From ce0235af93669b32c6ba1b7cde9f3632b76a6c91 Mon Sep 17 00:00:00 2001
From: Matthew Dillon <mrdillon@alaska.edu>
Date: Wed, 11 Nov 2015 17:42:33 -0700
Subject: [PATCH] Form getter already decodes this URLs

---
 jwt.go | 10 ++--------
 1 file changed, 2 insertions(+), 8 deletions(-)

diff --git a/jwt.go b/jwt.go
index 8370c08..cd7aa7b 100644
--- a/jwt.go
+++ b/jwt.go
@@ -11,7 +11,6 @@ import (
 	"fmt"
 	"log"
 	"net/http"
-	"net/url"
 	"strings"
 )
 
@@ -103,15 +102,10 @@ func (m *Middleware) Secure(h http.Handler, v VerifyClaimsFunc) http.Handler {
 
 		authHeader := r.Header.Get("Authorization")
 		if authHeader == "" {
-			queryParam := r.FormValue("token")
-			if queryParam == "" {
+			token = r.FormValue("token")
+			if token == "" {
 				return &jwtError{status: http.StatusUnauthorized, err: ErrMissingToken}
 			}
-			var err error
-			token, err = url.QueryUnescape(queryParam)
-			if err != nil {
-				return &jwtError{status: http.StatusUnauthorized, err: ErrMalformedToken}
-			}
 		} else {
 			token = strings.Split(authHeader, " ")[1]
 		}