Max 2/3k users. Object store on the order of tens of thousands. Our permission system has been becoming incredibly relational in the sense having a permission to 1 thing implicitly grants some set of permissions to some number of other things. Currently we manage this in our code, rather than the policy. But it's becoming a maintainable issue. So was looking into a graph based policy engine, and Spicedb is a nice prebuilt solution with all the tooling around it. SpiceDB and the application datastore will be 2 databases in the same postgres instance.