Enter your JWT token below:
ℹ️ What is a JSON Web Token (JWT)?
A JSON Web Token (JWT) is a compact, URL-safe token format used for securely transmitting information between parties. JWTs are widely used in:
- OAuth 2.0 & OpenID Connect (OIDC): ID tokens and access tokens
- API Authentication: Stateless authentication for REST APIs
- Single Sign-On (SSO): Session tokens across multiple applications
- Microservices: Service-to-service authentication
JWT Structure (3 parts separated by dots):
- Header: Algorithm (HS256, RS256) and token type (JWT)
- Payload: Claims (data) like user ID, expiration time, issuer
- Signature: Cryptographic signature to verify token integrity
Common JWT Claims:
exp(Expiration Time): When the token expires (Unix timestamp)iat(Issued At): When the token was creatednbf(Not Before): Token is not valid before this timeiss(Issuer): Who created the token (e.g., auth server URL)aud(Audience): Who the token is intended forsub(Subject): User identifier (e.g., user ID)
📖 Related Tools & Articles
🧰 Related Tools:
- ⏰ Unix Timestamp Converter - Convert JWT time claims (exp, iat, nbf) to human-readable dates
📚 Related Articles:
🔒 Privacy & Security Notice
Client-side decoding only: This JWT decoder runs 100% in your browser using JavaScript. No JWT tokens are transmitted to any server. Your tokens remain completely private.
⚠️ Note: This tool only decodes JWTs (Base64 decoding). It does not verify signatures. Always validate JWT signatures on your backend server before trusting the token data.