
+            uow_csv = bootstrap.bootstrap()
+            csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
+        except Exception:  # noqa: S110
+            pass  # No CSV data - expected for new assemblies
+
         # Determine data source and tab enabled states
-        data_source = "gsheet" if gsheet else ""
-        targets_enabled = gsheet is not None
-        respondents_enabled = gsheet is not None
+        data_source, _locked = _determine_data_source(gsheet, csv_status)
+        targets_enabled, respondents_enabled, selection_enabled = _get_tab_enabled_states(
+            data_source, gsheet, csv_status
+        )
 
         add_user_form = AddUserToAssemblyForm()
 
@@ -462,6 +709,7 @@ def view_assembly_members(assembly_id: uuid.UUID) -> ResponseReturnValue:
             gsheet=gsheet,
             targets_enabled=targets_enabled,
             respondents_enabled=respondents_enabled,
+            selection_enabled=selection_enabled,
         ), 200
     except NotFoundError as e:
         current_app.logger.warning(f"Assembly {assembly_id} not found for user {current_user.id}: {e}")
diff --git a/backend/src/opendlp/entrypoints/blueprints/gsheets.py b/backend/src/opendlp/entrypoints/blueprints/gsheets.py
index 0ee7ae15..2889d749 100644
--- a/backend/src/opendlp/entrypoints/blueprints/gsheets.py
+++ b/backend/src/opendlp/entrypoints/blueprints/gsheets.py
@@ -18,6 +18,7 @@
     add_assembly_gsheet,
     get_assembly_gsheet,
     get_assembly_with_permissions,
+    get_csv_upload_status,
     remove_assembly_gsheet,
     update_assembly_gsheet,
 )
@@ -209,10 +210,30 @@ def view_assembly_selection(assembly_id: uuid.UUID) -> ResponseReturnValue:
         replacement_modal_open = request.args.get("replacement_modal") == "open" or current_replacement is not None
         edit_number_modal_open = request.args.get("edit_number") == "1"
 
+        # Get CSV status for tab enabled states
+        csv_status = None
+        try:
+            uow_csv = bootstrap.bootstrap()
+            csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
+        except Exception:  # noqa: S110
+            pass  # No CSV data - expected for new assemblies
+
         # Determine data source and tab enabled states
-        data_source = "gsheet" if gsheet else ""
-        targets_enabled = gsheet is not None
-        respondents_enabled = gsheet is not None
+        if gsheet:
+            data_source = "gsheet"
+            targets_enabled = True
+            respondents_enabled = True
+            selection_enabled = True
+        elif csv_status and (csv_status.get("has_targets") or csv_status.get("has_respondents")):
+            data_source = "csv"
+            targets_enabled = csv_status.get("has_targets", False)
+            respondents_enabled = csv_status.get("has_respondents", False)
+            selection_enabled = targets_enabled and respondents_enabled
+        else:
+            data_source = ""
+            targets_enabled = False
+            respondents_enabled = False
+            selection_enabled = False
 
         return render_template(
             "backoffice/assembly_selection.html",
@@ -242,6 +263,7 @@ def view_assembly_selection(assembly_id: uuid.UUID) -> ResponseReturnValue:
             data_source=data_source,
             targets_enabled=targets_enabled,
             respondents_enabled=respondents_enabled,
+            selection_enabled=selection_enabled,
         ), 200
     except NotFoundError as e:
         current_app.logger.warning(f"Assembly {assembly_id} not found for selection page: {e}")
diff --git a/backend/src/opendlp/service_layer/assembly_service.py b/backend/src/opendlp/service_layer/assembly_service.py
index 09db7f19..c3679f42 100644
--- a/backend/src/opendlp/service_layer/assembly_service.py
+++ b/backend/src/opendlp/service_layer/assembly_service.py
@@ -868,3 +868,110 @@ def update_csv_config(
         uow.commit()
 
         return csv_config.create_detached_copy()
+
+
+def get_csv_upload_status(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+) -> dict[str, Any]:
+    """Get CSV upload status for an assembly.
+
+    Returns a dict with:
+        - has_targets: bool - whether any targets have been uploaded
+        - targets_count: int - number of target categories
+        - has_respondents: bool - whether any respondents have been uploaded
+        - respondents_count: int - number of respondents
+        - csv_config: AssemblyCSV | None - the CSV config if exists
+    """
+    with uow:
+        user = uow.users.get(user_id)
+        if not user:
+            raise UserNotFoundError(f"User {user_id} not found")
+
+        assembly = uow.assemblies.get(assembly_id)
+        if not assembly:
+            raise AssemblyNotFoundError(f"Assembly {assembly_id} not found")
+
+        if not can_view_assembly(user, assembly):
+            raise InsufficientPermissions(
+                action="view CSV upload status",
+                required_role="assembly role or global privileges",
+            )
+
+        # Get targets count
+        targets = uow.target_categories.get_by_assembly_id(assembly_id)
+        targets_count = len(targets)
+
+        # Get respondents count
+        respondents = uow.respondents.get_by_assembly_id(assembly_id)
+        respondents_count = len(respondents)
+
+        # Get CSV config if exists
+        csv_config = assembly.csv.create_detached_copy() if assembly.csv else None
+
+        return {
+            "has_targets": targets_count > 0,
+            "targets_count": targets_count,
+            "has_respondents": respondents_count > 0,
+            "respondents_count": respondents_count,
+            "csv_config": csv_config,
+        }
+
+
+def delete_targets_for_assembly(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+) -> int:
+    """Delete all target categories for an assembly.
+
+    Returns the number of categories deleted.
+    """
+    with uow:
+        user = uow.users.get(user_id)
+        if not user:
+            raise UserNotFoundError(f"User {user_id} not found")
+
+        assembly = uow.assemblies.get(assembly_id)
+        if not assembly:
+            raise AssemblyNotFoundError(f"Assembly {assembly_id} not found")
+
+        if not can_manage_assembly(user, assembly):
+            raise InsufficientPermissions(
+                action="delete targets",
+                required_role="assembly-manager, global-organiser or admin",
+            )
+
+        count = uow.target_categories.delete_all_for_assembly(assembly_id)
+        uow.commit()
+        return count
+
+
+def delete_respondents_for_assembly(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+) -> int:
+    """Delete all respondents for an assembly.
+
+    Returns the number of respondents deleted.
+    """
+    with uow:
+        user = uow.users.get(user_id)
+        if not user:
+            raise UserNotFoundError(f"User {user_id} not found")
+
+        assembly = uow.assemblies.get(assembly_id)
+        if not assembly:
+            raise AssemblyNotFoundError(f"Assembly {assembly_id} not found")
+
+        if not can_manage_assembly(user, assembly):
+            raise InsufficientPermissions(
+                action="delete respondents",
+                required_role="assembly-manager, global-organiser or admin",
+            )
+
+        count = uow.respondents.delete_all_for_assembly(assembly_id)
+        uow.commit()
+        return count
diff --git a/backend/src/opendlp/service_layer/repositories.py b/backend/src/opendlp/service_layer/repositories.py
index 03d8a0f6..91db2a8f 100644
--- a/backend/src/opendlp/service_layer/repositories.py
+++ b/backend/src/opendlp/service_layer/repositories.py
@@ -397,6 +397,11 @@ def bulk_add(self, items: list[Respondent]) -> None:
         """Add multiple respondents in bulk."""
         raise NotImplementedError
 
+    @abc.abstractmethod
+    def delete_all_for_assembly(self, assembly_id: uuid.UUID) -> int:
+        """Delete all respondents for an assembly. Returns count deleted."""
+        raise NotImplementedError
+
     @abc.abstractmethod
     def bulk_mark_as_selected(
         self,
diff --git a/backend/templates/backoffice/assembly_data.html b/backend/templates/backoffice/assembly_data.html
index 3f027882..980a5328 100644
--- a/backend/templates/backoffice/assembly_data.html
+++ b/backend/templates/backoffice/assembly_data.html
@@ -5,7 +5,7 @@
 {% extends "backoffice/base_page.html" %}
 {% from "backoffice/components/breadcrumbs.html" import breadcrumbs %}
 {% from "backoffice/components/button.html" import button %}
-{% from "backoffice/components/input.html" import input, checkbox, radio_group, first_error as e %}
+{% from "backoffice/components/input.html" import input, checkbox, radio_group, file_input, first_error as e %}
 {% from "backoffice/components/assembly_tabs.html" import assembly_tabs %}
 
 {% block title %}{{ _("Data") }} - {{ assembly.title }}{% endblock %}
@@ -33,7 +33,8 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
     data_source=data_source,
     gsheet=gsheet,
     targets_enabled=targets_enabled|default(false),
-    respondents_enabled=respondents_enabled|default(false)
+    respondents_enabled=respondents_enabled|default(false),
+    selection_enabled=selection_enabled|default(false)
     ) }}
 
     {# Data Source Selector #}
@@ -328,11 +329,115 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
 
 {# CSV file content macro #}
 {% macro render_csv_content() %}
+    {% set has_targets = csv_status.has_targets|default(false) if csv_status else false %}
+    {% set has_respondents = csv_status.has_respondents|default(false) if csv_status else false %}
+    {% set targets_count = csv_status.targets_count|default(0) if csv_status else 0 %}
+    {% set respondents_count = csv_status.respondents_count|default(0) if csv_status else 0 %}
+
     <section class="mb-8">
-        <h2 class="text-heading-lg mb-4" style="color: var(--color-headings);">{{ _("CSV File") }}</h2>
-        <p class="text-body-md" style="color: var(--color-secondary-text);">
-            {{ _("Upload a CSV file to import participant data.") }}
+        <h2 class="text-heading-lg mb-4" style="color: var(--color-headings);">{{ _("CSV Files Upload") }}</h2>
+        <p class="text-body-md mb-6" style="color: var(--color-secondary-text);">
+            {{ _("Upload CSV files to import participant data. Upload targets first, then people.") }}
         </p>
-        {# TODO: Add CSV upload UI #}
+
+        <div class="grid grid-cols-1 md:grid-cols-2 gap-6">
+            {# Target Upload Card #}
+            <div class="rounded-lg p-6" style="background-color: var(--color-tables-cards); border: 1px solid var(--color-borders-dividers);">
+                <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Target") }}</h3>
+                <p class="text-body-sm mb-4" style="color: var(--color-secondary-text);">
+                    {{ _("Upload target categories for selection criteria.") }}
+                </p>
+
+                {% if has_targets %}
+                    {# Show uploaded status #}
+                    <div class="flex items-center gap-2 mb-4 p-3 rounded-lg" style="background-color: var(--color-subtle-background-panels);">
+                        <svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5" fill="none" viewBox="0 0 24 24" stroke="currentColor" style="color: var(--color-success-green);">
+                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M5 13l4 4L19 7" />
+                        </svg>
+                        <span class="text-body-sm" style="color: var(--color-body-text);">
+                            {{ _("%(count)d categories uploaded", count=targets_count) }}
+                        </span>
+                    </div>
+                    {# Delete button #}
+                    <form method="post" action="{{ url_for('backoffice.delete_targets', assembly_id=assembly.id) }}"
+                          x-data
+                          @submit.prevent="$confirm('{{ _("Are you sure you want to delete all targets? This action cannot be undone.") }}', $el)">
+                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
+                        {{ button(_("Delete Targets"), type="submit", variant="danger") }}
+                    </form>
+                {% else %}
+                    {# Upload form #}
+                    <form method="post" action="{{ url_for('backoffice.upload_targets_csv', assembly_id=assembly.id) }}" enctype="multipart/form-data">
+                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
+                        {{ file_input(
+                        name="file",
+                        label=_("CSV File"),
+                        accept=".csv",
+                        required=true,
+                        hint=_("Select a CSV file with target categories.")
+                        ) }}
+                        <div class="mt-4">
+                            {{ button(_("Upload"), type="submit", variant="primary") }}
+                        </div>
+                    </form>
+                {% endif %}
+            </div>
+
+            {# People Upload Card #}
+            <div class="rounded-lg p-6" style="background-color: var(--color-tables-cards); border: 1px solid var(--color-borders-dividers);">
+                <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("People") }}</h3>
+                <p class="text-body-sm mb-4" style="color: var(--color-secondary-text);">
+                    {{ _("Upload respondent data for selection.") }}
+                </p>
+
+                {% if has_respondents %}
+                    {# Show uploaded status #}
+                    <div class="flex items-center gap-2 mb-4 p-3 rounded-lg" style="background-color: var(--color-subtle-background-panels);">
+                        <svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5" fill="none" viewBox="0 0 24 24" stroke="currentColor" style="color: var(--color-success-green);">
+                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M5 13l4 4L19 7" />
+                        </svg>
+                        <span class="text-body-sm" style="color: var(--color-body-text);">
+                            {{ _("%(count)d respondents uploaded", count=respondents_count) }}
+                        </span>
+                    </div>
+                    {# Delete button #}
+                    <form method="post" action="{{ url_for('backoffice.delete_respondents', assembly_id=assembly.id) }}"
+                          x-data
+                          @submit.prevent="$confirm('{{ _("Are you sure you want to delete all respondents? This action cannot be undone.") }}', $el)">
+                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
+                        {{ button(_("Delete Respondents"), type="submit", variant="danger") }}
+                    </form>
+                {% elif has_targets %}
+                    {# Upload form (only enabled after targets uploaded) #}
+                    <form method="post" action="{{ url_for('backoffice.upload_respondents_csv', assembly_id=assembly.id) }}" enctype="multipart/form-data">
+                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
+                        {{ file_input(
+                        name="file",
+                        label=_("CSV File"),
+                        accept=".csv",
+                        required=true,
+                        hint=_("Select a CSV file with respondent data.")
+                        ) }}
+                        <div class="mt-4">
+                            {{ button(_("Upload"), type="submit", variant="primary") }}
+                        </div>
+                    </form>
+                {% else %}
+                    {# Disabled state - targets not yet uploaded #}
+                    <div class="opacity-50">
+                        {{ file_input(
+                        name="file",
+                        label=_("CSV File"),
+                        accept=".csv",
+                        disabled=true,
+                        hint=_("Upload targets first before uploading people.")
+                        ) }}
+                        <div class="mt-4">
+                            {{ button(_("Upload"), type="submit", variant="primary", disabled=true) }}
+                        </div>
+                    </div>
+                {% endif %}
+            </div>
+        </div>
     </section>
 {% endmacro %}
diff --git a/backend/templates/backoffice/assembly_details.html b/backend/templates/backoffice/assembly_details.html
index bf22f088..9776439e 100644
--- a/backend/templates/backoffice/assembly_details.html
+++ b/backend/templates/backoffice/assembly_details.html
@@ -31,7 +31,8 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
     data_source=data_source|default(""),
     gsheet=gsheet|default(none),
     targets_enabled=targets_enabled|default(false),
-    respondents_enabled=respondents_enabled|default(false)
+    respondents_enabled=respondents_enabled|default(false),
+    selection_enabled=selection_enabled|default(false)
     ) }}
 
     {# Assembly Question Section #}
diff --git a/backend/templates/backoffice/assembly_members.html b/backend/templates/backoffice/assembly_members.html
index 51156c3b..ca2221d7 100644
--- a/backend/templates/backoffice/assembly_members.html
+++ b/backend/templates/backoffice/assembly_members.html
@@ -34,7 +34,8 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
     data_source=data_source|default(""),
     gsheet=gsheet|default(none),
     targets_enabled=targets_enabled|default(false),
-    respondents_enabled=respondents_enabled|default(false)
+    respondents_enabled=respondents_enabled|default(false),
+    selection_enabled=selection_enabled|default(false)
     ) }}
 
     {# Team Members Section #}
diff --git a/backend/templates/backoffice/assembly_respondents.html b/backend/templates/backoffice/assembly_respondents.html
index 994628d0..617be83c 100644
--- a/backend/templates/backoffice/assembly_respondents.html
+++ b/backend/templates/backoffice/assembly_respondents.html
@@ -33,7 +33,8 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
     data_source=data_source,
     gsheet=gsheet,
     targets_enabled=targets_enabled,
-    respondents_enabled=respondents_enabled
+    respondents_enabled=respondents_enabled,
+    selection_enabled=selection_enabled|default(false)
     ) }}
 
     {% if data_source == "gsheet" and gsheet %}
@@ -77,7 +78,7 @@ <h2 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Res
     {% elif data_source == "csv" %}
         {# CSV source - placeholder for future implementation #}
         <section class="mb-8">
-            {{ alert(_("CSV respondents upload will be implemented here."), variant="info") }}
+            {{ alert(_("CSV respondents details will be visible here."), variant="info") }}
         </section>
     {% else %}
         {# No data source selected #}
diff --git a/backend/templates/backoffice/assembly_selection.html b/backend/templates/backoffice/assembly_selection.html
index ff78dea8..ac845729 100644
--- a/backend/templates/backoffice/assembly_selection.html
+++ b/backend/templates/backoffice/assembly_selection.html
@@ -30,7 +30,8 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
     data_source=data_source|default(""),
     gsheet=gsheet|default(none),
     targets_enabled=targets_enabled|default(false),
-    respondents_enabled=respondents_enabled|default(false)
+    respondents_enabled=respondents_enabled|default(false),
+    selection_enabled=selection_enabled|default(false)
     ) }}
     {# Selection Progress Modal - shown when current_selection parameter is present #}
     {# Pure HTMX approach: server controls close button state, HTMX swaps entire modal content #}
@@ -45,7 +46,13 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
     {% if edit_number_modal_open %}
         {% include "backoffice/components/edit_number_to_select_modal.html" %}
     {% endif %}
-    {% if not gsheet %}
+    {% if data_source == "csv" %}
+        {# CSV source - placeholder for future implementation #}
+        {{ alert(_("CSV based selection will be implemented here."), variant="info") }}
+        <section class="flex gap-4">
+            {{ button(_("Back to Dashboard") , href=url_for('backoffice.dashboard'), variant="outline") }}
+        </section>
+    {% elif not gsheet %}
         {# No Google Sheet configured - show configuration prompt #}
         {{ alert(_("Please use the Data tab to tell us about your data, before running a selection.") , variant="warning") }}
         <section class="flex gap-4">
diff --git a/backend/templates/backoffice/assembly_targets.html b/backend/templates/backoffice/assembly_targets.html
index 3b7adc67..db6ae6fa 100644
--- a/backend/templates/backoffice/assembly_targets.html
+++ b/backend/templates/backoffice/assembly_targets.html
@@ -33,7 +33,8 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
     data_source=data_source,
     gsheet=gsheet,
     targets_enabled=targets_enabled,
-    respondents_enabled=respondents_enabled
+    respondents_enabled=respondents_enabled,
+    selection_enabled=selection_enabled|default(false)
     ) }}
 
     {% if data_source == "gsheet" and gsheet %}
@@ -77,7 +78,7 @@ <h2 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Tar
     {% elif data_source == "csv" %}
         {# CSV source - placeholder for future implementation #}
         <section class="mb-8">
-            {{ alert(_("CSV targets upload will be implemented here."), variant="info") }}
+            {{ alert(_("CSV target details will be visible here."), variant="info") }}
         </section>
     {% else %}
         {# No data source selected #}
diff --git a/backend/templates/backoffice/components/assembly_tabs.html b/backend/templates/backoffice/components/assembly_tabs.html
index 091a52c4..6c2bba6d 100644
--- a/backend/templates/backoffice/components/assembly_tabs.html
+++ b/backend/templates/backoffice/components/assembly_tabs.html
@@ -4,7 +4,7 @@
 #}
 {% from "backoffice/components/tabs.html" import tabs %}
 
-{% macro assembly_tabs(assembly, active_tab, data_source="", gsheet=none, targets_enabled=false, respondents_enabled=false) %}
+{% macro assembly_tabs(assembly, active_tab, data_source="", gsheet=none, targets_enabled=false, respondents_enabled=false, selection_enabled=false) %}
     {#
     Render consistent assembly navigation tabs across all assembly pages.
 
@@ -15,11 +15,12 @@
         gsheet: Google Sheet configuration object (if exists)
         targets_enabled: Whether the Targets tab should be clickable
         respondents_enabled: Whether the Respondents tab should be clickable
+        selection_enabled: Whether the Selection tab should be clickable
 
     Usage:
         assembly_tabs(assembly, "details")
         assembly_tabs(assembly, "data", data_source="csv", targets_enabled=false)
-        assembly_tabs(assembly, "targets", data_source="gsheet", gsheet=gsheet, targets_enabled=true)
+        assembly_tabs(assembly, "targets", data_source="gsheet", gsheet=gsheet, targets_enabled=true, selection_enabled=true)
     #}
     {% set source_param = "?source=" ~ data_source if data_source else "" %}
 
@@ -50,7 +51,8 @@
     {
     "label": _("Selection"),
     "href": url_for('gsheets.view_assembly_selection', assembly_id=assembly.id) ~ source_param,
-    "active": active_tab == "selection"
+    "active": active_tab == "selection",
+    "disabled": not selection_enabled
     },
     {
     "label": _("Team Members"),
diff --git a/backend/templates/backoffice/patterns.html b/backend/templates/backoffice/patterns.html
index 0e88d20d..b5cef97d 100644
--- a/backend/templates/backoffice/patterns.html
+++ b/backend/templates/backoffice/patterns.html
@@ -470,7 +470,8 @@ <h4 class="text-heading-sm mb-2" style="color: var(--color-warning-600);">⚠️
                                 <li><strong>enctype="multipart/form-data"</strong> — {{ _("Required for file uploads") }}</li>
                                 <li><strong>utf-8-sig</strong> — {{ _("Handles BOM (byte order mark) in CSV files from Excel") }}</li>
                                 <li><strong>{{ _("Service layer receives string") }}</strong> — {{ _("Not the file object, for testability") }}</li>
-                                <li><strong>{{ _("CSRF token") }}</strong> — {{ _("form.hidden_tag() includes it automatically") }}</li>
+                                <li><strong>{{ _("CSRF token") }}</strong> — {{ _("form.hidden_tag() includes it automatically for Flask-WTF forms") }}</li>
+                                <li><strong>{{ _("Plain HTML forms") }}</strong> — {{ _("Add manual CSRF input:") }} <code>&lt;input type="hidden" name="csrf_token" value="&#123;&#123; csrf_token() &#125;&#125;"/&gt;</code></li>
                             </ul>
                         </div>
 
@@ -505,9 +506,29 @@ <h4 class="text-heading-sm mb-3" style="color: var(--color-headings);">
                                             <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">upload_respondents_csv route</td>
                                         </tr>
                                         <tr>
-                                            <td class="px-3 py-2 font-mono">templates/respondents/view_respondents.html</td>
-                                            <td class="px-3 py-2">27</td>
-                                            <td class="px-3 py-2">File upload form (old design)</td>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">templates/respondents/view_respondents.html</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">27</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">File upload form (old design)</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">templates/backoffice/assembly_data.html</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">370</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Upload targets CSV form (plain HTML)</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">templates/backoffice/assembly_data.html</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">412</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Upload respondents CSV form (plain HTML)</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">src/opendlp/entrypoints/blueprints/backoffice.py</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">325</td>
+                                            <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">upload_targets_csv route</td>
+                                        </tr>
+                                        <tr>
+                                            <td class="px-3 py-2 font-mono">src/opendlp/entrypoints/blueprints/backoffice.py</td>
+                                            <td class="px-3 py-2">414</td>
+                                            <td class="px-3 py-2">upload_respondents_csv route</td>
                                         </tr>
                                     </tbody>
                                 </table>
diff --git a/backend/tests/bdd/test_backoffice.py b/backend/tests/bdd/test_backoffice.py
index 9c9872c7..df18d655 100644
--- a/backend/tests/bdd/test_backoffice.py
+++ b/backend/tests/bdd/test_backoffice.py
@@ -2,12 +2,15 @@
 ABOUTME: Tests the separate design system used for admin interfaces"""
 
 import re
+import uuid
 
 import pytest
 from playwright.sync_api import Page, expect
 from pytest_bdd import given, parsers, scenarios, then, when
 
 from opendlp.domain.assembly import Assembly
+from opendlp.domain.respondents import Respondent
+from opendlp.domain.targets import TargetCategory, TargetValue
 from opendlp.domain.value_objects import AssemblyRole
 from opendlp.service_layer.assembly_service import add_assembly_gsheet, create_assembly
 from opendlp.service_layer.unit_of_work import SqlAlchemyUnitOfWork
@@ -1169,3 +1172,76 @@ def visit_assembly_respondents_page(page: Page, title: str, test_database):
     assembly_id = _assembly_name_id_cache.find_title(title, test_database)
     if assembly_id:
         page.goto(Urls.backoffice_respondents_assembly_url(assembly_id))
+
+
+@given(parsers.parse('the assembly "{title}" has targets uploaded'))
+def assembly_has_targets_uploaded(title: str, test_database):
+    """Create target categories for an assembly to simulate CSV upload."""
+    assembly_id = _assembly_name_id_cache.find_title(title, test_database)
+    if not assembly_id:
+        return
+
+    session_factory = test_database
+    uow = SqlAlchemyUnitOfWork(session_factory)
+    with uow:
+        # Create sample target categories
+        category = TargetCategory(
+            assembly_id=uuid.UUID(assembly_id),
+            name="Gender",
+            sort_order=0,
+        )
+        category.values = [
+            TargetValue(value="Male", min=10, max=20),
+            TargetValue(value="Female", min=10, max=20),
+        ]
+        uow.target_categories.add(category)
+        uow.commit()
+
+
+@given(parsers.parse('the assembly "{title}" has respondents uploaded'))
+def assembly_has_respondents_uploaded(title: str, test_database):
+    """Create respondents for an assembly to simulate CSV upload."""
+    assembly_id = _assembly_name_id_cache.find_title(title, test_database)
+    if not assembly_id:
+        return
+
+    session_factory = test_database
+    uow = SqlAlchemyUnitOfWork(session_factory)
+    with uow:
+        # Create sample respondents
+        respondents = []
+        for i in range(5):
+            respondent = Respondent(
+                assembly_id=uuid.UUID(assembly_id),
+                external_id=f"test-{i}",
+                attributes={"name": f"Test Person {i}", "Gender": "Male" if i % 2 == 0 else "Female"},
+            )
+            respondents.append(respondent)
+        uow.respondents.bulk_add(respondents)
+        uow.commit()
+
+
+@then("the Target upload button should be enabled")
+def target_upload_button_enabled(page: Page):
+    """Verify the Target section has an enabled upload button."""
+    # Look for an enabled submit button in the Target section
+    target_section = page.locator("text=Target").locator("..").locator("..")
+    upload_button = target_section.locator("button[type='submit'], input[type='submit']").first
+    expect(upload_button).to_be_enabled()
+
+
+@then("the People upload button should be disabled")
+def people_upload_button_disabled(page: Page):
+    """Verify the People section has a disabled upload button."""
+    # Look for a disabled button in the People section
+    people_section = page.locator("text=People").locator("..").locator("..")
+    disabled_button = people_section.locator("button[disabled], span[data-disabled='true']").first
+    expect(disabled_button).to_be_visible()
+
+
+@then("the People upload button should be enabled")
+def people_upload_button_enabled(page: Page):
+    """Verify the People section has an enabled upload button."""
+    people_section = page.locator("text=People").locator("..").locator("..")
+    upload_button = people_section.locator("button[type='submit'], input[type='submit']").first
+    expect(upload_button).to_be_enabled()
diff --git a/backend/tests/fakes.py b/backend/tests/fakes.py
index ef671041..40edabc2 100644
--- a/backend/tests/fakes.py
+++ b/backend/tests/fakes.py
@@ -535,6 +535,11 @@ def delete(self, item: Respondent) -> None:
     def bulk_add(self, items: list[Respondent]) -> None:
         self._items.extend(items)
 
+    def delete_all_for_assembly(self, assembly_id: uuid.UUID) -> int:
+        before = len(self._items)
+        self._items = [r for r in self._items if r.assembly_id != assembly_id]
+        return before - len(self._items)
+
     def bulk_mark_as_selected(
         self,
         assembly_id: uuid.UUID,

From f2316d3c0388d8a17230875d5e0058d65e5d3c1c Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Mon, 23 Mar 2026 10:14:27 +0100
Subject: [PATCH 11/31] Add selection service layer documentation

- Add Selection tab to /backoffice/dev/service-docs with documentation for:
  - check_db_selection_data()
  - start_db_select_task()
  - get_selection_run_status()
  - generate_selection_csvs()
  - cancel_task()
  - check_and_update_task_health()
  - get_respondent_attribute_columns()
  - translate_run_report_to_html()
- Update 453-csv-upload.md with sortition service layer functions
- Add "selection" to valid tabs in service_docs route

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../agent/453-csv-upload/453-csv-upload.md    | 146 ++++++
 .../entrypoints/blueprints/backoffice.py      |   2 +-
 .../templates/backoffice/service_docs.html    | 453 +++++++++++++++++-
 3 files changed, 599 insertions(+), 2 deletions(-)

diff --git a/backend/docs/agent/453-csv-upload/453-csv-upload.md b/backend/docs/agent/453-csv-upload/453-csv-upload.md
index fe5aa925..6f018aeb 100644
--- a/backend/docs/agent/453-csv-upload/453-csv-upload.md
+++ b/backend/docs/agent/453-csv-upload/453-csv-upload.md
@@ -464,6 +464,152 @@ def update_csv_config(
     """Update CSV configuration fields."""
 ```
 
+### Selection (sortition.py)
+
+These functions handle the CSV/DB-based selection flow (as opposed to Google Sheets).
+
+```python
+# sortition.py
+
+@dataclass
+class CheckDataResult:
+    """Result of validating targets and respondents against selection settings."""
+    success: bool
+    errors: list[str]
+    features_report_html: str
+    people_report_html: str
+    num_features: int
+    num_people: int
+
+def check_db_selection_data(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+) -> CheckDataResult:
+    """Synchronously validate targets and respondents against selection settings.
+
+    Loads features (targets) and people (respondents) from the database and
+    validates them against the assembly's selection settings. Returns detailed
+    error messages and HTML reports for display.
+
+    Used by: db_selection.check_db_data route (POST /assemblies/<id>/db_select/check)
+    """
+
+def start_db_select_task(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+    test_selection: bool = False,
+) -> uuid.UUID:
+    """Start a Celery task to run selection from DB-stored data.
+
+    Creates a SelectionRunRecord to track the task, then submits the
+    run_select_from_db Celery task. Returns the task_id (UUID) for tracking.
+
+    Args:
+        test_selection: If True, runs a test selection (doesn't save results)
+
+    Used by: db_selection.start_db_selection route (POST /assemblies/<id>/db_select/run)
+    """
+
+def generate_selection_csvs(
+    uow: AbstractUnitOfWork,
+    assembly_id: uuid.UUID,
+    task_id: uuid.UUID,
+) -> tuple[str, str]:
+    """Generate CSV exports for selected and remaining respondents.
+
+    Reconstructs the settings from the SelectionRunRecord and generates
+    CSV content for both selected participants and remaining pool.
+
+    Returns: (selected_csv_content, remaining_csv_content)
+
+    Raises:
+        SelectionRunRecordNotFoundError: If task not found
+        InvalidSelection: If selection has not completed
+
+    Used by: db_selection.download_selected_csv, download_remaining_csv routes
+    """
+
+@dataclass
+class RunResult:
+    """Base result class for selection run status."""
+    run_record: SelectionRunRecord | None
+    run_report: RunReport  # from sortition_algorithms
+    log_messages: list[str]
+    success: bool | None  # None = not finished
+
+def get_selection_run_status(uow: AbstractUnitOfWork, task_id: uuid.UUID) -> RunResult:
+    """Get the status of a selection run task.
+
+    Checks both the database record and Celery for current status.
+    Handles cases where Celery has forgotten old tasks (>24hrs).
+
+    Used by: db_selection.view_db_selection_with_run, db_selection_progress routes
+    """
+
+def cancel_task(
+    uow: AbstractUnitOfWork,
+    user_id: uuid.UUID,
+    assembly_id: uuid.UUID,
+    task_id: uuid.UUID,
+) -> None:
+    """Cancel a running or pending task.
+
+    Revokes the Celery task and updates the SelectionRunRecord to CANCELLED.
+
+    Raises:
+        InvalidSelection: If task not found or already finished
+        InsufficientPermissions: If user cannot manage the assembly
+
+    Used by: db_selection.cancel_db_selection route (POST /assemblies/<id>/db_select/<run_id>/cancel)
+    """
+
+def check_and_update_task_health(
+    uow: AbstractUnitOfWork,
+    task_id: uuid.UUID,
+    timeout_hours: int | None = None,
+) -> None:
+    """Check if a task is still alive and update its status if it has died.
+
+    Called during progress polling to detect crashed workers or timed-out tasks.
+    Only checks tasks in PENDING or RUNNING state.
+
+    Used by: db_selection.db_selection_progress route (progress polling)
+    """
+```
+
+### Respondent Helpers
+
+```python
+# respondent_service.py
+
+def get_respondent_attribute_columns(
+    uow: AbstractUnitOfWork,
+    assembly_id: uuid.UUID,
+) -> list[str]:
+    """Get sorted list of available respondent attribute column names for an assembly.
+
+    Used by: db_selection.view_db_selection_settings route for populating
+    the check_same_address_cols and columns_to_keep options.
+    """
+```
+
+### Report Translation
+
+```python
+# report_translation.py
+
+def translate_run_report_to_html(run_report: RunReport | None) -> str:
+    """Convert a sortition-algorithms RunReport to translated HTML.
+
+    Translates all messages in the report using the application's
+    i18n system and formats them as HTML for display.
+
+    Used by: All selection routes that display run progress/results
+    """
+```
+
 ---
 
 ## Technical Notes
diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index 1916fda9..ab42c0de 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -962,7 +962,7 @@ def service_docs() -> ResponseReturnValue:
 
     # Get active tab from query parameter, default to 'respondents'
     active_tab = request.args.get("tab", "respondents")
-    valid_tabs = ["respondents", "targets", "config"]
+    valid_tabs = ["respondents", "targets", "config", "selection"]
     if active_tab not in valid_tabs:
         active_tab = "respondents"
 
diff --git a/backend/templates/backoffice/service_docs.html b/backend/templates/backoffice/service_docs.html
index 8efae99a..6c75cdbe 100644
--- a/backend/templates/backoffice/service_docs.html
+++ b/backend/templates/backoffice/service_docs.html
@@ -44,7 +44,8 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">
         items=[
         {"label": _("Respondents"), "href": url_for('backoffice.service_docs', tab='respondents'), "active": active_tab == 'respondents'},
         {"label": _("Targets"), "href": url_for('backoffice.service_docs', tab='targets'), "active": active_tab == 'targets'},
-        {"label": _("CSV Config"), "href": url_for('backoffice.service_docs', tab='config'), "active": active_tab == 'config'}
+        {"label": _("CSV Config"), "href": url_for('backoffice.service_docs', tab='config'), "active": active_tab == 'config'},
+        {"label": _("Selection"), "href": url_for('backoffice.service_docs', tab='selection'), "active": active_tab == 'selection'}
         ],
         aria_label=_("Service categories")
         ) }}
@@ -619,6 +620,456 @@ <h4 class="text-heading-sm mb-4" style="color: var(--color-headings);">
             </div>
         {% endif %}
 
+        {# ===== SELECTION TAB ===== #}
+        {% if active_tab == 'selection' %}
+            <div class="space-y-6">
+                {# check_db_selection_data #}
+                {% call card(title="check_db_selection_data()", composed=true) %}
+                    {% call card_body() %}
+                        {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                sortition.py:386
+                            </code>
+                            <div class="flex gap-2">
+                                <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-warning-100); color: var(--color-warning-600);">
+                                    🔒 can_manage_assembly()
+                                </span>
+                            </div>
+                        </div>
+
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Synchronously validates targets and respondents against selection settings. Loads features (targets) and people (respondents) from the database and validates them. Returns detailed error messages and HTML reports.") }}
+                        </p>
+
+                        {# Parameters #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                <tbody>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">assembly_id</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UUID</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Target assembly ID</td>
+                                    </tr>
+                                </tbody>
+                            </table>
+                        </div>
+
+                        {# Returns #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Returns") }}</h4>
+                            <code class="text-body-sm px-2 py-1 rounded block mb-2" style="background-color: var(--color-subtle-background-panels);">
+                                CheckDataResult(success, errors, features_report_html, people_report_html, num_features, num_people)
+                            </code>
+                        </div>
+
+                        {# Used By #}
+                        <div class="mb-6 p-3 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("Used By") }}</h4>
+                            <p class="text-body-sm" style="color: var(--color-body-text);">
+                                <code>db_selection.check_db_data</code> — POST /assemblies/&lt;id&gt;/db_select/check
+                            </p>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+
+                {# start_db_select_task #}
+                {% call card(title="start_db_select_task()", composed=true) %}
+                    {% call card_body() %}
+                        {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                sortition.py:444
+                            </code>
+                            <div class="flex gap-2">
+                                <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-warning-100); color: var(--color-warning-600);">
+                                    🔒 can_manage_assembly()
+                                </span>
+                            </div>
+                        </div>
+
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Starts a Celery task to run selection from DB-stored data. Creates a SelectionRunRecord to track the task, then submits the run_select_from_db Celery task.") }}
+                        </p>
+
+                        {# Parameters #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                <tbody>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">assembly_id</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UUID</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Target assembly ID</td>
+                                    </tr>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono">test_selection</td>
+                                        <td class="px-3 py-2">bool</td>
+                                        <td class="px-3 py-2">❌</td>
+                                        <td class="px-3 py-2">If True, runs a test selection (doesn't save results)</td>
+                                    </tr>
+                                </tbody>
+                            </table>
+                        </div>
+
+                        {# Returns #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Returns") }}</h4>
+                            <code class="text-body-sm px-2 py-1 rounded block" style="background-color: var(--color-subtle-background-panels);">
+                                uuid.UUID  →  Task ID for tracking the selection run
+                            </code>
+                        </div>
+
+                        {# Used By #}
+                        <div class="mb-6 p-3 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("Used By") }}</h4>
+                            <p class="text-body-sm" style="color: var(--color-body-text);">
+                                <code>db_selection.start_db_selection</code> — POST /assemblies/&lt;id&gt;/db_select/run
+                            </p>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+
+                {# get_selection_run_status #}
+                {% call card(title="get_selection_run_status()", composed=true) %}
+                    {% call card_body() %}
+                        {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                sortition.py:610
+                            </code>
+                            <div class="flex gap-2">
+                                <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-success-100); color: var(--color-success-600);">
+                                    👁️ No permission required
+                                </span>
+                            </div>
+                        </div>
+
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Gets the status of a selection run task. Checks both the database record and Celery for current status. Handles cases where Celery has forgotten old tasks (>24hrs).") }}
+                        </p>
+
+                        {# Parameters #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                <tbody>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono">task_id</td>
+                                        <td class="px-3 py-2">UUID</td>
+                                        <td class="px-3 py-2">✅</td>
+                                        <td class="px-3 py-2">SelectionRunRecord task_id (not Celery task ID)</td>
+                                    </tr>
+                                </tbody>
+                            </table>
+                        </div>
+
+                        {# Returns #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Returns") }}</h4>
+                            <code class="text-body-sm px-2 py-1 rounded block" style="background-color: var(--color-subtle-background-panels);">
+                                RunResult(run_record, run_report, log_messages, success)
+                            </code>
+                        </div>
+
+                        {# Used By #}
+                        <div class="mb-6 p-3 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("Used By") }}</h4>
+                            <p class="text-body-sm" style="color: var(--color-body-text);">
+                                <code>db_selection.view_db_selection_with_run</code>, <code>db_selection.db_selection_progress</code>
+                            </p>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+
+                {# generate_selection_csvs #}
+                {% call card(title="generate_selection_csvs()", composed=true) %}
+                    {% call card_body() %}
+                        {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                sortition.py:501
+                            </code>
+                            <div class="flex gap-2">
+                                <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-success-100); color: var(--color-success-600);">
+                                    👁️ No permission required
+                                </span>
+                            </div>
+                        </div>
+
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Generates CSV exports for selected and remaining respondents. Reconstructs the settings from the SelectionRunRecord and generates CSV content for download.") }}
+                        </p>
+
+                        {# Parameters #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                <tbody>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">assembly_id</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UUID</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">Target assembly ID</td>
+                                    </tr>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono">task_id</td>
+                                        <td class="px-3 py-2">UUID</td>
+                                        <td class="px-3 py-2">✅</td>
+                                        <td class="px-3 py-2">SelectionRunRecord task_id</td>
+                                    </tr>
+                                </tbody>
+                            </table>
+                        </div>
+
+                        {# Returns #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Returns") }}</h4>
+                            <code class="text-body-sm px-2 py-1 rounded block" style="background-color: var(--color-subtle-background-panels);">
+                                tuple[str, str]  →  (selected_csv_content, remaining_csv_content)
+                            </code>
+                        </div>
+
+                        {# Error Cases #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Error Cases") }}</h4>
+                            <ul class="list-disc list-inside text-body-sm space-y-1" style="color: var(--color-body-text);">
+                                <li><code class="px-1 rounded" style="background-color: var(--color-error-100);">SelectionRunRecordNotFoundError</code> — Task not found</li>
+                                <li><code class="px-1 rounded" style="background-color: var(--color-error-100);">InvalidSelection</code> — Selection has not completed (no results)</li>
+                            </ul>
+                        </div>
+
+                        {# Used By #}
+                        <div class="mb-6 p-3 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("Used By") }}</h4>
+                            <p class="text-body-sm" style="color: var(--color-body-text);">
+                                <code>db_selection.download_selected_csv</code>, <code>db_selection.download_remaining_csv</code>
+                            </p>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+
+                {# cancel_task #}
+                {% call card(title="cancel_task()", composed=true) %}
+                    {% call card_body() %}
+                        {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                sortition.py:657
+                            </code>
+                            <div class="flex gap-2">
+                                <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-warning-100); color: var(--color-warning-600);">
+                                    🔒 can_manage_assembly()
+                                </span>
+                            </div>
+                        </div>
+
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Cancels a running or pending task. Revokes the Celery task and updates the SelectionRunRecord to CANCELLED status.") }}
+                        </p>
+
+                        {# Parameters #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                <tbody>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">assembly_id</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UUID</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">For permission checking</td>
+                                    </tr>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono">task_id</td>
+                                        <td class="px-3 py-2">UUID</td>
+                                        <td class="px-3 py-2">✅</td>
+                                        <td class="px-3 py-2">Task to cancel</td>
+                                    </tr>
+                                </tbody>
+                            </table>
+                        </div>
+
+                        {# Error Cases #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Error Cases") }}</h4>
+                            <ul class="list-disc list-inside text-body-sm space-y-1" style="color: var(--color-body-text);">
+                                <li><code class="px-1 rounded" style="background-color: var(--color-error-100);">InvalidSelection</code> — Task not found or already finished</li>
+                                <li><code class="px-1 rounded" style="background-color: var(--color-error-100);">InsufficientPermissions</code> — User cannot manage assembly</li>
+                            </ul>
+                        </div>
+
+                        {# Used By #}
+                        <div class="mb-6 p-3 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("Used By") }}</h4>
+                            <p class="text-body-sm" style="color: var(--color-body-text);">
+                                <code>db_selection.cancel_db_selection</code> — POST /assemblies/&lt;id&gt;/db_select/&lt;run_id&gt;/cancel
+                            </p>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+
+                {# check_and_update_task_health #}
+                {% call card(title="check_and_update_task_health()", composed=true) %}
+                    {% call card_body() %}
+                        {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                sortition.py:829
+                            </code>
+                            <div class="flex gap-2">
+                                <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-success-100); color: var(--color-success-600);">
+                                    👁️ No permission required
+                                </span>
+                            </div>
+                        </div>
+
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Checks if a task is still alive and updates its status if it has died. Called during progress polling to detect crashed workers, revoked tasks, or timed-out tasks. Only checks tasks in PENDING or RUNNING state.") }}
+                        </p>
+
+                        {# Parameters #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                <tbody>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono" style="border-bottom: 1px solid var(--color-borders-dividers);">task_id</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">UUID</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">✅</td>
+                                        <td class="px-3 py-2" style="border-bottom: 1px solid var(--color-borders-dividers);">SelectionRunRecord task_id</td>
+                                    </tr>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono">timeout_hours</td>
+                                        <td class="px-3 py-2">int | None</td>
+                                        <td class="px-3 py-2">❌</td>
+                                        <td class="px-3 py-2">Overrides env config timeout</td>
+                                    </tr>
+                                </tbody>
+                            </table>
+                        </div>
+
+                        {# Used By #}
+                        <div class="mb-6 p-3 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("Used By") }}</h4>
+                            <p class="text-body-sm" style="color: var(--color-body-text);">
+                                <code>db_selection.db_selection_progress</code> — Progress polling during selection run
+                            </p>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+
+                {# get_respondent_attribute_columns #}
+                {% call card(title="get_respondent_attribute_columns()", composed=true) %}
+                    {% call card_body() %}
+                        {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                respondent_service.py:223
+                            </code>
+                            <div class="flex gap-2">
+                                <span class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-success-100); color: var(--color-success-600);">
+                                    👁️ No permission required
+                                </span>
+                            </div>
+                        </div>
+
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Gets a sorted list of available respondent attribute column names for an assembly. Used to populate dropdown options for check_same_address_cols and columns_to_keep settings.") }}
+                        </p>
+
+                        {# Parameters #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                <tbody>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono">assembly_id</td>
+                                        <td class="px-3 py-2">UUID</td>
+                                        <td class="px-3 py-2">✅</td>
+                                        <td class="px-3 py-2">Target assembly ID</td>
+                                    </tr>
+                                </tbody>
+                            </table>
+                        </div>
+
+                        {# Returns #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Returns") }}</h4>
+                            <code class="text-body-sm px-2 py-1 rounded block" style="background-color: var(--color-subtle-background-panels);">
+                                list[str]  →  Sorted list of attribute column names from respondent data
+                            </code>
+                        </div>
+
+                        {# Used By #}
+                        <div class="mb-6 p-3 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("Used By") }}</h4>
+                            <p class="text-body-sm" style="color: var(--color-body-text);">
+                                <code>db_selection.view_db_selection_settings</code> — Selection settings page
+                            </p>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+
+                {# translate_run_report_to_html #}
+                {% call card(title="translate_run_report_to_html()", composed=true) %}
+                    {% call card_body() %}
+                        {# Code Reference #}
+                        <div class="flex items-center justify-between mb-4">
+                            <code class="text-body-sm px-2 py-1 rounded" style="background-color: var(--color-subtle-background-panels); color: var(--color-info-600);">
+                                report_translation.py
+                            </code>
+                        </div>
+
+                        {# Description #}
+                        <p class="text-body-md mb-4" style="color: var(--color-body-text);">
+                            {{ _("Converts a sortition-algorithms RunReport to translated HTML. Translates all messages in the report using the application's i18n system and formats them for display.") }}
+                        </p>
+
+                        {# Parameters #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Parameters") }}</h4>
+                            <table class="w-full text-body-sm" style="border: 1px solid var(--color-borders-dividers);">
+                                <tbody>
+                                    <tr>
+                                        <td class="px-3 py-2 font-mono">run_report</td>
+                                        <td class="px-3 py-2">RunReport | None</td>
+                                        <td class="px-3 py-2">✅</td>
+                                        <td class="px-3 py-2">Report from sortition-algorithms library</td>
+                                    </tr>
+                                </tbody>
+                            </table>
+                        </div>
+
+                        {# Returns #}
+                        <div class="mb-6">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-headings);">{{ _("Returns") }}</h4>
+                            <code class="text-body-sm px-2 py-1 rounded block" style="background-color: var(--color-subtle-background-panels);">
+                                str  →  Translated HTML string for display
+                            </code>
+                        </div>
+
+                        {# Used By #}
+                        <div class="mb-6 p-3 rounded-lg" style="background-color: var(--color-info-100); border: 1px solid var(--color-info-400);">
+                            <h4 class="text-heading-sm mb-2" style="color: var(--color-info-600);">{{ _("Used By") }}</h4>
+                            <p class="text-body-sm" style="color: var(--color-body-text);">
+                                All selection routes that display run progress/results
+                            </p>
+                        </div>
+                    {% endcall %}
+                {% endcall %}
+            </div>
+        {% endif %}
+
         {# Toast Notification #}
         <div x-cloak x-show="toast.show" x-transition
              class="fixed bottom-4 right-4 z-50 px-4 py-3 rounded-lg shadow-lg"

From 6590ad7c88a09e6ad32c93a60e30802b68620834 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Tue, 24 Mar 2026 06:54:56 +0100
Subject: [PATCH 12/31] Upgrade sortition-algorithms to 0.12.3

Revert accidental downgrade and update to latest version.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/pyproject.toml | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/backend/pyproject.toml b/backend/pyproject.toml
index cabd74bc..887cfdad 100644
--- a/backend/pyproject.toml
+++ b/backend/pyproject.toml
@@ -74,8 +74,8 @@ exclude-newer = "1 week"
 [tool.uv.exclude-newer-package]
 # we control this package, and frequently release it and want it straight in opendlp
 sortition-algorithms = "0 days"
-# for security update pyasn1 0.6.3 released 2026-03-17 - so can remove after 2026-03-24
-pyasn1 = "0 days"
+# for security update django 6.0.3 released 2026-03-03 - so can remove after 2026-03-10
+django = "0 days"
 
 [tool.mypy]
 files = ["src"]
@@ -223,12 +223,10 @@ preview = true
 source = ["src", "tests"]
 plugins = ["covdefaults"]
 omit = ["tests/bdd/*"]
-sigterm = true
 
 [tool.coverage.report]
 skip_empty = true
-# without this, the default is 100%, which means the tests exit non-zero
-fail_under = 80
+fail_under = 90
 
 [tool.deptry.per_rule_ignores]
 # these are not imported directly, but are used.

From a58d859fba139e556bf291ccdf5e7238d29f4999 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Tue, 24 Mar 2026 09:24:52 +0100
Subject: [PATCH 13/31] Fix BDD tests for Selection tab requiring gsheet
 configuration

Selection tab is now disabled when no data source is configured.
Updated test scenarios to include gsheet configuration where needed.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/features/backoffice.feature | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/backend/features/backoffice.feature b/backend/features/backoffice.feature
index cf96d6b2..6683aa88 100644
--- a/backend/features/backoffice.feature
+++ b/backend/features/backoffice.feature
@@ -34,6 +34,7 @@ Feature: Backoffice Dashboard
   Scenario: User can navigate to selection tab from assembly details
     Given I am logged in as an admin user
     And there is an assembly called "Selection Test Assembly"
+    And the assembly "Selection Test Assembly" has a gsheet configuration
     When I visit the assembly details page for "Selection Test Assembly"
     And I click the "Selection" tab
     Then I should see the assembly selection page
@@ -83,6 +84,7 @@ Feature: Backoffice Dashboard
   Scenario: Selection tab is accessible from all assembly tabs
     Given I am logged in as an admin user
     And there is an assembly called "Selection Tab Navigation Assembly"
+    And the assembly "Selection Tab Navigation Assembly" has a gsheet configuration
     When I visit the assembly data page for "Selection Tab Navigation Assembly"
     And I click the "Selection" tab
     Then I should see the assembly selection page

From 7cc1d2e93d3cba91f4634058c8999e44e17c85db Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Tue, 24 Mar 2026 14:44:12 +0000
Subject: [PATCH 14/31] Fix type error

By specifying Callable args and return type
---
 backend/src/opendlp/entrypoints/blueprints/backoffice.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index ab42c0de..7c941eb4 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -3,6 +3,7 @@
 
 import traceback
 import uuid
+from collections.abc import Callable
 from typing import Any
 
 from flask import Blueprint, abort, current_app, flash, jsonify, redirect, render_template, request, url_for
@@ -1166,7 +1167,7 @@ def _handle_update_csv_config(uow: Any, params: dict[str, Any]) -> dict[str, Any
 
 
 # Mapping of service names to their handler functions
-_SERVICE_HANDLERS: dict[str, Any] = {
+_SERVICE_HANDLERS: dict[str, Callable[[Any, dict[str, Any]], dict[str, Any]]] = {
     "import_respondents_from_csv": _handle_import_respondents,
     "import_targets_from_csv": _handle_import_targets,
     "get_or_create_csv_config": _handle_get_csv_config,

From 284ae56dbfe0f3c57c05009c6424fd9b26053619 Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Tue, 24 Mar 2026 10:09:30 +0000
Subject: [PATCH 15/31] re-upgrade pyasn1 for security issue

---
 backend/uv.lock | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/backend/uv.lock b/backend/uv.lock
index d8cd7909..6147baf6 100644
--- a/backend/uv.lock
+++ b/backend/uv.lock
@@ -3,12 +3,12 @@ revision = 3
 requires-python = "==3.12.*"
 
 [options]
-exclude-newer = "2026-03-13T17:32:17.968327362Z"
+exclude-newer = "2026-03-17T10:09:06.329762842Z"
 exclude-newer-span = "P1W"
 
 [options.exclude-newer-package]
-sortition-algorithms = { timestamp = "2026-03-20T17:32:17.968413134Z", span = "PT0S" }
-pyasn1 = { timestamp = "2026-03-20T17:32:17.969024258Z", span = "PT0S" }
+sortition-algorithms = { timestamp = "2026-03-24T10:09:06.329878189Z", span = "PT0S" }
+pyasn1 = { timestamp = "2026-03-24T10:09:06.330119503Z", span = "PT0S" }
 
 [[package]]
 name = "alembic"

From 3ad3da05ccc3531a5bbd7d6794dcf3f027bfc230 Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Tue, 24 Mar 2026 09:57:54 +0000
Subject: [PATCH 16/31] re-apply changes to pyproject.toml that were
 overwritten on this branch

---
 backend/pyproject.toml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/backend/pyproject.toml b/backend/pyproject.toml
index 887cfdad..cabd74bc 100644
--- a/backend/pyproject.toml
+++ b/backend/pyproject.toml
@@ -74,8 +74,8 @@ exclude-newer = "1 week"
 [tool.uv.exclude-newer-package]
 # we control this package, and frequently release it and want it straight in opendlp
 sortition-algorithms = "0 days"
-# for security update django 6.0.3 released 2026-03-03 - so can remove after 2026-03-10
-django = "0 days"
+# for security update pyasn1 0.6.3 released 2026-03-17 - so can remove after 2026-03-24
+pyasn1 = "0 days"
 
 [tool.mypy]
 files = ["src"]
@@ -223,10 +223,12 @@ preview = true
 source = ["src", "tests"]
 plugins = ["covdefaults"]
 omit = ["tests/bdd/*"]
+sigterm = true
 
 [tool.coverage.report]
 skip_empty = true
-fail_under = 90
+# without this, the default is 100%, which means the tests exit non-zero
