Refactor Authorization

[dborovcanin]

Is your feature request related to a problem? Please describe.

1. In Magistrala , uses Google's Zanzibar open source implementation SpiceDB for Authorization.
   In SpiceDB , requires to define Authorization scheme. For Magistrala SpiceDB Authorization schema is defined at docker/spicedb/schema.zed
   The core service will check for requested users Authorization with SpiceDB based on permission defined the Authorization.
   At present these permissions are hardcode, So if SpiceDB schema changes , then we need to change the permission in respective service

2. Magistrala's SpiceDB schema has fixed roles, these roles have fixed operation.

3. There is no provision to share entities to users of other domains

Describe the feature you are requesting, as well as the possible use case(s) for it.

Hardcode of permission should be removed from core services and Permissions should be dynamically initialized during service startup

Provision to create custom roles for each entity with allowed set of operations to roles. and provision to add members to these custom roles

Provision to share entity with other users in domain

1. Organization Entity which should hold multiple Domains (Workspace).
2. Organization Entity should have Teams, which contains set of users of the organization
3. Organization's Teams should own the Domain (workspace)
4. To Workspace , external organization team can be invited

Indicate the importance of this feature to you.

Must-have

Anything else?

No response