chore(one-click-setup): add minio support

fix: once-clik-k8s setup and helm chart redis
- update chart to add minio dependency - fix variable issues
2025-12-25 07:50:19 -06:00 · 2025-03-28 12:55:30 +05:30 · 2025-03-27 14:55:49 +05:30 · 2025-03-27 14:17:38 +05:30 · 2025-03-27 13:15:54 +05:30 · 2025-03-26 23:29:05 +09:00
642 changed files with 12806 additions and 32738 deletions
--- a/.env.example
+++ b/.env.example
@@ -80,9 +80,6 @@ S3_ENDPOINT_URL=
 # Force path style for S3 compatible storage (0 for disabled, 1 for enabled)
 S3_FORCE_PATH_STYLE=0

-# Set this URL to add a custom domain to your survey links(default is WEBAPP_URL)
-# SURVEY_URL=https://survey.example.com
-
 #####################
 # Disable Features  #
 #####################
@@ -117,7 +114,7 @@ IMPRINT_URL=
 IMPRINT_ADDRESS=

 # Configure Turnstile in signup flow
-# TURNSTILE_SITE_KEY=
+# NEXT_PUBLIC_TURNSTILE_SITE_KEY=
 # TURNSTILE_SECRET_KEY=

 # Configure Github Login
@@ -155,8 +152,9 @@ STRIPE_SECRET_KEY=
 STRIPE_WEBHOOK_SECRET=

 # Configure Formbricks usage within Formbricks
-FORMBRICKS_API_HOST=
-FORMBRICKS_ENVIRONMENT_ID=
+NEXT_PUBLIC_FORMBRICKS_API_HOST=
+NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID=
+NEXT_PUBLIC_FORMBRICKS_ONBOARDING_SURVEY_ID=

 # Oauth credentials for Google sheet integration
 GOOGLE_SHEETS_CLIENT_ID=
--- a/.github/actions/cache-build-web/action.yml
+++ b/.github/actions/cache-build-web/action.yml
@@ -8,14 +8,6 @@ on:
        required: false
        default: "0"

-inputs:
-  turbo_token:
-    description: "Turborepo token"
-    required: false
-  turbo_team:
-    description: "Turborepo team"
-    required: false
-
 runs:
  using: "composite"
  steps:
@@ -64,14 +56,11 @@ runs:
    - name: Fill ENCRYPTION_KEY, ENTERPRISE_LICENSE_KEY and E2E_TESTING in .env
      run: |
        RANDOM_KEY=$(openssl rand -hex 32)
-        sed -i "s/ENCRYPTION_KEY=.*/ENCRYPTION_KEY=${RANDOM_KEY}/" .env
        echo "E2E_TESTING=${{ inputs.e2e_testing_mode }}" >> .env
      shell: bash

    - run: |
        pnpm build --filter=@formbricks/web...
+
      if: steps.cache-build.outputs.cache-hit != 'true'
      shell: bash
-      env:
-        TURBO_TOKEN: ${{ inputs.turbo_token }}
-        TURBO_TEAM: ${{ inputs.turbo_team }}
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,84 +0,0 @@
-# To get started with Dependabot version updates, you'll need to specify which
-# package ecosystems to update and where the package manifests are located.
-# Please see the documentation for all configuration options:
-# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
-
-version: 2
-updates:
-  - package-ecosystem: "npm" # For pnpm monorepos, use npm ecosystem
-    directory: "/" # Root package.json
-    schedule:
-      interval: "weekly"
-    versioning-strategy: increase
-
-  # Apps directory packages
-  - package-ecosystem: "npm"
-    directory: "/apps/demo"
-    schedule:
-      interval: "weekly"
-
-  - package-ecosystem: "npm"
-    directory: "/apps/demo-react-native"
-    schedule:
-      interval: "weekly"
-
-  - package-ecosystem: "npm"
-    directory: "/apps/storybook"
-    schedule:
-      interval: "weekly"
-
-  - package-ecosystem: "npm"
-    directory: "/apps/web"
-    schedule:
-      interval: "weekly"
-
-  # Packages directory
-  - package-ecosystem: "npm"
-    directory: "/packages/database"
-    schedule:
-      interval: "weekly"
-
-  - package-ecosystem: "npm"
-    directory: "/packages/lib"
-    schedule:
-      interval: "weekly"
-
-  - package-ecosystem: "npm"
-    directory: "/packages/types"
-    schedule:
-      interval: "weekly"
-
-  - package-ecosystem: "npm"
-    directory: "/packages/config-eslint"
-    schedule:
-      interval: "weekly"
-
-  - package-ecosystem: "npm"
-    directory: "/packages/config-prettier"
-    schedule:
-      interval: "weekly"
-
-  - package-ecosystem: "npm"
-    directory: "/packages/config-typescript"
-    schedule:
-      interval: "weekly"
-      
-  - package-ecosystem: "npm"
-    directory: "/packages/js-core"
-    schedule:
-      interval: "weekly"
-      
-  - package-ecosystem: "npm"
-    directory: "/packages/surveys"
-    schedule:
-      interval: "weekly"
-      
-  - package-ecosystem: "npm"
-    directory: "/packages/logger"
-    schedule:
-      interval: "weekly"
-
-  - package-ecosystem: "github-actions"
-    directory: "/"
-    schedule:
-      interval: "weekly"
--- a/.github/workflows/build-web.yml
+++ b/.github/workflows/build-web.yml
@@ -4,7 +4,7 @@ on:

 permissions:
  contents: read
-
+  
 jobs:
  build:
    name: Build Formbricks-web
@@ -25,5 +25,3 @@ jobs:
        id: cache-build-web
        with:
          e2e_testing_mode: "0"
-          turbo_token: ${{ secrets.TURBO_TOKEN }}
-          turbo_team: ${{ vars.TURBO_TEAM }}
--- a/.github/workflows/cron-surveyStatusUpdate.yml
+++ b/.github/workflows/cron-surveyStatusUpdate.yml
@@ -0,0 +1,33 @@
+name: Cron - Survey status update
+
+on:
+  workflow_dispatch:
+  # "Scheduled workflows run on the latest commit on the default or base branch."
+  # — https://docs.github.com/en/actions/learn-github-actions/events-that-trigger-workflows#schedule
+  schedule:
+    # Runs "At 00:00." (see https://crontab.guru)
+    - cron: "0 0 * * *"
+
+permissions:
+  contents: read
+
+jobs:
+  cron-weeklySummary:
+    env:
+      APP_URL: ${{ secrets.APP_URL }}
+      CRON_SECRET: ${{ secrets.CRON_SECRET }}
+    runs-on: ubuntu-latest
+    steps:
+      - name: Harden the runner (Audit all outbound calls)
+        uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
+        with:
+          egress-policy: audit
+
+      - name: cURL request
+        if: ${{ env.APP_URL && env.CRON_SECRET }}
+        run: |
+          curl ${{ env.APP_URL }}/api/cron/survey-status \
+            -X POST \
+            -H 'content-type: application/json' \
+            -H 'x-api-key: ${{ env.CRON_SECRET }}' \
+            --fail
--- a/.github/workflows/cron-weeklySummary.yml
+++ b/.github/workflows/cron-weeklySummary.yml
@@ -0,0 +1,33 @@
+name: Cron - Weekly summary
+
+on:
+  workflow_dispatch:
+  # "Scheduled workflows run on the latest commit on the default or base branch."
+  # — https://docs.github.com/en/actions/learn-github-actions/events-that-trigger-workflows#schedule
+  schedule:
+    # Runs “At 08:00 on Monday.” (see https://crontab.guru)
+    - cron: "0 8 * * 1"
+permissions:
+  contents: read
+
+jobs:
+  cron-weeklySummary:
+    permissions:
+      contents: read    
+    env:
+      APP_URL: ${{ secrets.APP_URL }}
+      CRON_SECRET: ${{ secrets.CRON_SECRET }}
+    runs-on: ubuntu-latest
+    steps:
+      - name: Harden the runner (Audit all outbound calls)
+        uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481
+        with:
+          egress-policy: audit
+      - name: cURL request
+        if: ${{ env.APP_URL && env.CRON_SECRET }}
+        run: |
+          curl ${{ env.APP_URL }}/api/cron/weekly-summary \
+            -X POST \
+            -H 'content-type: application/json' \
+            -H 'x-api-key: ${{ env.CRON_SECRET }}' \
+            --fail
--- a/.github/workflows/docker-build-validation.yml
+++ b/.github/workflows/docker-build-validation.yml
@@ -1,167 +0,0 @@
-name: Docker Build Validation
-
-on:
-  pull_request:
-    branches:
-      - main
-  merge_group:
-    branches:
-      - main
-  workflow_dispatch:
-
-permissions:
-  contents: read
-
-env:
-  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
-  TURBO_TEAM: ${{ vars.TURBO_TEAM }}
-
-jobs:
-  validate-docker-build:
-    name: Validate Docker Build
-    runs-on: ubuntu-latest
-
-    # Add PostgreSQL service container
-    services:
-      postgres:
-        image: pgvector/pgvector:pg17
-        env:
-          POSTGRES_USER: test
-          POSTGRES_PASSWORD: test
-          POSTGRES_DB: formbricks
-        ports:
-          - 5432:5432
-        # Health check to ensure PostgreSQL is ready before using it
-        options: >-
-          --health-cmd pg_isready
-          --health-interval 10s
-          --health-timeout 5s
-          --health-retries 5
-
-    steps:
-      - name: Checkout Repository
-        uses: actions/checkout@v3
-
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v3
-
-      - name: Build Docker Image
-        uses: docker/build-push-action@v6
-        with:
-          context: .
-          file: ./apps/web/Dockerfile
-          push: false
-          load: true
-          tags: formbricks-test:${{ github.sha }}
-          cache-from: type=gha
-          cache-to: type=gha,mode=max
-          secrets: |
-            database_url=${{ secrets.DUMMY_DATABASE_URL }}
-            encryption_key=${{ secrets.DUMMY_ENCRYPTION_KEY }}
-
-      - name: Verify PostgreSQL Connection
-        run: |
-          echo "Verifying PostgreSQL connection..."
-          # Install PostgreSQL client to test connection
-          sudo apt-get update && sudo apt-get install -y postgresql-client
-
-          # Test connection using psql
-          PGPASSWORD=test psql -h localhost -U test -d formbricks -c "\dt" || echo "Failed to connect to PostgreSQL"
-
-          # Show network configuration
-          echo "Network configuration:"
-          ip addr show
-          netstat -tulpn | grep 5432 || echo "No process listening on port 5432"
-
-      - name: Test Docker Image with Health Check
-        shell: bash
-        run: |
-          echo "🧪 Testing if the Docker image starts correctly..."
-
-          # Add extra docker run args to support host.docker.internal on Linux
-          DOCKER_RUN_ARGS="--add-host=host.docker.internal:host-gateway"
-
-          # Start the container with host.docker.internal pointing to the host
-          docker run --name formbricks-test \
-            $DOCKER_RUN_ARGS \
-            -p 3000:3000 \
-            -e DATABASE_URL="postgresql://test:test@host.docker.internal:5432/formbricks" \
-            -e ENCRYPTION_KEY="${{ secrets.DUMMY_ENCRYPTION_KEY }}" \
-            -d formbricks-test:${{ github.sha }}
-
-          # Give it more time to start up
-          echo "Waiting 45 seconds for application to start..."
-          sleep 45
-
-          # Check if the container is running
-          if [ "$(docker inspect -f '{{.State.Running}}' formbricks-test)" != "true" ]; then
-            echo "❌ Container failed to start properly!"
-            docker logs formbricks-test
-            exit 1
-          else
-            echo "✅ Container started successfully!"
-          fi
-
-          # Try connecting to PostgreSQL from inside the container
-          echo "Testing PostgreSQL connection from inside container..."
-          docker exec formbricks-test sh -c 'apt-get update && apt-get install -y postgresql-client && PGPASSWORD=test psql -h host.docker.internal -U test -d formbricks -c "\dt" || echo "Failed to connect to PostgreSQL from container"'
-
-          # Try to access the health endpoint
-          echo "🏥 Testing /health endpoint..."
-          MAX_RETRIES=10
-          RETRY_COUNT=0
-          HEALTH_CHECK_SUCCESS=false
-
-          set +e  # Disable exit on error to allow for retries
-
-          while [ $RETRY_COUNT -lt $MAX_RETRIES ]; do
-            RETRY_COUNT=$((RETRY_COUNT + 1))
-            echo "Attempt $RETRY_COUNT of $MAX_RETRIES..."
-            
-            # Show container logs before each attempt to help debugging
-            if [ $RETRY_COUNT -gt 1 ]; then
-              echo "📋 Current container logs:"
-              docker logs --tail 20 formbricks-test
-            fi
-            
-            # Get detailed curl output for debugging
-            HTTP_OUTPUT=$(curl -v -s -m 30 http://localhost:3000/health 2>&1)
-            CURL_EXIT_CODE=$?
-            
-            echo "Curl exit code: $CURL_EXIT_CODE"
-            echo "Curl output: $HTTP_OUTPUT"
-            
-            if [ $CURL_EXIT_CODE -eq 0 ]; then
-              STATUS_CODE=$(echo "$HTTP_OUTPUT" | grep -oP "HTTP/\d(\.\d)? \K\d+")
-              echo "Status code detected: $STATUS_CODE"
-              
-              if [ "$STATUS_CODE" = "200" ]; then
-                echo "✅ Health check successful!"
-                HEALTH_CHECK_SUCCESS=true
-                break
-              else
-                echo "❌ Health check returned non-200 status code: $STATUS_CODE"
-              fi
-            else
-              echo "❌ Curl command failed with exit code: $CURL_EXIT_CODE"
-            fi
-            
-            echo "Waiting 15 seconds before next attempt..."
-            sleep 15
-          done
-
-          # Show full container logs for debugging
-          echo "📋 Full container logs:"
-          docker logs formbricks-test
-
-          # Clean up the container
-          echo "🧹 Cleaning up..."
-          docker rm -f formbricks-test
-
-          # Exit with failure if health check did not succeed
-          if [ "$HEALTH_CHECK_SUCCESS" != "true" ]; then
-            echo "❌ Health check failed after $MAX_RETRIES attempts"
-            exit 1
-          fi
-
-          echo "✨ Docker validation complete - all checks passed!"
--- a/.github/workflows/e2e.yml
+++ b/.github/workflows/e2e.yml
@@ -16,8 +16,6 @@ on:

 env:
  TELEMETRY_DISABLED: 1
-  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
-  TURBO_TEAM: ${{ vars.TURBO_TEAM }}

 permissions:
  id-token: write
--- a/.github/workflows/release-docker-github-experimental.yml
+++ b/.github/workflows/release-docker-github-experimental.yml
@@ -15,6 +15,7 @@ env:
  IMAGE_NAME: ${{ github.repository }}-experimental
  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
  TURBO_TEAM: ${{ secrets.TURBO_TEAM }}
+  DATABASE_URL: "postgresql://postgres:postgres@localhost:5432/formbricks?schema=public"

 permissions:
  contents: read
@@ -79,9 +80,6 @@ jobs:
          push: ${{ github.event_name != 'pull_request' }}
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
-          secrets: |
-            database_url=${{ secrets.DUMMY_DATABASE_URL }}
-            encryption_key=${{ secrets.DUMMY_ENCRYPTION_KEY }}
          cache-from: type=gha
          cache-to: type=gha,mode=max

--- a/.github/workflows/release-docker-github.yml
+++ b/.github/workflows/release-docker-github.yml
@@ -19,6 +19,7 @@ env:
  IMAGE_NAME: ${{ github.repository }}
  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
  TURBO_TEAM: ${{ secrets.TURBO_TEAM }}
+  DATABASE_URL: "postgresql://postgres:postgres@localhost:5432/formbricks?schema=public"

 permissions:
  contents: read
@@ -99,9 +100,6 @@ jobs:
          push: ${{ github.event_name != 'pull_request' }}
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
-          secrets: |
-            database_url=${{ secrets.DUMMY_DATABASE_URL }}
-            encryption_key=${{ secrets.DUMMY_ENCRYPTION_KEY }}
          cache-from: type=gha
          cache-to: type=gha,mode=max

--- a/.github/workflows/sonarqube.yml
+++ b/.github/workflows/sonarqube.yml
@@ -23,10 +23,10 @@ jobs:
        with:
          fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis

-      - name: Setup Node.js 22.x
+      - name: Setup Node.js 20.x
        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af
        with:
-          node-version: 22.x
+          node-version: 20.x

      - name: Install pnpm
        uses: pnpm/action-setup@fe02b34f77f8bc703788d5817da081398fad5dd2
@@ -48,7 +48,7 @@ jobs:
        run: |
          pnpm test:coverage
      - name: SonarQube Scan
-        uses: SonarSource/sonarqube-scan-action@aa494459d7c39c106cc77b166de8b4250a32bb97
+        uses: SonarSource/sonarqube-scan-action@bfd4e558cda28cda6b5defafb9232d191be8c203
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
--- a/.github/workflows/terrafrom-plan-and-apply.yml
+++ b/.github/workflows/terrafrom-plan-and-apply.yml
@@ -3,21 +3,16 @@ name: 'Terraform'
 on:
  workflow_dispatch:
 # TODO: enable it back when migration is completed.
-  push:
-    branches:
-      - main
-    paths:
-      - "infra/terraform/**"
-  pull_request:
-    branches:
-      - main
-    paths:
-      - "infra/terraform/**"
+#  push:
+#    branches:
+#      - main
+#  pull_request:
+#    branches:
+#      - main

 permissions:
  id-token: write
  contents: write
-  pull-requests: write

 jobs:
  terraform:
@@ -63,17 +58,18 @@ jobs:
        run: terraform plan -out .planfile
        working-directory: infra/terraform

-      - name: Post PR comment
-        uses: borchero/terraform-plan-comment@3399d8dbae8b05185e815e02361ede2949cd99c4 # v2.4.0
-        if: always() && github.ref != 'refs/heads/main' && (steps.plan.outcome == 'success' || steps.plan.outcome == 'failure')
-        with:
-          token: ${{ github.token }}
-          planfile: .planfile
-          working-directory: "infra/terraform"
+#      - name: Post PR comment
+#        uses: borchero/terraform-plan-comment@3399d8dbae8b05185e815e02361ede2949cd99c4 # v2.4.0
+#        if: always() && github.ref != 'refs/heads/main' && (steps.validate.outcome == 'success' || steps.validate.outcome == 'failure')
+#        with:
+#          token: ${{ github.token }}
+#          planfile: .planfile
+#          working-directory: "infra/terraform"
+#          skip-comment: true

      - name: Terraform Apply
        id: apply
-        if: github.ref == 'refs/heads/main' && github.event_name == 'push'
+#        if: github.ref == 'refs/heads/main' && github.event_name == 'push'
        run: terraform apply .planfile
        working-directory: "infra/terraform"

--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -1,13 +1,4 @@
 {
-  "github.copilot.chat.codeGeneration.instructions": [
-    {
-      "text": "When generating tests, always use vitest and use the `test` function instead of `it`."
-    }
-  ],
-  "sonarlint.connectedMode.project": {
-    "connectionId": "formbricks",
-    "projectKey": "formbricks_formbricks"
-  },
  "typescript.preferences.importModuleSpecifier": "non-relative",
  "typescript.tsdk": "node_modules/typescript/lib"
 }
--- a/apps/demo/components/sidebar.tsx
+++ b/apps/demo/components/sidebar.tsx
@@ -27,7 +27,7 @@ const secondaryNavigation = [

 export function Sidebar(): React.JSX.Element {
  return (
-    <div className="flex grow flex-col overflow-y-auto bg-cyan-700 pt-5 pb-4">
+    <div className="flex flex-grow flex-col overflow-y-auto bg-cyan-700 pb-4 pt-5">
      <nav
        className="mt-5 flex flex-1 flex-col divide-y divide-cyan-800 overflow-y-auto"
        aria-label="Sidebar">
@@ -38,10 +38,10 @@ export function Sidebar(): React.JSX.Element {
              href={item.href}
              className={classNames(
                item.current ? "bg-cyan-800 text-white" : "text-cyan-100 hover:bg-cyan-600 hover:text-white",
-                "group flex items-center rounded-md px-2 py-2 text-sm leading-6 font-medium"
+                "group flex items-center rounded-md px-2 py-2 text-sm font-medium leading-6"
              )}
              aria-current={item.current ? "page" : undefined}>
-              <item.icon className="mr-4 h-6 w-6 shrink-0 text-cyan-200" aria-hidden="true" />
+              <item.icon className="mr-4 h-6 w-6 flex-shrink-0 text-cyan-200" aria-hidden="true" />
              {item.name}
            </a>
          ))}
@@ -52,7 +52,7 @@ export function Sidebar(): React.JSX.Element {
              <a
                key={item.name}
                href={item.href}
-                className="group flex items-center rounded-md px-2 py-2 text-sm leading-6 font-medium text-cyan-100 hover:bg-cyan-600 hover:text-white">
+                className="group flex items-center rounded-md px-2 py-2 text-sm font-medium leading-6 text-cyan-100 hover:bg-cyan-600 hover:text-white">
                <item.icon className="mr-4 h-6 w-6 text-cyan-200" aria-hidden="true" />
                {item.name}
              </a>
--- a/apps/demo/globals.css
+++ b/apps/demo/globals.css
@@ -1,23 +1,3 @@
-@import 'tailwindcss';
-
-@plugin '@tailwindcss/forms';
-
-@custom-variant dark (&:is(.dark *));
-
-/*
-  The default border color has changed to `currentcolor` in Tailwind CSS v4,
-  so we've added these compatibility styles to make sure everything still
-  looks the same as it did with Tailwind CSS v3.
-
-  If we ever want to remove these styles, we need to add an explicit border
-  color utility to any element that depends on these defaults.
-*/
-@layer base {
-  *,
-  ::after,
-  ::before,
-  ::backdrop,
-  ::file-selector-button {
-    border-color: var(--color-gray-200, currentcolor);
-  }
-}
+@tailwind base;
+@tailwind components;
+@tailwind utilities;
--- a/apps/demo/package.json
+++ b/apps/demo/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@formbricks/demo",
-  "version": "0.0.0",
+  "version": "0.1.0",
  "private": true,
  "scripts": {
    "clean": "rimraf .turbo node_modules .next",
@@ -12,14 +12,10 @@
  },
  "dependencies": {
    "@formbricks/js": "workspace:*",
-    "@tailwindcss/forms": "0.5.9",
-    "@tailwindcss/postcss": "4.1.3",
-    "lucide-react": "0.486.0",
-    "next": "15.2.4",
-    "postcss": "8.5.3",
-    "react": "19.1.0",
-    "react-dom": "19.1.0",
-    "tailwindcss": "4.1.3"
+    "lucide-react": "0.468.0",
+    "next": "15.2.3",
+    "react": "19.0.0",
+    "react-dom": "19.0.0"
  },
  "devDependencies": {
    "@formbricks/config-typescript": "workspace:*",
--- a/apps/demo/pages/index.tsx
+++ b/apps/demo/pages/index.tsx
@@ -96,10 +96,10 @@ export default function AppPage(): React.JSX.Element {
            <p className="text-slate-700 dark:text-slate-300">
              Copy the environment ID of your Formbricks app to the env variable in /apps/demo/.env
            </p>
-            <Image src={fbsetup} alt="fb setup" className="mt-4 rounded-xs" priority />
+            <Image src={fbsetup} alt="fb setup" className="mt-4 rounded" priority />

