Fix list_accepted_access_requests if grant user manually (#2392)

src/huggingface_hub/hf_api.py

@@ -433,8 +433,9 @@ class AccessRequest:
             Username of the user who requested access.
         fullname (`str`):
             Fullname of the user who requested access.
-        email (`str`):
+        email (`Optional[str]`):
             Email of the user who requested access.
+            Can only be `None` in the /accepted list if the user was granted access manually.
         timestamp (`datetime`):
             Timestamp of the request.
         status (`Literal["pending", "accepted", "rejected"]`):
@@ -445,7 +446,7 @@ class AccessRequest:
 
     username: str
     fullname: str
-    email: str
+    email: Optional[str]
     timestamp: datetime
     status: Literal["pending", "accepted", "rejected"]
 
@@ -8462,7 +8463,7 @@ def _list_access_requests(
             AccessRequest(
                 username=request["user"]["user"],
                 fullname=request["user"]["fullname"],
-                email=request["user"]["email"],
+                email=request["user"].get("email"),
                 status=request["status"],
                 timestamp=parse_datetime(request["timestamp"]),
                 fields=request.get("fields"),  # only if custom fields in form

tests/test_hf_api.py

@@ -3948,6 +3948,7 @@ def test_access_requests_normal_usage(self) -> None:
         request = requests[0]
         assert isinstance(request, AccessRequest)
         assert request.username == OTHER_USER
+        assert request.email is None  # email not shared when granted access manually
         assert request.status == "accepted"
         assert isinstance(request.timestamp, datetime.datetime)