permission can_comment = ..., permission edit = ...

, they could all be

admin

today... but maybe tomorrow you add

relation commenter

and now

can_comment

becomes

admin + commenter

, all without any data change