            <div className="mt-4 flex-col items-start text-sm text-slate-700 sm:flex sm:items-center sm:text-base dark:text-slate-300">
-              <p className="mb-1 sm:mr-2 sm:mb-0">You&apos;re connected with env:</p>
+              <p className="mb-1 sm:mb-0 sm:mr-2">You&apos;re connected with env:</p>
              <div className="flex items-center">
                <strong className="w-32 truncate sm:w-auto">
                  {process.env.NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID}
--- a/apps/demo/postcss.config.js
+++ b/apps/demo/postcss.config.js
@@ -1,5 +1,6 @@
 module.exports = {
  plugins: {
-    "@tailwindcss/postcss": {},
+    tailwindcss: {},
+    autoprefixer: {},
  },
 };
--- a/apps/demo/tailwind.config.js
+++ b/apps/demo/tailwind.config.js
@@ -0,0 +1,13 @@
+/** @type {import('tailwindcss').Config} */
+module.exports = {
+  content: [
+    "./app/**/*.{js,ts,jsx,tsx}",
+    "./pages/**/*.{js,ts,jsx,tsx}",
+    "./components/**/*.{js,ts,jsx,tsx}",
+  ],
+  darkMode: "class",
+  theme: {
+    extend: {},
+  },
+  plugins: [require("@tailwindcss/forms")],
+};
--- a/apps/storybook/package.json
+++ b/apps/storybook/package.json
@@ -11,30 +11,30 @@
    "clean": "rimraf .turbo node_modules dist storybook-static"
  },
  "dependencies": {
-    "eslint-plugin-react-refresh": "0.4.19",
-    "react": "19.1.0",
-    "react-dom": "19.1.0"
+    "eslint-plugin-react-refresh": "0.4.16",
+    "react": "19.0.0",
+    "react-dom": "19.0.0"
  },
  "devDependencies": {
-    "@chromatic-com/storybook": "3.2.6",
+    "@chromatic-com/storybook": "3.2.2",
    "@formbricks/config-typescript": "workspace:*",
-    "@storybook/addon-a11y": "8.6.12",
-    "@storybook/addon-essentials": "8.6.12",
-    "@storybook/addon-interactions": "8.6.12",
-    "@storybook/addon-links": "8.6.12",
-    "@storybook/addon-onboarding": "8.6.12",
-    "@storybook/blocks": "8.6.12",
-    "@storybook/react": "8.6.12",
-    "@storybook/react-vite": "8.6.12",
-    "@storybook/test": "8.6.12",
-    "@typescript-eslint/eslint-plugin": "8.29.1",
-    "@typescript-eslint/parser": "8.29.1",
+    "@storybook/addon-a11y": "8.4.7",
+    "@storybook/addon-essentials": "8.4.7",
+    "@storybook/addon-interactions": "8.4.7",
+    "@storybook/addon-links": "8.4.7",
+    "@storybook/addon-onboarding": "8.4.7",
+    "@storybook/blocks": "8.4.7",
+    "@storybook/react": "8.4.7",
+    "@storybook/react-vite": "8.4.7",
+    "@storybook/test": "8.4.7",
+    "@typescript-eslint/eslint-plugin": "8.18.0",
+    "@typescript-eslint/parser": "8.18.0",
    "@vitejs/plugin-react": "4.3.4",
-    "esbuild": "0.25.2",
-    "eslint-plugin-storybook": "0.12.0",
+    "esbuild": "0.25.1",
+    "eslint-plugin-storybook": "0.11.1",
    "prop-types": "15.8.1",
-    "storybook": "8.6.12",
-    "tsup": "8.4.0",
-    "vite": "6.2.5"
+    "storybook": "8.4.7",
+    "tsup": "8.3.5",
+    "vite": "6.0.12"
  }
 }
--- a/apps/web/Dockerfile
+++ b/apps/web/Dockerfile
@@ -22,27 +22,13 @@ RUN npm install -g corepack@latest
 RUN corepack enable

 # Install necessary build tools and compilers
-RUN apk update && apk add --no-cache cmake g++ gcc jq make openssl-dev python3
+RUN apk update && apk add --no-cache g++ cmake make gcc python3 openssl-dev jq

-# BuildKit secret handling without hardcoded fallback values
-# This approach relies entirely on secrets passed from GitHub Actions
-RUN echo '#!/bin/sh' > /tmp/read-secrets.sh && \
-    echo 'if [ -f "/run/secrets/database_url" ]; then' >> /tmp/read-secrets.sh && \
-    echo '  export DATABASE_URL=$(cat /run/secrets/database_url)' >> /tmp/read-secrets.sh && \
-    echo 'else' >> /tmp/read-secrets.sh && \
-    echo '  echo "DATABASE_URL secret not found. Build may fail if this is required."' >> /tmp/read-secrets.sh && \
-    echo 'fi' >> /tmp/read-secrets.sh && \
-    echo 'if [ -f "/run/secrets/encryption_key" ]; then' >> /tmp/read-secrets.sh && \
-    echo '  export ENCRYPTION_KEY=$(cat /run/secrets/encryption_key)' >> /tmp/read-secrets.sh && \
-    echo 'else' >> /tmp/read-secrets.sh && \
-    echo '  echo "ENCRYPTION_KEY secret not found. Build may fail if this is required."' >> /tmp/read-secrets.sh && \
-    echo 'fi' >> /tmp/read-secrets.sh && \
-    echo 'exec "$@"' >> /tmp/read-secrets.sh && \
-    chmod +x /tmp/read-secrets.sh
+ARG NEXT_PUBLIC_SENTRY_DSN
+ARG SENTRY_AUTH_TOKEN

-# Increase Node.js memory limit as a regular build argument
-ARG NODE_OPTIONS="--max_old_space_size=4096"
-ENV NODE_OPTIONS=${NODE_OPTIONS}
+# Increase Node.js memory limit
+# ENV NODE_OPTIONS="--max_old_space_size=4096"

 # Set the working directory
 WORKDIR /app
@@ -61,11 +47,8 @@ RUN touch apps/web/.env
 # Install the dependencies
 RUN pnpm install

-# Build the project using our secret reader script
-# This mounts the secrets only during this build step without storing them in layers
-RUN --mount=type=secret,id=database_url \
-    --mount=type=secret,id=encryption_key \
-    /tmp/read-secrets.sh pnpm build --filter=@formbricks/web...
+# Build the project
+RUN NODE_OPTIONS="--max_old_space_size=4096" pnpm build --filter=@formbricks/web...

 # Extract Prisma version
 RUN jq -r '.devDependencies.prisma' packages/database/package.json > /prisma_version.txt
@@ -81,65 +64,35 @@ RUN corepack enable
 RUN apk add --no-cache curl \
    && apk add --no-cache supercronic \
    # && addgroup --system --gid 1001 nodejs \
-    && addgroup -S nextjs \
-    && adduser -S -u 1001 -G nextjs nextjs
+    && adduser --system --uid 1001 nextjs

 WORKDIR /home/nextjs

-# Ensure no write permissions are assigned to the copied resources
-COPY --from=installer /app/apps/web/.next/standalone ./
-RUN chown -R nextjs:nextjs ./ && chmod -R 755 ./
-
 COPY --from=installer /app/apps/web/next.config.mjs .
-RUN chmod 644 ./next.config.mjs
-
 COPY --from=installer /app/apps/web/package.json .
-RUN chmod 644 ./package.json
+# Leverage output traces to reduce image size

-COPY --from=installer /app/apps/web/.next/static ./apps/web/.next/static
-RUN chown -R nextjs:nextjs ./apps/web/.next/static && chmod -R 755 ./apps/web/.next/static
+COPY --from=installer --chown=nextjs:nextjs /app/apps/web/.next/standalone ./
+COPY --from=installer --chown=nextjs:nextjs /app/apps/web/.next/static ./apps/web/.next/static
+COPY --from=installer --chown=nextjs:nextjs /app/apps/web/public ./apps/web/public
+COPY --from=installer --chown=nextjs:nextjs /app/packages/database/schema.prisma ./packages/database/schema.prisma
+COPY --from=installer --chown=nextjs:nextjs /app/packages/database/package.json ./packages/database/package.json
+COPY --from=installer --chown=nextjs:nextjs /app/packages/database/migration ./packages/database/migration
+COPY --from=installer --chown=nextjs:nextjs /app/packages/database/src ./packages/database/src
+COPY --from=installer --chown=nextjs:nextjs /app/packages/database/node_modules ./packages/database/node_modules
+COPY --from=installer --chown=nextjs:nextjs /app/packages/logger/dist ./packages/database/node_modules/@formbricks/logger/dist

-COPY --from=installer /app/apps/web/public ./apps/web/public
-RUN chown -R nextjs:nextjs ./apps/web/public && chmod -R 755 ./apps/web/public
-
-COPY --from=installer /app/packages/database/schema.prisma ./packages/database/schema.prisma
-RUN chown nextjs:nextjs ./packages/database/schema.prisma && chmod 644 ./packages/database/schema.prisma
-
-COPY --from=installer /app/packages/database/package.json ./packages/database/package.json
-RUN chown nextjs:nextjs ./packages/database/package.json && chmod 644 ./packages/database/package.json
-
-COPY --from=installer /app/packages/database/migration ./packages/database/migration
-RUN chown -R nextjs:nextjs ./packages/database/migration && chmod -R 755 ./packages/database/migration
-
-COPY --from=installer /app/packages/database/src ./packages/database/src
-RUN chown -R nextjs:nextjs ./packages/database/src && chmod -R 755 ./packages/database/src
-
-COPY --from=installer /app/packages/database/node_modules ./packages/database/node_modules
-RUN chown -R nextjs:nextjs ./packages/database/node_modules && chmod -R 755 ./packages/database/node_modules
-
-COPY --from=installer /app/packages/logger/dist ./packages/database/node_modules/@formbricks/logger/dist
-RUN chown -R nextjs:nextjs ./packages/database/node_modules/@formbricks/logger/dist && chmod -R 755 ./packages/database/node_modules/@formbricks/logger/dist
-
-COPY --from=installer /app/node_modules/@prisma/client ./node_modules/@prisma/client
-RUN chown -R nextjs:nextjs ./node_modules/@prisma/client && chmod -R 755 ./node_modules/@prisma/client
-
-COPY --from=installer /app/node_modules/.prisma ./node_modules/.prisma
-RUN chown -R nextjs:nextjs ./node_modules/.prisma && chmod -R 755 ./node_modules/.prisma
-
-COPY --from=installer /prisma_version.txt .
-RUN chown nextjs:nextjs ./prisma_version.txt && chmod 644 ./prisma_version.txt
+# Copy Prisma-specific generated files
+COPY --from=installer --chown=nextjs:nextjs /app/node_modules/@prisma/client ./node_modules/@prisma/client
+COPY --from=installer --chown=nextjs:nextjs /app/node_modules/.prisma ./node_modules/.prisma

+COPY --from=installer --chown=nextjs:nextjs /prisma_version.txt .
 COPY /docker/cronjobs /app/docker/cronjobs
-RUN chmod -R 755 /app/docker/cronjobs

+# Copy required dependencies
 COPY --from=installer /app/node_modules/@paralleldrive/cuid2 ./node_modules/@paralleldrive/cuid2
-RUN chmod -R 755 ./node_modules/@paralleldrive/cuid2
-
 COPY --from=installer /app/node_modules/@noble/hashes ./node_modules/@noble/hashes
-RUN chmod -R 755 ./node_modules/@noble/hashes
-
 COPY --from=installer /app/node_modules/zod ./node_modules/zod
-RUN chmod -R 755 ./node_modules/zod

 RUN npm install -g tsx typescript prisma pino-pretty

--- a/apps/web/app/(app)/(onboarding)/organizations/[organizationId]/landing/components/landing-sidebar.tsx
+++ b/apps/web/app/(app)/(onboarding)/organizations/[organizationId]/landing/components/landing-sidebar.tsx
@@ -112,7 +112,7 @@ export const LandingSidebar = ({
            {/* Dropdown Items */}

            {dropdownNavigation.map((link) => (
-              <Link id={link.href} href={link.href} target={link.target} className="flex w-full items-center">
+              <Link href={link.href} target={link.target} className="flex w-full items-center">
                <DropdownMenuItem>
                  <link.icon className="mr-2 h-4 w-4" strokeWidth={1.5} />
                  {link.label}
--- a/apps/web/app/(app)/(onboarding)/organizations/[organizationId]/layout.test.tsx
+++ b/apps/web/app/(app)/(onboarding)/organizations/[organizationId]/layout.test.tsx
@@ -3,7 +3,7 @@ import { act, cleanup, render, screen } from "@testing-library/react";
 import { getServerSession } from "next-auth";
 import { redirect } from "next/navigation";
 import React from "react";
-import { beforeEach, describe, expect, test, vi } from "vitest";
+import { beforeEach, describe, expect, it, vi } from "vitest";
 import { canUserAccessOrganization } from "@formbricks/lib/organization/auth";
 import { getOrganization } from "@formbricks/lib/organization/service";
 import { getUser } from "@formbricks/lib/user/service";
@@ -71,7 +71,7 @@ describe("ProjectOnboardingLayout", () => {
    cleanup();
  });

-  test("redirects to /auth/login if there is no session", async () => {
+  it("redirects to /auth/login if there is no session", async () => {
    // Mock no session
    vi.mocked(getServerSession).mockResolvedValueOnce(null);

@@ -85,7 +85,7 @@ describe("ProjectOnboardingLayout", () => {
    expect(layoutElement).toBeUndefined();
  });

-  test("throws an error if user does not exist", async () => {
+  it("throws an error if user does not exist", async () => {
    vi.mocked(getServerSession).mockResolvedValueOnce({
      user: { id: "user-123" },
    });
@@ -99,7 +99,7 @@ describe("ProjectOnboardingLayout", () => {
    ).rejects.toThrow("common.user_not_found");
  });

-  test("throws AuthorizationError if user cannot access organization", async () => {
+  it("throws AuthorizationError if user cannot access organization", async () => {
    vi.mocked(getServerSession).mockResolvedValueOnce({ user: { id: "user-123" } });
    vi.mocked(getUser).mockResolvedValueOnce({ id: "user-123" } as TUser);
    vi.mocked(canUserAccessOrganization).mockResolvedValueOnce(false);
@@ -112,7 +112,7 @@ describe("ProjectOnboardingLayout", () => {
    ).rejects.toThrow("common.not_authorized");
  });

-  test("throws an error if organization does not exist", async () => {
+  it("throws an error if organization does not exist", async () => {
    vi.mocked(getServerSession).mockResolvedValueOnce({ user: { id: "user-123" } });
    vi.mocked(getUser).mockResolvedValueOnce({ id: "user-123" } as TUser);
    vi.mocked(canUserAccessOrganization).mockResolvedValueOnce(true);
@@ -126,7 +126,7 @@ describe("ProjectOnboardingLayout", () => {
    ).rejects.toThrow("common.organization_not_found");
  });

-  test("renders child content plus PosthogIdentify & ToasterClient if everything is valid", async () => {
+  it("renders child content plus PosthogIdentify & ToasterClient if everything is valid", async () => {
    // Provide valid data
    vi.mocked(getServerSession).mockResolvedValueOnce({ user: { id: "user-123" } });
    vi.mocked(getUser).mockResolvedValueOnce({ id: "user-123", name: "Test User" } as TUser);
--- a/apps/web/app/(app)/(survey-editor)/environments/[environmentId]/layout.test.tsx
+++ b/apps/web/app/(app)/(survey-editor)/environments/[environmentId]/layout.test.tsx
@@ -1,120 +1,191 @@
-import { environmentIdLayoutChecks } from "@/modules/environments/lib/utils";
-import { cleanup, render, screen } from "@testing-library/react";
-import { Session } from "next-auth";
+import "@testing-library/jest-dom/vitest";
+import { act, cleanup, render, screen } from "@testing-library/react";
+import { getServerSession } from "next-auth";
 import { redirect } from "next/navigation";
-import { afterEach, describe, expect, test, vi } from "vitest";
+import React from "react";
+import { beforeEach, describe, expect, it, vi } from "vitest";
+import { hasUserEnvironmentAccess } from "@formbricks/lib/environment/auth";
 import { getEnvironment } from "@formbricks/lib/environment/service";
+import { getOrganizationByEnvironmentId } from "@formbricks/lib/organization/service";
+import { getUser } from "@formbricks/lib/user/service";
 import { TEnvironment } from "@formbricks/types/environment";
+import { AuthorizationError } from "@formbricks/types/errors";
 import { TOrganization } from "@formbricks/types/organizations";
 import { TUser } from "@formbricks/types/user";
 import SurveyEditorEnvironmentLayout from "./layout";

-// Mock sub-components to render identifiable elements
-vi.mock("@/modules/ui/components/environmentId-base-layout", () => ({
-  EnvironmentIdBaseLayout: ({ children, environmentId }: any) => (
-    <div data-testid="EnvironmentIdBaseLayout">
-      {environmentId}
-      {children}
-    </div>
-  ),
-}));
-vi.mock("@/modules/ui/components/dev-environment-banner", () => ({
-  DevEnvironmentBanner: ({ environment }: any) => (
-    <div data-testid="DevEnvironmentBanner">{environment.id}</div>
-  ),
+// mock all dependencies
+
+vi.mock("@formbricks/lib/constants", () => ({
+  IS_FORMBRICKS_CLOUD: false,
+  POSTHOG_API_KEY: "mock-posthog-api-key",
+  POSTHOG_HOST: "mock-posthog-host",
+  IS_POSTHOG_CONFIGURED: true,
+  ENCRYPTION_KEY: "mock-encryption-key",
+  ENTERPRISE_LICENSE_KEY: "mock-enterprise-license-key",
+  GITHUB_ID: "mock-github-id",
+  GITHUB_SECRET: "test-githubID",
+  GOOGLE_CLIENT_ID: "test-google-client-id",
+  GOOGLE_CLIENT_SECRET: "test-google-client-secret",
+  AZUREAD_CLIENT_ID: "test-azuread-client-id",
+  AZUREAD_CLIENT_SECRET: "test-azure",
+  AZUREAD_TENANT_ID: "test-azuread-tenant-id",
+  OIDC_DISPLAY_NAME: "test-oidc-display-name",
+  OIDC_CLIENT_ID: "test-oidc-client-id",
+  OIDC_ISSUER: "test-oidc-issuer",
+  OIDC_CLIENT_SECRET: "test-oidc-client-secret",
+  OIDC_SIGNING_ALGORITHM: "test-oidc-signing-algorithm",
+  WEBAPP_URL: "test-webapp-url",
+  IS_PRODUCTION: false,
 }));

-// Mocks for dependencies
-vi.mock("@/modules/environments/lib/utils", () => ({
-  environmentIdLayoutChecks: vi.fn(),
-}));
-vi.mock("@formbricks/lib/environment/service", () => ({
-  getEnvironment: vi.fn(),
+vi.mock("next-auth", () => ({
+  getServerSession: vi.fn(),
 }));
 vi.mock("next/navigation", () => ({
  redirect: vi.fn(),
 }));
+vi.mock("@formbricks/lib/environment/auth", () => ({
+  hasUserEnvironmentAccess: vi.fn(),
+}));
+vi.mock("@formbricks/lib/environment/service", () => ({
+  getEnvironment: vi.fn(),
+}));
+vi.mock("@formbricks/lib/organization/service", () => ({
+  getOrganizationByEnvironmentId: vi.fn(),
+}));
+vi.mock("@formbricks/lib/user/service", () => ({
+  getUser: vi.fn(),
+}));
+vi.mock("@/tolgee/server", () => ({
+  getTranslate: vi.fn(() => {
+    return (key: string) => key; // trivial translator returning the key
+  }),
+}));
+
+// mock child components rendered by the layout:
+vi.mock("@/app/(app)/components/FormbricksClient", () => ({
+  FormbricksClient: () => <div data-testid="formbricks-client" />,
+}));
+vi.mock("@/app/(app)/environments/[environmentId]/components/PosthogIdentify", () => ({
+  PosthogIdentify: () => <div data-testid="posthog-identify" />,
+}));
+vi.mock("@/modules/ui/components/toaster-client", () => ({
+  ToasterClient: () => <div data-testid="mock-toaster" />,
+}));
+vi.mock("@/modules/ui/components/dev-environment-banner", () => ({
+  DevEnvironmentBanner: ({ environment }: { environment: TEnvironment }) => (
+    <div data-testid="dev-environment-banner">{environment?.id || "no-env"}</div>
+  ),
+}));
+vi.mock("@/app/(app)/environments/[environmentId]/components/ResponseFilterContext", () => ({
+  ResponseFilterProvider: ({ children }: { children: React.ReactNode }) => (
+    <div data-testid="mock-response-filter-provider">{children}</div>
+  ),
+}));

 describe("SurveyEditorEnvironmentLayout", () => {
-  afterEach(() => {
+  beforeEach(() => {
    cleanup();
    vi.clearAllMocks();
  });

-  test("renders successfully when environment is found", async () => {
-    vi.mocked(environmentIdLayoutChecks).mockResolvedValueOnce({
-      t: ((key: string) => key) as any, // Mock translation function, we don't need to implement it for the test
-      session: { user: { id: "user1" } } as Session,
-      user: { id: "user1", email: "user1@example.com" } as TUser,
-      organization: { id: "org1", name: "Org1", billing: {} } as TOrganization,
-    });
-    vi.mocked(getEnvironment).mockResolvedValueOnce({ id: "env1" } as TEnvironment);
+  it("redirects to /auth/login if there is no session", async () => {
+    // Mock no session
+    vi.mocked(getServerSession).mockResolvedValueOnce(null);

-    const result = await SurveyEditorEnvironmentLayout({
-      params: Promise.resolve({ environmentId: "env1" }),
-      children: <div data-testid="child">Survey Editor Content</div>,
+    const layoutElement = await SurveyEditorEnvironmentLayout({
+      params: { environmentId: "env-123" },
+      children: <div data-testid="child-content">Hello!</div>,
    });

-    render(result);
-
-    expect(screen.getByTestId("EnvironmentIdBaseLayout")).toHaveTextContent("env1");
-    expect(screen.getByTestId("DevEnvironmentBanner")).toHaveTextContent("env1");
-    expect(screen.getByTestId("child")).toHaveTextContent("Survey Editor Content");
+    expect(redirect).toHaveBeenCalledWith("/auth/login");
+    // No JSX is returned after redirect
+    expect(layoutElement).toBeUndefined();
  });

-  test("throws an error when environment is not found", async () => {
-    vi.mocked(environmentIdLayoutChecks).mockResolvedValueOnce({
-      t: ((key: string) => key) as any,
-      session: { user: { id: "user1" } } as Session,
-      user: { id: "user1", email: "user1@example.com" } as TUser,
-      organization: { id: "org1", name: "Org1", billing: {} } as TOrganization,
-    });
+  it("throws error if user does not exist in DB", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({ user: { id: "user-123" } });
+    vi.mocked(getUser).mockResolvedValueOnce(null); // user not found
+
+    await expect(
+      SurveyEditorEnvironmentLayout({
+        params: { environmentId: "env-123" },
+        children: <div data-testid="child-content">Hello!</div>,
+      })
+    ).rejects.toThrow("common.user_not_found");
+  });
+
+  it("throws AuthorizationError if user does not have environment access", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({ user: { id: "user-123" } });
+    vi.mocked(getUser).mockResolvedValueOnce({ id: "user-123", email: "test@example.com" } as TUser);
+    vi.mocked(hasUserEnvironmentAccess).mockResolvedValueOnce(false);
+
+    await expect(
+      SurveyEditorEnvironmentLayout({
+        params: { environmentId: "env-123" },
+        children: <div>Child</div>,
+      })
+    ).rejects.toThrow(AuthorizationError);
+  });
+
+  it("throws if no organization is found", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({ user: { id: "user-123" } });
+    vi.mocked(getUser).mockResolvedValueOnce({ id: "user-123" } as TUser);
+    vi.mocked(hasUserEnvironmentAccess).mockResolvedValueOnce(true);
+    vi.mocked(getOrganizationByEnvironmentId).mockResolvedValueOnce(null);
+
+    await expect(
+      SurveyEditorEnvironmentLayout({
+        params: { environmentId: "env-123" },
+        children: <div data-testid="child-content">Hello from children!</div>,
+      })
+    ).rejects.toThrow("common.organization_not_found");
+  });
+
+  it("throws if no environment is found", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({ user: { id: "user-123" } });
+    vi.mocked(getUser).mockResolvedValueOnce({ id: "user-123" } as TUser);
+    vi.mocked(hasUserEnvironmentAccess).mockResolvedValueOnce(true);
+    vi.mocked(getOrganizationByEnvironmentId).mockResolvedValueOnce({ id: "org-999" } as TOrganization);
    vi.mocked(getEnvironment).mockResolvedValueOnce(null);

    await expect(
      SurveyEditorEnvironmentLayout({
-        params: Promise.resolve({ environmentId: "env1" }),
-        children: <div>Content</div>,
+        params: { environmentId: "env-123" },
+        children: <div>Child</div>,
      })
    ).rejects.toThrow("common.environment_not_found");
  });

-  test("calls redirect when session is null", async () => {
-    vi.mocked(environmentIdLayoutChecks).mockResolvedValueOnce({
-      t: ((key: string) => key) as any,
-      session: undefined as unknown as Session,
-      user: undefined as unknown as TUser,
-      organization: { id: "org1", name: "Org1", billing: {} } as TOrganization,
-    });
-    vi.mocked(redirect).mockImplementationOnce(() => {
-      throw new Error("Redirect called");
+  it("renders environment layout if everything is valid", async () => {
+    // Provide all valid data
+    vi.mocked(getServerSession).mockResolvedValueOnce({ user: { id: "user-123" } });
+    vi.mocked(getUser).mockResolvedValueOnce({ id: "user-123", email: "test@example.com" } as TUser);
+    vi.mocked(hasUserEnvironmentAccess).mockResolvedValueOnce(true);
+    vi.mocked(getOrganizationByEnvironmentId).mockResolvedValueOnce({ id: "org-999" } as TOrganization);
+    vi.mocked(getEnvironment).mockResolvedValueOnce({
+      id: "env-123",
+      name: "My Test Environment",
+    } as unknown as TEnvironment);
+
+    // Because it's an async server component, we typically wrap in act(...)
+    let layoutElement: React.ReactNode;
+
+    await act(async () => {
+      layoutElement = await SurveyEditorEnvironmentLayout({
+        params: { environmentId: "env-123" },
+        children: <div data-testid="child-content">Hello from children!</div>,
+      });
+      render(layoutElement);
    });

