Herramientas para desarrolladores

JWT Decoder

JWT Decoder splits a JSON Web Token into its header and payload and decodes them to readable JSON, so you can inspect claims like expiry and issuer.

Última actualización: July 2026

A JWT (JSON Web Token, defined in RFC 7519) is a compact, URL-safe token made of three Base64url-encoded parts separated by dots: header, payload and signature. This decoder splits the token and shows the readable header and payload JSON — including standard claims like exp, iat and iss — entirely in your browser. It does not verify the signature, which requires the signing key.

JWT DecoderFunciona en tu navegador

🔒 Decoded locally — your token never leaves your browser. Signature is not verified.

Cómo usar JWT Decoder

  1. Paste your JWT.
  2. Read the decoded header and payload.
  3. Inspect the claims.

Preguntas frecuentes

Does it verify the signature?

No — decoding only reads the header and payload. Signature verification needs the secret/key and is intentionally not done here.

Is my token uploaded?

Never. Decoding is purely local in your browser, so it's safe for sensitive tokens.

What does it show?

The decoded header and payload JSON, including standard claims like exp, iat and iss.

herramientas para desarrolladores relacionadas