chore(deploy): update API endpoint to deployment AKfycbx1hNttxsfo5_LaXTPRN7XJvktexa8dWd38pu7ADZGY-JUzNG7S0p7rFohF-AWReBkxMg

- Updated frontend configuration with new Google Apps Script deployment ID
- Updated test script with new endpoint
- Updated environment configuration

Deployment ID: AKfycbx1hNttxsfo5_LaXTPRN7XJvktexa8dWd38pu7ADZGY-JUzNG7S0p7rFohF-AWReBkxMg
Endpoint: https://script.google.com/macros/s/AKfycbx1hNttxsfo5_LaXTPRN7XJvktexa8dWd38pu7ADZGY-JUzNG7S0p7rFohF-AWReBkxMg/exec

Author: sayak-sarkar

backend/thinkREDBot.js

@@ -48,7 +48,19 @@ function doOptions(e) {
 
 function doPost(e) {
   try {
-    const payload = JSON.parse(e.postData.contents);
+    // Handle larger payloads for file uploads
+    let payload;
+    try {
+      payload = JSON.parse(e.postData.contents);
+    } catch (parseError) {
+      return createErrorResponse('Invalid JSON payload');
+    }
+    
+    // Validate payload structure
+    if (!payload.action) {
+      return createErrorResponse('Missing action in payload');
+    }
+    
     switch (payload.action) {
       case 'submitContactForm':
         return handleContactForm(payload.data);
@@ -58,6 +70,7 @@ function doPost(e) {
         return createErrorResponse('Invalid action provided');
     }
   } catch (error) {
+    console.error('doPost error:', error);
     return createErrorResponse(`Server Error: ${error.message}`);
   }
 }
@@ -135,47 +148,81 @@ https://docs.google.com/spreadsheets/d/${CONTACT_FORM_SHEET_ID}
 
 // === JOB APPLICATION HANDLER ===
 function handleJobApplication(data) {
-  const {
-    jobId, applicationId, name, email, phone,
-    resumeBase64, coverLetterBase64
-  } = data;
-
-  if (!(jobId && applicationId && name && email && resumeBase64)) {
-    return createErrorResponse('Missing required fields in job application');
-  }
-
-  const resumeParentFolder = DriveApp.getFolderById(RESUME_PARENT_FOLDER_ID);
-  const jobFolder = getOrCreateSubFolder(resumeParentFolder, jobId);
-  const applicationFolder = jobFolder.createFolder(applicationId);
-
-  const resumeFile = applicationFolder.createFile(
-    Utilities.newBlob(Utilities.base64Decode(resumeBase64), 'application/pdf', `${name}_Resume.pdf`)
-  );
+  try {
+    const {
+      jobId, applicationId, name, email, phone,
+      resumeBase64, coverLetterBase64
+    } = data;
+
+    // Validate required fields
+    if (!(jobId && applicationId && name && email && resumeBase64)) {
+      return createErrorResponse('Missing required fields in job application');
+    }
 
-  let coverLetterFile = null;
-  if (coverLetterBase64) {
-    coverLetterFile = applicationFolder.createFile(
-      Utilities.newBlob(Utilities.base64Decode(coverLetterBase64), 'application/pdf', `${name}_CoverLetter.pdf`)
-    );
-  }
+    // Validate base64 data to prevent corruption
+    if (!isValidBase64(resumeBase64)) {
+      return createErrorResponse('Invalid resume file format');
+    }
 
-  const sheet = SpreadsheetApp.openById(JOB_APPLICATION_SHEET_ID).getSheetByName('Applications');
-  if (!sheet) return createErrorResponse('Sheet "Applications" not found');
+    if (coverLetterBase64 && !isValidBase64(coverLetterBase64)) {
+      return createErrorResponse('Invalid cover letter file format');
+    }
 
-  sheet.appendRow([
-    new Date(),
-    jobId,
-    applicationId,
-    name,
-    email,
-    phone || '',
-    resumeFile.getUrl(),
-    coverLetterFile ? coverLetterFile.getUrl() : ''
-  ]);
+    // Get or create folder structure
+    const resumeParentFolder = DriveApp.getFolderById(RESUME_PARENT_FOLDER_ID);
+    const jobFolder = getOrCreateSubFolder(resumeParentFolder, jobId);
+    const applicationFolder = jobFolder.createFolder(applicationId);
+
+    // Create resume file with better error handling
+    let resumeFile;
+    try {
+      const resumeBlob = Utilities.newBlob(
+        Utilities.base64Decode(resumeBase64), 
+        'application/pdf', 
+        `${sanitizeFileName(name)}_Resume.pdf`
+      );
+      resumeFile = applicationFolder.createFile(resumeBlob);
+    } catch (error) {
+      console.error('Error creating resume file:', error);
+      return createErrorResponse('Failed to save resume file');
+    }
 
