Google id token Include the Google-signed ID token in an Authorization: Bearer ID_TOKEN_JWT header in the request. Sets the nonce to use when generating a Google ID token. You can then send the one-time code from the sign-in button to your server (4). The id_token value contains the information about the user's authentication. Commented Sep 3, 2019 at 1:16 Register your app's client id from Google API console; To do so, I send the "Google id token" with each request via the "Authorization" header. The value of iss in the ID token is equal to accounts. When the token expires, the application repeats the process. val googleIdTokenCredential = GoogleIdTokenCredential. Don't use exp for session management. OK, I wanted the developer to bring me the id_token, and I have successfully verified the token's integrity. irebvgzggjypdcuatozfzqumaceuqdcypjeyvzjtawladyjmgcjhdtckekgisxmqqtcta