Multi-Tenant Authorization

I’m following up to a previous post

I believe I have Option C working. But I have a follow up question regarding permissions. Please see this image to help me describe:


My question is basically, once I have the tenant(s) as permissions in the JWT, how do I know in the express API that the user is authorized to perform CRUD operations on one of those tenants?