This is as simple as writing a custom validator that you insert into your default JWT validation

https://docs.spring.io/spring-security/reference/servlet/oauth2/resource-server/jwt.html#oauth2resourceserver-jwt-validation-custom

No need for any custom homemade security filters.