fix(ui): preserve visibility selection when editing entities

[omorros]

🔗 Related Issue

Closes #3391

---

📝 Summary

Edit form submit handlers (handleEditServerFormSubmit, handleEditToolFormSubmit,
handleEditGatewayFormSubmit, handleEditResFormSubmit, handleEditPromptFormSubmit) were not appending
the visibility field to FormData before submission. This caused the backend to default to "private",
silently overwriting the user's original visibility selection on every edit. This PR adds
formData.append("visibility", formData.get("visibility")) to all five edit handlers, matching the pattern
already used in the corresponding create handlers.

---

🏷️ Type of Change

• Bug fix
• Feature / Enhancement
• Documentation
• Refactor
• Chore (deps, CI, tooling)
• Other (describe below)

---

🧪 Verification

Check	Command	Status
Lint suite	make lint	✅
Unit tests	make test	✅
Coverage ≥ 80%	make coverage

---

✅ Checklist

• Code formatted (make black isort pre-commit)
• Tests added/updated for changes
• Documentation updated (if applicable)
• No secrets or credentials committed

---

📓 Notes (optional)

The change is minimal, one line added to each of the five edit form submit handlers in
mcpgateway/static/admin.js. The create handlers already had this pattern; the edit handlers were simply
missing it. The team_id field is already handled via hidden inputs injected by the respective edit*()
functions, so no changes were needed there (except for handleEditPromptFormSubmit which already appended
team_id).

[crivetimihai]

Thanks @omorros — critical fix for #3391. Without this, every edit silently overwrites visibility to 'private'. Minimal and correct change. LGTM.

[crivetimihai]

Review & Rebase Summary

Rebased onto main (clean, no conflicts) and reviewed the changes thoroughly.

What's in this PR

The original fix adds formData.append("visibility", formData.get("visibility")) to 5 edit form submit handlers, matching the pattern already used in all 6 create handlers. This prevents the backend from silently defaulting visibility to "private" on every edit.

Changes added during review

1. Fixed a gap in handleEditA2AAgentFormSubmit — this was the only edit handler missing the visibility append. Added the same one-liner for consistency with all other handlers.

2. Added tests/js/admin-edit-visibility.test.js — 7 tests covering all 6 edit form submit handlers (tool, prompt, gateway, server, resource, A2A agent), verifying the selected visibility value reaches the submitted FormData.

Verification

• JS unit tests: 822/822 passing (24 test files)
• curl backend tests: Verified visibility edit round-trip for tools, servers, and gateways (public → team → private → public)
• Playwright E2E: Logged into admin UI, edited a tool's visibility from public to team via the edit modal, confirmed the table badge updated, re-opened the edit modal and confirmed the "Team" radio was pre-selected, confirmed via API that visibility=team persisted

No security, performance, or regression issues found.

[crivetimihai]

LGTM — verified via unit tests, curl API tests, and Playwright E2E. Added missing A2A handler fix and test coverage for all 6 edit handlers.

[crivetimihai]

LGTM — verified via unit tests, curl API tests, and Playwright E2E. Added missing A2A handler fix and test coverage for all 6 edit handlers.