JWT Decoder

Decode and inspect JWT tokens — header, payload, expiry — entirely in your browser.

No data leaves your browser.

JWT Token

Frequently Asked Questions

Is my JWT safe?: Yes. All decoding happens locally in your browser. Your token never leaves your device.
Is the signature verified?: No. This tool only decodes and displays the JWT contents. Signature verification requires the secret key and is not performed.
What JWT formats are supported?: Standard JWTs with three dot-separated parts (header.payload.signature) using Base64url encoding.