Allow JOB-TOKEN to perform all release REST API operations

Merged Guillaume CHAUVEL requested to merge guillaume.chauvel/gitlab:release-job-token into master

What does this MR do and why?

According to the documentation ( release API operations are possible using either a private or a job token

This MR adds job token to all API endpoints

Solves #320950 (closed)
Solves #340018 (closed)
Solves #198779 (closed)
Refs #332146 (closed)

Screenshots or screen recordings

These are strongly recommended to assist reviewers and reduce the time to merge your change.

How to set up and validate locally

Numbered steps to set up and validate the change are strongly suggested.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

Edited by Guillaume CHAUVEL