diff --git a/src/strategy.ts b/src/strategy.ts
index b5e414f..b20d553 100644
--- a/src/strategy.ts
+++ b/src/strategy.ts
@@ -109,10 +109,10 @@ export class GoogleTokenStrategy extends Strategy {
   public authenticate(req: any, options: any) {
     options = options || {};
 
-    const accessToken = this.paramFromRequest(req, 'access_token');
-    const idToken =
-      this.paramFromRequest(req, 'id_token') ||
+    const accessToken =
+      this.paramFromRequest(req, 'access_token') ||
       this.getBearerToken(req.headers);
+    const idToken = this.paramFromRequest(req, 'id_token');
 
     if (idToken) this.verifyGoogleIdToken(idToken)
     else if (accessToken) this.verifyGoogleAccessToken(accessToken)
diff --git a/tests/strategy.test.ts b/tests/strategy.test.ts
index 8555d15..4ec3565 100644
--- a/tests/strategy.test.ts
+++ b/tests/strategy.test.ts
@@ -31,6 +31,18 @@ class SuccessStrategy extends Strategy {
   }
 }
 
+class IdTokenSuccessStrategy extends SuccessStrategy {
+  public verifyGoogleAccessToken(accessToken: string): void {
+      throw new Error('The verifyGoogleAccessToken should not have been called.');
+  }
+}
+
+class AccessTokenSuccessStrategy extends SuccessStrategy {
+  public verifyGoogleIdToken(idToken: string): void {
+    throw new Error('The verifyGoogleIdToken should not have been called.');
+  }
+}
+
 class ErrorStrategy extends Strategy {
   private handler(token: string): void {
     this.done({ message: 'Error message' });
@@ -66,14 +78,21 @@ describe('Strategy', () => {
 
   const mockToken = '123456790-POIHANPRI-KNJYHHKIIH';
 
-  const strategy = new SuccessStrategy(
+  const idTokenStrategy = new IdTokenSuccessStrategy(
+    {
+      clientID: 'DUMMY_CLIENT_ID',
+    },
+    verify,
+  );
+
+  const accessTokenStrategy = new AccessTokenSuccessStrategy(
     {
       clientID: 'DUMMY_CLIENT_ID',
     },
     verify,
   );
 
-  const strategyWClientIDArray = new SuccessStrategy(
+  const strategyWClientIDArray = new AccessTokenSuccessStrategy(
     {
       clientID: ['DUMMY_CLIENT_ID_1', 'DUMMY_CLIENT_ID_2', 'DUMMY_CLIENT_ID', 'DUMMY_CLIENT_ID_3'],
     },
@@ -95,7 +114,7 @@ describe('Strategy', () => {
   );
 
   it('should be named google-verify-token', () => {
-    expect(strategy.name).to.equal('google-verify-token');
+    expect(idTokenStrategy.name).to.equal('google-verify-token');
   });
 
   it('should throw if constructed without a verify callback', () => {
@@ -132,31 +151,31 @@ describe('Strategy', () => {
   }
 
   describe('handling a request with id_token as query parameter', () => {
-    performValidTokenTest(strategy, (req: any) => {
+    performValidTokenTest(idTokenStrategy, (req: any) => {
       req.query = { id_token: mockToken };
     });
   });
 
   describe('handling a request with access_token as query parameter', () => {
-    performValidTokenTest(strategy, (req: any) => {
+    performValidTokenTest(accessTokenStrategy, (req: any) => {
       req.query = { access_token: mockToken };
     });
   });
 
   describe('handling a request with id_token as body parameter', () => {
-    performValidTokenTest(strategy, (req: any) => {
+    performValidTokenTest(idTokenStrategy, (req: any) => {
       req.body = { id_token: mockToken };
     });
   });
 
   describe('handling a request with access_token as body parameter', () => {
-    performValidTokenTest(strategy, (req: any) => {
+    performValidTokenTest(accessTokenStrategy, (req: any) => {
       req.body = { access_token: mockToken };
     });
   });
 
   describe('handling a request with bearer token in authorization header', () => {
-    performValidTokenTest(strategy, (req: any) => {
+    performValidTokenTest(accessTokenStrategy, (req: any) => {
       req.headers = { authorization: 'Bearer ' + mockToken };
     });
   });
@@ -188,7 +207,7 @@ describe('Strategy', () => {
   }
 
   describe('handling a request with no id token', () => {
-    performFailTokenTest(strategy, (req: any) => {
+    performFailTokenTest(idTokenStrategy, (req: any) => {
       return;
     });
   });