🗃️ [#4246] Expand AuthInfo model to capture mandate context

[sergei-maertens]

Partly closes #4246

Changes

• Added fields for the (optional) legal subject (authorizee)
• Added fields for the (optional) acting subject (authorizee)
• Added check constraints to enforce data integrity
• Organized the admin in logical groups

The authentication context data model identifies two parties: the representee and the authorizee. There is always an authorizee - it can be the same actor as the representee if no mandate is in involved.

An authorizee has two aspects: legal subject and acting subject. There is always a legal subject. If no acting subject is provided, it is inferred from the legal subject.

So, a simple DigiD login in this model is represented by a legal subject authorizee of type BSN. We still keep storing this data in the attribute + value fields, but in the event of a mandate, we will store the additional information for the legal/acting subject.

Checklist

Check off the items that are completed or not relevant.

• Impact on features

  • Checked copying a form
  • Checked import/export of a form
  • Config checks in the configuration overview admin page
  • Problem detection in the admin email digest is handled

• Release management

  • I have labelled the PR as "needs-backport" accordingly

• I have updated the translations assets (you do NOT need to provide translations)

  • Ran ./bin/makemessages_js.sh.sh
  • Ran ./bin/compilemessages_js.sh

• Commit hygiene

  • Commit messages refer to the relevant Github issue
  • Commit messages explain the "why" of change, not the how

[codecov]

Codecov Report

Attention: Patch coverage is 97.22222% with 1 line in your changes missing coverage. Please review.

Project coverage is 96.26%. Comparing base (3e8f3cb) to head (ff451e3).
Report is 717 commits behind head on master.

Files with missing lines	Patch %	Lines
src/openforms/authentication/models.py	96.29%	0 Missing and 1 partial ⚠️

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #4339   +/-   ##
=======================================
  Coverage   96.26%   96.26%           
=======================================
  Files         731      731           
  Lines       23756    23786   +30     
  Branches     2801     2803    +2     
=======================================
+ Hits        22868    22898   +30     
  Misses        617      617           
  Partials      271      271           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[sergei-maertens]

For the reviewer, this relates to https://github.com/maykinmedia/authentication-context-schemas

[Viicos]

I guess there's no way to extract things from this deprecated fields to set them to the mandate/authorizee fields?

[sergei-maertens]

even worse - the data stored in there is just plain wrong now :)