Anything people could share on best practices around RBAC for modern digital banks (or perhaps for any type of software, if same applies)?<p>For example, do you name the roles Prospect, User, Admin, etc.? Or do you use levels to determine the level of access a user has, e.g. L0, L1, L2, ...?<p>How do you approach naming permissions? Let's say I want to enable adding a payee:<p>a) create:payees
b) create:payees:own
c) ???<p>How about a UK-only payee?<p>a) create:payees:uk:own
b) create:payees:own:uk
c) ???<p>Or would you explicitly name the permission?<p>a) add_own_uk_payee
b) add_uk_payee
c) ???<p>Thanks in advance!