Both Validation Requests and Authorization Policies seem to overlap when it comes to authorizing access in a Controller. Has anyone found one to be more useful than the other? In my current project I setup many Validation Requests to handle both authorization and input validation. I'm using this throughout my API Resource controllers. Should I be using Policies instead to handle the authorization or is that an unneeded step in my case? Just trying to understand which way would be considered a more ideal approach.
I should note, the authorization mostly revolves around custom Gate policies which are defined via Permissions.