How UI adapts to the user privileges

# How UI adapts to the user privileges ## Limit visible data First level of adapting the UI to the user priviliges is by minimazing the data returned by the backend based on the user `read` rights. Based on this criteria an user can read the whole entity, partialy or might not have rights to read it. An entity can be queried as signle object or as part of collection. Based on this assumptions there this options: - Single entity: - full/partial access - the user can receive the data he has rights to read and that data will be vizualized. - no access - when user try to access existing entity an error should be returned to the user. From security point of view that information might not include why exactly the entity is not accessible. For example: "The entity is not found or you don't have rights to read it" - Collection: - full/partial access - like the single entityt only parts of the entity that can be read are returned. - no access - element is not included in the collection. ## Limit functionality