JWT Decoder

Decode and inspect JSON Web Token header and payload.

Free online tool. No signup required. All processing runs in your browser.

JWT token

About this tool

Paste a JWT string to decode its header and payload without verifying the signature. Useful for debugging auth tokens and inspecting claims.

What is JWT Decoder?

A JWT (JSON Web Token) is a compact way to send signed data between parties. It has three parts: header, payload, and signature, each Base64URL-encoded and separated by dots.

How to use JWT Decoder

Paste your JWT into the input field.
View the decoded header and payload.
Copy or inspect the claims as needed.

Examples

Example input

eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4ifQ.dozjgNryP4J3jVmNHl0w5N_XgL0n3I9PlFUP0THsR8U

Example output

Header: { alg: "HS256", typ: "JWT" }
Payload: { sub: "1234567890", name: "John" }

FAQ

Is the JWT signature verified?

No. This tool only decodes the header and payload. It does not verify the signature.

Can I decode expired tokens?

Yes. Decoding works regardless of expiration; check the exp claim in the payload for the expiry time.

Related tools

Hash Generator

Generate MD5, SHA-256 and other hashes from text.

Security

JavaScript Obfuscator

Convert readable JavaScript into obfuscated code to protect source.

Security

JWT Generator

Create test JWT tokens with custom payload and secret (HS256).

Security

TOTP Generator

Generate Time-based One-Time Passwords for two-factor authentication.

Security

SSL Certificate Decoder

Decode and analyze PEM/X.509 SSL certificates.

Security

CSP Generator

Generate Content Security Policy headers with visual builder.

Security