You are building a Java web server that must interact with Google Cloud services through the Google Cloud API while acting on behalf of users. The application should allow users to authenticate to the Google Cloud API using their Google Cloud identities. What authentication workflow should you implement in your web application?