feat: implement Roles Assigment Wizard step 2

- Added useScopeListData hook to manage scope data retrieval and organization.
- Introduced useScopePermissions hook to validate user permissions for scopes.
- Created unit tests for useScopeListData covering various scenarios including loading, error states, and data structure validation.
- Developed unit tests for useScopePermissions to ensure correct permission handling for courses and libraries.
- Updated messages for consistency in the UI.

Author: bra-i-am

src/authz-module/data/api.ts

@@ -1,68 +1,21 @@
 import { getAuthenticatedHttpClient } from '@edx/frontend-platform/auth';
-import { LibraryMetadata, TeamMember } from '@src/types';
+import { LibraryMetadata } from '@src/types';
 import { camelCaseObject } from '@edx/frontend-platform';
 import { getApiUrl, getStudioApiUrl } from '@src/data/utils';
-
-export interface QuerySettings {
-  roles: string | null;
-  search: string | null;
-  order: string | null;
-  sortBy: string | null;
-  pageSize: number;
-  pageIndex: number;
-}
-
-export interface GetTeamMembersResponse {
-  results: TeamMember[];
-  count: number;
-}
-
-export type RevokeUserRolesRequest = {
-  users: string;
-  role: string;
-  scope: string;
-};
-
-export interface DeleteRevokeUserRolesResponse {
-  completed: {
-    userIdentifiers: string;
-    status: string;
-  }[],
-  errors: {
-    userIdentifiers: string;
-    error: string;
-  }[],
-}
-
-export type PermissionsByRole = {
-  role: string;
-  permissions: string[];
-  userCount: number;
-};
-export interface PutAssignTeamMembersRoleResponse {
-  completed: { userIdentifier: string; status: string }[];
-  errors: { userIdentifier: string; error: string }[];
-}
-
-export interface AssignTeamMembersRoleRequest {
-  users: string[];
-  role: string;
-  scope: string;
-}
-
-export type ValidateUsersRequest = {
-  users: string[];
-};
-
-export type ValidateUsersResponse = {
-  validUsers: string[];
-  invalidUsers: string[];
-  summary: {
-    total: number;
-    validCount: number;
-    invalidCount: number;
-  };
-};
+import {
+  QuerySettings,
+  GetTeamMembersResponse,
+  AssignTeamMembersRoleRequest,
+  PutAssignTeamMembersRoleResponse,
+  ValidateUsersRequest,
+  ValidateUsersResponse,
+  PermissionsByRole,
+  GetScopesParams,
+  GetScopesResponse,
+  OrganizationItem,
+  RevokeUserRolesRequest,
+  DeleteRevokeUserRolesResponse,
+} from './types';
 
 export const getTeamMembers = async (object: string, querySettings: QuerySettings): Promise<GetTeamMembersResponse> => {
   const url = new URL(getApiUrl(`/api/authz/v1/roles/users/?scope=${object}`));
@@ -120,6 +73,24 @@ export const getPermissionsByRole = async (scope: string): Promise<PermissionsBy
   return camelCaseObject(data.results);
 };
 
+export const getScopes = async (params: GetScopesParams): Promise<GetScopesResponse> => {
+  const url = new URL(getApiUrl('/api/authz/v1/scopes/'));
+  if (params.scopeType) { url.searchParams.set('scope_type', params.scopeType); }
+  if (params.search) { url.searchParams.set('search', params.search); }
+  if (params.org) { url.searchParams.set('org', params.org); }
+  if (params.managementPermissionOnly) { url.searchParams.set('management_permission_only', 'true'); }
+  url.searchParams.set('page', (params.page ?? 1).toString());
+  url.searchParams.set('page_size', (params.pageSize ?? 10).toString());
+  const { data } = await getAuthenticatedHttpClient().get(url);
+  return camelCaseObject(data);
+};
+
+export const getOrganizations = async (): Promise<OrganizationItem[]> => {
+  const url = new URL(getApiUrl('/api/authz/v1/orgs/'));
+  const { data } = await getAuthenticatedHttpClient().get(url);
+  return camelCaseObject(data.results ?? data);
+};
+
 export const revokeUserRoles = async (
   data: RevokeUserRolesRequest,
 ): Promise<DeleteRevokeUserRolesResponse> => {

