res.users.settings.embedded.action: access their own entries [('user_setting_id.user_id', '=', user.id)] Administrators can access all User Settings embedded actions [(1, '=', 1)]