diff --git a/src/auth/server.py b/src/auth/server.py
index 00c809a..d8436f2 100644
--- a/src/auth/server.py
+++ b/src/auth/server.py
@@ -49,7 +49,7 @@ def validate():
 
     try:
         decoded = jwt.decode(
-            encoded_jwt, os.environ.get("JWT_SECRET"), algorithm=["HS256"]
+            encoded_jwt, os.environ.get("JWT_SECRET"), algorithms=["HS256"]
         )
     except:
         return "not authorized", 403