chore(auth): ruff cleanup, rename InvalidCredentials, isolate config tests

Validation pass before requesting review: - Rename InvalidCredentials → InvalidCredentialsError (ruff N818). - Drop unused current_identity import from routes.py. - Use datetime.UTC alias instead of datetime.timezone.utc (UP017). - Unquote forward-ref type annotation in IdentityResponse.from_identity (UP037). - Sort imports across the new auth tests + auth router (I001). - Reformat my own long descriptions in config.py and main.py to fit 120 cols. Pre-existing E501 hits in the file are not touched. - pipeline_viewer.py: ruff replaced asyncio.TimeoutError with TimeoutError alias (UP041) and re-sorted the import block. - Pin _env_file=None on the config-validation tests so they don't pick up the developer's local .env. Caught a real test that only passed because my local .env had AUTH_SECRET_KEY set; isolating fixes it. Live-verified the renamed InvalidCredentialsError still 401s correctly through the running container. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

Blake Bertuccelli-Booth committed on May 7, 2026, 05:33 PM

Showing 11 changed files +57 additions -39 deletions

M src/api/pipeline_viewer.py +6 -7

M src/auth/providers/basic_provider.py +4 -4

M src/auth/routes.py +4 -4

M src/auth/session.py +3 -3

M src/config.py +9 -2

M src/main.py +4 -1

M tests/integration/auth/test_basic_login_roundtrip.py -1

M tests/unit/auth/test_basic_provider.py +4 -5

M tests/unit/auth/test_config_validation.py +23 -10

M tests/unit/auth/test_csrf.py -1

M tests/unit/auth/test_session.py -1