fix(spp_dci_client): use _SECRET_MASK constant in tests instead of hardcoded value

gonzalesedwin1123 · gonzalesedwin1123 · commit 53f28a7303da · 2026-02-10T12:09:29.000+08:00
The secret display tests hardcoded "********" in three places. If the
  mask value changes in the model, the tests would silently break. Now
  references cls.SECRET_MASK set from DCIDataSource._SECRET_MASK.
diff --git a/spp_dci_client/tests/test_data_source.py b/spp_dci_client/tests/test_data_source.py
@@ -14,6 +14,7 @@ class TestDataSource(TransactionCase):
     def setUpClass(cls):
         super().setUpClass()
         cls.DataSource = cls.env["spp.dci.data.source"]
+        cls.SECRET_MASK = cls.DataSource._SECRET_MASK
 
     def test_create_data_source(self):
         """Test creating a data source with required fields"""
@@ -645,7 +646,7 @@ def test_secret_display_field_masks_value(self):
             }
         )
         # Display field should show mask, stored field should have real value
-        self.assertEqual(ds.oauth2_client_secret_display, "********")
+        self.assertEqual(ds.oauth2_client_secret_display, self.SECRET_MASK)
         self.assertEqual(ds.oauth2_client_secret, "secret456")
 
     def test_secret_display_field_empty_when_no_secret(self):
@@ -680,7 +681,7 @@ def test_secret_display_write_updates_stored_field(self):
         self.assertEqual(ds.oauth2_client_secret, "brand_new_secret")
         # Invalidate cache to force recomputation of the display field
         ds.invalidate_recordset(["oauth2_client_secret_display"])
-        self.assertEqual(ds.oauth2_client_secret_display, "********")
+        self.assertEqual(ds.oauth2_client_secret_display, self.SECRET_MASK)
 
     def test_secret_display_mask_value_does_not_overwrite(self):
         """Test that writing the mask value does not overwrite the real secret"""
@@ -697,7 +698,7 @@ def test_secret_display_mask_value_does_not_overwrite(self):
             }
         )
         # Writing the mask value should not change the stored secret
-        ds.write({"oauth2_client_secret_display": "********"})
+        ds.write({"oauth2_client_secret_display": self.SECRET_MASK})
         self.assertEqual(ds.oauth2_client_secret, "real_secret_value")
 
     def test_secret_display_clear_removes_secret(self):
