Implement authorisation logic for rules #551
Description
This requires pre-requisite work on ldap-jwt-auth. Admins should be allowed to overrule any rules when
- Creating items
- Deleting items
- Moving items
- They should also be allowed to edit the usage status of an item on its own (Related to Implement item moving rules #541)