[BE] Support dynamic boundary for all groups and projects a user is a member of

In addition to static groups and projects, we want to support dynamic granular scope boundaries for granular tokens: all the groups and projects a user is a member of.

The Authz::GranularScope model should be able to support this dynamic boundary.