fix(tests): extract constants, document empty stubs

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

Author: olivermeyer

tests/aignostics_foundry_core/api/auth_test.py

@@ -25,6 +25,8 @@
 _INTERNAL_ORG_ID = "org_internal_123"
 _OTHER_ORG_ID = "org_other_456"
 _USER_NOT_AUTHENTICATED = "User is not authenticated"
+_USER_SUB = "auth0|x"
+_USER_EMAIL = "x@x.com"
 
 
 @pytest.mark.unit
@@ -113,7 +115,7 @@ async def test_get_user_returns_none_for_expired_session(self) -> None:
         cookie = "fake-cookie"
 
         fake_client = MagicMock()
-        expired_user = {"sub": "auth0|x", "email": "x@x.com", "exp": int(time.time()) - 3600}
+        expired_user = {"sub": _USER_SUB, "email": _USER_EMAIL, "exp": int(time.time()) - 3600}
         fake_client.require_session = AsyncMock(return_value={"user": expired_user})
 
         with (
@@ -155,7 +157,7 @@ async def test_get_user_returns_user_for_valid_session(self) -> None:
         """get_user returns the user dict when the session is valid and not expired."""
         request = MagicMock()
         cookie = "fake-cookie"
-        user = {"sub": "auth0|x", "email": "x@x.com", "exp": int(time.time()) + 3600}
+        user = {"sub": _USER_SUB, "email": _USER_EMAIL, "exp": int(time.time()) + 3600}
         fake_client = MagicMock()
         fake_client.require_session = AsyncMock(return_value={"user": user})
 
