acl.go
package models
import "github.com/readysite/readysite/pkg/database"
// ACLRule represents a fine-grained access control rule.
type ACLRule struct {
database.Model
SubjectType string // "user", "role", "public"
SubjectID string // User ID, role name, or empty for public
ResourceType string // "page", "collection", "document"
ResourceID string // Resource ID (or empty for all of type)
Permission string // "read", "write", "delete", "admin"
}