user-group-admin: use a proper auth filter....
user-group-admin: use a proper auth filter.
- we now use an full sql based perm check based on an earlier fetch of allowed IDS
- fixes problem with sql limit/filter and later filterint that by auth.
- can be optimized later