fi: deactive audience verification

Author: SaboniAmine

carbonserver/carbonserver/api/services/auth_providers/oidc_auth_provider.py

@@ -64,19 +64,16 @@ async def _get_algorithms(self) -> List[str]:
         oidc_config = await self._get_openid_configuration()
         return await asyncio.to_thread(self._discovery.signing_algos, oidc_config)
 
-    async def _decode_token(
-        self, token: str, *, audience: Optional[str] = None
-    ) -> Dict[str, Any]:
+    async def _decode_token(self, token: str) -> Dict[str, Any]:
         oidc_config = await self._get_openid_configuration()
         jwks = await self._get_jwks()
         algorithms = await self._get_algorithms()
         return jwt.decode(
             token,
             jwks,
             algorithms=algorithms,
-            audience=audience or self.client_id,
             issuer=oidc_config.get("issuer", self.base_url),
-            options={"verify_at_hash": False},
+            options={"verify_aud": False, "verify_at_hash": False},
         )
 
     async def get_auth_url(