+fail_under = 80
 
 [tool.deptry.per_rule_ignores]
 # these are not imported directly, but are used.

From 288ae9e336369a8eab2eb0cb2968daf9a7915554 Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Tue, 24 Mar 2026 15:41:53 +0000
Subject: [PATCH 17/31] refactor: use bulk DELETE for delete_all_for_assembly
 repository methods

Replace one-at-a-time session.delete() loops with single DELETE WHERE
statements in both TargetCategory and Respondent repositories.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 .../src/opendlp/adapters/sql_repository.py    | 25 ++++++++-----------
 1 file changed, 10 insertions(+), 15 deletions(-)

diff --git a/backend/src/opendlp/adapters/sql_repository.py b/backend/src/opendlp/adapters/sql_repository.py
index 8ba877c8..1ce3ac96 100644
--- a/backend/src/opendlp/adapters/sql_repository.py
+++ b/backend/src/opendlp/adapters/sql_repository.py
@@ -7,7 +7,7 @@
 from collections.abc import Iterable
 from datetime import UTC, datetime
 
-from sqlalchemy import and_, func, or_, select, update
+from sqlalchemy import and_, delete, func, or_, select, update
 from sqlalchemy.orm import Session
 
 from opendlp.adapters import orm
@@ -826,15 +826,13 @@ def delete(self, item: TargetCategory) -> None:
         self.session.delete(item)
 
     def delete_all_for_assembly(self, assembly_id: uuid.UUID) -> int:
-        categories = self.get_by_assembly_id(assembly_id)
-        count = len(categories)
-        for category in categories:
-            self.session.delete(category)
-        # Flush deletes to the DB so subsequent inserts with the same
+        # Expire cached instances so subsequent inserts with the same
         # unique constraint values (assembly_id, name) don't collide.
-        if count:
-            self.session.flush()
-        return count
+        self.session.expire_all()
+        result = self.session.execute(
+            delete(orm.target_categories).where(orm.target_categories.c.assembly_id == assembly_id)
+        )
+        return result.rowcount  # type: ignore[attr-defined, no-any-return]
 
 
 class SqlAlchemyRespondentRepository(SqlAlchemyRepository, RespondentRepository):
@@ -911,12 +909,9 @@ def bulk_add(self, items: list[Respondent]) -> None:
 
     def delete_all_for_assembly(self, assembly_id: uuid.UUID) -> int:
         """Delete all respondents for an assembly."""
-        respondents = self.get_by_assembly_id(assembly_id)
-        count = len(respondents)
-        for respondent in respondents:
-            self.session.delete(respondent)
-        self.session.flush()
-        return count
+        self.session.expire_all()
+        result = self.session.execute(delete(orm.respondents).where(orm.respondents.c.assembly_id == assembly_id))
+        return result.rowcount  # type: ignore[attr-defined, no-any-return]
 
     def bulk_mark_as_selected(
         self,

From 9a9b9a2f217d1264e38bd992c38d5d374a5dbc45 Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Tue, 24 Mar 2026 15:42:24 +0000
Subject: [PATCH 18/31] Use a small dataclass for CSVUploadStatus

rather than a dict - makes the code easier to read and reason about
---
 .../entrypoints/blueprints/backoffice.py      |  25 +-
 .../opendlp/entrypoints/blueprints/gsheets.py |   8 +-
 .../opendlp/service_layer/assembly_service.py |  38 ++-
 .../templates/backoffice/assembly_data.html   | 275 ++++++++----------
 4 files changed, 169 insertions(+), 177 deletions(-)

diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index 7c941eb4..6be140cc 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -21,6 +21,7 @@
     EditAssemblyGSheetForm,
 )
 from opendlp.service_layer.assembly_service import (
+    CSVUploadStatus,
     create_assembly,
     delete_respondents_for_assembly,
     delete_targets_for_assembly,
@@ -117,7 +118,7 @@ def view_assembly(assembly_id: uuid.UUID) -> ResponseReturnValue:
             pass  # No gsheet config exists - this is expected for new assemblies
 
         # Get CSV status
-        csv_status = None
+        csv_status: CSVUploadStatus | None = None
         try:
             uow_csv = bootstrap.bootstrap()
             csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
@@ -214,11 +215,11 @@ def edit_assembly(assembly_id: uuid.UUID) -> ResponseReturnValue:
         return redirect(url_for("backoffice.dashboard"))
 
 
-def _determine_data_source(gsheet: Any, csv_status: dict[str, Any] | None) -> tuple[str, bool]:
+def _determine_data_source(gsheet: Any, csv_status: CSVUploadStatus | None) -> tuple[str, bool]:
     """Determine data source and whether it's locked based on existing configs."""
     if gsheet:
         return "gsheet", True
-    if csv_status and (csv_status.get("has_targets") or csv_status.get("has_respondents")):
+    if csv_status and csv_status.has_data:
         return "csv", True
     # No config exists - allow user to choose source from query param
     data_source = request.args.get("source", "")
@@ -228,18 +229,14 @@ def _determine_data_source(gsheet: Any, csv_status: dict[str, Any] | None) -> tu
 
 
 def _get_tab_enabled_states(
-    data_source: str, gsheet: Any, csv_status: dict[str, Any] | None
+    data_source: str, gsheet: Any, csv_status: CSVUploadStatus | None
 ) -> tuple[bool, bool, bool]:
     """Determine whether targets, respondents, and selection tabs should be enabled."""
     if data_source == "gsheet":
         enabled = gsheet is not None
         return enabled, enabled, enabled
-    if data_source == "csv":
-        has_targets = csv_status.get("has_targets", False) if csv_status else False
-        has_respondents = csv_status.get("has_respondents", False) if csv_status else False
-        # Selection requires both targets and respondents
-        selection_enabled = has_targets and has_respondents
-        return has_targets, has_respondents, selection_enabled
+    if data_source == "csv" and csv_status:
+        return csv_status.has_targets, csv_status.has_respondents, csv_status.selection_enabled
     return False, False, False
 
 
@@ -302,7 +299,7 @@ def view_assembly_data(assembly_id: uuid.UUID) -> ResponseReturnValue:
             csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
         except Exception as csv_error:
             current_app.logger.error(f"Error loading CSV status: {csv_error}")
-            csv_status = {"has_targets": False, "targets_count": 0, "has_respondents": False, "respondents_count": 0}
+            csv_status = CSVUploadStatus(targets_count=0, respondents_count=0, csv_config=None)
 
         # Determine data source and locking
         data_source, data_source_locked = _determine_data_source(gsheet, csv_status)
@@ -561,7 +558,7 @@ def view_assembly_targets(assembly_id: uuid.UUID) -> ResponseReturnValue:
             pass  # No gsheet config exists - this is expected for new assemblies
 
         # Get CSV status
-        csv_status = None
+        csv_status: CSVUploadStatus | None = None
         try:
             uow_csv = bootstrap.bootstrap()
             csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
@@ -619,7 +616,7 @@ def view_assembly_respondents(assembly_id: uuid.UUID) -> ResponseReturnValue:
             pass  # No gsheet config exists - this is expected for new assemblies
 
         # Get CSV status
-        csv_status = None
+        csv_status: CSVUploadStatus | None = None
         try:
             uow_csv = bootstrap.bootstrap()
             csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
@@ -684,7 +681,7 @@ def view_assembly_members(assembly_id: uuid.UUID) -> ResponseReturnValue:
             pass  # No gsheet config exists - this is expected for new assemblies
 
         # Get CSV status
-        csv_status = None
+        csv_status: CSVUploadStatus | None = None
         try:
             uow_csv = bootstrap.bootstrap()
             csv_status = get_csv_upload_status(uow_csv, current_user.id, assembly_id)
diff --git a/backend/src/opendlp/entrypoints/blueprints/gsheets.py b/backend/src/opendlp/entrypoints/blueprints/gsheets.py
index 2889d749..d19100ba 100644
--- a/backend/src/opendlp/entrypoints/blueprints/gsheets.py
+++ b/backend/src/opendlp/entrypoints/blueprints/gsheets.py
@@ -224,11 +224,11 @@ def view_assembly_selection(assembly_id: uuid.UUID) -> ResponseReturnValue:
             targets_enabled = True
             respondents_enabled = True
             selection_enabled = True
-        elif csv_status and (csv_status.get("has_targets") or csv_status.get("has_respondents")):
+        elif csv_status and csv_status.has_data:
             data_source = "csv"
-            targets_enabled = csv_status.get("has_targets", False)
-            respondents_enabled = csv_status.get("has_respondents", False)
-            selection_enabled = targets_enabled and respondents_enabled
+            targets_enabled = csv_status.has_targets
+            respondents_enabled = csv_status.has_respondents
+            selection_enabled = csv_status.selection_enabled
         else:
             data_source = ""
             targets_enabled = False
diff --git a/backend/src/opendlp/service_layer/assembly_service.py b/backend/src/opendlp/service_layer/assembly_service.py
index c3679f42..7067d623 100644
--- a/backend/src/opendlp/service_layer/assembly_service.py
+++ b/backend/src/opendlp/service_layer/assembly_service.py
@@ -3,6 +3,7 @@
 
 import csv as csv_module
 import uuid
+from dataclasses import dataclass
 from datetime import UTC, date, datetime
 from io import StringIO
 from typing import Any, cast
@@ -870,11 +871,34 @@ def update_csv_config(
         return csv_config.create_detached_copy()
 
 
+@dataclass(kw_only=True)
+class CSVUploadStatus:
+    targets_count: int
+    respondents_count: int
+    csv_config: AssemblyCSV | None
+
+    @property
+    def has_targets(self) -> bool:
+        return self.targets_count > 0
+
+    @property
+    def has_respondents(self) -> bool:
+        return self.respondents_count > 0
+
+    @property
+    def has_data(self) -> bool:
+        return self.respondents_count > 0 or self.targets_count > 0
+
+    @property
+    def selection_enabled(self) -> bool:
+        return self.respondents_count > 0 and self.targets_count > 0
+
+
 def get_csv_upload_status(
     uow: AbstractUnitOfWork,
     user_id: uuid.UUID,
     assembly_id: uuid.UUID,
-) -> dict[str, Any]:
+) -> CSVUploadStatus:
     """Get CSV upload status for an assembly.
 
     Returns a dict with:
@@ -910,13 +934,11 @@ def get_csv_upload_status(
         # Get CSV config if exists
         csv_config = assembly.csv.create_detached_copy() if assembly.csv else None
 
-        return {
-            "has_targets": targets_count > 0,
-            "targets_count": targets_count,
-            "has_respondents": respondents_count > 0,
-            "respondents_count": respondents_count,
-            "csv_config": csv_config,
-        }
+        return CSVUploadStatus(
+            targets_count=targets_count,
+            respondents_count=respondents_count,
+            csv_config=csv_config,
+        )
 
 
 def delete_targets_for_assembly(
diff --git a/backend/templates/backoffice/assembly_data.html b/backend/templates/backoffice/assembly_data.html
index 980a5328..98aa918e 100644
--- a/backend/templates/backoffice/assembly_data.html
+++ b/backend/templates/backoffice/assembly_data.html
@@ -7,46 +7,36 @@
 {% from "backoffice/components/button.html" import button %}
 {% from "backoffice/components/input.html" import input, checkbox, radio_group, file_input, first_error as e %}
 {% from "backoffice/components/assembly_tabs.html" import assembly_tabs %}
-
 {% block title %}{{ _("Data") }} - {{ assembly.title }}{% endblock %}
-
 {% block breadcrumb_section %}
     <div class="mb-6">
         {{ breadcrumbs([
-        {"label": _("Dashboard"), "href": url_for('backoffice.dashboard')},
+        {"label": _("Dashboard") , "href": url_for('backoffice.dashboard')},
         {"label": assembly.title, "href": url_for('backoffice.view_assembly', assembly_id=assembly.id)},
         {"label": _("Data")}
         ]) }}
     </div>
 {% endblock %}
-
 {% block page_content %}
     {# Page Heading #}
     <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assembly.title }}</h1>
-    <p class="text-body-lg mb-6" style="color: var(--color-secondary-text);">
-        {{ _("Manage data for this assembly") }}
-    </p>
-
-    {{ assembly_tabs(
-    assembly=assembly,
+    <p class="text-body-lg mb-6" style="color: var(--color-secondary-text);">{{ _("Manage data for this assembly") }}</p>
+    {{ assembly_tabs(assembly=assembly,
     active_tab="data",
     data_source=data_source,
     gsheet=gsheet,
-    targets_enabled=targets_enabled|default(false),
+    targets_enabled=targets_enabled|default(false) ,
     respondents_enabled=respondents_enabled|default(false),
     selection_enabled=selection_enabled|default(false)
     ) }}
-
     {# Data Source Selector #}
     <section class="mb-8">
         <div class="max-w-md">
             <div class="flex flex-col gap-1.5"
-                 {% if not data_source_locked %}
-                     x-data="urlSelect({ baseUrl: '{{ url_for('backoffice.view_assembly_data', assembly_id=assembly.id) }}', paramName: 'source', initialValue: '{{ data_source }}' })"
-                 {% endif %}>
-                <label for="data_source" class="text-label-lg" style="color: var(--color-headings);">
-                    {{ _("Data Source") }}
-                </label>
+                 {% if not data_source_locked %} x-data="urlSelect({ baseUrl: '{{ url_for('backoffice.view_assembly_data', assembly_id=assembly.id) }}', paramName: 'source', initialValue: '{{ data_source }}' })" {% endif %}>
+                <label for="data_source"
+                       class="text-label-lg"
+                       style="color: var(--color-headings)">{{ _("Data Source") }}</label>
                 <p class="text-body-sm" style="color: var(--color-secondary-text);">
                     {% if data_source_locked %}
                         {{ _("Data source is locked because a configuration already exists. Delete the configuration to change the data source.") }}
@@ -54,22 +44,16 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
                         {{ _("Choose how you want to import participant data for this assembly.") }}
                     {% endif %}
                 </p>
-                <select
-                    name="data_source"
-                    id="data_source"
-                    {% if not data_source_locked %}
-                        x-model="selected"
-                        @change="navigate($event)"
-                    {% endif %}
-                    {% if data_source_locked %}disabled{% endif %}
-                    data-focus-id="data-source"
-                    class="text-body-md px-4 py-2.5 rounded-lg w-full transition-all duration-150 focus:outline-none focus:ring-2 focus:ring-offset-2 {% if data_source_locked %}cursor-not-allowed opacity-60{% else %}cursor-pointer{% endif %}"
-                    style="
-                           background-color: var(--color-page-background);
-                           border: 1px solid var(--color-borders-dividers);
-                           color: var(--color-body-text);
-                           --tw-ring-color: var(--color-focus-ring);
-                          ">
+                <select name="data_source"
+                        id="data_source"
+                        {% if not data_source_locked %}x-model="selected" @change="navigate($event)"{% endif %}
+                        {% if data_source_locked %}disabled{% endif %}
+                        data-focus-id="data-source"
+                        class="text-body-md px-4 py-2.5 rounded-lg w-full transition-all duration-150 focus:outline-none focus:ring-2 focus:ring-offset-2 {% if data_source_locked %}cursor-not-allowed opacity-60{% else %}cursor-pointer{% endif %}"
+                        style="background-color: var(--color-page-background);
+                               border: 1px solid var(--color-borders-dividers);
+                               color: var(--color-body-text);
+                               --tw-ring-color: var(--color-focus-ring)">
                     <option value="">{{ _("Select Data Source") }}</option>
                     <option value="gsheet" {% if data_source == 'gsheet' %}selected{% endif %}>{{ _("Google Spreadsheet") }}</option>
                     <option value="csv" {% if data_source == 'csv' %}selected{% endif %}>{{ _("CSV file") }}</option>
@@ -77,58 +61,55 @@ <h1 class="text-display-lg mb-2" style="color: var(--color-headings);">{{ assemb
             </div>
         </div>
     </section>
-
     {# Data Source Content #}
     {% if data_source == "gsheet" %}
         {{ render_gsheet_content() }}
     {% elif data_source == "csv" %}
         {{ render_csv_content() }}
     {% endif %}
-
     {# Actions #}
     <section class="flex gap-4">
-        {{ button(_("Back to Dashboard"), href=url_for('backoffice.dashboard'), variant="outline") }}
+        {{ button(_("Back to Dashboard") , href=url_for('backoffice.dashboard'), variant="outline") }}
     </section>
 {% endblock %}
-
-
 {# Google Spreadsheet content macro #}
 {% macro render_gsheet_content() %}
     {% set readonly = gsheet_mode == "view" %}
     {% set is_edit = gsheet_mode == "edit" %}
     {% set is_new = gsheet_mode == "new" or not gsheet %}
-
     <section class="mb-8">
         <div class="flex items-center justify-between mb-4">
             <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google Spreadsheet Configuration") }}</h2>
             {% if readonly %}
                 <div class="flex gap-2">
-                    {{ button(_("Edit Configuration"), href=url_for('backoffice.view_assembly_data', assembly_id=assembly.id) ~ "?source=gsheet&mode=edit", variant="outline") }}
-                    <form method="post" action="{{ url_for('gsheets.delete_gsheet_config', assembly_id=assembly.id) }}" class="inline"
+                    {{ button(_("Edit Configuration") , href=url_for('backoffice.view_assembly_data', assembly_id=assembly.id) ~ "?source=gsheet&mode=edit", variant="outline") }}
+                    <form method="post"
+                          action="{{ url_for('gsheets.delete_gsheet_config', assembly_id=assembly.id) }}"
+                          class="inline"
                           x-data
                           @submit.prevent="$confirm('{{ _("Are you sure you want to delete this Google Spreadsheet configuration? This action cannot be undone.") }}', $el)">
                         {{ gsheet_form.hidden_tag() }}
-                        {{ button(_("Delete"), type="submit", variant="danger") }}
+                        {{ button(_("Delete") , type="submit", variant="danger") }}
                     </form>
                 </div>
             {% endif %}
         </div>
-
         {% if is_new %}
             <p class="text-body-md mb-6" style="color: var(--color-secondary-text);">
                 {{ _("Configure a Google Spreadsheet to import and manage participant data for this assembly.") }}
             </p>
         {% endif %}
-
         {# Configuration Form / View #}
-        <div class="rounded-lg p-6 mb-6" style="background-color: var(--color-tables-cards); border: 1px solid var(--color-borders-dividers);">
-            <form method="post" action="{{ url_for('gsheets.save_gsheet_config', assembly_id=assembly.id) }}" class="flex flex-col gap-6">
+        <div class="rounded-lg p-6 mb-6"
+             style="background-color: var(--color-tables-cards);
+                    border: 1px solid var(--color-borders-dividers)">
+            <form method="post"
+                  action="{{ url_for('gsheets.save_gsheet_config', assembly_id=assembly.id) }}"
+                  class="flex flex-col gap-6">
                 {% if not readonly %}{{ gsheet_form.hidden_tag() }}{% endif %}
-
                 {# Spreadsheet URL #}
-                {{ input(
-                name="url",
-                label=_("Spreadsheet URL"),
+                {{ input(name="url",
+                label=_("Spreadsheet URL") ,
                 type="url",
                 value=gsheet_form.url.data or "",
                 placeholder="https://docs.google.com/spreadsheets/d/...",
@@ -139,7 +120,6 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
                 link_text=_("View Spreadsheet"),
                 error=e(gsheet_form.url.errors)
                 ) }}
-
                 {# Initial/Test Selection Fieldset #}
                 <fieldset class="flex flex-col gap-4">
                     <legend class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Initial/Test Selection") }}</legend>
@@ -147,18 +127,16 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
                         {{ _("Configure the tabs used for the initial selection process.") }}
                     </p>
                     <div class="grid grid-cols-1 md:grid-cols-2 gap-4">
-                        {{ input(
-                        name="select_registrants_tab",
-                        label=_("Respondents Tab"),
+                        {{ input(name="select_registrants_tab",
+                        label=_("Respondents Tab") ,
                         value=gsheet_form.select_registrants_tab.data or "",
                         placeholder=_("e.g., Respondents"),
                         hint=_("Tab containing respondent data for selection."),
                         readonly=readonly,
                         error=e(gsheet_form.select_registrants_tab.errors)
                         ) }}
-                        {{ input(
-                        name="select_targets_tab",
-                        label=_("Categories Tab"),
+                        {{ input(name="select_targets_tab",
+                        label=_("Categories Tab") ,
                         value=gsheet_form.select_targets_tab.data or "",
                         placeholder=_("e.g., Categories"),
                         hint=_("Tab containing selection categories/targets."),
@@ -167,7 +145,6 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
                         ) }}
                     </div>
                 </fieldset>
-
                 {# Replacement Fieldset #}
                 <fieldset class="flex flex-col gap-4">
                     <legend class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Replacement") }}</legend>
@@ -175,18 +152,16 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
                         {{ _("Configure the tabs used for replacement selections.") }}
                     </p>
                     <div class="grid grid-cols-1 md:grid-cols-2 gap-4">
-                        {{ input(
-                        name="replace_registrants_tab",
-                        label=_("Respondents Tab"),
+                        {{ input(name="replace_registrants_tab",
+                        label=_("Respondents Tab") ,
                         value=gsheet_form.replace_registrants_tab.data or "",
                         placeholder=_("e.g., Respondents"),
                         hint=_("Tab containing respondent data for replacements."),
                         readonly=readonly,
                         error=e(gsheet_form.replace_registrants_tab.errors)
                         ) }}
-                        {{ input(
-                        name="replace_targets_tab",
-                        label=_("Categories Tab"),
+                        {{ input(name="replace_targets_tab",
+                        label=_("Categories Tab") ,
                         value=gsheet_form.replace_targets_tab.data or "",
                         placeholder=_("e.g., Categories"),
                         hint=_("Tab containing replacement categories/targets."),
@@ -194,9 +169,8 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
                         error=e(gsheet_form.replace_targets_tab.errors)
                         ) }}
                     </div>
-                    {{ input(
-                    name="already_selected_tab",
-                    label=_("Already Selected Tab"),
+                    {{ input(name="already_selected_tab",
+                    label=_("Already Selected Tab") ,
                     value=gsheet_form.already_selected_tab.data or "",
                     placeholder=_("e.g., Selected"),
                     hint=_("Tab containing previously selected participants (for exclusion during replacement)."),
@@ -204,32 +178,27 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
                     error=e(gsheet_form.already_selected_tab.errors)
                     ) }}
                 </fieldset>
-
                 {# Options #}
                 <fieldset class="flex flex-col gap-4">
                     <legend class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Options") }}</legend>
-                    {{ checkbox(
-                    name="check_same_address",
-                    label=_("Check Same Address"),
+                    {{ checkbox(name="check_same_address",
+                    label=_("Check Same Address") ,
                     checked=gsheet_form.check_same_address.data,
                     hint=_("Prevent selecting multiple participants from the same address."),
                     readonly=readonly
                     ) }}
-                    {{ checkbox(
-                    name="generate_remaining_tab",
-                    label=_("Generate Remaining Tab"),
+                    {{ checkbox(name="generate_remaining_tab",
+                    label=_("Generate Remaining Tab") ,
                     checked=gsheet_form.generate_remaining_tab.data,
                     hint=_("Automatically generate a tab with remaining (unselected) participants."),
                     readonly=readonly
                     ) }}
                 </fieldset>
-
                 {# Team Selection - only show in edit mode as it's a form helper for autofilling, not a stored value #}
                 {% if not readonly %}
                     <div x-data="{ selectedTeam: '{{ gsheet_form.team.data or 'other' }}' }">
-                        {{ radio_group(
-                        name="team",
-                        label=_("Team Configuration"),
+                        {{ radio_group(name="team",
+                        label=_("Team Configuration") ,
                         options=[
                         {"value": "uk", "label": _("UK Team")},
                         {"value": "eu", "label": _("EU Team")},
@@ -241,30 +210,29 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
                         readonly=readonly,
                         attrs='x-model="selectedTeam"'
                         ) }}
-
                         {# Custom Configuration Fields (shown when team="other") #}
-                        <div x-show="selectedTeam === 'other'" x-cloak class="mt-4 flex flex-col gap-4 pl-8" style="border-left: 2px solid var(--color-borders-dividers);">
-                            {{ input(
-                            name="id_column",
-                            label=_("ID Column"),
+                        <div x-show="selectedTeam === 'other'"
+                             x-cloak
+                             class="mt-4 flex flex-col gap-4 pl-8"
+                             style="border-left: 2px solid var(--color-borders-dividers)">
+                            {{ input(name="id_column",
+                            label=_("ID Column") ,
                             value=gsheet_form.id_column.data or "",
                             placeholder=_("e.g., ID"),
                             hint=_("Column name containing unique participant identifiers."),
                             readonly=readonly,
                             error=e(gsheet_form.id_column.errors)
                             ) }}
-                            {{ input(
-                            name="check_same_address_cols_string",
-                            label=_("Address Columns"),
+                            {{ input(name="check_same_address_cols_string",
+                            label=_("Address Columns") ,
                             value=gsheet_form.check_same_address_cols_string.data or "",
                             placeholder=_("e.g., Street, City, PostCode"),
                             hint=_("Comma-separated column names used for address matching."),
                             readonly=readonly,
                             error=e(gsheet_form.check_same_address_cols_string.errors)
                             ) }}
-                            {{ input(
-                            name="columns_to_keep_string",
-                            label=_("Columns to Keep"),
+                            {{ input(name="columns_to_keep_string",
+                            label=_("Columns to Keep") ,
                             value=gsheet_form.columns_to_keep_string.data or "",
                             placeholder=_("e.g., Name, Email, Phone"),
                             hint=_("Comma-separated column names to include in output."),
@@ -277,81 +245,83 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
                     {# In view mode, show the actual saved column configuration values directly #}
                     <fieldset class="flex flex-col gap-4">
                         <legend class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Column Configuration") }}</legend>
-                        {{ input(
-                        name="id_column",
-                        label=_("ID Column"),
+                        {{ input(name="id_column",
+                        label=_("ID Column") ,
                         value=gsheet_form.id_column.data or "",
                         hint=_("Column name containing unique participant identifiers."),
                         readonly=readonly
                         ) }}
-                        {{ input(
-                        name="check_same_address_cols_string",
-                        label=_("Address Columns"),
+                        {{ input(name="check_same_address_cols_string",
+                        label=_("Address Columns") ,
                         value=gsheet_form.check_same_address_cols_string.data or "",
                         hint=_("Comma-separated column names used for address matching."),
                         readonly=readonly
                         ) }}
-                        {{ input(
-                        name="columns_to_keep_string",
-                        label=_("Columns to Keep"),
+                        {{ input(name="columns_to_keep_string",
+                        label=_("Columns to Keep") ,
                         value=gsheet_form.columns_to_keep_string.data or "",
                         hint=_("Comma-separated column names to include in output."),
                         readonly=readonly
                         ) }}
                     </fieldset>
                 {% endif %}
-
                 {# Form Actions #}
                 {% if not readonly %}
-                    <div class="flex gap-4 pt-4" style="border-top: 1px solid var(--color-borders-dividers);">
-                        {{ button(_("Save Configuration"), type="submit", variant="primary") }}
+                    <div class="flex gap-4 pt-4"
+                         style="border-top: 1px solid var(--color-borders-dividers)">
+                        {{ button(_("Save Configuration") , type="submit", variant="primary") }}
                         {% if is_edit %}
-                            {{ button(_("Cancel"), href=url_for('backoffice.view_assembly_data', assembly_id=assembly.id) ~ "?source=gsheet", variant="outline") }}
+                            {{ button(_("Cancel") , href=url_for('backoffice.view_assembly_data', assembly_id=assembly.id) ~ "?source=gsheet", variant="outline") }}
                         {% endif %}
                     </div>
                 {% endif %}
             </form>
             {# Delete button in edit mode - separate form outside the save form #}
             {% if is_edit %}
-                <div class="flex justify-end mt-4 pt-4" style="border-top: 1px solid var(--color-borders-dividers);">
-                    <form method="post" action="{{ url_for('gsheets.delete_gsheet_config', assembly_id=assembly.id) }}"
+                <div class="flex justify-end mt-4 pt-4"
+                     style="border-top: 1px solid var(--color-borders-dividers)">
+                    <form method="post"
+                          action="{{ url_for('gsheets.delete_gsheet_config', assembly_id=assembly.id) }}"
                           x-data
                           @submit.prevent="$confirm('{{ _("Are you sure you want to delete this Google Spreadsheet configuration? This action cannot be undone.") }}', $el)">
                         {{ gsheet_form.hidden_tag() }}
-                        {{ button(_("Delete Configuration"), type="submit", variant="danger") }}
+                        {{ button(_("Delete Configuration") , type="submit", variant="danger") }}
                     </form>
                 </div>
             {% endif %}
         </div>
     </section>
 {% endmacro %}
-
-
 {# CSV file content macro #}
 {% macro render_csv_content() %}
-    {% set has_targets = csv_status.has_targets|default(false) if csv_status else false %}
-    {% set has_respondents = csv_status.has_respondents|default(false) if csv_status else false %}
-    {% set targets_count = csv_status.targets_count|default(0) if csv_status else 0 %}
-    {% set respondents_count = csv_status.respondents_count|default(0) if csv_status else 0 %}
-
+    {% set has_targets = csv_status.has_targets if csv_status else false %}
+    {% set has_respondents = csv_status.has_respondents if csv_status else false %}
+    {% set targets_count = csv_status.targets_count if csv_status else 0 %}
+    {% set respondents_count = csv_status.respondents_count if csv_status else 0 %}
     <section class="mb-8">
         <h2 class="text-heading-lg mb-4" style="color: var(--color-headings);">{{ _("CSV Files Upload") }}</h2>
         <p class="text-body-md mb-6" style="color: var(--color-secondary-text);">
             {{ _("Upload CSV files to import participant data. Upload targets first, then people.") }}
         </p>
-
         <div class="grid grid-cols-1 md:grid-cols-2 gap-6">
             {# Target Upload Card #}
-            <div class="rounded-lg p-6" style="background-color: var(--color-tables-cards); border: 1px solid var(--color-borders-dividers);">
+            <div class="rounded-lg p-6"
+                 style="background-color: var(--color-tables-cards);
+                        border: 1px solid var(--color-borders-dividers)">
