module OmniAuth::Strategies::Oidc::Verify

def verify_id_token!(id_token)
  return unless id_token
  decode_id_token(id_token).verify!(issuer: config.issuer,
                                    client_id: client_options.identifier,
                                    nonce: params["nonce"].presence || stored_nonce)
end