From 5970a4932b290dc4662c662aa4e9b3ec130ba940 Mon Sep 17 00:00:00 2001
From: Sean <tymon148@gmail.com>
Date: Tue, 7 Apr 2015 21:06:51 +0100
Subject: [PATCH] bumping jose version to address potential vulnerability

---
 composer.json                       | 2 +-
 src/Providers/JWT/NamshiAdapter.php | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/composer.json b/composer.json
index 4e8744fcc..abd6dd5c5 100644
--- a/composer.json
+++ b/composer.json
@@ -24,7 +24,7 @@
         "php": ">=5.4.0",
         "illuminate/support": "~4.0",
         "illuminate/http": "~4.0",
-        "namshi/jose": "2.0.*",
+        "namshi/jose": "2.2.*",
         "nesbot/carbon": "~1.0"
     },
     "require-dev": {
diff --git a/src/Providers/JWT/NamshiAdapter.php b/src/Providers/JWT/NamshiAdapter.php
index dd34f6a85..2974b1f2a 100644
--- a/src/Providers/JWT/NamshiAdapter.php
+++ b/src/Providers/JWT/NamshiAdapter.php
@@ -53,7 +53,7 @@ public function decode($token)
             throw new TokenInvalidException('Could not decode token: ' . $e->getMessage());
         }
 
-        if (! $jws->verify($this->secret)) {
+        if (! $jws->verify($this->secret, $this->algo)) {
             throw new TokenInvalidException('Token Signature could not be verified.');
         }