Original support ticket: https://jira.camunda.com/browse/SUPPORT-7054

When we sync identities with the Engine, we perform a collection role cleanup to remove any permissions from collections that should no longer exist. However, if the request to the engine to retrieve the authorisations fails for any reason, we erroneously remove all permissions in Optimize rather than ignoring the result. In this scenario, all collection roles get removed.

ATs:

• If the authorization request to the Engine fails, we handle this and don't update Optimize collection roles
• When we do remove collection roles from collections as part of the cleanup service, we warn at INFO level rather than DEBUG.