Hello 👋 Quick question: I have most of my authz checks done in the backend but some should be done when loading the frontend UI to gray out / hide some controls for users that doesn't have some permissions. What is the proper pattern there? Should I build some "proxy" APIs in my backend to be called by the frontend and then forward the permissions checks to SpiceDB from there? Is there some people that open SpiceDB publicly?