Fix #2284: POST resources/rules delegation check 400 bad request response fix

[howieandersen]

Return 400 BadRequest with rule details on delegation check failure

Add delegation authorization validation to POST/PUT resources/rules endpoints. When delegation check fails, return 400 BadRequest with details about which specific rules the user lacks permission to delegate.

• Add DelegationAuthorization rule to ConnectionCombinationRules
• Add ValidateDelegationAuthorization composition to ConnectionValidation
• Update AddResourceRules and UpdateResourceRules to validate before service calls
• Add NotAuthorizedToDelegateRules error message constant

Description

Related Issue(s)

• POST resource/rules gir 403 Forbidden når delegation check for en regel feiler #2284

Verification

• Your code builds clean without any errors or warnings
• Manual testing done (required)
• Relevant automated test added (if you find this hard, leave it and we'll help out)
• All tests run green

Documentation

• User documentation is updated with a separate linked PR in altinn-studio-docs. (if applicable)

[sonarqubecloud]

Quality Gate failed for 'Authorization Altinn.AccessManagement'

Failed conditions
0.0% Coverage on New Code (required ≥ 65%)

See analysis details on SonarQube Cloud

[jonkjetiloye]

delegation check'en gjøres vel nå allerede inne i ConnectionService.AddResource : 607
så ville i utgangspunktet forvente at det er responsen der i fra som returnerte feilmodellen i stedet for å gjøre en ekstra sjekk i kontrolleren først.