๐Ÿ”“ JWT Decoder

Paste any JSON Web Token to decode and inspect its header, payload, and claims. 100% client-side.

๐Ÿ”’ Your data never leaves your browser

Encoded Token

๐Ÿ‘† Paste a JWT token to decode it

or click Sample to see an example

What is a JWT?

๐Ÿ“‹ Structure

A JSON Web Token consists of three parts separated by dots: header.payload.signature. Each part is Base64URL encoded.

๐Ÿ”‘ Header

Contains the token type (typ) and signing algorithm (alg), such as HS256, RS256, or ES256.

๐Ÿ“ฆ Payload

Contains the claims โ€” statements about the user and metadata. Common claims include sub, iat, exp, and iss.

โœ… Signature

Created by signing the header and payload with a secret key. Used to verify the token hasn't been tampered with.

โฐ Expiration

The exp claim sets when the token expires. This decoder automatically checks if your token is still valid or has expired.

๐Ÿ”’ Security Note

JWTs are not encrypted โ€” anyone can decode the payload. Never put sensitive data like passwords in a JWT. This tool runs 100% in your browser.

Build with Pandan APIs

Free developer tools and APIs for your next project

๐Ÿ“ธ Screenshot API ๐Ÿ“ฑ QR Code API ๐Ÿ”— Link Shortener ๐Ÿ–ผ๏ธ OG Image API { } JSON Formatter ๐Ÿ” SEO Checker