src/authz-module/data/hooks.test.tsx

@@ -4,7 +4,7 @@ import { QueryClient, QueryClientProvider } from '@tanstack/react-query';
 import { getAuthenticatedHttpClient } from '@edx/frontend-platform/auth';
 import {
   useLibrary, usePermissionsByRole, useTeamMembers, useAssignTeamMembersRole, useRevokeUserRoles,
-  useValidateUsers,
+  useValidateUsers, useScopes, useOrganizations,
 } from './hooks';
 
 jest.mock('@edx/frontend-platform/auth', () => ({
@@ -346,6 +346,128 @@ describe('useValidateUsers', () => {
   });
 });
 
+describe('useScopes', () => {
+  beforeEach(() => {
+    jest.clearAllMocks();
+  });
+
+  const makeScopesResponse = (next: string | null = null) => ({
+    results: [{
+      externalKey: 'lib:testorg:testlib',
+      displayName: 'Test Library',
+      org: { id: 1, name: 'Test Org', slug: 'testorg' },
+    }],
+    count: 1,
+    next,
+    previous: null,
+  });
+
+  it('returns pages data on success', async () => {
+    getAuthenticatedHttpClient.mockReturnValue({
+      get: jest.fn().mockResolvedValue({ data: makeScopesResponse() }),
+    });
+
+    const { result } = renderHook(() => useScopes({}), { wrapper: createWrapper() });
+
+    await waitFor(() => expect(result.current.isSuccess).toBe(true));
+
+    expect(result.current.data?.pages).toHaveLength(1);
+    expect(result.current.data?.pages[0].results).toHaveLength(1);
+  });
+
+  it('hasNextPage is false when next is null', async () => {
+    getAuthenticatedHttpClient.mockReturnValue({
+      get: jest.fn().mockResolvedValue({ data: makeScopesResponse(null) }),
+    });
+
+    const { result } = renderHook(() => useScopes({}), { wrapper: createWrapper() });
+
+    await waitFor(() => expect(result.current.isSuccess).toBe(true));
+    expect(result.current.hasNextPage).toBe(false);
+  });
+
+  it('hasNextPage is true when next URL has page param', async () => {
+    getAuthenticatedHttpClient.mockReturnValue({
+      get: jest.fn().mockResolvedValue({
+        data: makeScopesResponse('http://localhost:8000/api/authz/v1/scopes/?page=2'),
+      }),
+    });
+
+    const { result } = renderHook(() => useScopes({}), { wrapper: createWrapper() });
+
+    await waitFor(() => expect(result.current.isSuccess).toBe(true));
+    expect(result.current.hasNextPage).toBe(true);
+  });
+
+  it('hasNextPage is false when next URL has no page param', async () => {
+    getAuthenticatedHttpClient.mockReturnValue({
+      get: jest.fn().mockResolvedValue({
+        data: makeScopesResponse('http://localhost:8000/api/authz/v1/scopes/'),
+      }),
+    });
+
+    const { result } = renderHook(() => useScopes({}), { wrapper: createWrapper() });
+
+    await waitFor(() => expect(result.current.isSuccess).toBe(true));
+    expect(result.current.hasNextPage).toBe(false);
+  });
+
+  it('hasNextPage is false when next is an invalid URL', async () => {
+    getAuthenticatedHttpClient.mockReturnValue({
+      get: jest.fn().mockResolvedValue({
+        data: makeScopesResponse('not-a-valid-url'),
+      }),
+    });
+
+    const { result } = renderHook(() => useScopes({}), { wrapper: createWrapper() });
+
+    await waitFor(() => expect(result.current.isSuccess).toBe(true));
+    expect(result.current.hasNextPage).toBe(false);
+  });
+
+  it('handles error when API call fails', async () => {
+    getAuthenticatedHttpClient.mockReturnValue({
+      get: jest.fn().mockRejectedValue(new Error('Network error')),
+    });
+
+    const { result } = renderHook(() => useScopes({}), { wrapper: createWrapper() });
+
+    await waitFor(() => expect(result.current.isError).toBe(true));
+    expect(result.current.error).toBeDefined();
+  });
+});
+
+describe('useOrganizations', () => {
+  beforeEach(() => {
+    jest.clearAllMocks();
+  });
+
+  const mockOrgs = [{
+    id: 1, name: 'Org One', shortName: 'org1', description: '', logo: null, active: true,
+  }];
+
+  it('returns organizations on success', async () => {
+    getAuthenticatedHttpClient.mockReturnValue({
+      get: jest.fn().mockResolvedValue({ data: { results: mockOrgs } }),
+    });
+
+    const { result } = renderHook(() => useOrganizations(), { wrapper: createWrapper() });
+
+    await waitFor(() => expect(result.current.isSuccess).toBe(true));
+    expect(result.current.data).toEqual(mockOrgs);
+  });
+
+  it('handles error when API fails', async () => {
+    getAuthenticatedHttpClient.mockReturnValue({
+      get: jest.fn().mockRejectedValue(new Error('Failed')),
+    });
+
+    const { result } = renderHook(() => useOrganizations(), { wrapper: createWrapper() });
+
+    await waitFor(() => expect(result.current.isError).toBe(true));
+  });
+});
+
 describe('useRevokeUserRoles', () => {
   beforeEach(() => {
     jest.clearAllMocks();

