[rbac] Reader user able to create,delete and update snapshot metadata

Reader user able to create, delete and update snapshot metadata (and metadata item),
The expected response code is 403 (forbidden) but the actual response is 200.

From tempest logs:

create_snapshot_metadata:
2023-08-09 16:31:51,857 91888 INFO [tempest.lib.common.rest_client] Request (ProjectReaderTests:test_create_snapshot_metadata): 200 POST https://173.231.255.251/volume/v3/c013893447cd4b49a45d44e9f8bb6ca2/snapshots/846b2724-30c4-4b6e-821f-94ccbff14570/metadata 0.508s
2023-08-09 16:31:51,857 91888 DEBUG [tempest.lib.common.rest_client] Request - Headers: {'Content-Type': 'application/json', 'Accept': 'application/json', 'X-Auth-Token': '<omitted>'}
        Body: {"metadata": {"key1": "value1", "key2": "value2", "key3": "value3"}}
    Response - Headers: {'date': 'Wed, 09 Aug 2023 16:31:51 GMT', 'server': 'Apache/2.4.52 (Ubuntu)', 'content-type': 'application/json', 'x-compute-request-id': 'req-58ebc302-ca7c-4f09-9a9a-62760a337861', 'content-length': '68', 'openstack-api-version': 'volume 3.0', 'vary': 'OpenStack-API-Version', 'x-openstack-request-id': 'req-58ebc302-ca7c-4f09-9a9a-62760a337861', 'connection': 'close', 'status': '200', 'content-location': 'https://173.231.255.251/volume/v3/c013893447cd4b49a45d44e9f8bb6ca2/snapshots/846b2724-30c4-4b6e-821f-94ccbff14570/metadata'}
        Body: b'{"metadata": {"key1": "value1", "key2": "value2", "key3": "value3"}}'

delete_snapshot_metadata_item:
2023-08-09 16:32:01,591 91888 INFO [tempest.lib.common.rest_client] Request (ProjectReaderTests:test_delete_snapshot_metadata_item): 200 DELETE https://173.231.255.251/volume/v3/c013893447cd4b49a45d44e9f8bb6ca2/snapshots/deda8c87-22ae-495c-bcfa-3e763fd5935b/metadata/key1 0.076s
2023-08-09 16:32:01,591 91888 DEBUG [tempest.lib.common.rest_client] Request - Headers: {'Content-Type': 'application/json', 'Accept': 'application/json', 'X-Auth-Token': '<omitted>'}
        Body: None
    Response - Headers: {'date': 'Wed, 09 Aug 2023 16:32:01 GMT', 'server': 'Apache/2.4.52 (Ubuntu)', 'content-length': '0', 'content-type': 'text/html; charset=UTF-8', 'openstack-api-version': 'volume 3.0', 'vary': 'OpenStack-API-Version,Accept-Encoding', 'x-openstack-request-id': 'req-9beba27e-81b4-4e0e-a577-d7ad578b231e', 'connection': 'close', 'status': '200', 'content-location': 'https://173.231.255.251/volume/v3/c013893447cd4b49a45d44e9f8bb6ca2/snapshots/deda8c87-22ae-495c-bcfa-3e763fd5935b/metadata/key1'}
        Body: b''

update_snapshot_metadata:
2023-08-09 16:32:31,165 91888 INFO [tempest.lib.common.rest_client] Request (ProjectReaderTests:test_update_snapshot_metadata): 200 PUT https://173.231.255.251/volume/v3/c013893447cd4b49a45d44e9f8bb6ca2/snapshots/13ec400f-8f8f-437f-9b2f-626cd28f3b45/metadata 0.090s
2023-08-09 16:32:31,166 91888 DEBUG [tempest.lib.common.rest_client] Request - Headers: {'Content-Type': 'application/json', 'Accept': 'application/json', 'X-Auth-Token': '<omitted>'}
        Body: {"metadata": {"key4": "value4"}}
    Response - Headers: {'date': 'Wed, 09 Aug 2023 16:32:31 GMT', 'server': 'Apache/2.4.52 (Ubuntu)', 'content-type': 'application/json', 'x-compute-request-id': 'req-32b18d6f-f3f2-4487-8e73-c238a8f86560', 'content-length': '32', 'openstack-api-version': 'volume 3.0', 'vary': 'OpenStack-API-Version', 'x-openstack-request-id': 'req-32b18d6f-f3f2-4487-8e73-c238a8f86560', 'connection': 'close', 'status': '200', 'content-location': 'https://173.231.255.251/volume/v3/c013893447cd4b49a45d44e9f8bb6ca2/snapshots/13ec400f-8f8f-437f-9b2f-626cd28f3b45/metadata'}
        Body: b'{"metadata": {"key4": "value4"}}'

update_snapshot_metadata_item:
2023-08-09 16:32:39,937 91888 INFO [tempest.lib.common.rest_client] Request (ProjectReaderTests:test_update_snapshot_metadata_item): 200 PUT https://173.231.255.251/volume/v3/c013893447cd4b49a45d44e9f8bb6ca2/snapshots/e09f2910-ea3e-4087-88c4-bf2d3f642ebc/metadata/key3 0.551s
2023-08-09 16:32:39,938 91888 DEBUG [tempest.lib.common.rest_client] Request - Headers: {'Content-Type': 'application/json', 'Accept': 'application/json', 'X-Auth-Token': '<omitted>'}
        Body: {"meta": {"key3": "value3_update"}}
    Response - Headers: {'date': 'Wed, 09 Aug 2023 16:32:39 GMT', 'server': 'Apache/2.4.52 (Ubuntu)', 'content-type': 'application/json', 'x-compute-request-id': 'req-b2976057-daa1-4355-937d-8693db13aa5d', 'content-length': '35', 'openstack-api-version': 'volume 3.0', 'vary': 'OpenStack-API-Version', 'x-openstack-request-id': 'req-b2976057-daa1-4355-937d-8693db13aa5d', 'connection': 'close', 'status': '200', 'content-location': 'https://173.231.255.251/volume/v3/c013893447cd4b49a45d44e9f8bb6ca2/snapshots/e09f2910-ea3e-4087-88c4-bf2d3f642ebc/metadata/key3'}
        Body: b'{"meta": {"key3": "value3_update"}}'