permissionService->userHas($actorUserId, PermissionService::ADDRESS_BOOK_VIEW)) { return AuthorizationDecision::deny(403, 'forbidden'); } return AuthorizationDecision::allow(); } }