Critical vulnerability in JWT decode method

README.md

@@ -43,7 +43,7 @@ $token = array(
 );
 
 $jwt = JWT::encode($token, $key);
-$decoded = JWT::decode($jwt, $key);
+$decoded = JWT::decode($jwt, $key, 'HS256');
 
 print_r($decoded);
 ?>

lib/JWT/Authentication/JWT.php

@@ -32,7 +32,7 @@ class JWT
      * @uses jsonDecode
      * @uses urlsafeB64Decode
      */
-    public static function decode($jwt, $key = null, $verify = true)
+    public static function decode($jwt, $key = null, $algo = null, $verify = true)
     {
         $tks = explode('.', $jwt);
         if (count($tks) != 3) {
@@ -50,6 +50,9 @@ public static function decode($jwt, $key = null, $verify = true)
             if (empty($header->alg)) {
                 throw new \DomainException('Empty algorithm');
             }
+            if($algo && $header->alg !== $algo){
+                throw new \DomainException('Invalid algorithm');
+            }
             if ($sig != JWT::sign("$headb64.$bodyb64", $key, $header->alg)) {
                 throw new \UnexpectedValueException('Signature verification failed');
             }