feat: control permissions and cli

[golanglemonade]

• Adds organization owner to control with permissions given by either user that created the control, inherited permissions from associated program, or permission from a group (editor, viewer, blocked). This aligns with the other recently updated objects (narratives, risks, etc)
• There is a TODO on the policies to add additional permissions for create of a control; this will be addressed with similar objects on a follow-up PR to allow access to create via groups and not just restricted to organization admins
• Adds basic cli commands for controls
• Speeds up graph tests slightly by not recreating the client each time, only the test data

Create control with a program:

go run cmd/cli/main.go control create -n sc -f sc -p 01JDWZ2SM9FSN5ZNFJGKDXAJXK 
  ID                          NAME  DESCRIPTION  STATUS  CONTROLTYPE  VERSION  CONTROLNUMBER  FAMILY  CLASS  SOURCE  MAPPEDFRAMEWORKS  SATISFIES  PROGRAMS  
  01JE1WQ6RYSS474RYD84T04GF3  sc                                                              sc                                                  [mitb2]   

User who created the controls can see/edit the control(s):

(go run cmd/cli/main.go control get  -z json         
{
  "controls": {
    "edges": [
      {
        "node": {
          "class": "",
          "controlNumber": "",
          "controlType": "",
          "createdAt": "2024-12-01T12:56:19.111118-07:00",
          "createdBy": "01JDWZ2E3EMVVXAFZVTXJFNSY2",
          "description": "",
          "family": "sc",
          "id": "01JE1WQ6RYSS474RYD84T04GF3",
          "mappedFrameworks": "",
          "name": "sc",
          "programs": [
            {
              "id": "01JDWZ2SM9FSN5ZNFJGKDXAJXK",
              "name": "mitb2"
            }
          ],
          "satisfies": "",
          "source": "",
          "status": "",
          "updatedAt": "2024-12-01T12:56:19.102809-07:00",
          "updatedBy": "01JDWZ2E3EMVVXAFZVTXJFNSY2",
          "version": ""
        }
      },
      {
        "node": {
          "class": "",
          "controlNumber": "",
          "controlType": "",
          "createdAt": "2024-12-01T12:56:59.592006-07:00",
          "createdBy": "01JDWZ2E3EMVVXAFZVTXJFNSY2",
          "description": "",
          "family": "sc",
          "id": "01JE1WREA36VE5HTZ6CB7EY9QS",
          "mappedFrameworks": "",
          "name": "sc2",
          "satisfies": "",
          "source": "",
          "status": "",
          "updatedAt": "2024-12-01T12:56:59.587305-07:00",
          "updatedBy": "01JDWZ2E3EMVVXAFZVTXJFNSY2",
          "version": ""
        }
      }
    ]
  }
}

User that only has permissions via the program can only see the one control:

task cli:login:another                     
task: [cli:login:creds] go run main.go login -u funk@theopenlane.io

Authentication Successful!
auth tokens successfully stored in keychain
(⎈ |default:default)➜  core git:(feat-control-perms) go run cmd/cli/main.go control get  -z json
{
  "controls": {
    "edges": [
      {
        "node": {
          "class": "",
          "controlNumber": "",
          "controlType": "",
          "createdAt": "2024-12-01T12:56:19.111118-07:00",
          "createdBy": "01JDWZ2E3EMVVXAFZVTXJFNSY2",
          "description": "",
          "family": "sc",
          "id": "01JE1WQ6RYSS474RYD84T04GF3",
          "mappedFrameworks": "",
          "name": "sc",
          "programs": [
            {
              "id": "01JDWZ2SM9FSN5ZNFJGKDXAJXK",
              "name": "mitb2"
            }
          ],
          "satisfies": "",
          "source": "",
          "status": "",
          "updatedAt": "2024-12-01T12:56:19.102809-07:00",
          "updatedBy": "01JDWZ2E3EMVVXAFZVTXJFNSY2",
          "version": ""
        }
      }
    ]
  }
}

[sonarqubecloud]

Quality Gate failed

Failed conditions
13.6% Coverage on New Code (required ≥ 20%)

See analysis details on SonarQube Cloud