JWT Debugger

Decode and verify JWT tokens or encode new ones with various cryptographic algorithms. A comprehensive tool for working with JSON Web Tokens.

Security Note: All operations happen in your browser. Tokens and keys are never sent to the server.

JWT Token

Mode:

Decode Encode

JWT Token:

Header

JSON Table

Claim	Value	Description
No data available

Payload (Claims)

JSON Table

Claim	Value	Description
No data available

Signature Verification

Algorithm:

Secret Key:

JWT Information

JSON Web Token (JWT) is an open standard (RFC 7519) that defines a compact and self-contained way for securely transmitting information between parties as a JSON object. This information can be verified and trusted because it is digitally signed.

Supported Algorithms:

HMAC: HS256, HS384, HS512 (symmetric, uses secret key)
RSA: RS256, RS384, RS512 (asymmetric, uses private/public key)
RSA-PSS: PS256, PS384, PS512 (asymmetric)
ECDSA: ES256, ES384, ES512 (asymmetric)
EdDSA: Ed25519, Ed448 (asymmetric)
None: No signature (testing only)

Important Notes

JWTs should be transmitted only over secure connections (HTTPS) to prevent token interception.
Never store sensitive information in JWT payload as it can be decoded by anyone.
Keep your secret keys and private keys secure. Never expose them in client-side code or public repositories.
Implement proper token expiration (exp claim) and validation in your applications.

Notifications

JWT Debugger

JWT Debugger

JWT Token

HMAC (Symmetric)

RSA (Asymmetric)

RSA-PSS (Asymmetric)

ECDSA (Asymmetric)

EdDSA (Asymmetric)

No Signature

Header

Payload (Claims)

Signature Verification

JWT Information

Supported Algorithms:

Important Notes