๐ JWT Decoder
๐ JWT Structure
๐ Header
๐ฆ Payload
๐ Signature
๐ Claims Analysis
๐ Common JWT Claims Dictionary
โ Frequently Asked Questions
๐ค What is a JWT token?
A JSON Web Token (JWT) is a compact, URL-safe means of representing claims to be transferred between two parties. It consists of three parts separated by dots: Header, Payload, and Signature.
๐ก๏ธ Is this tool secure?
Yes! This tool runs entirely in your browser. No JWT tokens are sent to any server. All decoding happens locally using JavaScript.
โ ๏ธ Can I verify the signature?
This tool only decodes JWTs; it doesn't verify signatures. To verify a signature, you need the secret key or public key used to sign the token.
๐ข What are those timestamp numbers?
Timestamps in JWTs (like exp, iat, nbf) are Unix timestamps - the number of seconds since January 1, 1970. This tool converts them to human-readable dates.
๐จ What do the colors mean?
The visual diagram uses colors to distinguish JWT parts: blue for header (algorithm info), green for payload (your data), and orange for signature (verification).
๐ฑ Can I use this on mobile?
Yes! This tool is fully responsive and works on all devices - phones, tablets, and desktops.
๐ซ What if my token is invalid?
The tool will show an error if the token format is invalid. JWTs must have exactly three parts separated by dots, and the header/payload must be valid base64-encoded JSON.
๐ What are claims?
Claims are statements about an entity (typically the user) and additional metadata. There are registered claims (like exp, iss), public claims, and private claims.