Fix GetGraph bug

[ronenh]

This fixes a model-inversion bug.

Given:

folder:
  relations:
    parent: folder
    owner: user
  permissions:
    is_owner: owner | parent->is_owner

doc:
  relations:
    parent: folder
    viewer: user | user:* | group#member
  permissions:
    can_view: viewer | parent->owner

The can_view premission isn't inverted correctly. A group#member can have the can_view permission, but only through the first term (viewer) because parent->is_owner can only be a user.
The problem is that the inversion logic attempts to create the inversion of parent->owner on group
(i.e. group#doc^can_view#member: doc_viewer#member | doc_owner#doc_parent) But group has no doc_owner relation because group#member isn't assignable tofolder#owner.

[coveralls]

Pull Request Test Coverage Report for Build 10658163919

Details

• 4 of 6 (66.67%) changed or added relevant lines in 2 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage increased (+0.01%) to 60.819%

---

Changes Missing Coverage	Covered Lines	Changed/Added Lines	%
graph/objects.go	0	2	0.0%

Totals
Change from base Build 10411785900:	0.01%
Covered Lines:	2808
Relevant Lines:	4617

---

💛 - Coveralls