so then i probably have a stupid question... i have to store that zedtoken in my DB right? to make sure next time i access the object i actually use the new permission... tho when i have a high concurrency api, and in the time between spicedb update & db update with zed token, another request already checks permission... how should i prevent that?