Yes this is the design. The resource check the access right of the linked model for the same operation.