1 2 3 4 5 6 7 8 9 10 11 12 13 14
entity User; entity Document; action read, write appliesTo { principal: [User], resource: [Document], context: {} }; action admin_read, admin_write in [read, write] appliesTo { principal: [User], resource: [Document], context: {} };