feat: Collect Eligible Roles and Groups from Azure PIM

[youduda]

This adds the functionally to collect the eligible roles and eligible groups relations of Azure PIM.
The following Graph API endpoints are used for the collection: Eligible Roles, Eligible Groups. Note: Both endpoints require an explicit admin consent for the required permissions.

The code was tested in a productive environment.

[github-actions]

CLA Assistant Lite bot All contributors have signed the CLA ✍️ ✅

[youduda]

I have read the CLA Document and I hereby sign the CLA

[olafhartong]

This is a great addition!
I've built a similar implementation in a custom tool.
On integration for the UI team, please consider adding a edge type similar to GPLink enforced for the Eligible roles so they stand out better

example:

[youduda]

I already created an implementation for the UI that adds the new edge type similar to what you suggested, see here.

[AlexanderDeBattista]

Are there any intentions to merge this PR? Have been missing this feature for a long time. :)

[StephenHinck]

This PR would require a corroborating BloodHound PR to support adding the new edges. Our team has been working internally on a more fully functional version of this effort, including approvals processes. Expect to see that in the near future.

@youduda - thank you for the contribution. If you would be interested in a swag package, we would happily send you one to show our appreciation. Please email me at shinck [AT] specterops [DOT] io.