                 <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Target") }}</h3>
                 <p class="text-body-sm mb-4" style="color: var(--color-secondary-text);">
                     {{ _("Upload target categories for selection criteria.") }}
                 </p>
-
                 {% if has_targets %}
                     {# Show uploaded status #}
-                    <div class="flex items-center gap-2 mb-4 p-3 rounded-lg" style="background-color: var(--color-subtle-background-panels);">
-                        <svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5" fill="none" viewBox="0 0 24 24" stroke="currentColor" style="color: var(--color-success-green);">
+                    <div class="flex items-center gap-2 mb-4 p-3 rounded-lg"
+                         style="background-color: var(--color-subtle-background-panels)">
+                        <svg xmlns="http://www.w3.org/2000/svg"
+                             class="h-5 w-5"
+                             fill="none"
+                             viewBox="0 0 24 24"
+                             stroke="currentColor"
+                             style="color: var(--color-success-green)">
                             <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M5 13l4 4L19 7" />
                         </svg>
                         <span class="text-body-sm" style="color: var(--color-body-text);">
@@ -359,41 +329,47 @@ <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Tar
                         </span>
                     </div>
                     {# Delete button #}
-                    <form method="post" action="{{ url_for('backoffice.delete_targets', assembly_id=assembly.id) }}"
+                    <form method="post"
+                          action="{{ url_for('backoffice.delete_targets', assembly_id=assembly.id) }}"
                           x-data
                           @submit.prevent="$confirm('{{ _("Are you sure you want to delete all targets? This action cannot be undone.") }}', $el)">
-                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
-                        {{ button(_("Delete Targets"), type="submit", variant="danger") }}
+                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}" />
+                        {{ button(_("Delete Targets") , type="submit", variant="danger") }}
                     </form>
                 {% else %}
                     {# Upload form #}
-                    <form method="post" action="{{ url_for('backoffice.upload_targets_csv', assembly_id=assembly.id) }}" enctype="multipart/form-data">
-                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
-                        {{ file_input(
-                        name="file",
-                        label=_("CSV File"),
+                    <form method="post"
+                          action="{{ url_for('backoffice.upload_targets_csv', assembly_id=assembly.id) }}"
+                          enctype="multipart/form-data">
+                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}" />
+                        {{ file_input(name="file",
+                        label=_("CSV File") ,
                         accept=".csv",
                         required=true,
                         hint=_("Select a CSV file with target categories.")
                         ) }}
-                        <div class="mt-4">
-                            {{ button(_("Upload"), type="submit", variant="primary") }}
-                        </div>
+                        <div class="mt-4">{{ button(_("Upload") , type="submit", variant="primary") }}</div>
                     </form>
                 {% endif %}
             </div>
-
             {# People Upload Card #}
-            <div class="rounded-lg p-6" style="background-color: var(--color-tables-cards); border: 1px solid var(--color-borders-dividers);">
+            <div class="rounded-lg p-6"
+                 style="background-color: var(--color-tables-cards);
+                        border: 1px solid var(--color-borders-dividers)">
                 <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("People") }}</h3>
                 <p class="text-body-sm mb-4" style="color: var(--color-secondary-text);">
                     {{ _("Upload respondent data for selection.") }}
                 </p>
-
                 {% if has_respondents %}
                     {# Show uploaded status #}
-                    <div class="flex items-center gap-2 mb-4 p-3 rounded-lg" style="background-color: var(--color-subtle-background-panels);">
-                        <svg xmlns="http://www.w3.org/2000/svg" class="h-5 w-5" fill="none" viewBox="0 0 24 24" stroke="currentColor" style="color: var(--color-success-green);">
+                    <div class="flex items-center gap-2 mb-4 p-3 rounded-lg"
+                         style="background-color: var(--color-subtle-background-panels)">
+                        <svg xmlns="http://www.w3.org/2000/svg"
+                             class="h-5 w-5"
+                             fill="none"
+                             viewBox="0 0 24 24"
+                             stroke="currentColor"
+                             style="color: var(--color-success-green)">
                             <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M5 13l4 4L19 7" />
                         </svg>
                         <span class="text-body-sm" style="color: var(--color-body-text);">
@@ -401,40 +377,37 @@ <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Peo
                         </span>
                     </div>
                     {# Delete button #}
-                    <form method="post" action="{{ url_for('backoffice.delete_respondents', assembly_id=assembly.id) }}"
+                    <form method="post"
+                          action="{{ url_for('backoffice.delete_respondents', assembly_id=assembly.id) }}"
                           x-data
                           @submit.prevent="$confirm('{{ _("Are you sure you want to delete all respondents? This action cannot be undone.") }}', $el)">
-                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
-                        {{ button(_("Delete Respondents"), type="submit", variant="danger") }}
+                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}" />
+                        {{ button(_("Delete Respondents") , type="submit", variant="danger") }}
                     </form>
                 {% elif has_targets %}
                     {# Upload form (only enabled after targets uploaded) #}
-                    <form method="post" action="{{ url_for('backoffice.upload_respondents_csv', assembly_id=assembly.id) }}" enctype="multipart/form-data">
-                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
-                        {{ file_input(
-                        name="file",
-                        label=_("CSV File"),
+                    <form method="post"
+                          action="{{ url_for('backoffice.upload_respondents_csv', assembly_id=assembly.id) }}"
+                          enctype="multipart/form-data">
+                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}" />
+                        {{ file_input(name="file",
+                        label=_("CSV File") ,
                         accept=".csv",
                         required=true,
                         hint=_("Select a CSV file with respondent data.")
                         ) }}
-                        <div class="mt-4">
-                            {{ button(_("Upload"), type="submit", variant="primary") }}
-                        </div>
+                        <div class="mt-4">{{ button(_("Upload") , type="submit", variant="primary") }}</div>
                     </form>
                 {% else %}
                     {# Disabled state - targets not yet uploaded #}
                     <div class="opacity-50">
-                        {{ file_input(
-                        name="file",
-                        label=_("CSV File"),
+                        {{ file_input(name="file",
+                        label=_("CSV File") ,
                         accept=".csv",
                         disabled=true,
                         hint=_("Upload targets first before uploading people.")
                         ) }}
-                        <div class="mt-4">
-                            {{ button(_("Upload"), type="submit", variant="primary", disabled=true) }}
-                        </div>
+                        <div class="mt-4">{{ button(_("Upload") , type="submit", variant="primary", disabled=true) }}</div>
                     </div>
                 {% endif %}
             </div>

From da5c7e6262617b72850f523842f0c9da39a81204 Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Tue, 24 Mar 2026 16:05:04 +0000
Subject: [PATCH 19/31] test: add integration tests for delete_targets and
 delete_respondents service functions

Cover delete_targets_for_assembly and delete_respondents_for_assembly
with service-level tests (permissions, not-found, isolation, happy path)
and add repository-level tests for respondent bulk deletion.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 .../test_assembly_service_targets.py          | 143 +++++++++++++++++-
 .../integration/test_respondent_repository.py |  31 ++++
 2 files changed, 173 insertions(+), 1 deletion(-)

diff --git a/backend/tests/integration/test_assembly_service_targets.py b/backend/tests/integration/test_assembly_service_targets.py
index bbbf5d53..1bf7498a 100644
--- a/backend/tests/integration/test_assembly_service_targets.py
+++ b/backend/tests/integration/test_assembly_service_targets.py
@@ -9,12 +9,13 @@
 from opendlp.domain.assembly import Assembly
 from opendlp.domain.users import User
 from opendlp.domain.value_objects import GlobalRole
-from opendlp.service_layer import assembly_service
+from opendlp.service_layer import assembly_service, respondent_service
 from opendlp.service_layer.exceptions import (
     AssemblyNotFoundError,
     InsufficientPermissions,
     InvalidSelection,
     NotFoundError,
+    UserNotFoundError,
 )
 from opendlp.service_layer.unit_of_work import SqlAlchemyUnitOfWork
 
@@ -447,3 +448,143 @@ def test_delete_nonexistent_value_raises(self, admin_user: User, test_assembly:
         uow2 = SqlAlchemyUnitOfWork(postgres_session_factory)
         with pytest.raises(NotFoundError):
             assembly_service.delete_target_value(uow2, admin_user.id, test_assembly.id, category.id, uuid.uuid4())
+
+
+class TestDeleteTargetsForAssembly:
+    def test_delete_all_targets(self, admin_user: User, test_assembly: Assembly, postgres_session_factory):
+        """Test deleting all target categories for an assembly."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        assembly_service.create_target_category(uow, admin_user.id, test_assembly.id, "Gender", sort_order=0)
+        uow2 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        assembly_service.create_target_category(uow2, admin_user.id, test_assembly.id, "Age", sort_order=1)
+
+        uow3 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        count = assembly_service.delete_targets_for_assembly(uow3, admin_user.id, test_assembly.id)
+        assert count == 2
+
+        # Verify they're gone
+        uow4 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        cats = assembly_service.get_targets_for_assembly(uow4, admin_user.id, test_assembly.id)
+        assert len(cats) == 0
+
+    def test_delete_targets_returns_zero_when_none_exist(
+        self, admin_user: User, test_assembly: Assembly, postgres_session_factory
+    ):
+        """Test that deleting targets when none exist returns 0."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        count = assembly_service.delete_targets_for_assembly(uow, admin_user.id, test_assembly.id)
+        assert count == 0
+
+    def test_delete_targets_insufficient_permissions(
+        self, regular_user: User, test_assembly: Assembly, postgres_session_factory
+    ):
+        """Test that a regular user cannot delete targets."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        with pytest.raises(InsufficientPermissions):
+            assembly_service.delete_targets_for_assembly(uow, regular_user.id, test_assembly.id)
+
+    def test_delete_targets_nonexistent_assembly(self, admin_user: User, postgres_session_factory):
+        """Test that deleting targets for a nonexistent assembly raises error."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        with pytest.raises(AssemblyNotFoundError):
+            assembly_service.delete_targets_for_assembly(uow, admin_user.id, uuid.uuid4())
+
+    def test_delete_targets_nonexistent_user(self, test_assembly: Assembly, postgres_session_factory):
+        """Test that deleting targets with a nonexistent user raises error."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        with pytest.raises(UserNotFoundError):
+            assembly_service.delete_targets_for_assembly(uow, uuid.uuid4(), test_assembly.id)
+
+    def test_delete_targets_does_not_affect_other_assembly(
+        self, admin_user: User, test_assembly: Assembly, other_assembly: Assembly, postgres_session_factory
+    ):
+        """Test that deleting targets for one assembly doesn't affect another."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        assembly_service.create_target_category(uow, admin_user.id, test_assembly.id, "Gender")
+        uow2 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        assembly_service.create_target_category(uow2, admin_user.id, other_assembly.id, "Age")
+
+        # Delete only from test_assembly
+        uow3 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        assembly_service.delete_targets_for_assembly(uow3, admin_user.id, test_assembly.id)
+
+        # other_assembly targets should still exist
+        uow4 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        other_cats = assembly_service.get_targets_for_assembly(uow4, admin_user.id, other_assembly.id)
+        assert len(other_cats) == 1
+        assert other_cats[0].name == "Age"
+
+
+class TestDeleteRespondentsForAssembly:
+    def test_delete_all_respondents(self, admin_user: User, test_assembly: Assembly, postgres_session_factory):
+        """Test deleting all respondents for an assembly."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        respondent_service.create_respondent(
+            uow, admin_user.id, test_assembly.id, external_id="NB001", attributes={"Gender": "Male"}
+        )
+        uow2 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        respondent_service.create_respondent(
+            uow2, admin_user.id, test_assembly.id, external_id="NB002", attributes={"Gender": "Female"}
+        )
+
+        uow3 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        count = assembly_service.delete_respondents_for_assembly(uow3, admin_user.id, test_assembly.id)
+        assert count == 2
+
+        # Verify they're gone
+        uow4 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        with uow4:
+            respondents = uow4.respondents.get_by_assembly_id(test_assembly.id)
+            assert len(respondents) == 0
+
+    def test_delete_respondents_returns_zero_when_none_exist(
+        self, admin_user: User, test_assembly: Assembly, postgres_session_factory
+    ):
+        """Test that deleting respondents when none exist returns 0."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        count = assembly_service.delete_respondents_for_assembly(uow, admin_user.id, test_assembly.id)
+        assert count == 0
+
+    def test_delete_respondents_insufficient_permissions(
+        self, regular_user: User, test_assembly: Assembly, postgres_session_factory
+    ):
+        """Test that a regular user cannot delete respondents."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        with pytest.raises(InsufficientPermissions):
+            assembly_service.delete_respondents_for_assembly(uow, regular_user.id, test_assembly.id)
+
+    def test_delete_respondents_nonexistent_assembly(self, admin_user: User, postgres_session_factory):
+        """Test that deleting respondents for a nonexistent assembly raises error."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        with pytest.raises(AssemblyNotFoundError):
+            assembly_service.delete_respondents_for_assembly(uow, admin_user.id, uuid.uuid4())
+
+    def test_delete_respondents_nonexistent_user(self, test_assembly: Assembly, postgres_session_factory):
+        """Test that deleting respondents with a nonexistent user raises error."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        with pytest.raises(UserNotFoundError):
+            assembly_service.delete_respondents_for_assembly(uow, uuid.uuid4(), test_assembly.id)
+
+    def test_delete_respondents_does_not_affect_other_assembly(
+        self, admin_user: User, test_assembly: Assembly, other_assembly: Assembly, postgres_session_factory
+    ):
+        """Test that deleting respondents for one assembly doesn't affect another."""
+        uow = SqlAlchemyUnitOfWork(postgres_session_factory)
+        respondent_service.create_respondent(
+            uow, admin_user.id, test_assembly.id, external_id="NB001", attributes={"Gender": "Male"}
+        )
+        uow2 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        respondent_service.create_respondent(
+            uow2, admin_user.id, other_assembly.id, external_id="NB002", attributes={"Gender": "Female"}
+        )
+
+        # Delete only from test_assembly
+        uow3 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        assembly_service.delete_respondents_for_assembly(uow3, admin_user.id, test_assembly.id)
+
+        # other_assembly respondents should still exist
+        uow4 = SqlAlchemyUnitOfWork(postgres_session_factory)
+        with uow4:
+            other_resps = uow4.respondents.get_by_assembly_id(other_assembly.id)
+            assert len(other_resps) == 1
+            assert other_resps[0].external_id == "NB002"
diff --git a/backend/tests/integration/test_respondent_repository.py b/backend/tests/integration/test_respondent_repository.py
index 9d1bb0f3..1543ee8b 100644
--- a/backend/tests/integration/test_respondent_repository.py
+++ b/backend/tests/integration/test_respondent_repository.py
@@ -326,3 +326,34 @@ def test_get_attribute_columns_empty_when_no_respondents(
         """Test that get_attribute_columns returns empty list when no respondents exist."""
         columns = respondent_repo.get_attribute_columns(test_assembly.id)
         assert columns == []
+
+    def test_delete_all_for_assembly(
+        self, respondent_repo: SqlAlchemyRespondentRepository, test_assembly: Assembly, postgres_session: Session
+    ):
+        """Test deleting all respondents for an assembly."""
+        resp1 = Respondent(assembly_id=test_assembly.id, external_id="NB001", attributes={"Gender": "Male"})
+        resp2 = Respondent(assembly_id=test_assembly.id, external_id="NB002", attributes={"Gender": "Female"})
+        resp3 = Respondent(assembly_id=test_assembly.id, external_id="NB003", attributes={"Gender": "Male"})
+
+        respondent_repo.add(resp1)
+        respondent_repo.add(resp2)
+        respondent_repo.add(resp3)
+        postgres_session.commit()
+
+        # Delete all respondents for assembly
+        count = respondent_repo.delete_all_for_assembly(test_assembly.id)
+        postgres_session.commit()
+
+        assert count == 3
+
+        # Verify they're gone
+        respondents = respondent_repo.get_by_assembly_id(test_assembly.id)
+        assert len(respondents) == 0
+
+    def test_delete_all_for_assembly_returns_zero_when_none_exist(
+        self, respondent_repo: SqlAlchemyRespondentRepository, test_assembly: Assembly, postgres_session: Session
+    ):
+        """Test that delete_all_for_assembly returns 0 when no respondents exist."""
+        count = respondent_repo.delete_all_for_assembly(test_assembly.id)
+        postgres_session.commit()
+        assert count == 0

From fa08f3fb535fe4f14ee3f40f52b8da44180d2a2b Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Wed, 25 Mar 2026 09:42:48 +0100
Subject: [PATCH 20/31] Allow independent CSV uploads for targets and people

Remove the restriction that required targets to be uploaded before
people. Both CSV files can now be uploaded in any order.

Update BDD test to match the new behavior.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/features/backoffice-csv-upload.feature  |  4 ++--
 backend/templates/backoffice/assembly_data.html | 17 +++--------------
 2 files changed, 5 insertions(+), 16 deletions(-)

diff --git a/backend/features/backoffice-csv-upload.feature b/backend/features/backoffice-csv-upload.feature
index 3e4347b4..ba1ec3fa 100644
--- a/backend/features/backoffice-csv-upload.feature
+++ b/backend/features/backoffice-csv-upload.feature
@@ -63,12 +63,12 @@ Feature: Backoffice CSV Upload
     And I should see "Target"
     And I should see "People"
 
-  Scenario: Target upload button is active and People upload is disabled initially
+  Scenario: Both Target and People upload buttons are active initially
     Given I am logged in as an admin user
     And there is an assembly called "CSV Initial Upload State"
     When I visit the assembly data page for "CSV Initial Upload State" with source "csv"
     Then the Target upload button should be enabled
-    And the People upload button should be disabled
+    And the People upload button should be enabled
 
   Scenario: After uploading targets, People upload becomes active
     Given I am logged in as an admin user
diff --git a/backend/templates/backoffice/assembly_data.html b/backend/templates/backoffice/assembly_data.html
index 98aa918e..dfdb5c77 100644
--- a/backend/templates/backoffice/assembly_data.html
+++ b/backend/templates/backoffice/assembly_data.html
@@ -301,7 +301,7 @@ <h2 class="text-heading-lg" style="color: var(--color-headings);">{{ _("Google S
     <section class="mb-8">
         <h2 class="text-heading-lg mb-4" style="color: var(--color-headings);">{{ _("CSV Files Upload") }}</h2>
         <p class="text-body-md mb-6" style="color: var(--color-secondary-text);">
-            {{ _("Upload CSV files to import participant data. Upload targets first, then people.") }}
+            {{ _("Upload CSV files to import participant data.") }}
         </p>
         <div class="grid grid-cols-1 md:grid-cols-2 gap-6">
             {# Target Upload Card #}
@@ -384,8 +384,8 @@ <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Peo
                         <input type="hidden" name="csrf_token" value="{{ csrf_token() }}" />
                         {{ button(_("Delete Respondents") , type="submit", variant="danger") }}
                     </form>
-                {% elif has_targets %}
-                    {# Upload form (only enabled after targets uploaded) #}
+                {% else %}
+                    {# Upload form #}
                     <form method="post"
                           action="{{ url_for('backoffice.upload_respondents_csv', assembly_id=assembly.id) }}"
                           enctype="multipart/form-data">
@@ -398,17 +398,6 @@ <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Peo
                         ) }}
                         <div class="mt-4">{{ button(_("Upload") , type="submit", variant="primary") }}</div>
                     </form>
-                {% else %}
-                    {# Disabled state - targets not yet uploaded #}
-                    <div class="opacity-50">
-                        {{ file_input(name="file",
-                        label=_("CSV File") ,
-                        accept=".csv",
-                        disabled=true,
-                        hint=_("Upload targets first before uploading people.")
-                        ) }}
-                        <div class="mt-4">{{ button(_("Upload") , type="submit", variant="primary", disabled=true) }}</div>
-                    </div>
                 {% endif %}
             </div>
         </div>

From 9229f2329dda9da1721cdca44f25217a56437708 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Wed, 25 Mar 2026 10:15:50 +0100
Subject: [PATCH 21/31] github code quality suggested fix

---
 backend/src/opendlp/entrypoints/blueprints/backoffice.py | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index 6be140cc..89cc1a1d 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -1,7 +1,6 @@
 """ABOUTME: Backoffice routes for admin UI using Pines UI + Tailwind CSS
 ABOUTME: Provides /backoffice/* routes for dashboard, assembly CRUD, data source, and team members"""
 
-import traceback
 import uuid
 from collections.abc import Callable
 from typing import Any
@@ -1002,9 +1001,8 @@ def service_docs_execute() -> ResponseReturnValue:
         current_app.logger.exception("Full traceback:")
         return jsonify({
             "status": "error",
-            "error": str(e),
-            "error_type": type(e).__name__,
-            "traceback": traceback.format_exc(),
+            "error": "An internal error occurred while executing the service.",
+            "error_type": "InternalError",
         }), 500
 
 

From 4937db5fbbe63840ce05d73bd6acb8eec2aaea50 Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Wed, 25 Mar 2026 12:21:13 +0000
Subject: [PATCH 22/31] feat: collect coverage from BDD Flask/Celery
 subprocesses

Use COVERAGE_PROCESS_START mechanism instead of wrapping commands with
`coverage run`. Coverage's installed .pth file auto-instruments Python
subprocesses when the env var is set, and pytest-cov automatically
combines the resulting data files during its finalization.

- Replace _build_coverage_command() with _add_coverage_env() that sets
  COVERAGE_PROCESS_START and COVERAGE_FILE per subprocess
- Use --pool=solo for celery when collecting coverage to avoid prefork
  workers fighting over the data file
- Use start_new_session + os.killpg for clean process group termination
- Remove manual coverage combine step from justfile (pytest-cov handles it)

Also change the justfile to use spaces instead of tabs

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 backend/justfile              | 143 ++++++++++++++++++----------------
 backend/tests/bdd/conftest.py |  79 +++++++++++++------
 2 files changed, 133 insertions(+), 89 deletions(-)

diff --git a/backend/justfile b/backend/justfile
index 5dac2777..d131e78b 100644
--- a/backend/justfile
+++ b/backend/justfile
@@ -9,98 +9,111 @@ set dotenv-load
 # Test the code with pytest (HTML report)
 default: test-nobdd
 
-# Test the code with pytest, headless BDD, HTML report (combines BDD subprocess coverage)
+# Test the code with pytest, headless BDD, HTML report (includes BDD subprocess coverage)
 test-html:
-	#!/usr/bin/env bash
-	set -uo pipefail
-	echo "🚀 Testing code: Running pytest with BDD coverage"
-	BDD_COVERAGE=true CI=true uv run python -m pytest --tb=short --cov --cov-config=pyproject.toml; PYTEST_EXIT=$?
-	echo "🚀 Combining coverage data from BDD subprocesses"
-	uv run coverage combine --append 2>/dev/null || true
-	uv run coverage html
-	uv run coverage report --fail-under=90 || PYTEST_EXIT=2
-	exit $PYTEST_EXIT
-
-# Test the code with pytest, headless BDD, XML report (combines BDD subprocess coverage)
+  #!/usr/bin/env bash
+  set -uo pipefail
+  rm -f .coverage .coverage.bdd-*
+  echo "🚀 Testing code: Running pytest with BDD coverage"
+  BDD_COVERAGE=true CI=true uv run python -m pytest --tb=short --cov --cov-config=pyproject.toml; PYTEST_EXIT=$?
+  uv run coverage html
+  uv run coverage report --fail-under=90 || PYTEST_EXIT=2
+  echo "Independent processes for flask and celery - if not expected you might need to re-run:"
+  ps -ef | grep flask | grep 5002
+  ps -ef | grep celery | grep solo
+  exit $PYTEST_EXIT
+
+# Test the code with pytest, headless BDD, XML report (includes BDD subprocess coverage)
 test-xml:
-	#!/usr/bin/env bash
-	set -uo pipefail
-	echo "🚀 Testing code: Running pytest with BDD coverage"
-	BDD_COVERAGE=true CI=true uv run python -m pytest --tb=short --cov --cov-config=pyproject.toml; PYTEST_EXIT=$?
-	echo "🚀 Combining coverage data from BDD subprocesses"
-	uv run coverage combine --append 2>/dev/null || true
-	uv run coverage xml
-	uv run coverage report --fail-under=90 || PYTEST_EXIT=2
-	exit $PYTEST_EXIT
+  #!/usr/bin/env bash
+  set -uo pipefail
+  rm -f .coverage .coverage.bdd-*
+  echo "🚀 Testing code: Running pytest with BDD coverage"
+  BDD_COVERAGE=true CI=true uv run python -m pytest --tb=short --cov --cov-config=pyproject.toml; PYTEST_EXIT=$?
+  uv run coverage xml
+  uv run coverage report --fail-under=90 || PYTEST_EXIT=2
+  echo "Independent processes for flask and celery - if not expected you might need to re-run:"
+  ps -ef | grep flask | grep 5002
+  ps -ef | grep celery | grep solo
+  exit $PYTEST_EXIT
 
 # Test the code with pytest, headless BDD, HTML report
 test: test-html
 
 test-nobdd:
-	@echo "🚀 Testing code: Running pytest"
-	uv run python -m pytest --tb=short --ignore=tests/bdd --cov --cov-config=pyproject.toml --cov-report=html -n auto --maxprocesses=8
+  @echo "🚀 Testing code: Running pytest"
+  uv run python -m pytest --tb=short --ignore=tests/bdd --cov --cov-config=pyproject.toml --cov-report=html -n auto --maxprocesses=8
 
 # Run BDD tests with pytest-bdd and Playwright
 test-bdd:
-	@echo "🚀 Running BDD tests"
-	CI=true uv run python -m pytest tests/bdd/ --verbose --tb=short
+  @echo "🚀 Running BDD tests"
+  CI=true uv run python -m pytest tests/bdd/ --verbose --tb=short
+  echo "Independent processes for flask and celery - if not expected you might need to re-run:"
+  ps -ef | grep flask | grep 5002
+  ps -ef | grep celery | grep solo
 
 # Run backoffice BDD tests only
 test-backoffice:
-	@echo "🚀 Running backoffice BDD tests"
-	CI=true uv run python -m pytest tests/bdd/test_backoffice.py --verbose --tb=short
+  @echo "🚀 Running backoffice BDD tests"
+  CI=true uv run python -m pytest tests/bdd/test_backoffice.py --verbose --tb=short
 
 test-bdd-not-headless:
-	@echo "🚀 Running BDD tests"
-	uv run python -m pytest tests/bdd/ --verbose --tb=short
+  @echo "🚀 Running BDD tests"
+  uv run python -m pytest tests/bdd/ --verbose --tb=short
+  echo "Independent processes for flask and celery - if not expected you might need to re-run:"
+  ps -ef | grep flask | grep 5002
+  ps -ef | grep celery | grep solo
 
 # Run BDD tests in headless mode (for CI)
 test-bdd-headless:
-	@echo "🚀 Running BDD tests (headless)"
-	@CI=true uv run python -m pytest tests/bdd/ --verbose --tracing=retain-on-failure
+  @echo "🚀 Running BDD tests (headless)"
+  @CI=true uv run python -m pytest tests/bdd/ --verbose --tracing=retain-on-failure
+  echo "Independent processes for flask and celery - if not expected you might need to re-run:"
+  ps -ef | grep flask | grep 5002
+  ps -ef | grep celery | grep solo
 
 # run the tests when an files change
 watch-tests:
-	ls *.py | entr uv run pytest --tb=short --ignore=tests/bdd
+  ls *.py | entr uv run pytest --tb=short --ignore=tests/bdd
 
 # Install the virtual environment, dependencies, an editable copy of this install and install the prek hooks
 install:
-	@echo "🚀 Creating virtual environment using uv"
-	@uv sync
-	@echo "🚀 Setting up prek (pre-commit) hooks"
-	@uv tool run prek install
-	@echo "🚀 Install node dependencies & build CSS"
-	@npm install
-	@npm run build:sass
-	@npm run build:backoffice
-	@echo "🚀 Compile translations"
-	@uv run pybabel compile -d translations
+  @echo "🚀 Creating virtual environment using uv"
+  @uv sync
+  @echo "🚀 Setting up prek (pre-commit) hooks"
+  @uv tool run prek install
+  @echo "🚀 Install node dependencies & build CSS"
+  @npm install
+  @npm run build:sass
+  @npm run build:backoffice
+  @echo "🚀 Compile translations"
+  @uv run pybabel compile -d translations
 
 install-dev: install
-	@echo "🚀 Installing development dependencies"
-	@uv run playwright install
+  @echo "🚀 Installing development dependencies"
+  @uv run playwright install
 
 # Run code quality tools.
 check:
-	@echo "🚀 Checking lock file consistency with 'pyproject.toml'"
-	@uv lock --locked
-	@echo "🚀 Linting code: Running prek (pre-commit)"
-	@uv tool run prek run --all-files
-	@echo "🚀 Static type checking: Running mypy"
-	@uv run mypy
-	@echo "🚀 Checking for obsolete dependencies: Running deptry"
-	@uv run deptry src
+  @echo "🚀 Checking lock file consistency with 'pyproject.toml'"
+  @uv lock --locked
+  @echo "🚀 Linting code: Running prek (pre-commit)"
+  @uv tool run prek run --all-files
+  @echo "🚀 Static type checking: Running mypy"
+  @uv run mypy
+  @echo "🚀 Checking for obsolete dependencies: Running deptry"
+  @uv run deptry src
 
 # Run code quality tools - CI edition
 check-ci:
-	@echo "🚀 Checking lock file consistency with 'pyproject.toml'"
-	@uv lock --locked
-	@echo "🚀 Linting code: Running prek (pre-commit)"
-	@uv tool run prek run --all-files --config ../.pre-commit-config-ci.yaml
-	@echo "🚀 Static type checking: Running mypy"
-	@uv run mypy
-	@echo "🚀 Checking for obsolete dependencies: Running deptry"
-	@uv run deptry src
+  @echo "🚀 Checking lock file consistency with 'pyproject.toml'"
+  @uv lock --locked
+  @echo "🚀 Linting code: Running prek (pre-commit)"
+  @uv tool run prek run --all-files --config ../.pre-commit-config-ci.yaml
+  @echo "🚀 Static type checking: Running mypy"
+  @uv run mypy
+  @echo "🚀 Checking for obsolete dependencies: Running deptry"
+  @uv run deptry src
 
 # start the flask shell
 flask-shell:
@@ -197,20 +210,20 @@ translate-compile:
 
 # shut down docker
 stop-docker:
-	@docker compose down
+  @docker compose down
 
 # rebuild docker image
 build-docker:
-	@git show --no-patch --format='%cd %h' --date=format:'%Y-%m-%d' HEAD > generated_version.txt
-	@docker compose build
+  @git show --no-patch --format='%cd %h' --date=format:'%Y-%m-%d' HEAD > generated_version.txt
+  @docker compose build
 
 # start docker and detach - note NO WATCH
 start-docker:
-	@docker compose up --detach
+  @docker compose up --detach
 
 # start docker watching for changes and blocking - i.e. not detaching
 start-docker-b:
-	@docker compose up --watch
+  @docker compose up --watch
 
 # stop, rebuild, start docker and detach
 restart-docker: stop-docker build-docker start-docker
diff --git a/backend/tests/bdd/conftest.py b/backend/tests/bdd/conftest.py
index 67c34c32..d81713e8 100644
--- a/backend/tests/bdd/conftest.py
+++ b/backend/tests/bdd/conftest.py
@@ -1,6 +1,8 @@
+import contextlib
 import json
 import os
 import shutil
+import signal
 import subprocess
 import urllib.request
 import uuid
@@ -14,7 +16,7 @@
 from sqlalchemy.orm import Session, sessionmaker
 
