feat: add Gemini auth check to token warning banner

/auth/status now returns per-backend status: Claude warns on <24h expiry,
Gemini warns only when oauth_creds.json is missing or has no refresh_token
(access token rotates automatically so expiry_date is not a useful signal).
Banner shows warnings for both backends when needed, and the hint text
names the specific CLI commands to run.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

cortex/static/index.html

@@ -113,7 +113,7 @@
     <div id="auth-banner">
         <div id="auth-banner-text">
             <span id="auth-banner-msg"></span>
-            <span id="auth-banner-hint">To fix: SSH into the Cortex host and run <code>claude</code> — follow the login prompt, then restart Cortex.</span>
+            <span id="auth-banner-hint"></span>
         </div>
         <button id="auth-banner-close" title="Dismiss">✕</button>
     </div>