Are there any recommendations/references on how to address search and authorization that someone can point me too. For example, let's say I had an asset manager/service that was storing all the assets in our system and zanzibar is being used for determining if a user can access a resource. The assets that a user is allowed to access can be queried using the expand API. If Elasticsearch is being used to store all the metadata for assets and I wanted to search all the documents, how could that be done efficiently. The only idea I've seen so far and sort of discussed in the original Zanzibar paper is checking and filtering each document that is returned from the search query, but that doesn't seem very efficient. I was wondering if there are some other recommendations.