@@ -184,7 +186,7 @@ async def test_unauthenticated_user_raises_forbidden_error(self) -> None:
     async def test_authenticated_user_passes(self) -> None:
         """require_authenticated returns None without raising when user is authenticated."""
         request = MagicMock()
-        user = {"sub": "auth0|x", "email": "x@x.com"}
+        user = {"sub": _USER_SUB, "email": _USER_EMAIL}
         with patch(_PATCH_GET_USER, new=AsyncMock(return_value=user)):
             result = await require_authenticated(request, None)
         assert result is None
@@ -205,7 +207,7 @@ async def test_wrong_role_raises_forbidden_error(self, monkeypatch: pytest.Monke
         """require_admin raises ForbiddenError when user has a non-admin role."""
         monkeypatch.delenv("FOUNDRY_AUTH_AUTH0_ROLE_CLAIM", raising=False)
         request = MagicMock()
-        user = {"sub": "auth0|x", DEFAULT_AUTH0_ROLE_CLAIM: "viewer"}
+        user = {"sub": _USER_SUB, DEFAULT_AUTH0_ROLE_CLAIM: "viewer"}
         with (
             patch(_PATCH_GET_USER, new=AsyncMock(return_value=user)),
             pytest.raises(ForbiddenError, match="does not match required role"),
@@ -216,7 +218,7 @@ async def test_admin_role_passes(self, monkeypatch: pytest.MonkeyPatch) -> None:
         """require_admin returns None without raising when user has the admin role."""
         monkeypatch.delenv("FOUNDRY_AUTH_AUTH0_ROLE_CLAIM", raising=False)
         request = MagicMock()
-        user = {"sub": "auth0|x", DEFAULT_AUTH0_ROLE_CLAIM: AUTH0_ROLE_ADMIN}
+        user = {"sub": _USER_SUB, DEFAULT_AUTH0_ROLE_CLAIM: AUTH0_ROLE_ADMIN}
         with patch(_PATCH_GET_USER, new=AsyncMock(return_value=user)):
             result = await require_admin(request, None)
         assert result is None
@@ -240,7 +242,7 @@ async def test_wrong_org_raises_forbidden_error(self, monkeypatch: pytest.Monkey
         """require_internal raises ForbiddenError when user belongs to a different org."""
         monkeypatch.setenv("FOUNDRY_AUTH_INTERNAL_ORG_ID", _INTERNAL_ORG_ID)
         request = MagicMock()
-        user = {"sub": "auth0|x", "org_id": _OTHER_ORG_ID}
+        user = {"sub": _USER_SUB, "org_id": _OTHER_ORG_ID}
         with (
             patch(_PATCH_GET_USER, new=AsyncMock(return_value=user)),
             pytest.raises(ForbiddenError, match="not a member of the internal organization"),
@@ -251,7 +253,7 @@ async def test_internal_org_member_passes(self, monkeypatch: pytest.MonkeyPatch)
         """require_internal returns None without raising when user is in the internal org."""
         monkeypatch.setenv("FOUNDRY_AUTH_INTERNAL_ORG_ID", _INTERNAL_ORG_ID)
         request = MagicMock()
-        user = {"sub": "auth0|x", "org_id": _INTERNAL_ORG_ID}
+        user = {"sub": _USER_SUB, "org_id": _INTERNAL_ORG_ID}
         with patch(_PATCH_GET_USER, new=AsyncMock(return_value=user)):
             result = await require_internal(request, None)
         assert result is None
@@ -275,7 +277,7 @@ async def test_wrong_org_raises_forbidden_error(self, monkeypatch: pytest.Monkey
         """require_internal_admin raises ForbiddenError when user belongs to a different org."""
         monkeypatch.setenv("FOUNDRY_AUTH_INTERNAL_ORG_ID", _INTERNAL_ORG_ID)
         request = MagicMock()
-        user = {"sub": "auth0|x", "org_id": _OTHER_ORG_ID}
+        user = {"sub": _USER_SUB, "org_id": _OTHER_ORG_ID}
         with (
             patch(_PATCH_GET_USER, new=AsyncMock(return_value=user)),
             pytest.raises(ForbiddenError, match="not a member of the internal organization"),
@@ -287,7 +289,7 @@ async def test_correct_org_wrong_role_raises_forbidden_error(self, monkeypatch:
         monkeypatch.setenv("FOUNDRY_AUTH_INTERNAL_ORG_ID", _INTERNAL_ORG_ID)
         monkeypatch.delenv("FOUNDRY_AUTH_AUTH0_ROLE_CLAIM", raising=False)
         request = MagicMock()
-        user = {"sub": "auth0|x", "org_id": _INTERNAL_ORG_ID, DEFAULT_AUTH0_ROLE_CLAIM: "viewer"}
+        user = {"sub": _USER_SUB, "org_id": _INTERNAL_ORG_ID, DEFAULT_AUTH0_ROLE_CLAIM: "viewer"}
         with (
             patch(_PATCH_GET_USER, new=AsyncMock(return_value=user)),
             pytest.raises(ForbiddenError, match="does not match required role"),
@@ -299,7 +301,7 @@ async def test_internal_admin_passes(self, monkeypatch: pytest.MonkeyPatch) -> N
         monkeypatch.setenv("FOUNDRY_AUTH_INTERNAL_ORG_ID", _INTERNAL_ORG_ID)
         monkeypatch.delenv("FOUNDRY_AUTH_AUTH0_ROLE_CLAIM", raising=False)
         request = MagicMock()
-        user = {"sub": "auth0|x", "org_id": _INTERNAL_ORG_ID, DEFAULT_AUTH0_ROLE_CLAIM: AUTH0_ROLE_ADMIN}
+        user = {"sub": _USER_SUB, "org_id": _INTERNAL_ORG_ID, DEFAULT_AUTH0_ROLE_CLAIM: AUTH0_ROLE_ADMIN}
         with patch(_PATCH_GET_USER, new=AsyncMock(return_value=user)):
             result = await require_internal_admin(request, None)
         assert result is None

tests/aignostics_foundry_core/api/core_test.py

@@ -168,7 +168,8 @@ def test_versioned_api_router_add_exception_handler_registration() -> None:
     from aignostics_foundry_core.api.core import VersionedAPIRouter
 
     def handler(request: object, exc: Exception) -> None:
-        pass
+        # Test double: only verifies registration, not invocation
+        ...
 
     router = VersionedAPIRouter(VERSION_STEP1)
     cast("Any", router).add_exception_handler_registration(ValueError, handler)
@@ -234,7 +235,8 @@ def test_init_api_with_custom_exception_handler_registrations() -> None:
     from aignostics_foundry_core.api.core import init_api
 
     def handler(request: object, exc: Exception) -> None:
-        pass
+        # Test double: only verifies registration, not invocation
+        ...
 
