Adolfo Delorenzo 7b0594e7cc test(04-rbac-01): unit tests for RBAC guards, invitation system, portal auth ...

- test_rbac_guards.py: 11 tests covering platform_admin pass-through,
  customer_admin/operator 403 rejection, tenant membership checks,
  and platform_admin bypass for tenant-scoped guards
- test_invitations.py: 11 tests covering HMAC token roundtrip,
  tamper/expiry rejection, invitation create/accept/resend/list
- test_portal_auth.py: 7 tests covering role field (not is_admin),
  tenant_ids list, active_tenant_id, platform_admin all-tenants,
  customer_admin own-tenants-only
- All 27 tests pass

2026-03-24 13:55:55 -06:00

7.0 KiB

Raw Blame History

View Raw