The idea is this:
I have an application in android that will consume my services that I will create using Spring. However, these services must have some security, where only people authenticated in my application can consume such services.
Already in my Android application I will use Firebase to control the authentications, using email and password. So, I will not need to configure any security on my server, such as using Spring OAuth2.
My question is: Once the user authenticates in my application and then he wants to consume some service that I made available using Spring on the Server, such as a GET LIST of something, how do I validate that the user is authenticated in my application, so I can give it access to the requested service?