-  const subject = `[ThinkRED] New Job Application – ${name} (${jobId})`;
+    // Create cover letter file if provided
+    let coverLetterFile = null;
+    if (coverLetterBase64) {
+      try {
+        const coverLetterBlob = Utilities.newBlob(
+          Utilities.base64Decode(coverLetterBase64), 
+          'application/pdf', 
+          `${sanitizeFileName(name)}_CoverLetter.pdf`
+        );
+        coverLetterFile = applicationFolder.createFile(coverLetterBlob);
+      } catch (error) {
+        console.error('Error creating cover letter file:', error);
+        // Don't fail the entire submission for cover letter issues
+        console.warn('Cover letter file creation failed, continuing without it');
+      }
+    }
 
-  const plainBody = `
+    // Save to spreadsheet
+    const sheet = SpreadsheetApp.openById(JOB_APPLICATION_SHEET_ID).getSheetByName('Applications');
+    if (!sheet) return createErrorResponse('Sheet "Applications" not found');
+
+    sheet.appendRow([
+      new Date(),
+      jobId,
+      applicationId,
+      name,
+      email,
+      phone || '',
+      resumeFile.getUrl(),
+      coverLetterFile ? coverLetterFile.getUrl() : ''
+    ]);
+
+    // Send notification email
+    const subject = `[ThinkRED] New Job Application – ${name} (${jobId})`;
+
+    const plainBody = `
 A new job application has been received.
 
 Job ID: ${jobId}
@@ -191,7 +238,7 @@ View the full record in the spreadsheet:
 https://docs.google.com/spreadsheets/d/${JOB_APPLICATION_SHEET_ID}
 `;
 
-  const htmlBody = `
+    const htmlBody = `
 <h3>New job application received</h3>
 <ul>
   <li><strong>Job ID:</strong> ${jobId}</li>
@@ -205,12 +252,17 @@ https://docs.google.com/spreadsheets/d/${JOB_APPLICATION_SHEET_ID}
 <p><a href="https://docs.google.com/spreadsheets/d/${JOB_APPLICATION_SHEET_ID}">View Spreadsheet</a></p>
 `;
 
-  GmailApp.sendEmail(EMAIL_TO, subject, plainBody, {
-    cc: EMAIL_CC_JOB_APPLY,
-    htmlBody: htmlBody
-  });
+    GmailApp.sendEmail(EMAIL_TO, subject, plainBody, {
+      cc: EMAIL_CC_JOB_APPLY,
+      htmlBody: htmlBody
+    });
 
-  return createCorsResponse({ success: true });
+    return createCorsResponse({ success: true });
+    
+  } catch (error) {
+    console.error('Job application handling error:', error);
+    return createErrorResponse(`Failed to process job application: ${error.message}`);
+  }
 }
 
 // === UTILITY FUNCTIONS ===
@@ -219,19 +271,24 @@ function getOrCreateSubFolder(parent, name) {
   return folders.hasNext() ? folders.next() : parent.createFolder(name);
 }
 
-function createErrorResponse(message) {
-  return createCorsResponse({ success: false, error: message });
+/**
+ * Validate base64 string format
+ */
+function isValidBase64(str) {
+  try {
+    if (!str || typeof str !== 'string') return false;
+    // Basic base64 validation - should be divisible by 4 and contain valid characters
+    const base64Regex = /^[A-Za-z0-9+\/]*={0,2}$/;
+    return str.length % 4 === 0 && base64Regex.test(str);
+  } catch (error) {
+    return false;
+  }
 }
 
-function createCorsResponse(data) {
-  const output = ContentService.createTextOutput(JSON.stringify(data))
-    .setMimeType(ContentService.MimeType.JSON);
-  
-  // Google Apps Script does not support custom headers for CORS
-  // CORS is automatically handled when the web app is deployed with:
-  // - Execute as: Me (or User accessing the web app)  
-  // - Who has access: Anyone
-  // The deployment settings handle CORS automatically
-  
-  return output;
+/**
+ * Sanitize file names to prevent issues with Google Drive
+ */
+function sanitizeFileName(name) {
+  // Remove special characters and replace spaces with underscores
+  return name.replace(/[^a-zA-Z0-9\s]/g, '').replace(/\s+/g, '_').substring(0, 50);
 }

docs/DEPLOYMENT_MANAGEMENT.md

@@ -21,6 +21,7 @@ The new system provides:
 ## 📁 System Components
 
 ### 1. GitHub Actions Workflow (`deploy-backend.yml`)
+
 - Automatically captures new deployment IDs from Google Apps Script
 - Updates frontend configuration files
 - Commits and pushes changes to trigger frontend rebuild
@@ -29,6 +30,7 @@ The new system provides:
 ### 2. Local Deployment Scripts
 
