fix(tests): Enhance CrowdSecConfig with new input fields and improve accessibility

- Added IDs to input fields in CrowdSecConfig for better accessibility.
- Updated labels to use <label> elements for checkboxes and inputs.
- Improved error handling and user feedback in the CrowdSecConfig tests.
- Enhanced test coverage for console enrollment and banned IP functionalities.

fix: Update SecurityHeaders to include aria-label for delete button

- Added aria-label to the delete button for better screen reader support.

test: Add comprehensive tests for proxyHostsHelpers and validation utilities

- Implemented tests for formatting and help text functions in proxyHostsHelpers.
- Added validation tests for email and IP address formats.

chore: Update vitest configuration for dynamic coverage thresholds

- Adjusted coverage thresholds to be dynamic based on environment variables.
- Included additional coverage reporters.

chore: Update frontend-test-coverage script to reflect new coverage threshold

- Increased minimum coverage requirement from 85% to 87.5%.

fix: Ensure tests pass with consistent data in passwd file

- Updated tests/etc/passwd to ensure consistent content.

frontend/src/api/__tests__/client.test.ts

@@ -0,0 +1,139 @@
+import { beforeEach, describe, it, expect, vi, afterEach } from 'vitest'
+
+type ResponseHandler = (value: unknown) => unknown
+type ErrorHandler = (error: ResponseError) => Promise<never>
+
+type ResponseError = {
+  response?: {
+    status?: number
+    data?: Record<string, unknown>
+  }
+  config?: {
+    url?: string
+  }
+  message?: string
+}
+
+// Use vi.hoisted() to declare variables accessible in hoisted mocks
+const capturedHandlers = vi.hoisted(() => ({
+  onFulfilled: undefined as ResponseHandler | undefined,
+  onRejected: undefined as ErrorHandler | undefined,
+}))
+
+vi.mock('axios', () => {
+  const mockClient = {
+    defaults: {
+      headers: {
+        common: {} as Record<string, string>,
+      },
+    },
+    interceptors: {
+      response: {
+        use: vi.fn((onFulfilled?: ResponseHandler, onRejected?: ErrorHandler) => {
+          capturedHandlers.onFulfilled = onFulfilled
+          capturedHandlers.onRejected = onRejected
+          return vi.fn()
+        }),
+      },
+    },
+  }
+
+  return {
+    default: {
+      create: vi.fn(() => mockClient),
+    },
+  }
+})
+
+// Must import AFTER mock definition
+import { setAuthErrorHandler, setAuthToken } from '../client'
+import axios from 'axios'
+
+// Get mock client instance for header assertions
+const getMockClient = () => {
+  const mockAxios = vi.mocked(axios)
+  return mockAxios.create()
+}
+
+describe('api client', () => {
+  beforeEach(() => {
+    vi.clearAllMocks()
+  })
+
+  afterEach(() => {
+    vi.clearAllMocks()
+  })
+
+  it('sets and clears the Authorization header', () => {
+    const mockClientInstance = getMockClient()
+
+    setAuthToken('test-token')
+    expect(mockClientInstance.defaults.headers.common.Authorization).toBe('Bearer test-token')
+
+    setAuthToken(null)
+    expect(mockClientInstance.defaults.headers.common.Authorization).toBeUndefined()
+  })
+
+  it('extracts error message from response payload', async () => {
+    const error: ResponseError = {
+      response: { data: { error: 'Bad request' } },
+      config: { url: '/test' },
+      message: 'Original',
+    }
+
+    const handler = capturedHandlers.onRejected
+    expect(handler).toBeDefined()
+
+    const resultPromise = handler ? handler(error) : Promise.reject(new Error('handler missing'))
+
+    await expect(resultPromise).rejects.toBe(error)
+    expect(error.message).toBe('Bad request')
+  })
+
+  it('invokes auth error handler on 401 outside auth endpoints', async () => {
+    const onAuthError = vi.fn()
+    const warnSpy = vi.spyOn(console, 'warn').mockImplementation(() => {})
+
+    setAuthErrorHandler(onAuthError)
+
+    const error: ResponseError = {
+      response: { status: 401, data: { message: 'Unauthorized' } },
+      config: { url: '/proxy-hosts' },
+      message: 'Original',
+    }
+
+    const handler = capturedHandlers.onRejected
+    expect(handler).toBeDefined()
+
+    const resultPromise = handler ? handler(error) : Promise.reject(new Error('handler missing'))
+
+    await expect(resultPromise).rejects.toBe(error)
+    expect(onAuthError).toHaveBeenCalledTimes(1)
+    expect(error.message).toBe('Unauthorized')
+
+    warnSpy.mockRestore()
+  })
+
+  it('skips auth error handler for auth endpoints', async () => {
+    const onAuthError = vi.fn()
+    const warnSpy = vi.spyOn(console, 'warn').mockImplementation(() => {})
+
+    setAuthErrorHandler(onAuthError)
+
+    const error: ResponseError = {
+      response: { status: 401, data: { message: 'Unauthorized' } },
+      config: { url: '/auth/login' },
+      message: 'Original',
+    }
+
+    const handler = capturedHandlers.onRejected
+    expect(handler).toBeDefined()
+
+    // Call handler with auth endpoint error to verify it skips the auth error handler
+    if (handler) {
+      await handler(error)
+    }
+
+    warnSpy.mockRestore()
+  })
+})