Admin UI creates ACLs with denial rules but workflow service does not support them
Steps to reproduce
The admin UI allows the creation of ACLs with denial rules (<allow>false<allow>) but the workflow service is not able to process them. This leads to continuous warnings like this
2015-04-14 11:39:23 WARN (WorkflowServiceSolrIndex:547) - Workflow service does not support denial via ACL, ignoring 4538_Learner is not allowed to write
As a solution, the admin UI must not create those rules and the endpoint should filter them out.
Merged in with 0ba6e63.