-    await expect(
-      SurveyEditorEnvironmentLayout({
-        params: Promise.resolve({ environmentId: "env1" }),
-        children: <div>Content</div>,
-      })
-    ).rejects.toThrow("Redirect called");
-  });
-
-  test("throws error if user is null", async () => {
-    vi.mocked(environmentIdLayoutChecks).mockResolvedValueOnce({
-      t: ((key: string) => key) as any,
-      session: { user: { id: "user1" } } as Session,
-      user: undefined as unknown as TUser,
-      organization: { id: "org1", name: "Org1", billing: {} } as TOrganization,
-    });
-
-    vi.mocked(redirect).mockImplementationOnce(() => {
-      throw new Error("Redirect called");
-    });
-
-    await expect(
-      SurveyEditorEnvironmentLayout({
-        params: Promise.resolve({ environmentId: "env1" }),
-        children: <div>Content</div>,
-      })
-    ).rejects.toThrow("common.user_not_found");
+    // Now confirm we got the child plus all the mocked sub-components
+    expect(screen.getByTestId("child-content")).toHaveTextContent("Hello from children!");
+    expect(screen.getByTestId("posthog-identify")).toBeInTheDocument();
+    expect(screen.getByTestId("formbricks-client")).toBeInTheDocument();
+    expect(screen.getByTestId("mock-toaster")).toBeInTheDocument();
+    expect(screen.getByTestId("mock-response-filter-provider")).toBeInTheDocument();
+    expect(screen.getByTestId("dev-environment-banner")).toHaveTextContent("env-123");
  });
 });
--- a/apps/web/app/(app)/(survey-editor)/environments/[environmentId]/layout.tsx
+++ b/apps/web/app/(app)/(survey-editor)/environments/[environmentId]/layout.tsx
@@ -1,24 +1,46 @@
-import { environmentIdLayoutChecks } from "@/modules/environments/lib/utils";
+import { FormbricksClient } from "@/app/(app)/components/FormbricksClient";
+import { PosthogIdentify } from "@/app/(app)/environments/[environmentId]/components/PosthogIdentify";
+import { ResponseFilterProvider } from "@/app/(app)/environments/[environmentId]/components/ResponseFilterContext";
+import { authOptions } from "@/modules/auth/lib/authOptions";
 import { DevEnvironmentBanner } from "@/modules/ui/components/dev-environment-banner";
-import { EnvironmentIdBaseLayout } from "@/modules/ui/components/environmentId-base-layout";
+import { ToasterClient } from "@/modules/ui/components/toaster-client";
+import { getTranslate } from "@/tolgee/server";
+import { getServerSession } from "next-auth";
 import { redirect } from "next/navigation";
+import { IS_POSTHOG_CONFIGURED } from "@formbricks/lib/constants";
+import { hasUserEnvironmentAccess } from "@formbricks/lib/environment/auth";
 import { getEnvironment } from "@formbricks/lib/environment/service";
+import { getOrganizationByEnvironmentId } from "@formbricks/lib/organization/service";
+import { getUser } from "@formbricks/lib/user/service";
+import { AuthorizationError } from "@formbricks/types/errors";

 const SurveyEditorEnvironmentLayout = async (props) => {
  const params = await props.params;

  const { children } = props;

-  const { t, session, user, organization } = await environmentIdLayoutChecks(params.environmentId);
+  const t = await getTranslate();
+  const session = await getServerSession(authOptions);

-  if (!session) {
+  if (!session?.user) {
    return redirect(`/auth/login`);
  }

+  const user = await getUser(session.user.id);
  if (!user) {
    throw new Error(t("common.user_not_found"));
  }

+  const hasAccess = await hasUserEnvironmentAccess(session.user.id, params.environmentId);
+  if (!hasAccess) {
+    throw new AuthorizationError(t("common.not_authorized"));
+  }
+
+  const organization = await getOrganizationByEnvironmentId(params.environmentId);
+  if (!organization) {
+    throw new Error(t("common.organization_not_found"));
+  }
+
  const environment = await getEnvironment(params.environmentId);

  if (!environment) {
@@ -26,16 +48,23 @@ const SurveyEditorEnvironmentLayout = async (props) => {
  }

  return (
-    <EnvironmentIdBaseLayout
-      environmentId={params.environmentId}
-      session={session}
-      user={user}
-      organization={organization}>
+    <ResponseFilterProvider>
+      <PosthogIdentify
+        session={session}
+        user={user}
+        environmentId={params.environmentId}
+        organizationId={organization.id}
+        organizationName={organization.name}
+        organizationBilling={organization.billing}
+        isPosthogEnabled={IS_POSTHOG_CONFIGURED}
+      />
+      <FormbricksClient userId={user.id} email={user.email} />
+      <ToasterClient />
      <div className="flex h-screen flex-col">
        <DevEnvironmentBanner environment={environment} />
        <div className="h-full overflow-y-auto bg-slate-50">{children}</div>
      </div>
-    </EnvironmentIdBaseLayout>
+    </ResponseFilterProvider>
  );
 };

--- a/apps/web/app/(app)/components/FormbricksClient.test.tsx
+++ b/apps/web/app/(app)/components/FormbricksClient.test.tsx
@@ -1,5 +1,5 @@
 import { render } from "@testing-library/react";
-import { describe, expect, test, vi } from "vitest";
+import { afterEach, describe, expect, test, vi } from "vitest";
 import formbricks from "@formbricks/js";
 import { FormbricksClient } from "./FormbricksClient";

@@ -9,6 +9,14 @@ vi.mock("next/navigation", () => ({
  useSearchParams: () => new URLSearchParams("foo=bar"),
 }));

+// Mock the environment variables.
+vi.mock("@formbricks/lib/env", () => ({
+  env: {
+    NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID: "env-test",
+    NEXT_PUBLIC_FORMBRICKS_API_HOST: "https://api.test.com",
+  },
+}));
+
 // Mock the flag that enables Formbricks.
 vi.mock("@/app/lib/formbricks", () => ({
  formbricksEnabled: true,
@@ -26,21 +34,17 @@ vi.mock("@formbricks/js", () => ({
 }));

 describe("FormbricksClient", () => {
+  afterEach(() => {
+    vi.clearAllMocks();
+  });
+
  test("calls setup, setUserId, setEmail and registerRouteChange on mount when enabled", () => {
    const mockSetup = vi.spyOn(formbricks, "setup");
    const mockSetUserId = vi.spyOn(formbricks, "setUserId");
    const mockSetEmail = vi.spyOn(formbricks, "setEmail");
    const mockRegisterRouteChange = vi.spyOn(formbricks, "registerRouteChange");

-    render(
-      <FormbricksClient
-        userId="user-123"
-        email="test@example.com"
-        formbricksEnvironmentId="env-test"
-        formbricksApiHost="https://api.test.com"
-        formbricksEnabled={true}
-      />
-    );
+    render(<FormbricksClient userId="user-123" email="test@example.com" />);

    // Expect the first effect to call setup and assign the provided user details.
    expect(mockSetup).toHaveBeenCalledWith({
@@ -60,15 +64,7 @@ describe("FormbricksClient", () => {
    const mockSetEmail = vi.spyOn(formbricks, "setEmail");
    const mockRegisterRouteChange = vi.spyOn(formbricks, "registerRouteChange");

-    render(
-      <FormbricksClient
-        userId=""
-        email="test@example.com"
-        formbricksEnvironmentId="env-test"
-        formbricksApiHost="https://api.test.com"
-        formbricksEnabled={true}
-      />
-    );
+    render(<FormbricksClient userId="" email="test@example.com" />);

    // Since userId is falsy, the first effect should not call setup or assign user details.
    expect(mockSetup).not.toHaveBeenCalled();
--- a/apps/web/app/(app)/components/FormbricksClient.tsx
+++ b/apps/web/app/(app)/components/FormbricksClient.tsx
@@ -1,44 +1,32 @@
 "use client";

+import { formbricksEnabled } from "@/app/lib/formbricks";
 import { usePathname, useSearchParams } from "next/navigation";
 import { useEffect } from "react";
 import formbricks from "@formbricks/js";
+import { env } from "@formbricks/lib/env";

-interface FormbricksClientProps {
-  userId: string;
-  email: string;
-  formbricksEnvironmentId?: string;
-  formbricksApiHost?: string;
-  formbricksEnabled?: boolean;
-}
-
-export const FormbricksClient = ({
-  userId,
-  email,
-  formbricksEnvironmentId,
-  formbricksApiHost,
-  formbricksEnabled,
-}: FormbricksClientProps) => {
+export const FormbricksClient = ({ userId, email }: { userId: string; email: string }) => {
  const pathname = usePathname();
  const searchParams = useSearchParams();

  useEffect(() => {
    if (formbricksEnabled && userId) {
      formbricks.setup({
-        environmentId: formbricksEnvironmentId ?? "",
-        appUrl: formbricksApiHost ?? "",
+        environmentId: env.NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID || "",
+        appUrl: env.NEXT_PUBLIC_FORMBRICKS_API_HOST || "",
      });

      formbricks.setUserId(userId);
      formbricks.setEmail(email);
    }
-  }, [userId, email, formbricksEnvironmentId, formbricksApiHost, formbricksEnabled]);
+  }, [userId, email]);

  useEffect(() => {
    if (formbricksEnabled) {
      formbricks.registerRouteChange();
    }
-  }, [pathname, searchParams, formbricksEnabled]);
+  }, [pathname, searchParams]);

  return null;
 };
--- a/apps/web/app/(app)/environments/[environmentId]/components/EnvironmentLayout.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/components/EnvironmentLayout.tsx
@@ -7,7 +7,7 @@ import { LimitsReachedBanner } from "@/modules/ui/components/limits-reached-bann
 import { PendingDowngradeBanner } from "@/modules/ui/components/pending-downgrade-banner";
 import { getTranslate } from "@/tolgee/server";
 import type { Session } from "next-auth";
-import { IS_DEVELOPMENT, IS_FORMBRICKS_CLOUD } from "@formbricks/lib/constants";
+import { IS_FORMBRICKS_CLOUD } from "@formbricks/lib/constants";
 import { getEnvironment, getEnvironments } from "@formbricks/lib/environment/service";
 import { getMembershipByUserIdOrganizationId } from "@formbricks/lib/membership/service";
 import { getAccessFlags } from "@formbricks/lib/membership/utils";
@@ -111,7 +111,6 @@ export const EnvironmentLayout = async ({ environmentId, session, children }: En
          organizationProjectsLimit={organizationProjectsLimit}
          user={user}
          isFormbricksCloud={IS_FORMBRICKS_CLOUD}
-          isDevelopment={IS_DEVELOPMENT}
          membershipRole={membershipRole}
          isMultiOrgEnabled={isMultiOrgEnabled}
          isLicenseActive={active}
--- a/apps/web/app/(app)/environments/[environmentId]/components/MainNavigation.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/components/MainNavigation.tsx
@@ -63,7 +63,6 @@ interface NavigationProps {
  projects: TProject[];
  isMultiOrgEnabled: boolean;
  isFormbricksCloud: boolean;
-  isDevelopment: boolean;
  membershipRole?: TOrganizationRole;
  organizationProjectsLimit: number;
  isLicenseActive: boolean;
@@ -80,7 +79,6 @@ export const MainNavigation = ({
  isFormbricksCloud,
  organizationProjectsLimit,
  isLicenseActive,
-  isDevelopment,
 }: NavigationProps) => {
  const router = useRouter();
  const pathname = usePathname();
@@ -265,7 +263,7 @@ export const MainNavigation = ({
                size="icon"
                onClick={toggleSidebar}
                className={cn(
-                  "rounded-xl bg-slate-50 p-1 text-slate-600 transition-all hover:bg-slate-100 focus:ring-0 focus:ring-transparent focus:outline-none"
+                  "rounded-xl bg-slate-50 p-1 text-slate-600 transition-all hover:bg-slate-100 focus:outline-none focus:ring-0 focus:ring-transparent"
                )}>
                {isCollapsed ? (
                  <PanelLeftOpenIcon strokeWidth={1.5} />
@@ -298,7 +296,7 @@ export const MainNavigation = ({

          <div>
            {/* New Version Available */}
-            {!isCollapsed && isOwnerOrManager && latestVersion && !isFormbricksCloud && !isDevelopment && (
+            {!isCollapsed && isOwnerOrManager && latestVersion && !isFormbricksCloud && (
              <Link
                href="https://github.com/formbricks/formbricks/releases"
                target="_blank"
--- a/apps/web/app/(app)/environments/[environmentId]/components/PosthogIdentify.test.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/components/PosthogIdentify.test.tsx
@@ -1,8 +1,10 @@
+// PosthogIdentify.test.tsx
 import "@testing-library/jest-dom/vitest";
 import { cleanup, render } from "@testing-library/react";
 import { Session } from "next-auth";
 import { usePostHog } from "posthog-js/react";
-import { beforeEach, describe, expect, test, vi } from "vitest";
+import React from "react";
+import { beforeEach, describe, expect, it, vi } from "vitest";
 import { TOrganizationBilling } from "@formbricks/types/organizations";
 import { TUser } from "@formbricks/types/user";
 import { PosthogIdentify } from "./PosthogIdentify";
@@ -18,7 +20,7 @@ describe("PosthogIdentify", () => {
    cleanup();
  });

-  test("identifies the user and sets groups when isPosthogEnabled is true", () => {
+  it("identifies the user and sets groups when isPosthogEnabled is true", () => {
    const mockIdentify = vi.fn();
    const mockGroup = vi.fn();

@@ -72,7 +74,7 @@ describe("PosthogIdentify", () => {
    });
  });

-  test("does nothing if isPosthogEnabled is false", () => {
+  it("does nothing if isPosthogEnabled is false", () => {
    const mockIdentify = vi.fn();
    const mockGroup = vi.fn();

@@ -95,7 +97,7 @@ describe("PosthogIdentify", () => {
    expect(mockGroup).not.toHaveBeenCalled();
  });

-  test("does nothing if session user is missing", () => {
+  it("does nothing if session user is missing", () => {
    const mockIdentify = vi.fn();
    const mockGroup = vi.fn();

@@ -120,7 +122,7 @@ describe("PosthogIdentify", () => {
    expect(mockGroup).not.toHaveBeenCalled();
  });

-  test("identifies user but does not group if environmentId/organizationId not provided", () => {
+  it("identifies user but does not group if environmentId/organizationId not provided", () => {
    const mockIdentify = vi.fn();
    const mockGroup = vi.fn();

--- a/apps/web/app/(app)/environments/[environmentId]/components/TopControlButtons.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/components/TopControlButtons.tsx
@@ -39,7 +39,7 @@ export const TopControlButtons = ({

      <TooltipRenderer tooltipContent={t("common.share_feedback")}>
        <Button variant="ghost" size="icon" className="h-fit w-fit bg-slate-50 p-1" asChild>
-          <Link href="https://github.com/formbricks/formbricks/issues" target="_blank">
+          <Link href="https://github.com/formbricks/formbricks/issues/new/choose" target="_blank">
            <BugIcon />
          </Link>
        </Button>
--- a/apps/web/app/(app)/environments/[environmentId]/integrations/notion/constants.ts
+++ b/apps/web/app/(app)/environments/[environmentId]/integrations/notion/constants.ts
@@ -25,8 +25,6 @@ export const TYPE_MAPPING = {
  [TSurveyQuestionTypeEnum.Address]: ["rich_text"],
  [TSurveyQuestionTypeEnum.Matrix]: ["rich_text"],
  [TSurveyQuestionTypeEnum.Cal]: ["checkbox"],
-  [TSurveyQuestionTypeEnum.ContactInfo]: ["rich_text"],
-  [TSurveyQuestionTypeEnum.Ranking]: ["rich_text"],
 };

 export const UNSUPPORTED_TYPES_BY_NOTION = [
--- a/apps/web/app/(app)/environments/[environmentId]/layout.test.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/layout.test.tsx
@@ -1,156 +1,250 @@
-import { environmentIdLayoutChecks } from "@/modules/environments/lib/utils";
-import { cleanup, render, screen } from "@testing-library/react";
-import { Session } from "next-auth";
-import { redirect } from "next/navigation";
-import { afterEach, describe, expect, test, vi } from "vitest";
+import "@testing-library/jest-dom/vitest";
+import { act, cleanup, render, screen } from "@testing-library/react";
+import { getServerSession } from "next-auth";
+import { notFound, redirect } from "next/navigation";
+import React from "react";
+import { beforeEach, describe, expect, it, vi } from "vitest";
+import { hasUserEnvironmentAccess } from "@formbricks/lib/environment/auth";
 import { getMembershipByUserIdOrganizationId } from "@formbricks/lib/membership/service";
+import { getOrganizationByEnvironmentId } from "@formbricks/lib/organization/service";
 import { getProjectByEnvironmentId } from "@formbricks/lib/project/service";
+import { getUser } from "@formbricks/lib/user/service";
+import { AuthorizationError } from "@formbricks/types/errors";
 import { TMembership } from "@formbricks/types/memberships";
 import { TOrganization } from "@formbricks/types/organizations";
 import { TProject } from "@formbricks/types/project";
 import { TUser } from "@formbricks/types/user";
 import EnvLayout from "./layout";

-// Mock sub-components to render identifiable elements
-vi.mock("@/app/(app)/environments/[environmentId]/components/EnvironmentLayout", () => ({
-  EnvironmentLayout: ({ children }: any) => <div data-testid="EnvironmentLayout">{children}</div>,
-}));
-vi.mock("@/modules/ui/components/environmentId-base-layout", () => ({
-  EnvironmentIdBaseLayout: ({ children, environmentId }: any) => (
-    <div data-testid="EnvironmentIdBaseLayout">
-      {environmentId}
-      {children}
-    </div>
-  ),
-}));
-vi.mock("@/modules/ui/components/toaster-client", () => ({
-  ToasterClient: () => <div data-testid="ToasterClient" />,
-}));
-vi.mock("../../components/FormbricksClient", () => ({
-  FormbricksClient: ({ userId, email }: any) => (
-    <div data-testid="FormbricksClient">
-      {userId}-{email}
-    </div>
-  ),
-}));
-vi.mock("./components/EnvironmentStorageHandler", () => ({
-  default: ({ environmentId }: any) => <div data-testid="EnvironmentStorageHandler">{environmentId}</div>,
+// mock all the dependencies
+
+vi.mock("@formbricks/lib/constants", () => ({
+  IS_FORMBRICKS_CLOUD: false,
+  POSTHOG_API_KEY: "mock-posthog-api-key",
+  POSTHOG_HOST: "mock-posthog-host",
+  IS_POSTHOG_CONFIGURED: true,
+  ENCRYPTION_KEY: "mock-encryption-key",
+  ENTERPRISE_LICENSE_KEY: "mock-enterprise-license-key",
+  GITHUB_ID: "mock-github-id",
+  GITHUB_SECRET: "test-githubID",
+  GOOGLE_CLIENT_ID: "test-google-client-id",
+  GOOGLE_CLIENT_SECRET: "test-google-client-secret",
+  AZUREAD_CLIENT_ID: "test-azuread-client-id",
+  AZUREAD_CLIENT_SECRET: "test-azure",
+  AZUREAD_TENANT_ID: "test-azuread-tenant-id",
+  OIDC_DISPLAY_NAME: "test-oidc-display-name",
+  OIDC_CLIENT_ID: "test-oidc-client-id",
+  OIDC_ISSUER: "test-oidc-issuer",
+  OIDC_CLIENT_SECRET: "test-oidc-client-secret",
+  OIDC_SIGNING_ALGORITHM: "test-oidc-signing-algorithm",
+  WEBAPP_URL: "test-webapp-url",
+  IS_PRODUCTION: false,
 }));

-// Mocks for dependencies
-vi.mock("@/modules/environments/lib/utils", () => ({
-  environmentIdLayoutChecks: vi.fn(),
+vi.mock("@/tolgee/server", () => ({
+  getTranslate: vi.fn(() => {
+    return (key: string) => {
+      return key;
+    };
+  }),
 }));
-vi.mock("@formbricks/lib/project/service", () => ({
-  getProjectByEnvironmentId: vi.fn(),
+
+vi.mock("next-auth", () => ({
+  getServerSession: vi.fn(),
+}));
+vi.mock("@formbricks/lib/environment/auth", () => ({
+  hasUserEnvironmentAccess: vi.fn(),
 }));
 vi.mock("@formbricks/lib/membership/service", () => ({
  getMembershipByUserIdOrganizationId: vi.fn(),
 }));
+vi.mock("@formbricks/lib/organization/service", () => ({
+  getOrganizationByEnvironmentId: vi.fn(),
+}));
+vi.mock("@formbricks/lib/project/service", () => ({
+  getProjectByEnvironmentId: vi.fn(),
+}));
+vi.mock("@formbricks/lib/user/service", () => ({
+  getUser: vi.fn(),
+}));
+vi.mock("@formbricks/lib/aiModels", () => ({
+  llmModel: {},
+}));
+
+// mock all the components that are rendered in the layout
+
+vi.mock("./components/PosthogIdentify", () => ({
+  PosthogIdentify: () => <div data-testid="posthog-identify" />,
+}));
+vi.mock("@/app/(app)/components/FormbricksClient", () => ({
+  FormbricksClient: () => <div data-testid="formbricks-client" />,
+}));
+vi.mock("@/modules/ui/components/toaster-client", () => ({
+  ToasterClient: () => <div data-testid="mock-toaster" />,
+}));
+vi.mock("./components/EnvironmentStorageHandler", () => ({
+  default: () => <div data-testid="mock-storage-handler" />,
+}));
+vi.mock("@/app/(app)/environments/[environmentId]/components/ResponseFilterContext", () => ({
+  ResponseFilterProvider: ({ children }: { children: React.ReactNode }) => (
+    <div data-testid="mock-response-filter-provider">{children}</div>
+  ),
+}));
+vi.mock("@/app/(app)/environments/[environmentId]/components/EnvironmentLayout", () => ({
+  EnvironmentLayout: ({ children }: { children: React.ReactNode }) => (
+    <div data-testid="mock-environment-result">{children}</div>
+  ),
+}));

 describe("EnvLayout", () => {
-  afterEach(() => {
+  beforeEach(() => {
    cleanup();
  });

-  test("renders successfully when all dependencies return valid data", async () => {
-    vi.mocked(environmentIdLayoutChecks).mockResolvedValueOnce({
-      t: ((key: string) => key) as any, // Mock translation function, we don't need to implement it for the test
-      session: { user: { id: "user1" } } as Session,
-      user: { id: "user1", email: "user1@example.com" } as TUser,
-      organization: { id: "org1", name: "Org1", billing: {} } as TOrganization,
-    });
-    vi.mocked(getProjectByEnvironmentId).mockResolvedValueOnce({ id: "proj1" } as TProject);
-    vi.mocked(getMembershipByUserIdOrganizationId).mockResolvedValueOnce({
-      id: "member1",
-    } as unknown as TMembership);
+  it("redirects to /auth/login if there is no session", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce(null);

-    const result = await EnvLayout({
-      params: Promise.resolve({ environmentId: "env1" }),
-      children: <div data-testid="child">Content</div>,
+    // Since it's an async server component, call EnvLayout yourself:
+    const layoutElement = await EnvLayout({
+      params: Promise.resolve({ environmentId: "env-123" }),
+      children: <div data-testid="child-content">Hello!</div>,
    });
-    render(result);

-    expect(screen.getByTestId("EnvironmentIdBaseLayout")).toHaveTextContent("env1");
-    expect(screen.getByTestId("EnvironmentStorageHandler")).toHaveTextContent("env1");
-    expect(screen.getByTestId("EnvironmentLayout")).toBeDefined();
-    expect(screen.getByTestId("child")).toHaveTextContent("Content");
+    // Because we have no session, we expect a redirect to "/auth/login"
+    expect(redirect).toHaveBeenCalledWith("/auth/login");
+
+    // If your code calls redirect() early and returns no JSX,
+    // layoutElement might be undefined or null.
+    expect(layoutElement).toBeUndefined();
  });

-  test("throws error if project is not found", async () => {
-    vi.mocked(environmentIdLayoutChecks).mockResolvedValueOnce({
-      t: ((key: string) => key) as any,
-      session: { user: { id: "user1" } } as Session,
-      user: { id: "user1", email: "user1@example.com" } as TUser,
-      organization: { id: "org1", name: "Org1", billing: {} } as TOrganization,
+  it("redirects to /auth/login if user does not exist in DB", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({
+      user: { id: "user-123" },
    });
-    vi.mocked(getProjectByEnvironmentId).mockResolvedValueOnce(null);
-    vi.mocked(getMembershipByUserIdOrganizationId).mockResolvedValueOnce({
-      id: "member1",
-    } as unknown as TMembership);
+
+    vi.mocked(getUser).mockResolvedValueOnce(null); // user not found
+
+    const layoutElement = await EnvLayout({
+      params: Promise.resolve({ environmentId: "env-123" }),
+      children: <div data-testid="child-content">Hello!</div>,
+    });
+
+    expect(redirect).toHaveBeenCalledWith("/auth/login");
+    expect(layoutElement).toBeUndefined();
+  });
+
+  it("throws AuthorizationError if user does not have environment access", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({
+      user: { id: "user-123" },
+    });
+    vi.mocked(getUser).mockResolvedValueOnce({
+      id: "user-123",
+      email: "test@example.com",
+    } as TUser);
+    vi.mocked(hasUserEnvironmentAccess).mockResolvedValueOnce(false);

    await expect(
      EnvLayout({
-        params: Promise.resolve({ environmentId: "env1" }),
-        children: <div>Content</div>,
+        params: Promise.resolve({ environmentId: "env-123" }),
+        children: <div>Child</div>,
      })
-    ).rejects.toThrow("common.project_not_found");
+    ).rejects.toThrow(AuthorizationError);
  });

-  test("throws error if membership is not found", async () => {
-    vi.mocked(environmentIdLayoutChecks).mockResolvedValueOnce({
-      t: ((key: string) => key) as any,
-      session: { user: { id: "user1" } } as Session,
-      user: { id: "user1", email: "user1@example.com" } as TUser,
-      organization: { id: "org1", name: "Org1", billing: {} } as TOrganization,
+  it("throws if no organization is found", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({
+      user: { id: "user-123" },
    });
-    vi.mocked(getProjectByEnvironmentId).mockResolvedValueOnce({ id: "proj1" } as TProject);
+    vi.mocked(getUser).mockResolvedValueOnce({
+      id: "user-123",
+      email: "test@example.com",
+    } as TUser);
+    vi.mocked(hasUserEnvironmentAccess).mockResolvedValueOnce(true);
+    vi.mocked(getOrganizationByEnvironmentId).mockResolvedValueOnce(null);
+
+    await expect(
+      EnvLayout({
+        params: Promise.resolve({ environmentId: "env-123" }),
+        children: <div data-testid="child-content">Hello from children!</div>,
+      })
+    ).rejects.toThrow("common.organization_not_found");
+  });
+
+  it("throws if no project is found", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({
+      user: { id: "user-123" },
+    });
+    vi.mocked(getUser).mockResolvedValueOnce({
+      id: "user-123",
+      email: "test@example.com",
+    } as TUser);
+    vi.mocked(hasUserEnvironmentAccess).mockResolvedValueOnce(true);
+    vi.mocked(getOrganizationByEnvironmentId).mockResolvedValueOnce({ id: "org-999" } as TOrganization);
+    vi.mocked(getProjectByEnvironmentId).mockResolvedValueOnce(null);
+
+    await expect(
+      EnvLayout({
+        params: Promise.resolve({ environmentId: "env-123" }),
+        children: <div>Child</div>,
+      })
+    ).rejects.toThrow("project_not_found");
+  });
+
+  it("calls notFound if membership is missing", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({
+      user: { id: "user-123" },
+    });
+    vi.mocked(getUser).mockResolvedValueOnce({
+      id: "user-123",
+      email: "test@example.com",
+    } as TUser);
+    vi.mocked(hasUserEnvironmentAccess).mockResolvedValueOnce(true);
+    vi.mocked(getOrganizationByEnvironmentId).mockResolvedValueOnce({ id: "org-999" } as TOrganization);
+    vi.mocked(getProjectByEnvironmentId).mockResolvedValueOnce({ id: "proj-111" } as TProject);
    vi.mocked(getMembershipByUserIdOrganizationId).mockResolvedValueOnce(null);

    await expect(
      EnvLayout({
-        params: Promise.resolve({ environmentId: "env1" }),
-        children: <div>Content</div>,
+        params: Promise.resolve({ environmentId: "env-123" }),
+        children: <div>Child</div>,
      })
-    ).rejects.toThrow("common.membership_not_found");
+    ).rejects.toThrow("membership_not_found");
  });

-  test("calls redirect when session is null", async () => {
-    vi.mocked(environmentIdLayoutChecks).mockResolvedValueOnce({
-      t: ((key: string) => key) as any,
-      session: undefined as unknown as Session,
-      user: undefined as unknown as TUser,
-      organization: { id: "org1", name: "Org1", billing: {} } as TOrganization,
+  it("renders environment layout if everything is valid", async () => {
+    vi.mocked(getServerSession).mockResolvedValueOnce({
+      user: { id: "user-123" },
    });
-    vi.mocked(redirect).mockImplementationOnce(() => {
-      throw new Error("Redirect called");
+    vi.mocked(getUser).mockResolvedValueOnce({
+      id: "user-123",
+      email: "test@example.com",
+    } as TUser);
+    vi.mocked(hasUserEnvironmentAccess).mockResolvedValueOnce(true);
+    vi.mocked(getOrganizationByEnvironmentId).mockResolvedValueOnce({ id: "org-999" } as TOrganization);
+    vi.mocked(getProjectByEnvironmentId).mockResolvedValueOnce({ id: "proj-111" } as TProject);
+    vi.mocked(getMembershipByUserIdOrganizationId).mockResolvedValueOnce({
+      id: "membership-123",
+    } as unknown as TMembership);
+
+    let layoutElement: React.ReactNode;
+
+    await act(async () => {
+      layoutElement = await EnvLayout({
+        params: Promise.resolve({ environmentId: "env-123" }),
+        children: <div data-testid="child-content">Hello from children!</div>,
+      });
+
+      // Now render the fully resolved layout
+      render(layoutElement);
    });

-    await expect(
-      EnvLayout({
-        params: Promise.resolve({ environmentId: "env1" }),
-        children: <div>Content</div>,
-      })
-    ).rejects.toThrow("Redirect called");
-  });
-
-  test("throws error if user is null", async () => {
-    vi.mocked(environmentIdLayoutChecks).mockResolvedValueOnce({
-      t: ((key: string) => key) as any,
-      session: { user: { id: "user1" } } as Session,
-      user: undefined as unknown as TUser,
-      organization: { id: "org1", name: "Org1", billing: {} } as TOrganization,
-    });
-
-    vi.mocked(redirect).mockImplementationOnce(() => {
-      throw new Error("Redirect called");
-    });
-
-    await expect(
-      EnvLayout({
-        params: Promise.resolve({ environmentId: "env1" }),
-        children: <div>Content</div>,
-      })
-    ).rejects.toThrow("common.user_not_found");
+    expect(screen.getByTestId("child-content")).toHaveTextContent("Hello from children!");
+    expect(screen.getByTestId("posthog-identify")).toBeInTheDocument();
+    expect(screen.getByTestId("formbricks-client")).toBeInTheDocument();
+    expect(screen.getByTestId("mock-toaster")).toBeInTheDocument();
+    expect(screen.getByTestId("mock-storage-handler")).toBeInTheDocument();
+    expect(screen.getByTestId("mock-response-filter-provider")).toBeInTheDocument();
+    expect(screen.getByTestId("mock-environment-result")).toBeInTheDocument();
  });
 });
--- a/apps/web/app/(app)/environments/[environmentId]/layout.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/layout.tsx
@@ -1,10 +1,20 @@
 import { EnvironmentLayout } from "@/app/(app)/environments/[environmentId]/components/EnvironmentLayout";
-import { environmentIdLayoutChecks } from "@/modules/environments/lib/utils";
-import { EnvironmentIdBaseLayout } from "@/modules/ui/components/environmentId-base-layout";
+import { ResponseFilterProvider } from "@/app/(app)/environments/[environmentId]/components/ResponseFilterContext";
+import { authOptions } from "@/modules/auth/lib/authOptions";
+import { ToasterClient } from "@/modules/ui/components/toaster-client";
+import { getTranslate } from "@/tolgee/server";
+import { getServerSession } from "next-auth";
 import { redirect } from "next/navigation";
+import { IS_POSTHOG_CONFIGURED } from "@formbricks/lib/constants";
+import { hasUserEnvironmentAccess } from "@formbricks/lib/environment/auth";
 import { getMembershipByUserIdOrganizationId } from "@formbricks/lib/membership/service";
+import { getOrganizationByEnvironmentId } from "@formbricks/lib/organization/service";
 import { getProjectByEnvironmentId } from "@formbricks/lib/project/service";
+import { getUser } from "@formbricks/lib/user/service";
+import { AuthorizationError } from "@formbricks/types/errors";
+import { FormbricksClient } from "../../components/FormbricksClient";
 import EnvironmentStorageHandler from "./components/EnvironmentStorageHandler";
+import { PosthogIdentify } from "./components/PosthogIdentify";

 const EnvLayout = async (props: {
  params: Promise<{ environmentId: string }>;
@@ -14,16 +24,27 @@ const EnvLayout = async (props: {

  const { children } = props;

-  const { t, session, user, organization } = await environmentIdLayoutChecks(params.environmentId);
+  const t = await getTranslate();
+  const session = await getServerSession(authOptions);

-  if (!session) {
+  if (!session?.user) {
    return redirect(`/auth/login`);
  }

+  const user = await getUser(session.user.id);
  if (!user) {
-    throw new Error(t("common.user_not_found"));
+    return redirect(`/auth/login`);
  }

+  const hasAccess = await hasUserEnvironmentAccess(session.user.id, params.environmentId);
+  if (!hasAccess) {
+    throw new AuthorizationError(t("common.not_authorized"));
+  }
+
+  const organization = await getOrganizationByEnvironmentId(params.environmentId);
+  if (!organization) {
+    throw new Error(t("common.organization_not_found"));
+  }
  const project = await getProjectByEnvironmentId(params.environmentId);
  if (!project) {
    throw new Error(t("common.project_not_found"));
@@ -36,16 +57,23 @@ const EnvLayout = async (props: {
  }

  return (
-    <EnvironmentIdBaseLayout
-      environmentId={params.environmentId}
-      session={session}
-      user={user}
-      organization={organization}>
+    <ResponseFilterProvider>
+      <PosthogIdentify
+        session={session}
+        user={user}
+        environmentId={params.environmentId}
+        organizationId={organization.id}
+        organizationName={organization.name}
+        organizationBilling={organization.billing}
+        isPosthogEnabled={IS_POSTHOG_CONFIGURED}
+      />
+      <FormbricksClient userId={user.id} email={user.email} />
+      <ToasterClient />
      <EnvironmentStorageHandler environmentId={params.environmentId} />
      <EnvironmentLayout environmentId={params.environmentId} session={session}>
        {children}
      </EnvironmentLayout>
-    </EnvironmentIdBaseLayout>
+    </ResponseFilterProvider>
  );
 };

--- a/apps/web/app/(app)/environments/[environmentId]/project/api-keys/loading.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/project/api-keys/loading.tsx
@@ -0,0 +1,3 @@
+import { APIKeysLoading } from "@/modules/projects/settings/api-keys/loading";
+
+export default APIKeysLoading;
--- a/apps/web/app/(app)/environments/[environmentId]/project/api-keys/page.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/project/api-keys/page.tsx
@@ -0,0 +1,3 @@
+import { APIKeysPage } from "@/modules/projects/settings/api-keys/page";
+
+export default APIKeysPage;
--- a/apps/web/app/(app)/environments/[environmentId]/settings/(organization)/api-keys/loading.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/settings/(organization)/api-keys/loading.tsx
@@ -1,6 +0,0 @@
-import Loading from "@/modules/organization/settings/api-keys/loading";
-import { IS_FORMBRICKS_CLOUD } from "@formbricks/lib/constants";
-
-export default function LoadingPage() {
-  return <Loading isFormbricksCloud={IS_FORMBRICKS_CLOUD} />;
-}
--- a/apps/web/app/(app)/environments/[environmentId]/settings/(organization)/api-keys/page.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/settings/(organization)/api-keys/page.tsx
@@ -1,3 +0,0 @@
-import { APIKeysPage } from "@/modules/organization/settings/api-keys/page";
-
-export default APIKeysPage;
--- a/apps/web/app/(app)/environments/[environmentId]/settings/(organization)/components/OrganizationSettingsNavbar.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/settings/(organization)/components/OrganizationSettingsNavbar.tsx
@@ -22,7 +22,7 @@ export const OrganizationSettingsNavbar = ({
  loading,
 }: OrganizationSettingsNavbarProps) => {
  const pathname = usePathname();
-  const { isMember, isOwner } = getAccessFlags(membershipRole);
+  const { isMember } = getAccessFlags(membershipRole);
  const isPricingDisabled = isMember;
  const { t } = useTranslate();

@@ -54,13 +54,6 @@ export const OrganizationSettingsNavbar = ({
      hidden: isFormbricksCloud || isPricingDisabled,
      current: pathname?.includes("/enterprise"),
    },
-    {
-      id: "api-keys",
-      label: t("common.api_keys"),
-      href: `/environments/${environmentId}/settings/api-keys`,
-      current: pathname?.includes("/api-keys"),
-      hidden: !isOwner,
-    },
  ];

  return <SecondaryNavigation navigation={navigation} activeId={activeId} loading={loading} />;
--- a/apps/web/app/(app)/environments/[environmentId]/settings/(organization)/general/page.test.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/settings/(organization)/general/page.test.tsx
@@ -6,7 +6,7 @@ import {
 import { getEnvironmentAuth } from "@/modules/environments/lib/utils";
 import { TEnvironmentAuth } from "@/modules/environments/types/environment-auth";
 import { getTranslate } from "@/tolgee/server";
-import { beforeEach, describe, expect, test, vi } from "vitest";
+import { beforeEach, describe, expect, it, vi } from "vitest";
 import { getUser } from "@formbricks/lib/user/service";
 import { TUser } from "@formbricks/types/user";
 import Page from "./page";
@@ -33,16 +33,12 @@ vi.mock("@formbricks/lib/constants", () => ({
  WEBAPP_URL: "mock-webapp-url",
  SMTP_HOST: "mock-smtp-host",
  SMTP_PORT: "mock-smtp-port",
-  AI_AZURE_LLM_RESSOURCE_NAME: "mock-ai-azure-llm-ressource-name",
-  AI_AZURE_LLM_API_KEY: "mock-ai",
-  AI_AZURE_LLM_DEPLOYMENT_ID: "mock-ai-azure-llm-deployment-id",
-  AI_AZURE_EMBEDDINGS_RESSOURCE_NAME: "mock-ai-azure-embeddings-ressource-name",
-  AI_AZURE_EMBEDDINGS_API_KEY: "mock-ai-azure-embeddings-api-key",
-  AI_AZURE_EMBEDDINGS_DEPLOYMENT_ID: "mock-ai-azure-embeddings-deployment-id",
-}));
-
-vi.mock("next-auth", () => ({
-  getServerSession: vi.fn(),
+  AI_AZURE_LLM_RESSOURCE_NAME: "mock-azure-llm-resource-name",
+  AI_AZURE_LLM_API_KEY: "mock-azure-llm-api-key",
+  AI_AZURE_LLM_DEPLOYMENT_ID: "mock-azure-llm-deployment-id",
+  AI_AZURE_EMBEDDINGS_RESSOURCE_NAME: "mock-azure-embeddings-resource-name",
+  AI_AZURE_EMBEDDINGS_API_KEY: "mock-azure-embeddings-api-key",
+  AI_AZURE_EMBEDDINGS_DEPLOYMENT_ID: "mock-azure-embeddings-deployment-id",
 }));

 vi.mock("@/tolgee/server", () => ({
@@ -84,7 +80,7 @@ describe("Page", () => {
    vi.mocked(getWhiteLabelPermission).mockResolvedValue(true);
  });

-  test("renders the page with organization settings", async () => {
+  it("renders the page with organization settings", async () => {
    const props = {
      params: Promise.resolve({ environmentId: "env-123" }),
    };
@@ -94,7 +90,7 @@ describe("Page", () => {
    expect(result).toBeTruthy();
  });

-  test("renders if session user id empty", async () => {
+  it("renders if session user id empty", async () => {
    mockEnvironmentAuth.session.user.id = "";

    vi.mocked(getEnvironmentAuth).mockResolvedValue(mockEnvironmentAuth);
@@ -108,7 +104,7 @@ describe("Page", () => {
    expect(result).toBeTruthy();
  });

-  test("handles getEnvironmentAuth error", async () => {
+  it("handles getEnvironmentAuth error", async () => {
    vi.mocked(getEnvironmentAuth).mockRejectedValue(new Error("Authentication error"));

    const props = {
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/responses/components/ResponseTableColumns.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/responses/components/ResponseTableColumns.tsx
@@ -71,11 +71,7 @@ const getQuestionColumnsData = (
              <div className="flex items-center justify-between">
                <div className="flex items-center space-x-2 overflow-hidden">
                  <span className="h-4 w-4">{QUESTIONS_ICON_MAP["matrix"]}</span>
-                  <span className="truncate">
-                    {getLocalizedValue(question.headline, "default") +
-                      " - " +
-                      getLocalizedValue(matrixRow, "default")}
-                  </span>
+                  <span className="truncate">{getLocalizedValue(matrixRow, "default")}</span>
                </div>
              </div>
            );
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/responses/page.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/responses/page.tsx
@@ -13,7 +13,6 @@ import {
  RESPONSES_PER_PAGE,
  WEBAPP_URL,
 } from "@formbricks/lib/constants";
-import { getSurveyDomain } from "@formbricks/lib/getSurveyUrl";
 import { getResponseCountBySurveyId } from "@formbricks/lib/response/service";
 import { getSurvey } from "@formbricks/lib/survey/service";
 import { getTagsByEnvironmentId } from "@formbricks/lib/tag/service";
@@ -48,7 +47,6 @@ const Page = async (props) => {
  });
  const shouldGenerateInsights = needsInsightsGeneration(survey);
  const locale = await findMatchingLocale();
-  const surveyDomain = getSurveyDomain();

  return (
    <PageContentWrapper>
@@ -59,8 +57,8 @@ const Page = async (props) => {
            environment={environment}
            survey={survey}
            isReadOnly={isReadOnly}
+            webAppUrl={WEBAPP_URL}
            user={user}
-            surveyDomain={surveyDomain}
          />
        }>
        {isAIEnabled && shouldGenerateInsights && (
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/DateQuestionSummary.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/DateQuestionSummary.tsx
@@ -35,16 +35,6 @@ export const DateQuestionSummary = ({
    );
  };

-  const renderResponseValue = (value: string) => {
-    const parsedDate = new Date(value);
-
-    const formattedDate = isNaN(parsedDate.getTime())
-      ? `${t("common.invalid_date")}(${value})`
-      : formatDateWithOrdinal(parsedDate);
-
-    return formattedDate;
-  };
-
  return (
    <div className="rounded-xl border border-slate-200 bg-white shadow-sm">
      <QuestionSummaryHeader questionSummary={questionSummary} survey={survey} />
@@ -80,8 +70,8 @@ export const DateQuestionSummary = ({
                  </div>
                )}
              </div>
-              <div className="ph-no-capture col-span-2 pl-6 font-semibold whitespace-pre-wrap">
-                {renderResponseValue(response.value)}
+              <div className="ph-no-capture col-span-2 whitespace-pre-wrap pl-6 font-semibold">
+                {formatDateWithOrdinal(new Date(response.value as string))}
              </div>
              <div className="px-4 text-slate-500 md:px-6">
                {timeSince(new Date(response.updatedAt).toISOString(), locale)}
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/QuestionSummaryHeader.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/QuestionSummaryHeader.tsx
@@ -1,7 +1,6 @@
 "use client";

 import { getQuestionTypes } from "@/modules/survey/lib/questions";
-import { SettingsId } from "@/modules/ui/components/settings-id";
 import { useTranslate } from "@tolgee/react";
 import { InboxIcon } from "lucide-react";
 import type { JSX } from "react";
@@ -43,7 +42,7 @@ export const QuestionSummaryHeader = ({
  };

  return (
-    <div className="space-y-2 px-4 pt-6 pb-5 md:px-6">
+    <div className="space-y-2 px-4 pb-5 pt-6 md:px-6">
      <div className={"align-center flex justify-between gap-4"}>
        <h3 className="pb-1 text-lg font-semibold text-slate-900 md:text-xl">
          {formatTextWithSlashes(
@@ -70,7 +69,6 @@ export const QuestionSummaryHeader = ({
          </div>
        )}
      </div>
-      <SettingsId title={t("common.question_id")} id={questionSummary.question.id}></SettingsId>
    </div>
  );
 };
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/ShareEmbedSurvey.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/ShareEmbedSurvey.tsx
@@ -23,19 +23,19 @@ import { PanelInfoView } from "./shareEmbedModal/PanelInfoView";

 interface ShareEmbedSurveyProps {
  survey: TSurvey;
-  surveyDomain: string;
  open: boolean;
  modalView: "start" | "embed" | "panel";
  setOpen: React.Dispatch<React.SetStateAction<boolean>>;
+  webAppUrl: string;
  user: TUser;
 }

 export const ShareEmbedSurvey = ({
  survey,
-  surveyDomain,
  open,
  modalView,
  setOpen,
+  webAppUrl,
  user,
 }: ShareEmbedSurveyProps) => {
  const router = useRouter();
@@ -104,8 +104,8 @@ export const ShareEmbedSurvey = ({
              <DialogDescription className="hidden" />
              <ShareSurveyLink
                survey={survey}
+                webAppUrl={webAppUrl}
                surveyUrl={surveyUrl}
-                surveyDomain={surveyDomain}
                setSurveyUrl={setSurveyUrl}
                locale={user.locale}
              />
@@ -159,8 +159,8 @@ export const ShareEmbedSurvey = ({
            survey={survey}
            email={email}
            surveyUrl={surveyUrl}
-            surveyDomain={surveyDomain}
            setSurveyUrl={setSurveyUrl}
+            webAppUrl={webAppUrl}
            locale={user.locale}
          />
        ) : showView === "panel" ? (
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/SurveyAnalysisCTA.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/SurveyAnalysisCTA.tsx
@@ -20,8 +20,8 @@ interface SurveyAnalysisCTAProps {
  survey: TSurvey;
  environment: TEnvironment;
  isReadOnly: boolean;
+  webAppUrl: string;
  user: TUser;
-  surveyDomain: string;
 }

 interface ModalState {
@@ -35,8 +35,8 @@ export const SurveyAnalysisCTA = ({
  survey,
  environment,
  isReadOnly,
+  webAppUrl,
  user,
-  surveyDomain,
 }: SurveyAnalysisCTAProps) => {
  const { t } = useTranslate();
  const searchParams = useSearchParams();
@@ -50,7 +50,7 @@ export const SurveyAnalysisCTA = ({
    dropdown: false,
  });

-  const surveyUrl = useMemo(() => `${surveyDomain}/s/${survey.id}`, [survey.id, surveyDomain]);
+  const surveyUrl = useMemo(() => `${webAppUrl}/s/${survey.id}`, [survey.id, webAppUrl]);
  const { refreshSingleUseId } = useSingleUseId(survey);

  const widgetSetupCompleted = survey.type === "app" && environment.appSetupCompleted;
@@ -172,9 +172,9 @@ export const SurveyAnalysisCTA = ({
            <ShareEmbedSurvey
              key={key}
              survey={survey}
-              surveyDomain={surveyDomain}
              open={modalState[key as keyof ModalState]}
              setOpen={setOpen}
+              webAppUrl={webAppUrl}
              user={user}
              modalView={modalView}
            />
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/shareEmbedModal/EmbedView.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/shareEmbedModal/EmbedView.tsx
@@ -20,8 +20,8 @@ interface EmbedViewProps {
  survey: any;
  email: string;
  surveyUrl: string;
-  surveyDomain: string;
  setSurveyUrl: React.Dispatch<React.SetStateAction<string>>;
+  webAppUrl: string;
  locale: TUserLocale;
 }

@@ -35,8 +35,8 @@ export const EmbedView = ({
  survey,
  email,
  surveyUrl,
-  surveyDomain,
  setSurveyUrl,
+  webAppUrl,
  locale,
 }: EmbedViewProps) => {
  const { t } = useTranslate();
@@ -82,8 +82,8 @@ export const EmbedView = ({
          ) : activeId === "link" ? (
            <LinkTab
              survey={survey}
+              webAppUrl={webAppUrl}
              surveyUrl={surveyUrl}
-              surveyDomain={surveyDomain}
              setSurveyUrl={setSurveyUrl}
              locale={locale}
            />
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/shareEmbedModal/LinkTab.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/shareEmbedModal/LinkTab.tsx
@@ -8,13 +8,13 @@ import { TUserLocale } from "@formbricks/types/user";

 interface LinkTabProps {
  survey: TSurvey;
+  webAppUrl: string;
  surveyUrl: string;
-  surveyDomain: string;
  setSurveyUrl: (url: string) => void;
  locale: TUserLocale;
 }

