Hi guys, is there any docs on best practices when using react with a web app that is secured with spice db? I want to show/hide certain components depending on the permissions of the user to perform certain actions. What do you recommend as an approach to manage this efficiently? Should the frontend query directly the spicedb API ?