make possible to deny all operations

Signed-off-by: Robert Landers <landers.robert@gmail.com>

Author: withinboredom

src/State/AbstractHistory.php

@@ -154,6 +154,10 @@ protected function checkAccessControl(?Provenance $user, StateId $from, Reflecti
 
         foreach ($controls as $accessControl) {
             if ($accessControl instanceof DenyAnyOperation) {
+                if ($accessControl->fromType === null && $accessControl->fromId === null && $accessControl->fromRole === null && $accessControl->fromUser === null) {
+                    return false;
+                }
+
                 if ($accessControl->fromUser && $user->userId === $accessControl->fromUser) {
                     return false;
                 }