fix(api): restrain access to provider configurations with menu access

[jeremyjaouen]

Description

This PR intends to restraint access to provider configurations endpoint taking account of menu access

Fixes # MON-15253

Type of change

• [x] Patch fixing an issue (non-breaking change)
• [ ] New functionality (non-breaking change)
• [ ] Breaking change (patch or feature) that might cause side effects breaking part of the Software

Target serie

• [ ] 21.04.x
• [ ] 21.10.x
• [x] 22.04.x
• [ ] 22.10.x (master)

How this pull request can be tested ?

Create a user

Give him Reach Api Configuration right

Give him no ACL

Connect to API v2 with this user

call GET / PUT /administration/authentication/providers/local

call GET / PUT /administration/authentication/providers/openid

call GET / PUT /administration/authentication/providers/web-sso

The request should return a 403 and the listing or update not occurs.

Give user ACL Menu Access to Authentication

call GET / PUT /administration/authentication/providers/local

call GET / PUT /administration/authentication/providers/openid

call GET / PUT /administration/authentication/providers/web-sso

The user is able to list or modify the provider configurations

Checklist

Community contributors & Centreon team

• [x] I have followed the coding style guidelines provided by Centreon
• [ ] I have commented my code, especially new classes, functions or any legacy code modified. (docblock)
• [ ] I have commented my code, especially hard-to-understand areas of the PR.
• [x] I have rebased my development branch on the base branch (master, maintenance).

[sonarqube-decoration[bot]]

SonarQube Quality Gate

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

0.0% Coverage
0.0% Duplication