is there any way how can IAP proxy check whether is user email address verified? Currently anyone can get IAP token with correct credentials (using GCP Identity Platform). We have heavy traffic to our backends from users without email verification. I can't see any settings for IAP or Identity platform how to activate user after that verification.
Of course there is an option to check verified email on frontend and backend, but it will be much better to handle this by IAP.
We are using this SDK https://firebase.google.com/docs/auth/web/password-auth
Thanks a lot for any help or ideas Lukas