Tests fixes, audit progress, UI completions

src/Authority/StellaOps.Authority/StellaOps.Auth.ServerIntegration/AGENTS.md

@@ -0,0 +1,23 @@
+# Auth Server Integration AGENTS
+
+## Purpose & Scope
+- Working directory: `src/Authority/StellaOps.Authority/StellaOps.Auth.ServerIntegration/`.
+- Roles: backend engineer, QA automation.
+- Focus: ASP.NET Core resource server auth configuration, scope policies, and authorization audit events.
+
+## Required Reading (treat as read before DOING)
+- `docs/README.md`
+- `docs/07_HIGH_LEVEL_ARCHITECTURE.md`
+- `docs/modules/platform/architecture-overview.md`
+- `docs/modules/authority/architecture.md`
+- Relevant sprint files.
+
+## Working Agreements
+- Keep auth decisions deterministic and time-aware (TimeProvider).
+- Preserve offline/air-gap posture with resilient metadata/JWKS caching.
+- Avoid logging sensitive claims; use classified strings.
+- Update `docs/implplan/SPRINT_*.md` and local `TASKS.md` when starting or completing work.
+
+## Testing
+- Use xUnit + FluentAssertions + TestKit.
+- Cover options normalization, bypass evaluation, metadata/JWKS caching, scope decisions, and audit event emission.

src/Authority/StellaOps.Authority/StellaOps.Auth.ServerIntegration/TASKS.md

@@ -0,0 +1,10 @@
+# Auth Server Integration Task Board
+
+This board mirrors active sprint tasks for this module.
+Source of truth: `docs/implplan/SPRINT_20251229_049_BE_csproj_audit_maint_tests.md`.
+
+| Task ID | Status | Notes |
+| --- | --- | --- |
+| AUDIT-0083-M | DONE | Maintainability audit for StellaOps.Auth.ServerIntegration. |
+| AUDIT-0083-T | DONE | Test coverage audit for StellaOps.Auth.ServerIntegration. |
+| AUDIT-0083-A | TODO | Pending approval for changes. |