Refactor xalan serializer dependency placement

Feat: add permissions needed for cohort characterization and feature …

…analysis to role 15 (#176)

* feat: add the extra permissions needed for cohort characterization and feature analysis to role 15

fix: disable two unecessary global cohort-characterization permissions, incompatible with "teamprojects"
...and improve debug logs

fix: add cohort-characterization id to various methods/api calls

- This allows for the correct (more strict) permission check to find place
based on the user's permissions on the given cohort-characterization

- Also expanded the new api patterns into CohortCharacterizationPermissionSchema
and removed cohort-characterization permissions that were too broad from role 15
migration script.

* fix: remove wrong/nonsensical(?) role cohort-characterization:design:%s:get

Security updates (#169)

* dep: update xstream to 1.4.21

* dep: update commons-codes to 1.14

fix: use /auth/request instead of /auth/mapping Arborist endpoint (#166)

dep: update base runtime image to amazoncorretto:8u432-al2023-jre (#164)

Fix: add Transactional annotation to method to fix "no session" error (…

…#157)

* fix: add Transactional annotation to method to fix "no session" error

* fix: try to initialize session

Fix: restrict concept permissions in role 15 (#153)

* fix: added missing migration line to prev migration script

Adding this for completeness...

* fix: move too broad conceptset:* permissions to narrow ones

...linked to specific individual conceptsets

* fix: added missing readPermissions for conceptsets

These changes remove the need for having these permissions granted as * permission.
Instead, users now get a conceptset specific permission.

fix: remove .toLowerCase() in teamproject parsing (#146)

fix: add conceptset:*:copy-name:get permission to role 15 (#144)

Feat: restrict the read restricted role (#142)

* feat: remove the * permissions

* fix: remove extra item from concat(l,m,r)

* tmp: temporarily disable conflicting check

* fix: put back the regular vocabulary: permissions

* tmp: disable "source user" role assignment

* tmp: rename flyway script

* fix: ensure source:omop:access becomes part of role 15

* tmp: rename sql migration script

* fix: make sure copy permission is part of the default permission schema for cohortdefinition

* fix: add cohortdefinition:*:exists:get permission to role 15

* fix: revert copy permission part

...as this would cause the current code to filter out all
cohorts. Current code requires the user to have ALL read permissions listed
in the schema to see a cohort definition...

* fix: add cohortdefinition:*:copy:get permisstion to role 15

* Revert "fix: revert copy permission part"

This reverts commit 8c9caf9.

* feat: migration script to add copy:get permission to teamproject cohorts

* fix: set permissionEntity to use right sequence

* fix: fix the migration script / schema name part for setval

* feat: migration script to add generate:SOURCE:get permission to role 15

* fix: added extra conceptset permissions to role 15, some of which will need review

...and fixing in ConceptSetPermissionSchema.java

* fix: support two authorization rules, where one should match the method and service expected

* fix: remove temporary solution for "Source user"

... as we have now moved the most relevant permissions into role 15

* fix: format in CohortDefinitionPermissionSchema.java