feat(auth): cut ScadaBridge over to ZB.MOM.WW.Auth.Ldap; nest+rename Ldap config; roles+sitescope via IGroupRoleMapper (Task 1.2/1.4)

tests/ZB.MOM.WW.ScadaBridge.Host.Tests/ActorPathTests.cs

@@ -43,11 +43,15 @@ public class CentralActorPathTests : IAsyncLifetime
                         ["ScadaBridge:Cluster:MinNrOfMembers"] = "1",
                         ["ScadaBridge:Database:SkipMigrations"] = "true",
                         ["ScadaBridge:Security:JwtSigningKey"] = "test-signing-key-must-be-at-least-32-chars-long!",
-                        ["ScadaBridge:Security:LdapServer"] = "localhost",
-                        ["ScadaBridge:Security:LdapPort"] = "3893",
-                        ["ScadaBridge:Security:LdapUseTls"] = "false",
-                        ["ScadaBridge:Security:AllowInsecureLdap"] = "true",
-                        ["ScadaBridge:Security:LdapSearchBase"] = "dc=scadabridge,dc=local",
+                        // Task 1.4: LDAP settings nest under Security:Ldap (shared LdapOptions).
+                        // ServiceAccountDn is now required by the library's LdapOptionsValidator
+                        // (ValidateOnStart), so it must be present for the host to start.
+                        ["ScadaBridge:Security:Ldap:Server"] = "localhost",
+                        ["ScadaBridge:Security:Ldap:Port"] = "3893",
+                        ["ScadaBridge:Security:Ldap:Transport"] = "None",
+                        ["ScadaBridge:Security:Ldap:AllowInsecure"] = "true",
+                        ["ScadaBridge:Security:Ldap:SearchBase"] = "dc=scadabridge,dc=local",
+                        ["ScadaBridge:Security:Ldap:ServiceAccountDn"] = "cn=admin,dc=scadabridge,dc=local",
                     });
                 });
                 builder.UseSetting("ScadaBridge:Node:Role", "Central");