Restrict Who Can Edit What
Once we have a schema and sample data, we can create some auth records, roles, and rules.
Who Can Edit What?
The first thing we're going to do is decide who can edit which predicates in the
wallet collection. These rules are not going to be the only restrictions on these predicates.
Note that there are multiple ways to build the same application. While there are some wrong answers (that would make it impossible to build this application), there are multiple right answers.