Improve permissions

[DougLau]

• Check resource hashtags in permission access level checks
• Use resource attributes for operate/manage write access level exceptions
• Use Sonar permissions instead of queryPermAccess for DMS/video monitor/action plans
• Fix java UI for roles
• Fix hashtag permissions for scratch play lists
• Change honeybee permissions to use Sonar/IRIS instead of DB query
• Configure permission w/ hashtag should allow creating, deleting and updating resources with that hashtag. It does not allow removing the hashtag. The same logic applies for msg_line (with restrict_hashtag instead of notes).
• Convert capability/privilege records to permissions in SQL migrate script