Is there a way to make sure that the google-smart-home webhook request is from Google other than validating Authorization header?

I'm developing a google-smart-home action. I want to authenticate requests by API Key.

So...

Is there a way to add my original header value to HTTPS request from Google-Smart-Home?

If there is no way...

Is there a way to make sure that the google-smart-home webhook request is from Google other than validating Authorization header?

Solution

Requests are authenticated using OAuth 2 and an authentication code flow, not an API key. There is not a way to add a header value.

Turn off google assistant mic
Where to find user's access token in requests from Assistant to fulfilment webhook?
Deep link to Smart Home Action
Homegraph in google smart home skill
Google Action SmartHome - Publishing a release returns unknown error
How does Action on Google Smart Home API works Asynchronously?
My dialogflow agent is suddenly not matching an intent for any query
WebAuthn conditional UI doesn't show up on Chrome
Problem with google assistant and app actions in Android TV
Issues with Google Assistant's Response to 'Turn On All Devices' When 'FAILED' Status is Sent
Google Home oAuth page blank in Beta/Production but works fine in Alpha
Why does Request Sync on HomeGraph API return 403 Forbidden?
How can I delete project in actions on google console?
Remove Actions on Google project from Google Home app Home control page
Actions on Google - CLI (gactions) comment not found
Local Fulfilment with multiple devices
How to show current garage door state on Google Home?
Are there APIs to automate google smart home action integration?
Does the Conversational Actions sunset impact Actions that use Dialogflow agents?
Google Action Builder Account Linking with custom authentication in Node js
Conversational Actions Sunset 2023: Migrating from conversational actions to Smart Home Actions
Google smart home mode traits are not displaying in ui
Contact in Google regarding actions?
Google Actions Builder Webhook URL Not Found
iot-smart-home-cloud (gcp project) registered devices not appear in the flutter app and in Angular/web
How to execute TestNetworkSpeed command for NetworkControl device trait using Google Actions?
action console simulator is not working and I cannot release my project
Can't enable or delete my service accounts on Google Cloud
What equipment is supported action.devices.traits.CameraStream base on webRTC?
Making POST requests in google actions without Inline Cloud Functions