How do I fix Base64URL in serverless handlers: incident playbook?

Validate input format, isolate the first parser error, normalize escaping or encoding, then retest with a minimal sample and production payload.

Base64URL in serverless handlers: incident playbook

TL;DR: Validate locally, fix the first real error, validate again (no upload).

Handle Base64URL in serverless handlers: incident playbook with a repeatable Base64URL workflow: normalize alphabet, fix padding, decode locally, and validate.

Base64URL quick map

Rule	Base64	Base64URL
Alphabet	`+`, `/`	`-`, `_`
Padding	Often has `=`	Often omits `=`
Typical use	General binary transport	URLs, JWT segments

Focus for this query

Normalize alphabet ('-'/'_' vs '+'/'/').
Add or remove '=' padding based on your target format.
Validate with local tools before passing payload to your app.

Safe decode workflow

Remove whitespace/newlines.
Normalize alphabet: -→+, _→/.
Add padding so length % 4 == 0.
Decode locally and validate output shape (JSON/text/binary).

Runtime snippet (generic)

function base64urlToBase64(input) {
  const s = String(input || '').replace(/\s+/g, '').replace(/-/g, '+').replace(/_/g, '/');
  return s + '='.repeat((4 - (s.length % 4)) % 4);
}

const b64 = base64urlToBase64(token);
const bytes = Uint8Array.from(atob(b64), (c) => c.charCodeAt(0));
const text = new TextDecoder().decode(bytes);
console.log(text);

Frequent failures

Invalid character from copy/paste noise or wrong alphabet.
Missing padding when decoder expects canonical Base64.
JSON parse after decode fails when payload is not JSON/text.

Privacy guardrail

Base64/Base64URL strings can still contain secrets. Decode locally, redact sensitive fields, and only then share snippets.

FAQ

Is anything uploaded to a server? No. All processing happens locally in your browser. Files are never uploaded.

What is the recommended workflow? Validate the input, fix the first real issue, validate again, then export/convert. This avoids compounding errors.

Next steps

Related tools

Base64 Encode/Decode URL Encode/Decode Query string ↔ JSON JWT Decoder

Related guides

URL encoding explained Decode Base64 without uploading Encode Base64 without uploading Base64URL vs Base64 Base64URL → Base64 convert Base64 padding (=) explained atob/btoa explained Decode JWT without uploading

Related by intent

Convert Base64URL to Base64 (and back) without uploading Base64URL vs Base64: differences and safe conversion Base64URL missing padding: how to normalize '=' safely Base64URL decoded output won't parse as JSON: checklist

Privacy & Security

All processing happens locally in your browser. Files are never uploaded.

Related by intent

Closest pages and hubs to accelerate crawl discovery and first impressions.

First impression pool Impression seed hub Intent hub: runbooks Topic: base64url Related: winner compare node xml reference to entity must end with semicolon compatibility incident respo Related: winner live 1 base64url vs base64 incident response security Related: winner compare ruby xml repeated elements arrays reliability incident response Related: winner compare node xml reference to entity must end with semicolon performance incident respons

First Impression Acceleration

Pages prioritized for first search impressions with fresh crawl/indexing signals.

Open first-impression pool