negotiate_kerberos_auth: Support Kerberos PAC-ResourceGroups

[ankor2023]

Parse the ResourceGroupIds pac-data structure to have information about the user's membership in AD Domain Local groups.

Previously, the helper obtained user groups information only from GroupIds and ExtraSids pac-data structures (of the KERB_VALIDATION_INFO structure). The patch extends the functionality of the helper. Now it additionally parse the ResourceGroupIds pac-data structure where Domain Local AD-group rids are located. It appends these groups to the the list generated by parsing GroupIds and ExtraSids. No changes in existing helper deployments are required.

The new parsing functions are similar to those already used for parsing GroupIds and ExtraSids.