What’s the difference between an ID token and an access token?

ID tokens are used for authentication

An ID token is the JWT that a app (sometimes referred to as a relying party / RP) receives when a user has authenticated using an identity provider (e.g., Google or Facebook). ID tokens are artefacts of OpenID connect and are used for authentication.

Access tokens are used for authorization

An access token is used to grant a relying party access to a resource (e.g., an API). Access tokens are artefacts of OAuth2.0 and are used for authorization.

Sources

• ID Token and Access Token: What’s the Difference? – auth0 blog
• ID Tokens vs Access Tokens – Do you know the difference?!