Header
Payload
Signature
..
Decode and inspect JSON Web Tokens
Algorithm: -
The signature is used to verify the sender's identity and ensure the message hasn't been altered.
Note: This tool only decodes tokens. To verify the signature, you need the secret key or public key.
JSON Web Token (JWT) is an open standard (RFC 7519) for securely transmitting information between parties as a JSON object. JWTs are commonly used for authentication and authorization in web applications.
A JWT consists of three parts separated by dots:
• Header - Contains token type and signing algorithm
• Payload - Contains claims (user data and metadata)
• Signature - Verifies token integrity
iss - Issuer of the token
sub - Subject (usually user ID)
aud - Audience (intended recipient)
exp - Expiration time
nbf - Not before time
iat - Issued at time
jti - JWT ID (unique identifier)