 from opendlp.adapters import database, orm
-from opendlp.config import PostgresCfg
+from opendlp.config import PostgresCfg, to_bool
 from opendlp.domain.assembly import Assembly, AssemblyGSheet, SelectionRunRecord
 from opendlp.domain.users import User, UserAssemblyRole
 from opendlp.domain.value_objects import AssemblyRole, GlobalRole, SelectionRunStatus, SelectionTaskType
@@ -39,11 +41,45 @@
 CSV_FIXTURES_DIR = BACKEND_PATH / "tests" / "csv_fixtures" / "selection_data"
 
 
-def _build_coverage_command(base_module_args: list[str]) -> list[str]:
-    """Wrap a command with coverage run if BDD_COVERAGE is enabled."""
-    if os.environ.get("BDD_COVERAGE", "").lower() in ("1", "true"):
-        return ["uv", "run", "coverage", "run", "--parallel-mode", "-m", *base_module_args]
-    return ["uv", "run", *base_module_args]
+def _add_coverage_env(env: dict[str, str], label: str) -> None:
+    """Configure environment variables for automatic subprocess coverage.
+
+    Instead of wrapping commands with ``coverage run``, we use the
+    COVERAGE_PROCESS_START mechanism: coverage's installed .pth file
+    (a1_coverage.pth) calls ``coverage.process_startup()`` on every Python
+    start. When COVERAGE_PROCESS_START is set, this auto-instruments the
+    process. Each subprocess gets its own COVERAGE_FILE so data can be
+    reliably combined after the test run.
+
+    See https://coverage.readthedocs.io/en/latest/subprocess.html
+    """
+    if to_bool(os.environ.get("BDD_COVERAGE", "")):
+        rcfile = str(BACKEND_PATH / "pyproject.toml")
+        data_file = str(BACKEND_PATH / f".coverage.bdd-{label}") if label else str(BACKEND_PATH / ".coverage.bdd")
+        env["COVERAGE_PROCESS_START"] = rcfile
+        env["COVERAGE_FILE"] = data_file
+
+
+def _terminate_subprocess(process: subprocess.Popen, label: str) -> None:
+    """Terminate a subprocess and wait for it to exit cleanly.
+
+    Sends SIGTERM to the process group so that all child processes also receive
+    the signal. Falls back to SIGKILL after 10s.
+    """
+    try:
+        pgid = os.getpgid(process.pid)
+        os.killpg(pgid, signal.SIGTERM)
+    except ProcessLookupError:
+        print(f"{label} already exited")
+        return
+    try:
+        process.wait(timeout=10)
+    except subprocess.TimeoutExpired:
+        print(f"{label} did not exit within 10s, sending SIGKILL")
+        with contextlib.suppress(ProcessLookupError):
+            os.killpg(os.getpgid(process.pid), signal.SIGKILL)
+        process.wait()
+    print(f"{label} stopped (exit code: {process.returncode})")
 
 
 expect.set_options(timeout=PLAYWRIGHT_TIMEOUT)
@@ -173,11 +209,13 @@ def test_server(test_database, csv_test_data_dir):
     # Use CSV data source for testing instead of Google Sheets
     env["USE_CSV_DATA_SOURCE"] = "true"
     env["CSV_TEST_DATA_DIR"] = str(csv_test_data_dir)
+    _add_coverage_env(env, label="flask")
 
     process = subprocess.Popen(  # noqa: S603
-        _build_coverage_command(["flask", "run", f"--port={BDD_PORT}", "--host=127.0.0.1"]),
+        ["uv", "run", "flask", "run", f"--port={BDD_PORT}", "--host=127.0.0.1"],
         cwd=BACKEND_PATH,
         env=env,
+        start_new_session=True,
     )
 
     # Wait for server to start
@@ -186,14 +224,7 @@ def test_server(test_database, csv_test_data_dir):
 
     yield
 
-    # Cleanup
-    process.terminate()
-    try:
-        process.wait(timeout=5)
-    except subprocess.TimeoutExpired:
-        process.kill()
-        process.wait()
-    print("Test server stopped")
+    _terminate_subprocess(process, "Test server")
 
 
 @pytest.fixture(scope="session")
@@ -218,11 +249,18 @@ def test_celery_worker(test_database, csv_test_data_dir):
     # Use CSV data source for testing instead of Google Sheets
     env["USE_CSV_DATA_SOURCE"] = "true"
     env["CSV_TEST_DATA_DIR"] = str(csv_test_data_dir)
+    _add_coverage_env(env, label="celery")
 
+    celery_args = ["uv", "run", "celery", "--app", "opendlp.entrypoints.celery.tasks", "worker", "--loglevel=info"]
+    # When collecting coverage, use solo pool to avoid prefork spawning many child
+    # processes that each inherit coverage instrumentation and fight over the data file.
+    if to_bool(os.environ.get("BDD_COVERAGE", "")):
+        celery_args.extend(["--pool=solo"])
     process = subprocess.Popen(  # noqa: S603
-        _build_coverage_command(["celery", "--app", "opendlp.entrypoints.celery.tasks", "worker", "--loglevel=info"]),
+        celery_args,
         cwd=BACKEND_PATH,
         env=env,
+        start_new_session=True,
     )
     # wait for celery worker
     wait_for_celery_worker_to_come_up(celery_app)
@@ -230,14 +268,7 @@ def test_celery_worker(test_database, csv_test_data_dir):
 
     yield
 
-    # Cleanup
-    process.terminate()
-    try:
-        process.wait(timeout=5)
-    except subprocess.TimeoutExpired:
-        process.kill()
-        process.wait()
-    print("Test celery worker stopped")
+    _terminate_subprocess(process, "Test celery worker")
 
 
 @pytest.fixture(scope="session")

From c1aeee2a7b035f8f8770e054dac8c5f6c8172882 Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Wed, 25 Mar 2026 12:24:48 +0000
Subject: [PATCH 23/31] Update template wording for target category addition

---
 backend/templates/targets/view_targets.html | 66 ++++++++++-----------
 1 file changed, 30 insertions(+), 36 deletions(-)

diff --git a/backend/templates/targets/view_targets.html b/backend/templates/targets/view_targets.html
index b93877fd..f3438d5b 100644
--- a/backend/templates/targets/view_targets.html
+++ b/backend/templates/targets/view_targets.html
@@ -2,29 +2,27 @@
 {% block assembly_breadcrumbs %}<li class="govuk-breadcrumbs__list-item">{{ _("Targets") }}</li>{% endblock %}
 {% block assembly_content %}
     <h2 class="govuk-heading-l">{{ _("Target Categories") }}</h2>
-
     {% if target_categories %}
         <p class="govuk-body">{{ _("%(count)s categories defined.", count=target_categories|length) }}</p>
     {% else %}
         <p class="govuk-body">{{ _("No target categories defined yet.") }}</p>
     {% endif %}
-
     {# ── Check Targets Button ────────────────────────────── #}
     {% if target_categories %}
         <form method="post"
               action="{{ url_for('targets.check_targets', assembly_id=assembly.id) }}"
               class="govuk-!-margin-bottom-4">
             <input type="hidden" name="csrf_token" value="{{ csrf_token() }}" />
-            <button type="submit" class="govuk-button govuk-button--secondary" data-module="govuk-button">
-                {{ _("Check targets in detail") }}
-            </button>
+            <button type="submit"
+                    class="govuk-button govuk-button--secondary"
+                    data-module="govuk-button">{{ _("Check targets in detail") }}</button>
         </form>
     {% endif %}
-
     {# ── Check Result Display ────────────────────────────── #}
     {% if check_result is defined and check_result %}
         {% if check_result.success %}
-            <div class="govuk-notification-banner govuk-notification-banner--success" role="alert">
+            <div class="govuk-notification-banner govuk-notification-banner--success"
+                 role="alert">
                 <div class="govuk-notification-banner__header">
                     <h2 class="govuk-notification-banner__title">{{ _("All checks passed") }}</h2>
                 </div>
@@ -43,9 +41,7 @@ <h2 class="govuk-notification-banner__title">{{ _("All checks passed") }}</h2>
                         <h2 class="govuk-error-summary__title">{{ _("Target check found problems") }}</h2>
                         <div class="govuk-error-summary__body">
                             <ul class="govuk-list govuk-error-summary__list">
-                                {% for error_msg in check_result.global_errors %}
-                                    <li>{{ error_msg }}</li>
-                                {% endfor %}
+                                {% for error_msg in check_result.global_errors %}<li>{{ error_msg }}</li>{% endfor %}
                             </ul>
                         </div>
                     </div>
@@ -66,9 +62,7 @@ <h2 class="govuk-error-summary__title">{{ _("Target check found problems") }}</h
                         <div class="govuk-error-summary__body">
                             {% if check_result.global_errors %}
                                 <ul class="govuk-list govuk-error-summary__list">
-                                    {% for error_msg in check_result.global_errors %}
-                                        <li>{{ error_msg }}</li>
-                                    {% endfor %}
+                                    {% for error_msg in check_result.global_errors %}<li>{{ error_msg }}</li>{% endfor %}
                                 </ul>
                             {% endif %}
                             <p class="govuk-body">{{ _("See details below next to the affected targets.") }}</p>
@@ -78,7 +72,6 @@ <h2 class="govuk-error-summary__title">{{ _("Target check found problems") }}</h
             {% endif %}
         {% endif %}
     {% endif %}
-
     {# ── Category Blocks ─────────────────────────────────── #}
     <div id="target-categories">
         {% for category in target_categories %}
@@ -88,12 +81,10 @@ <h2 class="govuk-error-summary__title">{{ _("Target check found problems") }}</h
             {% include "targets/components/category_block.html" %}
         {% endfor %}
     </div>
-
     {# ── Add Category Form ────────────────────────────────── #}
     {% if can_manage %}
         {% include "targets/components/add_category_form.html" %}
     {% endif %}
-
     {# ── Respondent Attribute Columns ─────────────────────── #}
     {% if respondent_attribute_columns is defined and respondent_attribute_columns and can_manage %}
         {% set existing_category_names_lower = target_categories | map(attribute='name') | map('lower') | list %}
@@ -103,7 +94,6 @@ <h2 class="govuk-error-summary__title">{{ _("Target check found problems") }}</h
                 {% if available_columns.append(col) %}{% endif %}
             {% endif %}
         {% endfor %}
-
         {# Split into recommended (< 20 distinct values) and high cardinality (>= 20) #}
         {% set recommended_columns = [] %}
         {% set high_cardinality_columns = [] %}
@@ -116,18 +106,17 @@ <h2 class="govuk-error-summary__title">{{ _("Target check found problems") }}</h
                 {% if high_cardinality_columns.append(col) %}{% endif %}
             {% endif %}
         {% endfor %}
-
         {% if available_columns %}
             <hr class="govuk-section-break govuk-section-break--l govuk-section-break--visible">
             <h3 class="govuk-heading-m">{{ _("Respondent data columns") }}</h3>
-
             <form method="post"
                   action="{{ url_for('targets.add_categories_from_columns', assembly_id=assembly.id) }}">
                 <input type="hidden" name="csrf_token" value="{{ csrf_token() }}" />
-
                 {# ── Recommended columns (< 20 distinct values) ── #}
                 {% if recommended_columns %}
-                    <p class="govuk-body">{{ _("These columns have few distinct values and are likely useful as target categories. Their values will be added automatically.") }}</p>
+                    <p class="govuk-body">
+                        {{ _("These columns have few distinct values and are likely useful as target categories. Select the categories you want to use as targets.") }}
+                    </p>
                     <div class="govuk-checkboxes govuk-checkboxes--small">
                         {% for col in recommended_columns %}
                             {% set already_defined = col | lower in existing_category_names_lower %}
@@ -138,11 +127,11 @@ <h3 class="govuk-heading-m">{{ _("Respondent data columns") }}</h3>
                                        type="checkbox"
                                        value="{{ col }}"
                                        {% if already_defined %}disabled{% endif %} />
-                                <label class="govuk-label govuk-checkboxes__label" for="col-rec-{{ loop.index }}">
+                                <label class="govuk-label govuk-checkboxes__label"
+                                       for="col-rec-{{ loop.index }}">
                                     {{ col }}
-                                    <span class="govuk-hint govuk-!-margin-bottom-0 govuk-!-margin-left-1" style="display: inline;">
-                                        ({{ counts.get(col, 0) }} {{ _("values") }})
-                                    </span>
+                                    <span class="govuk-hint govuk-!-margin-bottom-0 govuk-!-margin-left-1"
+                                          style="display: inline">({{ counts.get(col, 0) }} {{ _("values") }})</span>
                                     {% if already_defined %}
                                         <strong class="govuk-tag govuk-tag--green govuk-!-margin-left-1">{{ _("already defined") }}</strong>
                                     {% endif %}
@@ -151,7 +140,6 @@ <h3 class="govuk-heading-m">{{ _("Respondent data columns") }}</h3>
                         {% endfor %}
                     </div>
                 {% endif %}
-
                 {# ── High cardinality columns (>= 20 distinct values) ── #}
                 {% if high_cardinality_columns %}
                     {% set has_selectable_high_card = [] %}
@@ -167,7 +155,9 @@ <h3 class="govuk-heading-m">{{ _("Respondent data columns") }}</h3>
                             </span>
                         </summary>
                         <div class="govuk-details__text">
-                            <p class="govuk-body">{{ _("These columns have many different values and probably aren't useful as target categories. Only the category will be created; values will not be added automatically.") }}</p>
+                            <p class="govuk-body">
+                                {{ _("These columns have many different values and probably aren't useful as target categories. Only the category will be created; values will not be added automatically.") }}
+                            </p>
                             <div class="govuk-checkboxes govuk-checkboxes--small">
                                 {% for col in high_cardinality_columns %}
                                     {% set already_defined = col | lower in existing_category_names_lower %}
@@ -178,9 +168,11 @@ <h3 class="govuk-heading-m">{{ _("Respondent data columns") }}</h3>
                                                type="checkbox"
                                                value="{{ col }}"
                                                {% if already_defined %}disabled{% endif %} />
-                                        <label class="govuk-label govuk-checkboxes__label" for="col-hc-{{ loop.index }}">
+                                        <label class="govuk-label govuk-checkboxes__label"
+                                               for="col-hc-{{ loop.index }}">
                                             {{ col }}
-                                            <span class="govuk-hint govuk-!-margin-bottom-0 govuk-!-margin-left-1" style="display: inline;">
+                                            <span class="govuk-hint govuk-!-margin-bottom-0 govuk-!-margin-left-1"
+                                                  style="display: inline">
                                                 ({{ counts.get(col, 0) }} {{ _("values") }})
                                             </span>
                                             {% if already_defined %}
@@ -193,14 +185,12 @@ <h3 class="govuk-heading-m">{{ _("Respondent data columns") }}</h3>
                         </div>
                     </details>
                 {% endif %}
-
-                <button type="submit" class="govuk-button govuk-button--secondary govuk-!-margin-top-4" data-module="govuk-button">
-                    {{ _("Add selected categories") }}
-                </button>
+                <button type="submit"
+                        class="govuk-button govuk-button--secondary govuk-!-margin-top-4"
+                        data-module="govuk-button">{{ _("Add selected categories") }}</button>
             </form>
         {% endif %}
     {% endif %}
-
     {# ── CSV Import (collapsible) ─────────────────────────── #}
     <hr class="govuk-section-break govuk-section-break--l govuk-section-break--visible">
     <details class="govuk-details">
@@ -232,7 +222,9 @@ <h2 class="govuk-error-summary__title">{{ _("There is a problem") }}</h2>
                             <ul class="govuk-list govuk-error-summary__list">
                                 {% for field_name, errors in form.errors.items() %}
                                     {% for error in errors %}
-                                        <li><a href="#{{ form[field_name].id }}">{{ error }}</a></li>
+                                        <li>
+                                            <a href="#{{ form[field_name].id }}">{{ error }}</a>
+                                        </li>
                                     {% endfor %}
                                 {% endfor %}
                             </ul>
@@ -255,7 +247,9 @@ <h2 class="govuk-error-summary__title">{{ _("There is a problem") }}</h2>
                     {% endif %}
                     {{ form.csv_file(class="govuk-file-upload") }}
                 </div>
-                <button type="submit" class="govuk-button govuk-button--secondary" data-module="govuk-button">{{ _("Upload CSV") }}</button>
+                <button type="submit"
+                        class="govuk-button govuk-button--secondary"
+                        data-module="govuk-button">{{ _("Upload CSV") }}</button>
             </form>
         </div>
     </details>

From 261de4621ca712e93f4f6a651180754d194c0dd8 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Wed, 25 Mar 2026 16:27:02 +0100
Subject: [PATCH 24/31] docs: add architecture documentation with Mermaid
 diagrams

Documents blueprint and service layer architecture with visual diagrams
showing dependencies, route mappings, and recommendations for potential
code organization improvements.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/docs/architecture.md | 770 +++++++++++++++++++++++++++++++++++
 1 file changed, 770 insertions(+)
 create mode 100644 backend/docs/architecture.md

diff --git a/backend/docs/architecture.md b/backend/docs/architecture.md
new file mode 100644
index 00000000..123e9d9f
--- /dev/null
+++ b/backend/docs/architecture.md
@@ -0,0 +1,770 @@
+# OpenDLP Backend Architecture
+
+This document provides a visual and textual overview of the Flask backend architecture, including blueprints, services, and their relationships.
+
+## Table of Contents
+
+- [High-Level Architecture](#high-level-architecture)
+- [Blueprint Overview](#blueprint-overview)
+- [Service Layer Overview](#service-layer-overview)
+- [Blueprint-Service Dependencies](#blueprint-service-dependencies)
+- [Detailed Blueprint Analysis](#detailed-blueprint-analysis)
+- [Detailed Service Analysis](#detailed-service-analysis)
+- [Developer Tools (/dev/)](#developer-tools-dev)
+
+---
+
+## High-Level Architecture
+
+```mermaid
+flowchart TB
+    subgraph Entrypoints["Entrypoints (Blueprints)"]
+        direction LR
+        admin[admin]
+        auth[auth]
+        main[main]
+        profile[profile]
+        backoffice[backoffice]
+        gsheets[gsheets]
+        db_selection[db_selection]
+        respondents[respondents]
+        targets[targets]
+        health[health]
+    end
+
+    subgraph Services["Service Layer"]
+        direction LR
+        assembly_service[assembly_service]
+        user_service[user_service]
+        respondent_service[respondent_service]
+        sortition[sortition]
+        invite_service[invite_service]
+        two_factor_service[two_factor_service]
+        email_confirmation_service[email_confirmation_service]
+        password_reset_service[password_reset_service]
+        totp_service[totp_service]
+        login_rate_limit_service[login_rate_limit_service]
+        permissions[permissions]
+        target_checking[target_checking]
+    end
+
+    subgraph Data["Data Layer"]
+        direction LR
+        repositories[Repositories]
+        models[SQLAlchemy Models]
+        db[(PostgreSQL)]
+    end
+
+    subgraph Background["Background Tasks"]
+        celery[Celery Workers]
+        redis[(Redis)]
+    end
+
+    Entrypoints --> Services
+    Services --> Data
+    Services --> Background
+    repositories --> db
+    celery --> redis
+```
+
+---
+
+## Blueprint Overview
+
+All blueprints are located in `src/opendlp/entrypoints/blueprints/`.
+
+```mermaid
+flowchart LR
+    subgraph Public["Public Routes"]
+        auth["/login, /register, /logout"]
+        health["/health"]
+    end
+
+    subgraph Authenticated["Authenticated Routes"]
+        main["/dashboard, /assemblies/*"]
+        profile["/profile/*"]
+    end
+
+    subgraph Assembly["Assembly-Scoped Routes"]
+        gsheets["/assembly/*/selection, /assembly/*/replacement"]
+        db_selection["/assemblies/*/db_select"]
+        respondents_bp["/assemblies/*/respondents"]
+        targets_bp["/assemblies/*/targets"]
+    end
+
+    subgraph Admin["Admin Routes"]
+        admin["/admin/*"]
+        backoffice["/backoffice/*"]
+        dev["/backoffice/dev/* (dev only)"]
+    end
+
+    Public --> Authenticated
+    Authenticated --> Assembly
+    Authenticated --> Admin
+```
+
+### Blueprint Summary Table
+
+| Blueprint | URL Prefix | Purpose | Auth Required | Admin Only |
+|-----------|------------|---------|---------------|------------|
+| `health` | `/health` | Health checks | No | No |
+| `auth` | `/` | Login, register, password reset, OAuth | No | No |
+| `main` | `/` | Dashboard, assembly CRUD | Yes | No |
+| `profile` | `/profile` | User profile, 2FA settings | Yes | No |
+| `gsheets` | `/assembly` | Google Sheets selection/replacement | Yes | No |
+| `db_selection` | `/assemblies` | Database-based selection | Yes | No |
+| `respondents` | `/assemblies` | Respondent management | Yes | No |
+| `targets` | `/assemblies` | Target management | Yes | No |
+| `admin` | `/admin` | User and invite management | Yes | Yes |
+| `backoffice` | `/backoffice` | New admin interface | Yes | Yes |
+
+---
+
+## Service Layer Overview
+
+All services are located in `src/opendlp/services/`.
+
+```mermaid
+flowchart TB
+    subgraph Core["Core Domain Services"]
+        assembly_service["assembly_service.py
+        - Assembly CRUD
+        - GSheet config
+        - Target management
+        - CSV config"]
+
+        respondent_service["respondent_service.py
+        - Respondent CRUD
+        - CSV import
+        - Attribute analysis"]
+
+        sortition["sortition.py
+        - Selection algorithms
+        - Celery task management
+        - CSV generation"]
+    end
+
+    subgraph Auth["Authentication Services"]
+        user_service["user_service.py
+        - User CRUD
+        - Authentication
+        - OAuth
+        - Role management"]
+
+        invite_service["invite_service.py
+        - Invite generation
+        - Invite validation
+        - Batch invites"]
+
+        two_factor_service["two_factor_service.py
+        - 2FA setup/enable/disable
+        - Backup codes
+        - Admin 2FA management"]
+
+        totp_service["totp_service.py
+        - TOTP verification
+        - Secret encryption
+        - Backup code generation"]
+
+        email_confirmation_service["email_confirmation_service.py
+        - Confirmation emails
+        - Token validation"]
+
+        password_reset_service["password_reset_service.py
+        - Reset tokens
+        - Reset emails"]
+
+        login_rate_limit_service["login_rate_limit_service.py
+        - Rate limiting
+        - Failed login tracking"]
+    end
+
+    subgraph Support["Support Services"]
+        permissions["permissions.py
+        - Role checks
+        - Assembly access
+        - Global admin checks"]
+
+        target_checking["target_checking.py
+        - Target validation
+        - Detailed error reports"]
+
+        report_translation["report_translation.py
+        - Run report formatting"]
+    end
+```
+
+### Service Summary Table
+
+| Service | Primary Responsibility | Key Dependencies |
+|---------|----------------------|------------------|
+| `assembly_service` | Assembly CRUD, targets, CSV config | Repositories, respondent_service |
+| `respondent_service` | Respondent management | Repositories |
+| `sortition` | Selection/replacement tasks | Celery, Redis, assembly_service |
+| `user_service` | User management, auth | Repositories, invite_service |
+| `invite_service` | Invite lifecycle | Repositories |
+| `two_factor_service` | 2FA management | totp_service, Repositories |
+| `totp_service` | TOTP crypto operations | pyotp, cryptography |
+| `email_confirmation_service` | Email verification | Email sender |
+| `password_reset_service` | Password recovery | Email sender |
+| `login_rate_limit_service` | Login rate limiting | Redis/DB |
+| `permissions` | Authorization checks | User context |
+| `target_checking` | Target validation | respondent_service |
+
+---
+
+## Blueprint-Service Dependencies
+
+This diagram shows which services each blueprint depends on.
+
+```mermaid
+flowchart LR
+    subgraph Blueprints
+        admin_bp[admin]
+        auth_bp[auth]
+        main_bp[main]
+        profile_bp[profile]
+        backoffice_bp[backoffice]
+        gsheets_bp[gsheets]
+        db_selection_bp[db_selection]
+        respondents_bp[respondents]
+        targets_bp[targets]
+    end
+
+    subgraph Services
+        assembly_svc[assembly_service]
+        user_svc[user_service]
+        respondent_svc[respondent_service]
+        sortition_svc[sortition]
+        invite_svc[invite_service]
+        two_factor_svc[two_factor_service]
+        email_confirm_svc[email_confirmation_service]
+        password_reset_svc[password_reset_service]
+        totp_svc[totp_service]
+        login_rate_svc[login_rate_limit_service]
+        permissions_svc[permissions]
+        target_check_svc[target_checking]
+    end
+
+    admin_bp --> user_svc
+    admin_bp --> invite_svc
+    admin_bp --> two_factor_svc
+
+    auth_bp --> user_svc
+    auth_bp --> email_confirm_svc
+    auth_bp --> password_reset_svc
+    auth_bp --> login_rate_svc
+    auth_bp --> totp_svc
+
+    main_bp --> assembly_svc
+    main_bp --> user_svc
+    main_bp --> permissions_svc
+
+    profile_bp --> user_svc
+    profile_bp --> two_factor_svc
+
+    backoffice_bp --> assembly_svc
+    backoffice_bp --> user_svc
+    backoffice_bp --> respondent_svc
+    backoffice_bp --> permissions_svc
+
+    gsheets_bp --> assembly_svc
+    gsheets_bp --> sortition_svc
+
+    db_selection_bp --> assembly_svc
+    db_selection_bp --> respondent_svc
+    db_selection_bp --> sortition_svc
+
+    respondents_bp --> assembly_svc
+    respondents_bp --> respondent_svc
+
+    targets_bp --> assembly_svc
+    targets_bp --> respondent_svc
+    targets_bp --> target_check_svc
+    targets_bp --> permissions_svc
+```
+
+### Dependency Matrix
+
+|                  | assembly | user | respondent | sortition | invite | 2fa | email_confirm | pass_reset | totp | rate_limit | permissions | target_check |
+|------------------|:--------:|:----:|:----------:|:---------:|:------:|:---:|:-------------:|:----------:|:----:|:----------:|:-----------:|:------------:|
+| **admin**        |          |  ✓   |            |           |   ✓    |  ✓  |               |            |      |            |             |              |
+| **auth**         |          |  ✓   |            |           |        |     |       ✓       |     ✓      |  ✓   |     ✓      |             |              |
+| **main**         |    ✓     |  ✓   |            |           |        |     |               |            |      |            |      ✓      |              |
+| **profile**      |          |  ✓   |            |           |        |  ✓  |               |            |      |            |             |              |
+| **backoffice**   |    ✓     |  ✓   |     ✓      |           |        |     |               |            |      |            |      ✓      |              |
+| **gsheets**      |    ✓     |      |            |     ✓     |        |     |               |            |      |            |             |              |
+| **db_selection** |    ✓     |      |     ✓      |     ✓     |        |     |               |            |      |            |             |              |
+| **respondents**  |    ✓     |      |     ✓      |           |        |     |               |            |      |            |             |              |
+| **targets**      |    ✓     |      |     ✓      |           |        |     |               |            |      |            |      ✓      |      ✓       |
+
+---
+
+## Detailed Blueprint Analysis
+
+### admin Blueprint
+
+**File:** `blueprints/admin.py`
+
+```mermaid
+flowchart TB
+    subgraph Routes
+        dashboard["/admin/"]
+        users["/admin/users"]
+        user_detail["/admin/users/<id>"]
+        user_edit["/admin/users/<id>/edit"]
+        user_2fa["/admin/users/<id>/2fa/*"]
+        invites["/admin/invites"]
+        invite_detail["/admin/invites/<id>"]
+    end
+
+    subgraph Services
+        user_svc[user_service]
+        invite_svc[invite_service]
+        two_factor_svc[two_factor_service]
+    end
+
+    dashboard --> user_svc
+    users --> user_svc
+    user_detail --> user_svc
+    user_edit --> user_svc
+    user_2fa --> two_factor_svc
+    invites --> invite_svc
+    invite_detail --> invite_svc
+```
+
+**Route Count:** 11 routes
+**Service Dependencies:** 3 services
+
+---
+
+### auth Blueprint
+
+**File:** `blueprints/auth.py`
+
+```mermaid
+flowchart TB
+    subgraph Routes
+        login["/login"]
+        login_2fa["/login/verify-2fa"]
+        logout["/logout"]
+        register["/register"]
+        confirm_email["/confirm-email/<token>"]
+        forgot_password["/forgot-password"]
+        reset_password["/reset-password/<token>"]
+        google_oauth["/login/google/*"]
+        microsoft_oauth["/login/microsoft/*"]
+    end
+
+    subgraph Services
+        user_svc[user_service]
+        email_confirm_svc[email_confirmation_service]
+        password_reset_svc[password_reset_service]
+        totp_svc[totp_service]
+        rate_limit_svc[login_rate_limit_service]
+    end
+
+    login --> user_svc
+    login --> rate_limit_svc
+    login_2fa --> totp_svc
+    register --> user_svc
+    confirm_email --> email_confirm_svc
+    forgot_password --> password_reset_svc
+    reset_password --> password_reset_svc
+    google_oauth --> user_svc
+    microsoft_oauth --> user_svc
+```
+
+**Route Count:** 15+ routes (including OAuth variants)
+**Service Dependencies:** 5 services (highest)
+
+---
+
+### backoffice Blueprint
+
+**File:** `blueprints/backoffice.py`
+
+```mermaid
+flowchart TB
+    subgraph Production["Production Routes"]
+        dashboard["/backoffice/dashboard"]
+        assembly_new["/backoffice/assembly/new"]
+        assembly_view["/backoffice/assembly/<id>"]
+        assembly_edit["/backoffice/assembly/<id>/edit"]
+        assembly_data["/backoffice/assembly/<id>/data"]
+        assembly_members["/backoffice/assembly/<id>/members"]
+        showcase["/backoffice/showcase"]
+    end
+
+    subgraph Dev["Developer Routes (dev only)"]
+        dev_dashboard["/backoffice/dev"]
+        service_docs["/backoffice/dev/service-docs"]
+        service_execute["/backoffice/dev/service-docs/execute"]
+    end
+
+    subgraph Services
+        assembly_svc[assembly_service]
+        user_svc[user_service]
+        respondent_svc[respondent_service]
+        permissions_svc[permissions]
+    end
+
+    Production --> assembly_svc
+    Production --> user_svc
+    Production --> respondent_svc
+    Production --> permissions_svc
+
+    Dev -.->|"testing only"| assembly_svc
+    Dev -.->|"testing only"| respondent_svc
+```
+
+**Route Count:** 15+ production routes + 3 dev routes
+**Service Dependencies:** 4 services
+
+---
+
+### gsheets Blueprint
+
+**File:** `blueprints/gsheets.py`
+
+```mermaid
+flowchart TB
+    subgraph Selection
+        selection_view["/assembly/<id>/selection"]
+        selection_run["POST /selection/run"]
+        selection_progress["GET /selection/<run_id>/progress"]
+        selection_cancel["POST /selection/<run_id>/cancel"]
+    end
+
+    subgraph Replacement
+        replacement_view["/assembly/<id>/replacement"]
+        replacement_run["POST /replacement/run"]
+        replacement_progress["GET /replacement/<run_id>/progress"]
+        replacement_cancel["POST /replacement/<run_id>/cancel"]
+    end
+
+    subgraph TabManagement
+        manage_tabs["POST /manage-tabs/<run_id>"]
+        tabs_progress["GET /manage-tabs/<run_id>/progress"]
+    end
+
+    subgraph GSheetConfig
+        gsheet_new["/assembly/<id>/gsheet/new"]
+        gsheet_edit["/assembly/<id>/gsheet/edit"]
+        gsheet_remove["/assembly/<id>/gsheet/remove"]
+    end
+
+    subgraph Services
+        assembly_svc[assembly_service]
+        sortition_svc[sortition]
+    end
+
+    Selection --> sortition_svc
+    Replacement --> sortition_svc
+    TabManagement --> sortition_svc
+    GSheetConfig --> assembly_svc
+```
+
+**Route Count:** 14 routes
+**Service Dependencies:** 2 services
+
+---
+
+### db_selection Blueprint
+
+**File:** `blueprints/db_selection.py`
+
+```mermaid
+flowchart TB
+    subgraph Selection
+        select_view["/assemblies/<id>/db_select"]
+        select_check["POST /db_select/check"]
+        select_run["POST /db_select/run"]
+        select_progress["GET /db_select/<run_id>/progress"]
+        select_cancel["POST /db_select/<run_id>/cancel"]
+    end
+
+    subgraph Downloads
+        download_selected["GET /db_select/<run_id>/download/selected"]
+        download_remaining["GET /db_select/<run_id>/download/remaining"]
+    end
+
+    subgraph Settings
+        settings_view["GET /db_select/settings"]
+        settings_save["POST /db_select/settings"]
+        reset_respondents["POST /db_select/reset-respondents"]
+    end
+
+    subgraph Services
+        assembly_svc[assembly_service]
+        respondent_svc[respondent_service]
+        sortition_svc[sortition]
+    end
+
+    Selection --> sortition_svc
+    Downloads --> sortition_svc
+    Settings --> assembly_svc
+    reset_respondents --> respondent_svc
+```
+
+**Route Count:** 12 routes
+**Service Dependencies:** 3 services