src/authz-module/data/hooks.ts

@@ -1,13 +1,18 @@
 import {
-  useMutation, useQuery, useQueryClient, useSuspenseQuery,
+  useInfiniteQuery, useMutation, useQuery, useQueryClient, useSuspenseQuery,
 } from '@tanstack/react-query';
 import { appId } from '@src/constants';
 import { LibraryMetadata } from '@src/types';
 import {
-  assignTeamMembersRole, AssignTeamMembersRoleRequest, getLibrary, getPermissionsByRole, getTeamMembers,
-  GetTeamMembersResponse, PermissionsByRole, QuerySettings, revokeUserRoles, RevokeUserRolesRequest,
-  validateUsers, ValidateUsersRequest,
+  assignTeamMembersRole, getLibrary, getOrganizations,
+  getPermissionsByRole, getScopes, getTeamMembers,
+  revokeUserRoles, validateUsers,
 } from './api';
+import {
+  AssignTeamMembersRoleRequest, GetScopesParams, GetScopesResponse,
+  GetTeamMembersResponse, OrganizationItem, PermissionsByRole, QuerySettings,
+  RevokeUserRolesRequest, ValidateUsersRequest,
+} from './types';
 
 const authzQueryKeys = {
   all: [appId, 'authz'] as const,
@@ -106,6 +111,41 @@ export const useValidateUsers = () => useMutation({
   }) => validateUsers(data),
 });
 
+/**
+ * React Query hook to fetch a paginated, searchable list of scopes (courses or libraries).
+ * Uses infinite query to support infinite scroll.
+ *
+ * @param params - Filter params: contextType, search, org, pageSize
+ */
+export const useScopes = (params: Omit<GetScopesParams, 'page'>) => useInfiniteQuery<GetScopesResponse, Error>({
+  queryKey: [...authzQueryKeys.all, 'scopes', params],
+  queryFn: ({ pageParam }) => getScopes({ ...params, page: pageParam as number }),
+  getNextPageParam: (lastPage) => {
+    if (!lastPage.next) { return undefined; }
+    try {
+      const nextUrl = new URL(lastPage.next);
+      const page = nextUrl.searchParams.get('page');
+      return page ? parseInt(page, 10) : undefined;
+    } catch {
+      return undefined;
+    }
+  },
+  initialPageParam: 1,
+  staleTime: 1000 * 60 * 5,
+});
+
+/**
+ * React Query hook to fetch the list of organizations for a given context type.
+ * Used to populate the Organization filter dropdown in the scope selector.
+ *
+ * @param contextType - 'course' | 'library'
+ */
+export const useOrganizations = () => useQuery<OrganizationItem[], Error>({
+  queryKey: [...authzQueryKeys.all, 'organizations'],
+  queryFn: () => getOrganizations(),
+  staleTime: 1000 * 60 * 30,
+});
+
 /**
  * React Query hook to remove roles for a specific team member within a scope.
  *