Replace license check isAuthAllowed with isSecurityEnabled

[rjernst]

The isAuthAllowed() method for license checking is used by code that
wants to ensure security is both enabled and available. The enabled
state is dynamic and provided by isSecurityEnabled(). But since security
is available with all license types, an check on the license level is
not necessary. Thus, this change replaces isAuthAllowed() with calling
isSecurityEnabled().

[elasticmachine]

Pinging @elastic/es-security (:Security/License)

[jaymode]

We briefly chatted about this elsewhere but in this test class security should always be enabled so I think that this should no longer be in a loop over internal state but just go ahead and call enableLicensing(OperationMode.BASIC)

[jaymode]

The test failure that occurs in this PR is due to a change in how Security works when the license mode is missing. Previously isAuthAllowed would return false in the case of a missing license, so the call in testRestAuthenticationByLicenseType to / would succeed without any credentials. Now that the check is only looking at whether security is enabled, credentials need to be added to the calls to / and /_security/_authenticate or the assertion should change to indicate the response is a 401 authentication challenge. Additionally on line 175, the comment // the default of the licensing tests is basic is no longer correct after 8b0526e and should probably be updated to reflect that the default license state is missing.

[rjernst]

Thanks for the analysis @jaymode! After checking with @tvernum, I've removed the test in question. Since authentication is now allowed at all license levels with this change (it was only disallowed with MISSING, which should just be removed since the behavior should fallback to BASIC), the test no longer makes sense.