First pass at supporting templates in permissions.

This allows permissions to have `{user}` variables in them. This
would be useful for applications that use the `force-command`
permission for example:

force-command="/bin/gitolite-shell {user}"