Context:
See parent task.

AT:

• only users authorized to an event based process can see reports based on the corresponding event based process definition
• only users authorized to an event based process can see and manage collection data source entries of that definition
• extract `addEventProcessDefinitionDtoToElasticsearch` into `ElasticSearchIntegrationTestExtension` as it's used for multiple tests
• all adjacent services use the generic `DefinitionAuthorizationService` to check for definition auth instead of directly calling the `EngineDefinitionAuthorizationService`
• ideally all definition dto's returned from DefinitionReader extend `SimpleDefinitionDto` so the information whether a definition is engine or event based is available without the need of calling the reader again to determine this