AuthCryptoGatewayTest (10 tests): encrypt/decrypt round-trip, unique IVs, Crypto payload format verification (GR-SEC-005), error handling. SettingsCryptoGatewayTest (9 tests): interface compliance, round-trip, AES-256-GCM format, tampered ciphertext handling. OidcHttpGatewayTest (8 tests): success, 401/500, network error, malformed JSON. Plan amended: PermissionGateway removed (does not exist in codebase). SC-002 amended: payload format verification accepted as Crypto delegation proof. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
4.6 KiB
4.6 KiB