Denying a role permission has no effect

# create new user
10030  caosdb_admin.py create_user -a -c henrik
# check that insert is not possible
# create new role
10030  caosdb_admin.py create_role curation curation
# add role to user
10032  caosdb_admin.py add_user_roles henrik curation
# add permission to do anything
10047  caosdb_admin.py grant_role_permissions curation "TRANSACTION:*"
# check that insert  is possible
10048  caosdb_admin.py deny_role_permissions curation "TRANSACTION:INSERT:PROPERTY"
# check insert of a property -> still works 

Deny should overrule the grant and thus an insert should not be possible in the end.