From 6d50f5bcd12c2783521dd67fbe201a3eb249dfd6 Mon Sep 17 00:00:00 2001
From: Warts Werdna <WartsWerdna@users.noreply.github.com>
Date: Sat, 2 Apr 2016 12:41:35 +0200
Subject: [PATCH] test if header.alg matches algorithm passed to decode()

---
 src/lib.rs | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/src/lib.rs b/src/lib.rs
index 63045f3..1391fdc 100644
--- a/src/lib.rs
+++ b/src/lib.rs
@@ -274,6 +274,14 @@ mod tests {
         claims.unwrap();
     }
 
+    #[test]
+    #[should_panic(expected = "WrongAlgorithmHeader")]
+    fn decode_token_wrong_algorithm() {
+        let token = "eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJiQGIuY29tIiwiY29tcGFueSI6IkFDTUUifQ.pKscJVk7-aHxfmQKlaZxh5uhuKhGMAa-1F5IX5mfUwI";
+        let claims = decode::<Claims>(token, "secret".as_ref(), Algorithm::HS256);
+        claims.unwrap();
+    }
+
     #[test]
     fn decode_token_with_bytes_secret() {
         let token = "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwiY29tcGFueSI6Ikdvb2dvbCJ9.27QxgG96vpX4akKNpD1YdRGHE3_u2X35wR3EHA2eCrs";