luke
09/16/2022, 8:06 PMtype user {}
type group {
relation admin: user
relation member: user
permission add_document = admin
}
type document {
relation owner: user
relation editor: user
relation viewer: user
relation group: group
permission add_to_group = owner // no way to assert about the group being added to here because it is not yet related!
}
and then the operation simply requires to permission checks?