From 5b41fa2c7858fb3ca85eec56ef525bc21cff0cdf Mon Sep 17 00:00:00 2001
From: Alexander Haslam <champhaggy@gmail.com>
Date: Sat, 31 Dec 2016 21:10:08 +0000
Subject: [PATCH] Allow use of RS256 Protocol

Note: This pull request may not be the best location for this

The JWTVerifier class defaults to using HS256 unless it is overriden by config.
---
 src/Auth0/Login/Auth0Service.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/Auth0/Login/Auth0Service.php b/src/Auth0/Login/Auth0Service.php
index 39496559..32f061f8 100644
--- a/src/Auth0/Login/Auth0Service.php
+++ b/src/Auth0/Login/Auth0Service.php
@@ -130,6 +130,7 @@ public function decodeJWT($encUser)
         }
 
         $verifier = new JWTVerifier([
+            'suported_algs' => ['HS256', 'RS256'],
             'valid_audiences' => [config('laravel-auth0.client_id'), config('laravel-auth0.api_identifier')],
             'client_secret' => config('laravel-auth0.client_secret'),
             'authorized_iss' => config('laravel-auth0.authorized_issuers'),