Add ability to manage and grant IAM permissions as policy

locale/en_US/api.locale.js

@@ -16,6 +16,8 @@ module.exports = exports = {
     token_not_found: 'Token not found with that ID, or the token has expired.',
 
     provider_already_exists: 'A service provider with that entity_id already exists.',
+    permission_already_exists: 'A permission for that target_type already exists.',
+    permission_not_found: 'Permission not found with that ID.',
 
     setting_not_found: 'No such setting exists with that key.',
 
@@ -28,6 +30,7 @@ module.exports = exports = {
     invalid_ldap_client_id: 'Invalid ldap_client_id:',
     invalid_oauth_client_id: 'Invalid oauth_client_id:',
     invalid_saml_service_provider_id: 'Invalid saml_service_provider_id:',
+    invalid_target_type: 'Invalid target_type.',
 
     insufficient_permissions: 'Insufficient permissions.',
     missing_field: {

locale/en_US/iam.locale.js

@@ -1,4 +1,5 @@
 module.exports = exports = {
     policy_not_found: 'Policy not found with that ID.',
+    permission_not_found: 'Permission not found with that ID.',
     invalid_entity: 'Invalid entity_type. Must be one of:'
 }