← Back to home

Free • No signup • Fast

JWT Decoder Online - Decode JSON Web Tokens

Decoding runs locally in your browser. Avoid pasting real production tokens unless you fully trust the context.

Related tools

How it works

Decode a JSON Web Token directly in your browser. Paste a JWT to inspect its header, payload, claims, expiration time and signature without sending the token to external servers.

Practical examples

Decode a JWT returned by a login API

Paste the access token or refresh token returned by an authentication endpoint to inspect claims such as sub, name, email, roles and permissions.

Try this example →

Check JWT expiration time

Use the exp, iat and nbf fields to understand when a token was issued, when it becomes valid and when it expires.

Try this example →

Inspect JWT payload before debugging or testing

Copy the decoded header and payload when debugging API authentication, authorization issues, OAuth flows or test fixtures.

Try this example →

FAQ

Does this JWT decoder verify the signature?

No. This tool decodes the header and payload so you can inspect the token content, but it does not validate or verify the JWT signature.

Is the JWT sent to a server?

No. Decoding happens locally in your browser, so the token is not sent to external servers.

What JWT fields can I inspect?

You can inspect standard and custom claims such as sub, iss, aud, exp, iat, nbf, roles, permissions and any other payload field included in the token.

Try these tools

URL Encoder/Decoder

Encode and decode URLs for query strings, APIs and redirects.

Base64 Encoder/Decoder

Encode and decode Base64 directly in your browser.

GPS Coordinate Converter

Convert GPS coordinates, generate GeoJSON and build paths from multiple points.

Regex Tester

Test regular expressions with live matches, flags, groups and detailed positions.