Permission use cases
Case 1: Public posts
- Anonymous users: can read all posts
- Logged in users: can read all posts + create new posts
- Author: can read all posts + create new posts + update their own
Case 2: Private projects
- Anonymous users: no permissions
- Logged in users: can read projects if they're in the team
- Users of group Partners: can see all projects + update all projects
Case 3: Inbox
- Anonymous users: can create notifications but can't read
- Logged in users: can create notifications but can't read
- Inbox owners: can read + update all notifications