GUI importer creates assets outside 'Company'

[swift2512]

You can create assets outside you company when using GUI importer. While you can't update existing entries, creating of new items is possible. This way, completely unintentionally, you can create huge amount or rubbish data in different companies. Importer will give you 'Success: Your file has been imported', but data won't be in your company. If ASSET TAG isn't in the import file, there won't be any giveaways that something went wrong - 'Success!' banner will be shown, but items are 'missing'. Keep importing to achieve positive outcome and other companies will be filled with rubbish data.

To reproduce

1. Have a user with 'CSV Import' permission granted and assigned to 'Company A'.
2. Prepare CSV file with some lines missing Company and Asset Tag fields. Add some lines with random Company names.
3. Import that file.

Result: 'Success: Your file has been imported' banner is shown and Snipe-IT install is filled with items outside of 'Company A' after every import attempt. You'll end up with same result when your CSV file has no 'Company' column - all items will be created without affiliation to any company.

[snipe]

There isn't really an easy way around that, since the cli importer doesn't know who is actually running that command, so the normal gates and such can't apply there. (That's not a limitation of Snipe-IT, that's just how cli stuff works.)

We can certainly take a look at possible solutions at least in the GUI, but messaging that is going to be a UX nightmare, I think.