JWT Decoder
Decode and validate JWT tokens to see header, payload, and signature.
Header
Decoded Header (JSON)
Original Header (Base64):
Payload
Decoded Payload (JSON)
Original Payload (Base64):
Signature
Signature (Base64)
⚠️ Security Note: The signature cannot be verified without the secret key. This tool only decodes the token contents for debugging purposes.
📊 Token Information
JWT Error
💡 About JWT Tokens
- • JWT (JSON Web Token) is a compact, URL-safe means of representing claims
- • Consists of three parts: Header, Payload, and Signature (separated by dots)
- • Header and Payload are Base64-encoded JSON objects
- • Signature is used to verify the token wasn't tampered with
- • Commonly used for authentication and information exchange in APIs
- • Important: Never store sensitive data in JWT payload as it's only encoded, not encrypted
🚀 Example JWT
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c
Try pasting this example JWT token above to see how it's decoded!