We are only able to check for user at endpoint level. Would be good to add support for router-level permission checks.