Are there any examples for integration SpiceDB with an API gateway or is that a bad idea in general? I was thinking about something like this: We have an API gateway (e.g. APISIX) which first checks the identity of the user (authentification) and then checks if the user has the appropriate permissions to access the resource (which might just be an enitity used by the service) with the help of SpiceDB. The reasoning behind that is that the micro services behind the API gateway will not have to do further permission checks because only valid requests will reach them. That way they would not require any knowledge about the permissions and relations. Is that something people do? Or is it recommended to include the permission checks in every micro service instead?