I am evaluating casbin for our authorization model.
I understand that using casbin, we can define a model that combines rbac and abac.
However, getting all results from db first and then performing abac check on every record could be performance overhead.
What's the best way to filter the records from the source database itself based on permissions (RBAC/ABAC models) defined in casbin? So that we need to define policies only in one place?