Clarification/Docs on Business Logic, RLS, and Authorization?

[GreenCappuccino]

An overview of the Surreal features shows that it supports HTTP functions, and JavaScript functions, reminding me a lot about Hasura's 3factor philosophy (specifically on the question of how to support business logic, outside of CRUD).

Additionally, it sounds like the scoped permissions feature, and JWT authentication should be able to provide the same RLS (row-level security) and authorization that Hasura (and other database-as-API services like Firebase) provide. (When plugged in with an external IdP like Keycloak)

Overall, very exciting! I've been following this project closely ever since finding out about these features. Unfortunately I haven't been able to find documentation on any of those outside of references on Stack Overflow and Github, and am not even entirely sure if my interpretation of the product (that it could possible be an all-in-one database/apiserver replacement) is correct.

I understand that for something new like this documentation can be sparse. I would appreciate it if anyone give some clarity into what the goals for SurrealDB are for this side of the product. Thank you!