Create a NestJS Guard that checks if the user has one of the allowed
roles: {roles}. Provide a minimal example of how to apply it to a controller.