-export const LinkTab = ({ survey, surveyUrl, surveyDomain, setSurveyUrl, locale }: LinkTabProps) => {
+export const LinkTab = ({ survey, webAppUrl, surveyUrl, setSurveyUrl, locale }: LinkTabProps) => {
  const { t } = useTranslate();

  const docsLinks = [
@@ -43,8 +43,8 @@ export const LinkTab = ({ survey, surveyUrl, surveyDomain, setSurveyUrl, locale
        </p>
        <ShareSurveyLink
          survey={survey}
+          webAppUrl={webAppUrl}
          surveyUrl={surveyUrl}
-          surveyDomain={surveyDomain}
          setSurveyUrl={setSurveyUrl}
          locale={locale}
        />
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/tests/SurveyAnalysisCTA.test.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/tests/SurveyAnalysisCTA.test.tsx
@@ -1,7 +1,7 @@
 import "@testing-library/jest-dom/vitest";
 import { cleanup, fireEvent, render, screen, waitFor } from "@testing-library/react";
 import toast from "react-hot-toast";
-import { afterEach, describe, expect, test, vi } from "vitest";
+import { afterEach, describe, expect, it, vi } from "vitest";
 import { TEnvironment } from "@formbricks/types/environment";
 import { TSurvey } from "@formbricks/types/surveys/types";
 import { TUser } from "@formbricks/types/user";
@@ -78,20 +78,20 @@ const dummySurvey = {
 } as unknown as TSurvey;
 const dummyEnvironment = { id: "env123", appSetupCompleted: true } as TEnvironment;
 const dummyUser = { id: "user123", name: "Test User" } as TUser;
-const surveyDomain = "https://surveys.test.formbricks.com";
+const webAppUrl = "http://example.com";

 describe("SurveyAnalysisCTA - handleCopyLink", () => {
  afterEach(() => {
    cleanup();
  });

-  test("calls copySurveyLink and clipboard.writeText on success", async () => {
+  it("calls copySurveyLink and clipboard.writeText on success", async () => {
    render(
      <SurveyAnalysisCTA
        survey={dummySurvey}
        environment={dummyEnvironment}
        isReadOnly={false}
-        surveyDomain={surveyDomain}
+        webAppUrl={webAppUrl}
        user={dummyUser}
      />
    );
@@ -101,21 +101,19 @@ describe("SurveyAnalysisCTA - handleCopyLink", () => {

    await waitFor(() => {
      expect(refreshSingleUseIdSpy).toHaveBeenCalled();
-      expect(writeTextMock).toHaveBeenCalledWith(
-        "https://surveys.test.formbricks.com/s/survey123?id=newSingleUseId"
-      );
+      expect(writeTextMock).toHaveBeenCalledWith("http://example.com/s/survey123?id=newSingleUseId");
      expect(toast.success).toHaveBeenCalledWith("common.copied_to_clipboard");
    });
  });

-  test("shows error toast on failure", async () => {
+  it("shows error toast on failure", async () => {
    refreshSingleUseIdSpy.mockImplementationOnce(() => Promise.reject(new Error("fail")));
    render(
      <SurveyAnalysisCTA
        survey={dummySurvey}
        environment={dummyEnvironment}
        isReadOnly={false}
-        surveyDomain={surveyDomain}
+        webAppUrl={webAppUrl}
        user={dummyUser}
      />
    );
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/lib/emailTemplate.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/lib/emailTemplate.tsx
@@ -1,6 +1,6 @@
 import { getPreviewEmailTemplateHtml } from "@/modules/email/components/preview-email-template";
 import { getTranslate } from "@/tolgee/server";
-import { getSurveyDomain } from "@formbricks/lib/getSurveyUrl";
+import { WEBAPP_URL } from "@formbricks/lib/constants";
 import { getProjectByEnvironmentId } from "@formbricks/lib/project/service";
 import { getSurvey } from "@formbricks/lib/survey/service";
 import { getStyling } from "@formbricks/lib/utils/styling";
@@ -17,7 +17,7 @@ export const getEmailTemplateHtml = async (surveyId: string, locale: string) =>
  }

  const styling = getStyling(project, survey);
-  const surveyUrl = getSurveyDomain() + "/s/" + survey.id;
+  const surveyUrl = WEBAPP_URL + "/s/" + survey.id;
  const html = await getPreviewEmailTemplateHtml(survey, surveyUrl, styling, locale, t);
  const doctype =
    '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">';
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/page.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/page.tsx
@@ -16,7 +16,6 @@ import {
  MAX_RESPONSES_FOR_INSIGHT_GENERATION,
  WEBAPP_URL,
 } from "@formbricks/lib/constants";
-import { getSurveyDomain } from "@formbricks/lib/getSurveyUrl";
 import { getResponseCountBySurveyId } from "@formbricks/lib/response/service";
 import { getSurvey } from "@formbricks/lib/survey/service";
 import { getUser } from "@formbricks/lib/user/service";
@@ -55,7 +54,6 @@ const SurveyPage = async (props: { params: Promise<{ environmentId: string; surv
    billing: organization.billing,
  });
  const shouldGenerateInsights = needsInsightsGeneration(survey);
-  const surveyDomain = getSurveyDomain();

  return (
    <PageContentWrapper>
@@ -66,8 +64,8 @@ const SurveyPage = async (props: { params: Promise<{ environmentId: string; surv
            environment={environment}
            survey={survey}
            isReadOnly={isReadOnly}
+            webAppUrl={WEBAPP_URL}
            user={user}
-            surveyDomain={surveyDomain}
          />
        }>
        {isAIEnabled && shouldGenerateInsights && (
--- a/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/components/CustomFilter.tsx
+++ b/apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/components/CustomFilter.tsx
@@ -390,7 +390,7 @@ export const CustomFilter = ({ survey }: CustomFilterProps) => {
                value && handleDatePickerClose();
              }}>
              <DropdownMenuTrigger asChild className="focus:bg-muted cursor-pointer outline-none">
-                <div className="h-auto min-w-auto rounded-md border border-slate-200 bg-white p-3 hover:border-slate-300 sm:flex sm:px-6 sm:py-3">
+                <div className="min-w-auto h-auto rounded-md border border-slate-200 bg-white p-3 hover:border-slate-300 sm:flex sm:px-6 sm:py-3">
                  <div className="hidden w-full items-center justify-between sm:flex">
                    <span className="text-sm text-slate-700">{t("common.download")}</span>
                    <ArrowDownToLineIcon className="ml-2 h-4 w-4" />
@@ -416,14 +416,14 @@ export const CustomFilter = ({ survey }: CustomFilterProps) => {
                  onClick={() => {
                    handleDowndloadResponses(FilterDownload.FILTER, "csv");
                  }}>
-                  <p className="text-slate-700">{t("environments.surveys.summary.filtered_responses_csv")}</p>
+                  <p className="text-slate-700">{t("environments.surveys.summary.current_selection_csv")}</p>
                </DropdownMenuItem>
                <DropdownMenuItem
                  onClick={() => {
                    handleDowndloadResponses(FilterDownload.FILTER, "xlsx");
                  }}>
                  <p className="text-slate-700">
-                    {t("environments.surveys.summary.filtered_responses_excel")}
+                    {t("environments.surveys.summary.current_selection_excel")}
                  </p>
                </DropdownMenuItem>
              </DropdownMenuContent>
--- a/apps/web/app/(app)/layout.test.tsx
+++ b/apps/web/app/(app)/layout.test.tsx
@@ -1,7 +1,7 @@
 import "@testing-library/jest-dom/vitest";
 import { cleanup, render, screen } from "@testing-library/react";
 import { getServerSession } from "next-auth";
-import { afterEach, describe, expect, test, vi } from "vitest";
+import { afterEach, describe, expect, it, vi } from "vitest";
 import { getUser } from "@formbricks/lib/user/service";
 import { TUser } from "@formbricks/types/user";
 import AppLayout from "./layout";
@@ -36,9 +36,6 @@ vi.mock("@formbricks/lib/constants", () => ({
  IS_POSTHOG_CONFIGURED: true,
  POSTHOG_API_HOST: "test-posthog-api-host",
  POSTHOG_API_KEY: "test-posthog-api-key",
-  FORMBRICKS_API_HOST: "mock-formbricks-api-host",
-  FORMBRICKS_ENVIRONMENT_ID: "mock-formbricks-environment-id",
-  IS_FORMBRICKS_ENABLED: true,
 }));

 vi.mock("@/app/(app)/components/FormbricksClient", () => ({
@@ -50,6 +47,12 @@ vi.mock("@/app/intercom/IntercomClientWrapper", () => ({
 vi.mock("@/modules/ui/components/no-mobile-overlay", () => ({
  NoMobileOverlay: () => <div data-testid="no-mobile-overlay" />,
 }));
+vi.mock("@/modules/ui/components/post-hog-client", () => ({
+  PHProvider: ({ children }: { children: React.ReactNode }) => (
+    <div data-testid="ph-provider">{children}</div>
+  ),
+  PostHogPageview: () => <div data-testid="ph-pageview" />,
+}));
 vi.mock("@/modules/ui/components/toaster-client", () => ({
  ToasterClient: () => <div data-testid="toaster-client" />,
 }));
@@ -59,7 +62,7 @@ describe("(app) AppLayout", () => {
    cleanup();
  });

-  test("renders child content and all sub-components when user exists", async () => {
+  it("renders child content and all sub-components when user exists", async () => {
    vi.mocked(getServerSession).mockResolvedValueOnce({ user: { id: "user-123" } });
    vi.mocked(getUser).mockResolvedValueOnce({ id: "user-123", email: "test@example.com" } as TUser);

@@ -71,13 +74,15 @@ describe("(app) AppLayout", () => {
    render(element);

    expect(screen.getByTestId("no-mobile-overlay")).toBeInTheDocument();
+    expect(screen.getByTestId("ph-pageview")).toBeInTheDocument();
+    expect(screen.getByTestId("ph-provider")).toBeInTheDocument();
    expect(screen.getByTestId("mock-intercom-wrapper")).toBeInTheDocument();
    expect(screen.getByTestId("toaster-client")).toBeInTheDocument();
    expect(screen.getByTestId("child-content")).toHaveTextContent("Hello from children");
    expect(screen.getByTestId("formbricks-client")).toBeInTheDocument();
  });

-  test("skips FormbricksClient if no user is present", async () => {
+  it("skips FormbricksClient if no user is present", async () => {
    vi.mocked(getServerSession).mockResolvedValueOnce(null);

    const element = await AppLayout({
--- a/apps/web/app/(app)/layout.tsx
+++ b/apps/web/app/(app)/layout.tsx
@@ -1,31 +1,18 @@
 import { FormbricksClient } from "@/app/(app)/components/FormbricksClient";
 import { IntercomClientWrapper } from "@/app/intercom/IntercomClientWrapper";
 import { authOptions } from "@/modules/auth/lib/authOptions";
-import { ClientLogout } from "@/modules/ui/components/client-logout";
 import { NoMobileOverlay } from "@/modules/ui/components/no-mobile-overlay";
 import { PHProvider, PostHogPageview } from "@/modules/ui/components/post-hog-client";
 import { ToasterClient } from "@/modules/ui/components/toaster-client";
 import { getServerSession } from "next-auth";
 import { Suspense } from "react";
-import {
-  FORMBRICKS_API_HOST,
-  FORMBRICKS_ENVIRONMENT_ID,
-  IS_FORMBRICKS_ENABLED,
-  IS_POSTHOG_CONFIGURED,
-  POSTHOG_API_HOST,
-  POSTHOG_API_KEY,
-} from "@formbricks/lib/constants";
+import { IS_POSTHOG_CONFIGURED, POSTHOG_API_HOST, POSTHOG_API_KEY } from "@formbricks/lib/constants";
 import { getUser } from "@formbricks/lib/user/service";

 const AppLayout = async ({ children }) => {
  const session = await getServerSession(authOptions);
  const user = session?.user?.id ? await getUser(session.user.id) : null;

-  // If user account is deactivated, log them out instead of rendering the app
-  if (user?.isActive === false) {
-    return <ClientLogout />;
-  }
-
  return (
    <>
      <NoMobileOverlay />
@@ -38,15 +25,7 @@ const AppLayout = async ({ children }) => {
      </Suspense>
      <PHProvider posthogEnabled={IS_POSTHOG_CONFIGURED}>
        <>
-          {user ? (
-            <FormbricksClient
-              userId={user.id}
-              email={user.email}
-              formbricksApiHost={FORMBRICKS_API_HOST}
-              formbricksEnvironmentId={FORMBRICKS_ENVIRONMENT_ID}
-              formbricksEnabled={IS_FORMBRICKS_ENABLED}
-            />
-          ) : null}
+          {user ? <FormbricksClient userId={user.id} email={user.email} /> : null}
          <IntercomClientWrapper user={user} />
          <ToasterClient />
          {children}
--- a/apps/web/app/(auth)/layout.test.tsx
+++ b/apps/web/app/(auth)/layout.test.tsx
@@ -1,6 +1,6 @@
 import "@testing-library/jest-dom/vitest";
 import { render, screen } from "@testing-library/react";
-import { describe, expect, test, vi } from "vitest";
+import { describe, expect, it, vi } from "vitest";
 import AppLayout from "../(auth)/layout";

 vi.mock("@formbricks/lib/constants", () => ({
@@ -18,7 +18,7 @@ vi.mock("@/modules/ui/components/no-mobile-overlay", () => ({
 }));

 describe("(auth) AppLayout", () => {
-  test("renders the NoMobileOverlay and IntercomClient, plus children", async () => {
+  it("renders the NoMobileOverlay and IntercomClient, plus children", async () => {
    const appLayoutElement = await AppLayout({
      children: <div data-testid="child-content">Hello from children!</div>,
    });
--- a/apps/web/app/api/(internal)/csv-conversion/route.ts
+++ b/apps/web/app/api/(internal)/csv-conversion/route.ts
@@ -0,0 +1,51 @@
+import { responses } from "@/app/lib/api/response";
+import { authOptions } from "@/modules/auth/lib/authOptions";
+import { AsyncParser } from "@json2csv/node";
+import { getServerSession } from "next-auth";
+import { NextRequest } from "next/server";
+import { logger } from "@formbricks/logger";
+
+export const POST = async (request: NextRequest) => {
+  const session = await getServerSession(authOptions);
+
+  if (!session) {
+    return responses.unauthorizedResponse();
+  }
+
+  const data = await request.json();
+  let csv: string = "";
+
+  const { json, fields, fileName } = data;
+
+  const fallbackFileName = fileName.replace(/[^A-Za-z0-9_.-]/g, "_");
+  const encodedFileName = encodeURIComponent(fileName)
+    .replace(/['()]/g, (match) => "%" + match.charCodeAt(0).toString(16))
+    .replace(/\*/g, "%2A");
+
+  const parser = new AsyncParser({
+    fields,
+  });
+
+  try {
+    csv = await parser.parse(json).promise();
+  } catch (err) {
+    logger.error({ error: err, url: request.url }, "Failed to convert to CSV");
+    throw new Error("Failed to convert to CSV");
+  }
+
+  const headers = new Headers();
+  headers.set("Content-Type", "text/csv;charset=utf-8;");
+  headers.set(
+    "Content-Disposition",
+    `attachment; filename="${fallbackFileName}"; filename*=UTF-8''${encodedFileName}`
+  );
+
+  return Response.json(
+    {
+      fileResponse: csv,
+    },
+    {
+      headers,
+    }
+  );
+};
--- a/apps/web/app/api/(internal)/excel-conversion/route.ts
+++ b/apps/web/app/api/(internal)/excel-conversion/route.ts
@@ -0,0 +1,46 @@
+import { responses } from "@/app/lib/api/response";
+import { authOptions } from "@/modules/auth/lib/authOptions";
+import { getServerSession } from "next-auth";
+import { NextRequest } from "next/server";
+import * as xlsx from "xlsx";
+
+export const POST = async (request: NextRequest) => {
+  const session = await getServerSession(authOptions);
+
+  if (!session) {
+    return responses.unauthorizedResponse();
+  }
+
+  const data = await request.json();
+
+  const { json, fields, fileName } = data;
+
+  const fallbackFileName = fileName.replace(/[^A-Za-z0-9_.-]/g, "_");
+  const encodedFileName = encodeURIComponent(fileName)
+    .replace(/['()]/g, (match) => "%" + match.charCodeAt(0).toString(16))
+    .replace(/\*/g, "%2A");
+
+  const wb = xlsx.utils.book_new();
+  const ws = xlsx.utils.json_to_sheet(json, { header: fields });
+  xlsx.utils.book_append_sheet(wb, ws, "Sheet1");
+
+  const buffer = xlsx.write(wb, { type: "buffer", bookType: "xlsx" }) as Buffer;
+  const base64String = buffer.toString("base64");
+
+  const headers = new Headers();
+
+  headers.set("Content-Type", "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet");
+  headers.set(
+    "Content-Disposition",
+    `attachment; filename="${fallbackFileName}"; filename*=UTF-8''${encodedFileName}`
+  );
+
+  return Response.json(
+    {
+      fileResponse: base64String,
+    },
+    {
+      headers,
+    }
+  );
+};
--- a/apps/web/app/api/(internal)/pipeline/lib/handleIntegrations.ts
+++ b/apps/web/app/api/(internal)/pipeline/lib/handleIntegrations.ts
@@ -392,19 +392,6 @@ const getValue = (colType: string, value: string | string[] | Date | number | Re
            },
          ];
        }
-        if (Array.isArray(value)) {
-          const content = value.join("\n");
-          return [
-            {
-              text: {
-                content:
-                  content.length > NOTION_RICH_TEXT_LIMIT
-                    ? truncateText(content, NOTION_RICH_TEXT_LIMIT)
-                    : content,
-              },
-            },
-          ];
-        }
        return [
          {
            text: {
--- a/apps/web/app/api/(internal)/pipeline/lib/survey-follow-up.ts
+++ b/apps/web/app/api/(internal)/pipeline/lib/survey-follow-up.ts
@@ -12,10 +12,9 @@ type FollowUpResult = {
  error?: string;
 };

-export const evaluateFollowUp = async (
+const evaluateFollowUp = async (
  followUpId: string,
  followUpAction: TSurveyFollowUpAction,
-  survey: TSurvey,
  response: TResponse,
  organization: TOrganization
 ): Promise<void> => {
@@ -23,25 +22,6 @@ export const evaluateFollowUp = async (
  const { to, subject, body, replyTo } = properties;
  const toValueFromResponse = response.data[to];
  const logoUrl = organization.whitelabel?.logoUrl || "";
-
-  // Check if 'to' is a direct email address (team member or user email)
-  const parsedEmailTo = z.string().email().safeParse(to);
-  if (parsedEmailTo.success) {
-    // 'to' is a valid email address, send email directly
-    await sendFollowUpEmail({
-      html: body,
-      subject,
-      to: parsedEmailTo.data,
-      replyTo,
-      survey,
-      response,
-      attachResponseData: properties.attachResponseData,
-      logoUrl,
-    });
-    return;
-  }
-
-  // If not a direct email, check if it's a question ID or hidden field ID
  if (!toValueFromResponse) {
    throw new Error(`"To" value not found in response data for followup: ${followUpId}`);
  }
@@ -51,16 +31,7 @@ export const evaluateFollowUp = async (
    const parsedResult = z.string().email().safeParse(toValueFromResponse);
    if (parsedResult.data) {
      // send email to this email address
-      await sendFollowUpEmail({
-        html: body,
-        subject,
-        to: parsedResult.data,
-        replyTo,
-        logoUrl,
-        survey,
-        response,
-        attachResponseData: properties.attachResponseData,
-      });
+      await sendFollowUpEmail(body, subject, parsedResult.data, replyTo, logoUrl);
    } else {
      throw new Error(`Email address is not valid for followup: ${followUpId}`);
    }
@@ -71,16 +42,7 @@ export const evaluateFollowUp = async (
    }
    const parsedResult = z.string().email().safeParse(emailAddress);
    if (parsedResult.data) {
-      await sendFollowUpEmail({
-        html: body,
-        subject,
-        to: parsedResult.data,
-        replyTo,
-        logoUrl,
-        survey,
-        response,
-        attachResponseData: properties.attachResponseData,
-      });
+      await sendFollowUpEmail(body, subject, parsedResult.data, replyTo, logoUrl);
    } else {
      throw new Error(`Email address is not valid for followup: ${followUpId}`);
    }
@@ -91,7 +53,7 @@ export const sendSurveyFollowUps = async (
  survey: TSurvey,
  response: TResponse,
  organization: TOrganization
-): Promise<FollowUpResult[]> => {
+) => {
  const followUpPromises = survey.followUps.map(async (followUp): Promise<FollowUpResult> => {
    const { trigger } = followUp;

