Requests for edge returning too many objects when filter is only on one resource collection.
Example:A request to
will return too many objects if there is both an internal/role and a managed/role but the filter is only on one path.
The RequestTransformer will combine the filters and end up with something like "true or /name eq 'openidm-authorized'" and then the internal role is not filtered out. RequestTransformer#visitQueryRequest should only be transforming the queryFilter for origin requests and privilege filters should be considered during the repo query.