Problem Statement: Currently in the old enduser UI we have a lot of special logic to make internal users work in the enduser UI with limited functionality. For the new enduser we need to decide if we care to do this, or if we should just not allow internal users to access the enduser UI.
Solution Specification: The new enduser UI should work with internal users with degraded functionality where features are inappropriate (consent, trusted devices, shared resources, etc.). Much of this can be based on [proper use of the authorization component](OPENIDM-11156) and improving the schema endpoint to report on internal objects.
This Story must add support for internal objects to the schema endpoint to facilitate enduser login by internal users.