It is possible to enrich the ID/Access Token using Hooks, and provide additional Claims which includes Fine Grained / Corse Grained authz like a list of Entitlements or/and a list of resources you are allowed to. SpringSecurity will be used to enforce the access.
Take a look on this article: