Corrected CertificateAppCredentials scopes

libraries/botframework-connector/botframework/connector/auth/certificate_app_credentials.py

@@ -44,7 +44,6 @@ def __init__(
             oauth_scope=oauth_scope,
         )
 
-        self.scopes = [self.oauth_scope]
         self.app = None
         self.certificate_thumbprint = certificate_thumbprint
         self.certificate_private_key = certificate_private_key
@@ -56,16 +55,21 @@ def get_access_token(self, force_refresh: bool = False) -> str:
         :return: The access token for the given certificate.
         """
 
+        scope = self.oauth_scope
+        if not scope.endswith("/.default"):
+            scope += "/.default"
+        scopes = [scope]
+
         # Firstly, looks up a token from cache
         # Since we are looking for token for the current app, NOT for an end user,
         # notice we give account parameter as None.
         auth_token = self.__get_msal_app().acquire_token_silent(
-            self.scopes, account=None
+            scopes, account=None
         )
         if not auth_token:
             # No suitable token exists in cache. Let's get a new one from AAD.
             auth_token = self.__get_msal_app().acquire_token_for_client(
-                scopes=self.scopes
+                scopes=scopes
             )
         return auth_token["access_token"]