Secure Rest Api in Tasklist plugin

Hi at all,

I have a springboot camunda webapp application.
In the application I implemented my own tasklist plugin. The plugin calls my own rest-api I implemented with Springboot. However I want to secure the custom rest-api, only users of specific camunda groups should be allowed to call the rest-api.
Do you have ideas to realize that?

Thanks in advance :slight_smile: