From 7effe9daa47c59a8e3b3e26a210ede8a42215ba8 Mon Sep 17 00:00:00 2001
From: Ethan Wellenreiter <ewellenreiter@gmail.com>
Date: Wed, 23 Jul 2025 23:54:42 -0400
Subject: [PATCH] New TODO updates

---
 TODO.md | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/TODO.md b/TODO.md
index 52267aa..76d2737 100644
--- a/TODO.md
+++ b/TODO.md
@@ -40,3 +40,14 @@ anyone can make an organization and add people as admins.
 
 Figure out the permissions stuff. ACL maybe? idk
 
+for the permissions, maybe something like 
+
+have group names be part of group names?
+
+each group has a role. then that group role gets allowed to access the other stuff depending on their permissions
+
+so for example, a role name could be organization::group::group::role 
+
+no/limited special character group names
+
+set up a database migration to initialize the roles? or figure out the base roles in code