improve bearer validation

Author: jorenvandeweyer

lib/handlers/authenticate-handler.js

@@ -138,7 +138,7 @@ AuthenticateHandler.prototype.getTokenFromRequest = function(request) {
 
 AuthenticateHandler.prototype.getTokenFromRequestHeader = function(request) {
   const token = request.get('Authorization');
-  const matches = token.match(/^Bearer\s(\S+)/);
+  const matches = token.match(/^Bearer\s([0-9a-zA-Z-._~+/]+=*)$/);
 
   if (!matches) {
     throw new InvalidRequestError('Invalid request: malformed authorization header');