feat: refactor RBAC authorization functions to include usergroups

apps/api/src/services/courses/activities/pdf.py

@@ -3,7 +3,7 @@ from src.db.courses import Course
 from src.db.organizations import Organization
 from sqlmodel import Session, select
 from src.security.rbac.rbac import (
-    authorization_verify_based_on_roles_and_authorship,
+    authorization_verify_based_on_roles_and_authorship_and_usergroups,
     authorization_verify_if_user_is_anon,
 )
 from src.db.chapters import Chapter
@@ -150,7 +150,7 @@ async def rbac_check(
 ):
     await authorization_verify_if_user_is_anon(current_user.id)
 
-    await authorization_verify_based_on_roles_and_authorship(
+    await authorization_verify_based_on_roles_and_authorship_and_usergroups(
         request,
         current_user.id,
         action,