alex87
10/12/2022, 1:30 PMdefinition user {
relation manager: manager
permission add_user_rights = manager->add_manager_rights
}
definition manager {
relation user: user
relation senior_manager: senior_manager
permission add_manager_rights = senior_manager->add_senior_manager_rights + user
}
definition senior_manager {
relation user: user
relation chief_manager: chief_manager
permission add_senior_manager_rights = chief_manager->user + user
}
definition chief_manager {
relation user: user
}
definition user_details {
relation user: user
permission edit_user_details = user + user->add_user_rights
}
relations:
manager:max#user@user:max
user:mike#manager@manager:max
senior_manager:marco#user@user:marco
user_details:details_mike#user@user:mike
manager:max#senior_manager@senior_manager:marco
chief_manager:matthias#user@user:matthias
senior_manager:marco#chief_manager@chief_manager:matthias