Proposed title of this feature request

Implemente Role Based Access Control (RBAC) on public APIs.

What is the nature and description of the request?

As part of ADR-36 we were asked to support Service Accounts using RBAC on all public APIs.

Why does the customer need this? (List the business requirements)

As stated here, the basic authentication will be deprecated by end of this year, so users won't be able to query our data.

List any affected packages or components.

1. api/insights-results-aggregator: CCXDEV-12871