Is it possible to add new capability other than the ones available in authorize.conf, if so how do we do it