update

Azure · xiangyan99 · Oct 4, 2024 · Sep 30, 2024 · Sep 30, 2024 · Sep 30, 2024
commit ce6e3290774a09ec979ee882dcbec06fb8d894ed
@@ -201,15 +201,16 @@ def on_challenge(
             encoded_claims = get_challenge_parameter(headers, "Bearer", "claims")
             if not encoded_claims:
                 return False
-            claims = base64.urlsafe_b64decode(encoded_claims).decode("utf-8")
-            if claims:
-                try:
+            try:
+                padding_needed = -len(encoded_claims) % 4
+                claims = base64.urlsafe_b64decode(encoded_claims + "=" * padding_needed).decode("utf-8")
+                if claims:
                     token = self._get_token(*self._scopes, claims=claims)
                     bearer_token = cast(Union["AccessToken", "AccessTokenInfo"], token).token
-                    self._update_headers(request.http_request.headers, bearer_token)
+                    request.http_request.headers["Authorization"] = "Bearer " + bearer_token
                     return True
-                except Exception:  # pylint:disable=broad-except
-                    return False
+            except Exception:  # pylint:disable=broad-except
+                return False
         return False
 
     def on_response(

@@ -146,15 +146,16 @@ async def on_challenge(
             encoded_claims = get_challenge_parameter(headers, "Bearer", "claims")
             if not encoded_claims:
                 return False
-            claims = base64.urlsafe_b64decode(encoded_claims).decode("utf-8")
-            if claims:
-                try:
+            try:
+                padding_needed = -len(encoded_claims) % 4
+                claims = base64.urlsafe_b64decode(encoded_claims + "=" * padding_needed).decode("utf-8")
+                if claims:
                     token = await self._get_token(*self._scopes, claims=claims)
                     bearer_token = cast(Union["AccessToken", "AccessTokenInfo"], token).token
                     request.http_request.headers["Authorization"] = "Bearer " + bearer_token
                     return True
-                except Exception:  # pylint:disable=broad-except
-                    return False
+            except Exception:  # pylint:disable=broad-except
+                return False
         return False
 
     def on_response(