Can be Keycloak configured to set roles automatically based on user's properties?

Question

The goal is to get an access token with a custom set of roles.

My scenario is that I have an User Storage Provider SPI that looks into an Oracle DB for authentication. It