feat: allow global org users to create org and self delete (#2759)

* fix: grant PROJECT_OWNER_VIEWER_GLOBAL org.create permission

* Update authz.yaml

* feat: delete my user

* console things

* lint

* signout after deletion

* stylelint rule

* Update authz.yaml

* Update authz.yaml

* setup step

* role SELF_MANAGEMENT_GLOBAL setup

* fix: change default role on global org

* Apply suggestions from code review

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>

* Update console/src/assets/i18n/it.json

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>

Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>

internal/domain/roles.go

@@ -7,15 +7,16 @@ import (
 )
 
 const (
-	IAMRolePrefix          = "IAM"
-	OrgRolePrefix          = "ORG"
-	ProjectRolePrefix      = "PROJECT"
-	ProjectGrantRolePrefix = "PROJECT_GRANT"
-	RoleOrgOwner           = "ORG_OWNER"
-	RoleOrgProjectCreator  = "ORG_PROJECT_CREATOR"
-	RoleIAMOwner           = "IAM_OWNER"
-	RoleProjectOwner       = "PROJECT_OWNER"
-	RoleProjectOwnerGlobal = "PROJECT_OWNER_GLOBAL"
+	IAMRolePrefix            = "IAM"
+	OrgRolePrefix            = "ORG"
+	ProjectRolePrefix        = "PROJECT"
+	ProjectGrantRolePrefix   = "PROJECT_GRANT"
+	RoleOrgOwner             = "ORG_OWNER"
+	RoleOrgProjectCreator    = "ORG_PROJECT_CREATOR"
+	RoleIAMOwner             = "IAM_OWNER"
+	RoleProjectOwner         = "PROJECT_OWNER"
+	RoleProjectOwnerGlobal   = "PROJECT_OWNER_GLOBAL"
+	RoleSelfManagementGlobal = "SELF_MANAGEMENT_GLOBAL"
 )
 
 func CheckForInvalidRoles(roles []string, rolePrefix string, validRoles []authz.RoleMapping) []string {

internal/domain/step.go

@@ -23,6 +23,7 @@ const (
 	Step18
 	Step19
 	Step20
+	Step21
 	//StepCount marks the the length of possible steps (StepCount-1 == last possible step)
 	StepCount
 )