I created a file management module where admin users can create folder model objects and their corresponding attachments. admins should give user permission of a specific folder to related users. those users should not be able to access other folder objects. I know I can create a group for each folder object but this is not efficient at all. Do you guys have any ideas?