test(tools): align api tests with current auth and policy text

martinma51 · martinma51 · commit 3b716d05fd27 · 2026-05-11T00:02:53.000+08:00
diff --git a/tests/web/api/test_tools_api.py b/tests/web/api/test_tools_api.py
@@ -241,8 +241,8 @@ def test_get_available_tools_requires_auth(self):
         """Test that /api/tools/available requires authentication."""
         response = client.get("/api/tools/available")
 
-        # Unauthenticated requests return 403
-        assert response.status_code == 403
+        # Unauthenticated requests return 401 in the current auth flow.
+        assert response.status_code == 401
 
     def test_get_available_tools_falls_back_to_other_when_metadata_missing(
         self, monkeypatch
@@ -316,10 +316,7 @@ def test_get_available_tools_applies_user_override(self):
             assert "browser_navigate" in tool_map
             assert tool_map["browser_navigate"]["enabled"] is False
             assert tool_map["browser_navigate"]["status"] == "disabled"
-            assert (
-                tool_map["browser_navigate"]["status_reason"]
-                == "Disabled by tool policy"
-            )
+            assert tool_map["browser_navigate"]["status_reason"] == "Disabled by admin"
         finally:
             set_user_tool_overrides_hook(None)
 
