[gh-401] Add Organic Groups for protected content

Originally "Setting site permissions for authenticated users"

It would be useful to be able to set permissions on a single site for authenticated users. Some examples include:

• Making pages on a site not viewable by authenticated users but viewable by specific users.
• Giving authenticated users edit access to a page