How to get Google provider ID token

[sjbzhc]

Question 💬

Hi,

I am trying to log in and get an id_token.

My config is as follows:

const providers = [
        Providers.Google({
            clientId: process.env.GOOGLE_ID,
            clientSecret: process.env.GOOGLE_SECRET,
            idToken: true,
        }),
    ]

const pages = { signIn: "/login" };

const callbacks =  {
  async jwt(token, user, account, profile, isNewUser, idToken) {
    console.log('token :>> ', token);
    console.log('idToken :>> ', idToken);
    if (account?.accessToken) {
      token.accessToken = account.accessToken;
    }
    return token;
  }
};

const options = {
  providers,
  callbacks,
  pages
};

const auth = (req, res) => NextAuth(req, res, options);

I already reviewed #393 and if I understand correctly, I should be able to access the idToken in the jwt callback as described in #837.

In the documentation I also read that I can override the options of the provider, so I added idToken: true.

If I don't override tokenId to true, I am able to log in, but I have no access to the idToken.

After overriding idTioken to true, I get following error:

[next-auth][error][oauth_callback_handler_error]
https://next-auth.js.org/errors#oauth_callback_handler_error Error: Missing or invalid provider account
    at callbackHandler (/Users/user/projects/basic-next/node_modules/next-auth/dist/server/lib/callback-handler.js:18:119)
    at Object.callback (/Users/user/projects/basic-next/node_modules/next-auth/dist/server/routes/callback.js:100:48)
    at runMicrotasks (<anonymous>)
    at processTicksAndRejections (internal/process/task_queues.js:94:5)

How to reproduce ☕️

Override tokenId to true in the Google provide options:

    Providers.Google({
      clientId: process.env.GOOGLE_ID,
      clientSecret: process.env.GOOGLE_SECRET,
      idToken: true
    }),

Contributing 🙌🏽

Yes, I am willing to help answer this question in a PR

[mmmoussa]

You can grab id_token from account in the jwt callback through account.id_token

[agusterodin]

I get this error if I have idToken set to true

Have you experienced this?

[maquintal]

I have the same issue, but I'm using Azure Provider, and it seems like the account props into jwt is undefined, but in the signIn i can see my id_token

[maquintal]

okay I just resolve my issue see the solution below, FYI I have put props, only for debugging purpose