Application and Infrastructure user accessible

[fmarco76]

Currently Applications and Infrastructures have not attribute to define who can use them. Is this relevant in the APIServer or should it be managed at a different level (e.g. the portal).

If it is relevant than two attribute should be included like: users and groups. They can work as white or black list with some special values to identify all user or groups and/or regular expressions.

[fmarco76]

The APIServer should communicate with the portal releasing the authentication claim and verify if the user has a restriction on the application to submit.