[keycloak-user] method level role based authorization

Question to the group, I want to do method level role based authorization (aka @RolesAllowed) with the constraint that i cannot use sprig security(broken in jboss eap7). Anyone has done this ? I want to do it by annotations at method level, instead of cluttring the code checking the role and send 403 if role not allowed,ugly. Thanks