Only run the auth when we have write access

When we run our requests to the CV from the frontend, it seems that some of the requests are quite slow. After taking a look I realized that those also run the authentification when there is only a get requests. So I skip the authentification in those cases.

Still I don't wanted to mix auth & permission handling for our auth classes - so I decided to write a wrapper class that can be used specific for selected views (for that we can be sure that those doesn't need auth for get requests), while the overall auth mechanism logic doesn't change.