From 0d0ac5918e06082a025560b14d4954c5cf86db69 Mon Sep 17 00:00:00 2001
From: Vincent Ardisson <vardisson@budget-insight.com>
Date: Fri, 25 Jan 2019 15:44:36 +0100
Subject: [PATCH] OAuth2PKCEMixin: follow RFC 7636 on code_challenge generation

Hex-digest was required for some buggy site fixed since then
---
 weboob/browser/browsers.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/weboob/browser/browsers.py b/weboob/browser/browsers.py
index dd18f41cec..b4a9883dfd 100644
--- a/weboob/browser/browsers.py
+++ b/weboob/browser/browsers.py
@@ -1071,8 +1071,8 @@ def code_verifier(self, bytes_number=64):
         return base64.urlsafe_b64encode(os.urandom(bytes_number)).rstrip(b'=')
 
     def code_challenge(self, verifier):
-        digest = sha256(verifier).hexdigest()
-        return base64.urlsafe_b64encode(digest)
+        digest = sha256(verifier).digest()
+        return base64.urlsafe_b64encode(digest).rstrip(b'=')
 
     def build_authorization_parameters(self):
         return {'redirect_uri':    self.redirect_uri,
-- 
GitLab