Support proper audit logs in RecordService server

We currently log on each task but it might make sense to just log the entry on plan requests. Logging at the task can be very noisy. We also currently don't log at all in the plan request meaning authorization exceptions are never logged.

Some auditing requirements (should be supported by the current audit support, but needs to be tested):

• The planner should shutdown / stop allowing user requests if an audit log record cannot be written out (disk full, other I/O error)
• Ensure that all authorization request failures are logged
• Log the user who is accessing the data rather than "recordservice"