Feat: Resolve "Ability to cancel a flow session" backend changes

Lindsey Sheltonrequested to merge
562406-backend-changes-for-cancel-session into master

What does this MR do and why?

Add update to graphql query field for user permissions and update rails api to cancel a user session (if the user has permissions), and allow the frontend to fetch the error response as well.

References

GitLab Issue: #562406

This MR works full with the following frontend MR: !209625 (merged)

How to set up and validate locally

See frontend MR listed in full fledged testing.

MR acceptance checklist

Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Related to #562406

Merge request reports