JWT Decoder
Decode and verify JSON Web Tokens
Press Cmd/Ctrl + Enter to decode
What is JWT?
JSON Web Tokens (JWT) are an open standard for securely transmitting information between parties as a JSON object.
- •Compact, URL-safe token format
- •Self-contained with user information
- •Digitally signed for verification
Security Note
This decoder only decodes the JWT - it does not verify the signature.
- •Do not trust the decoded data without verification
- •Always validate tokens on your server
- •Never expose your secret keys in client-side code
DebugTools product
JWT Decoder
JWT Decoder is a focused DebugTools mini-product for developers. Decode and inspect JSON Web Token claims during auth debugging.
Use cases
- Decode JWT headers and claims while debugging auth flows.
- Inspect issuer, audience, subject, expiry, and scope values.
- Review tokens locally before sharing auth evidence.
How it works
- Paste or load the snippet you want to inspect in JWT Decoder.
- Run the tool in the browser and review the highlighted output.
- Copy, export, or turn the result into the next debugging step.
Privacy
- JWT Decoder is local-first. The core workflow runs in your browser and does not require sending pasted content to DebugTools servers.
This tool history
Recent JWT Decoder sessions
Only visits for this tool are shown. Pasted content, tokens, request bodies, and logs are not stored here.
Loading this tool history...