diff --git a/galicea_openid_connect/controllers/main.py b/galicea_openid_connect/controllers/main.py
index 2fafaf2..e2d779c 100644
--- a/galicea_openid_connect/controllers/main.py
+++ b/galicea_openid_connect/controllers/main.py
@@ -240,7 +240,8 @@ class Main(http.Controller):
             digest = hashes.Hash(hashes.SHA256(), backend=default_backend())
             digest.update(access_token.encode('ascii'))
             at_hash = digest.finalize()
-            extra_claims['at_hash'] = base64.urlsafe_b64encode(at_hash[:16]).strip('=')
+            #extra_claims['at_hash'] = base64.urlsafe_b64encode(at_hash[:16]).strip('=')
+            extra_claims['at_hash'] = base64.urlsafe_b64encode(at_hash[:16])
         if 'id_token' in response_types:
             response_params['id_token'] = self.__create_id_token(req, user.id, client, extra_claims)