@@ -108,7 +70,7 @@ export const sendSurveyFollowUps = async (
      }
    }

-    return evaluateFollowUp(followUp.id, followUp.action, survey, response, organization)
+    return evaluateFollowUp(followUp.id, followUp.action, response, organization)
      .then(() => ({
        followUpId: followUp.id,
        status: "success" as const,
@@ -130,6 +92,4 @@ export const sendSurveyFollowUps = async (
  if (errors.length > 0) {
    logger.error(errors, "Follow-up processing errors");
  }
-
-  return followUpResults;
 };
--- a/apps/web/app/api/(internal)/pipeline/lib/tests/mocks/survey-follow-up.mock.ts
+++ b/apps/web/app/api/(internal)/pipeline/lib/tests/mocks/survey-follow-up.mock.ts
@@ -1,267 +0,0 @@
-import { TResponse } from "@formbricks/types/responses";
-import {
-  TSurvey,
-  TSurveyContactInfoQuestion,
-  TSurveyQuestionTypeEnum,
-} from "@formbricks/types/surveys/types";
-
-export const mockEndingId1 = "mpkt4n5krsv2ulqetle7b9e7";
-export const mockEndingId2 = "ge0h63htnmgq6kwx1suh9cyi";
-
-export const mockResponseEmailFollowUp: TSurvey["followUps"][number] = {
-  id: "cm9gpuazd0002192z67olbfdt",
-  createdAt: new Date(),
-  updatedAt: new Date(),
-  surveyId: "cm9gptbhg0000192zceq9ayuc",
-  name: "nice follow up",
-  trigger: {
-    type: "response",
-    properties: null,
-  },
-  action: {
-    type: "send-email",
-    properties: {
-      to: "vjniuob08ggl8dewl0hwed41",
-      body: '<p class="fb-editor-paragraph"><span>Hey 👋</span><br><br><span>Thanks for taking the time to respond, we will be in touch shortly.</span><br><br><span>Have a great day!</span></p>',
-      from: "noreply@example.com",
-      replyTo: ["test@user.com"],
-      subject: "Thanks for your answers!‌‌‍‍‌‌‌‍‌‌‌‍‍‌‌‌‌‌‌‌‍‍‍‌‌‍‌‌‌‍‍‌‍‌‌‌‌‌‌‌‍‌‍‌‌",
-      attachResponseData: true,
-    },
-  },
-};
-
-export const mockEndingFollowUp: TSurvey["followUps"][number] = {
-  id: "j0g23cue6eih6xs5m0m4cj50",
-  createdAt: new Date(),
-  updatedAt: new Date(),
-  surveyId: "cm9gptbhg0000192zceq9ayuc",
-  name: "nice follow up",
-  trigger: {
-    type: "endings",
-    properties: {
-      endingIds: [mockEndingId1],
-    },
-  },
-  action: {
-    type: "send-email",
-    properties: {
-      to: "vjniuob08ggl8dewl0hwed41",
-      body: '<p class="fb-editor-paragraph"><span>Hey 👋</span><br><br><span>Thanks for taking the time to respond, we will be in touch shortly.</span><br><br><span>Have a great day!</span></p>',
-      from: "noreply@example.com",
-      replyTo: ["test@user.com"],
-      subject: "Thanks for your answers!‌‌‍‍‌‌‌‍‌‌‌‍‍‌‌‌‌‌‌‌‍‍‍‌‌‍‌‌‌‍‍‌‍‌‌‌‌‌‌‌‍‌‍‌‌",
-      attachResponseData: true,
-    },
-  },
-};
-
-export const mockDirectEmailFollowUp: TSurvey["followUps"][number] = {
-  id: "yyc5sq1fqofrsyw4viuypeku",
-  createdAt: new Date(),
-  updatedAt: new Date(),
-  surveyId: "cm9gptbhg0000192zceq9ayuc",
-  name: "nice follow up 1",
-  trigger: {
-    type: "response",
-    properties: null,
-  },
-  action: {
-    type: "send-email",
-    properties: {
-      to: "direct@email.com",
-      body: '<p class="fb-editor-paragraph"><span>Hey 👋</span><br><br><span>Thanks for taking the time to respond, we will be in touch shortly.</span><br><br><span>Have a great day!</span></p>',
-      from: "noreply@example.com",
-      replyTo: ["test@user.com"],
-      subject: "Thanks for your answers!‌‌‍‍‌‌‌‍‌‌‌‍‍‌‌‌‌‌‌‌‍‍‍‌‌‍‌‌‌‍‍‌‍‌‌‌‌‌‌‌‍‌‍‌‌",
-      attachResponseData: true,
-    },
-  },
-};
-
-export const mockFollowUps: TSurvey["followUps"] = [mockDirectEmailFollowUp, mockResponseEmailFollowUp];
-
-export const mockSurvey: TSurvey = {
-  id: "cm9gptbhg0000192zceq9ayuc",
-  createdAt: new Date(),
-  updatedAt: new Date(),
-  name: "Start from scratch‌‌‍‍‌‍‍‌‌‌‌‍‍‍‌‌‌‌‌‌‌‌‍‌‍‌‌",
-  type: "link",
-  environmentId: "cm98djl8e000919hpzi6a80zp",
-  createdBy: "cm98dg3xm000019hpubj39vfi",
-  status: "inProgress",
-  welcomeCard: {
-    html: {
-      default: "Thanks for providing your feedback - let's go!‌‌‍‍‌‍‍‍‌‌‌‍‍‌‌‌‍‌‌‌‌‌‍‌‍‌‌",
-    },
-    enabled: false,
-    headline: {
-      default: "Welcome!‌‌‍‍‌‍‍‍‌‌‌‍‍‌‌‌‌‌‌‌‌‌‍‌‍‌‌",
-    },
-    buttonLabel: {
-      default: "Next‌‌‍‍‌‍‍‍‌‌‌‍‍‌‌‍‌‌‌‌‌‌‍‌‍‌‌",
-    },
-    timeToFinish: false,
-    showResponseCount: false,
-  },
-  questions: [
-    {
-      id: "vjniuob08ggl8dewl0hwed41",
-      type: "openText" as TSurveyQuestionTypeEnum.OpenText,
-      headline: {
-        default: "What would you like to know?‌‌‍‍‌‍‍‍‌‌‌‍‍‌‍‍‌‌‌‌‌‌‍‌‍‌‌",
-      },
-      required: true,
-      charLimit: {},
-      inputType: "email",
-      longAnswer: false,
-      buttonLabel: {
-        default: "Next‌‌‍‍‌‍‍‍‌‌‌‍‍‍‌‌‌‌‌‌‌‌‍‌‍‌‌",
-      },
-      placeholder: {
-        default: "example@email.com",
-      },
-    },
-  ],
-  endings: [
-    {
-      id: "gt1yoaeb5a3istszxqbl08mk",
-      type: "endScreen",
-      headline: {
-        default: "Thank you!‌‌‍‍‌‍‍‍‌‌‌‍‍‌‌‍‍‌‌‌‌‌‍‌‍‌‌",
-      },
-      subheader: {
-        default: "We appreciate your feedback.‌‌‍‍‌‍‍‍‌‌‌‍‍‌‍‌‌‌‌‌‌‌‍‌‍‌‌",
-      },
-      buttonLink: "https://formbricks.com",
-      buttonLabel: {
-        default: "Create your own Survey‌‌‍‍‌‍‍‍‌‌‌‍‍‌‍‌‍‌‌‌‌‌‍‌‍‌‌",
-      },
-    },
-  ],
-  hiddenFields: {
-    enabled: true,
-    fieldIds: [],
-  },
-  variables: [],
-  displayOption: "displayOnce",
-  recontactDays: null,
-  displayLimit: null,
-  autoClose: null,
-  runOnDate: null,
-  closeOnDate: null,
-  delay: 0,
-  displayPercentage: null,
-  autoComplete: null,
-  isVerifyEmailEnabled: false,
-  isSingleResponsePerEmailEnabled: false,
-  isBackButtonHidden: false,
-  projectOverwrites: null,
-  styling: null,
-  surveyClosedMessage: null,
-  singleUse: {
-    enabled: false,
-    isEncrypted: true,
-  },
-  pin: null,
-  resultShareKey: null,
-  showLanguageSwitch: null,
-  languages: [],
-  triggers: [],
-  segment: null,
-  followUps: mockFollowUps,
-};
-
-export const mockContactQuestion: TSurveyContactInfoQuestion = {
-  id: "zyoobxyolyqj17bt1i4ofr37",
-  type: TSurveyQuestionTypeEnum.ContactInfo,
-  email: {
-    show: true,
-    required: true,
-    placeholder: {
-      default: "Email",
-    },
-  },
-  phone: {
-    show: true,
-    required: true,
-    placeholder: {
-      default: "Phone",
-    },
-  },
-  company: {
-    show: true,
-    required: true,
-    placeholder: {
-      default: "Company",
-    },
-  },
-  headline: {
-    default: "Contact Question",
-  },
-  lastName: {
-    show: true,
-    required: true,
-    placeholder: {
-      default: "Last Name",
-    },
-  },
-  required: true,
-  firstName: {
-    show: true,
-    required: true,
-    placeholder: {
-      default: "First Name",
-    },
-  },
-  buttonLabel: {
-    default: "Next‌‌‍‍‌‌‌‍‌‌‌‍‍‌‌‌‍‌‌‌‍‍‍‌‌‌‌‌‌‌‌‍‌‍‌‌",
-  },
-  backButtonLabel: {
-    default: "Back‌‌‍‍‌‌‌‍‌‌‌‍‍‌‌‌‍‌‌‌‍‍‍‌‌‍‌‌‌‌‌‍‌‍‌‌",
-  },
-};
-
-export const mockContactEmailFollowUp: TSurvey["followUps"][number] = {
-  ...mockResponseEmailFollowUp,
-  action: {
-    ...mockResponseEmailFollowUp.action,
-    properties: {
-      ...mockResponseEmailFollowUp.action.properties,
-      to: mockContactQuestion.id,
-    },
-  },
-};
-
-export const mockSurveyWithContactQuestion: TSurvey = {
-  ...mockSurvey,
-  questions: [mockContactQuestion],
-  followUps: [mockContactEmailFollowUp],
-};
-
-export const mockResponse: TResponse = {
-  id: "response1",
-  surveyId: "survey1",
-  createdAt: new Date(),
-  updatedAt: new Date(),
-  variables: {},
-  language: "en",
-  data: {
-    ["vjniuob08ggl8dewl0hwed41"]: "test@example.com",
-  },
-  contact: null,
-  contactAttributes: {},
-  meta: {},
-  finished: true,
-  notes: [],
-  singleUseId: null,
-  tags: [],
-  displayId: null,
-};
-
-export const mockResponseWithContactQuestion: TResponse = {
-  ...mockResponse,
-  data: {
-    zyoobxyolyqj17bt1i4ofr37: ["test", "user1", "test@user1.com", "99999999999", "sampleCompany"],
-  },
-};
--- a/apps/web/app/api/(internal)/pipeline/lib/tests/survey-follow-up.test.ts
+++ b/apps/web/app/api/(internal)/pipeline/lib/tests/survey-follow-up.test.ts
@@ -1,235 +0,0 @@
-import {
-  mockContactEmailFollowUp,
-  mockDirectEmailFollowUp,
-  mockEndingFollowUp,
-  mockEndingId2,
-  mockResponse,
-  mockResponseEmailFollowUp,
-  mockResponseWithContactQuestion,
-  mockSurvey,
-  mockSurveyWithContactQuestion,
-} from "@/app/api/(internal)/pipeline/lib/tests/__mocks__/survey-follow-up.mock";
-import { sendFollowUpEmail } from "@/modules/email";
-import { describe, expect, test, vi } from "vitest";
-import { logger } from "@formbricks/logger";
-import { TOrganization } from "@formbricks/types/organizations";
-import { TResponse } from "@formbricks/types/responses";
-import { TSurvey } from "@formbricks/types/surveys/types";
-import { evaluateFollowUp, sendSurveyFollowUps } from "../survey-follow-up";
-
-// Mock dependencies
-vi.mock("@/modules/email", () => ({
-  sendFollowUpEmail: vi.fn(),
-}));
-
-vi.mock("@formbricks/logger", () => ({
-  logger: {
-    error: vi.fn(),
-  },
-}));
-
-describe("Survey Follow Up", () => {
-  const mockOrganization: Partial<TOrganization> = {
-    id: "org1",
-    name: "Test Org",
-    whitelabel: {
-      logoUrl: "https://example.com/logo.png",
-    },
-  };
-
-  describe("evaluateFollowUp", () => {
-    test("sends email when to is a direct email address", async () => {
-      const followUpId = mockDirectEmailFollowUp.id;
-      const followUpAction = mockDirectEmailFollowUp.action;
-
-      await evaluateFollowUp(
-        followUpId,
-        followUpAction,
-        mockSurvey,
-        mockResponse,
-        mockOrganization as TOrganization
-      );
-
-      expect(sendFollowUpEmail).toHaveBeenCalledWith({
-        html: mockDirectEmailFollowUp.action.properties.body,
-        subject: mockDirectEmailFollowUp.action.properties.subject,
-        to: mockDirectEmailFollowUp.action.properties.to,
-        replyTo: mockDirectEmailFollowUp.action.properties.replyTo,
-        survey: mockSurvey,
-        response: mockResponse,
-        attachResponseData: true,
-        logoUrl: "https://example.com/logo.png",
-      });
-    });
-
-    test("sends email when to is a question ID with valid email", async () => {
-      const followUpId = mockResponseEmailFollowUp.id;
-      const followUpAction = mockResponseEmailFollowUp.action;
-
-      await evaluateFollowUp(
-        followUpId,
-        followUpAction,
-        mockSurvey as TSurvey,
-        mockResponse as TResponse,
-        mockOrganization as TOrganization
-      );
-
-      expect(sendFollowUpEmail).toHaveBeenCalledWith({
-        html: mockResponseEmailFollowUp.action.properties.body,
-        subject: mockResponseEmailFollowUp.action.properties.subject,
-        to: mockResponse.data[mockResponseEmailFollowUp.action.properties.to],
-        replyTo: mockResponseEmailFollowUp.action.properties.replyTo,
-        survey: mockSurvey,
-        response: mockResponse,
-        attachResponseData: true,
-        logoUrl: "https://example.com/logo.png",
-      });
-    });
-
-    test("sends email when to is a question ID with valid email in array", async () => {
-      const followUpId = mockContactEmailFollowUp.id;
-      const followUpAction = mockContactEmailFollowUp.action;
-
-      await evaluateFollowUp(
-        followUpId,
-        followUpAction,
-        mockSurveyWithContactQuestion,
-        mockResponseWithContactQuestion,
-        mockOrganization as TOrganization
-      );
-
-      expect(sendFollowUpEmail).toHaveBeenCalledWith({
-        html: mockContactEmailFollowUp.action.properties.body,
-        subject: mockContactEmailFollowUp.action.properties.subject,
-        to: mockResponseWithContactQuestion.data[mockContactEmailFollowUp.action.properties.to][2],
-        replyTo: mockContactEmailFollowUp.action.properties.replyTo,
-        survey: mockSurveyWithContactQuestion,
-        response: mockResponseWithContactQuestion,
-        attachResponseData: true,
-        logoUrl: "https://example.com/logo.png",
-      });
-    });
-
-    test("throws error when to value is not found in response data", async () => {
-      const followUpId = "followup1";
-      const followUpAction = {
-        ...mockSurvey.followUps![0].action,
-        properties: {
-          ...mockSurvey.followUps![0].action.properties,
-          to: "nonExistentField",
-        },
-      };
-
-      await expect(
-        evaluateFollowUp(
-          followUpId,
-          followUpAction,
-          mockSurvey as TSurvey,
-          mockResponse as TResponse,
-          mockOrganization as TOrganization
-        )
-      ).rejects.toThrow(`"To" value not found in response data for followup: ${followUpId}`);
-    });
-
-    test("throws error when email address is invalid", async () => {
-      const followUpId = mockResponseEmailFollowUp.id;
-      const followUpAction = mockResponseEmailFollowUp.action;
-
-      const invalidResponse = {
-        ...mockResponse,
-        data: {
-          [mockResponseEmailFollowUp.action.properties.to]: "invalid-email",
-        },
-      };
-
-      await expect(
-        evaluateFollowUp(
-          followUpId,
-          followUpAction,
-          mockSurvey,
-          invalidResponse,
-          mockOrganization as TOrganization
-        )
-      ).rejects.toThrow(`Email address is not valid for followup: ${followUpId}`);
-    });
-  });
-
-  describe("sendSurveyFollowUps", () => {
-    test("skips follow-up when ending Id doesn't match", async () => {
-      const responseWithDifferentEnding = {
-        ...mockResponse,
-        endingId: mockEndingId2,
-      };
-
-      const mockSurveyWithEndingFollowUp: TSurvey = {
-        ...mockSurvey,
-        followUps: [mockEndingFollowUp],
-      };
-
-      const results = await sendSurveyFollowUps(
-        mockSurveyWithEndingFollowUp,
-        responseWithDifferentEnding as TResponse,
-        mockOrganization as TOrganization
-      );
-
-      expect(results).toEqual([
-        {
-          followUpId: mockEndingFollowUp.id,
-          status: "skipped",
-        },
-      ]);
-      expect(sendFollowUpEmail).not.toHaveBeenCalled();
-    });
-
-    test("processes follow-ups and log errors", async () => {
-      const error = new Error("Test error");
-      vi.mocked(sendFollowUpEmail).mockRejectedValueOnce(error);
-
-      const mockSurveyWithFollowUps: TSurvey = {
-        ...mockSurvey,
-        followUps: [mockResponseEmailFollowUp],
-      };
-
-      const results = await sendSurveyFollowUps(
-        mockSurveyWithFollowUps,
-        mockResponse,
-        mockOrganization as TOrganization
-      );
-
-      expect(results).toEqual([
-        {
-          followUpId: mockResponseEmailFollowUp.id,
-          status: "error",
-          error: "Test error",
-        },
-      ]);
-      expect(logger.error).toHaveBeenCalledWith(
-        [`FollowUp ${mockResponseEmailFollowUp.id} failed: Test error`],
-        "Follow-up processing errors"
-      );
-    });
-
-    test("successfully processes follow-ups", async () => {
-      vi.mocked(sendFollowUpEmail).mockResolvedValueOnce(undefined);
-
-      const mockSurveyWithFollowUp: TSurvey = {
-        ...mockSurvey,
-        followUps: [mockDirectEmailFollowUp],
-      };
-
-      const results = await sendSurveyFollowUps(
-        mockSurveyWithFollowUp,
-        mockResponse,
-        mockOrganization as TOrganization
-      );
-
-      expect(results).toEqual([
-        {
-          followUpId: mockDirectEmailFollowUp.id,
-          status: "success",
-        },
-      ]);
-      expect(logger.error).not.toHaveBeenCalled();
-    });
-  });
-});
--- a/apps/web/app/api/(internal)/pipeline/route.ts
+++ b/apps/web/app/api/(internal)/pipeline/route.ts
@@ -20,7 +20,6 @@ import { convertDatesInObject } from "@formbricks/lib/time";
 import { getPromptText } from "@formbricks/lib/utils/ai";
 import { parseRecallInfo } from "@formbricks/lib/utils/recall";
 import { logger } from "@formbricks/logger";
-import { ResourceNotFoundError } from "@formbricks/types/errors";
 import { handleIntegrations } from "./lib/handleIntegrations";

 export const POST = async (request: Request) => {
@@ -51,7 +50,7 @@ export const POST = async (request: Request) => {

  const organization = await getOrganizationByEnvironmentId(environmentId);
  if (!organization) {
-    throw new ResourceNotFoundError("Organization", "Organization not found");
+    throw new Error("Organization not found");
  }

  // Fetch webhooks
--- a/apps/web/app/api/v1/auth.test.ts
+++ b/apps/web/app/api/v1/auth.test.ts
@@ -1,178 +0,0 @@
-import { hashApiKey } from "@/modules/api/v2/management/lib/utils";
-import { getApiKeyWithPermissions } from "@/modules/organization/settings/api-keys/lib/api-key";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
-import { describe, expect, test, vi } from "vitest";
-import { prisma } from "@formbricks/database";
-import { TAPIKeyEnvironmentPermission } from "@formbricks/types/auth";
-import { authenticateRequest } from "./auth";
-
-vi.mock("@formbricks/database", () => ({
-  prisma: {
-    apiKey: {
-      findUnique: vi.fn(),
-      update: vi.fn(),
-    },
-  },
-}));
-
-vi.mock("@/modules/api/v2/management/lib/utils", () => ({
-  hashApiKey: vi.fn(),
-}));
-
-describe("getApiKeyWithPermissions", () => {
-  test("returns API key data with permissions when valid key is provided", async () => {
-    const mockApiKeyData = {
-      id: "api-key-id",
-      organizationId: "org-id",
-      hashedKey: "hashed-key",
-      createdAt: new Date(),
-      createdBy: "user-id",
-      lastUsedAt: null,
-      label: "Test API Key",
-      apiKeyEnvironments: [
-        {
-          environmentId: "env-1",
-          permission: "manage" as const,
-          environment: { id: "env-1" },
-        },
-      ],
-    };
-
-    vi.mocked(hashApiKey).mockReturnValue("hashed-key");
-    vi.mocked(prisma.apiKey.findUnique).mockResolvedValue(mockApiKeyData);
-    vi.mocked(prisma.apiKey.update).mockResolvedValue(mockApiKeyData);
-
-    const result = await getApiKeyWithPermissions("test-api-key");
-
-    expect(result).toEqual(mockApiKeyData);
-    expect(prisma.apiKey.update).toHaveBeenCalledWith({
-      where: { id: "api-key-id" },
-      data: { lastUsedAt: expect.any(Date) },
-    });
-  });
-
-  test("returns null when API key is not found", async () => {
-    vi.mocked(prisma.apiKey.findUnique).mockResolvedValue(null);
-
-    const result = await getApiKeyWithPermissions("invalid-key");
-
-    expect(result).toBeNull();
-  });
-});
-
-describe("hasPermission", () => {
-  const permissions: TAPIKeyEnvironmentPermission[] = [
-    {
-      environmentId: "env-1",
-      permission: "manage",
-      environmentType: "development",
-      projectId: "project-1",
-      projectName: "Project 1",
-    },
-    {
-      environmentId: "env-2",
-      permission: "write",
-      environmentType: "production",
-      projectId: "project-2",
-      projectName: "Project 2",
-    },
-    {
-      environmentId: "env-3",
-      permission: "read",
-      environmentType: "development",
-      projectId: "project-3",
-      projectName: "Project 3",
-    },
-  ];
-
-  test("returns true for manage permission with any method", () => {
-    expect(hasPermission(permissions, "env-1", "GET")).toBe(true);
-    expect(hasPermission(permissions, "env-1", "POST")).toBe(true);
-    expect(hasPermission(permissions, "env-1", "DELETE")).toBe(true);
-  });
-
-  test("handles write permission correctly", () => {
-    expect(hasPermission(permissions, "env-2", "GET")).toBe(true);
-    expect(hasPermission(permissions, "env-2", "POST")).toBe(true);
-    expect(hasPermission(permissions, "env-2", "DELETE")).toBe(false);
-  });
-
-  test("handles read permission correctly", () => {
-    expect(hasPermission(permissions, "env-3", "GET")).toBe(true);
-    expect(hasPermission(permissions, "env-3", "POST")).toBe(false);
-    expect(hasPermission(permissions, "env-3", "DELETE")).toBe(false);
-  });
-
-  test("returns false for non-existent environment", () => {
-    expect(hasPermission(permissions, "env-4", "GET")).toBe(false);
-  });
-});
-
-describe("authenticateRequest", () => {
-  test("should return authentication data for valid API key", async () => {
-    const request = new Request("http://localhost", {
-      headers: { "x-api-key": "valid-api-key" },
-    });
-
-    const mockApiKeyData = {
-      id: "api-key-id",
-      organizationId: "org-id",
-      hashedKey: "hashed-key",
-      createdAt: new Date(),
-      createdBy: "user-id",
-      lastUsedAt: null,
-      label: "Test API Key",
-      apiKeyEnvironments: [
-        {
-          environmentId: "env-1",
-          permission: "manage" as const,
-          environment: {
-            id: "env-1",
-            projectId: "project-1",
-            project: { name: "Project 1" },
-            type: "development",
-          },
-        },
-      ],
-    };
-
-    vi.mocked(hashApiKey).mockReturnValue("hashed-key");
-    vi.mocked(prisma.apiKey.findUnique).mockResolvedValue(mockApiKeyData);
-    vi.mocked(prisma.apiKey.update).mockResolvedValue(mockApiKeyData);
-
-    const result = await authenticateRequest(request);
-
-    expect(result).toEqual({
-      type: "apiKey",
-      environmentPermissions: [
-        {
-          environmentId: "env-1",
-          permission: "manage",
-          environmentType: "development",
-          projectId: "project-1",
-          projectName: "Project 1",
-        },
-      ],
-      hashedApiKey: "hashed-key",
-      apiKeyId: "api-key-id",
-      organizationId: "org-id",
-    });
-  });
-
-  test("returns null when no API key is provided", async () => {
-    const request = new Request("http://localhost");
-    const result = await authenticateRequest(request);
-    expect(result).toBeNull();
-  });
-
-  test("returns null when API key is invalid", async () => {
-    const request = new Request("http://localhost", {
-      headers: { "x-api-key": "invalid-api-key" },
-    });
-
-    vi.mocked(prisma.apiKey.findUnique).mockResolvedValue(null);
-
-    const result = await authenticateRequest(request);
-    expect(result).toBeNull();
-  });
-});
--- a/apps/web/app/api/v1/auth.ts
+++ b/apps/web/app/api/v1/auth.ts
@@ -1,38 +1,25 @@
+import { getEnvironmentIdFromApiKey } from "@/app/api/v1/lib/api-key";
 import { responses } from "@/app/lib/api/response";
 import { hashApiKey } from "@/modules/api/v2/management/lib/utils";
-import { getApiKeyWithPermissions } from "@/modules/organization/settings/api-keys/lib/api-key";
 import { TAuthenticationApiKey } from "@formbricks/types/auth";
 import { DatabaseError, InvalidInputError, ResourceNotFoundError } from "@formbricks/types/errors";

 export const authenticateRequest = async (request: Request): Promise<TAuthenticationApiKey | null> => {
  const apiKey = request.headers.get("x-api-key");
-  if (!apiKey) return null;
-
-  // Get API key with permissions
-  const apiKeyData = await getApiKeyWithPermissions(apiKey);
-  if (!apiKeyData) return null;
-
-  // In the route handlers, we'll do more specific permission checks
-  const environmentIds = apiKeyData.apiKeyEnvironments.map((env) => env.environmentId);
-  if (environmentIds.length === 0) return null;
-
-  const hashedApiKey = hashApiKey(apiKey);
-  const authentication: TAuthenticationApiKey = {
-    type: "apiKey",
-    environmentPermissions: apiKeyData.apiKeyEnvironments.map((env) => ({
-      environmentId: env.environmentId,
-      environmentType: env.environment.type,
-      permission: env.permission,
-      projectId: env.environment.projectId,
-      projectName: env.environment.project.name,
-    })),
-    hashedApiKey,
-    apiKeyId: apiKeyData.id,
-    organizationId: apiKeyData.organizationId,
-    organizationAccess: apiKeyData.organizationAccess,
-  };
-
-  return authentication;
+  if (apiKey) {
+    const environmentId = await getEnvironmentIdFromApiKey(apiKey);
+    if (environmentId) {
+      const hashedApiKey = hashApiKey(apiKey);
+      const authentication: TAuthenticationApiKey = {
+        type: "apiKey",
+        environmentId,
+        hashedApiKey,
+      };
+      return authentication;
+    }
+    return null;
+  }
+  return null;
 };

 export const handleErrorResponse = (error: any): Response => {
--- a/apps/web/app/api/v1/client/[environmentId]/contacts/[userId]/attributes/route.ts
+++ b/apps/web/app/api/v1/client/[environmentId]/contacts/[userId]/attributes/route.ts
@@ -1,6 +1,6 @@
 import {
  OPTIONS,
  PUT,
-} from "@/modules/ee/contacts/api/v1/client/[environmentId]/contacts/[userId]/attributes/route";
+} from "@/modules/ee/contacts/api/client/[environmentId]/contacts/[userId]/attributes/route";

 export { OPTIONS, PUT };
--- a/apps/web/app/api/v1/client/[environmentId]/identify/contacts/[userId]/route.ts
+++ b/apps/web/app/api/v1/client/[environmentId]/identify/contacts/[userId]/route.ts
@@ -1,6 +1,6 @@
 import {
  GET,
  OPTIONS,
-} from "@/modules/ee/contacts/api/v1/client/[environmentId]/identify/contacts/[userId]/route";
+} from "@/modules/ee/contacts/api/client/[environmentId]/identify/contacts/[userId]/route";

 export { GET, OPTIONS };
--- a/apps/web/app/api/v1/client/[environmentId]/user/route.ts
+++ b/apps/web/app/api/v1/client/[environmentId]/user/route.ts
@@ -1,3 +1,3 @@
-import { OPTIONS, POST } from "@/modules/ee/contacts/api/v1/client/[environmentId]/user/route";
+import { OPTIONS, POST } from "@/modules/ee/contacts/api/client/[environmentId]/user/route";

 export { POST, OPTIONS };
--- a/apps/web/app/api/v1/lib/api-key.ts
+++ b/apps/web/app/api/v1/lib/api-key.ts
@@ -0,0 +1,49 @@
+import { apiKeyCache } from "@/lib/cache/api-key";
+import { Prisma } from "@prisma/client";
+import { cache as reactCache } from "react";
+import { prisma } from "@formbricks/database";
+import { cache } from "@formbricks/lib/cache";
+import { getHash } from "@formbricks/lib/crypto";
+import { validateInputs } from "@formbricks/lib/utils/validate";
+import { ZString } from "@formbricks/types/common";
+import { DatabaseError, InvalidInputError, ResourceNotFoundError } from "@formbricks/types/errors";
+
+export const getEnvironmentIdFromApiKey = reactCache(async (apiKey: string): Promise<string | null> => {
+  const hashedKey = getHash(apiKey);
+  return cache(
+    async () => {
+      validateInputs([apiKey, ZString]);
+
+      if (!apiKey) {
+        throw new InvalidInputError("API key cannot be null or undefined.");
+      }
+
+      try {
+        const apiKeyData = await prisma.apiKey.findUnique({
+          where: {
+            hashedKey,
+          },
+          select: {
+            environmentId: true,
+          },
+        });
+
+        if (!apiKeyData) {
+          throw new ResourceNotFoundError("apiKey", apiKey);
+        }
+
+        return apiKeyData.environmentId;
+      } catch (error) {
+        if (error instanceof Prisma.PrismaClientKnownRequestError) {
+          throw new DatabaseError(error.message);
+        }
+
+        throw error;
+      }
+    },
+    [`management-api-getEnvironmentIdFromApiKey-${apiKey}`],
+    {
+      tags: [apiKeyCache.tag.byHashedKey(hashedKey)],
+    }
+  )();
+});
--- a/apps/web/app/api/v1/management/action-classes/[actionClassId]/route.ts
+++ b/apps/web/app/api/v1/management/action-classes/[actionClassId]/route.ts
@@ -1,7 +1,6 @@
 import { authenticateRequest, handleErrorResponse } from "@/app/api/v1/auth";
 import { responses } from "@/app/lib/api/response";
 import { transformErrorToDetails } from "@/app/lib/api/validator";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
 import { deleteActionClass, getActionClass, updateActionClass } from "@formbricks/lib/actionClass/service";
 import { logger } from "@formbricks/logger";
 import { TActionClass, ZActionClassInput } from "@formbricks/types/action-classes";
@@ -9,20 +8,15 @@ import { TAuthenticationApiKey } from "@formbricks/types/auth";

 const fetchAndAuthorizeActionClass = async (
  authentication: TAuthenticationApiKey,
-  actionClassId: string,
-  method: "GET" | "POST" | "PUT" | "DELETE"
+  actionClassId: string
 ): Promise<TActionClass | null> => {
-  // Get the action class
  const actionClass = await getActionClass(actionClassId);
  if (!actionClass) {
    return null;
  }
-
-  // Check if API key has permission to access this environment with appropriate permissions
-  if (!hasPermission(authentication.environmentPermissions, actionClass.environmentId, method)) {
+  if (actionClass.environmentId !== authentication.environmentId) {
    throw new Error("Unauthorized");
  }
-
  return actionClass;
 };

