oxTrust only has two roles: admin and user.
Admins are specified by adding them to the manager group.
If you want to implement more granular access control in oxTrust, you'll need to add such code to oxTrust, and submit a pull request.
However, we have not been interested in making oxTrust into a delegated admin application, so we would probably not incorporate such changes into the project.
To pass role information to other applications, use an attribute and pass this information as a SAML attribute or OpenID Connect claim.