@scap it sounds like you’ve solved it then? From your question it seems like you might need to build a custom Security which provides a filter to do what you need.