You wont be able to achieve this with an opaque access token - In order for your backend to be able to decode the payload you will need to pass a jwt. You’ll need to configure your native app(s) to pass an audience param (your API identifier) when requesting tokens for users. Some more on the audience here: