Annotation permissions on items

[manthey]

Currently, annotations can only be created, edited, or deleted if a user has write access to an image. We really need an additional granularity for permissions. If a folder (since images don't directly have permissions) has read access, we still want some users to be able to create or delete annotations.

This would add an additional access control model for annotations to folders that would parallel the normal access control . The annotationAccess record (or whatever we call it), if present, would supercede the folder access FOR annotations only. New annotations would inherit these permissions (rather than the folder permissions).

Note: check if a user with write access but not admin access can delete an annotation they own. If not, they should.

This needs more development to ensure it will have consistent and expected results.