I'm seeing that one can have implicit permissions like:

permission view = reader + edit
    permission edit = owner

Is this a good pattern? Anything to note?