feat!: impersonate users

[sr258]

This PR implements the functionality to display other users' user states and to set the user state to read only.

The old permission system was replaced to simplify permission handling.: It had 'grown naturally' and needed an overhaul.

Issues with the old system were:

• The IUser interface included some permissions (e.g. if users can update libraries). The library expected these permissions to be loaded whenever the user object is passed to the library. This means that all permissions need to be loaded on authentication, even if they are never needed. This approach only allowed user-specific permissions.
• The only other place where there was authorization was in the Mongo/S3 storage classes. You were able to pass in a callback function that authorized users. This means authorization was specific to the storage classes. This is not great, as the file-based storage classes didn't have authorization and would lead to redundancy if they included it. Authorization logic should also not be part of a storage driver (separation of concerns, duplication)
• The authorization in the Mongo/S3 classes only allowed for lists of permissions to be returned for contentIds and users. This means that you might have to perform complex queries to get the lists, even if you never need them.
• The user data system didn't have any proper authorization at all.

Now, it's the job of the manager objects to implement permission checks and not of the storage classes. That means all storage classes are now capable of working in a permission system and not just the S3 classes. There's also a single interface IPermissionSystem that implementations can pass into the H5PEditor or H5PPlayer constructors to have fine-grained control over who can do what.

[coveralls]

coverage: 65.208% (-0.6%) from 65.805% when pulling f88323c on feat/permission-system into 3bb30a3 on master.