i used keycloak as my authorization server and my resource owner has been developed using spring boot. I need to use permission based authorization instead of role based authorization. I need to use @preauthorize annotation with permission. But keycloak support for the rolebased permission. Can i change it to the permission based authorization?