Hi guys, do you have any best practices or reference patterns to how best to integrate a permissions system like spicedb into a search use case? like we have a use case where a user can potentially have access to millions of resources, we can fairly easy define a schema that defines the resources the user can access, but we also have a search page where they can filter on properties of those resources, which can be hundreds per resources and we would like to keep out of the permissions system. But what would be best way to implement the intersection of the filtering and permissions, when the number of results can be high? if that makes sense