No. Decoding and HMAC verification happen in your browser.

Converters Tool

Decode JWT Token Online Safely

Decode JWT headers and payloads locally in your browser, inspect claims, and verify HMAC signatures when you have the secret.

Runs locally in your browser

Privacy-first workflows

Fast and simple

100% Free, no signup

Encoded JWT

HMAC secret (HS256 / HS384 / HS512)

Decoded Header

{
  "alg": "HS256",
  "typ": "JWT"
}

Decoded Payload

{
  "sub": "1234567890",
  "name": "John Doe",
  "admin": true,
  "iat": 1516239022,
  "exp": 1924999999
}

Registered claims

Algorithm: HS256

Issued at: 1/18/2018, 1:30:22 AM (2018-01-18T01:30:22.000Z)

Not before: —

Expires: 1/1/2031, 2:13:19 AM (2031-01-01T02:13:19.000Z)

How it works

How to debug a JWT

STEP 01

Paste the encoded JWT token.

STEP 02

Inspect the decoded header, payload, and registered claims.

STEP 03

Enter the HMAC secret if you need to verify HS signatures.

You might also need

Related tools

Converters

Base64 Encode/Decode

Encode text to Base64 or decode Base64 back to readable text.

Use now

Converters

URL Encode/Decode

Encode URLs for query strings or decode percent-encoded URL text.

Use now

Converters

JSON Formatter & Toolkit

Validate, format, minify, repair, query, diff, and convert JSON — all from a single editor.

Use now

Converters

CSV to JSON

Convert simple CSV rows into JSON objects using the first row as headers.

Use now

Converters

JSON to CSV

Convert an array of JSON objects into CSV rows with headers.

Use now

Converters

RGB to HEX Converter

Convert HEX colors to RGB or RGB colors back to HEX.

Use now

FAQ

Decode JWT Token Online Safely

How to debug a JWT

Related tools

Common questions