Add option to unlock user accounts to site admin users menu

[pjlast]

Closes #40788

Adds an extra option to the user options in the Site Admin user management panel, allowing site admins to unlock user accounts after too many sign-in attempts.

I went with expanding the rest endpoints, since user lockouts are backed by a redis store that is created in that handler setup.

Test plan

Unit tests expanded.

[sg-e2e-regression-test-bob]

Bundle size report 📦

Initial size	Total size	Async size	Modules
0.01% (+0.25 kb)	0.01% (+1.09 kb)	0.01% (+0.84 kb)	0.00% (0)

Look at the Statoscope report for a full comparison between the commits 644d767 and a641750 or learn more.

Open explanation

• Initial size is the size of the initial bundle (the one that is loaded when you open the page)
• Total size is the size of the initial bundle + all the async loaded chunks
• Async size is the size of all the async loaded chunks
• Modules is the number of modules in the initial bundle

[mrnugget]

Very nice.

didn't know we had a REST API for this, TIL. I think keeping things consistent for now is a good idea, so adding a new endpoint here makes sense. But the property "isLocked" should probably go in the GraphQL API (see comment)

[mrnugget]

I'd add "Only visible to site-admins"

[mrnugget]

Side-note: I'd expect this stuff to happen in a separate method in userpasswd somewhere, instead of in GraphQL layer.

Example: userpasswd.NewLockoutStoreFromConf(conf.AuthLockout()).

[mrnugget]

wow, that's not intendation, that's a massacre

Suggested change

	db: db, user: user, logger: log.Scoped("userResolver", "resolves a specific user").With(
	log.Object("repo",
	log.String("user", user.Username))),
	db: db,
	user: user,
	logger: log.Scoped("userResolver", "resolves a specific user").With(log.Object("repo", log.String("user", user.Username))),

Also: what is that "repo" doing here?

[pjlast]

I did not change anything here, this was go fmt doing its thing 🤷

[mrnugget]

Yeah, sometimes you need to help it and add linebreaks :P