+
+---
+
+## Detailed Service Analysis
+
+### assembly_service.py
+
+This is the largest service, handling assembly lifecycle and related entities.
+
+```mermaid
+flowchart TB
+    subgraph assembly_service
+        subgraph Assembly["Assembly CRUD"]
+            create_assembly
+            update_assembly
+            get_assembly_with_permissions
+        end
+
+        subgraph GSheet["GSheet Config"]
+            add_assembly_gsheet
+            update_assembly_gsheet
+            remove_assembly_gsheet
+            get_assembly_gsheet
+        end
+
+        subgraph Targets["Target Management"]
+            get_targets_for_assembly
+            import_targets_from_csv
+            create_target_category
+            update_target_category
+            delete_target_category
+            add_target_value
+            update_target_value
+            delete_target_value
+        end
+
+        subgraph CSV["CSV Config"]
+            get_or_create_csv_config
+            update_csv_config
+            get_csv_upload_status
+        end
+
+        subgraph Delete["Deletion"]
+            delete_targets_for_assembly
+            delete_respondents_for_assembly
+        end
+    end
+
+    subgraph CalledBy["Called By Blueprints"]
+        main_bp[main]
+        backoffice_bp[backoffice]
+        gsheets_bp[gsheets]
+        db_selection_bp[db_selection]
+        respondents_bp[respondents]
+        targets_bp[targets]
+    end
+
+    CalledBy --> assembly_service
+```
+
+**Function Count:** 20+ functions
+**Potential Split Candidates:**
+- Target management could be `target_service.py`
+- GSheet config could be `gsheet_config_service.py`
+- CSV config could be `csv_config_service.py`
+
+---
+
+### sortition.py
+
+Handles all selection-related background tasks.
+
+```mermaid
+flowchart TB
+    subgraph sortition
+        subgraph GSheet["GSheet Tasks"]
+            start_gsheet_load_task
+            start_gsheet_select_task
+            start_gsheet_replace_load_task
+            start_gsheet_replace_task
+            start_gsheet_manage_tabs_task
+        end
+
+        subgraph DB["DB Selection Tasks"]
+            start_db_select_task
+            check_db_selection_data
+            generate_selection_csvs
+        end
+
+        subgraph Status["Task Status"]
+            get_selection_run_status
+            get_manage_old_tabs_status
+            cancel_task
+            check_and_update_task_health
+            get_latest_run_for_assembly
+        end
+    end
+
+    subgraph CalledBy["Called By Blueprints"]
+        gsheets_bp[gsheets]
+        db_selection_bp[db_selection]
+    end
+
+    subgraph External["External Dependencies"]
+        celery[Celery]
+        redis[Redis]
+    end
+
+    CalledBy --> sortition
+    sortition --> External
+```
+
+**Function Count:** 12+ functions
+**Potential Split Candidates:**
+- GSheet tasks could be `gsheet_sortition.py`
+- DB tasks could be `db_sortition.py`
+
+---
+
+### user_service.py
+
+Handles user lifecycle and authentication.
+
+```mermaid
+flowchart TB
+    subgraph user_service
+        subgraph CRUD["User CRUD"]
+            create_user
+            get_user_by_id
+            list_users_paginated
+            update_user
+            get_user_stats
+        end
+
+        subgraph Auth["Authentication"]
+            authenticate_user
+            find_or_create_oauth_user
+            link_oauth_to_user
+            remove_password_auth
+            remove_oauth_auth
+        end
+
+        subgraph Roles["Role Management"]
+            assign_assembly_role
+            grant_user_assembly_role
+            revoke_user_assembly_role
+            get_user_assemblies
+        end
+
+        subgraph Profile["Profile"]
+            update_own_profile
+            change_own_password
+        end
+
+        subgraph Invite["Invite Validation"]
+            validate_invite
+            use_invite
+            validate_and_use_invite
+        end
+    end
+```
+
+**Function Count:** 18+ functions
+**Well-organized:** Functions are grouped by responsibility
+
+---
+
+## Developer Tools (/dev/)
+
+The `/backoffice/dev/` routes provide interactive testing for the service layer.
+
+```mermaid
+flowchart TB
+    subgraph DevRoutes["/backoffice/dev/*"]
+        dev_dashboard["GET /dev
+        Developer dashboard"]
+
+        service_docs["GET /dev/service-docs
+        Interactive documentation UI"]
+
+        service_execute["POST /dev/service-docs/execute
+        Execute service functions"]
+    end
+
+    subgraph Handlers["Internal Handlers"]
+        handle_respondents["_handle_import_respondents()"]
+        handle_targets["_handle_import_targets()"]
+        handle_get_config["_handle_get_csv_config()"]
+        handle_update_config["_handle_update_csv_config()"]
+    end
+
+    subgraph Services["Services Being Tested"]
+        assembly_svc[assembly_service]
+        respondent_svc[respondent_service]
+    end
+
+    subgraph Guards["Security Guards"]
+        admin_check["has_global_admin()"]
+        prod_check["config.is_production()"]
+    end
+
+    DevRoutes --> Guards
+    Guards -->|"allowed"| Handlers
+    Handlers --> Services
+    Guards -->|"blocked"| return_404["Return 404"]
+```
+
+### Current /dev/ Implementation Issues
+
+1. **Mixed Concerns:** Dev routes are in the same file as production `backoffice` routes
+2. **No Separation:** Dev handlers use the same service imports as production code
+3. **Limited Coverage:** Only tests a few service functions
+
+### Recommended Structure
+
+```
+blueprints/
+├── backoffice.py          # Production routes only
+└── dev/                   # Development-only routes
+    ├── __init__.py
+    ├── dashboard.py       # /backoffice/dev
+    └── service_docs.py    # /backoffice/dev/service-docs
+```
+
+---
+
+## Observations and Recommendations
+
+### Blueprint Observations
+
+| Blueprint | Routes | Services | Notes |
+|-----------|--------|----------|-------|
+| `admin` | 11 | 3 | Well-focused |
+| `auth` | 15+ | 5 | Complex but necessary |
+| `main` | 10 | 3 | Could split assembly routes |
+| `profile` | 15 | 2 | Well-focused |
+| `backoffice` | 18+ | 4 | **Mixed prod/dev routes** |
+| `gsheets` | 14 | 2 | Well-focused |
+| `db_selection` | 12 | 3 | Well-focused |
+| `respondents` | 3 | 2 | Small, focused |
+| `targets` | 10 | 4 | Well-focused |
+
+### Service Observations
+
+| Service | Functions | Callers | Notes |
+|---------|-----------|---------|-------|
+| `assembly_service` | 20+ | 6 blueprints | **Could be split** |
+| `user_service` | 18+ | 4 blueprints | Well-organized |
+| `respondent_service` | 8+ | 4 blueprints | Focused |
+| `sortition` | 12+ | 2 blueprints | **Could split GSheet/DB** |
+| `invite_service` | 6 | 1 blueprint | Focused |
+| `two_factor_service` | 7 | 2 blueprints | Focused |
+
+### Recommendations
+
+1. **Separate dev routes:** Extract `/backoffice/dev/*` routes into a separate blueprint module
+2. **Consider splitting `assembly_service`:** Target management and CSV config are distinct concerns
+3. **Consider splitting `sortition`:** GSheet and DB selection are separate workflows
+4. **Standardize route patterns:** Some blueprints use `/assembly/<id>`, others use `/assemblies/<id>`

From 525433845070363d4718ba335ab3e26fcd0be705 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Wed, 25 Mar 2026 16:52:12 +0100
Subject: [PATCH 25/31] refactor: extract dev routes from backoffice blueprint

Move /backoffice/dev/* routes to a separate dev.py blueprint for
cleaner separation of developer tools from production code.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../entrypoints/blueprints/backoffice.py      | 308 +----------------
 .../src/opendlp/entrypoints/blueprints/dev.py | 325 ++++++++++++++++++
 backend/src/opendlp/entrypoints/flask_app.py  |   2 +
 3 files changed, 329 insertions(+), 306 deletions(-)
 create mode 100644 backend/src/opendlp/entrypoints/blueprints/dev.py

diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index 89cc1a1d..f3a94c57 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -2,14 +2,13 @@
 ABOUTME: Provides /backoffice/* routes for dashboard, assembly CRUD, data source, and team members"""
 
 import uuid
-from collections.abc import Callable
 from typing import Any
 
-from flask import Blueprint, abort, current_app, flash, jsonify, redirect, render_template, request, url_for
+from flask import Blueprint, current_app, flash, jsonify, redirect, render_template, request, url_for
 from flask.typing import ResponseReturnValue
 from flask_login import current_user, login_required
 
-from opendlp import bootstrap, config
+from opendlp import bootstrap
 from opendlp.bootstrap import get_email_adapter, get_template_renderer, get_url_generator
 from opendlp.domain.value_objects import AssemblyRole
 from opendlp.entrypoints.forms import (
@@ -27,10 +26,8 @@
     get_assembly_gsheet,
     get_assembly_with_permissions,
     get_csv_upload_status,
-    get_or_create_csv_config,
     import_targets_from_csv,
     update_assembly,
-    update_csv_config,
 )
 from opendlp.service_layer.exceptions import InsufficientPermissions, InvalidSelection, NotFoundError
 from opendlp.service_layer.permissions import has_global_admin
@@ -911,304 +908,3 @@ def search_demo() -> ResponseReturnValue:
     ]
 
     return jsonify(results), 200
-
-
-# =============================================================================
-# Developer Tools Dashboard (Admin-only)
-# =============================================================================
-
-
-@backoffice_bp.route("/dev")
-@login_required
-def dev_dashboard() -> ResponseReturnValue:
-    """Developer tools dashboard.
-
-    Admin-only page that links to all developer tools.
-    Disabled in production for security.
-    """
-    if config.is_production():
-        abort(404)
-
-    if not has_global_admin(current_user):
-        flash(_("You don't have permission to access developer tools"), "error")
-        return redirect(url_for("backoffice.dashboard"))
-
-    return render_template("backoffice/dev_dashboard.html"), 200
-
-
-# =============================================================================
-# Service Layer Documentation (Admin-only developer tools)
-# =============================================================================
-
-
-@backoffice_bp.route("/dev/service-docs")
-@login_required
-def service_docs() -> ResponseReturnValue:
-    """Interactive service layer documentation page for CSV upload services.
-
-    Admin-only page that provides interactive testing of service layer functions.
-    Disabled in production for security.
-    """
-    # Disable in production - developer tools should not be available
-    if config.is_production():
-        abort(404)
-
-    if not has_global_admin(current_user):
-        flash(_("You don't have permission to access developer tools"), "error")
-        return redirect(url_for("backoffice.dashboard"))
-
-    # Get active tab from query parameter, default to 'respondents'
-    active_tab = request.args.get("tab", "respondents")
-    valid_tabs = ["respondents", "targets", "config", "selection"]
-    if active_tab not in valid_tabs:
-        active_tab = "respondents"
-
-    # Get all assemblies for the dropdown (admin can see all via get_user_assemblies)
-    uow = bootstrap.bootstrap()
-    assemblies = get_user_assemblies(uow, current_user.id)
-
-    return render_template("backoffice/service_docs.html", assemblies=assemblies, active_tab=active_tab), 200
-
-
-@backoffice_bp.route("/dev/service-docs/execute", methods=["POST"])
-@login_required
-def service_docs_execute() -> ResponseReturnValue:
-    """Execute a service layer function for testing.
-
-    Accepts JSON with service name and parameters, returns JSON result.
-    Disabled in production for security.
-    """
-    # Disable in production - developer tools should not be available
-    if config.is_production():
-        abort(404)
-
-    if not has_global_admin(current_user):
-        return jsonify({"status": "error", "error": "Unauthorized", "error_type": "InsufficientPermissions"}), 403
-
-    try:
-        data = request.get_json()
-        if not data:
-            return jsonify({"status": "error", "error": "No JSON data provided", "error_type": "ValidationError"}), 400
-
-        service_name = data.get("service")
-        params = data.get("params", {})
-
-        result = _execute_service(service_name, params)
-        return jsonify(result), 200
-
-    except Exception as e:
-        current_app.logger.error(f"Service docs execute error: {e}")
-        current_app.logger.exception("Full traceback:")
-        return jsonify({
-            "status": "error",
-            "error": "An internal error occurred while executing the service.",
-            "error_type": "InternalError",
-        }), 500
-
-
-def _handle_import_respondents(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
-    """Handle import_respondents_from_csv service call."""
-    assembly_id = uuid.UUID(params["assembly_id"])
-    csv_content = params["csv_content"]
-    replace_existing = params.get("replace_existing", False)
-    id_column = params.get("id_column") or None
-
-    with uow:
-        try:
-            respondents, errors, resolved_id_column = import_respondents_from_csv(
-                uow=uow,
-                user_id=current_user.id,
-                assembly_id=assembly_id,
-                csv_content=csv_content,
-                replace_existing=replace_existing,
-                id_column=id_column,
-            )
-            return {
-                "status": "success",
-                "imported_count": len(respondents),
-                "errors": errors,
-                "id_column_used": resolved_id_column,
-                "sample_respondents": [
-                    {
-                        "external_id": r.external_id,
-                        "attributes": r.attributes,
-                        "email": r.email,
-                        "consent": r.consent,
-                        "eligible": r.eligible,
-                        "can_attend": r.can_attend,
-                    }
-                    for r in respondents[:5]  # Show first 5 as sample
-                ],
-            }
-        except InvalidSelection as e:
-            return {"status": "error", "error": str(e), "error_type": "InvalidSelection"}
-        except InsufficientPermissions as e:
-            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
-        except NotFoundError as e:
-            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
-
-
-def _handle_import_targets(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
-    """Handle import_targets_from_csv service call."""
-    assembly_id = uuid.UUID(params["assembly_id"])
-    csv_content = params["csv_content"]
-    replace_existing = params.get("replace_existing", True)
-
-    with uow:
-        try:
-            categories = import_targets_from_csv(
-                uow=uow,
-                user_id=current_user.id,
-                assembly_id=assembly_id,
-                csv_content=csv_content,
-                replace_existing=replace_existing,
-            )
-            return {
-                "status": "success",
-                "categories_count": len(categories),
-                "total_values_count": sum(len(c.values) for c in categories),
-                "categories": [
-                    {
-                        "name": c.name,
-                        "values": [
-                            {
-                                "value": v.value,
-                                "min": v.min,
-                                "max": v.max,
-                                "min_flex": v.min_flex,
-                                "max_flex": v.max_flex,
-                            }
-                            for v in c.values
-                        ],
-                    }
-                    for c in categories
-                ],
-            }
-        except InvalidSelection as e:
-            return {"status": "error", "error": str(e), "error_type": "InvalidSelection"}
-        except InsufficientPermissions as e:
-            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
-        except NotFoundError as e:
-            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
-
-
-def _handle_get_csv_config(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
-    """Handle get_or_create_csv_config service call."""
-    assembly_id = uuid.UUID(params["assembly_id"])
-
-    with uow:
-        try:
-            csv_config = get_or_create_csv_config(
-                uow=uow,
-                user_id=current_user.id,
-                assembly_id=assembly_id,
-            )
-            return {
-                "status": "success",
-                "config": {
-                    "assembly_csv_id": str(csv_config.assembly_csv_id) if csv_config.assembly_csv_id else None,
-                    "assembly_id": str(csv_config.assembly_id),
-                    "id_column": csv_config.id_column,
-                    "check_same_address": csv_config.check_same_address,
-                    "check_same_address_cols": csv_config.check_same_address_cols,
-                    "columns_to_keep": csv_config.columns_to_keep,
-                    "selection_algorithm": csv_config.selection_algorithm,
-                    "settings_confirmed": csv_config.settings_confirmed,
-                    "last_import_filename": csv_config.last_import_filename,
-                    "last_import_timestamp": csv_config.last_import_timestamp.isoformat()
-                    if csv_config.last_import_timestamp
-                    else None,
-                    "created_at": csv_config.created_at.isoformat() if csv_config.created_at else None,
-                    "updated_at": csv_config.updated_at.isoformat() if csv_config.updated_at else None,
-                },
-            }
-        except InsufficientPermissions as e:
-            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
-        except NotFoundError as e:
-            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
-
-
-def _handle_update_csv_config(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
-    """Handle update_csv_config service call."""
-    assembly_id = uuid.UUID(params["assembly_id"])
-    settings = {k: v for k, v in params.items() if k not in ("assembly_id",)}
-
-    with uow:
-        try:
-            csv_config = update_csv_config(
-                uow=uow,
-                user_id=current_user.id,
-                assembly_id=assembly_id,
-                **settings,
-            )
-            return {
-                "status": "success",
-                "config": {
-                    "assembly_csv_id": str(csv_config.assembly_csv_id) if csv_config.assembly_csv_id else None,
-                    "assembly_id": str(csv_config.assembly_id),
-                    "id_column": csv_config.id_column,
-                    "check_same_address": csv_config.check_same_address,
-                    "check_same_address_cols": csv_config.check_same_address_cols,
-                    "columns_to_keep": csv_config.columns_to_keep,
-                    "selection_algorithm": csv_config.selection_algorithm,
-                    "settings_confirmed": csv_config.settings_confirmed,
-                    "updated_at": csv_config.updated_at.isoformat() if csv_config.updated_at else None,
-                },
-            }
-        except InsufficientPermissions as e:
-            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
-        except NotFoundError as e:
-            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
-
-
-# Mapping of service names to their handler functions
-_SERVICE_HANDLERS: dict[str, Callable[[Any, dict[str, Any]], dict[str, Any]]] = {
-    "import_respondents_from_csv": _handle_import_respondents,
-    "import_targets_from_csv": _handle_import_targets,
-    "get_or_create_csv_config": _handle_get_csv_config,
-    "update_csv_config": _handle_update_csv_config,
-}
-
-
-def _execute_service(service_name: str, params: dict[str, Any]) -> dict[str, Any]:
-    """Execute a service layer function and return the result as JSON-serializable dict."""
-    handler = _SERVICE_HANDLERS.get(service_name)
-    if handler is None:
-        return {"status": "error", "error": f"Unknown service: {service_name}", "error_type": "ValidationError"}
-
-    uow = bootstrap.bootstrap()
-    return handler(uow, params)
-
-
-# =============================================================================
-# Frontend Patterns Documentation (Admin-only developer tools)
-# =============================================================================
-
-
-@backoffice_bp.route("/dev/patterns")
-@login_required
-def patterns() -> ResponseReturnValue:
-    """Interactive frontend patterns documentation page.
-
-    Admin-only page that documents Alpine.js patterns, form handling,
-    and other frontend patterns used in the backoffice.
-    Disabled in production for security.
-    """
-    if config.is_production():
-        abort(404)
-
-    if not has_global_admin(current_user):
-        flash(_("You don't have permission to access developer tools"), "error")
-        return redirect(url_for("backoffice.dashboard"))
-
-    # Get active tab from query parameter, default to 'dropdown'
-    active_tab = request.args.get("tab", "dropdown")
-    valid_tabs = ["dropdown", "form", "ajax", "file-upload"]
-    if active_tab not in valid_tabs:
-        active_tab = "dropdown"
-
-    # Get assemblies for live examples
-    uow = bootstrap.bootstrap()
-    assemblies = get_user_assemblies(uow, current_user.id)
-
-    return render_template("backoffice/patterns.html", assemblies=assemblies, active_tab=active_tab), 200
diff --git a/backend/src/opendlp/entrypoints/blueprints/dev.py b/backend/src/opendlp/entrypoints/blueprints/dev.py
new file mode 100644
index 00000000..137b4a4b
--- /dev/null
+++ b/backend/src/opendlp/entrypoints/blueprints/dev.py
@@ -0,0 +1,325 @@
+"""ABOUTME: Developer tools routes for interactive testing and documentation
+ABOUTME: Provides /backoffice/dev/* routes - disabled in production for security"""
+
+import uuid
+from collections.abc import Callable
+from typing import Any
+
+from flask import Blueprint, abort, current_app, flash, jsonify, redirect, render_template, request, url_for
+from flask.typing import ResponseReturnValue
+from flask_login import current_user, login_required
+
+from opendlp import bootstrap, config
+from opendlp.service_layer.assembly_service import (
+    get_or_create_csv_config,
+    import_targets_from_csv,
+    update_csv_config,
+)
+from opendlp.service_layer.exceptions import InsufficientPermissions, InvalidSelection, NotFoundError
+from opendlp.service_layer.permissions import has_global_admin
+from opendlp.service_layer.respondent_service import import_respondents_from_csv
+from opendlp.service_layer.user_service import get_user_assemblies
+from opendlp.translations import gettext as _
+
+dev_bp = Blueprint("dev", __name__)
+
+
+# =============================================================================
+# Developer Tools Dashboard (Admin-only)
+# =============================================================================
+
+
+@dev_bp.route("/dev")
+@login_required
+def dev_dashboard() -> ResponseReturnValue:
+    """Developer tools dashboard.
+
+    Admin-only page that links to all developer tools.
+    Disabled in production for security.
+    """
+    if config.is_production():
+        abort(404)
+
+    if not has_global_admin(current_user):
+        flash(_("You don't have permission to access developer tools"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+
+    return render_template("backoffice/dev_dashboard.html"), 200
+
+
+# =============================================================================
+# Service Layer Documentation (Admin-only developer tools)
+# =============================================================================
+
+
+@dev_bp.route("/dev/service-docs")
+@login_required
+def service_docs() -> ResponseReturnValue:
+    """Interactive service layer documentation page for CSV upload services.
+
+    Admin-only page that provides interactive testing of service layer functions.
+    Disabled in production for security.
+    """
+    # Disable in production - developer tools should not be available
+    if config.is_production():
+        abort(404)
+
+    if not has_global_admin(current_user):
+        flash(_("You don't have permission to access developer tools"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+
+    # Get active tab from query parameter, default to 'respondents'
+    active_tab = request.args.get("tab", "respondents")
+    valid_tabs = ["respondents", "targets", "config", "selection"]
+    if active_tab not in valid_tabs:
+        active_tab = "respondents"
+
+    # Get all assemblies for the dropdown (admin can see all via get_user_assemblies)
+    uow = bootstrap.bootstrap()
+    assemblies = get_user_assemblies(uow, current_user.id)
+
+    return render_template("backoffice/service_docs.html", assemblies=assemblies, active_tab=active_tab), 200
+
+
+@dev_bp.route("/dev/service-docs/execute", methods=["POST"])
+@login_required
+def service_docs_execute() -> ResponseReturnValue:
+    """Execute a service layer function for testing.
+
+    Accepts JSON with service name and parameters, returns JSON result.
+    Disabled in production for security.
+    """
+    # Disable in production - developer tools should not be available
+    if config.is_production():
+        abort(404)
+
+    if not has_global_admin(current_user):
+        return jsonify({"status": "error", "error": "Unauthorized", "error_type": "InsufficientPermissions"}), 403
+
+    try:
+        data = request.get_json()
+        if not data:
+            return jsonify({"status": "error", "error": "No JSON data provided", "error_type": "ValidationError"}), 400
+
+        service_name = data.get("service")
+        params = data.get("params", {})
+
+        result = _execute_service(service_name, params)
+        return jsonify(result), 200
+
+    except Exception as e:
+        current_app.logger.error(f"Service docs execute error: {e}")
+        current_app.logger.exception("Full traceback:")
+        return jsonify({
+            "status": "error",
+            "error": "An internal error occurred while executing the service.",
+            "error_type": "InternalError",
+        }), 500
+
+
+def _handle_import_respondents(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
+    """Handle import_respondents_from_csv service call."""
+    assembly_id = uuid.UUID(params["assembly_id"])
+    csv_content = params["csv_content"]
+    replace_existing = params.get("replace_existing", False)
+    id_column = params.get("id_column") or None
+
+    with uow:
+        try:
+            respondents, errors, resolved_id_column = import_respondents_from_csv(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+                csv_content=csv_content,
+                replace_existing=replace_existing,
+                id_column=id_column,
+            )
+            return {
+                "status": "success",
+                "imported_count": len(respondents),
+                "errors": errors,
+                "id_column_used": resolved_id_column,
+                "sample_respondents": [
+                    {
+                        "external_id": r.external_id,
+                        "attributes": r.attributes,
+                        "email": r.email,
+                        "consent": r.consent,
+                        "eligible": r.eligible,
+                        "can_attend": r.can_attend,
+                    }
+                    for r in respondents[:5]  # Show first 5 as sample
+                ],
+            }
+        except InvalidSelection as e:
+            return {"status": "error", "error": str(e), "error_type": "InvalidSelection"}
+        except InsufficientPermissions as e:
+            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
+        except NotFoundError as e:
+            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
+
+
+def _handle_import_targets(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
+    """Handle import_targets_from_csv service call."""
+    assembly_id = uuid.UUID(params["assembly_id"])
+    csv_content = params["csv_content"]
+    replace_existing = params.get("replace_existing", True)
+
+    with uow:
+        try:
+            categories = import_targets_from_csv(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+                csv_content=csv_content,
+                replace_existing=replace_existing,
+            )
+            return {
+                "status": "success",
+                "categories_count": len(categories),
+                "total_values_count": sum(len(c.values) for c in categories),
+                "categories": [
+                    {
+                        "name": c.name,
+                        "values": [
+                            {
+                                "value": v.value,
+                                "min": v.min,
+                                "max": v.max,
+                                "min_flex": v.min_flex,
+                                "max_flex": v.max_flex,
+                            }
+                            for v in c.values
+                        ],
+                    }
+                    for c in categories
+                ],
+            }
+        except InvalidSelection as e:
+            return {"status": "error", "error": str(e), "error_type": "InvalidSelection"}
+        except InsufficientPermissions as e:
+            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
+        except NotFoundError as e:
+            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
+
+
+def _handle_get_csv_config(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
+    """Handle get_or_create_csv_config service call."""
+    assembly_id = uuid.UUID(params["assembly_id"])
+
+    with uow:
+        try:
+            csv_config = get_or_create_csv_config(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+            )
+            return {
+                "status": "success",
+                "config": {
+                    "assembly_csv_id": str(csv_config.assembly_csv_id) if csv_config.assembly_csv_id else None,
+                    "assembly_id": str(csv_config.assembly_id),
+                    "id_column": csv_config.id_column,
+                    "check_same_address": csv_config.check_same_address,
+                    "check_same_address_cols": csv_config.check_same_address_cols,
+                    "columns_to_keep": csv_config.columns_to_keep,
+                    "selection_algorithm": csv_config.selection_algorithm,
+                    "settings_confirmed": csv_config.settings_confirmed,
+                    "last_import_filename": csv_config.last_import_filename,
+                    "last_import_timestamp": csv_config.last_import_timestamp.isoformat()
+                    if csv_config.last_import_timestamp
+                    else None,
+                    "created_at": csv_config.created_at.isoformat() if csv_config.created_at else None,
+                    "updated_at": csv_config.updated_at.isoformat() if csv_config.updated_at else None,
+                },
+            }
+        except InsufficientPermissions as e:
+            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
+        except NotFoundError as e:
+            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
+
+
+def _handle_update_csv_config(uow: Any, params: dict[str, Any]) -> dict[str, Any]:
+    """Handle update_csv_config service call."""
+    assembly_id = uuid.UUID(params["assembly_id"])
+    settings = {k: v for k, v in params.items() if k not in ("assembly_id",)}
+
+    with uow:
+        try:
+            csv_config = update_csv_config(
+                uow=uow,
+                user_id=current_user.id,
+                assembly_id=assembly_id,
+                **settings,
+            )
+            return {
+                "status": "success",
+                "config": {
+                    "assembly_csv_id": str(csv_config.assembly_csv_id) if csv_config.assembly_csv_id else None,
+                    "assembly_id": str(csv_config.assembly_id),
+                    "id_column": csv_config.id_column,
+                    "check_same_address": csv_config.check_same_address,
+                    "check_same_address_cols": csv_config.check_same_address_cols,
+                    "columns_to_keep": csv_config.columns_to_keep,
+                    "selection_algorithm": csv_config.selection_algorithm,
+                    "settings_confirmed": csv_config.settings_confirmed,
+                    "updated_at": csv_config.updated_at.isoformat() if csv_config.updated_at else None,
+                },
+            }
+        except InsufficientPermissions as e:
+            return {"status": "error", "error": str(e), "error_type": "InsufficientPermissions"}
+        except NotFoundError as e:
+            return {"status": "error", "error": str(e), "error_type": "NotFoundError"}
+
+
+# Mapping of service names to their handler functions
+_SERVICE_HANDLERS: dict[str, Callable[[Any, dict[str, Any]], dict[str, Any]]] = {
+    "import_respondents_from_csv": _handle_import_respondents,
+    "import_targets_from_csv": _handle_import_targets,
+    "get_or_create_csv_config": _handle_get_csv_config,
+    "update_csv_config": _handle_update_csv_config,
+}
+
+
+def _execute_service(service_name: str, params: dict[str, Any]) -> dict[str, Any]:
+    """Execute a service layer function and return the result as JSON-serializable dict."""
+    handler = _SERVICE_HANDLERS.get(service_name)
+    if handler is None:
+        return {"status": "error", "error": f"Unknown service: {service_name}", "error_type": "ValidationError"}
+
+    uow = bootstrap.bootstrap()
+    return handler(uow, params)
+
+
+# =============================================================================
+# Frontend Patterns Documentation (Admin-only developer tools)
+# =============================================================================
+
+
+@dev_bp.route("/dev/patterns")
+@login_required
+def patterns() -> ResponseReturnValue:
+    """Interactive frontend patterns documentation page.
+
+    Admin-only page that documents Alpine.js patterns, form handling,
+    and other frontend patterns used in the backoffice.
+    Disabled in production for security.
+    """
+    if config.is_production():
+        abort(404)
+
+    if not has_global_admin(current_user):