@@ -34,7 +28,7 @@ export const GET = async (
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-    const actionClass = await fetchAndAuthorizeActionClass(authentication, params.actionClassId, "GET");
+    const actionClass = await fetchAndAuthorizeActionClass(authentication, params.actionClassId);
    if (actionClass) {
      return responses.successResponse(actionClass);
    }
@@ -52,7 +46,7 @@ export const PUT = async (
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-    const actionClass = await fetchAndAuthorizeActionClass(authentication, params.actionClassId, "PUT");
+    const actionClass = await fetchAndAuthorizeActionClass(authentication, params.actionClassId);
    if (!actionClass) {
      return responses.notFoundResponse("Action Class", params.actionClassId);
    }
@@ -94,7 +88,7 @@ export const DELETE = async (
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-    const actionClass = await fetchAndAuthorizeActionClass(authentication, params.actionClassId, "DELETE");
+    const actionClass = await fetchAndAuthorizeActionClass(authentication, params.actionClassId);
    if (!actionClass) {
      return responses.notFoundResponse("Action Class", params.actionClassId);
    }
--- a/apps/web/app/api/v1/management/action-classes/lib/action-classes.test.ts
+++ b/apps/web/app/api/v1/management/action-classes/lib/action-classes.test.ts
@@ -1,88 +0,0 @@
-import { beforeEach, describe, expect, test, vi } from "vitest";
-import { prisma } from "@formbricks/database";
-import { DatabaseError } from "@formbricks/types/errors";
-import { getActionClasses } from "./action-classes";
-
-// Mock the prisma client
-vi.mock("@formbricks/database", () => ({
-  prisma: {
-    actionClass: {
-      findMany: vi.fn(),
-    },
-  },
-}));
-
-describe("getActionClasses", () => {
-  const mockEnvironmentIds = ["env1", "env2"];
-  const mockActionClasses = [
-    {
-      id: "action1",
-      createdAt: new Date(),
-      updatedAt: new Date(),
-      name: "Test Action 1",
-      description: "Test Description 1",
-      type: "click",
-      key: "test-key-1",
-      noCodeConfig: {},
-      environmentId: "env1",
-    },
-    {
-      id: "action2",
-      createdAt: new Date(),
-      updatedAt: new Date(),
-      name: "Test Action 2",
-      description: "Test Description 2",
-      type: "pageview",
-      key: "test-key-2",
-      noCodeConfig: {},
-      environmentId: "env2",
-    },
-  ];
-
-  beforeEach(() => {
-    vi.clearAllMocks();
-  });
-
-  test("successfully fetches action classes for given environment IDs", async () => {
-    // Mock the prisma findMany response
-    vi.mocked(prisma.actionClass.findMany).mockResolvedValue(mockActionClasses);
-
-    const result = await getActionClasses(mockEnvironmentIds);
-
-    expect(result).toEqual(mockActionClasses);
-    expect(prisma.actionClass.findMany).toHaveBeenCalledWith({
-      where: {
-        environmentId: { in: mockEnvironmentIds },
-      },
-      select: expect.any(Object),
-      orderBy: {
-        createdAt: "asc",
-      },
-    });
-  });
-
-  test("throws DatabaseError when prisma query fails", async () => {
-    // Mock the prisma findMany to throw an error
-    vi.mocked(prisma.actionClass.findMany).mockRejectedValue(new Error("Database error"));
-
-    await expect(getActionClasses(mockEnvironmentIds)).rejects.toThrow(DatabaseError);
-  });
-
-  test("handles empty environment IDs array", async () => {
-    // Mock the prisma findMany response
-    vi.mocked(prisma.actionClass.findMany).mockResolvedValue([]);
-
-    const result = await getActionClasses([]);
-
-    expect(result).toEqual([]);
-    expect(prisma.actionClass.findMany).toHaveBeenCalledWith({
-      where: {
-        environmentId: { in: [] },
-      },
-      select: expect.any(Object),
-      orderBy: {
-        createdAt: "asc",
-      },
-    });
-  });
-});
--- a/apps/web/app/api/v1/management/action-classes/lib/action-classes.ts
+++ b/apps/web/app/api/v1/management/action-classes/lib/action-classes.ts
@@ -1,51 +0,0 @@
-"use server";
-
-import "server-only";
-import { Prisma } from "@prisma/client";
-import { cache as reactCache } from "react";
-import { prisma } from "@formbricks/database";
-import { actionClassCache } from "@formbricks/lib/actionClass/cache";
-import { cache } from "@formbricks/lib/cache";
-import { validateInputs } from "@formbricks/lib/utils/validate";
-import { TActionClass } from "@formbricks/types/action-classes";
-import { ZId } from "@formbricks/types/common";
-import { DatabaseError } from "@formbricks/types/errors";
-
-const selectActionClass = {
-  id: true,
-  createdAt: true,
-  updatedAt: true,
-  name: true,
-  description: true,
-  type: true,
-  key: true,
-  noCodeConfig: true,
-  environmentId: true,
-} satisfies Prisma.ActionClassSelect;
-
-export const getActionClasses = reactCache(
-  async (environmentIds: string[]): Promise<TActionClass[]> =>
-    cache(
-      async () => {
-        validateInputs([environmentIds, ZId.array()]);
-
-        try {
-          return await prisma.actionClass.findMany({
-            where: {
-              environmentId: { in: environmentIds },
-            },
-            select: selectActionClass,
-            orderBy: {
-              createdAt: "asc",
-            },
-          });
-        } catch (error) {
-          throw new DatabaseError(`Database error when fetching actions for environment ${environmentIds}`);
-        }
-      },
-      environmentIds.map((environmentId) => `getActionClasses-management-api-${environmentId}`),
-      {
-        tags: environmentIds.map((environmentId) => actionClassCache.tag.byEnvironmentId(environmentId)),
-      }
-    )()
-);
--- a/apps/web/app/api/v1/management/action-classes/route.ts
+++ b/apps/web/app/api/v1/management/action-classes/route.ts
@@ -1,24 +1,16 @@
 import { authenticateRequest } from "@/app/api/v1/auth";
 import { responses } from "@/app/lib/api/response";
 import { transformErrorToDetails } from "@/app/lib/api/validator";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
-import { createActionClass } from "@formbricks/lib/actionClass/service";
+import { createActionClass, getActionClasses } from "@formbricks/lib/actionClass/service";
 import { logger } from "@formbricks/logger";
 import { TActionClass, ZActionClassInput } from "@formbricks/types/action-classes";
 import { DatabaseError } from "@formbricks/types/errors";
-import { getActionClasses } from "./lib/action-classes";

 export const GET = async (request: Request) => {
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-
-    const environmentIds = authentication.environmentPermissions.map(
-      (permission) => permission.environmentId
-    );
-
-    const actionClasses = await getActionClasses(environmentIds);
-
+    const actionClasses: TActionClass[] = await getActionClasses(authentication.environmentId!);
    return responses.successResponse(actionClasses);
  } catch (error) {
    if (error instanceof DatabaseError) {
@@ -43,12 +35,6 @@ export const POST = async (request: Request): Promise<Response> => {

    const inputValidation = ZActionClassInput.safeParse(actionClassInput);

-    const environmentId = actionClassInput.environmentId;
-
-    if (!hasPermission(authentication.environmentPermissions, environmentId, "POST")) {
-      return responses.unauthorizedResponse();
-    }
-
    if (!inputValidation.success) {
      return responses.badRequestResponse(
        "Fields are missing or incorrectly formatted",
@@ -57,7 +43,10 @@ export const POST = async (request: Request): Promise<Response> => {
      );
    }

-    const actionClass: TActionClass = await createActionClass(environmentId, inputValidation.data);
+    const actionClass: TActionClass = await createActionClass(
+      authentication.environmentId!,
+      inputValidation.data
+    );
    return responses.successResponse(actionClass);
  } catch (error) {
    if (error instanceof DatabaseError) {
--- a/apps/web/app/api/v1/management/contact-attribute-keys/[contactAttributeKeyId]/route.ts
+++ b/apps/web/app/api/v1/management/contact-attribute-keys/[contactAttributeKeyId]/route.ts
@@ -2,6 +2,6 @@ import {
  DELETE,
  GET,
  PUT,
-} from "@/modules/ee/contacts/api/v1/management/contact-attribute-keys/[contactAttributeKeyId]/route";
+} from "@/modules/ee/contacts/api/management/contact-attribute-keys/[contactAttributeKeyId]/route";

 export { DELETE, GET, PUT };
--- a/apps/web/app/api/v1/management/contact-attribute-keys/route.ts
+++ b/apps/web/app/api/v1/management/contact-attribute-keys/route.ts
@@ -1,3 +1,3 @@
-import { GET, POST } from "@/modules/ee/contacts/api/v1/management/contact-attribute-keys/route";
+import { GET, POST } from "@/modules/ee/contacts/api/management/contact-attribute-keys/route";

 export { GET, POST };
--- a/apps/web/app/api/v1/management/contact-attributes/route.ts
+++ b/apps/web/app/api/v1/management/contact-attributes/route.ts
@@ -1,3 +1,3 @@
-import { GET } from "@/modules/ee/contacts/api/v1/management/contact-attributes/route";
+import { GET } from "@/modules/ee/contacts/api/management/contact-attributes/route";

 export { GET };
--- a/apps/web/app/api/v1/management/contacts/[contactId]/route.ts
+++ b/apps/web/app/api/v1/management/contacts/[contactId]/route.ts
@@ -1,3 +1,3 @@
-import { DELETE, GET } from "@/modules/ee/contacts/api/v1/management/contacts/[contactId]/route";
+import { DELETE, GET } from "@/modules/ee/contacts/api/management/contacts/[contactId]/route";

 export { DELETE, GET };
--- a/apps/web/app/api/v1/management/contacts/route.ts
+++ b/apps/web/app/api/v1/management/contacts/route.ts
@@ -1,4 +1,4 @@
-import { GET } from "@/modules/ee/contacts/api/v1/management/contacts/route";
+import { GET } from "@/modules/ee/contacts/api/management/contacts/route";

 export { GET };

--- a/apps/web/app/api/v1/management/me/route.ts
+++ b/apps/web/app/api/v1/management/me/route.ts
@@ -12,56 +12,29 @@ export const GET = async () => {
        hashedKey: hashApiKey(apiKey),
      },
      select: {
-        apiKeyEnvironments: {
+        environment: {
          select: {
-            environment: {
+            id: true,
+            createdAt: true,
+            updatedAt: true,
+            type: true,
+            project: {
              select: {
                id: true,
-                type: true,
-                createdAt: true,
-                updatedAt: true,
-                projectId: true,
-                widgetSetupCompleted: true,
-                project: {
-                  select: {
-                    id: true,
-                    name: true,
-                  },
-                },
+                name: true,
              },
            },
-            permission: true,
+            appSetupCompleted: true,
          },
        },
      },
    });
-
    if (!apiKeyData) {
      return new Response("Not authenticated", {
        status: 401,
      });
    }
-
-    if (
-      apiKeyData.apiKeyEnvironments.length === 1 &&
-      apiKeyData.apiKeyEnvironments[0].permission === "manage"
-    ) {
-      return Response.json({
-        id: apiKeyData.apiKeyEnvironments[0].environment.id,
-        type: apiKeyData.apiKeyEnvironments[0].environment.type,
-        createdAt: apiKeyData.apiKeyEnvironments[0].environment.createdAt,
-        updatedAt: apiKeyData.apiKeyEnvironments[0].environment.updatedAt,
-        widgetSetupCompleted: apiKeyData.apiKeyEnvironments[0].environment.widgetSetupCompleted,
-        project: {
-          id: apiKeyData.apiKeyEnvironments[0].environment.projectId,
-          name: apiKeyData.apiKeyEnvironments[0].environment.project.name,
-        },
-      });
-    } else {
-      return new Response("You can't use this method with this API key", {
-        status: 400,
-      });
-    }
+    return Response.json(apiKeyData.environment);
  } else {
    const sessionUser = await getSessionUser();
    if (!sessionUser) {
--- a/apps/web/app/api/v1/management/responses/[responseId]/route.ts
+++ b/apps/web/app/api/v1/management/responses/[responseId]/route.ts
@@ -1,33 +1,32 @@
 import { authenticateRequest, handleErrorResponse } from "@/app/api/v1/auth";
 import { responses } from "@/app/lib/api/response";
 import { transformErrorToDetails } from "@/app/lib/api/validator";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
+import { hasUserEnvironmentAccess } from "@formbricks/lib/environment/auth";
 import { deleteResponse, getResponse, updateResponse } from "@formbricks/lib/response/service";
 import { getSurvey } from "@formbricks/lib/survey/service";
 import { logger } from "@formbricks/logger";
-import { ZResponseUpdateInput } from "@formbricks/types/responses";
+import { TResponse, ZResponseUpdateInput } from "@formbricks/types/responses";

-async function fetchAndAuthorizeResponse(
-  responseId: string,
-  authentication: any,
-  requiredPermission: "GET" | "PUT" | "DELETE"
-) {
+const fetchAndValidateResponse = async (authentication: any, responseId: string): Promise<TResponse> => {
  const response = await getResponse(responseId);
-  if (!response) {
-    return { error: responses.notFoundResponse("Response", responseId) };
+  if (!response || !(await canUserAccessResponse(authentication, response))) {
+    throw new Error("Unauthorized");
  }
+  return response;
+};

+const canUserAccessResponse = async (authentication: any, response: TResponse): Promise<boolean> => {
  const survey = await getSurvey(response.surveyId);
-  if (!survey) {
-    return { error: responses.notFoundResponse("Survey", response.surveyId, true) };
-  }
+  if (!survey) return false;

-  if (!hasPermission(authentication.environmentPermissions, survey.environmentId, requiredPermission)) {
-    return { error: responses.unauthorizedResponse() };
+  if (authentication.type === "session") {
+    return await hasUserEnvironmentAccess(authentication.session.user.id, survey.environmentId);
+  } else if (authentication.type === "apiKey") {
+    return survey.environmentId === authentication.environmentId;
+  } else {
+    throw Error("Unknown authentication type");
  }
-
-  return { response };
-}
+};

 export const GET = async (
  request: Request,
@@ -37,11 +36,11 @@ export const GET = async (
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-
-    const result = await fetchAndAuthorizeResponse(params.responseId, authentication, "GET");
-    if (result.error) return result.error;
-
-    return responses.successResponse(result.response);
+    const response = await fetchAndValidateResponse(authentication, params.responseId);
+    if (response) {
+      return responses.successResponse(response);
+    }
+    return responses.notFoundResponse("Response", params.responseId);
  } catch (error) {
    return handleErrorResponse(error);
  }
@@ -55,10 +54,10 @@ export const DELETE = async (
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-
-    const result = await fetchAndAuthorizeResponse(params.responseId, authentication, "DELETE");
-    if (result.error) return result.error;
-
+    const response = await fetchAndValidateResponse(authentication, params.responseId);
+    if (!response) {
+      return responses.notFoundResponse("Response", params.responseId);
+    }
    const deletedResponse = await deleteResponse(params.responseId);
    return responses.successResponse(deletedResponse);
  } catch (error) {
@@ -74,10 +73,7 @@ export const PUT = async (
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-
-    const result = await fetchAndAuthorizeResponse(params.responseId, authentication, "PUT");
-    if (result.error) return result.error;
-
+    await fetchAndValidateResponse(authentication, params.responseId);
    let responseUpdate;
    try {
      responseUpdate = await request.json();
--- a/apps/web/app/api/v1/management/responses/lib/response.ts
+++ b/apps/web/app/api/v1/management/responses/lib/response.ts
@@ -1,8 +1,6 @@
 import "server-only";
 import { Prisma } from "@prisma/client";
-import { cache as reactCache } from "react";
 import { prisma } from "@formbricks/database";
-import { cache } from "@formbricks/lib/cache";
 import { IS_FORMBRICKS_CLOUD } from "@formbricks/lib/constants";
 import {
  getMonthlyOrganizationResponseCount,
@@ -10,13 +8,11 @@ import {
 } from "@formbricks/lib/organization/service";
 import { sendPlanLimitsReachedEventToPosthogWeekly } from "@formbricks/lib/posthogServer";
 import { responseCache } from "@formbricks/lib/response/cache";
-import { getResponseContact } from "@formbricks/lib/response/service";
 import { calculateTtcTotal } from "@formbricks/lib/response/utils";
 import { responseNoteCache } from "@formbricks/lib/responseNote/cache";
 import { captureTelemetry } from "@formbricks/lib/telemetry";
 import { validateInputs } from "@formbricks/lib/utils/validate";
 import { logger } from "@formbricks/logger";
-import { ZId, ZOptionalNumber } from "@formbricks/types/common";
 import { TContactAttributes } from "@formbricks/types/contact-attribute";
 import { DatabaseError, ResourceNotFoundError } from "@formbricks/types/errors";
 import { TResponse, TResponseInput, ZResponseInput } from "@formbricks/types/responses";
@@ -29,7 +25,6 @@ export const responseSelection = {
  updatedAt: true,
  surveyId: true,
  finished: true,
-  endingId: true,
  data: true,
  meta: true,
  ttc: true,
@@ -198,53 +193,3 @@ export const createResponse = async (responseInput: TResponseInput): Promise<TRe
    throw error;
  }
 };
-
-export const getResponsesByEnvironmentIds = reactCache(
-  async (environmentIds: string[], limit?: number, offset?: number): Promise<TResponse[]> =>
-    cache(
-      async () => {
-        validateInputs([environmentIds, ZId.array()], [limit, ZOptionalNumber], [offset, ZOptionalNumber]);
-        try {
-          const responses = await prisma.response.findMany({
-            where: {
-              survey: {
-                environmentId: { in: environmentIds },
-              },
-            },
-            select: responseSelection,
-            orderBy: [
-              {
-                createdAt: "desc",
-              },
-            ],
-            take: limit ? limit : undefined,
-            skip: offset ? offset : undefined,
-          });
-
-          const transformedResponses: TResponse[] = await Promise.all(
-            responses.map((responsePrisma) => {
-              return {
-                ...responsePrisma,
-                contact: getResponseContact(responsePrisma),
-                tags: responsePrisma.tags.map((tagPrisma: { tag: TTag }) => tagPrisma.tag),
-              };
-            })
-          );
-
-          return transformedResponses;
-        } catch (error) {
-          if (error instanceof Prisma.PrismaClientKnownRequestError) {
-            throw new DatabaseError(error.message);
-          }
-
-          throw error;
-        }
-      },
-      environmentIds.map(
-        (environmentId) => `getResponses-management-api-${environmentId}-${limit}-${offset}`
-      ),
-      {
-        tags: environmentIds.map((environmentId) => responseCache.tag.byEnvironmentId(environmentId)),
-      }
-    )()
-);
--- a/apps/web/app/api/v1/management/responses/route.ts
+++ b/apps/web/app/api/v1/management/responses/route.ts
@@ -1,14 +1,13 @@
 import { authenticateRequest } from "@/app/api/v1/auth";
 import { responses } from "@/app/lib/api/response";
 import { transformErrorToDetails } from "@/app/lib/api/validator";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
 import { NextRequest } from "next/server";
-import { getResponses } from "@formbricks/lib/response/service";
+import { getResponses, getResponsesByEnvironmentId } from "@formbricks/lib/response/service";
 import { getSurvey } from "@formbricks/lib/survey/service";
 import { logger } from "@formbricks/logger";
 import { DatabaseError, InvalidInputError } from "@formbricks/types/errors";
 import { TResponse, ZResponseInput } from "@formbricks/types/responses";
-import { createResponse, getResponsesByEnvironmentIds } from "./lib/response";
+import { createResponse } from "./lib/response";

 export const GET = async (request: NextRequest) => {
  const searchParams = request.nextUrl.searchParams;
@@ -19,26 +18,14 @@ export const GET = async (request: NextRequest) => {
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-    let allResponses: TResponse[] = [];
+    let environmentResponses: TResponse[] = [];

    if (surveyId) {
-      const survey = await getSurvey(surveyId);
-      if (!survey) {
-        return responses.notFoundResponse("Survey", surveyId, true);
-      }
-      if (!hasPermission(authentication.environmentPermissions, survey.environmentId, "GET")) {
-        return responses.unauthorizedResponse();
-      }
-      const surveyResponses = await getResponses(surveyId, limit, offset);
-      allResponses.push(...surveyResponses);
+      environmentResponses = await getResponses(surveyId, limit, offset);
    } else {
-      const environmentIds = authentication.environmentPermissions.map(
-        (permission) => permission.environmentId
-      );
-      const environmentResponses = await getResponsesByEnvironmentIds(environmentIds, limit, offset);
-      allResponses.push(...environmentResponses);
+      environmentResponses = await getResponsesByEnvironmentId(authentication.environmentId, limit, offset);
    }
-    return responses.successResponse(allResponses);
+    return responses.successResponse(environmentResponses);
  } catch (error) {
    if (error instanceof DatabaseError) {
      return responses.badRequestResponse(error.message);
@@ -52,6 +39,8 @@ export const POST = async (request: Request): Promise<Response> => {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();

+    const environmentId = authentication.environmentId;
+
    let jsonInput;

    try {
@@ -61,6 +50,9 @@ export const POST = async (request: Request): Promise<Response> => {
      return responses.badRequestResponse("Malformed JSON input, please check your request body");
    }

+    // add environmentId to response
+    jsonInput.environmentId = environmentId;
+
    const inputValidation = ZResponseInput.safeParse(jsonInput);

    if (!inputValidation.success) {
@@ -73,12 +65,6 @@ export const POST = async (request: Request): Promise<Response> => {

    const responseInput = inputValidation.data;

