Hi all ! I have a question that I feel is simple and common, yet I cannot seem to find the answer anywhere on the web, so here I am ! I work on (legacy) software, where access control is handled by complex SQL queries (quite a common case I think). I know I can use SpiceDB/ReBAC to answer the question "does User U have permission P on ressource R?", to replace these queries, and that's all good. I also know I can get the list of all ressources of type where User U have permission P with the LookupResources API but my question is : should I ? Is it a good or bad pattern ? I feel like this would be a good pattern, as this answers both questions "what are the ressources of type accessible to User U ?" and "which of these ressources does User U have permission P on?" in a single query, but since that is never mentionned in any of the tutorials/examples/etc I've read so far, I'm worried it might be an anti-pattern... Can anyone comment on this subject ? Thanks !