I’m trying to implement a single page application and an API
My single page application has google as an authentication method.
My frontend makes a request to https://blah.eu.auth0.com/oauth/token and gives me back
an access_token which is a 32 char token and an id_token which seems to be a jwt token that contains my google information.
Which of these should I send to my backend. Should I send the access token and then use that to get the user id? Or the jwt token and decode it to get the userId