Décodeur JWT

Décodez et inspectez les JSON Web Tokens. Visualisez l'en-tête, la charge utile et la signature. Gratuit, sans inscription.

Jeton JWT

À propos des JSON Web Tokens

JWT (JSON Web Token) est un format de jeton compact et sécurisé pour les URL, utilisé pour l'authentification et l'échange d'informations. Un JWT se compose de trois parties : l'en-tête (algorithme et type), la charge utile (revendications et données) et la signature (vérification). Les JWT sont couramment utilisés dans OAuth 2.0, OpenID Connect et l'authentification API.

Frequently Asked Questions

What is JWT and why is it used?

JWT (JSON Web Token) is a compact, self-contained way to transmit information as a JSON object. It's widely used for authentication and authorization in APIs. The token is signed, so the server can verify it hasn't been tampered with. See Hash Generator for understanding token signatures.

Is it safe to paste my JWT token here?

This tool runs entirely in your browser—no data is sent to any server. However, JWTs often contain sensitive user information, so be careful pasting production tokens. Never share tokens with untrusted tools or paste them in public channels.

What's the difference between JWT and JWE?

JWT (Signed) proves the token wasn't modified and shows the payload in plain text (base64 encoded). JWE (Encrypted) encrypts the payload so only the intended recipient can read it. Use JWE when the payload contains truly sensitive data that shouldn't be visible to anyone with the token.

What is the "exp" claim and why does it matter?

The "exp" (expiration time) claim specifies when the token is no longer valid. Check this with your Unix timestamp converter to see if a token has expired. Always validate token expiration on the server before trusting it.

𝕏 Twitter in LinkedIn

Notez cet outil

3.9 / 5 · 77 avis

Plus d'outils

JDJwt Token Decoder JPJwt Parser JVJwt Validator →BBase64 Decoder

Restez informé

Recevez des astuces dev et les nouveaux outils chaque semaine.

Pas de spam. Désabonnez-vous à tout moment.

Enjoy these free tools?

☕Buy Me a Coffee

Comment utiliser

Paste your JWT token in the input field
The header, payload, and signature are decoded automatically
View expiration time and other claims
Copy decoded sections as needed

Cas d'utilisation

Debugging authentication tokens
Inspecting JWT claims and expiration
Verifying token structure during development
Understanding OAuth2 and API tokens

Questions fréquentes

What is a JWT?

JWT (JSON Web Token) is a compact, URL-safe token format used for authentication and information exchange. It contains a header, payload, and signature.

Is it safe to decode JWTs here?

Yes. Decoding happens entirely in your browser. No tokens are sent to any server. Note: decoding only reads the token — it does not verify the signature.

Can this tool verify JWT signatures?

This tool decodes and displays the token contents. Signature verification requires the secret key, which should not be entered into any online tool.