INSERT INTO `salix`.`ACL`
    (model, property, accessType, permission, principalType, principalId)
    VALUES('EntryObservation', '*', '*', 'ALLOW', 'ROLE', 'buyer');

UPDATE `salix`.`ACL`
    SET accessType='*', principalId='it'
    WHERE model = 'Role';

UPDATE `salix`.`ACL`
    SET accessType='*', principalId='it'
    WHERE model = 'MailForward';