In this article we are going to explore how to implement Google sign-in on a Golang server.
When we talk about implementing Google Sign-in, we are referring to using the OpenID Connect protocol to verify a user is who they say they are.
I’m not going to go into the depths of the protocol, but in broad terms, these are the steps we care about:
- Client gets a JWT (usually with the help of a library provided by google)
- Client sends this JWT to our server
- Our server validates the JWT
In this post we are going to focus on the validation of the JWT.