definition user {
relation member_group : group#manager
permission can_be_viewed = member_group->group#view_member
}