The spec says "Group" resources in SCIM may mean group-based or role-based access control model in itself. So this can be an option in an implementation. But explicitly the "Role" attribute is part of the core User schema.
If you want a UMA-integrated Java client to Gluu's SCIM API, you can check out [SCIM-Client](https://github.com/GluuFederation/SCIM-Client). This uses an RP profile to access SCIM out of the box.
If you want more access control via UMA, you can check out the [UMA docs](https://gluu.org/docs/integrate/uma/) or [GitHub](https://github.com/GluuFederation?utf8=%E2%9C%93&query=uma).