Group Level Access Tokens should be able to pull/push with git over http

The generic implementation for Group level bot users works but the fix for bot users to be able to use tokens for git operation over http is not generic and doesn't feature group level token validation. Please fix this too before release of #214046 (closed)

Proposal

Group access tokens should be able to pull/push with git over http.

When attempting to use a resource access token to authenticate against git over http, add a check to see if the resource access token belongs to a user in either the project or an ancestor group; if yes, allow authentication.

This issue is an extension of !40635 (merged), which introduced the ability for project access tokens to authenticate over http.