 #### `scripts/update-deployment-id.sh`
+
 Updates deployment ID across all configuration files:
 ```bash
 # Update to specific deployment ID
@@ -39,6 +41,7 @@ Updates deployment ID across all configuration files:
 ```
 
 #### `scripts/deployment-manager.sh`
+
 Manages multiple deployment environments:
 ```bash
 # Show current configuration
@@ -58,11 +61,13 @@ Manages multiple deployment environments:
 ```
 
 #### Enhanced `backend/deploy.sh`
+
 - Automatically extracts deployment ID from `clasp deploy` output
 - Calls update scripts to synchronize frontend configuration
 - Provides deployment status and testing instructions
 
 ### 3. Frontend Configuration (`frontend/src/config/environment.ts`)
+
 Enhanced to support environment-specific deployment IDs:
 ```typescript
 // Environment-specific deployment IDs
@@ -75,6 +80,7 @@ GOOGLE_APPS_SCRIPT_DEPLOYMENT_ID=AKfycby...
 ```
 
 ### 4. Environment Configuration (`.deployment-config.json`)
+
 Stores deployment IDs for different environments:
 ```json
 {
@@ -152,19 +158,21 @@ Stores deployment IDs for different environments:
 ## 🧪 Testing
 
 ### Automated Testing
+
 The `test-cors-api.sh` script is automatically updated with new deployment IDs:
 ```bash
 ./test-cors-api.sh
 ```
 
 ### Manual Testing
+
 1. **Check endpoint status**:
    ```bash
    curl "https://script.google.com/macros/s/AKfycby.../exec?action=test"
    ```
 
 2. **Test job application flow**:
-   - Visit: https://thinkredtech.github.io/apply/ui-ux-designer
+   - Visit: <https://thinkredtech.github.io/apply/ui-ux-designer>
    - Submit test application
    - Verify in Google Sheets
 
@@ -179,16 +187,19 @@ The system automatically updates these files:
 ## 🚨 Troubleshooting
 
 ### Frontend Still Points to Old Endpoint
+
 1. Check if GitHub Actions deployment completed successfully
 2. Verify frontend rebuild was triggered
 3. Manually update using: `./scripts/update-deployment-id.sh NEW_ID`
 
 ### Backend Deployment ID Not Captured
+
 1. Check `clasp deploy` output format
 2. Verify regex pattern in deployment script
 3. Manually extract ID from Google Apps Script console
 
 ### Environment Configuration Issues
+
 1. Check `.deployment-config.json` exists and is valid JSON
 2. Verify `jq` is installed for JSON manipulation
 3. Reset configuration: `rm .deployment-config.json && ./scripts/deployment-manager.sh`

frontend/src/config/environment.ts

@@ -158,7 +158,7 @@ const getDeploymentId = (): string => {
   }
 
   // Final fallback to latest known production deployment ID
-  return 'AKfycbyQpxAHaosv-kGuveJbboxpn3jnzl3TabvmMlTMBAtn-s4VGbEOAJKVYhndRVMYOpISYw';
+  return 'AKfycbx1hNttxsfo5_LaXTPRN7XJvktexa8dWd38pu7ADZGY-JUzNG7S0p7rFohF-AWReBkxMg';
 };
 
 /**

frontend/src/pages/JobApplicationPage.tsx

@@ -97,8 +97,8 @@ const JobApplicationPage = () => {
       const validationResult = validateFile(
         file,
         allowedTypes,
-        5 * 1024 * 1024
-      ); // 5MB limit
+        10 * 1024 * 1024
+      ); // 10MB limit (increased from 5MB)
 
       if (!validationResult.isValid) {
         setErrors(prev => ({
@@ -578,7 +578,7 @@ const JobApplicationPage = () => {
                           )}
                         </div>
                         <p className="text-xs text-gray-500 mt-1">
-                          PDF, DOC, or DOCX format. Max 5MB.
+                          PDF, DOC, or DOCX format. Max 10MB.
                         </p>
                       </div>
                       <div>
@@ -611,7 +611,7 @@ const JobApplicationPage = () => {
                           )}
                         </div>
                         <p className="text-xs text-gray-500 mt-1">
-                          PDF, DOC, or DOCX format. Max 5MB.
+                          PDF, DOC, or DOCX format. Max 10MB.
                         </p>
                       </div>
                     </div>