All tools (179)

JWT Decoder

Decode a JSON Web Token free in your browser — read the header and payload instantly. Nothing is uploaded.

Report a problem

The signature is not verified — this only decodes the token so you can read it.

How to use

  1. Paste your JSON Web Token into the box — the three parts are separated by dots.
  2. It decodes as you type, showing the readable header and payload.
  3. Read the claims (or copy the decoded result), then close the tab — nothing is stored.

FAQ

Is my token uploaded anywhere?

No. The decoding runs entirely in your browser, so the token never leaves your device, works offline, and stays private. It is safe to use with real tokens.

Does this verify the signature?

No. A JWT is signed, but this tool only decodes the header and payload so you can read them. It does not check the signature, so it can not tell you whether a token is genuine or tampered with — never trust a token based on decoding alone.

What do iat, exp and nbf mean?

They are standard timestamp claims in seconds since 1970: iat is when the token was issued, exp is when it expires, and nbf is the earliest time it is valid. This tool shows each one as a readable date so you can tell at a glance whether a token is still good.