feat(centralui): Verify-endpoint button + result/cert panel (T17)

src/ZB.MOM.WW.ScadaBridge.Communication/CommunicationService.cs

@@ -372,6 +372,28 @@ public class CommunicationService
             envelope, _options.QueryTimeout, cancellationToken);
     }
 
+    /// <summary>
+    /// Asks a site to run a read-only verification probe of an endpoint
+    /// configuration without persisting it: connect, capture the server certificate
+    /// if it is untrusted, then disconnect. Backs the CentralUI "Verify endpoint"
+    /// button. The Ask is bounded by <see cref="CommunicationOptions.QueryTimeout"/>
+    /// — verification is a short, one-shot query that shares the same latency budget
+    /// as the other interactive design-time queries (browse, search, test bindings).
+    /// </summary>
+    /// <param name="siteId">The target site identifier.</param>
+    /// <param name="command">The verify-endpoint command (connection name + protocol + serialized config).</param>
+    /// <param name="cancellationToken">Cancellation token.</param>
+    /// <returns>The verification result (success or classified failure, with a captured certificate when the failure is an untrusted certificate).</returns>
+    public Task<VerifyEndpointResult> VerifyEndpointAsync(
+        string siteId,
+        VerifyEndpointCommand command,
+        CancellationToken cancellationToken = default)
+    {
+        var envelope = new SiteEnvelope(siteId, command);
+        return GetActor().Ask<VerifyEndpointResult>(
+            envelope, _options.QueryTimeout, cancellationToken);
+    }
+
     /// <summary>
     /// Asks a site to run a bounded recursive search of the address space on the
     /// live server backing the given data connection. The address-space analogue