Make sure that we can use KeyCloak authorization functionality with the management api/ui, if appropriate. This entails mapping the Role/Permission concepts defined in apiman onto whatever role support exists in KC.