package USER.UPDATE
default allow := false
allow {
input.uuid == input.owner
}
input.role == "admin"