Handle Permissions update for a company

• Antar client should be able to update a company on Antar for the following fields :
• data_level and permissions with the following limited value (create constants for that)

Possible values reference

So fields permission, data_level and feature are standard to all of our systems.

Here is the possibles values reference for each fields :

• permission field:

  Permission	Meaning
  READ_ONLY ✅	Can read data (useful when a client does not pay anymore, or for demo) for every routes. User can also POST data but we will not trigger IDS, and let data stay in a "WAITING_FOR_PROCESS" mode no PATCH or DELETE.
  ACCESS:ENDPOINT	Can read (GET) every data (campaign + endpoints) and write (POST+PATCH+DELETE) data on endpoints routes and documents routes only (but endpoint id only will be handled, we must return 403 if user try to send a campaign or campaignUid)
  ACCESS:PROMO	Can read (GET) every data (campaign + endpoints) and write (POST+PATCH+DELETE) every data (campaign + endpoints),
  INTERNAL	Can read and write data for every company on every routes

• data_level field:

  Level	Meaning
  NO_PRODUCT ✅	No product object in items array of object, meaning no sigyn / brands data (Short format of course)
  FULL	All the data, no restriction (Short format of course)