[SM-704] Extract Authorization For ServiceAccounts (#2869)

* Move to access query for project commands

* Swap to hasAccess method per action

* Swap to authorization handler pattern

* Move ProjectOperationRequirement to Core

* Add default throw + tests

* Extract authorization out of commands

* Unit tests for authorization handler

* Formatting

* Swap to reflection for testing switch

* Swap to check read & reflections in test

* fix wording on exception

* Refactor GetAccessClient into its own query

* Use accessClientQuery in project handler

src/Core/SecretsManager/AuthorizationRequirements/ServiceAccountOperationRequirement.cs

@@ -0,0 +1,14 @@
+using Microsoft.AspNetCore.Authorization.Infrastructure;
+
+namespace Bit.Core.SecretsManager.AuthorizationRequirements;
+
+public class ServiceAccountOperationRequirement : OperationAuthorizationRequirement
+{
+}
+
+public static class ServiceAccountOperations
+{
+    public static readonly ServiceAccountOperationRequirement Create = new() { Name = nameof(Create) };
+    public static readonly ServiceAccountOperationRequirement Read = new() { Name = nameof(Read) };
+    public static readonly ServiceAccountOperationRequirement Update = new() { Name = nameof(Update) };
+}