feat(auth)!: ScadaBridge retire SQL Server ApiKey entity + ApprovedApiKeyIds + legacy hashing; EF migration RetireInboundApiKeyStore; re-issue runbook + CHANGELOG (re-arch C5/E) — BREAKING: X-API-Key -> Bearer sbk_, keys re-issued

tests/ZB.MOM.WW.ScadaBridge.ConfigurationDatabase.Tests/SchemaConfigurationTests.cs

@@ -135,29 +135,8 @@ public class SplitQueryBehaviourTests : IDisposable
         Assert.Single(loaded.Scripts);
     }
 
-    // ConfigurationDatabase-012: the ApiKey table must persist the bearer credential
-    // as a hash column (KeyHash) and must NOT carry a plaintext KeyValue column.
-
-    [Fact]
-    public void ApiKey_KeyHashColumn_IsMappedAndUniquelyIndexed()
-    {
-        var entityType = _context.Model.FindEntityType(typeof(ZB.MOM.WW.ScadaBridge.Commons.Entities.InboundApi.ApiKey))!;
-
-        var keyHash = entityType.FindProperty("KeyHash");
-        Assert.NotNull(keyHash);
-        Assert.False(keyHash!.IsNullable);
-
-        var hashIndex = entityType.GetIndexes()
-            .FirstOrDefault(i => i.Properties.Any(p => p.Name == "KeyHash"));
-        Assert.NotNull(hashIndex);
-        Assert.True(hashIndex!.IsUnique);
-    }
-
-    [Fact]
-    public void ApiKey_HasNoPlaintextKeyValueColumn()
-    {
-        var entityType = _context.Model.FindEntityType(typeof(ZB.MOM.WW.ScadaBridge.Commons.Entities.InboundApi.ApiKey))!;
-
-        Assert.Null(entityType.FindProperty("KeyValue"));
-    }
+    // Auth re-arch (C5): the SQL Server ApiKey entity was retired (inbound keys now
+    // live in the shared ZB.MOM.WW.Auth.ApiKeys SQLite store), so the former
+    // ApiKey_KeyHashColumn_IsMappedAndUniquelyIndexed and
+    // ApiKey_HasNoPlaintextKeyValueColumn schema assertions were removed with it.
 }