Allow limiting authentications options for managers and inviters ("eduid only")

[joaofilipedg]

Currently the "eduID only" rule only applies to invitations with Authority Guest. Invitations for Inviter or Manager authority do not enforce this rule.

This has proven to be problematic in one of our use cases where the end application/service only has the eduID IDP connected, and the managers/inviters don't have institutional accounts.

Could we have the option to also limit the authentication options for Managers and Inviters?