Just to echo some of what Luis is saying, adding them to the id token via a rule would be my recommendation if that fits your scenario.
In fact, here is a FAQ with that solution.
http://community.auth0.com/t/how-do-i-add-user-permissions-to-id-token/28611
Let me know if that helps,
Dan