Interesting approach. We've seen many teams focus heavily on retrieval quality and prompt engineering while overlooking retrieval governance and authorization controls. The idea of performing authorization before retrieval is particularly important for enterprise AI systems handling sensitive data. Curious whether you've tested the framework with multi-tenant RAG environments where document access policies vary across tenants.