-    const environmentId = responseInput.environmentId;
-
-    if (!hasPermission(authentication.environmentPermissions, environmentId, "POST")) {
-      return responses.unauthorizedResponse();
-    }
-
    // get and check survey
    const survey = await getSurvey(responseInput.surveyId);
    if (!survey) {
--- a/apps/web/app/api/v1/management/surveys/[surveyId]/route.ts
+++ b/apps/web/app/api/v1/management/surveys/[surveyId]/route.ts
@@ -3,28 +3,21 @@ import { deleteSurvey } from "@/app/api/v1/management/surveys/[surveyId]/lib/sur
 import { responses } from "@/app/lib/api/response";
 import { transformErrorToDetails } from "@/app/lib/api/validator";
 import { getMultiLanguagePermission } from "@/modules/ee/license-check/lib/utils";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
 import { getSurveyFollowUpsPermission } from "@/modules/survey/follow-ups/lib/utils";
 import { getOrganizationByEnvironmentId } from "@formbricks/lib/organization/service";
 import { getSurvey, updateSurvey } from "@formbricks/lib/survey/service";
 import { logger } from "@formbricks/logger";
-import { TAuthenticationApiKey } from "@formbricks/types/auth";
-import { ZSurveyUpdateInput } from "@formbricks/types/surveys/types";
+import { TSurvey, ZSurveyUpdateInput } from "@formbricks/types/surveys/types";

-const fetchAndAuthorizeSurvey = async (
-  surveyId: string,
-  authentication: TAuthenticationApiKey,
-  requiredPermission: "GET" | "PUT" | "DELETE"
-) => {
+const fetchAndAuthorizeSurvey = async (authentication: any, surveyId: string): Promise<TSurvey | null> => {
  const survey = await getSurvey(surveyId);
  if (!survey) {
-    return { error: responses.notFoundResponse("Survey", surveyId) };
+    return null;
  }
-  if (!hasPermission(authentication.environmentPermissions, survey.environmentId, requiredPermission)) {
-    return { error: responses.unauthorizedResponse() };
+  if (survey.environmentId !== authentication.environmentId) {
+    throw new Error("Unauthorized");
  }
-
-  return { survey };
+  return survey;
 };

 export const GET = async (
@@ -35,9 +28,11 @@ export const GET = async (
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-    const result = await fetchAndAuthorizeSurvey(params.surveyId, authentication, "GET");
-    if (result.error) return result.error;
-    return responses.successResponse(result.survey);
+    const survey = await fetchAndAuthorizeSurvey(authentication, params.surveyId);
+    if (survey) {
+      return responses.successResponse(survey);
+    }
+    return responses.notFoundResponse("Survey", params.surveyId);
  } catch (error) {
    return handleErrorResponse(error);
  }
@@ -51,8 +46,10 @@ export const DELETE = async (
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-    const result = await fetchAndAuthorizeSurvey(params.surveyId, authentication, "DELETE");
-    if (result.error) return result.error;
+    const survey = await fetchAndAuthorizeSurvey(authentication, params.surveyId);
+    if (!survey) {
+      return responses.notFoundResponse("Survey", params.surveyId);
+    }
    const deletedSurvey = await deleteSurvey(params.surveyId);
    return responses.successResponse(deletedSurvey);
  } catch (error) {
@@ -68,10 +65,13 @@ export const PUT = async (
  try {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();
-    const result = await fetchAndAuthorizeSurvey(params.surveyId, authentication, "PUT");
-    if (result.error) return result.error;

-    const organization = await getOrganizationByEnvironmentId(result.survey.environmentId);
+    const survey = await fetchAndAuthorizeSurvey(authentication, params.surveyId);
+    if (!survey) {
+      return responses.notFoundResponse("Survey", params.surveyId);
+    }
+
+    const organization = await getOrganizationByEnvironmentId(authentication.environmentId);
    if (!organization) {
      return responses.notFoundResponse("Organization", null);
    }
@@ -85,7 +85,7 @@ export const PUT = async (
    }

    const inputValidation = ZSurveyUpdateInput.safeParse({
-      ...result.survey,
+      ...survey,
      ...surveyUpdate,
    });

--- a/apps/web/app/api/v1/management/surveys/[surveyId]/singleUseIds/route.ts
+++ b/apps/web/app/api/v1/management/surveys/[surveyId]/singleUseIds/route.ts
@@ -1,8 +1,6 @@
 import { authenticateRequest, handleErrorResponse } from "@/app/api/v1/auth";
 import { responses } from "@/app/lib/api/response";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
 import { NextRequest } from "next/server";
-import { getSurveyDomain } from "@formbricks/lib/getSurveyUrl";
 import { getSurvey } from "@formbricks/lib/survey/service";
 import { generateSurveySingleUseIds } from "@formbricks/lib/utils/singleUseSurveys";

@@ -18,8 +16,8 @@ export const GET = async (
    if (!survey) {
      return responses.notFoundResponse("Survey", params.surveyId);
    }
-    if (!hasPermission(authentication.environmentPermissions, survey.environmentId, "GET")) {
-      return responses.unauthorizedResponse();
+    if (survey.environmentId !== authentication.environmentId) {
+      throw new Error("Unauthorized");
    }

    if (!survey.singleUse || !survey.singleUse.enabled) {
@@ -38,10 +36,9 @@ export const GET = async (

    const singleUseIds = generateSurveySingleUseIds(limit, survey.singleUse.isEncrypted);

-    const surveyDomain = getSurveyDomain();
    // map single use ids to survey links
    const surveyLinks = singleUseIds.map(
-      (singleUseId) => `${surveyDomain}/s/${survey.id}?suId=${singleUseId}`
+      (singleUseId) => `${process.env.WEBAPP_URL}/s/${survey.id}?suId=${singleUseId}`
    );

    return responses.successResponse(surveyLinks);
--- a/apps/web/app/api/v1/management/surveys/lib/surveys.ts
+++ b/apps/web/app/api/v1/management/surveys/lib/surveys.ts
@@ -1,48 +0,0 @@
-import "server-only";
-import { Prisma } from "@prisma/client";
-import { cache as reactCache } from "react";
-import { prisma } from "@formbricks/database";
-import { cache } from "@formbricks/lib/cache";
-import { surveyCache } from "@formbricks/lib/survey/cache";
-import { selectSurvey } from "@formbricks/lib/survey/service";
-import { transformPrismaSurvey } from "@formbricks/lib/survey/utils";
-import { validateInputs } from "@formbricks/lib/utils/validate";
-import { logger } from "@formbricks/logger";
-import { ZOptionalNumber } from "@formbricks/types/common";
-import { ZId } from "@formbricks/types/common";
-import { DatabaseError } from "@formbricks/types/errors";
-import { TSurvey } from "@formbricks/types/surveys/types";
-
-export const getSurveys = reactCache(
-  async (environmentIds: string[], limit?: number, offset?: number): Promise<TSurvey[]> =>
-    cache(
-      async () => {
-        validateInputs([environmentIds, ZId.array()], [limit, ZOptionalNumber], [offset, ZOptionalNumber]);
-
-        try {
-          const surveysPrisma = await prisma.survey.findMany({
-            where: {
-              environmentId: { in: environmentIds },
-            },
-            select: selectSurvey,
-            orderBy: {
-              updatedAt: "desc",
-            },
-            take: limit,
-            skip: offset,
-          });
-          return surveysPrisma.map((surveyPrisma) => transformPrismaSurvey<TSurvey>(surveyPrisma));
-        } catch (error) {
-          if (error instanceof Prisma.PrismaClientKnownRequestError) {
-            logger.error(error, "Error getting surveys");
-            throw new DatabaseError(error.message);
-          }
-          throw error;
-        }
-      },
-      environmentIds.map((environmentId) => `getSurveys-management-api-${environmentId}-${limit}-${offset}`),
-      {
-        tags: environmentIds.map((environmentId) => surveyCache.tag.byEnvironmentId(environmentId)),
-      }
-    )()
-);
--- a/apps/web/app/api/v1/management/surveys/route.ts
+++ b/apps/web/app/api/v1/management/surveys/route.ts
@@ -2,14 +2,12 @@ import { authenticateRequest } from "@/app/api/v1/auth";
 import { responses } from "@/app/lib/api/response";
 import { transformErrorToDetails } from "@/app/lib/api/validator";
 import { getMultiLanguagePermission } from "@/modules/ee/license-check/lib/utils";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
 import { getSurveyFollowUpsPermission } from "@/modules/survey/follow-ups/lib/utils";
 import { getOrganizationByEnvironmentId } from "@formbricks/lib/organization/service";
-import { createSurvey } from "@formbricks/lib/survey/service";
+import { createSurvey, getSurveys } from "@formbricks/lib/survey/service";
 import { logger } from "@formbricks/logger";
 import { DatabaseError } from "@formbricks/types/errors";
-import { ZSurveyCreateInputWithEnvironmentId } from "@formbricks/types/surveys/types";
-import { getSurveys } from "./lib/surveys";
+import { ZSurveyCreateInput } from "@formbricks/types/surveys/types";

 export const GET = async (request: Request) => {
  try {
@@ -20,11 +18,7 @@ export const GET = async (request: Request) => {
    const limit = searchParams.has("limit") ? Number(searchParams.get("limit")) : undefined;
    const offset = searchParams.has("offset") ? Number(searchParams.get("offset")) : undefined;

-    const environmentIds = authentication.environmentPermissions.map(
-      (permission) => permission.environmentId
-    );
-    const surveys = await getSurveys(environmentIds, limit, offset);
-
+    const surveys = await getSurveys(authentication.environmentId!, limit, offset);
    return responses.successResponse(surveys);
  } catch (error) {
    if (error instanceof DatabaseError) {
@@ -39,6 +33,11 @@ export const POST = async (request: Request): Promise<Response> => {
    const authentication = await authenticateRequest(request);
    if (!authentication) return responses.notAuthenticatedResponse();

+    const organization = await getOrganizationByEnvironmentId(authentication.environmentId);
+    if (!organization) {
+      return responses.notFoundResponse("Organization", null);
+    }
+
    let surveyInput;
    try {
      surveyInput = await request.json();
@@ -46,7 +45,8 @@ export const POST = async (request: Request): Promise<Response> => {
      logger.error({ error, url: request.url }, "Error parsing JSON");
      return responses.badRequestResponse("Malformed JSON input, please check your request body");
    }
-    const inputValidation = ZSurveyCreateInputWithEnvironmentId.safeParse(surveyInput);
+
+    const inputValidation = ZSurveyCreateInput.safeParse(surveyInput);

    if (!inputValidation.success) {
      return responses.badRequestResponse(
@@ -56,18 +56,8 @@ export const POST = async (request: Request): Promise<Response> => {
      );
    }

-    const environmentId = inputValidation.data.environmentId;
-
-    if (!hasPermission(authentication.environmentPermissions, environmentId, "POST")) {
-      return responses.unauthorizedResponse();
-    }
-
-    const organization = await getOrganizationByEnvironmentId(environmentId);
-    if (!organization) {
-      return responses.notFoundResponse("Organization", null);
-    }
-
-    const surveyData = { ...inputValidation.data, environmentId };
+    const environmentId = authentication.environmentId;
+    const surveyData = { ...inputValidation.data, environmentId: undefined };

    if (surveyData.followUps?.length) {
      const isSurveyFollowUpsEnabled = await getSurveyFollowUpsPermission(organization.billing.plan);
@@ -83,7 +73,7 @@ export const POST = async (request: Request): Promise<Response> => {
      }
    }

-    const survey = await createSurvey(environmentId, { ...surveyData, environmentId: undefined });
+    const survey = await createSurvey(environmentId, surveyData);
    return responses.successResponse(survey);
  } catch (error) {
    if (error instanceof DatabaseError) {
--- a/apps/web/app/api/v1/webhooks/[webhookId]/route.ts
+++ b/apps/web/app/api/v1/webhooks/[webhookId]/route.ts
@@ -1,19 +1,18 @@
-import { authenticateRequest } from "@/app/api/v1/auth";
+import { getEnvironmentIdFromApiKey } from "@/app/api/v1/lib/api-key";
 import { deleteWebhook, getWebhook } from "@/app/api/v1/webhooks/[webhookId]/lib/webhook";
 import { responses } from "@/app/lib/api/response";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
 import { headers } from "next/headers";
 import { logger } from "@formbricks/logger";

-export const GET = async (request: Request, props: { params: Promise<{ webhookId: string }> }) => {
+export const GET = async (_: Request, props: { params: Promise<{ webhookId: string }> }) => {
  const params = await props.params;
  const headersList = await headers();
  const apiKey = headersList.get("x-api-key");
  if (!apiKey) {
    return responses.notAuthenticatedResponse();
  }
-  const authentication = await authenticateRequest(request);
-  if (!authentication) {
+  const environmentId = await getEnvironmentIdFromApiKey(apiKey);
+  if (!environmentId) {
    return responses.notAuthenticatedResponse();
  }

@@ -22,7 +21,7 @@ export const GET = async (request: Request, props: { params: Promise<{ webhookId
  if (!webhook) {
    return responses.notFoundResponse("Webhook", params.webhookId);
  }
-  if (!hasPermission(authentication.environmentPermissions, webhook.environmentId, "GET")) {
+  if (webhook.environmentId !== environmentId) {
    return responses.unauthorizedResponse();
  }
  return responses.successResponse(webhook);
@@ -35,8 +34,8 @@ export const DELETE = async (request: Request, props: { params: Promise<{ webhoo
  if (!apiKey) {
    return responses.notAuthenticatedResponse();
  }
-  const authentication = await authenticateRequest(request);
-  if (!authentication) {
+  const environmentId = await getEnvironmentIdFromApiKey(apiKey);
+  if (!environmentId) {
    return responses.notAuthenticatedResponse();
  }

@@ -45,7 +44,7 @@ export const DELETE = async (request: Request, props: { params: Promise<{ webhoo
  if (!webhook) {
    return responses.notFoundResponse("Webhook", params.webhookId);
  }
-  if (!hasPermission(authentication.environmentPermissions, webhook.environmentId, "DELETE")) {
+  if (webhook.environmentId !== environmentId) {
    return responses.unauthorizedResponse();
  }

--- a/apps/web/app/api/v1/webhooks/lib/webhook.ts
+++ b/apps/web/app/api/v1/webhooks/lib/webhook.ts
@@ -8,20 +8,17 @@ import { validateInputs } from "@formbricks/lib/utils/validate";
 import { ZId, ZOptionalNumber } from "@formbricks/types/common";
 import { DatabaseError, InvalidInputError } from "@formbricks/types/errors";

-export const createWebhook = async (webhookInput: TWebhookInput): Promise<Webhook> => {
-  validateInputs([webhookInput, ZWebhookInput]);
+export const createWebhook = async (environmentId: string, webhookInput: TWebhookInput): Promise<Webhook> => {
+  validateInputs([environmentId, ZId], [webhookInput, ZWebhookInput]);

  try {
    const createdWebhook = await prisma.webhook.create({
      data: {
-        url: webhookInput.url,
-        name: webhookInput.name,
-        source: webhookInput.source,
+        ...webhookInput,
        surveyIds: webhookInput.surveyIds || [],
-        triggers: webhookInput.triggers || [],
        environment: {
          connect: {
-            id: webhookInput.environmentId,
+            id: environmentId,
          },
        },
      },
@@ -40,24 +37,22 @@ export const createWebhook = async (webhookInput: TWebhookInput): Promise<Webhoo
    }

    if (!(error instanceof InvalidInputError)) {
-      throw new DatabaseError(
-        `Database error when creating webhook for environment ${webhookInput.environmentId}`
-      );
+      throw new DatabaseError(`Database error when creating webhook for environment ${environmentId}`);
    }

    throw error;
  }
 };

-export const getWebhooks = (environmentIds: string[], page?: number): Promise<Webhook[]> =>
+export const getWebhooks = (environmentId: string, page?: number): Promise<Webhook[]> =>
  cache(
    async () => {
-      validateInputs([environmentIds, ZId.array()], [page, ZOptionalNumber]);
+      validateInputs([environmentId, ZId], [page, ZOptionalNumber]);

      try {
        const webhooks = await prisma.webhook.findMany({
          where: {
-            environmentId: { in: environmentIds },
+            environmentId: environmentId,
          },
          take: page ? ITEMS_PER_PAGE : undefined,
          skip: page ? ITEMS_PER_PAGE * (page - 1) : undefined,
@@ -71,8 +66,8 @@ export const getWebhooks = (environmentIds: string[], page?: number): Promise<We
        throw error;
      }
    },
-    environmentIds.map((environmentId) => `getWebhooks-${environmentId}-${page}`),
+    [`getWebhooks-${environmentId}-${page}`],
    {
-      tags: environmentIds.map((environmentId) => webhookCache.tag.byEnvironmentId(environmentId)),
+      tags: [webhookCache.tag.byEnvironmentId(environmentId)],
    }
  )();
--- a/apps/web/app/api/v1/webhooks/route.ts
+++ b/apps/web/app/api/v1/webhooks/route.ts
@@ -1,33 +1,42 @@
-import { authenticateRequest } from "@/app/api/v1/auth";
+import { getEnvironmentIdFromApiKey } from "@/app/api/v1/lib/api-key";
 import { createWebhook, getWebhooks } from "@/app/api/v1/webhooks/lib/webhook";
 import { ZWebhookInput } from "@/app/api/v1/webhooks/types/webhooks";
 import { responses } from "@/app/lib/api/response";
 import { transformErrorToDetails } from "@/app/lib/api/validator";
-import { hasPermission } from "@/modules/organization/settings/api-keys/lib/utils";
+import { headers } from "next/headers";
 import { DatabaseError, InvalidInputError } from "@formbricks/types/errors";

-export const GET = async (request: Request) => {
-  const authentication = await authenticateRequest(request);
-  if (!authentication) {
+export const GET = async () => {
+  const headersList = await headers();
+  const apiKey = headersList.get("x-api-key");
+  if (!apiKey) {
    return responses.notAuthenticatedResponse();
  }
+  const environmentId = await getEnvironmentIdFromApiKey(apiKey);
+  if (!environmentId) {
+    return responses.notAuthenticatedResponse();
+  }
+
+  // get webhooks from database
  try {
-    const environmentIds = authentication.environmentPermissions.map(
-      (permission) => permission.environmentId
-    );
-    const webhooks = await getWebhooks(environmentIds);
-    return responses.successResponse(webhooks);
+    const webhooks = await getWebhooks(environmentId);
+    return Response.json({ data: webhooks });
  } catch (error) {
    if (error instanceof DatabaseError) {
-      return responses.internalServerErrorResponse(error.message);
+      return responses.badRequestResponse(error.message);
    }
-    throw error;
+    return responses.internalServerErrorResponse(error.message);
  }
 };

 export const POST = async (request: Request) => {
-  const authentication = await authenticateRequest(request);
-  if (!authentication) {
+  const headersList = await headers();
+  const apiKey = headersList.get("x-api-key");
+  if (!apiKey) {
+    return responses.notAuthenticatedResponse();
+  }
+  const environmentId = await getEnvironmentIdFromApiKey(apiKey);
+  if (!environmentId) {
    return responses.notAuthenticatedResponse();
  }
  const webhookInput = await request.json();
@@ -41,19 +50,9 @@ export const POST = async (request: Request) => {
    );
  }

-  const environmentId = inputValidation.data.environmentId;
-
-  if (!environmentId) {
-    return responses.badRequestResponse("Environment ID is required");
-  }
-
-  if (!hasPermission(authentication.environmentPermissions, environmentId, "POST")) {
-    return responses.unauthorizedResponse();
-  }
-
  // add webhook to database
  try {
-    const webhook = await createWebhook(inputValidation.data);
+    const webhook = await createWebhook(environmentId, inputValidation.data);
    return responses.successResponse(webhook);
  } catch (error) {
    if (error instanceof InvalidInputError) {
--- a/apps/web/app/api/v1/webhooks/types/webhooks.ts
+++ b/apps/web/app/api/v1/webhooks/types/webhooks.ts
@@ -11,7 +11,6 @@ export const ZWebhookInput = ZWebhook.partial({
  surveyIds: true,
  triggers: true,
  url: true,
-  environmentId: true,
 });

 export type TWebhookInput = z.infer<typeof ZWebhookInput>;
--- a/apps/web/app/api/v2/client/[environmentId]/contacts/[userId]/attributes/route.ts
+++ b/apps/web/app/api/v2/client/[environmentId]/contacts/[userId]/attributes/route.ts
@@ -1,6 +1,6 @@
 import {
  OPTIONS,
  PUT,
-} from "@/modules/ee/contacts/api/v1/client/[environmentId]/contacts/[userId]/attributes/route";
+} from "@/modules/ee/contacts/api/client/[environmentId]/contacts/[userId]/attributes/route";

 export { OPTIONS, PUT };
--- a/apps/web/app/api/v2/client/[environmentId]/identify/contacts/[userId]/route.ts
+++ b/apps/web/app/api/v2/client/[environmentId]/identify/contacts/[userId]/route.ts
@@ -1,6 +1,6 @@
 import {
  GET,
  OPTIONS,
-} from "@/modules/ee/contacts/api/v1/client/[environmentId]/identify/contacts/[userId]/route";
+} from "@/modules/ee/contacts/api/client/[environmentId]/identify/contacts/[userId]/route";

 export { GET, OPTIONS };
--- a/apps/web/app/api/v2/client/[environmentId]/user/route.ts
+++ b/apps/web/app/api/v2/client/[environmentId]/user/route.ts
@@ -1,3 +1,3 @@
-import { OPTIONS, POST } from "@/modules/ee/contacts/api/v1/client/[environmentId]/user/route";
+import { OPTIONS, POST } from "@/modules/ee/contacts/api/client/[environmentId]/user/route";

 export { POST, OPTIONS };
--- a/apps/web/app/api/v2/management/contacts/bulk/route.ts
+++ b/apps/web/app/api/v2/management/contacts/bulk/route.ts
@@ -1,3 +0,0 @@
-import { PUT } from "@/modules/ee/contacts/api/v2/management/contacts/bulk/route";
-
-export { PUT };
--- a/apps/web/app/api/v2/management/surveys/[surveyId]/contact-links/segments/[segmentId]/route.ts
+++ b/apps/web/app/api/v2/management/surveys/[surveyId]/contact-links/segments/[segmentId]/route.ts
@@ -1,3 +0,0 @@
-import { GET } from "@/modules/api/v2/management/surveys/[surveyId]/contact-links/segments/[segmentId]/route";
-
-export { GET };
--- a/apps/web/app/api/v2/me/route.ts
+++ b/apps/web/app/api/v2/me/route.ts
@@ -1,3 +0,0 @@
-import { GET } from "@/modules/api/v2/me/route";
-
-export { GET };
--- a/apps/web/app/api/v2/organizations/[organizationId]/project-teams/route.ts
+++ b/apps/web/app/api/v2/organizations/[organizationId]/project-teams/route.ts
@@ -1,3 +0,0 @@
-import { DELETE, GET, POST, PUT } from "@/modules/api/v2/organizations/[organizationId]/project-teams/route";
-
-export { GET, POST, PUT, DELETE };
--- a/apps/web/app/api/v2/organizations/[organizationId]/teams/[teamId]/route.ts
+++ b/apps/web/app/api/v2/organizations/[organizationId]/teams/[teamId]/route.ts
@@ -1,3 +0,0 @@
-import { DELETE, GET, PUT } from "@/modules/api/v2/organizations/[organizationId]/teams/[teamId]/route";
-
-export { GET, PUT, DELETE };
--- a/apps/web/app/api/v2/organizations/[organizationId]/teams/route.ts
+++ b/apps/web/app/api/v2/organizations/[organizationId]/teams/route.ts
@@ -1,3 +0,0 @@
-import { GET, POST } from "@/modules/api/v2/organizations/[organizationId]/teams/route";
-
-export { GET, POST };
--- a/apps/web/app/api/v2/organizations/[organizationId]/users/route.ts
+++ b/apps/web/app/api/v2/organizations/[organizationId]/users/route.ts
@@ -1,3 +0,0 @@
-import { GET, PATCH, POST } from "@/modules/api/v2/organizations/[organizationId]/users/route";
-
-export { GET, POST, PATCH };
--- a/apps/web/app/api/v2/roles/route.ts
+++ b/apps/web/app/api/v2/roles/route.ts
@@ -1,3 +0,0 @@
-import { GET } from "@/modules/api/v2/roles/route";
-
-export { GET };
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Piyush Jain	eeda5ac361	chore(one-click-setup): add minio support	2025-03-28 12:55:30 +05:30
Piyush Jain	c8a1f6f0de	fix: once-clik-k8s setup and helm chart redis - update chart to add minio dependency - fix variable issues	2025-03-27 14:55:49 +05:30
Piyush Jain	4fc81cb2a2	fix: once-clik-k8s setup and helm chart redis - fix variables	2025-03-27 14:17:38 +05:30
Piyush Jain	e1f958c905	fix: once-clik-k8s setup and helm chart redis - fixes redis auth issues with self hosted redis - fixes few one-click-setup	2025-03-27 13:15:54 +05:30
Matthias Nannt	4b9a819abf	feat: move one-click setup to k8s	2025-03-26 23:29:05 +09:00