ACAS-699: Pass list of projects to backend to filter projects by acls

[brianbolt]

Description

• ACAS node changes for restricting /api/experiments/protocolCodename/:code
• Pass allowed projects to the backend for filtering

Bug description

To reproduce
Create an experiment in a restricted project and login as a user who does not have access to that project.
Go to the protocol browser window and search for the protocol
Scroll down to the section titled: "Experiments using"
Expectation
Experiment in restricted project that the user does not have access to is not displayed

Actual outcome
Experiment in restricted project that the user does not have access to is displayed.

Technical details
This feature relies on the ACAS route here

acas/modules/ServerAPI/src/server/routes/ExperimentServiceRoutes.coffee

Line 32 in b871998

app.get '/api/experiments/protocolCodename/:code', loginRoutes.ensureAuthenticated, exports.experimentsByProtocolCodename

:
app.get '/api/experiments/protocolCodename/:code', loginRoutes.ensureAuthenticated, exports.experimentsByProtocolCodename
This route does not pay attention to acls and therefore experiments are not filtered.

Related Issue

ACAS-699

How Has This Been Tested?

Ran acasclient tests including new tests added here for this case: mcneilco/acasclient#138

[hhan-schrodinger]

Makes sense - looks good to me!