Ferramentas para desenvolvedores

JWT Decoder

JWT Decoder splits a JSON Web Token into its header and payload and decodes them to readable JSON, so you can inspect claims like expiry and issuer.

Última atualização: July 2026

A JWT (JSON Web Token, defined in RFC 7519) is a compact, URL-safe token made of three Base64url-encoded parts separated by dots: header, payload and signature. This decoder splits the token and shows the readable header and payload JSON — including standard claims like exp, iat and iss — entirely in your browser. It does not verify the signature, which requires the signing key.

JWT DecoderFunciona no seu navegador

🔒 Decoded locally — your token never leaves your browser. Signature is not verified.

Como usar JWT Decoder

  1. Paste your JWT.
  2. Read the decoded header and payload.
  3. Inspect the claims.

Perguntas frequentes

Does it verify the signature?

No — decoding only reads the header and payload. Signature verification needs the secret/key and is intentionally not done here.

Is my token uploaded?

Never. Decoding is purely local in your browser, so it's safe for sensitive tokens.

What does it show?

The decoded header and payload JSON, including standard claims like exp, iat and iss.

ferramentas para desenvolvedores relacionadas