spring security for keycloak roles

src/main/resources/templates/done/module.html

@@ -27,7 +27,7 @@
 					<div class="col-sm-10">
 						<button id="okbtn" type="submit" class="btn btn-success">speichern</button>
 						<a class="btn btn-secondary" th:href="@{/done/list}">abbrechen</a>
-						<div class="dropdown float-right" th:if="${moduleBean.pk != null and #authentication.principal.attributes['resource_access']['timetrack']['roles'].contains('timetrack_user')}">
+						<div class="dropdown float-right" th:if="${moduleBean.pk != null}" sec:authorize="hasRole('timetrack_user')">
 							<button class="btn btn-danger dropdown-toggle" type="button" data-bs-toggle="dropdown" aria-expanded="false">Eintrag löschen</button>
 							<ul class="dropdown-menu">
 								<li><a class="dropdown-item" th:href="@{/done/delete/module/{id}(id=${moduleBean.pk})}">endgültig löschen</a></li>