Authorisation based on categories of operational semantics for CO methods

[01es]

Description

The authorisation mechanism that is currently based on method annotation with @Authorise(Security Token) needs to be generalised around the concept of categorisation of CO methods as defined in #1490.

The main goal for such generalisation is to have simplify the authorisation mechanism by removing the need to annotate all relevant CO methods with @Authorise(Security Token) in favour of associating security tokens with method categories. The generalised approach should not replace the existing one, but extend it by supporting a less verbose approach.

Expected outcome

A higher-level API for defining authorisation boundaries based on CO method categories.