Add the current 4.7.x permission checks to the WebACFilter as Shiro role and permission checks. Authenticated users with the role "fedoraAdmin" must be allowed to do anything, while authenticated users with the role "fedoraUser" must be subject to authorization check of a specific permission.
Current (4.7.x) permission checks:
- GET requires an acl:read mode permission on the request resource
- PUT/POST/PATCH/DELETE requires an acl:write mode permission on the request resource
- other modes (acl:append, acl:control) are not yet implemented