+        flash(_("You don't have permission to access developer tools"), "error")
+        return redirect(url_for("backoffice.dashboard"))
+
+    # Get active tab from query parameter, default to 'dropdown'
+    active_tab = request.args.get("tab", "dropdown")
+    valid_tabs = ["dropdown", "form", "ajax", "file-upload"]
+    if active_tab not in valid_tabs:
+        active_tab = "dropdown"
+
+    # Get assemblies for live examples
+    uow = bootstrap.bootstrap()
+    assemblies = get_user_assemblies(uow, current_user.id)
+
+    return render_template("backoffice/patterns.html", assemblies=assemblies, active_tab=active_tab), 200
diff --git a/backend/src/opendlp/entrypoints/flask_app.py b/backend/src/opendlp/entrypoints/flask_app.py
index d771c689..99e9c44d 100644
--- a/backend/src/opendlp/entrypoints/flask_app.py
+++ b/backend/src/opendlp/entrypoints/flask_app.py
@@ -87,6 +87,7 @@ def register_blueprints(app: Flask) -> None:
     from .blueprints.auth import auth_bp  # noqa: PLC0415
     from .blueprints.backoffice import backoffice_bp  # noqa: PLC0415
     from .blueprints.db_selection import db_selection_bp  # noqa: PLC0415
+    from .blueprints.dev import dev_bp  # noqa: PLC0415
     from .blueprints.gsheets import gsheets_bp  # noqa: PLC0415
     from .blueprints.gsheets_legacy import gsheets_legacy_bp  # noqa: PLC0415
     from .blueprints.health import health_bp  # noqa: PLC0415
@@ -103,6 +104,7 @@ def register_blueprints(app: Flask) -> None:
     app.register_blueprint(profile_bp)
     app.register_blueprint(health_bp)
     app.register_blueprint(backoffice_bp, url_prefix="/backoffice")
+    app.register_blueprint(dev_bp, url_prefix="/backoffice")
     app.register_blueprint(gsheets_bp, url_prefix="/backoffice")
     app.register_blueprint(targets_bp)
     app.register_blueprint(respondents_bp)

From 11a56ec68eab92a065cf78da5e7a9b87ff74c30d Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Wed, 25 Mar 2026 20:53:08 +0100
Subject: [PATCH 26/31] feat: add id_column input to respondents CSV upload

Allow users to specify which column contains unique identifiers when
uploading respondents CSV. If left blank, the first column is used.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../entrypoints/blueprints/backoffice.py      |   4 +
 .../templates/backoffice/assembly_data.html   |  11 +-
 backend/tests/e2e/test_backoffice_assembly.py | 146 ++++++++++++++++++
 3 files changed, 159 insertions(+), 2 deletions(-)

diff --git a/backend/src/opendlp/entrypoints/blueprints/backoffice.py b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
index f3a94c57..8490c7b9 100644
--- a/backend/src/opendlp/entrypoints/blueprints/backoffice.py
+++ b/backend/src/opendlp/entrypoints/blueprints/backoffice.py
@@ -454,6 +454,9 @@ def upload_respondents_csv(assembly_id: uuid.UUID) -> ResponseReturnValue:
         # Read CSV content
         csv_content = file.read().decode("utf-8")
 
+        # Get optional id_column from form (empty string means use first column)
+        id_column = request.form.get("id_column", "").strip() or None
+
         # Import respondents using service function
         uow = bootstrap.bootstrap()
         with uow:
@@ -463,6 +466,7 @@ def upload_respondents_csv(assembly_id: uuid.UUID) -> ResponseReturnValue:
                 assembly_id=assembly_id,
                 csv_content=csv_content,
                 replace_existing=True,
+                id_column=id_column,
             )
 
         if errors:
diff --git a/backend/templates/backoffice/assembly_data.html b/backend/templates/backoffice/assembly_data.html
index dfdb5c77..8d13fc8f 100644
--- a/backend/templates/backoffice/assembly_data.html
+++ b/backend/templates/backoffice/assembly_data.html
@@ -388,7 +388,8 @@ <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Peo
                     {# Upload form #}
                     <form method="post"
                           action="{{ url_for('backoffice.upload_respondents_csv', assembly_id=assembly.id) }}"
-                          enctype="multipart/form-data">
+                          enctype="multipart/form-data"
+                          class="flex flex-col gap-4">
                         <input type="hidden" name="csrf_token" value="{{ csrf_token() }}" />
                         {{ file_input(name="file",
                         label=_("CSV File") ,
@@ -396,7 +397,13 @@ <h3 class="text-heading-md mb-2" style="color: var(--color-headings);">{{ _("Peo
                         required=true,
                         hint=_("Select a CSV file with respondent data.")
                         ) }}
-                        <div class="mt-4">{{ button(_("Upload") , type="submit", variant="primary") }}</div>
+                        {{ input(name="id_column",
+                        label=_("ID Column") ,
+                        value="",
+                        placeholder=_("e.g., ID"),
+                        hint=_("Name of column containing unique identifiers. If blank, the first column in the CSV will be used.")
+                        ) }}
+                        <div>{{ button(_("Upload") , type="submit", variant="primary") }}</div>
                     </form>
                 {% endif %}
             </div>
diff --git a/backend/tests/e2e/test_backoffice_assembly.py b/backend/tests/e2e/test_backoffice_assembly.py
index 00404986..556890f1 100644
--- a/backend/tests/e2e/test_backoffice_assembly.py
+++ b/backend/tests/e2e/test_backoffice_assembly.py
@@ -2,6 +2,7 @@
 ABOUTME: Tests assembly creation, viewing, editing, and user management through the backoffice interface"""
 
 from datetime import UTC, datetime, timedelta
+from io import BytesIO
 
 import pytest
 from flask.testing import FlaskClient
@@ -754,3 +755,148 @@ def test_search_users_no_matches(self, client: FlaskClient, admin_user: User, ex
         assert response.status_code == 200
         data = response.get_json()
         assert data == []
+
+
+class TestBackofficeCsvUpload:
+    """Test CSV upload functionality in backoffice."""
+
+    def test_upload_respondents_with_id_column(
+        self,
+        logged_in_admin,
+        existing_assembly: Assembly,
+        postgres_session_factory,
+    ):
+        """Test uploading respondents CSV with a specified id_column."""
+        csv_content = "name,person_id,age\nAlice,P001,30\nBob,P002,25"
+
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{existing_assembly.id}/data/upload-respondents",
+            data={
+                "file": (BytesIO(csv_content.encode()), "respondents.csv"),
+                "id_column": "person_id",
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{existing_assembly.id}/data?source=csv"
+                ),
+            },
+            content_type="multipart/form-data",
+            follow_redirects=False,
+        )
+
+        assert response.status_code == 302
+        assert "source=csv" in response.location
+
+        # Verify respondents were created with correct external_id
+        with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+            respondents = uow.respondents.get_by_assembly_id(existing_assembly.id)
+            assert len(respondents) == 2
+            external_ids = {r.external_id for r in respondents}
+            assert external_ids == {"P001", "P002"}
+            # Verify other columns became attributes
+            for r in respondents:
+                assert "name" in r.attributes
+                assert "age" in r.attributes
+                assert "person_id" not in r.attributes  # id_column should not be in attributes
+
+    def test_upload_respondents_without_id_column_uses_first_column(
+        self,
+        logged_in_admin,
+        existing_assembly: Assembly,
+        postgres_session_factory,
+    ):
+        """Test uploading respondents CSV without id_column uses first column as ID."""
+        csv_content = "participant_id,name,city\nID001,Charlie,London\nID002,Diana,Paris"
+
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{existing_assembly.id}/data/upload-respondents",
+            data={
+                "file": (BytesIO(csv_content.encode()), "respondents.csv"),
+                "id_column": "",  # Empty means use first column
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{existing_assembly.id}/data?source=csv"
+                ),
+            },
+            content_type="multipart/form-data",
+            follow_redirects=False,
+        )
+
+        assert response.status_code == 302
+
+        # Verify respondents were created using first column as external_id
+        with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+            respondents = uow.respondents.get_by_assembly_id(existing_assembly.id)
+            assert len(respondents) == 2
+            external_ids = {r.external_id for r in respondents}
+            assert external_ids == {"ID001", "ID002"}
+            # First column should not be in attributes
+            for r in respondents:
+                assert "participant_id" not in r.attributes
+                assert "name" in r.attributes
+                assert "city" in r.attributes
+
+    def test_upload_respondents_with_invalid_id_column_shows_error(
+        self,
+        logged_in_admin,
+        existing_assembly: Assembly,
+    ):
+        """Test uploading respondents CSV with non-existent id_column shows error."""
+        csv_content = "name,email,age\nAlice,alice@example.com,30"
+
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{existing_assembly.id}/data/upload-respondents",
+            data={
+                "file": (BytesIO(csv_content.encode()), "respondents.csv"),
+                "id_column": "nonexistent_column",
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{existing_assembly.id}/data?source=csv"
+                ),
+            },
+            content_type="multipart/form-data",
+            follow_redirects=True,
+        )
+
+        assert response.status_code == 200
+        # Should show error message about invalid column
+        assert b"nonexistent_column" in response.data or b"Invalid CSV" in response.data
+
+    def test_upload_respondents_shows_success_message(
+        self,
+        logged_in_admin,
+        existing_assembly: Assembly,
+    ):
+        """Test that successful upload shows success flash message."""
+        csv_content = "id,name\n1,Test User"
+
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{existing_assembly.id}/data/upload-respondents",
+            data={
+                "file": (BytesIO(csv_content.encode()), "respondents.csv"),
+                "id_column": "",
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{existing_assembly.id}/data?source=csv"
+                ),
+            },
+            content_type="multipart/form-data",
+            follow_redirects=True,
+        )
+
+        assert response.status_code == 200
+        assert b"success" in response.data.lower() or b"uploaded" in response.data.lower()
+
+    def test_upload_respondents_redirects_when_not_logged_in(
+        self,
+        client,
+        existing_assembly: Assembly,
+    ):
+        """Test that unauthenticated users are redirected to login."""
+        csv_content = "id,name\n1,Test"
+
+        response = client.post(
+            f"/backoffice/assembly/{existing_assembly.id}/data/upload-respondents",
+            data={
+                "file": (BytesIO(csv_content.encode()), "respondents.csv"),
+            },
+            content_type="multipart/form-data",
+        )
+
+        assert response.status_code == 302
+        assert "login" in response.location

From 2478cd1e4465d316905a5cf4f7ef8813184c9c96 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 27 Mar 2026 08:11:35 +0100
Subject: [PATCH 27/31] refactor: only register dev blueprint in non-production

Instead of checking is_production() in each route handler, only
register the dev blueprint when not in production. This means the
routes don't exist at all in production.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../src/opendlp/entrypoints/blueprints/dev.py | 28 +++++--------------
 backend/src/opendlp/entrypoints/flask_app.py  |  6 ++--
 2 files changed, 11 insertions(+), 23 deletions(-)

diff --git a/backend/src/opendlp/entrypoints/blueprints/dev.py b/backend/src/opendlp/entrypoints/blueprints/dev.py
index 137b4a4b..f79400b8 100644
--- a/backend/src/opendlp/entrypoints/blueprints/dev.py
+++ b/backend/src/opendlp/entrypoints/blueprints/dev.py
@@ -1,15 +1,15 @@
 """ABOUTME: Developer tools routes for interactive testing and documentation
-ABOUTME: Provides /backoffice/dev/* routes - disabled in production for security"""
+ABOUTME: Provides /backoffice/dev/* routes - only registered in non-production environments"""
 
 import uuid
 from collections.abc import Callable
 from typing import Any
 
-from flask import Blueprint, abort, current_app, flash, jsonify, redirect, render_template, request, url_for
+from flask import Blueprint, current_app, flash, jsonify, redirect, render_template, request, url_for
 from flask.typing import ResponseReturnValue
 from flask_login import current_user, login_required
 
-from opendlp import bootstrap, config
+from opendlp import bootstrap
 from opendlp.service_layer.assembly_service import (
     get_or_create_csv_config,
     import_targets_from_csv,
@@ -35,11 +35,8 @@ def dev_dashboard() -> ResponseReturnValue:
     """Developer tools dashboard.
 
     Admin-only page that links to all developer tools.
-    Disabled in production for security.
+    This blueprint is only registered in non-production environments.
     """
-    if config.is_production():
-        abort(404)
-
     if not has_global_admin(current_user):
         flash(_("You don't have permission to access developer tools"), "error")
         return redirect(url_for("backoffice.dashboard"))
@@ -58,12 +55,8 @@ def service_docs() -> ResponseReturnValue:
     """Interactive service layer documentation page for CSV upload services.
 
     Admin-only page that provides interactive testing of service layer functions.
-    Disabled in production for security.
+    This blueprint is only registered in non-production environments.
     """
-    # Disable in production - developer tools should not be available
-    if config.is_production():
-        abort(404)
-
     if not has_global_admin(current_user):
         flash(_("You don't have permission to access developer tools"), "error")
         return redirect(url_for("backoffice.dashboard"))
@@ -87,12 +80,8 @@ def service_docs_execute() -> ResponseReturnValue:
     """Execute a service layer function for testing.
 
     Accepts JSON with service name and parameters, returns JSON result.
-    Disabled in production for security.
+    This blueprint is only registered in non-production environments.
     """
-    # Disable in production - developer tools should not be available
-    if config.is_production():
-        abort(404)
-
     if not has_global_admin(current_user):
         return jsonify({"status": "error", "error": "Unauthorized", "error_type": "InsufficientPermissions"}), 403
 
@@ -303,11 +292,8 @@ def patterns() -> ResponseReturnValue:
 
     Admin-only page that documents Alpine.js patterns, form handling,
     and other frontend patterns used in the backoffice.
-    Disabled in production for security.
+    This blueprint is only registered in non-production environments.
     """
-    if config.is_production():
-        abort(404)
-
     if not has_global_admin(current_user):
         flash(_("You don't have permission to access developer tools"), "error")
         return redirect(url_for("backoffice.dashboard"))
diff --git a/backend/src/opendlp/entrypoints/flask_app.py b/backend/src/opendlp/entrypoints/flask_app.py
index 25ba8ff5..058fa711 100644
--- a/backend/src/opendlp/entrypoints/flask_app.py
+++ b/backend/src/opendlp/entrypoints/flask_app.py
@@ -87,7 +87,6 @@ def register_blueprints(app: Flask) -> None:
     from .blueprints.auth import auth_bp  # noqa: PLC0415
     from .blueprints.backoffice import backoffice_bp  # noqa: PLC0415
     from .blueprints.db_selection import db_selection_bp  # noqa: PLC0415
-    from .blueprints.dev import dev_bp  # noqa: PLC0415
     from .blueprints.gsheets import gsheets_bp  # noqa: PLC0415
     from .blueprints.gsheets_legacy import gsheets_legacy_bp  # noqa: PLC0415
     from .blueprints.health import health_bp  # noqa: PLC0415
@@ -105,7 +104,10 @@ def register_blueprints(app: Flask) -> None:
     app.register_blueprint(profile_bp)
     app.register_blueprint(health_bp)
     app.register_blueprint(backoffice_bp, url_prefix="/backoffice")
-    app.register_blueprint(dev_bp, url_prefix="/backoffice")
+    if not config.is_production():
+        from .blueprints.dev import dev_bp  # noqa: PLC0415
+
+        app.register_blueprint(dev_bp, url_prefix="/backoffice")
     app.register_blueprint(gsheets_bp, url_prefix="/backoffice")
     app.register_blueprint(targets_bp)
     app.register_blueprint(respondents_bp)

From 7d88ba0cc8a6a5cb7241bfb284aeffd3be2916e2 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 27 Mar 2026 08:32:15 +0100
Subject: [PATCH 28/31] docs: add backoffice test coverage report

Visual overview of E2E and BDD test coverage for backoffice routes
and services, with clear indicators for covered/uncovered code and
test types (happy path, validation, permission, etc.).

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/docs/backoffice-test-coverage.md | 480 +++++++++++++++++++++++
 1 file changed, 480 insertions(+)
 create mode 100644 backend/docs/backoffice-test-coverage.md

diff --git a/backend/docs/backoffice-test-coverage.md b/backend/docs/backoffice-test-coverage.md
new file mode 100644
index 00000000..0cbd58ec
--- /dev/null
+++ b/backend/docs/backoffice-test-coverage.md
@@ -0,0 +1,480 @@
+# Backoffice Test Coverage Report
+
+This document provides a visual overview of test coverage for the backoffice functionality, including which routes and services are covered by BDD/E2E tests.
+
+**Reference IDs:** Each item has a unique ID (e.g., `BO-ASM-3`) for easy reference in discussions.
+
+## Table of Contents
+
+- [Coverage Summary](#coverage-summary)
+- [User Flows (BDD Features)](#user-flows-bdd-features)
+- [Route Coverage](#route-coverage)
+- [Service Coverage](#service-coverage)
+- [Test Type Legend](#test-type-legend)
+- [Gaps and Recommendations](#gaps-and-recommendations)
+
+---
+
+## Coverage Summary
+
+| Category | Covered | Partial | Not Covered | Coverage |
+|----------|:-------:|:-------:|:-----------:|:--------:|
+| Backoffice Routes | 14 | 3 | 2 | 74% |
+| GSheets Routes | 10 | 4 | 2 | 63% |
+| Dev Routes | 0 | 0 | 4 | 0% |
+| assembly_service | 12 | 2 | 6 | 60% |
+| respondent_service | 2 | 0 | 5 | 29% |
+| user_service (backoffice) | 3 | 0 | 0 | 100% |
+| sortition | 6 | 2 | 4 | 50% |
+
+**Overall: ~60% coverage**
+
+---
+
+## User Flows (BDD Features)
+
+BDD feature files describe user flows in human-readable Gherkin format. These are the primary reference for understanding what each feature should do.
+
+| ID | Feature File | User Flow Description | Scenarios |
+|----|--------------|----------------------|:---------:|
+| BDD-BO | [backoffice.feature](../features/backoffice.feature) | Design system showcase, tokens, components | 8 |
+| BDD-ASM | [backoffice-assembly.feature](../features/backoffice-assembly.feature) | Assembly CRUD: create, view, edit | 14 |
+| BDD-MEM | [backoffice-assembly-members.feature](../features/backoffice-assembly-members.feature) | Team member management, permissions | 9 |
+| BDD-GS | [backoffice-assembly-gsheet.feature](../features/backoffice-assembly-gsheet.feature) | Google Sheets configuration | 13 |
+| BDD-CSV | [backoffice-csv-upload.feature](../features/backoffice-csv-upload.feature) | CSV file uploads for targets/respondents | 10 |
+| BDD-SEL | [selection-history.feature](../features/selection-history.feature) | Selection run history and details | 8 |
+| BDD-REP | [replacement-selection.feature](../features/replacement-selection.feature) | Replacement selection workflow | 12 |
+
+---
+
+## Test Type Legend
+
+| Symbol | Meaning |
+|:------:|---------|
+| :white_check_mark: | Fully tested |
+| :large_orange_diamond: | Partially tested |
+| :x: | Not tested |
+| **[H]** | Happy path test |
+| **[V]** | Validation error test |
+| **[P]** | Permission/auth error test |
+| **[N]** | Not found error test |
+| **[E]** | Edge case test |
+
+---
+
+## Route Coverage
+
+### Backoffice Blueprint (`/backoffice/*`)
+
+| ID | Route | Method | Coverage | Test Types | User Flow (BDD Scenario) |
+|----|-------|:------:|:--------:|------------|--------------------------|
+| BO-SC-1 | `/showcase` | GET | :white_check_mark: | [H] | [BDD-BO](../features/backoffice.feature): *"I should see Design System"* |
+| BO-SC-2 | `/showcase/search-demo` | GET | :white_check_mark: | [H][E] | - |
+| BO-DSH-1 | `/dashboard` | GET | :white_check_mark: | [H][P] | [BDD-ASM](../features/backoffice-assembly.feature): *"Dashboard displays create assembly button"* |
+| BO-ASM-1 | `/assembly/new` | GET | :white_check_mark: | [H][P] | [BDD-ASM](../features/backoffice-assembly.feature): *"User can navigate to create assembly page"* |
+| BO-ASM-2 | `/assembly/new` | POST | :white_check_mark: | [H][V][P] | [BDD-ASM](../features/backoffice-assembly.feature): *"User can create a new assembly"* |
+| BO-ASM-3 | `/assembly/<id>` | GET | :white_check_mark: | [H][P][N] | [BDD-ASM](../features/backoffice-assembly.feature): *"Assembly details page displays assembly information"* |
+| BO-ASM-4 | `/assembly/<id>/edit` | GET | :white_check_mark: | [H][P][N] | [BDD-ASM](../features/backoffice-assembly.feature): *"User can navigate to edit assembly"* |
+| BO-ASM-5 | `/assembly/<id>/edit` | POST | :white_check_mark: | [H][V][N] | [BDD-ASM](../features/backoffice-assembly.feature): *"User can update assembly details"* |
+| BO-ASM-6 | `/assembly/<id>/update-number-to-select` | POST | :x: | - | **No BDD scenario** |
+| BO-DAT-1 | `/assembly/<id>/data` | GET | :white_check_mark: | [H][P][N][E] | [BDD-GS](../features/backoffice-assembly-gsheet.feature): *"User can navigate to data tab"* |
+| BO-DAT-2 | `/assembly/<id>/data/upload-targets` | POST | :large_orange_diamond: | [H] | [BDD-CSV](../features/backoffice-csv-upload.feature): *"After uploading targets, People upload becomes active"* |
+| BO-DAT-3 | `/assembly/<id>/data/delete-targets` | POST | :large_orange_diamond: | [H] | - |
+| BO-DAT-4 | `/assembly/<id>/data/upload-respondents` | POST | :white_check_mark: | [H][V][P] | [BDD-CSV](../features/backoffice-csv-upload.feature): *"Both tabs enabled after both CSVs uploaded"* |
+| BO-DAT-5 | `/assembly/<id>/data/delete-respondents` | POST | :large_orange_diamond: | [H] | - |
+| BO-TGT-1 | `/assembly/<id>/targets` | GET | :x: | - | [BDD-CSV](../features/backoffice-csv-upload.feature): *"Targets page shows gsheet info"* |
+| BO-RSP-1 | `/assembly/<id>/respondents` | GET | :x: | - | [BDD-CSV](../features/backoffice-csv-upload.feature): *"Respondents page shows gsheet info"* |
+| BO-MEM-1 | `/assembly/<id>/members` | GET | :white_check_mark: | [H][P] | [BDD-MEM](../features/backoffice-assembly-members.feature): *"Admin can navigate to assembly members"* |
+| BO-MEM-2 | `/assembly/<id>/members/add` | POST | :white_check_mark: | [H][P][V][E] | [BDD-MEM](../features/backoffice-assembly-members.feature): *"Admin can see add user form"* |
+| BO-MEM-3 | `/assembly/<id>/members/<uid>/remove` | POST | :white_check_mark: | [H][P][V] | [BDD-MEM](../features/backoffice-assembly-members.feature): *"I should see remove buttons"* |
+| BO-MEM-4 | `/assembly/<id>/members/search` | GET | :white_check_mark: | [H][P][E] | [BDD-MEM](../features/backoffice-assembly-members.feature): *"Search dropdown shows no results message"* |
+
+### GSheets Blueprint (`/backoffice/*`)
+
+| ID | Route | Method | Coverage | Test Types | User Flow (BDD Scenario) |
+|----|-------|:------:|:--------:|------------|--------------------------|
+| GS-SEL-1 | `/assembly/<id>/selection` | GET | :white_check_mark: | [H][P][E] | [BDD-SEL](../features/selection-history.feature): *"Selection page shows history section"* |
+| GS-SEL-2 | `/assembly/<id>/selection/<run_id>` | GET | :white_check_mark: | [H][N] | [BDD-SEL](../features/selection-history.feature): *"User can view selection run details"* |
+| GS-SEL-3 | `/assembly/<id>/selection/modal-progress/<run_id>` | GET | :white_check_mark: | [H][P][N][E] | - |
+| GS-SEL-4 | `/assembly/<id>/selection/load` | POST | :white_check_mark: | [H][P][N] | - |
+| GS-SEL-5 | `/assembly/<id>/selection/run` | POST | :white_check_mark: | [H][P][N][V][E] | - |
+| GS-SEL-6 | `/assembly/<id>/selection/<run_id>/cancel` | POST | :white_check_mark: | [H][V] | - |
+| GS-SEL-7 | `/assembly/<id>/selection/history/<run_id>` | GET | :large_orange_diamond: | [H] | [BDD-SEL](../features/selection-history.feature): *"History shows run status and details"* |
+| GS-TAB-1 | `/assembly/<id>/manage-tabs/start-list` | POST | :x: | - | **No BDD scenario** |
+| GS-TAB-2 | `/assembly/<id>/manage-tabs/start-delete` | POST | :x: | - | **No BDD scenario** |
+| GS-TAB-3 | `/assembly/<id>/manage-tabs/<run_id>/progress` | GET | :large_orange_diamond: | - | - |
+| GS-TAB-4 | `/assembly/<id>/manage-tabs/<run_id>/cancel` | POST | :large_orange_diamond: | - | - |
+| GS-REP-1 | `/assembly/<id>/replacement` | GET | :white_check_mark: | [H] | [BDD-REP](../features/replacement-selection.feature): *"Replacement tab shows history"* |
+| GS-REP-2 | `/assembly/<id>/replacement/load` | POST | :large_orange_diamond: | [H] | [BDD-REP](../features/replacement-selection.feature): *"User can start replacement validation"* |
+| GS-REP-3 | `/assembly/<id>/replacement/run` | POST | :large_orange_diamond: | [H] | [BDD-REP](../features/replacement-selection.feature): *"User can run replacement selection"* |
+| GS-REP-4 | `/assembly/<id>/replacement/<run_id>/cancel` | POST | :large_orange_diamond: | - | - |
+| GS-REP-5 | `/assembly/<id>/selection/replacement-modal-progress/<run_id>` | GET | :x: | - | **No BDD scenario** |
+| GS-CFG-1 | `/assembly/<id>/gsheet/save` | POST | :white_check_mark: | [H][V][P] | [BDD-GS](../features/backoffice-assembly-gsheet.feature): *"User can create new gsheet configuration"* |
+| GS-CFG-2 | `/assembly/<id>/gsheet/delete` | POST | :white_check_mark: | [H][P][N] | [BDD-GS](../features/backoffice-assembly-gsheet.feature): *"User can delete configuration with confirmation"* |
+
+### Dev Blueprint (`/backoffice/dev/*`)
+
+| ID | Route | Method | Coverage | Test Types | User Flow |
+|----|-------|:------:|:--------:|------------|-----------|
+| DEV-1 | `/dev` | GET | :x: | - | Dev tools only |
+| DEV-2 | `/dev/service-docs` | GET | :x: | - | Dev tools only |
+| DEV-3 | `/dev/service-docs/execute` | POST | :x: | - | Dev tools only |
+| DEV-4 | `/dev/patterns` | GET | :x: | - | Dev tools only |
+
+> **Note:** Dev routes are only registered in non-production environments. Testing is low priority.
+
+---
+
+## Service Coverage
+
+### assembly_service.py
+
+| ID | Function | Coverage | Test Types | User Flow (BDD Scenario) |
+|----|----------|:--------:|------------|--------------------------|
+| SVC-ASM-1 | `create_assembly()` | :white_check_mark: | [H][V] | [BDD-ASM](../features/backoffice-assembly.feature): *"User can create a new assembly"* |
+| SVC-ASM-2 | `update_assembly()` | :white_check_mark: | [H][V] | [BDD-ASM](../features/backoffice-assembly.feature): *"User can update assembly details"* |
+| SVC-ASM-3 | `get_assembly_with_permissions()` | :white_check_mark: | [H][P][N] | [BDD-MEM](../features/backoffice-assembly-members.feature): *"Non-admin user without role cannot access"* |
+| SVC-ASM-4 | `archive_assembly()` | :x: | - | **No user flow** |
+| SVC-ASM-5 | `get_user_accessible_assemblies()` | :white_check_mark: | [H] | [BDD-ASM](../features/backoffice-assembly.feature): *"Dashboard displays create assembly button"* |
+| SVC-GS-1 | `add_assembly_gsheet()` | :white_check_mark: | [H][V] | [BDD-GS](../features/backoffice-assembly-gsheet.feature): *"User can create new gsheet configuration"* |
+| SVC-GS-2 | `update_assembly_gsheet()` | :white_check_mark: | [H][V] | [BDD-GS](../features/backoffice-assembly-gsheet.feature): *"User can update existing configuration"* |
+| SVC-GS-3 | `remove_assembly_gsheet()` | :white_check_mark: | [H][N] | [BDD-GS](../features/backoffice-assembly-gsheet.feature): *"User can delete configuration"* |
+| SVC-GS-4 | `get_assembly_gsheet()` | :white_check_mark: | [H] | [BDD-GS](../features/backoffice-assembly-gsheet.feature): *"User sees readonly view when config exists"* |
+| SVC-TGT-1 | `create_target_category()` | :x: | - | **No user flow** |
+| SVC-TGT-2 | `get_targets_for_assembly()` | :large_orange_diamond: | [H] | [BDD-CSV](../features/backoffice-csv-upload.feature): *"Targets page shows gsheet info"* |
+| SVC-TGT-3 | `update_target_category()` | :x: | - | **No user flow** |
+| SVC-TGT-4 | `delete_target_category()` | :x: | - | **No user flow** |
+| SVC-TGT-5 | `import_targets_from_csv()` | :large_orange_diamond: | [H] | [BDD-CSV](../features/backoffice-csv-upload.feature): *"After uploading targets"* |
+| SVC-TGT-6 | `delete_targets_for_assembly()` | :large_orange_diamond: | [H] | - |
+| SVC-TGT-7 | `add_target_value()` | :x: | - | **No user flow** |
+| SVC-TGT-8 | `update_target_value()` | :x: | - | **No user flow** |
+| SVC-TGT-9 | `delete_target_value()` | :x: | - | **No user flow** |
+| SVC-CSV-1 | `get_or_create_csv_config()` | :white_check_mark: | [H] | [BDD-CSV](../features/backoffice-csv-upload.feature): *"CSV upload section appears"* |
+| SVC-CSV-2 | `update_csv_config()` | :white_check_mark: | [H] | - |
+| SVC-CSV-3 | `get_csv_upload_status()` | :white_check_mark: | [H] | [BDD-CSV](../features/backoffice-csv-upload.feature): *"Both upload buttons are active initially"* |
+| SVC-ASM-6 | `get_feature_collection_for_assembly()` | :x: | - | Internal to selection |
+
+### respondent_service.py
+
+| ID | Function | Coverage | Test Types | User Flow (BDD Scenario) |
+|----|----------|:--------:|------------|--------------------------|
+| SVC-RSP-1 | `create_respondent()` | :x: | - | Not exposed directly |
+| SVC-RSP-2 | `import_respondents_from_csv()` | :white_check_mark: | [H][V] | [BDD-CSV](../features/backoffice-csv-upload.feature): *"Both tabs enabled after both CSVs uploaded"* |
+| SVC-RSP-3 | `reset_selection_status()` | :x: | - | **No user flow** |
+| SVC-RSP-4 | `get_respondents_for_assembly()` | :large_orange_diamond: | [H] | [BDD-CSV](../features/backoffice-csv-upload.feature): *"Respondents page shows gsheet info"* |
+| SVC-RSP-5 | `count_non_pool_respondents()` | :x: | - | **No user flow** |
+| SVC-RSP-6 | `get_respondent_attribute_columns()` | :x: | - | **No user flow** |
+| SVC-RSP-7 | `get_respondent_attribute_value_counts()` | :x: | - | **No user flow** |
+
+### user_service.py (Backoffice Functions)
+
+| ID | Function | Coverage | Test Types | User Flow (BDD Scenario) |
+|----|----------|:--------:|------------|--------------------------|
+| SVC-USR-1 | `get_user_assemblies()` | :white_check_mark: | [H] | [BDD-ASM](../features/backoffice-assembly.feature): *"Dashboard displays create assembly button"* |
+| SVC-USR-2 | `grant_user_assembly_role()` | :white_check_mark: | [H][P][V] | [BDD-MEM](../features/backoffice-assembly-members.feature): *"Admin can see add user form"* |
+| SVC-USR-3 | `revoke_user_assembly_role()` | :white_check_mark: | [H][P][V] | [BDD-MEM](../features/backoffice-assembly-members.feature): *"I should see remove buttons"* |
+
+### sortition.py
+
+| ID | Function | Coverage | Test Types | User Flow (BDD Scenario) |
+|----|----------|:--------:|------------|--------------------------|
+| SVC-SRT-1 | `start_gsheet_load_task()` | :white_check_mark: | [H][N][P] | - |
+| SVC-SRT-2 | `start_gsheet_select_task()` | :white_check_mark: | [H][V][N] | - |
+| SVC-SRT-3 | `start_gsheet_replace_load_task()` | :large_orange_diamond: | [H] | [BDD-REP](../features/replacement-selection.feature): *"User can start replacement validation"* |
+| SVC-SRT-4 | `start_gsheet_replace_task()` | :large_orange_diamond: | [H] | [BDD-REP](../features/replacement-selection.feature): *"User can run replacement selection"* |
+| SVC-SRT-5 | `start_gsheet_manage_tabs_task()` | :x: | - | **No user flow** |
+| SVC-SRT-6 | `get_selection_run_status()` | :white_check_mark: | [H][N] | [BDD-SEL](../features/selection-history.feature): *"History shows run status"* |
+| SVC-SRT-7 | `cancel_task()` | :white_check_mark: | [H][V] | - |
+| SVC-SRT-8 | `check_and_update_task_health()` | :white_check_mark: | [H] | - |
+| SVC-SRT-9 | `get_manage_old_tabs_status()` | :x: | - | **No user flow** |
+| SVC-SRT-10 | `check_db_selection_data()` | :x: | - | Not used in backoffice |
+| SVC-SRT-11 | `start_db_select_task()` | :x: | - | Not used in backoffice |
+| SVC-SRT-12 | `generate_selection_csvs()` | :x: | - | Not used in backoffice |
+
+---
+
+## Detailed Test Inventory
+
+### BDD Scenarios by Feature
+
+#### [backoffice-assembly.feature](../features/backoffice-assembly.feature) (BDD-ASM)
+
+| ID | Scenario | Type | Routes Covered |
+|----|----------|:----:|----------------|
+| BDD-ASM-1 | User can navigate to assembly details from dashboard | [H] | GET /dashboard, GET /assembly/<id> |
+| BDD-ASM-2 | Assembly details page displays breadcrumbs | [H] | GET /assembly/<id> |
+| BDD-ASM-3 | Assembly details page displays assembly information | [H] | GET /assembly/<id> |
+| BDD-ASM-4 | Assembly details page has edit button | [H] | GET /assembly/<id> |
+| BDD-ASM-5 | User can navigate to edit assembly from details page | [H] | GET /assembly/<id>/edit |
+| BDD-ASM-6 | Edit assembly page displays breadcrumbs | [H] | GET /assembly/<id>/edit |
+| BDD-ASM-7 | Edit assembly page displays form fields | [H] | GET /assembly/<id>/edit |
+| BDD-ASM-8 | Edit assembly page has save and cancel buttons | [H] | GET /assembly/<id>/edit |
+| BDD-ASM-9 | User can update assembly details | [H] | POST /assembly/<id>/edit |
+| BDD-ASM-10 | Dashboard displays create assembly button | [H] | GET /dashboard |
+| BDD-ASM-11 | User can navigate to create assembly page from dashboard | [H] | GET /assembly/new |
+| BDD-ASM-12 | Create assembly page displays breadcrumbs | [H] | GET /assembly/new |
+| BDD-ASM-13 | Create assembly page displays form fields | [H] | GET /assembly/new |
+| BDD-ASM-14 | User can create a new assembly | [H] | POST /assembly/new |
+| BDD-ASM-15 | Empty state shows create assembly button | [H][E] | GET /dashboard |
+
+#### [backoffice-assembly-members.feature](../features/backoffice-assembly-members.feature) (BDD-MEM)
+
+| ID | Scenario | Type | Routes Covered |
+|----|----------|:----:|----------------|
+| BDD-MEM-1 | Admin can navigate to assembly members from details page | [H] | GET /members |
