Hi all - I've seen some solutions regarding what I'm attempting to do, but they seem to all involve granting roles to users, which I'm trying to avoid. Here is what I'm attempting to do:

Custom table we'll call "x" - with read and write access restricted to admin users and fulfillers of said table

No problems there

Next, I have a custom user reference field we'll name "custom user"

And below the custom field, I have another we will call "custom user comments"

This reference is dynamic and can be used for any user, regardless of role or no roles at all.

No problems there

This user needs write access to the custom field "custom user comments"

This user is already granted read access to the whole ticket via an ACL, that works great

What I can't sort out is how to write an ACL based on dynamic conditions NOT A ROLE

The conditions I'm wanting to use are "custom user" > is (dynamic) > ME

If I can make this happen, I don't need to require stakeholders to assign users to another group with a role inheritance