Pass along groups in custom header to downstream microservice

[jalbinson]

User Story

We want application group information in downstream services to make authorization decisions

Risks/Impacts/Considerations

Any issue getting group information can cause authorization errors for the sender.

Dev Notes

• Define custom header in shared project
  • "Okta-Groups" (X- prefix is deprecated now)
• Only call this logic for application users!
• Get application groups using the GroupService created in #16149
• Create JWT using code created in #16153
• Send header downstream

Acceptance Criteria

• Header can be retrieved by downstream service
• unit tests