When a user has an unverified email address, deny write permissions

When a new user has not verified their email address, any ACL that requires write access should raise a 403 forbidden error

This error message will be used to control user access on the front end and mobile by prompting them to validate their email address

Note, this needs to not effect existing users who have not verified their email address until we can roll out proper messaging

Unverified users should not be able to:

• Create a post
• Comment on a post
• Vote up or down
• Create group
• Create blog
• Upload images
• Upload movies
• unit tests

changed milestone to %Sprint::01/15 - Youthful Yabby

added 1 deleted label

changed weight to 6

changed time estimate to 6h

added to epic &102 (closed)

marked this issue as related to front#2428 (closed)

marked this issue as related to mobile-native#1702 (closed)

added StatusBacklog label

removed StatusBacklog label

added 1 deleted label and removed 1 deleted label

added StatusBacklog label

marked the checklist item Create a post as completed

marked the checklist item Comment on a post as completed

marked the checklist item Vote up or down as completed

marked the checklist item Create group as completed

marked the checklist item Create blog as completed

marked the checklist item Upload images as completed

marked the checklist item Upload movies as completed

added StatusInProgress label and removed StatusBacklog label

added 6h of time spent at 2020-02-07