READ_PUBLIC_PROFILE privilege

[techsmyth]

Description

As an admin of a private space I want to have explicit what data is visible to non-members

Acceptance criteria

• [ ] Add a new privilege: READ_PROFILE
• [ ] This privilege is required to access the SPACE fields (so on the space.authorization it is assigned). In particular space.profile, space.context + also when accessing top level queries there should be filtering out based on this privilege i.e. for space, spaces queries
• [ ] It is assigned to non-authenticated, non-members on space when a space is private

TBD: use elsewhere? E.g. on orgs?

Additional Context

This is somewhat mirroring what we currently have in place with READ_PII for User entity This privilege also opens up the possibility for the HIDDEN mode on Space privacy mode....

Screen shots / UX designs / data that are relevant.

Areas that will be affected

To be added during the refinement