2019-09-23 UTC
# 
cjslep[m] If all the above is "yes"... I'd prefer adopting an ACL or Policy ontology that can be: 1, leveraged in other contexts (not just DMs) and 2, be rich enough to let users set fine grained permissions as desired and 3, descriptive enough for clients to be able to self, apply policies on their end and enable/disable UI elements accordingly.