Context:
Once we have the event based process event sources in place with OPT-3197, we need to ensure that users can only see event based processes where they are authorized to all camunda event sources associated with that event based process.

AT:

• Get Event based process by id only returns the process if the current user is authorized to all associated camunda event sources, otherwise a 403 Not authorized response is returned
• Get all event based processes only returns event based processes where the user is authorized to all associated camunda event sources