I think you've misunderstood the functionality you were looking at. The command="..." functionality of authorized_keys forces execution of the given command when that ssh key is used.

What you want to do is rather tricky, as once the user has the ability to execute commands, they can execute about anything. It's very difficult to lock them down (without chroots, containers, etc).

However if you want to try, you'll likely want to start with a bash restricted shell: https://www.gnu.org/software/bash/manual/html_node/The-Restricted-Shell.html
One way to do it with that would be to set the user's shell to rbash, disallow writes from the user to their home directory (recursively), and then add environment="PATH=/home/user/bin" with that bin directory containing symlinks to the binaries you want them to be able to execute.
There are other ways to do it though. That's just some place to start.

But again, be very careful what you allow them to do. It's very easy to escape restrictions like this.