     app = init_api(exception_handler_registrations=[(ValueError, handler)])
 

tests/aignostics_foundry_core/gui/gui_test.py

@@ -35,6 +35,8 @@
 _ROLE_CLAIM = "https://example.com/role"
 _PROJECT_NAME = "myproject"
 _FIXED_PORT = 9000
+_DOCS_PATH = "/docs"
+_USER_SUB = "auth0|x"
 
 
 # ---------------------------------------------------------------------------
@@ -394,19 +396,19 @@ def test_docs_redirect_added_when_not_present(self) -> None:
         fastapi_mock = MagicMock()
         fastapi_mock.state = SimpleNamespace()
         self._call_gui_run(nicegui_mock, fastapi_app=fastapi_mock)
-        docs_calls = [c for c in app_mock.get.call_args_list if c.args[0] == "/docs"]
+        docs_calls = [c for c in app_mock.get.call_args_list if c.args[0] == _DOCS_PATH]
         assert len(docs_calls) == 1
 
     def test_docs_redirect_skipped_when_already_present(self) -> None:
         """When /docs route already exists, app.get is NOT called for /docs."""
         nicegui_mock, app_mock, _ = _make_nicegui_app_mock()
         docs_route = MagicMock()
-        docs_route.path = "/docs"
+        docs_route.path = _DOCS_PATH
         app_mock.routes = [docs_route]
         fastapi_mock = MagicMock()
         fastapi_mock.state = SimpleNamespace()
         self._call_gui_run(nicegui_mock, fastapi_app=fastapi_mock)
-        docs_calls = [c for c in app_mock.get.call_args_list if c.args[0] == "/docs"]
+        docs_calls = [c for c in app_mock.get.call_args_list if c.args[0] == _DOCS_PATH]
         assert len(docs_calls) == 0
 
     def test_auth_client_state_copied(self) -> None:
@@ -462,7 +464,7 @@ async def test_returns_none_for_expired_session(self) -> None:
         from aignostics_foundry_core.gui.auth import get_gui_user
 
         request = MagicMock()
-        expired_user = {"sub": "auth0|x", "exp": int(time.time()) - 3600}
+        expired_user = {"sub": _USER_SUB, "exp": int(time.time()) - 3600}
         fake_client = MagicMock()
         fake_client.require_session = AsyncMock(return_value={"user": expired_user})
 
@@ -480,7 +482,7 @@ async def test_returns_none_when_exp_claim_missing(self) -> None:
 
         request = MagicMock()
         fake_client = MagicMock()
-        fake_client.require_session = AsyncMock(return_value={"user": {"sub": "auth0|x"}})
+        fake_client.require_session = AsyncMock(return_value={"user": {"sub": _USER_SUB}})
 
         with (
             patch(_PATCH_GET_AUTH_CLIENT, return_value=fake_client),
@@ -495,7 +497,7 @@ async def test_returns_user_for_valid_session(self) -> None:
         from aignostics_foundry_core.gui.auth import get_gui_user
 
         request = MagicMock()
-        user = {"sub": "auth0|x", "email": "x@x.com", "exp": int(time.time()) + 3600}
+        user = {"sub": _USER_SUB, "email": "x@x.com", "exp": int(time.time()) + 3600}
         fake_client = MagicMock()
         fake_client.require_session = AsyncMock(return_value={"user": user})
 
@@ -557,7 +559,7 @@ async def test_returns_user_when_authenticated(self) -> None:
         from aignostics_foundry_core.gui.auth import require_gui_user
 
         request = MagicMock()
-        user = {"sub": "auth0|x", "exp": int(time.time()) + 3600}
+        user = {"sub": _USER_SUB, "exp": int(time.time()) + 3600}
 
         with patch(_PATCH_GET_GUI_USER, new=AsyncMock(return_value=user)):
             result = await require_gui_user(request)
@@ -625,7 +627,8 @@ def test_preserves_function_name(self) -> None:
         nicegui_mock, _ = _make_nicegui_mock()
 
         def my_named_page(user: object) -> None:
-            pass
+            # Test double: content is irrelevant; only __name__ is tested
+            ...
 
         with patch.dict(sys.modules, {"nicegui": nicegui_mock}):
             result = page_public(_TEST_PATH)(my_named_page)