Minimize direct comparisons with ACCESS_ALLOWED and ACCESS_DENIED.
No functionality changes expected.
Added allow_t API to avoid direct comparisons with ACCESS_ALLOWED and ACCESS_DENIED. Developers using direct comparisons eventually mishandle exceptional ACCESS_DUNNO and ACCESS_AUTH_REQUIRED cases where neither "allow" nor "deny" rule matched. The new API cannot fully prevent such bugs, but should either led the developer to the right choice (usually .allowed()) or alert the reviewer about an unusual choice (i.e., denied()).
The vast majority of checks use allowed(), but we could not eliminate the remaining denied() cases ("miss_access" and "cache" directives) for backward compatibility reasons -- previously "working" deployments may suddenly start blocking cache misses and/or stop caching: http://lists.squid-cache.org/pipermail/squid-dev/2017-May/008576.html