Front end RBAC logic should be backend API calls

Currently, there is front end logic in place to check certain RBAC mappings to show/hide elements of the UI and other control flow behaviour.

This is probably not the ideal implementation, and instead the logic should be handled by making a call to the backend to check the permissions of the user instead.