The new ORDS 25.1 JWT role based access with custom claims - great intro from Chris Hoina in https://blogs.oracle.com/database/post/ords-apis-iam-jwts-role-based-claims-part-one - is a superb addition to the ORDS toolkit. It would be nice to have the roles accessible when running handler code - perhaps in :current_roles similar to :current_user. That way, it could be used for VPD, TSDP, Redaction etc with ease. We can read it out now by accessing the authorization header and a bit of PL/SQL - with APEX_JWT or manual decoding - but it's a manual chore that adds to overhead and customizations where the data has already been extracted earlier.
It would be sweet to have that available in a future release.