[FR] Allow full data access to all (API exposed) data for users of the admin group (e.g. show customer related data, delete comments, ...)

[StaSys846]

Please ensure your feature request is not already on the roadmap or associated with an issue. This can be checked here.

Is your feature request related to a problem? Please describe. There is no full data access to IRIS (API exposed) data for a user who is a member of the admin group. This is for example the case for the delete comment object API endpoint (https://v200.beta.dfir-iris.org/case/{object_name}/{object_id}/comments/{comment_id}/delete) where only the creator of the comment is able to delete the comment and e.g. for data linked to a specific customer where the admin user is not linked to.

Describe the solution you'd like Expected behavior is that the administrator / members of the admin group should have access to all data and all data manipulation functions per default (GUI/API), also if specific customers are not mapped to the admin user.

Additional context Especially in the context of issue https://github.com/dfir-iris/iris-web/issues/488 it is currently not possible to delete complete cases with comments, since comments have to be manually deleted first. If the API is not usable for this (deleting all case comments in assets/notes/etc.) only database level deletion is possible which is not the preferred way.