Permission checks on twentyORM global manager (#11477)

In this PR we are handling permissions when using
twentyORMGlobalManager,
and handling permissions for rest api and api key

packages/twenty-server/src/modules/contact-creation-manager/services/create-company.service.ts

@@ -2,9 +2,9 @@ import { Injectable } from '@nestjs/common';
 
 import axios, { AxiosInstance } from 'axios';
 import uniqBy from 'lodash.uniqby';
-import { DeepPartial, EntityManager, ILike } from 'typeorm';
-import { ConnectedAccountProvider } from 'twenty-shared/types';
 import { TWENTY_COMPANIES_BASE_URL } from 'twenty-shared/constants';
+import { ConnectedAccountProvider } from 'twenty-shared/types';
+import { DeepPartial, EntityManager, ILike } from 'typeorm';
 
 import { FieldActorSource } from 'src/engine/metadata-modules/field-metadata/composite-types/actor.composite-type';
 import { WorkspaceRepository } from 'src/engine/twenty-orm/repository/workspace.repository';
@@ -49,6 +49,9 @@ export class CreateCompanyService {
       await this.twentyORMGlobalManager.getRepositoryForWorkspace(
         workspaceId,
         CompanyWorkspaceEntity,
+        {
+          shouldBypassPermissionChecks: true,
+        },
       );
 
     // Avoid creating duplicate companies