When to use it
- Use it to inspect token headers and payloads quickly.
- It is useful when checking exp, iat, sub, aud, and similar claims.
- It helps during authentication debugging.
Types and modes
- A JWT has header, payload, and signature sections.
- The header usually contains alg and typ.
- The payload contains claims, while the signature is the signed value.
What to check
- Decoding is not the same as verifying the signature.
- Avoid sharing real production tokens.
- Expiration values are usually Unix time in seconds.
FAQ
No. Decoding only reads the token, while verification checks the signature.
No. This tool shows the signature as raw text only.
Output
{
"header": {
"alg": "HS256",
"typ": "JWT"
},
"payload": {
"sub": "1234567890",
"name": "Devmint",
"iat": 1516239022
},
"signature": "signature"
}Decoded header and payload are shown below.