How to specify Roles OR Permissions needed to authorize an API?

Sorry, I couldn't find a way to specify `role(s)` or `permission(s)` needed to authorize an API. In OAuth world this may be `scope(s)`, but how could we support similar authorizations with a specific Authentication Type. For eg. Basic Auth?