+| BDD-MEM-2 | Assembly members page displays breadcrumbs | [H] | GET /members |
+| BDD-MEM-3 | Admin can see add user form on members page | [H] | GET /members |
+| BDD-MEM-4 | Admin can see team members table when members exist | [H] | GET /members |
+| BDD-MEM-5 | Non-admin member can view members page | [H][P] | GET /members |
+| BDD-MEM-6 | Non-admin member cannot see add user form | [P] | GET /members |
+| BDD-MEM-7 | Search dropdown shows no results message | [H][E] | GET /members/search |
+| BDD-MEM-8 | Non-admin user without role cannot see assembly | [P] | GET /dashboard |
+| BDD-MEM-9 | Non-admin user without role cannot access assembly | [P] | GET /assembly/<id>, GET /members |
+
+#### [backoffice-assembly-gsheet.feature](../features/backoffice-assembly-gsheet.feature) (BDD-GS)
+
+| ID | Scenario | Type | Routes Covered |
+|----|----------|:----:|----------------|
+| BDD-GS-1 | User can navigate to data tab from assembly details | [H] | GET /data |
+| BDD-GS-2 | Data source selector is shown when no config exists | [H] | GET /data |
+| BDD-GS-3 | User can select Google Spreadsheet data source | [H] | GET /data |
+| BDD-GS-4 | User can create new gsheet configuration | [H] | POST /gsheet/save |
+| BDD-GS-5 | Form shows validation errors for missing URL | [V] | POST /gsheet/save |
+| BDD-GS-6 | Form shows validation errors for invalid URL | [V] | POST /gsheet/save |
+| BDD-GS-7 | User sees readonly view when config exists | [H] | GET /data |
+| BDD-GS-8 | User can click Edit to switch to edit mode | [H] | GET /data |
+| BDD-GS-9 | User can update existing configuration | [H] | POST /gsheet/save |
+| BDD-GS-10 | User can cancel edit and return to view mode | [H] | GET /data |
+| BDD-GS-11 | Data source selector is locked when config exists | [H] | GET /data |
+| BDD-GS-12 | User can delete configuration with confirmation | [H] | POST /gsheet/delete |
+| BDD-GS-13 | After delete data source selector is unlocked | [H] | POST /gsheet/delete |
+
+#### [backoffice-csv-upload.feature](../features/backoffice-csv-upload.feature) (BDD-CSV)
+
+| ID | Scenario | Type | Routes Covered |
+|----|----------|:----:|----------------|
+| BDD-CSV-1 | Targets and Respondents tabs are always visible | [H] | GET /assembly/<id> |
+| BDD-CSV-2 | Targets tab is disabled when no data source | [H] | GET /data |
+| BDD-CSV-3 | Targets and Respondents tabs enabled when gsheet configured | [H] | GET /assembly/<id> |
+| BDD-CSV-4 | Targets page shows gsheet info | [H] | GET /targets |
+| BDD-CSV-5 | Respondents page shows gsheet info | [H] | GET /respondents |
+| BDD-CSV-6 | Targets tab disabled for CSV until targets uploaded | [H] | GET /data |
+| BDD-CSV-7 | CSV upload section appears when CSV selected | [H] | GET /data |
+| BDD-CSV-8 | Both Target and People upload buttons active initially | [H] | GET /data |
+| BDD-CSV-9 | After uploading targets, People upload becomes active | [H] | POST /upload-targets |
+| BDD-CSV-10 | Both tabs enabled after both CSVs uploaded | [H] | POST /upload-respondents |
+
+### E2E Tests by File
+
+#### test_backoffice_general.py
+
+| ID | Test Class | Test Method | Type | Route |
+|----|------------|-------------|:----:|-------|
+| E2E-GEN-1 | TestBackofficeDashboard | test_dashboard_loads_for_logged_in_user | [H] | GET /dashboard |
+| E2E-GEN-2 | | test_dashboard_redirects_when_not_logged_in | [P] | GET /dashboard |
+| E2E-GEN-3 | | test_dashboard_shows_existing_assemblies | [H] | GET /dashboard |
+| E2E-GEN-4 | | test_dashboard_accessible_to_regular_users | [H] | GET /dashboard |
+| E2E-GEN-5 | TestBackofficeShowcase | test_showcase_page_loads | [H] | GET /showcase |
+| E2E-GEN-6 | | test_search_demo_returns_empty_for_no_query | [E] | GET /showcase/search-demo |
+| E2E-GEN-7 | | test_search_demo_returns_mock_results | [H] | GET /showcase/search-demo |
+| E2E-GEN-8 | TestBackofficeAssemblyDataPage | test_data_page_loads_successfully | [H] | GET /data |
+| E2E-GEN-9 | | test_data_page_with_gsheet_source_parameter | [H] | GET /data?source=gsheet |
+| E2E-GEN-10 | | test_data_page_with_csv_source_parameter | [H] | GET /data?source=csv |
+| E2E-GEN-11 | | test_data_page_invalid_source_parameter_ignored | [E] | GET /data?source=invalid |
+| E2E-GEN-12 | | test_data_page_redirects_when_not_logged_in | [P] | GET /data |
+| E2E-GEN-13 | | test_data_page_nonexistent_assembly | [N] | GET /data |
+| E2E-GEN-14 | TestBackofficeDataSourceLocking | test_data_source_locked_when_gsheet_config_exists | [H] | GET /data |
+| E2E-GEN-15 | | test_data_source_auto_selects_gsheet | [H] | GET /data |
+| E2E-GEN-16 | | test_data_source_unlocked_when_no_config | [H] | GET /data |
+| E2E-GEN-17 | | test_data_source_unlocked_after_delete | [H] | GET /data |
+| E2E-GEN-18 | | test_gsheet_selected_shows_in_dropdown | [H] | GET /data |
+
+#### test_backoffice_assembly.py
+
+| ID | Test Class | Test Method | Type | Route |
+|----|------------|-------------|:----:|-------|
+| E2E-ASM-1 | TestBackofficeAssemblyDetails | test_view_assembly_details_page_loads | [H] | GET /assembly/<id> |
+| E2E-ASM-2 | | test_view_assembly_redirects_when_not_logged_in | [P] | GET /assembly/<id> |
+| E2E-ASM-3 | | test_view_nonexistent_assembly_redirects | [N] | GET /assembly/<id> |
+| E2E-ASM-4 | | test_view_assembly_shows_key_fields | [H] | GET /assembly/<id> |
+| E2E-ASM-5 | | test_view_assembly_permission_denied | [P] | GET /assembly/<id> |
+| E2E-ASM-6 | TestBackofficeAssemblyCreate | test_create_assembly_get_form | [H] | GET /assembly/new |
+| E2E-ASM-7 | | test_create_assembly_success | [H] | POST /assembly/new |
+| E2E-ASM-8 | | test_create_assembly_minimal_data | [H] | POST /assembly/new |
+| E2E-ASM-9 | | test_create_assembly_validation_errors | [V] | POST /assembly/new |
+| E2E-ASM-10 | | test_create_assembly_redirects_when_not_logged_in | [P] | GET /assembly/new |
+| E2E-ASM-11 | | test_create_assembly_appears_in_dashboard | [H] | Workflow |
+| E2E-ASM-12 | TestBackofficeAssemblyEdit | test_edit_assembly_get_form | [H] | GET /assembly/<id>/edit |
+| E2E-ASM-13 | | test_edit_assembly_success | [H] | POST /assembly/<id>/edit |
+| E2E-ASM-14 | | test_edit_assembly_validation_errors | [V] | POST /assembly/<id>/edit |
+| E2E-ASM-15 | | test_edit_nonexistent_assembly | [N] | GET /assembly/<id>/edit |
+| E2E-ASM-16 | | test_edit_assembly_redirects_when_not_logged_in | [P] | GET /assembly/<id>/edit |
+| E2E-ASM-17 | | test_complete_create_view_edit_workflow | [H] | Workflow |
+| E2E-MEM-1 | TestBackofficeAssemblyMembers | test_members_page_loads | [H] | GET /members |
+| E2E-MEM-2 | | test_members_page_redirects_when_not_logged_in | [P] | GET /members |
+| E2E-MEM-3 | | test_members_search_returns_json | [H] | GET /members/search |
+| E2E-MEM-4 | TestBackofficeAddUserToAssembly | test_add_user_to_assembly_success | [H] | POST /members/add |
+| E2E-MEM-5 | | test_add_user_shows_success_message | [H] | POST /members/add |
+| E2E-MEM-6 | | test_add_user_with_manager_role | [H] | POST /members/add |
+| E2E-MEM-7 | | test_add_user_not_accessible_to_regular_user | [P] | POST /members/add |
+| E2E-MEM-8 | | test_add_user_with_invalid_user_id | [V] | POST /members/add |
+| E2E-MEM-9 | | test_add_user_sends_notification_email | [H] | POST /members/add |
+| E2E-MEM-10 | TestBackofficeRemoveUserFromAssembly | test_remove_user_from_assembly_success | [H] | POST /members/remove |
+| E2E-MEM-11 | | test_remove_user_shows_success_message | [H] | POST /members/remove |
+| E2E-MEM-12 | | test_remove_user_not_accessible_to_regular_user | [P] | POST /members/remove |
+| E2E-MEM-13 | | test_remove_user_with_invalid_user_id | [V] | POST /members/remove |
+| E2E-MEM-14 | TestBackofficeSearchUsers | test_search_users_returns_matching_users | [H] | GET /members/search |
+| E2E-MEM-15 | | test_search_users_excludes_already_added | [H] | GET /members/search |
+| E2E-MEM-16 | | test_search_users_empty_query | [E] | GET /members/search |
+| E2E-MEM-17 | | test_search_users_case_insensitive | [E] | GET /members/search |
+| E2E-MEM-18 | | test_search_users_by_email | [H] | GET /members/search |
+| E2E-MEM-19 | | test_search_users_by_last_name | [H] | GET /members/search |
+| E2E-MEM-20 | | test_search_users_not_accessible_to_regular_user | [P] | GET /members/search |
+| E2E-MEM-21 | | test_search_users_no_matches | [E] | GET /members/search |
+| E2E-CSV-1 | TestBackofficeCsvUpload | test_upload_respondents_with_id_column | [H] | POST /upload-respondents |
+| E2E-CSV-2 | | test_upload_respondents_without_id_column | [H] | POST /upload-respondents |
+| E2E-CSV-3 | | test_upload_respondents_invalid_id_column | [V] | POST /upload-respondents |
+| E2E-CSV-4 | | test_upload_respondents_shows_success | [H] | POST /upload-respondents |
+| E2E-CSV-5 | | test_upload_respondents_redirects_when_not_logged_in | [P] | POST /upload-respondents |
+
+#### test_backoffice_gsheet_selection.py
+
+| ID | Test Class | Test Method | Type | Route |
+|----|------------|-------------|:----:|-------|
+| E2E-GS-1 | TestBackofficeGSheetConfigForm | test_form_shows_new_mode | [H] | GET /data?source=gsheet |
+| E2E-GS-2 | | test_form_contains_required_fields | [H] | GET /data?source=gsheet |
+| E2E-GS-3 | | test_form_shows_view_mode | [H] | GET /data?source=gsheet |
+| E2E-GS-4 | | test_form_shows_edit_mode | [H] | GET /data?mode=edit |
+| E2E-GS-5 | | test_form_shows_default_values | [H] | GET /data?source=gsheet |
+| E2E-GS-6 | TestBackofficeGSheetFormSubmission | test_create_gsheet_config_success | [H] | POST /gsheet/save |
+| E2E-GS-7 | | test_create_validation_error_missing_url | [V] | POST /gsheet/save |
+| E2E-GS-8 | | test_create_validation_error_invalid_url | [V] | POST /gsheet/save |
+| E2E-GS-9 | | test_update_gsheet_config_success | [H] | POST /gsheet/save |
+| E2E-GS-10 | | test_update_with_team_eu | [H] | POST /gsheet/save |
+| E2E-GS-11 | | test_update_with_custom_team | [H] | POST /gsheet/save |
+| E2E-GS-12 | | test_update_validation_error | [V] | POST /gsheet/save |
+| E2E-GS-13 | | test_warning_empty_columns_to_keep | [H] | POST /gsheet/save |
+| E2E-GS-14 | | test_no_warning_empty_columns_with_team | [H] | POST /gsheet/save |
+| E2E-GS-15 | | test_permission_denied_regular_user | [P] | POST /gsheet/save |
+| E2E-GS-16 | | test_redirects_when_not_logged_in | [P] | POST /gsheet/save |
+| E2E-GS-17 | TestBackofficeGSheetValidation | test_hard_validation_address_check | [V] | POST /gsheet/save |
+| E2E-GS-18 | | test_hard_validation_passes_with_team | [H] | POST /gsheet/save |
+| E2E-GS-19 | | test_hard_validation_passes_no_address | [H] | POST /gsheet/save |
+| E2E-GS-20 | | test_hard_validation_on_edit | [H] | POST /gsheet/save |
+| E2E-GS-21 | | test_url_validation_enforced | [V] | POST /gsheet/save |
+| E2E-GS-22 | TestBackofficeGSheetDelete | test_delete_gsheet_config_success | [H] | POST /gsheet/delete |
+| E2E-GS-23 | | test_delete_gsheet_not_found | [N] | POST /gsheet/delete |
+| E2E-GS-24 | | test_delete_button_shown_view_mode | [H] | GET /data |
+| E2E-GS-25 | | test_delete_button_shown_edit_mode | [H] | GET /data?mode=edit |
+| E2E-GS-26 | | test_delete_button_not_shown_new | [H] | GET /data |
+| E2E-GS-27 | | test_delete_permission_denied | [P] | POST /gsheet/delete |
+| E2E-GS-28 | | test_delete_redirects_not_logged_in | [P] | POST /gsheet/delete |
+| E2E-GS-29 | | test_gsheet_state_transitions | [H] | Workflow |
+| E2E-SEL-1 | TestBackofficeSelectionTab | test_selection_page_loads_without_gsheet | [H] | GET /selection |
+| E2E-SEL-2 | | test_selection_page_loads_with_gsheet | [H] | GET /selection |
+| E2E-SEL-3 | | test_selection_page_redirects_not_logged_in | [P] | GET /selection |
+| E2E-SEL-4 | | test_selection_load_starts_task | [H] | POST /selection/load |
+| E2E-SEL-5 | | test_selection_load_redirects_not_logged_in | [P] | POST /selection/load |
+| E2E-SEL-6 | | test_selection_run_starts_task | [H] | POST /selection/run |
+| E2E-SEL-7 | | test_selection_run_redirects_not_logged_in | [P] | POST /selection/run |
+| E2E-SEL-8 | | test_selection_run_test_mode | [H] | POST /selection/run |
+| E2E-SEL-9 | | test_selection_run_not_found | [N] | POST /selection/run |
+| E2E-SEL-10 | | test_selection_run_invalid_selection | [V] | POST /selection/run |
+| E2E-SEL-11 | | test_selection_progress_modal_returns_html | [H] | GET /modal-progress |
+| E2E-SEL-12 | | test_selection_cancel | [H] | POST /cancel |
+| E2E-SEL-13 | | test_selection_load_not_found | [N] | POST /selection/load |
+| E2E-SEL-14 | | test_selection_load_insufficient_permissions | [P] | POST /selection/load |
+| E2E-SEL-15 | | test_selection_with_run_redirects | [H] | GET /selection/<run_id> |
+| E2E-SEL-16 | | test_selection_with_current_selection_param | [H] | GET /selection?current_selection= |
+| E2E-SEL-17 | | test_selection_with_run_not_found | [N] | GET /selection |
+| E2E-SEL-18 | | test_view_run_details_exists | [H] | GET /history/<run_id> |
+| E2E-SEL-19 | | test_selection_page_shows_history | [H] | GET /selection |
+| E2E-SEL-20 | | test_progress_modal_not_found | [N] | GET /modal-progress |
+| E2E-SEL-21 | | test_progress_modal_permission_denied | [P] | GET /modal-progress |
+| E2E-SEL-22 | | test_progress_modal_no_polling_completed | [E] | GET /modal-progress |
+| E2E-SEL-23 | | test_progress_modal_no_polling_failed | [E] | GET /modal-progress |
+| E2E-SEL-24 | | test_progress_modal_ownership_validation | [H] | GET /modal-progress |
+| E2E-SEL-25 | | test_selection_with_current_renders_modal | [H] | GET /selection |
+| E2E-SEL-26 | | test_cancel_invalid_selection_error | [V] | POST /cancel |
+
+---
+
+## Gaps and Recommendations
+
+### Critical Gaps (High Priority)
+
+| ID | Gap | Impact | Recommendation |
+|----|-----|--------|----------------|
+| GAP-1 | Target category CRUD not tested (SVC-TGT-1,3,4) | Cannot verify target management | Add E2E tests for create/update/delete |
+| GAP-2 | Target value CRUD not tested (SVC-TGT-7,8,9) | Cannot verify target values | Add E2E tests for value management |
+| GAP-3 | Manage tabs not tested (GS-TAB-1,2) | Cannot verify tab cleanup | Add E2E tests for manage tabs workflow |
+| GAP-4 | Replacement workflow limited (GS-REP-2,3,4) | May have bugs in replacement | Expand replacement tests |
+
+### Medium Priority Gaps
+
+| ID | Gap | Impact | Recommendation |
+|----|-----|--------|----------------|
+| GAP-5 | BO-ASM-6 `update-number-to-select` not tested | Possible regression risk | Add test for HTMX endpoint |
+| GAP-6 | BO-TGT-1, BO-RSP-1 view pages not tested | Rendering issues undetected | Add basic render tests |
+| GAP-7 | SVC-RSP-5,6,7 respondent attribute functions | Attribute handling issues | Add service-level tests |
+| GAP-8 | Large CSV handling | Performance issues undetected | Add load tests |
+
+### Low Priority Gaps
+
+| ID | Gap | Impact | Recommendation |
+|----|-----|--------|----------------|
+| GAP-9 | DEV-1 to DEV-4 not tested | Dev-only, low risk | Optional: add basic tests |
+| GAP-10 | Edge cases (special chars) | Rare issues | Add as regression tests when found |
+| GAP-11 | Concurrent operations | Race conditions | Add integration tests |
+
+---
+
+## Test Statistics
+
+```
+Total E2E Test Methods: ~117
+Total BDD Scenarios: ~74
+Total Routes Tested: 34/44 (77%)
+Total Service Functions Tested: 26/40 (65%)
+
+Test Type Distribution:
+  Happy Path [H]: ~70 tests (60%)
+  Permission [P]: ~25 tests (21%)
+  Validation [V]: ~15 tests (13%)
+  Not Found [N]: ~10 tests (9%)
+  Edge Case [E]: ~12 tests (10%)
+```
+
+---
+
+## Quick Reference
+
+**ID Prefixes:**
+- `BO-` = Backoffice routes
+- `GS-` = GSheets routes
+- `DEV-` = Dev routes
+- `SVC-` = Service functions
+- `BDD-` = BDD scenarios
+- `E2E-` = E2E test methods
+- `GAP-` = Coverage gaps
+
+**Feature Codes:**
+- `ASM` = Assembly
+- `MEM` = Members
+- `DAT` = Data
+- `TGT` = Targets
+- `RSP` = Respondents
+- `CSV` = CSV upload
+- `SEL` = Selection
+- `REP` = Replacement
+- `TAB` = Manage tabs
+- `CFG` = GSheet config
+- `GEN` = General
+- `SC` = Showcase
+- `DSH` = Dashboard
+- `SRT` = Sortition
+- `USR` = User service
+
+---
+
+*Last updated: 2026-03-27*

From 04e76abf21b0f127e3a90cf6df2e895844e444ac Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Fri, 27 Mar 2026 10:34:33 +0000
Subject: [PATCH 29/31] Change coverage omissions

The new dev blueprint is not even registered with the flask app when the
config is production (which includes the public demo site) so we don't
care about coverage of that.

We now track coverage of BDD tests, so we don't need to exclude them any
more.
---
 backend/pyproject.toml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/backend/pyproject.toml b/backend/pyproject.toml
index 93c9d084..971fbe9a 100644
--- a/backend/pyproject.toml
+++ b/backend/pyproject.toml
@@ -222,7 +222,8 @@ preview = true
 [tool.coverage.run]
 source = ["src", "tests"]
 plugins = ["covdefaults"]
-omit = ["tests/bdd/*"]
+# The dev blueprint is not even registered in production configs, so we can ignore it.
+omit = ["src/opendlp/entrypoints/blueprints/dev.py"]
 sigterm = true
 
 [tool.coverage.report]

From e03c6267b5d007948a9f77742b766785b5a13118 Mon Sep 17 00:00:00 2001
From: Hamish Downer <hamish@sortitionfoundation.org>
Date: Fri, 27 Mar 2026 12:14:04 +0000
Subject: [PATCH 30/31] codecov target changed to 80% for new pull requests

---
 codecov.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/codecov.yaml b/codecov.yaml
index 058cfb76..54d6d67e 100644
--- a/codecov.yaml
+++ b/codecov.yaml
@@ -5,5 +5,5 @@ coverage:
   status:
     project:
       default:
-        target: 90%
+        target: 80%
         threshold: 0.5%

From 3e4ccd76711d11a89971d193308e9656f7b99635 Mon Sep 17 00:00:00 2001
From: gazdagergo <info@gazdagergo.com>
Date: Fri, 27 Mar 2026 12:22:35 +0100
Subject: [PATCH 31/31] test: add coverage for CSV upload/delete and update
 number to select

Add E2E tests for previously uncovered happy paths:
- upload_targets_csv: successful targets CSV upload
- delete_targets: successful targets deletion
- delete_respondents: successful respondents deletion
- view_assembly_targets: targets page for CSV data source
- view_assembly_respondents: respondents page for CSV data source

Add BDD scenario for update_number_to_select from selection page.

Add fixtures for assembly_with_targets and assembly_with_respondents.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/features/backoffice-assembly.feature  |  14 +
 backend/tests/bdd/test_backoffice.py          |  67 ++++
 backend/tests/e2e/test_backoffice_assembly.py | 288 ++++++++++++++++++
 3 files changed, 369 insertions(+)

diff --git a/backend/features/backoffice-assembly.feature b/backend/features/backoffice-assembly.feature
index 1e51a28d..09a3334a 100644
--- a/backend/features/backoffice-assembly.feature
+++ b/backend/features/backoffice-assembly.feature
@@ -137,3 +137,17 @@ Feature: Backoffice Assembly Management
     When I visit the backoffice dashboard
     Then I should see "No assemblies yet"
     And I should see the "Create Your First Assembly" button
+
+  # Update Number to Select (from Selection Page)
+
+  Scenario: User can update number to select from selection page
+    Given I am logged in as an admin user
+    And there is an assembly called "Selection Test Assembly" with number to select "25"
+    And the assembly "Selection Test Assembly" has a gsheet configuration
+    When I visit the selection page for "Selection Test Assembly"
+    And I click the "Edit" link next to number to select
+    And I fill in the number to select with "50"
+    And I click the "Save" button
+    Then I should be on the selection page for "Selection Test Assembly"
+    And I should see "updated"
+    And the number to select should be "50"
diff --git a/backend/tests/bdd/test_backoffice.py b/backend/tests/bdd/test_backoffice.py
index df18d655..095cef33 100644
--- a/backend/tests/bdd/test_backoffice.py
+++ b/backend/tests/bdd/test_backoffice.py
@@ -1118,6 +1118,73 @@ def see_assembly_selection_page(page: Page):
     expect(page).to_have_url(re.compile(r".*/backoffice/assembly/.*/selection"))
 
 
+# Update Number to Select Tests
+
+
+@given(parsers.parse('there is an assembly called "{title}" with number to select "{number}"'))
+def create_test_assembly_with_number_to_select_quoted(title: str, number: str, admin_user, test_database):
+    """Create a test assembly with a specific number_to_select for the admin user."""
+    session_factory = test_database
+    uow = SqlAlchemyUnitOfWork(session_factory)
+    assembly = create_assembly(
+        uow=uow,
+        title=title,
+        created_by_user_id=admin_user.id,
+        number_to_select=int(number),
+    )
+    _assembly_name_id_cache.add_existing(title, assembly)
+
+
+@when(parsers.parse('I visit the selection page for "{title}"'))
+def visit_selection_page_for_assembly(page: Page, title: str, test_database):
+    """Navigate directly to the selection page for a specific assembly."""
+    assembly_id = _assembly_name_id_cache.find_title(title, test_database)
+    if assembly_id:
+        page.goto(Urls.backoffice_selection_assembly_url(assembly_id))
+        page.wait_for_load_state("networkidle")
+
+
+@when('I click the "Edit" link next to number to select')
+def click_edit_number_to_select(page: Page):
+    """Click the Edit link next to the number to select field on selection page."""
+    # The edit link is typically a query param that shows the edit form
+    edit_link = (
+        page
+        .locator("a[href*='edit_number=1'], a:has-text('Edit')")
+        .filter(has=page.locator(":scope").locator("xpath=./ancestor::*[contains(., 'Number to Select')]"))
+        .first
+    )
+    if edit_link.count() == 0:
+        # Fallback: try to find any edit link near the number to select section
+        edit_link = page.locator("a[href*='edit_number']").first
+    edit_link.click()
+    page.wait_for_load_state("networkidle")
+
+
+@when('I click the "Save" button')
+def click_save_button(page: Page):
+    """Click the Save button."""
+    save_button = page.locator("button:has-text('Save'), input[type='submit'][value*='Save']").first
+    save_button.click()
+    page.wait_for_load_state("networkidle")
+
+
+@then(parsers.parse('I should be on the selection page for "{title}"'))
+def should_be_on_selection_page(page: Page, title: str, test_database):
+    """Verify we're on the selection page for the specified assembly."""
+    assembly_id = _assembly_name_id_cache.find_title(title, test_database)
+    if assembly_id:
+        expect(page).to_have_url(re.compile(rf".*/backoffice/assembly/{assembly_id}/selection"))
+
+
+@then(parsers.parse('the number to select should be "{number}"'))
+def number_to_select_should_be(page: Page, number: str):
+    """Verify the number to select displays the expected value."""
+    # Look for the number in the summary section or the field value
+    page_content = page.content()
+    assert number in page_content, f"Expected number to select '{number}' not found in page"
+
+
 # CSV Upload Tests
 
 
diff --git a/backend/tests/e2e/test_backoffice_assembly.py b/backend/tests/e2e/test_backoffice_assembly.py
index 556890f1..81d94acb 100644
--- a/backend/tests/e2e/test_backoffice_assembly.py
+++ b/backend/tests/e2e/test_backoffice_assembly.py
@@ -8,8 +8,11 @@
 from flask.testing import FlaskClient
 
 from opendlp.domain.assembly import Assembly
+from opendlp.domain.respondents import Respondent
+from opendlp.domain.targets import TargetCategory, TargetValue
 from opendlp.domain.users import User
 from opendlp.domain.value_objects import AssemblyRole, GlobalRole
+from opendlp.service_layer.assembly_service import create_assembly
 from opendlp.service_layer.permissions import can_manage_assembly, can_view_assembly
 from opendlp.service_layer.unit_of_work import SqlAlchemyUnitOfWork
 from opendlp.service_layer.user_service import create_user, grant_user_assembly_role
@@ -900,3 +903,288 @@ def test_upload_respondents_redirects_when_not_logged_in(
 
         assert response.status_code == 302
         assert "login" in response.location
+
+    def test_upload_targets_csv_success(
+        self,
+        logged_in_admin,
+        existing_assembly: Assembly,
+        postgres_session_factory,
+    ):
+        """Test successfully uploading a targets CSV file."""
+        # CSV format must use: feature,value,min,max (matching sortition-algorithms library)
+        csv_content = "feature,value,min,max\nGender,Male,10,20\nGender,Female,10,20\nAge,18-30,5,15\nAge,31-50,5,15"
+
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{existing_assembly.id}/data/upload-targets",
+            data={
+                "file": (BytesIO(csv_content.encode()), "targets.csv"),
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{existing_assembly.id}/data?source=csv"
+                ),
+            },
+            content_type="multipart/form-data",
+            follow_redirects=False,
+        )
+
+        assert response.status_code == 302
+        assert "source=csv" in response.location
+
+        # Verify targets were created
+        with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+            categories = uow.target_categories.get_by_assembly_id(existing_assembly.id)
+            assert len(categories) == 2  # Gender and Age
+            category_names = {c.name for c in categories}
+            assert category_names == {"Gender", "Age"}
+
+    def test_upload_targets_csv_shows_success_message(
+        self,
+        logged_in_admin,
+        existing_assembly: Assembly,
+    ):
+        """Test that successful targets upload shows success flash message."""
+        # CSV format must use: feature,value,min,max (matching sortition-algorithms library)
+        csv_content = "feature,value,min,max\nRegion,North,5,10\nRegion,South,5,10"
+
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{existing_assembly.id}/data/upload-targets",
+            data={
+                "file": (BytesIO(csv_content.encode()), "targets.csv"),
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{existing_assembly.id}/data?source=csv"
+                ),
+            },
+            content_type="multipart/form-data",
+            follow_redirects=True,
+        )
+
+        assert response.status_code == 200
+        assert b"success" in response.data.lower() or b"uploaded" in response.data.lower()
+
+
+@pytest.fixture
+def assembly_with_targets(postgres_session_factory, admin_user):
+    """Create an assembly with target categories for testing."""
+    with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+        assembly = create_assembly(
+            uow=uow,
+            title="Assembly with Targets",
+            created_by_user_id=admin_user.id,
+            question="What is the question?",
+            first_assembly_date=(datetime.now(UTC).date() + timedelta(days=30)),
+        )
+        assembly_id = assembly.id
+
+    # Add target categories
+    with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+        category = TargetCategory(
+            assembly_id=assembly_id,
+            name="Gender",
+            sort_order=0,
+        )
+        category.values = [
+            TargetValue(value="Male", min=10, max=20),
+            TargetValue(value="Female", min=10, max=20),
+        ]
+        uow.target_categories.add(category)
+        uow.commit()
+
+    with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+        assembly = uow.assemblies.get(assembly_id)
+        return assembly.create_detached_copy()
+
+
+@pytest.fixture
+def assembly_with_respondents(postgres_session_factory, admin_user):
+    """Create an assembly with respondents for testing."""
+    with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+        assembly = create_assembly(
+            uow=uow,
+            title="Assembly with Respondents",
+            created_by_user_id=admin_user.id,
+            question="What is the question?",
+            first_assembly_date=(datetime.now(UTC).date() + timedelta(days=30)),
+        )
+        assembly_id = assembly.id
+
+    # Add target categories first (required for respondents to have a data source)
+    with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+        category = TargetCategory(
+            assembly_id=assembly_id,
+            name="Gender",
+            sort_order=0,
+        )
+        category.values = [
+            TargetValue(value="Male", min=10, max=20),
+            TargetValue(value="Female", min=10, max=20),
+        ]
+        uow.target_categories.add(category)
+        uow.commit()
+
+    # Add respondents
+    with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+        respondents = []
+        for i in range(5):
+            respondent = Respondent(
+                assembly_id=assembly_id,
+                external_id=f"test-{i}",
+                attributes={"name": f"Test Person {i}", "Gender": "Male" if i % 2 == 0 else "Female"},
+            )
+            respondents.append(respondent)
+        uow.respondents.bulk_add(respondents)
+        uow.commit()
+
+    with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+        assembly = uow.assemblies.get(assembly_id)
+        return assembly.create_detached_copy()
+
+
+class TestBackofficeCsvDelete:
+    """Test CSV delete functionality in backoffice."""
+
+    def test_delete_targets_success(
+        self,
+        logged_in_admin,
+        assembly_with_targets: Assembly,
+        postgres_session_factory,
+    ):
+        """Test successfully deleting targets for an assembly."""
+        # Verify targets exist before deletion
+        with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+            categories = uow.target_categories.get_by_assembly_id(assembly_with_targets.id)
+            assert len(categories) > 0
+
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{assembly_with_targets.id}/data/delete-targets",
+            data={
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{assembly_with_targets.id}/data?source=csv"
+                ),
+            },
+            follow_redirects=False,
+        )
+
+        assert response.status_code == 302
+        assert "source=csv" in response.location
+
+        # Verify targets were deleted
+        with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+            categories = uow.target_categories.get_by_assembly_id(assembly_with_targets.id)
+            assert len(categories) == 0
+
+    def test_delete_targets_shows_success_message(
+        self,
+        logged_in_admin,
+        assembly_with_targets: Assembly,
+    ):
+        """Test that successful targets deletion shows success flash message."""
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{assembly_with_targets.id}/data/delete-targets",
+            data={
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{assembly_with_targets.id}/data?source=csv"
+                ),
+            },
+            follow_redirects=True,
+        )
+
+        assert response.status_code == 200
+        assert b"deleted" in response.data.lower() or b"success" in response.data.lower()
+
+    def test_delete_respondents_success(
+        self,
+        logged_in_admin,
+        assembly_with_respondents: Assembly,
+        postgres_session_factory,
+    ):
+        """Test successfully deleting respondents for an assembly."""
+        # Verify respondents exist before deletion
+        with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+            respondents = uow.respondents.get_by_assembly_id(assembly_with_respondents.id)
+            assert len(respondents) > 0
+
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{assembly_with_respondents.id}/data/delete-respondents",
+            data={
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{assembly_with_respondents.id}/data?source=csv"
+                ),
+            },
+            follow_redirects=False,
+        )
+
+        assert response.status_code == 302
+        assert "source=csv" in response.location
+
+        # Verify respondents were deleted
+        with SqlAlchemyUnitOfWork(postgres_session_factory) as uow:
+            respondents = uow.respondents.get_by_assembly_id(assembly_with_respondents.id)
+            assert len(respondents) == 0
+
+    def test_delete_respondents_shows_success_message(
+        self,
+        logged_in_admin,
+        assembly_with_respondents: Assembly,
+    ):
+        """Test that successful respondents deletion shows success flash message."""
+        response = logged_in_admin.post(
+            f"/backoffice/assembly/{assembly_with_respondents.id}/data/delete-respondents",
+            data={
+                "csrf_token": get_csrf_token(
+                    logged_in_admin, f"/backoffice/assembly/{assembly_with_respondents.id}/data?source=csv"
+                ),
+            },
+            follow_redirects=True,
+        )
+
+        assert response.status_code == 200
+        assert b"deleted" in response.data.lower() or b"success" in response.data.lower()
+
+
+class TestBackofficeCsvViewPages:
+    """Test targets and respondents view pages with CSV data source."""
+
+    def test_view_targets_page_with_csv_source(
+        self,
+        logged_in_admin,
+        assembly_with_targets: Assembly,
+    ):
+        """Test that targets page loads successfully for CSV data source."""
+        response = logged_in_admin.get(f"/backoffice/assembly/{assembly_with_targets.id}/targets")
+
+        assert response.status_code == 200
+        # Should see the page title containing "Targets"
+        assert b"Targets" in response.data
+
+    def test_view_respondents_page_with_csv_source(
+        self,
+        logged_in_admin,
+        assembly_with_respondents: Assembly,
+    ):
+        """Test that respondents page loads successfully for CSV data source."""
+        response = logged_in_admin.get(f"/backoffice/assembly/{assembly_with_respondents.id}/respondents")
+
+        assert response.status_code == 200
+        # Should see the page content
+        assert b"Respondents" in response.data or b"respondents" in response.data.lower()
+
+    def test_view_targets_page_redirects_when_not_logged_in(
+        self,
+        client,
+        assembly_with_targets: Assembly,
+    ):
+        """Test that unauthenticated users are redirected to login."""
+        response = client.get(f"/backoffice/assembly/{assembly_with_targets.id}/targets")
+
+        assert response.status_code == 302
+        assert "login" in response.location
+
+    def test_view_respondents_page_redirects_when_not_logged_in(
+        self,
+        client,
+        assembly_with_respondents: Assembly,
+    ):
+        """Test that unauthenticated users are redirected to login."""
+        response = client.get(f"/backoffice/assembly/{assembly_with_respondents.id}/respondents")
+
+        assert response.status_code == 302
+        assert "login" in response.location